last executing test programs:

2m57.741142003s ago: executing program 3 (id=548):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080))
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000140)={0x1, 0x8, 0x3ff, 0x0, 0x4, "b94749fb7c8eb721659e28438b12714b423f59"})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002200)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = signalfd(0xffffffffffffffff, &(0x7f0000000500)={[0x5]}, 0x8)
name_to_handle_at(r4, &(0x7f0000004740)='\x00', &(0x7f0000004780)=ANY=[@ANYBLOB='\f'], &(0x7f00000047c0), 0x1200)

2m57.740123243s ago: executing program 3 (id=549):
syz_open_procfs(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x42000000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xffffffff}, 0x18)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x5, 0x3032, 0xffffffffffffffff, 0x796d8000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x7, 0x3, 0x8}]}]}}, &(0x7f0000000f40)=""/4080, 0x32, 0xff0, 0x1, 0x20, 0x0, @void, @value}, 0x28)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000040)={0x591003, 0x0, 0xb}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfff}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000010900010073797a310000000048000000030a01010000000000000000010000000900030073797a3100000000080007006e6174000900010073797a310000000014000480080002407c40280f080001"], 0xb8}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

2m57.006057216s ago: executing program 3 (id=557):
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0xfefc, 0x7}, 0x4)
setsockopt$sock_int(r0, 0x1, 0x2c, 0x0, 0x0)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, 0x0, 0x4)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)

2m56.057737412s ago: executing program 3 (id=565):
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x474, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_int(r2, 0x0, 0xf, 0x0, &(0x7f00000000c0))

2m55.785390436s ago: executing program 3 (id=568):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000280)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
listen(r2, 0x2)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10)
close_range(r2, 0xffffffffffffffff, 0x0)

2m50.554263496s ago: executing program 3 (id=622):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
openat(0xffffffffffffff9c, 0x0, 0xc41, 0x0)
socket$kcm(0x2, 0x922000000001, 0x106)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x1c, r3, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x8004)
write$nci(r0, &(0x7f0000000140)=ANY=[@ANYBLOB='AF', @ANYRES32=r2], 0x4)

2m50.497429047s ago: executing program 32 (id=622):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
openat(0xffffffffffffff9c, 0x0, 0xc41, 0x0)
socket$kcm(0x2, 0x922000000001, 0x106)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x1c, r3, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x8004)
write$nci(r0, &(0x7f0000000140)=ANY=[@ANYBLOB='AF', @ANYRES32=r2], 0x4)

2m33.649567525s ago: executing program 1 (id=860):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r3 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', <r4=>0x0})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r3, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r4}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffff9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)

2m33.506388018s ago: executing program 0 (id=861):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x28}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x10681, 0x800}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}}, 0x20044002)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_FLAGS={0x8, 0x8, 0x100}]}, 0x34}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x0)

2m33.454303979s ago: executing program 0 (id=862):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x90020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000200)={[{@max_batch_time={'max_batch_time', 0x3d, 0x358}}, {@resuid}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x3, 0x44b, &(0x7f00000004c0)="$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")
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r3, 0x2007ffc)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, 0x0, 0x0)
sendfile(r3, r3, 0x0, 0x800000009)

2m33.209378503s ago: executing program 1 (id=865):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x2689c421)
sched_setscheduler(0x0, 0x6, &(0x7f0000000000)=0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
kexec_load(0xfffffffffffffffe, 0x1, &(0x7f0000000080)=[{0x0, 0x0, 0x5}], 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x20008800)
ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000a80)={{0x2, 0x4e2a, @broadcast}, {0x0, @multicast}, 0x4e, {}, 'lo\x00'})
getpid()
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

2m33.137482055s ago: executing program 1 (id=868):
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
unshare(0x2c020400)
msgget$private(0x0, 0x0)
msgsnd(0x0, 0x0, 0x2000, 0x0)
r0 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x6, 0x0, 0x0, 0x0)
r1 = openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$cgroup_subtree(r1, 0x0, 0x5)
r2 = perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xa4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x8)
sync_file_range(r2, 0x800, 0x1, 0x1)

2m33.068657785s ago: executing program 1 (id=874):
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x474, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_int(r2, 0x0, 0xf, 0x0, &(0x7f00000000c0))

2m32.756100921s ago: executing program 1 (id=888):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x87, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfee, 0x0, 0x0, 0x0, 0x0, 0x100000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, &(0x7f0000000080))

2m32.567320064s ago: executing program 0 (id=879):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
prctl$PR_SET_NAME(0xf, &(0x7f0000000680)='+}[@\x00[$oB\xfa=\xee\xc4F\xba\xed\x97')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
io_setup(0x8, &(0x7f0000004200)=<r2=>0x0)
io_pgetevents(r2, 0x3, 0x3, &(0x7f0000000440)=[{}, {}, {}], &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x520, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x80ffffff, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x580)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xe, 0x9f, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

2m31.950620115s ago: executing program 0 (id=890):
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x474, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_int(r2, 0x0, 0xf, 0x0, &(0x7f00000000c0))

2m31.817881637s ago: executing program 4 (id=893):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1018000, &(0x7f00000003c0)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES16=0x0, @ANYRESOCT, @ANYRES32, @ANYRESDEC], 0x4, 0x2ee, &(0x7f00000006c0)="$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")
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)

2m31.677138339s ago: executing program 0 (id=895):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, @perf_config_ext={0x400000000000000, 0x1}, 0x115428, 0x0, 0x0, 0x0, 0x5f4d, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_io_uring_setup(0x1714, &(0x7f0000002040)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000080))
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
inotify_rm_watch(0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r3}, 0x10)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

2m31.573086711s ago: executing program 4 (id=898):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000e00)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

2m31.422671434s ago: executing program 0 (id=899):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000180)=0x8, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0xfffffffffffffea9, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

2m31.293369336s ago: executing program 33 (id=899):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000180)=0x8, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0xfffffffffffffea9, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

2m31.191474158s ago: executing program 1 (id=902):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r2, 0x0, r4, 0x0, 0x88000cc, 0x0)
fcntl$setpipe(r3, 0x407, 0x100004)
write$eventfd(r3, &(0x7f0000000240), 0xffffff14)

2m31.191085878s ago: executing program 34 (id=902):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r2, 0x0, r4, 0x0, 0x88000cc, 0x0)
fcntl$setpipe(r3, 0x407, 0x100004)
write$eventfd(r3, &(0x7f0000000240), 0xffffff14)

2m31.08391078s ago: executing program 4 (id=905):
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
sendmsg$unix(r2, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r4], 0x18, 0x4010}, 0x0)
close(r3)
unshare(0x8000000)

2m30.927403642s ago: executing program 4 (id=906):
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x474, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_int(r2, 0x0, 0xf, 0x0, &(0x7f00000000c0))

2m30.664894327s ago: executing program 4 (id=909):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000b00)=ANY=[@ANYBLOB="0600000004000000be7000005c00000000000000", @ANYRES32, @ANYBLOB="0096522d7f94ef68d75761e7f83c000000000000", @ANYRES32=0x0, @ANYRES32], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
syz_open_dev$usbfs(0x0, 0x80, 0x805)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)

2m29.90768333s ago: executing program 4 (id=916):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000013c0)=@base={0xb, 0x6, 0x10000, 0x4061, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x4, &(0x7f0000001800)={{r0}, 0x0, 0x0}, 0x20)

2m29.853408951s ago: executing program 35 (id=916):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000013c0)=@base={0xb, 0x6, 0x10000, 0x4061, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x4, &(0x7f0000001800)={{r0}, 0x0, 0x0}, 0x20)

1m32.452422291s ago: executing program 5 (id=1816):
socket$kcm(0x10, 0x400000002, 0x0)
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000e00)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x8001}}, {@nomblk_io_submit}, {@nodelalloc}, {@bsdgroups}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@quota}]}, 0x2, 0xbd1, &(0x7f0000001340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000140018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)
prctl$PR_SET_NAME(0xf, &(0x7f0000000240)='+}[@\x00')
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fallocate(r3, 0x10, 0x4000, 0x8000)

1m31.893312s ago: executing program 5 (id=1837):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='timer_start\x00', r1}, 0x18)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))

1m31.802517802s ago: executing program 5 (id=1841):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xfffffffffffffffe)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000e5373526a01edb"], 0x1c}}, 0x0)
recvmmsg$unix(r1, &(0x7f0000002380)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/4096, 0x1004}], 0x1}}], 0x8, 0x34000, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)

1m31.179918072s ago: executing program 5 (id=1845):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="0107000000000000000020"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="d0000000", @ANYRES16=r2, @ANYBLOB="0100000000000000000001000000080001000000000014000480050003000000000005000300000000000800020001000000980008800c000780080006000000000024000780080005"], 0xd0}}, 0x0)

1m30.341726566s ago: executing program 5 (id=1858):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
syz_io_uring_setup(0x8000083f, &(0x7f00000000c0)={0x0, 0x9b1b, 0x2000, 0x1, 0x8002aa}, &(0x7f0000000400), &(0x7f0000000280))
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@discard}, {@resgid}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200), 0xfea7)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x4, 0x8001, 0x0, 0x0, 0x19, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4117639c2eb4b78c66ee677df701905b9aafab4afaaf755a3f6a004", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000", [0x0, 0x2]})
copy_file_range(r2, 0x0, r1, 0x0, 0xffffffffa003e45c, 0x700000000000000)

1m29.918000863s ago: executing program 5 (id=1866):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040), 0x10)
listen(r2, 0x5)
r3 = socket(0x28, 0x5, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000340)={0x200000, 0x200000, 0x0, 0x0, 0x5989})
setrlimit(0x40000000000008, &(0x7f0000000000))
connect$vsock_stream(r3, &(0x7f0000000080), 0x10)
sendmsg$nl_route_sched(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001b80)=@newtaction={0x14, 0x30, 0x400, 0x70bd2b, 0x25dfdbfb}, 0x14}}, 0x40004)
setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x8}, 0x8)
sendmmsg(r3, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)

1m14.787437731s ago: executing program 36 (id=1866):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040), 0x10)
listen(r2, 0x5)
r3 = socket(0x28, 0x5, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000340)={0x200000, 0x200000, 0x0, 0x0, 0x5989})
setrlimit(0x40000000000008, &(0x7f0000000000))
connect$vsock_stream(r3, &(0x7f0000000080), 0x10)
sendmsg$nl_route_sched(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001b80)=@newtaction={0x14, 0x30, 0x400, 0x70bd2b, 0x25dfdbfb}, 0x14}}, 0x40004)
setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x8}, 0x8)
sendmmsg(r3, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)

5.490693989s ago: executing program 9 (id=2624):
socket$nl_route(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
futex(0x0, 0x86, 0x2, 0x0, 0x0, 0xffffffec)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
socket$nl_audit(0x10, 0x3, 0x9)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
setsockopt$sock_int(r2, 0x1, 0x2a, &(0x7f0000000000), 0x4)
recvmmsg(r2, &(0x7f0000001140), 0x700, 0x0, 0x0)

4.747005362s ago: executing program 9 (id=2634):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x4f, 0x1, 0x0, 0x0, 0x0, 0xda54, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b7b, 0x2, @perf_config_ext={0x7fff, 0xaea}, 0x110b04, 0x513d797, 0x0, 0x3, 0x2, 0xad30, 0x4, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000), 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xb, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b", 0x0, 0xe00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x7, &(0x7f0000000100), 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020200600000000000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b0000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x14039, 0xba, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000062010c00feff000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

3.664560419s ago: executing program 9 (id=2642):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x8000}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_WIPHY(r1, 0x0, 0x40)
r2 = memfd_create(0x0, 0x6)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x2000003, 0x97052, r2, 0x0)
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
unshare(0x42000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)
openat$selinux_checkreqprot(0xffffffffffffff9c, 0x0, 0x46101, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000010900010073797a310000000048000000030a01010000000000000000010000000900030073797a3100000000080007006e6174000900010073797a310000000014000480080002407c40280f080001"], 0xb8}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

3.460132803s ago: executing program 8 (id=2643):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x178}, 0x18)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, 0x0)
ioctl$TCFLSH(r1, 0x541b, 0xfffffffffffffffd)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x52, &(0x7f0000000080)={0x0, 0x8b48, 0x2, 0x0, 0x3d8}, &(0x7f0000ff0000), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

3.03596302s ago: executing program 8 (id=2658):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00'}, 0x10)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r3}, 0x10)
close(r0)

2.648467866s ago: executing program 8 (id=2650):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000dc0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = syz_io_uring_setup(0x6167, &(0x7f0000000400)={0x0, 0xfffffffe, 0x10100}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x20, 0x0, {0x20}})
io_uring_enter(r2, 0x2d3e, 0xea37, 0x0, 0x0, 0x0)

2.632113727s ago: executing program 9 (id=2651):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008", @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r2}, 0x10)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0xfdfe, 0x7, @remote, 0x4}, 0x1c)
connect$pppl2tp(r3, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r3, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

2.580220457s ago: executing program 8 (id=2653):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
creat(&(0x7f0000000380)='./file0\x00', 0x0)

2.579544487s ago: executing program 9 (id=2655):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000008850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
syz_usb_connect(0x3, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x310, 0x64, 0xa1, 0x1b, 0x20, 0xb49, 0x64f, 0xd789, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x10, 0x1d, 0x88, 0x8, [{{0x9, 0x4, 0xb1, 0x6, 0x0, 0x15, 0x3, 0x22, 0x7}}]}}]}}, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0})
syz_clone3(&(0x7f00000003c0)={0x122125000, &(0x7f00000000c0), 0x0, 0x0, {0x22}, 0x0, 0x0, 0x0, 0x0}, 0x58)
socket$inet6(0xa, 0x80002, 0x0)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000008640)=[{0x0}], 0x1, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r1, &(0x7f0000000000)="fa", 0xfffffdef)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil)
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0)

