last executing test programs:

4m0.564294547s ago: executing program 2 (id=133):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x2}, 0x50)
syz_io_uring_setup(0x5e75, &(0x7f0000000400)={0x0, 0x20000, 0x4002, 0x0, 0x2b1}, 0x0, 0x0)

4m0.549592658s ago: executing program 2 (id=134):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x13)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)

4m0.549195308s ago: executing program 2 (id=135):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r0}, 0x10)
memfd_create(0x0, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x1e, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xe2, 0x0, 0x0, 0x0, 0x5}, {}, {}, [@call={0x85, 0x0, 0x0, 0x86}, @map_idx={0x18, 0x7, 0x5, 0x0, 0xb}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x9}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x785, 0x0, 0x0, 0x0, 0xb}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x4a}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc9, &(0x7f0000000080)=""/201, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)

4m0.486700249s ago: executing program 2 (id=136):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x3804402, &(0x7f0000000240), 0x1, 0x55f, &(0x7f0000000c80)="$eJzs3d9rW+UbAPDnpO1+77sOxvgqIoVdOJlL19YfE7yYl6LDgd7PkmRlNFlGk461Dtwu3I03MgQRB+K1eu/l8B/wrxjoYMgoingTOelJl7VJm3XZmpnPB077vuec9D1Pznnevm9OQgIYWhPpj1zECxHxZRJxqG3baGQbJ1b3W3lwrZAuSTQaH/2RRJKta+2fZL/3Z5X/R8Qvn0ecyG1st7a0PD9bLpcWsvpkvXJ5sra0fPJiZXauNFe6ND0zc/qNmem333qzb7G+eu6vbz68897pL46tfP3TvcO3kjgTB7Jt7XE8gevtlYmYyJ6TsTizbsepPjQ2SJKdPgC2ZSTL87FI+4BDMZJlPfDf91lENIAhlch/GFKtcUBrbt+nefBz4/67qxOgjfGPrr42Enuac6N9K8kjM6N0vjveh/bTNn7+/fatdIn+vQ4BsKXrNyLi1Ojoxv4vyfq/7TvVwz7r29D/wbNzJx3/vNZp/JNbG/9Eh/HP/g65ux1b53/uXh+a6Sod/73Tcfy7dtNqfCSrHWyO+caSCxfLpbRv+19EHI+x3Wl9s/s5p1fuNrptax//pUvafmssmB3HvdHdjz6mOFuffZKY292/EfFix/Fvsnb+kw7nP30+zvXYxtHS7Ze7bds6/qer8X3EKx3P/8M7Wsnm9ycnm9fDZOuq2OjPm0d/7db+Tsefnv99q/H/nU0J18c/nrTfr609fhvf7fmn1G3bdq//XcnHzfKubN3V2Xp9YSpiV/LBxvXTDx/bqrf2T+M/fmzz/q/T