2.536209628s ago: executing program 8 (id=2656):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
syz_io_uring_setup(0x8000083f, &(0x7f00000000c0)={0x0, 0x9b1b, 0x2000, 0x1, 0x8002aa}, &(0x7f0000000400), &(0x7f0000000280))
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@discard}, {@resgid}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000200), 0xfea7)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x4, 0x8001, 0x0, 0x0, 0x19, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4117639c2eb4b78c66ee677df701905b9aafab4afaaf755a3f6a004", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000", [0x0, 0x2]})
copy_file_range(r2, 0x0, r1, 0x0, 0xffffffffa003e45c, 0x700000000000000)

1.908692888s ago: executing program 2 (id=2669):
open(&(0x7f0000000140)='./file0\x00', 0x149442, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x12, 0x20000000000003ae, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000800000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x5, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f00000006c0), 0x5, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r0}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r2}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
r5 = dup(r4)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])

1.80599568s ago: executing program 8 (id=2671):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x700000, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000000, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0a00000001010000fc7f0000cc"], 0x50)

1.747593831s ago: executing program 2 (id=2672):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x2, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r5, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_DELETE(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x1c, r6, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}]}, 0x1c}}, 0x40)

1.744513401s ago: executing program 7 (id=2682):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x100000)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x3, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x30}, @call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ptrace(0x10, r2)
ptrace$setregs(0x11, r2, 0x1, &(0x7f00000003c0))
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400e80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000340)={0x1fc, 0x42, 0x100, 0x70bd25, 0x25dfdbfe, {0x13}, [@nested={0x1e8, 0xbc, 0x0, 0x1, [@nested={0x4, 0x74}, @generic="8716884c2459f89f3b885c876183c6a2abb949fb1a5e2e141eddfc4759c9bea1b9f44f175d50cf732ed8d411cc5885d3c116a7d601cc1bc398735bdb1e48083d9185f73fc61a106eab36a22ed4958874f1f11cf8f29724b925f7b1ba9fbf87fe0546cb5f7336c63aa079f023a9d9cfd98cfd8c558659c6ddc5286862e0039d16e97d18a12664f761e8526adc353b0ba93c4dcbbd7d4545dd4d9e1f7cd9a572", @typed={0x8, 0xeb, 0x0, 0x0, @u32=0x14}, @generic="e0a42480b19fabe13295cdd7a53192ccf88446defdc695c83b72cff62aabca111552c783445bbd5b235c711995c0c16a7f32d147332cecd6b325a1c6d0a7c3c71dda42a66de03a2ab412b4d6452f08b891df934eb7b09cabf01c03e3fed431da7f2517940f7ff56d1112d633a3a1447ffd44c5d8f28afc8dcb703c76fc7505b95cc2f6a328751fcfc44add551f99978d0b0fd69a0b1d94fa898dc6ffbe3cba3e839ca454543a6b997861aa", @generic="10dd577aa4531993cb1ee9ad8825fa3b41eb07ca484062d7b565a1e3f5576af37cf34e55809b4c015de4daff6cd2181eb88b99b4f6a8f45886b836a15102fffd8db791d74f2c4b6d36e6500e7c358094eb6bda2e7e192f571b68fb628f4803b558e38ce46b07f68a6a021773e7ce812c73aeab", @generic="e70bf484157fc3f9b944d281b61847ef72a3cd5793c3e39e41f478"]}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x4000091}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, 0x0, 0x0)

1.21064262s ago: executing program 2 (id=2673):
syz_read_part_table(0x635, &(0x7f0000000000)="$eJzs3D9oXeUbB/DvSe899yaFtr8fTl1SncViZ28NSHqpdKp061IVJFQc4lSx5Ea6mCGDg7NLEbLUumjo4KAt4iROoYNacRWkqNQiPXLuOfdPBEFsOwifz5Dzvs953vd5n5yTMSf8py2kmxTjYS+dJMdf/kvGZiYJ6df5Sapue+/czuqp01VVVUWdcz7dPPn5oetJOu2S/nSbqqo2ppOTufrB0o13i1F353Zd9ObWgTq82BzjSPL0wbI/3mZuh1TVvoP1HuXvgX/n2uBWUVwp29lTvzxYST76efXs7pmt966/2IY3ki+T+vm/U78Xk+y3cvHYhc54WD/lN+f3/bW5lLPI7HEvprPvDKMr68PtlcHa3iRwdLjz6WvP/X7sRqoT+arsLExuFLP9ymT08O3X/R+u3/7tS4O1veHlxemNJ97//xdZbid3qypH6pL/y/hPZ/kRVAYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HG4NriVZDTcTtb2hr02unp298xWmeSFV/tt6Pj8qgPt9WIu3KmvG1lPfvgk3fmkov4xjiyku9LEvl+unhkPOpP6vcVmcGmwtje8v5TcefbB0WGzKjc/OzErtzHdeTfPt6N7VWM82fy7JtsS1eEm7+v78/0XnWR9uD2uf/nHotM0/HExmh5zIcnrvbzSNFPdK9u1f8zaAAAAAAAAAAAAAAAAAAAAgIeyeur0G3fb8fl+kp/eXqjHVa/5L/diqdiX/20vWTyZXO2nGK0kuf3Sb+U3h7a+az8dMEovoyQHP9w81y4p920w/URAkap8nJ3xT/wZAAD//8Wbezo=")
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000030000000900010073797a300000000040000000030a03000000000000000000030000000900030073797a30000000000900010073797a3000000000140004800800024000000000080001400000000028000000000a01040000000000000000030000000900010073797a3000000000080002400000000114000000110001"], 0xb0}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r2 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000000080)={0x0})
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket(0x10, 0x80003, 0x0)
write(r4, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85)
close_range(r4, 0xffffffffffffffff, 0x0)

1.2104619s ago: executing program 6 (id=2674):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00', r1}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000b28000)=0x3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
fcntl$setsig(r3, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r4}], 0x2c, 0xffffffffffbffff8)
dup2(r3, r4)
fcntl$setown(r3, 0x8, r2)
tkill(r2, 0x13)

1.21023458s ago: executing program 7 (id=2675):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000000)={0x18, 0x0, {0x2, @broadcast, 'ip_vti0\x00'}}, 0x1e)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f00000000c0)={0x18, 0x0, {0x2, @broadcast, 'veth1_virt_wifi\x00'}}, 0x1e)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@minixdf}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r3)
connect$pppoe(r1, &(0x7f0000000340)={0x18, 0x0, {0x0, @multicast, 'macvlan0\x00'}}, 0x1e)

991.479903ms ago: executing program 7 (id=2676):
socket$kcm(0x10, 0x2, 0x0)
socket$inet6(0xa, 0x1, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000240), 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x10, &(0x7f00000008c0)={[{@auto_da_alloc_val}]}, 0x1, 0x58a, &(0x7f0000000b40)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
mknod$loop(&(0x7f0000000300)='./file0\x00', 0x100000000000600d, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="2400000020100103001000000000000002000000000000000a00000008000a"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0)

991.237214ms ago: executing program 6 (id=2677):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x103, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x110022, 0x0, 0xfffffffc, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[], 0x48)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000020000950000000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r5=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r3, r5, 0x25, 0x0, @val=@netfilter}, 0x40)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r5}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

349.306904ms ago: executing program 2 (id=2678):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f00000000c0)={0x41, 0x12}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x41}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x3}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000100)={0x41}, 0x1be)
sendmsg$tipc(r4, &(0x7f0000000240)={&(0x7f0000000080), 0x10, 0x0}, 0x0)

348.558724ms ago: executing program 7 (id=2689):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0x0, 0x17}, 0x400, 0xffffffff, 0x6, 0x6, 0x0, 0x1, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
r3 = socket$kcm(0x10, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$inet(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

347.223754ms ago: executing program 6 (id=2679):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
creat(&(0x7f0000000380)='./file0\x00', 0x80)

274.535605ms ago: executing program 6 (id=2680):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x16)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x38, r3, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x5, 0x2}]}]}]}, 0x38}}, 0x0)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)={0x2c, r3, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6b32}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xf7}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000840)='ext4_allocate_inode\x00', r4, 0x0, 0xf2a7}, 0x18)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000180)="2e00000011008b88040f80ec59acbc0413a1f8480f0000005e2900421803001825000a001400000002800000121f", 0x2e}], 0x1}, 0x0)

263.375395ms ago: executing program 2 (id=2681):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$inet_int(r0, 0x0, 0x21, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x4000)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

145.098367ms ago: executing program 7 (id=2683):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
sendmmsg(r0, &(0x7f00000018c0)=[{{&(0x7f0000000180)=@hci={0x1f, 0x0, 0x4}, 0x80, 0x0, 0x0, &(0x7f00000002c0)=ANY=[], 0x6}}], 0x1, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='ext4_ext_remove_space_done\x00'}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}, 0x1, 0x0, 0x0, 0x4006000}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)

143.877707ms ago: executing program 6 (id=2694):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000004c0)='kfree\x00', r2}, 0x18)
r3 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x108, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x6, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r3)

57.988119ms ago: executing program 2 (id=2684):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r1, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180), 0x0, 0x57, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe0, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000202070250000000000202d437b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000340)='kmem_cache_free\x00', r2}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x0)
pwritev(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r3)
sendfile(r0, r0, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x4, 0x0, 0x1, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x6, 0x7]})
ioctl$LOOP_CLR_FD(r0, 0x4c01)

35.608029ms ago: executing program 6 (id=2685):
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000f80)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r0, 0x0, 0xbed}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000030601c59cc3bf57b43db300000000000500010007"], 0x1c}}, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc90}, [@printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000240)='sched_switch\x00', r2}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x1008a, &(0x7f00000000c0)={[{@nomblk_io_submit}, {@usrjquota, 0x22}, {@errors_continue}, {@noload}, {@mblk_io_submit}, {@grpjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@jqfmt_vfsv1}]}, 0xfe, 0x455, &(0x7f0000000fc0)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

35.416359ms ago: executing program 7 (id=2686):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x3, 0x13, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000900000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000000000bf090000000000005509010000000000852000000300000095"], 0x0, 0x8, 0x0, 0x0, 0x41100, 0x62, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r3}, 0x18)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

0s ago: executing program 9 (id=2687):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x20, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_GET_BYINDEX(r1, 0x0, 0x4800)
syz_open_dev$usbfs(0x0, 0x400000001fc, 0x301)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20000810)
close(r2)
ioctl$KDFONTOP_GET(0xffffffffffffffff, 0x4b72, 0x0)

kernel console output (not intermixed with test programs):

52][ T9557] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  179.331699][ T9557] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  179.342223][ T9557] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  179.352712][ T9557] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  179.363429][ T9557] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  179.373903][ T9557] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  179.384333][ T9557] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  179.399361][ T9483] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  179.437655][ T9483] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  179.581980][ T9566] random: crng reseeded on system resumption
[  179.689464][ T9563] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1941'.
[  179.816773][ T9573] loop8: detected capacity change from 0 to 512
[  179.856397][ T9573] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.884769][ T9483] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.891810][ T9573] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.930145][ T9483] 8021q: adding VLAN 0 to HW filter on device team0
[  179.983519][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.990655][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.028421][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.035575][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.072573][ T9483] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  180.083151][ T9483] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  180.199325][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.200472][ T9483] 8021q: adding VLAN 0 to HW filter on device batadv0
[  180.300393][ T9594] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6 sclass=netlink_route_socket pid=9594 comm=syz.2.1950
[  180.392155][ T9607] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9607 comm=syz.2.1952
[  180.455250][ T9614] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1954'.
[  180.502956][ T9483] veth0_vlan: entered promiscuous mode
[  180.542514][ T9625] netem: change failed
[  180.547360][ T9483] veth1_vlan: entered promiscuous mode
[  180.567423][ T9626] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  180.567423][ T9626] The task syz.2.1956 (9626) triggered the difference, watch for misbehavior.
[  180.608737][ T9483] veth0_macvtap: entered promiscuous mode
[  180.623877][ T9483] veth1_macvtap: entered promiscuous mode
[  180.637084][ T9483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  180.647944][ T9483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.657893][ T9483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  180.668586][ T9483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.669981][ T9632] loop6: detected capacity change from 0 to 2048
[  180.684950][ T9483] batman_adv: batadv0: Interface activated: batadv_slave_0
[  180.698609][ T9483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  180.710657][ T9483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.720619][ T9483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  180.731192][ T9483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.743956][ T9483] batman_adv: batadv0: Interface activated: batadv_slave_1
[  180.754624][ T9632] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.769805][ T9483] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  180.778709][ T9483] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  180.787570][ T9483] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  180.796395][ T9483] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  180.891526][ T9639] loop9: detected capacity change from 0 to 512
[  180.922559][ T9639] EXT4-fs error (device loop9): ext4_orphan_get:1390: inode #15: comm syz.9.1909: casefold flag without casefold feature
[  180.940654][ T9639] EXT4-fs error (device loop9): ext4_orphan_get:1395: comm syz.9.1909: couldn't read orphan inode 15 (err -117)
[  180.954988][ T9639] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.021885][ T6358] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.081835][ T9643] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1962'.
[  181.105992][ T9643] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1962'.
[  181.390881][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.299685][ T9663] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  182.321121][ T9663] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  182.401595][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  182.401595][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  182.415230][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  182.625120][ T9727] veth0_vlan: entered allmulticast mode
[  182.982942][ T9762] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1982'.
[  183.040440][   T29] kauditd_printk_skb: 115 callbacks suppressed
[  183.040456][   T29] audit: type=1400 audit(1744933977.814:12397): avc:  denied  { module_load } for  pid=9760 comm="syz.6.1983" path="/sys/power/wakeup_count" dev="sysfs" ino=216 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  183.287636][ T9789] sd 0:0:1:0: device reset
[  183.298999][ T9789] netlink: 'syz.6.1996': attribute type 10 has an invalid length.
[  184.054826][ T9831] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1990'.
[  184.084674][ T9836] loop8: detected capacity change from 0 to 128
[  184.111715][ T9836] FAT-fs (loop8): Directory bread(block 32) failed
[  184.198175][ T9836] FAT-fs (loop8): Directory bread(block 33) failed
[  184.216467][ T9836] FAT-fs (loop8): Directory bread(block 34) failed
[  184.236219][ T9842] loop7: detected capacity change from 0 to 2048
[  184.244509][ T9836] FAT-fs (loop8): Directory bread(block 35) failed
[  184.251805][ T9836] FAT-fs (loop8): Directory bread(block 36) failed
[  184.258604][ T9836] FAT-fs (loop8): Directory bread(block 37) failed
[  184.265924][ T9836] FAT-fs (loop8): Directory bread(block 38) failed
[  184.274115][ T9842] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  184.275148][ T9836] FAT-fs (loop8): Directory bread(block 39) failed
[  184.292958][ T9836] FAT-fs (loop8): Directory bread(block 40) failed
[  184.301018][ T9836] FAT-fs (loop8): Directory bread(block 41) failed
[  184.368616][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.406486][ T9836] syz.8.1992: attempt to access beyond end of device
[  184.406486][ T9836] loop8: rw=0, sector=4108, nr_sectors = 4 limit=128
[  184.421661][ T9836] FAT-fs (loop8): Filesystem has been set read-only
[  184.428535][ T9836] FAT-fs (loop8): error, fat_free_clusters: deleting FAT entry beyond EOF
[  184.762986][ T9876] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  184.801510][ T9876] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  184.835079][ T9876] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2009'.
[  184.865469][ T9876] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2009'.
[  184.915291][ T9876] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.306223][ T9895] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2014'.
[  185.315427][ T9895] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2014'.
[  185.408066][ T9901] loop7: detected capacity change from 0 to 512
[  185.417585][ T9901] loop7: detected capacity change from 0 to 128
[  185.428223][ T9901] FAT-fs (loop7): Directory bread(block 32) failed
[  185.435307][ T9901] FAT-fs (loop7): Directory bread(block 33) failed
[  185.442302][ T9901] FAT-fs (loop7): Directory bread(block 34) failed
[  185.448923][ T9901] FAT-fs (loop7): Directory bread(block 35) failed
[  185.455691][ T9901] FAT-fs (loop7): Directory bread(block 36) failed
[  185.463038][ T9901] FAT-fs (loop7): Directory bread(block 37) failed
[  185.469754][ T9901] FAT-fs (loop7): Directory bread(block 38) failed
[  185.478341][ T9901] FAT-fs (loop7): Directory bread(block 39) failed
[  185.485111][ T9905] loop9: detected capacity change from 0 to 1024
[  185.486746][ T9901] FAT-fs (loop7): Directory bread(block 40) failed
[  185.498202][ T9901] FAT-fs (loop7): Directory bread(block 41) failed
[  185.512763][ T9905] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  185.588132][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  185.633828][ T9909] pim6reg: entered allmulticast mode
[  185.646970][ T9909] tap0: tun_chr_ioctl cmd 1074025680
[  185.701555][ T9913] loop8: detected capacity change from 0 to 512
[  185.708668][ T9913] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  185.853782][ T9913] EXT4-fs (loop8): 1 truncate cleaned up
[  185.867435][ T9913] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.216946][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.281960][ T9935] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  186.301502][   T29] audit: type=1400 audit(1744933981.064:12398): avc:  denied  { load_policy } for  pid=9927 comm="syz.6.2025" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  186.323969][ T9935] SELinux: failed to load policy
[  186.373509][ T9938] netlink: 'syz.8.2027': attribute type 4 has an invalid length.
[  186.421870][ T9945] IPVS: Error connecting to the multicast addr
[  186.487870][ T9951] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2028'.
[  186.625285][   T29] audit: type=1326 audit(1744933981.394:12399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9966 comm="syz.7.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  186.649060][   T29] audit: type=1326 audit(1744933981.394:12400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9966 comm="syz.7.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  186.672735][   T29] audit: type=1326 audit(1744933981.394:12401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9966 comm="syz.7.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  186.696494][   T29] audit: type=1326 audit(1744933981.394:12402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9966 comm="syz.7.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  186.720070][   T29] audit: type=1326 audit(1744933981.394:12403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9966 comm="syz.7.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  186.743644][   T29] audit: type=1326 audit(1744933981.394:12404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9966 comm="syz.7.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=199 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  186.767749][   T29] audit: type=1326 audit(1744933981.394:12405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9966 comm="syz.7.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  186.791312][   T29] audit: type=1326 audit(1744933981.394:12406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9966 comm="syz.7.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  186.882720][ T9990] loop8: detected capacity change from 0 to 512
[  186.932714][ T9990] EXT4-fs: Ignoring removed nomblk_io_submit option
[  186.997174][ T9990] EXT4-fs: Ignoring removed mblk_io_submit option
[  187.030784][ T9990] EXT4-fs (loop8): Cannot turn on journaled quota: type 0: error -2
[  187.048797][ T9990] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -2
[  187.058683][ T9998] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2034'.
[  187.072940][ T9990] EXT4-fs (loop8): 1 truncate cleaned up
[  187.081482][ T9990] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.135960][ T9990] netlink: 68 bytes leftover after parsing attributes in process `syz.8.2031'.
[  187.154936][ T9990] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  187.438966][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  187.438966][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  187.453197][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  188.158701][T10012] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2040'.
[  188.180437][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.925237][T10021] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.001116][T10021] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.060411][T10021] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.173561][T10028] serio: Serial port ptm0
[  189.195084][   T29] audit: type=1326 audit(1744933983.974:12407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10030 comm="syz.2.2046" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x0
[  189.244370][T10021] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.289564][   T29] audit: type=1400 audit(1744933984.034:12408): avc:  denied  { listen } for  pid=10027 comm="syz.9.2045" path="/17/file0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  189.311480][   T29] audit: type=1326 audit(1744933984.064:12409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.9.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  189.335112][   T29] audit: type=1326 audit(1744933984.064:12410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.9.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  189.358954][   T29] audit: type=1326 audit(1744933984.074:12411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.9.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  189.382665][   T29] audit: type=1326 audit(1744933984.074:12412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.9.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  189.406446][   T29] audit: type=1326 audit(1744933984.074:12413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.9.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  189.431574][   T29] audit: type=1326 audit(1744933984.144:12414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.9.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  189.455389][   T29] audit: type=1326 audit(1744933984.144:12415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.9.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  189.479341][   T29] audit: type=1326 audit(1744933984.144:12416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.9.2048" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  189.533335][T10021] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  189.589449][T10021] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  189.614702][T10044] netlink: 'syz.8.2050': attribute type 4 has an invalid length.
[  189.644282][T10021] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  189.676525][T10021] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  189.805599][T10048] loop7: detected capacity change from 0 to 1764
[  190.074141][T10065] loop7: detected capacity change from 0 to 1024
[  190.097228][T10065] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  190.108324][T10065] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  190.151785][T10065] JBD2: no valid journal superblock found
[  190.157724][T10065] EXT4-fs (loop7): Could not load journal inode
[  190.310868][T10080] hub 2-0:1.0: USB hub found
[  190.329405][T10080] hub 2-0:1.0: 8 ports detected
[  190.386691][T10086] vlan0: entered promiscuous mode
[  190.391946][T10086] bridge0: entered promiscuous mode
[  190.426441][T10090] loop9: detected capacity change from 0 to 512
[  190.585834][T10095] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2069'.
[  190.595029][T10090] EXT4-fs (loop9): too many log groups per flexible block group
[  190.603576][T10090] EXT4-fs (loop9): failed to initialize mballoc (-12)
[  190.677255][T10090] EXT4-fs (loop9): mount failed
[  190.799658][T10088] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2067'.
[  190.822655][T10088] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  190.985105][T10117] syzkaller0: entered promiscuous mode
[  190.990690][T10117] syzkaller0: entered allmulticast mode
[  191.417397][T10129] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  191.491520][T10131] loop2: detected capacity change from 0 to 512
[  191.533487][T10131] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  191.539057][T10133] macsec0: entered promiscuous mode
[  191.560623][T10131] ext4 filesystem being mounted at /449/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.662580][T10131] block device autoloading is deprecated and will be removed.
[  191.694163][T10131] syz.2.2081: attempt to access beyond end of device
[  191.694163][T10131] md34: rw=2048, sector=0, nr_sectors = 8 limit=0
[  191.803208][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  191.811773][T10143] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  192.004144][T10149] loop8: detected capacity change from 0 to 512
[  192.056213][T10149] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.083967][T10145] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2087'.
[  192.095987][T10145] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.103196][T10149] ext4 filesystem being mounted at /213/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  192.117451][T10145] bridge_slave_1 (unregistering): left allmulticast mode
[  192.124926][T10145] bridge_slave_1 (unregistering): left promiscuous mode
[  192.131971][T10145] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.257916][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.289360][T10159] IPVS: Error joining to the multicast group
[  192.392554][T10173] loop9: detected capacity change from 0 to 512
[  192.406955][T10174] loop8: detected capacity change from 0 to 512
[  192.409333][T10173] EXT4-fs: Ignoring removed nobh option
[  192.415892][T10174] EXT4-fs: Ignoring removed orlov option
[  192.430912][T10174] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  192.444054][T10175] loop2: detected capacity change from 0 to 1024
[  192.463321][T10175] EXT4-fs: Ignoring removed orlov option
[  192.469189][T10175] EXT4-fs: Ignoring removed nomblk_io_submit option
[  192.478887][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  192.478887][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  192.480462][T10174] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.492451][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  192.513450][T10169] loop6: detected capacity change from 0 to 8192
[  192.521766][T10173] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -117
[  192.530212][T10169] vfat: Unknown parameter '&ó #ó0»!T—.yÕ„¯÷—Ž£ÎÆ°*Æìì#Ë'
[  192.540407][T10174] ext4 filesystem being mounted at /215/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.551703][T10173] EXT4-fs error (device loop9): ext4_orphan_get:1390: inode #13: comm syz.9.2097: casefold flag without casefold feature
[  192.569576][T10173] EXT4-fs error (device loop9): ext4_orphan_get:1395: comm syz.9.2097: couldn't read orphan inode 13 (err -117)
[  192.599982][T10175] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.614279][T10174] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.631143][T10173] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.656213][T10175] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.712665][T10175] loop2: detected capacity change from 0 to 1024
[  192.739547][T10175] EXT4-fs: Ignoring removed orlov option
[  192.761857][T10175] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.828292][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x4
[  192.836451][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x2
[  192.881844][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.889671][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.897344][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.905190][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.912965][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.920692][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.928547][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.937453][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.945512][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.953258][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.961047][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.968805][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.976519][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.984263][ T9308] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0
[  192.994067][ T9308] hid-generic 0000:3000000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  193.018036][T10181] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  193.383150][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.562339][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.581172][ T9307] IPVS: starting estimator thread 0...
[  193.674039][T10200] IPVS: using max 2256 ests per chain, 112800 per kthread
[  193.726694][T10204] loop9: detected capacity change from 0 to 512
[  193.789242][T10204] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  193.911825][T10204] EXT4-fs (loop9): 1 truncate cleaned up
[  193.945716][T10204] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.983900][T10212] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  193.995379][T10211] IPVS: stopping master sync thread 10212 ...
[  194.114017][T10215] netlink: 'syz.2.2106': attribute type 4 has an invalid length.
[  194.121960][T10215] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2106'.
[  194.143395][T10211] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2105'.
[  194.265973][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.403756][T10234] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.491486][T10241] netlink: 36 bytes leftover after parsing attributes in process `syz.7.2116'.
[  194.531228][T10239] syzkaller0: entered promiscuous mode
[  194.536758][T10239] syzkaller0: entered allmulticast mode
[  194.551993][T10234] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.622261][T10234] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.682048][T10234] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.709302][T10246] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2117'.
[  194.718288][T10246] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2117'.
[  194.737367][T10248] loop2: detected capacity change from 0 to 512
[  194.771299][T10234] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  194.789135][T10248] EXT4-fs: Ignoring removed orlov option
[  194.795196][T10248] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  194.814349][T10234] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  194.826768][T10248] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.841879][T10234] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  194.859600][T10234] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  194.860226][T10248] ext4 filesystem being mounted at /458/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.904349][T10252] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2119'.
[  194.914985][T10252] bridge0: port 3(batadv0) entered disabled state
[  194.922778][T10252] bridge_slave_1: left allmulticast mode
[  194.928450][T10252] bridge_slave_1: left promiscuous mode
[  194.934158][T10252] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.942963][T10248] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.966080][T10252] bridge_slave_0: left allmulticast mode
[  194.971849][T10252] bridge_slave_0: left promiscuous mode
[  194.977671][T10252] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.109907][T10263] loop8: detected capacity change from 0 to 512
[  195.125389][T10263] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  195.159334][ T9702] net_ratelimit: 10 callbacks suppressed
[  195.159354][ T9702] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  195.179111][ T9702] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  195.193228][ T9702] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  195.207368][ T9702] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  195.254697][T10263] EXT4-fs (loop8): 1 truncate cleaned up
[  195.260884][T10263] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.308491][   T29] kauditd_printk_skb: 83 callbacks suppressed
[  195.308526][   T29] audit: type=1400 audit(1744933990.084:12500): avc:  denied  { ioctl } for  pid=10267 comm="syz.9.2126" path="socket:[30869]" dev="sockfs" ino=30869 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  195.516418][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.580930][T10278] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  195.614656][T10278] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  195.733277][ T9669] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  195.747525][ T9669] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  195.762203][ T9669] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  195.776310][ T9669] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  196.165284][T10290] loop2: detected capacity change from 0 to 8192
[  196.399527][ T9669] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  196.413610][ T9669] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  196.654604][T10305] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2138'.
[  196.669270][T10305] hsr_slave_0: left promiscuous mode
[  196.675472][T10305] hsr_slave_1: left promiscuous mode
[  196.977106][T10309] loop9: detected capacity change from 0 to 8192
[  196.995985][T10309] vfat: Unknown parameter '&ó #ó0»!T—.yÕ„¯÷—Ž£ÎÆ°*Æìì#Ë'
[  197.005099][T10311] loop2: detected capacity change from 0 to 128
[  197.013774][T10311] EXT4-fs: Mount option(s) incompatible with ext2
[  197.108477][T10307] netlink: 596 bytes leftover after parsing attributes in process `syz.8.2139'.
[  197.197715][T10321] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2145'.
[  197.319152][   T29] audit: type=1326 audit(1744933992.084:12501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10322 comm="syz.7.2146" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa9ad82e169 code=0x0
[  197.367700][T10328] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2148'.
[  197.415120][T10328] ipip0: entered promiscuous mode
[  197.519402][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  197.519402][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  197.532964][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  197.638206][T10334] loop8: detected capacity change from 0 to 512
[  197.649466][T10334] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  197.662022][T10334] EXT4-fs (loop8): orphan cleanup on readonly fs
[  197.676685][T10334] Quota error (device loop8): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  197.699561][T10334] EXT4-fs warning (device loop8): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  197.737229][T10334] EXT4-fs (loop8): Cannot turn on quotas: error -117
[  197.753198][T10334] EXT4-fs error (device loop8): ext4_orphan_get:1390: inode #16: comm syz.8.2151: casefold flag without casefold feature
[  197.782460][T10334] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.2151: couldn't read orphan inode 16 (err -117)
[  197.845040][T10334] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  198.130726][T10344] loop2: detected capacity change from 0 to 512
[  198.182318][T10344] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.2153: invalid indirect mapped block 11 (level 0)
[  198.247867][T10344] EXT4-fs (loop2): Remounting filesystem read-only
[  198.287123][T10344] EXT4-fs (loop2): 1 truncate cleaned up
[  198.297400][T10344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.318242][T10355] loop7: detected capacity change from 0 to 1024
[  198.355633][T10355] EXT4-fs: Ignoring removed orlov option
[  198.361569][T10355] EXT4-fs: Ignoring removed nomblk_io_submit option
[  198.392506][T10355] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.451604][T10355] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.548312][T10355] loop7: detected capacity change from 0 to 1024
[  198.571453][T10355] EXT4-fs: Ignoring removed orlov option
[  198.600002][T10355] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.889973][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.910198][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.964431][T10371] loop6: detected capacity change from 0 to 512
[  198.991940][T10369] loop8: detected capacity change from 0 to 512
[  199.080258][T10369] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  199.094570][T10371] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  199.130347][T10369] Quota error (device loop8): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  199.141420][T10369] Quota error (device loop8): qtree_read_dquot: Can't read quota structure for id 0
[  199.151282][T10369] EXT4-fs error (device loop8): ext4_acquire_dquot:6935: comm syz.8.2162: Failed to acquire dquot type 0
[  199.172846][T10371] ext4 filesystem being mounted at /264/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.209685][T10369] EXT4-fs warning (device loop8): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  199.245669][T10371] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #19: comm syz.6.2164: corrupted inode contents
[  199.278569][T10371] EXT4-fs error (device loop6): ext4_dirty_inode:6103: inode #19: comm syz.6.2164: mark_inode_dirty error
[  199.296095][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.298956][T10369] EXT4-fs (loop8): 1 truncate cleaned up
[  199.318960][T10369] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.342638][T10371] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #19: comm syz.6.2164: corrupted inode contents
[  199.379677][T10381] loop7: detected capacity change from 0 to 1024
[  199.380672][T10371] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2991: inode #19: comm syz.6.2164: mark_inode_dirty error
[  199.398395][T10369] EXT4-fs error (device loop8): ext4_xattr_block_get:593: inode #15: comm syz.8.2162: corrupted xattr block 19: bad e_name length
[  199.412027][T10371] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2994: inode #19: comm syz.6.2164: mark inode dirty (error -117)
[  199.438233][T10381] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.441490][T10371] EXT4-fs warning (device loop6): ext4_evict_inode:279: xattr delete (err -117)
[  199.461588][T10369] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop8 ino=15
[  199.499547][T10381] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  199.543335][T10369] EXT4-fs error (device loop8): ext4_xattr_block_get:593: inode #15: comm syz.8.2162: corrupted xattr block 19: bad e_name length
[  199.568510][ T6358] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  199.581139][T10381] EXT4-fs (loop7): Remounting filesystem read-only
[  199.587919][T10369] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop8 ino=15
[  199.600689][T10381] EXT4-fs warning (device loop7): ext4_xattr_inode_lookup_create:1597: inode #18: comm syz.7.2165: cleanup dec ref error -28
[  199.615291][T10369] Quota error (device loop8): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  199.615309][   T29] audit: type=1400 audit(1744933994.394:12502): avc:  denied  { rename } for  pid=10368 comm="syz.8.2162" name="file1" dev="loop8" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  199.648179][T10369] Quota error (device loop8): qtree_read_dquot: Can't read quota structure for id 0
[  199.657593][T10369] EXT4-fs error (device loop8): ext4_acquire_dquot:6935: comm syz.8.2162: Failed to acquire dquot type 0
[  199.711448][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.723371][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.776699][T10388] netlink: 'syz.9.2168': attribute type 10 has an invalid length.
[  199.817053][T10388] 8021q: adding VLAN 0 to HW filter on device batadv0
[  199.834746][T10388] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  200.036552][T10402] netlink: 'syz.9.2172': attribute type 4 has an invalid length.
[  200.120521][T10406] netlink: 'syz.9.2172': attribute type 4 has an invalid length.
[  200.250960][T10408] ALSA: seq fatal error: cannot create timer (-19)
[  200.509510][ T9701] net_ratelimit: 372 callbacks suppressed
[  200.509529][ T9701] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  200.529505][ T9701] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  200.543510][ T9701] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  200.557538][ T9701] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  200.652990][T10413] infiniband syz!: set down
[  200.657625][T10413] infiniband syz!: added team_slave_0
[  200.699671][T10413] RDS/IB: syz!: added
[  200.772716][T10413] smc: adding ib device syz! with port count 1
[  200.802543][T10413] smc:    ib device syz! port 1 has pnetid 
[  200.824278][   T29] audit: type=1400 audit(1744933995.604:12503): avc:  denied  { read write } for  pid=10420 comm="syz.9.2178" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  200.848052][   T29] audit: type=1400 audit(1744933995.604:12504): avc:  denied  { open } for  pid=10420 comm="syz.9.2178" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  200.871869][   T29] audit: type=1400 audit(1744933995.604:12505): avc:  denied  { ioctl } for  pid=10420 comm="syz.9.2178" path="/dev/nvram" dev="devtmpfs" ino=98 ioctlcmd=0x7040 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  201.028457][T10434] program syz.6.2184 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  201.080288][ T9702] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  201.094395][ T9702] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  201.108474][ T9702] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  201.122611][ T9702] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  201.144291][T10435] syz_tun: entered allmulticast mode
[  201.151034][T10431] syz_tun: left allmulticast mode
[  201.287940][   T29] audit: type=1326 audit(1744933996.064:12506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.9.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  201.329661][T10441] loop9: detected capacity change from 0 to 4096
[  201.336868][   T29] audit: type=1326 audit(1744933996.094:12507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.9.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  201.360712][   T29] audit: type=1326 audit(1744933996.094:12508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.9.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  201.384432][   T29] audit: type=1326 audit(1744933996.094:12509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.9.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  201.408137][   T29] audit: type=1326 audit(1744933996.094:12510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.9.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  201.431912][   T29] audit: type=1326 audit(1744933996.094:12511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.9.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3ce2e2e169 code=0x7ffc0000
[  201.433531][T10441] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.455758][   T29] audit: type=1326 audit(1744933996.094:12512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.9.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3ce2e2e1a3 code=0x7ffc0000
[  201.572768][T10447] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2189'.
[  201.596419][T10451] loop6: detected capacity change from 0 to 1024
[  201.620414][T10451] EXT4-fs: Ignoring removed nobh option
[  201.626237][T10451] EXT4-fs: Ignoring removed bh option
[  201.641310][ T9696] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  201.655405][ T9696] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  201.702102][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.720825][T10451] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.738829][T10451] SELinux:  Context system_u:object_r:man_t:s0 is not valid (left unmapped).
[  201.801494][ T6358] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.904512][T10469] wg2: entered promiscuous mode
[  201.909492][T10469] wg2: entered allmulticast mode
[  201.915187][T10472] loop7: detected capacity change from 0 to 16384
[  201.991127][T10470] syzkaller0: entered promiscuous mode
[  201.996728][T10470] syzkaller0: entered allmulticast mode
[  202.179821][T10475] loop7: detected capacity change from 16384 to 16383
[  202.186921][T10472] I/O error, dev loop7, sector 7944 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[  202.221250][T10475] I/O error, dev loop7, sector 5632 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  202.231392][T10475] Buffer I/O error on dev loop7, logical block 704, lost async page write
[  202.240696][T10475] Buffer I/O error on dev loop7, logical block 705, lost async page write
[  202.249267][T10475] Buffer I/O error on dev loop7, logical block 706, lost async page write
[  202.257803][T10475] Buffer I/O error on dev loop7, logical block 707, lost async page write
[  202.266413][T10475] Buffer I/O error on dev loop7, logical block 708, lost async page write
[  202.275617][T10475] Buffer I/O error on dev loop7, logical block 709, lost async page write
[  202.284239][T10475] Buffer I/O error on dev loop7, logical block 710, lost async page write
[  202.292886][T10475] Buffer I/O error on dev loop7, logical block 711, lost async page write
[  202.299031][T10472] I/O error, dev loop7, sector 7944 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.302248][T10475] Buffer I/O error on dev loop7, logical block 712, lost async page write
[  202.338864][T10472] I/O error, dev loop7, sector 7944 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.394381][T10475] I/O error, dev loop7, sector 6656 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  202.450969][T10475] I/O error, dev loop7, sector 7680 op 0x1:(WRITE) flags 0x800 phys_seg 32 prio class 0
[  202.493490][T10475] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.523570][T10475] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.532941][T10475]  loop7: unable to read partition table
[  202.556328][T10475] loop_reread_partitions: partition scan of loop7 ((õÉêä¾A«ÒÚi½åŒ×¯@ýpªÁ.½[ºvcÄ5¯ùG“Ýתà~ó_¿
“;Ûo×ìÝ‘µœ¨Õ) failed (rc=-5)
[  202.592523][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  202.592523][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  202.606162][ T9346] buffer_io_error: 283 callbacks suppressed
[  202.606174][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  202.660682][T10471] I/O error, dev loop7, sector 7936 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[  202.670813][T10471] Buffer I/O error on dev loop7, logical block 992, lost async page write
[  203.428275][T10506] loop8: detected capacity change from 0 to 512
[  203.471460][T10506] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #3: comm syz.8.2211: corrupted inode contents
[  203.491483][T10506] EXT4-fs error (device loop8): ext4_dirty_inode:6103: inode #3: comm syz.8.2211: mark_inode_dirty error
[  203.515937][T10506] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #3: comm syz.8.2211: corrupted inode contents
[  203.536233][T10504] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.547524][T10506] EXT4-fs error (device loop8): __ext4_ext_dirty:207: inode #3: comm syz.8.2211: mark_inode_dirty error
[  203.574834][T10506] EXT4-fs error (device loop8): ext4_acquire_dquot:6935: comm syz.8.2211: Failed to acquire dquot type 0
[  203.588446][T10506] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #16: comm syz.8.2211: corrupted inode contents
[  203.608490][T10506] EXT4-fs error (device loop8): ext4_dirty_inode:6103: inode #16: comm syz.8.2211: mark_inode_dirty error
[  203.621770][T10506] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #16: comm syz.8.2211: corrupted inode contents
[  203.634116][T10506] EXT4-fs error (device loop8): __ext4_ext_dirty:207: inode #16: comm syz.8.2211: mark_inode_dirty error
[  203.647167][T10506] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #16: comm syz.8.2211: corrupted inode contents
[  203.661740][T10504] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.661769][T10506] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem
[  203.683724][T10506] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #16: comm syz.8.2211: corrupted inode contents
[  203.712896][T10506] EXT4-fs error (device loop8): ext4_truncate:4255: inode #16: comm syz.8.2211: mark_inode_dirty error
[  203.730264][T10506] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem
[  203.772513][T10506] EXT4-fs (loop8): 1 truncate cleaned up
[  203.783628][T10504] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.790430][T10506] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.820217][T10506] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.850823][T10504] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.927911][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.930369][T10504] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  204.026621][T10504] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  204.091868][T10504] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  204.222558][T10520] loop9: detected capacity change from 0 to 512
[  204.270917][T10520] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  204.327992][T10504] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  204.434618][T10520] EXT4-fs (loop9): 1 truncate cleaned up
[  204.476608][T10520] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.917301][T10525] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2216'.
[  205.037681][T10529] loop7: detected capacity change from 0 to 2048
[  205.522365][T10540] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2221'.
[  205.581492][T10541] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2221'.
[  205.747383][ T9701] net_ratelimit: 26 callbacks suppressed
[  205.747402][ T9701] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  205.767557][ T9701] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  205.781691][ T9701] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  205.795805][ T9701] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  205.833452][T10529]  loop7: p1 < > p3
[  205.838869][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.916275][T10529] loop7: p3 size 134217728 extends beyond EOD, truncated
[  206.002684][   T29] kauditd_printk_skb: 119 callbacks suppressed
[  206.002701][   T29] audit: type=1400 audit(1744934000.784:12630): avc:  denied  { ioctl } for  pid=10554 comm="syz.9.2226" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  206.099373][T10559] serio: Serial port ptm0
[  206.136563][T10561] netlink: 'syz.7.2228': attribute type 4 has an invalid length.
[  206.144651][T10561] netlink: 152 bytes leftover after parsing attributes in process `syz.7.2228'.
[  206.179246][T10557] loop6: detected capacity change from 0 to 8192
[  206.196913][T10557] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  206.228490][T10557] netlink: 'syz.6.2227': attribute type 27 has an invalid length.
[  206.260981][T10557] ip6gretap0: left promiscuous mode
[  206.266331][T10557] ip6gretap0: left allmulticast mode
[  206.276111][T10557] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.302524][T10557] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  206.313252][T10557] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  206.323783][ T9698] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  206.338159][ T9698] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  206.352473][ T9698] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  206.366669][ T9698] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  206.389847][T10557] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.398292][T10557] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.406799][T10557] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.415343][T10557] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.661434][T10582] loop7: detected capacity change from 0 to 512
[  206.664067][T10580] loop6: detected capacity change from 0 to 4096
[  206.682055][T10580] EXT4-fs: Ignoring removed nomblk_io_submit option
[  206.700617][T10580] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.731917][   T29] audit: type=1400 audit(1744934001.514:12631): avc:  denied  { read write } for  pid=10577 comm="syz.6.2235" name="file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  206.755057][   T29] audit: type=1400 audit(1744934001.514:12632): avc:  denied  { open } for  pid=10577 comm="syz.6.2235" path="/277/file1/file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  206.826754][ T6358] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.889809][T10582] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.929296][ T9698] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  206.943444][ T9698] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  207.004450][T10582] ext4 filesystem being mounted at /271/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  207.054219][T10593] loop9: detected capacity change from 0 to 256
[  207.092065][T10595] loop6: detected capacity change from 0 to 512
[  207.208426][T10597] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2239'.
[  207.218115][T10597] netlink: 6 bytes leftover after parsing attributes in process `syz.9.2239'.
[  207.309796][T10595] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.327883][T10595] ext4 filesystem being mounted at /279/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  207.341232][T10582] EXT4-fs error (device loop7): ext4_xattr_block_get:593: inode #15: comm syz.7.2236: corrupted xattr block 33: bad e_name length
[  207.356069][T10582] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop7 ino=15
[  207.367327][T10582] EXT4-fs error (device loop7): ext4_xattr_block_get:593: inode #15: comm syz.7.2236: corrupted xattr block 33: bad e_name length
[  207.383920][   T29] audit: type=1326 audit(1744934002.164:12633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10594 comm="syz.6.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  207.410069][T10603] dummy0 speed is unknown, defaulting to 1000
[  207.416213][T10603] dummy0 speed is unknown, defaulting to 1000
[  207.429906][T10603] dummy0 speed is unknown, defaulting to 1000
[  207.437067][T10603] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  207.443775][   T29] audit: type=1326 audit(1744934002.164:12634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10594 comm="syz.6.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  207.467939][   T29] audit: type=1326 audit(1744934002.164:12635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10594 comm="syz.6.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  207.469260][T10582] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop7 ino=15
[  207.492563][   T29] audit: type=1326 audit(1744934002.164:12636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10594 comm="syz.6.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  207.525390][   T29] audit: type=1326 audit(1744934002.164:12637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10594 comm="syz.6.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  207.539138][T10582] EXT4-fs error (device loop7): ext4_xattr_block_get:593: inode #15: comm syz.7.2236: corrupted xattr block 33: bad e_name length
[  207.550321][   T29] audit: type=1326 audit(1744934002.164:12638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10594 comm="syz.6.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  207.587467][   T29] audit: type=1326 audit(1744934002.164:12639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10594 comm="syz.6.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  207.618741][T10603] dummy0 speed is unknown, defaulting to 1000
[  207.619703][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  207.619703][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  207.627289][T10603] dummy0 speed is unknown, defaulting to 1000
[  207.638564][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  207.655296][T10582] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop7 ino=15
[  207.668551][T10603] dummy0 speed is unknown, defaulting to 1000
[  207.675819][T10603] dummy0 speed is unknown, defaulting to 1000
[  207.682650][ T6358] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.710473][T10603] dummy0 speed is unknown, defaulting to 1000
[  207.722447][T10603] dummy0 speed is unknown, defaulting to 1000
[  207.750363][T10610] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2243'.
[  207.760758][T10610] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  207.791907][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.910019][T10622] loop8: detected capacity change from 0 to 512
[  207.948727][T10625] loop6: detected capacity change from 0 to 1024
[  207.961340][T10622] EXT4-fs error (device loop8): ext4_acquire_dquot:6935: comm syz.8.2248: Failed to acquire dquot type 1
[  207.990539][T10625] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.2249: Failed to acquire dquot type 0
[  208.020385][T10622] EXT4-fs (loop8): 1 truncate cleaned up
[  208.039006][T10625] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  208.059966][T10622] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.078896][T10625] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #13: comm syz.6.2249: corrupted inode contents
[  208.108873][T10622] ext4 filesystem being mounted at /246/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.138855][T10625] EXT4-fs error (device loop6): ext4_dirty_inode:6103: inode #13: comm syz.6.2249: mark_inode_dirty error
[  208.194764][T10622] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  208.208994][T10625] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #13: comm syz.6.2249: corrupted inode contents
[  208.257500][T10636] random: crng reseeded on system resumption
[  208.269310][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.337124][T10639] loop8: detected capacity change from 0 to 256
[  208.370236][T10625] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #13: comm syz.6.2249: mark_inode_dirty error
[  208.416598][T10625] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #13: comm syz.6.2249: corrupted inode contents
[  208.461925][T10640] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  208.502443][T10625] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  208.502652][T10638] tipc: Resetting bearer <eth:syzkaller0>
[  208.545753][T10625] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #13: comm syz.6.2249: corrupted inode contents
[  208.604082][T10625] EXT4-fs error (device loop6): ext4_truncate:4255: inode #13: comm syz.6.2249: mark_inode_dirty error
[  208.629610][T10625] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  208.658373][T10638] tipc: Disabling bearer <eth:syzkaller0>
[  208.666768][T10625] EXT4-fs (loop6): 1 truncate cleaned up
[  208.675778][T10643] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2255'.
[  208.714596][T10646] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2257'.
[  208.770133][T10625] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.847092][T10625] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2249'.
[  208.900832][ T6358] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.974041][T10673] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.048139][T10673] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.124681][T10680] IPVS: Error connecting to the multicast addr
[  209.133570][T10673] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.198570][T10681] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2267'.
[  209.216868][T10680] dummy0 speed is unknown, defaulting to 1000
[  209.226099][T10673] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.289562][T10673] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  209.302255][T10673] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  209.315758][T10673] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  209.328034][T10673] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  209.464660][T10693] loop8: detected capacity change from 0 to 512
[  209.474717][T10693] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  209.483752][T10689] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2269'.
[  209.507509][T10693] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.525096][T10697] loop6: detected capacity change from 0 to 128
[  209.573152][T10697] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  209.588534][T10693] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  209.588925][T10689] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2269'.
[  209.608605][T10697] ext4 filesystem being mounted at /285/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  209.647231][T10693] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.2271: bg 0: block 304: padding at end of block bitmap is not set
[  209.705098][T10693] EXT4-fs (loop8): Remounting filesystem read-only
[  209.869669][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.058572][T10719] netlink: 'syz.8.2281': attribute type 3 has an invalid length.
[  210.476700][T10736] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2282'.
[  210.557010][T10741] loop8: detected capacity change from 0 to 512
[  210.628379][T10741] EXT4-fs error (device loop8): ext4_orphan_get:1390: inode #15: comm syz.8.2288: casefold flag without casefold feature
[  210.706825][T10741] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.2288: couldn't read orphan inode 15 (err -117)
[  210.757044][T10741] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.924615][ T6358] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  211.048713][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.083293][ T9666] net_ratelimit: 31 callbacks suppressed
[  211.083311][ T9666] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  211.103305][ T9666] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  211.117418][ T9666] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  211.131548][ T9666] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  211.201367][T10753] delete_channel: no stack
[  211.260547][   T29] kauditd_printk_skb: 79 callbacks suppressed
[  211.260564][   T29] audit: type=1326 audit(1744934006.044:12713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.370208][   T29] audit: type=1326 audit(1744934006.074:12714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.394078][   T29] audit: type=1326 audit(1744934006.074:12715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.417812][   T29] audit: type=1326 audit(1744934006.074:12716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.441485][   T29] audit: type=1326 audit(1744934006.074:12717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.465297][   T29] audit: type=1326 audit(1744934006.084:12718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.488926][   T29] audit: type=1326 audit(1744934006.084:12719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.512664][   T29] audit: type=1326 audit(1744934006.084:12720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.536175][   T29] audit: type=1326 audit(1744934006.084:12721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.542977][T10760] dummy0 speed is unknown, defaulting to 1000
[  211.559939][   T29] audit: type=1326 audit(1744934006.084:12722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10755 comm="syz.2.2294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  211.659438][ T9666] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  211.673631][ T9666] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  211.687761][ T9666] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  211.702478][ T9666] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  211.839815][T10768] loop7: detected capacity change from 0 to 1024
[  211.851860][T10768] EXT4-fs: Ignoring removed bh option
[  211.923278][T10768] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.947337][T10775] syzkaller0: entered promiscuous mode
[  211.953739][T10775] syzkaller0: entered allmulticast mode
[  212.036884][T10768] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4113: comm syz.7.2298: Allocating blocks 497-513 which overlap fs metadata
[  212.062154][T10768] EXT4-fs (loop7): pa ffff888104e67b60: logic 256, phys. 385, len 8
[  212.070332][T10768] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  212.218850][ T9698] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  212.233010][ T9698] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  212.239984][T10791] loop6: detected capacity change from 0 to 8192
[  212.270412][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.370446][T10799] __nla_validate_parse: 1 callbacks suppressed
[  212.370529][T10799] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2309'.
[  212.394633][T10799] ip6gre1: entered allmulticast mode
[  212.492409][T10806] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2313'.
[  212.561436][T10810] loop9: detected capacity change from 0 to 128
[  212.593301][T10810] syz.9.2314: attempt to access beyond end of device
[  212.593301][T10810] loop9: rw=0, sector=2065, nr_sectors = 1 limit=128
[  212.606713][T10810] Buffer I/O error on dev loop9, logical block 2065, async page read
[  212.629581][T10810] syz.9.2314: attempt to access beyond end of device
[  212.629581][T10810] loop9: rw=0, sector=2066, nr_sectors = 1 limit=128
[  212.642997][T10810] Buffer I/O error on dev loop9, logical block 2066, async page read
[  212.649057][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  212.649057][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  212.664637][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  212.666456][T10810] syz.9.2314: attempt to access beyond end of device
[  212.666456][T10810] loop9: rw=0, sector=2067, nr_sectors = 1 limit=128
[  212.686367][T10810] Buffer I/O error on dev loop9, logical block 2067, async page read
[  212.699567][T10810] syz.9.2314: attempt to access beyond end of device
[  212.699567][T10810] loop9: rw=0, sector=2068, nr_sectors = 1 limit=128
[  212.712944][T10810] Buffer I/O error on dev loop9, logical block 2068, async page read
[  212.775307][T10822] netlink: 'syz.7.2319': attribute type 13 has an invalid length.
[  212.791406][T10810] syz.9.2314: attempt to access beyond end of device
[  212.791406][T10810] loop9: rw=0, sector=2069, nr_sectors = 1 limit=128
[  212.804917][T10810] Buffer I/O error on dev loop9, logical block 2069, async page read
[  212.829919][T10810] syz.9.2314: attempt to access beyond end of device
[  212.829919][T10810] loop9: rw=0, sector=2070, nr_sectors = 1 limit=128
[  212.843945][T10810] Buffer I/O error on dev loop9, logical block 2070, async page read
[  212.852691][T10810] syz.9.2314: attempt to access beyond end of device
[  212.852691][T10810] loop9: rw=0, sector=2071, nr_sectors = 1 limit=128
[  212.866016][T10810] Buffer I/O error on dev loop9, logical block 2071, async page read
[  212.888871][T10810] syz.9.2314: attempt to access beyond end of device
[  212.888871][T10810] loop9: rw=0, sector=2072, nr_sectors = 1 limit=128
[  212.902933][T10810] Buffer I/O error on dev loop9, logical block 2072, async page read
[  212.935334][T10810] syz.9.2314: attempt to access beyond end of device
[  212.935334][T10810] loop9: rw=0, sector=2065, nr_sectors = 1 limit=128
[  212.948677][T10810] Buffer I/O error on dev loop9, logical block 2065, async page read
[  212.960461][T10822] batman_adv: batadv0: Interface deactivated: dummy0
[  212.973464][T10810] syz.9.2314: attempt to access beyond end of device
[  212.973464][T10810] loop9: rw=0, sector=2066, nr_sectors = 1 limit=128
[  212.986970][T10810] Buffer I/O error on dev loop9, logical block 2066, async page read
[  213.030159][T10822] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  213.047795][T10822] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  213.067391][T10822] netdevsim netdevsim7 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  213.075932][T10822] netdevsim netdevsim7 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  213.084391][T10822] netdevsim netdevsim7 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  213.092858][T10822] netdevsim netdevsim7 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  213.170085][T10832] netlink: 'syz.6.2322': attribute type 10 has an invalid length.
[  213.177961][T10832] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2322'.
[  213.187175][T10832] dummy0: entered promiscuous mode
[  213.193280][T10832] bridge0: port 2(dummy0) entered blocking state
[  213.200578][T10832] bridge0: port 2(dummy0) entered disabled state
[  213.210716][T10832] dummy0: entered allmulticast mode
[  213.553975][T10840] netlink: 'syz.9.2325': attribute type 4 has an invalid length.
[  213.716918][T10846] loop8: detected capacity change from 0 to 2048
[  213.763310][T10846] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.076510][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.120077][T10856] program syz.7.2330 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  214.192036][T10861] loop7: detected capacity change from 0 to 128
[  214.323030][T10861] FAT-fs (loop7): Directory bread(block 32) failed
[  214.329851][T10861] FAT-fs (loop7): Directory bread(block 33) failed
[  214.372921][T10861] FAT-fs (loop7): Directory bread(block 34) failed
[  214.398910][T10861] FAT-fs (loop7): Directory bread(block 35) failed
[  214.424027][T10861] FAT-fs (loop7): Directory bread(block 36) failed
[  214.475551][T10861] FAT-fs (loop7): Directory bread(block 37) failed
[  214.483848][T10861] FAT-fs (loop7): Directory bread(block 38) failed
[  214.568319][T10861] FAT-fs (loop7): Directory bread(block 39) failed
[  214.623988][T10861] FAT-fs (loop7): Directory bread(block 40) failed
[  214.643433][T10861] FAT-fs (loop7): Directory bread(block 41) failed
[  215.160642][T10861] FAT-fs (loop7): Filesystem has been set read-only
[  215.185863][T10861] FAT-fs (loop7): error, fat_free_clusters: deleting FAT entry beyond EOF
[  215.214256][T10889] bridge0: entered allmulticast mode
[  215.361083][T10899] tipc: Started in network mode
[  215.366105][T10899] tipc: Node identity c626383b7fb9, cluster identity 4711
[  215.374112][T10899] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  215.503144][T10931] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2344'.
[  215.516158][T10901] syzkaller0: entered promiscuous mode
[  215.522479][T10901] syzkaller0: entered allmulticast mode
[  215.563101][T10934] 
€Â: renamed from syzkaller0
[  215.571675][T10934] tipc: Disabling bearer <eth:syzkaller0>
[  215.670445][T10943] loop9: detected capacity change from 0 to 2048
[  215.711365][T10943] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.831061][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.895414][T10958] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2350'.
[  216.026711][T10962] syzkaller0: entered promiscuous mode
[  216.032392][T10962] syzkaller0: entered allmulticast mode
[  216.234011][T11002] net_ratelimit: 7 callbacks suppressed
[  216.234029][T11002] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  216.286571][T11008] loop6: detected capacity change from 0 to 1024
[  216.312495][T11008] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  216.365690][ T6358] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  216.394835][   T29] kauditd_printk_skb: 28 callbacks suppressed
[  216.394854][   T29] audit: type=1326 audit(1744934011.174:12751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  216.429686][T11023] loop6: detected capacity change from 0 to 164
[  216.436901][   T29] audit: type=1326 audit(1744934011.204:12752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  216.460690][   T29] audit: type=1326 audit(1744934011.204:12753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  216.484566][   T29] audit: type=1326 audit(1744934011.204:12754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc28481e169 code=0x7ffc0000
[  216.508349][   T29] audit: type=1326 audit(1744934011.204:12755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc28481e1a3 code=0x7ffc0000
[  216.520446][T11023] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  216.531784][   T29] audit: type=1326 audit(1744934011.204:12756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc28481cc1f code=0x7ffc0000
[  216.531822][   T29] audit: type=1326 audit(1744934011.214:12757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fc28481e1f7 code=0x7ffc0000
[  216.587177][   T29] audit: type=1326 audit(1744934011.214:12758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc28481cad0 code=0x7ffc0000
[  216.611019][   T29] audit: type=1326 audit(1744934011.214:12759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc28481dd6b code=0x7ffc0000
[  216.634848][   T29] audit: type=1326 audit(1744934011.214:12760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11022 comm="syz.6.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc28481cdca code=0x7ffc0000
[  216.686614][T11023] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  216.869984][T11061] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2363'.
[  216.893539][T11069] netlink: 'syz.7.2364': attribute type 4 has an invalid length.
[  216.949208][T11075] loop9: detected capacity change from 0 to 512
[  217.006896][T11075] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  217.078951][T11081] Falling back ldisc for ttyS3.
[  217.092257][T11075] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.093147][T11086] netlink: 'syz.6.2370': attribute type 13 has an invalid length.
[  217.190923][T11088] netlink: 'syz.2.2369': attribute type 12 has an invalid length.
[  217.218710][T11092] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #19: comm syz.9.2366: corrupted inode contents
[  217.249861][T11090] netlink: 'syz.7.2371': attribute type 27 has an invalid length.
[  217.262670][T11090] ip6gretap0: left promiscuous mode
[  217.268645][T11092] EXT4-fs error (device loop9): ext4_dirty_inode:6103: inode #19: comm syz.9.2366: mark_inode_dirty error
[  217.272890][T11090] ip6gretap0: left allmulticast mode
[  217.295265][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2372'.
[  217.304300][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2372'.
[  217.331650][T11092] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #19: comm syz.9.2366: corrupted inode contents
[  217.332995][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2372'.
[  217.370371][T11092] EXT4-fs error (device loop9): ext4_xattr_delete_inode:2991: inode #19: comm syz.9.2366: mark_inode_dirty error
[  217.378147][T11090] batadv0: left promiscuous mode
[  217.389236][T11090] batadv0: left allmulticast mode
[  217.402449][T11092] EXT4-fs error (device loop9): ext4_xattr_delete_inode:2994: inode #19: comm syz.9.2366: mark inode dirty (error -117)
[  217.419036][T11090] geneve0: left allmulticast mode
[  217.425851][T11090] gtp0: left promiscuous mode
[  217.432822][T11092] EXT4-fs warning (device loop9): ext4_evict_inode:279: xattr delete (err -117)
[  217.441097][T11090] bridge3: left allmulticast mode
[  217.467169][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2372'.
[  217.476137][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2372'.
[  217.518839][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2372'.
[  217.524545][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  217.608573][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2372'.
[  217.617582][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2372'.
[  217.648956][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2372'.
[  217.700331][ T9346] bio_check_eod: 7 callbacks suppressed
[  217.700349][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  217.700349][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  217.720119][ T9346] buffer_io_error: 6 callbacks suppressed
[  217.720134][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  217.794008][T11134] loop7: detected capacity change from 0 to 2048
[  217.811509][T11134] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.925656][T11128] dummy0 speed is unknown, defaulting to 1000
[  218.044081][T11138] dummy0 speed is unknown, defaulting to 1000
[  218.256653][T11186] loop7: detected capacity change from 0 to 256
[  218.357753][T11192] netdevsim netdevsim9 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.513818][T11192] netdevsim netdevsim9 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.594161][T11192] netdevsim netdevsim9 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.696125][T11192] netdevsim netdevsim9 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.781890][T11192] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  218.802678][T11192] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  218.912633][T11192] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  218.949973][T11192] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  219.178295][T11236] netlink: 'syz.7.2396': attribute type 4 has an invalid length.
[  219.421529][T11243] loop6: detected capacity change from 0 to 128
[  219.445265][T11243] FAT-fs (loop6): Directory bread(block 32) failed
[  219.445291][T11243] FAT-fs (loop6): Directory bread(block 33) failed
[  219.445315][T11243] FAT-fs (loop6): Directory bread(block 34) failed
[  219.445335][T11243] FAT-fs (loop6): Directory bread(block 35) failed
[  219.445420][T11243] FAT-fs (loop6): Directory bread(block 36) failed
[  219.445449][T11243] FAT-fs (loop6): Directory bread(block 37) failed
[  219.445473][T11243] FAT-fs (loop6): Directory bread(block 38) failed
[  219.445491][T11243] FAT-fs (loop6): Directory bread(block 39) failed
[  219.445514][T11243] FAT-fs (loop6): Directory bread(block 40) failed
[  219.445606][T11243] FAT-fs (loop6): Directory bread(block 41) failed
[  219.519138][T11243] syz.6.2398: attempt to access beyond end of device
[  219.519138][T11243] loop6: rw=0, sector=4108, nr_sectors = 4 limit=128
[  219.520998][T11243] FAT-fs (loop6): Filesystem has been set read-only
[  219.521039][T11243] FAT-fs (loop6): error, fat_free_clusters: deleting FAT entry beyond EOF
[  219.914759][T11259] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  219.922879][T11254] dummy0 speed is unknown, defaulting to 1000
[  219.938553][T11259] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  219.973262][T11261] netdevsim netdevsim9 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.017697][T11261] netdevsim netdevsim9 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.061246][T11261] netdevsim netdevsim9 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.129895][T11261] netdevsim netdevsim9 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.728407][T11352] loop6: detected capacity change from 0 to 1024
[  221.757178][T11352] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  221.768210][T11352] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  221.815474][T11353] loop7: detected capacity change from 0 to 512
[  221.822228][T11352] JBD2: no valid journal superblock found
[  221.827999][T11352] EXT4-fs (loop6): Could not load journal inode
[  221.834576][T11353] EXT4-fs: Ignoring removed nomblk_io_submit option
[  221.880600][T11353] EXT4-fs: Ignoring removed mblk_io_submit option
[  221.930612][T11353] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[  222.024221][T11353] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -2
[  222.138866][T11353] EXT4-fs (loop7): 1 truncate cleaned up
[  222.197772][T11353] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  222.566077][   T29] kauditd_printk_skb: 35 callbacks suppressed
[  222.566094][   T29] audit: type=1400 audit(1744934017.344:12796): avc:  denied  { bind } for  pid=11358 comm="syz.6.2420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  222.626290][T11361] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2421'.
[  222.733190][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  222.733190][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  222.746877][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  222.925992][ T6364] EXT4-fs unmount: 2 callbacks suppressed
[  222.926012][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.394803][T11261] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  223.445977][T11261] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  223.457513][T11261] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  223.469719][T11261] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  223.692137][T11391] loop8: detected capacity change from 0 to 1024
[  223.712527][T11391] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.851200][T11367] EXT4-fs error (device loop8): ext4_lookup:1781: inode #2: comm syz.8.2425: bad inode number: 15
[  223.872026][T11367] EXT4-fs (loop8): Remounting filesystem read-only
[  223.962648][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.003755][T11425] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  224.095795][T11434] loop8: detected capacity change from 0 to 8192
[  224.198502][T11453] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.301790][T11453] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.430081][T11459] dummy0 speed is unknown, defaulting to 1000
[  224.521823][T11453] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.580452][T11453] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.648856][T11453] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  224.662331][T11453] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  224.674315][T11453] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  224.692187][T11453] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  224.804671][T11505] loop9: detected capacity change from 0 to 1024
[  224.813827][T11505] EXT4-fs: Ignoring removed nobh option
[  224.835909][T11505] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.891488][T11505] EXT4-fs (loop9): shut down requested (0)
[  224.962115][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.975650][T11513] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  225.079919][T11519] netdevsim netdevsim9 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.140300][T11517] loop6: detected capacity change from 0 to 8192
[  225.161228][T11519] netdevsim netdevsim9 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.291517][T11519] netdevsim netdevsim9 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.350699][T11519] netdevsim netdevsim9 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.083315][   T29] audit: type=1326 audit(1744934020.864:12797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11664 comm="syz.7.2455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  226.138300][   T29] audit: type=1326 audit(1744934020.884:12798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11664 comm="syz.7.2455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  226.162636][   T29] audit: type=1326 audit(1744934020.884:12799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11664 comm="syz.7.2455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  226.186364][   T29] audit: type=1326 audit(1744934020.884:12800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11664 comm="syz.7.2455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  226.210548][   T29] audit: type=1326 audit(1744934020.894:12801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11664 comm="syz.7.2455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  226.234333][   T29] audit: type=1326 audit(1744934020.894:12802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11664 comm="syz.7.2455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  226.259050][   T29] audit: type=1326 audit(1744934020.894:12803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11664 comm="syz.7.2455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  226.282706][   T29] audit: type=1326 audit(1744934020.894:12804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11664 comm="syz.7.2455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  226.307073][   T29] audit: type=1326 audit(1744934020.894:12805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11664 comm="syz.7.2455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  226.650900][T11671] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2456'.
[  228.218849][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  228.218849][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  228.232460][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  228.766738][T11519] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  228.780719][T11519] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  228.805737][T11519] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  228.836233][T11519] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  228.885742][T11693] SELinux: syz.7.2476 (11693) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  228.904300][T11696] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.001163][T11696] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.081430][T11696] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.140230][T11696] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.218599][T11696] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  229.231717][T11696] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  229.245143][T11696] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  229.257479][T11696] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  229.745981][T11809] netlink: 'syz.9.2475': attribute type 4 has an invalid length.
[  229.803052][T11817] loop8: detected capacity change from 0 to 1024
[  229.815059][T11817] EXT4-fs: Ignoring removed nobh option
[  229.918068][T11817] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.918453][T11834] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.969828][T11840] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2482'.
[  229.988968][T11817] EXT4-fs (loop8): shut down requested (0)
[  230.007562][T11817] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  230.036132][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.077373][T11834] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.099127][T11840] netdevsim netdevsim9 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.132789][T11848] SELinux: syz.8.2484 (11848) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  230.152586][T11834] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.172321][T11840] netdevsim netdevsim9 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.210331][T11834] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.373777][T11840] netdevsim netdevsim9 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.894757][T11840] netdevsim netdevsim9 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.172741][T11834] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  231.201353][T11870] ref_ctr_offset mismatch. inode: 0x600 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa
[  231.219587][T11870] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: 0, delta: -1
[  231.222656][T11834] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  231.227968][T11870] ref_ctr decrement failed for inode: 0x600 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff888108354200
[  231.256043][T11834] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  231.275529][T11834] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  231.277460][T11870] uprobe: syz.8.2492:11870 failed to unregister, leaking uprobe
[  231.301935][   T29] kauditd_printk_skb: 18 callbacks suppressed
[  231.301953][   T29] audit: type=1400 audit(1744934026.084:12824): avc:  denied  { mount } for  pid=11871 comm="syz.6.2493" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  231.355643][   T29] audit: type=1400 audit(1744934026.134:12825): avc:  denied  { unmount } for  pid=6358 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  231.418812][   T29] audit: type=1400 audit(1744934026.194:12826): avc:  denied  { kexec_image_load } for  pid=11875 comm="syz.2.2506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  231.467114][T11880] loop6: detected capacity change from 0 to 1024
[  231.473946][T11880] EXT4-fs: Ignoring removed nobh option
[  231.521463][T11880] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.539953][T11884] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2498'.
[  231.551706][T11880] EXT4-fs (loop6): shut down requested (0)
[  231.579156][ T6358] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.596974][T11884] veth0_to_bridge: left allmulticast mode
[  231.603593][T11884] veth0_to_bridge: left promiscuous mode
[  231.609618][T11884] bridge0: port 1(veth0_to_bridge) entered disabled state
[  231.609638][T11889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  231.609693][T11889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  231.992306][T11894] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2503'.
[  232.004424][T11894] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  233.358382][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  233.358382][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  233.372018][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  233.420566][T11910] loop6: detected capacity change from 0 to 512
[  233.452066][T11910] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.482583][T11910] ext4 filesystem being mounted at /342/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  233.537544][ T6358] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.824520][T11925] dummy0 speed is unknown, defaulting to 1000
[  233.887626][T11927] dummy0 speed is unknown, defaulting to 1000
[  234.081266][T11934] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.118877][T11934] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  234.262445][T11940] loop6: detected capacity change from 0 to 164
[  234.281958][T11940] syz.6.2518: attempt to access beyond end of device
[  234.281958][T11940] loop6: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  234.332169][T11940] syz.6.2518: attempt to access beyond end of device
[  234.332169][T11940] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  234.342849][T11942] xt_hashlimit: invalid interval
[  234.406179][T11943] netlink: 1272 bytes leftover after parsing attributes in process `syz.2.2519'.
[  234.773736][T11840] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  234.806010][T11840] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  235.097389][T11840] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  235.111893][T11840] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  235.914551][T11968] loop9: detected capacity change from 0 to 128
[  235.929795][T11968] EXT4-fs: Mount option(s) incompatible with ext2
[  236.341348][T11977] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2530'.
[  236.512611][T11980] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2543'.
[  236.546125][T11980] hsr_slave_1 (unregistering): left promiscuous mode
[  236.630986][T11982] dummy0 speed is unknown, defaulting to 1000
[  236.963939][T11996] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2536'.
[  237.273347][T12004] loop8: detected capacity change from 0 to 512
[  237.280072][T12004] EXT4-fs: Ignoring removed nomblk_io_submit option
[  237.287168][T12004] EXT4-fs: Ignoring removed mblk_io_submit option
[  237.329680][T12005] loop7: detected capacity change from 0 to 512
[  237.337850][T12004] EXT4-fs (loop8): Cannot turn on journaled quota: type 0: error -2
[  237.420694][T12005] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.2539: invalid indirect mapped block 11 (level 0)
[  237.466396][T12005] EXT4-fs (loop7): Remounting filesystem read-only
[  237.482247][T12004] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -2
[  237.514446][T12005] EXT4-fs (loop7): 1 truncate cleaned up
[  237.534291][T12005] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.571541][T12004] EXT4-fs (loop8): 1 truncate cleaned up
[  237.586860][T12004] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.672442][T12004] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  237.783156][T12020] netlink: 'syz.6.2547': attribute type 4 has an invalid length.
[  237.792404][T12020] netlink: 'syz.6.2547': attribute type 4 has an invalid length.
[  237.901789][T12027] ref_ctr_offset mismatch. inode: 0xb54 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa
[  237.938926][T12027] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: 0, delta: -1
[  237.947330][T12027] ref_ctr decrement failed for inode: 0xb54 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff888104763c80
[  237.998351][T12027] uprobe: syz.2.2550:12027 failed to unregister, leaking uprobe
[  238.015936][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.294717][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.298356][T12035] netlink: 'syz.7.2563': attribute type 10 has an invalid length.
[  238.398797][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  238.398797][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  238.412454][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  238.434174][T12045] netlink: 'syz.2.2567': attribute type 10 has an invalid length.
[  238.483653][T12046] wg2: entered promiscuous mode
[  238.488593][T12046] wg2: entered allmulticast mode
[  238.578149][T12049] xt_hashlimit: invalid interval
[  238.602008][T12050] syzkaller0: entered promiscuous mode
[  238.607569][T12050] syzkaller0: entered allmulticast mode
[  238.647168][T12051] netlink: 1272 bytes leftover after parsing attributes in process `syz.8.2557'.
[  238.710523][T12053] syz_tun: entered allmulticast mode
[  238.717176][T12052] syz_tun: left allmulticast mode
[  238.740470][T12055] netlink: 'syz.2.2559': attribute type 4 has an invalid length.
[  238.748706][T12055] netlink: 'syz.2.2559': attribute type 4 has an invalid length.
[  239.226605][T12060] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2573'.
[  239.246077][T12060] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.300275][T12060] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.360012][T12060] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.400973][T12060] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.440454][T12067] program syz.7.2576 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  239.457519][T12060] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  239.472206][T12065] ref_ctr_offset mismatch. inode: 0x78b offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa
[  239.485177][T12065] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: 0, delta: -1
[  239.493229][T12060] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  239.494356][T12065] ref_ctr decrement failed for inode: 0x78b offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff888108357900
[  239.513213][T12065] uprobe: syz.6.2564:12065 failed to unregister, leaking uprobe
[  239.520260][T12060] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  239.542614][T12060] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  239.654931][T12076] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2568'.
[  239.664704][T12076] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2568'.
[  239.741408][T12079] wg2: entered promiscuous mode
[  239.746352][T12079] wg2: entered allmulticast mode
[  240.397757][T12095] loop8: detected capacity change from 0 to 512
[  240.480148][T12095] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  240.500203][T12095] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  240.511044][T12095] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.2577: corrupted in-inode xattr: e_value size too large
[  240.527156][T12095] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.2577: couldn't read orphan inode 15 (err -117)
[  240.542673][T12095] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  240.788347][T12101] xt_hashlimit: invalid interval
[  240.808257][ T6464] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.855123][T12102] netlink: 1272 bytes leftover after parsing attributes in process `syz.9.2578'.
[  241.663655][T12112] loop8: detected capacity change from 0 to 164
[  243.156183][T12112] syz.8.2582: attempt to access beyond end of device
[  243.156183][T12112] loop8: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  243.255889][T12112] syz.8.2582: attempt to access beyond end of device
[  243.255889][T12112] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  243.313447][T12128] loop9: detected capacity change from 0 to 512
[  243.381027][T12128] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  243.406384][T12128] EXT4-fs (loop9): orphan cleanup on readonly fs
[  243.441241][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  243.441241][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  243.454845][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  243.500370][T12128] Quota error (device loop9): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  243.550375][T12128] EXT4-fs warning (device loop9): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  243.648455][T12128] EXT4-fs (loop9): Cannot turn on quotas: error -117
[  243.676598][T12128] EXT4-fs error (device loop9): ext4_orphan_get:1390: inode #16: comm syz.9.2588: casefold flag without casefold feature
[  243.729229][T12128] EXT4-fs error (device loop9): ext4_orphan_get:1395: comm syz.9.2588: couldn't read orphan inode 16 (err -117)
[  243.759350][T12128] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  244.018678][T12148] netlink: 'syz.7.2595': attribute type 10 has an invalid length.
[  244.070315][T12148] hsr_slave_0: left promiscuous mode
[  244.086977][T12148] hsr_slave_1: left promiscuous mode
[  244.238103][T12151] xt_hashlimit: invalid interval
[  244.328108][T12152] netlink: 1272 bytes leftover after parsing attributes in process `syz.7.2596'.
[  244.378281][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.874059][T12154] syzkaller0: entered promiscuous mode
[  244.887699][T12154] syzkaller0: entered allmulticast mode
[  245.131742][T12164] syzkaller0: entered promiscuous mode
[  245.137283][T12164] syzkaller0: entered allmulticast mode
[  245.167883][T12169] loop7: detected capacity change from 0 to 512
[  245.391443][T12169] Quota error (device loop7): do_check_range: Getting dqdh_entries 1536 out of range 0-14
[  245.402325][T12169] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  245.412389][T12169] EXT4-fs error (device loop7): ext4_acquire_dquot:6935: comm syz.7.2603: Failed to acquire dquot type 1
[  245.601881][T12180] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2608'.
[  245.633303][T12169] EXT4-fs (loop7): 1 truncate cleaned up
[  245.639526][T12169] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.669682][T12169] ext4 filesystem being mounted at /351/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.687921][T12182] loop9: detected capacity change from 0 to 1024
[  245.691464][T12180] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2608'.
[  245.717491][T12169] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  245.739626][T12182] Quota error (device loop9): do_check_range: Getting block 64 out of range 1-5
[  245.748797][T12182] Quota error (device loop9): qtree_read_dquot: Can't read quota structure for id 0
[  245.758194][T12182] EXT4-fs error (device loop9): ext4_acquire_dquot:6935: comm syz.9.2609: Failed to acquire dquot type 0
[  245.774055][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.784455][T12182] EXT4-fs error (device loop9): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  245.842324][T12182] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #13: comm syz.9.2609: corrupted inode contents
[  245.879966][T12182] EXT4-fs error (device loop9): ext4_dirty_inode:6103: inode #13: comm syz.9.2609: mark_inode_dirty error
[  245.923987][T12182] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #13: comm syz.9.2609: corrupted inode contents
[  245.979485][T12182] EXT4-fs error (device loop9): __ext4_ext_dirty:207: inode #13: comm syz.9.2609: mark_inode_dirty error
[  245.998193][T12182] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #13: comm syz.9.2609: corrupted inode contents
[  246.014248][T12182] EXT4-fs error (device loop9) in ext4_orphan_del:305: Corrupt filesystem
[  246.023591][T12182] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #13: comm syz.9.2609: corrupted inode contents
[  246.037049][   T29] audit: type=1326 audit(1744934040.804:12827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12187 comm="syz.2.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  246.061442][   T29] audit: type=1326 audit(1744934040.804:12828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12187 comm="syz.2.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  246.085103][   T29] audit: type=1326 audit(1744934040.804:12829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12187 comm="syz.2.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  246.109425][   T29] audit: type=1326 audit(1744934040.804:12830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12187 comm="syz.2.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  246.132970][   T29] audit: type=1326 audit(1744934040.804:12831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12187 comm="syz.2.2621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6868bae169 code=0x7ffc0000
[  246.133046][T12182] EXT4-fs error (device loop9): ext4_truncate:4255: inode #13: comm syz.9.2609: mark_inode_dirty error
[  246.133216][T12182] EXT4-fs error (device loop9) in ext4_process_orphan:347: Corrupt filesystem
[  246.225407][T12182] EXT4-fs (loop9): 1 truncate cleaned up
[  246.260283][T12182] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  246.315032][T12182] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2609'.
[  246.374257][ T9483] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.655727][T12207] xt_hashlimit: invalid interval
[  246.737888][T12208] netlink: 460 bytes leftover after parsing attributes in process `syz.6.2615'.
[  246.864237][T12212] netlink: 'syz.8.2620': attribute type 10 has an invalid length.
[  246.968017][T12217] loop8: detected capacity change from 0 to 256
[  247.112764][T12223] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2622'.
[  247.121718][T12223] netlink: 6 bytes leftover after parsing attributes in process `syz.8.2622'.
[  247.646052][T12235] SELinux:  Context Ü is not valid (left unmapped).
[  248.213124][T12256] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  248.270095][T12258] loop7: detected capacity change from 0 to 512
[  248.290597][T12258] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  248.316122][T12258] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  248.336333][T12258] EXT4-fs error (device loop7): ext4_iget_extra_inode:4693: inode #15: comm syz.7.2638: corrupted in-inode xattr: e_value size too large
[  248.374213][T12258] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.2638: couldn't read orphan inode 15 (err -117)
[  248.407325][T12258] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  248.474851][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.484362][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  248.484362][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  248.498660][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  248.663412][T12264] loop7: detected capacity change from 0 to 512
[  248.672611][T12264] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  248.685955][T12264] EXT4-fs (loop7): 1 truncate cleaned up
[  248.699437][T12264] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  248.893014][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.132913][T12268] dummy0 speed is unknown, defaulting to 1000
[  249.178007][T12275] IPVS: Error connecting to the multicast addr
[  249.251462][T12277] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2644'.
[  249.371184][T12275] dummy0 speed is unknown, defaulting to 1000
[  249.493573][   T29] kauditd_printk_skb: 46 callbacks suppressed
[  249.493592][   T29] audit: type=1326 audit(1744934044.274:12878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.549376][   T29] audit: type=1326 audit(1744934044.274:12879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.573822][   T29] audit: type=1326 audit(1744934044.324:12880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.597459][   T29] audit: type=1326 audit(1744934044.324:12881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.621876][   T29] audit: type=1326 audit(1744934044.324:12882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.645489][   T29] audit: type=1326 audit(1744934044.324:12883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.669735][   T29] audit: type=1326 audit(1744934044.324:12884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.693382][   T29] audit: type=1326 audit(1744934044.324:12885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.717655][   T29] audit: type=1326 audit(1744934044.324:12886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.741947][   T29] audit: type=1326 audit(1744934044.324:12887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12288 comm="syz.7.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa9ad82e169 code=0x7ffc0000
[  249.766708][T12289] wg2: left promiscuous mode
[  249.772066][T12289] wg2: left allmulticast mode
[  249.912988][T12301] batman_adv: batadv0: Removing interface: dummy0
[  249.921779][T12301] team0: Port device team_slave_0 removed
[  249.930588][T12301] team0: Port device team_slave_1 removed
[  249.937986][T12301] batman_adv: batadv0: Removing interface: batadv_slave_0
[  249.956622][T12308] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  249.969950][T12308] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  249.970954][T12301] batman_adv: batadv0: Removing interface: batadv_slave_1
[  250.000849][T12309] team0: Mode changed to "loadbalance"
[  250.060840][T12314] loop8: detected capacity change from 0 to 1024
[  250.067676][T12314] EXT4-fs: Ignoring removed nobh option
[  250.073998][T12314] EXT4-fs: Ignoring removed bh option
[  250.121904][T12314] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  250.228538][T12324] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2659'.
[  250.293060][T12326] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2660'.
[  250.358832][T12314] loop8: detected capacity change from 1024 to 64
[  250.371584][T12314] syz.8.2656: attempt to access beyond end of device
[  250.371584][T12314] loop8: rw=3, sector=418, nr_sectors = 6 limit=64
[  250.399710][T12314] syz.8.2656: attempt to access beyond end of device
[  250.399710][T12314] loop8: rw=2051, sector=424, nr_sectors = 58 limit=64
[  250.489990][T12314] EXT4-fs (loop8): discard request in group:0 block:13 count:32 failed with -5
[  250.518706][T12314] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6548: IO failure
[  250.569383][T12314] syz.8.2656: attempt to access beyond end of device
[  250.569383][T12314] loop8: rw=2057, sector=360, nr_sectors = 24 limit=64
[  250.612212][T12314] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 3 with error 5
[  250.624399][T12314] EXT4-fs (loop8): This should not happen!! Data will be lost
[  250.624399][T12314] 
[  250.686826][ T6464] EXT4-fs error (device loop8): ext4_readdir:264: inode #2: block 16: comm syz-executor: path /323/file1: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=33619980, rec_len=46, size=1024 fake=0
[  250.721328][T12346] dummy0: left allmulticast mode
[  250.726484][T12346] bridge0: port 2(dummy0) entered disabled state
[  250.747114][T12346] bridge_slave_0: left allmulticast mode
[  250.752862][T12346] bridge_slave_0: left promiscuous mode
[  250.758601][T12346] bridge0: port 1(bridge_slave_0) entered disabled state
[  250.805353][T12346] team0: Port device team_slave_0 removed
[  250.824175][T12346] team0: Port device team_slave_1 removed
[  250.841410][T12346] batman_adv: batadv0: Removing interface: batadv_slave_0
[  250.856958][T12346] batman_adv: batadv0: Removing interface: batadv_slave_1
[  250.875331][T12349] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.907248][T12348] team0: Mode changed to "loadbalance"
[  250.929963][T12349] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.990860][T12349] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.050216][T12349] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.115632][T12349] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.154475][T12349] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.184565][T12349] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  251.214752][T12349] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  251.327861][T12358] loop7: detected capacity change from 0 to 512
[  251.372357][T12358] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  251.408897][T12358] EXT4-fs (loop7): 1 truncate cleaned up
[  251.415163][T12358] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.535935][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.586788][T12367] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2677'.
[  251.611512][T12371] loop7: detected capacity change from 0 to 1024
[  251.630764][T12371] EXT4-fs error (device loop7): ext4_acquire_dquot:6935: comm syz.7.2676: Failed to acquire dquot type 0
[  251.674042][T12371] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  251.724283][T12371] EXT4-fs error (device loop7): ext4_do_update_inode:5211: inode #13: comm syz.7.2676: corrupted inode contents
[  251.769084][T12371] EXT4-fs error (device loop7): ext4_dirty_inode:6103: inode #13: comm syz.7.2676: mark_inode_dirty error
[  251.800481][T12371] EXT4-fs error (device loop7): ext4_do_update_inode:5211: inode #13: comm syz.7.2676: corrupted inode contents
[  251.840938][T12371] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #13: comm syz.7.2676: mark_inode_dirty error
[  251.865782][T12371] EXT4-fs error (device loop7): ext4_do_update_inode:5211: inode #13: comm syz.7.2676: corrupted inode contents
[  251.896496][T12371] EXT4-fs error (device loop7) in ext4_orphan_del:305: Corrupt filesystem
[  251.914939][T12371] EXT4-fs error (device loop7): ext4_do_update_inode:5211: inode #13: comm syz.7.2676: corrupted inode contents
[  251.938382][T12371] EXT4-fs error (device loop7): ext4_truncate:4255: inode #13: comm syz.7.2676: mark_inode_dirty error
[  251.990430][T12371] EXT4-fs error (device loop7) in ext4_process_orphan:347: Corrupt filesystem
[  252.009724][T12371] EXT4-fs (loop7): 1 truncate cleaned up
[  252.019714][T12371] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.055703][T12371] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2676'.
[  252.077499][ T6364] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.185615][T12375] netlink: 'syz.7.2689': attribute type 10 has an invalid length.
[  252.193593][T12375] netlink: 40 bytes leftover after parsing attributes in process `syz.7.2689'.
[  252.210022][T12375] dummy0: entered promiscuous mode
[  252.220102][T12375] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  252.298899][T12382] tipc: Cannot configure node identity twice
[  252.319371][T12382] netlink: 14 bytes leftover after parsing attributes in process `syz.6.2680'.
[  252.486378][T12389] loop7: detected capacity change from 0 to 16384
[  252.668869][T12396] loop7: detected capacity change from 16384 to 16383
[  253.278847][T12391] ==================================================================
[  253.285605][ T6358] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  253.286971][T12391] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64
[  253.297859][ T6358] CPU: 1 UID: 0 PID: 6358 Comm: syz-executor Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  253.297897][ T6358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  253.297915][ T6358] Call Trace:
[  253.297923][ T6358]  <TASK>
[  253.297933][ T6358]  dump_stack_lvl+0xf6/0x150
[  253.297962][ T6358]  dump_stack+0x15/0x1a
[  253.297983][ T6358]  dump_header+0x83/0x2d0
[  253.298086][ T6358]  oom_kill_process+0x341/0x4c0
[  253.298114][ T6358]  out_of_memory+0x9d1/0xc20
[  253.298144][ T6358]  mem_cgroup_out_of_memory+0x13f/0x190
[  253.298230][ T6358]  try_charge_memcg+0x5f1/0x890
[  253.298263][ T6358]  charge_memcg+0x50/0xc0
[  253.298303][ T6358]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[  253.298349][ T6358]  __read_swap_cache_async+0x207/0x3b0
[  253.298468][ T6358]  swap_cluster_readahead+0x27f/0x400
[  253.298520][ T6358]  swapin_readahead+0xe6/0x6f0
[  253.298569][ T6358]  ? swap_cache_get_folio+0x77/0x210
[  253.298639][ T6358]  do_swap_page+0x31c/0x2510
[  253.298669][ T6358]  ? __schedule+0x809/0xb70
[  253.298708][ T6358]  ? schedule+0x5f/0xd0
[  253.298752][ T6358]  ? __rcu_read_lock+0x36/0x50
[  253.298827][ T6358]  ? __pfx_default_wake_function+0x10/0x10
[  253.298862][ T6358]  handle_mm_fault+0x8ed/0x2e80
[  253.298892][ T6358]  ? mas_walk+0x204/0x320
[  253.298921][ T6358]  ? __rcu_read_unlock+0x4e/0x70
[  253.298957][ T6358]  exc_page_fault+0x3b9/0x6a0
[  253.299040][ T6358]  ? do_syscall_64+0xd6/0x1a0
[  253.299074][ T6358]  asm_exc_page_fault+0x26/0x30
[  253.299100][ T6358] RIP: 0033:0x7fc2848509e5
[  253.299129][ T6358] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 5e 3b 1c 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  253.299151][ T6358] RSP: 002b:00007ffc9b42bb68 EFLAGS: 00010246
[  253.299171][ T6358] RAX: 0000000000000000 RBX: 00000000000003ab RCX: 00007fc2848509e3
[  253.299186][ T6358] RDX: 00007ffc9b42bb80 RSI: 0000000000000000 RDI: 0000000000000000
[  253.299248][ T6358] RBP: 00007ffc9b42bbec R08: 000000000eeaa84c R09: 0000000000000000
[  253.299264][ T6358] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  253.299280][ T6358] R13: 00000000000927c0 R14: 000000000003da91 R15: 00007ffc9b42bc40
[  253.299326][ T6358]  </TASK>
[  253.299360][ T6358] memory: usage 307200kB, limit 307200kB, failcnt 143
[  253.307581][T12391] 
[  253.307587][T12391] read-write to 0xffffffff868099c0 of 8 bytes by interrupt on cpu 1:
[  253.307605][T12391]  tick_do_update_jiffies64+0x112/0x1b0
[  253.307633][T12391]  tick_nohz_handler+0x7c/0x2d0
[  253.307657][T12391]  __hrtimer_run_queues+0x221/0x5f0
[  253.307684][T12391]  hrtimer_interrupt+0x235/0x4a0
[  253.307705][T12391]  __sysvec_apic_timer_interrupt+0x5c/0x1d0
[  253.307737][T12391]  sysvec_apic_timer_interrupt+0x6e/0x80
[  253.321169][ T6358] memory+swap: usage 308096kB, limit 9007199254740988kB, failcnt 0
[  253.330413][T12391]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  253.330442][T12391]  mpage_process_page_bufs+0x17d/0x5d0
[  253.330472][T12391]  mpage_prepare_extent_to_map+0x791/0xb80
[  253.330501][T12391]  ext4_do_writepages+0xa3b/0x21d0
[  253.330522][T12391]  ext4_writepages+0x183/0x320
[  253.330549][T12391]  do_writepages+0x1d8/0x480
[  253.330577][T12391]  __writeback_single_inode+0x89/0x850
[  253.330603][T12391]  writeback_sb_inodes+0x458/0xa10
[  253.330629][T12391]  wb_writeback+0x264/0x650
[  253.333897][ T6358] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  253.336820][T12391]  wb_workfn+0x1aa/0x960
[  253.341432][ T6358] Memory cgroup stats for 
[  253.345549][T12391]  process_scheduled_works+0x4de/0xa20
[  253.350721][ T6358] /syz6
[  253.354796][T12391]  worker_thread+0x52c/0x710
[  253.359490][ T6358] :
[  253.364906][T12391]  kthread+0x4b7/0x540
[  253.665922][T12391]  ret_from_fork+0x4b/0x60
[  253.670351][T12391]  ret_from_fork_asm+0x1a/0x30
[  253.675135][T12391] 
[  253.677458][T12391] read to 0xffffffff868099c0 of 8 bytes by task 12391 on cpu 0:
[  253.685087][T12391]  mem_cgroup_flush_stats_ratelimited+0x29/0x70
[  253.691345][T12391]  count_shadow_nodes+0x6b/0x230
[  253.696333][T12391]  do_shrink_slab+0x5e/0x6a0
[  253.701045][T12391]  shrink_slab+0x4f2/0x860
[  253.705508][T12391]  shrink_node+0x647/0x1da0
[  253.710035][T12391]  do_try_to_free_pages+0x3c6/0xc10
[  253.715245][T12391]  try_to_free_mem_cgroup_pages+0x1e6/0x4a0
[  253.721154][T12391]  try_charge_memcg+0x3ab/0x890
[  253.726007][T12391]  charge_memcg+0x50/0xc0
[  253.730352][T12391]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[  253.736441][T12391]  __read_swap_cache_async+0x207/0x3b0
[  253.741937][T12391]  swap_cluster_readahead+0x27f/0x400
[  253.747328][T12391]  swapin_readahead+0xe6/0x6f0
[  253.752115][T12391]  do_swap_page+0x31c/0x2510
[  253.756893][T12391]  handle_mm_fault+0x8ed/0x2e80
[  253.761763][T12391]  exc_page_fault+0x3b9/0x6a0
[  253.766451][T12391]  asm_exc_page_fault+0x26/0x30
[  253.771310][T12391] 
[  253.773637][T12391] value changed: 0x00000000ffffed87 -> 0x00000000ffffed88
[  253.780744][T12391] 
[  253.783067][T12391] Reported by Kernel Concurrency Sanitizer on:
[  253.789219][T12391] CPU: 0 UID: 0 PID: 12391 Comm: syz.6.2685 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  253.801724][T12391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  253.811788][T12391] ==================================================================
[  253.840205][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  253.840205][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  253.854539][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  253.902810][ T6358] cache 0
[  253.905896][ T6358] rss 0
[  253.908682][ T6358] shmem 0
[  253.912412][ T6358] mapped_file 0
[  253.915938][ T6358] dirty 0
[  253.918918][ T6358] writeback 8192
[  253.922512][ T6358] workingset_refault_anon 51
[  253.927112][ T6358] workingset_refault_file 16
[  253.931820][ T6358] swap 917504
[  253.935104][ T6358] swapcached 12288
[  253.939460][ T6358] pgpgin 180874
[  253.942987][ T6358] pgpgout 180871
[  253.946598][ T6358] pgfault 185315
[  253.950160][ T6358] pgmajfault 1040
[  253.953801][ T6358] inactive_anon 12288
[  253.957789][ T6358] active_anon 0
[  253.961280][ T6358] inactive_file 0
[  253.964917][ T6358] active_file 0
[  253.968382][ T6358] unevictable 0
[  253.972589][ T6358] hierarchical_memory_limit 314572800
[  253.977972][ T6358] hierarchical_memsw_limit 9223372036854771712
[  253.984157][ T6358] total_cache 0
[  253.987697][ T6358] total_rss 0
[  253.991063][ T6358] total_shmem 0
[  253.994549][ T6358] total_mapped_file 0
[  253.998530][ T6358] total_dirty 0
[  254.002676][ T6358] total_writeback 8192
[  254.006822][ T6358] total_workingset_refault_anon 51
[  254.011963][ T6358] total_workingset_refault_file 16
[  254.017079][ T6358] total_swap 917504
[  254.020906][ T6358] total_swapcached 12288
[  254.025153][ T6358] total_pgpgin 180874
[  254.029833][ T6358] total_pgpgout 180871
[  254.033974][ T6358] total_pgfault 185315
[  254.038048][ T6358] total_pgmajfault 1040
[  254.042229][ T6358] total_inactive_anon 12288
[  254.046802][ T6358] total_active_anon 0
[  254.050880][ T6358] total_inactive_file 0
[  254.055041][ T6358] total_active_file 0
[  254.059678][ T6358] total_unevictable 0
[  254.063665][ T6358] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz6,task_memcg=/syz6,task=syz.6.2685,pid=12391,uid=0
[  254.078499][ T6358] Memory cgroup out of memory: Killed process 12391 (syz.6.2685) total-vm:95796kB, anon-rss:1020kB, file-rss:22068kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  255.122594][T12319] kmmpd-loop8: attempt to access beyond end of device
[  255.122594][T12319] loop8: rw=14337, sector=128, nr_sectors = 2 limit=64
[  255.136581][T12319] Buffer I/O error on dev loop8, logical block 64, lost sync page write
[  255.160062][T12319] EXT4-fs error (device loop8): kmmpd:186: comm kmmpd-loop8: Error writing to MMP block
[  258.878785][ T9346] kmmpd-loop5: attempt to access beyond end of device
[  258.878785][ T9346] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[  258.892367][ T9346] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  260.159491][T12319] kmmpd-loop8: attempt to access beyond end of device
[  260.159491][T12319] loop8: rw=14337, sector=128, nr_sectors = 2 limit=64
[  260.173074][T12319] Buffer I/O error on dev loop8, logical block 64, lost sync page write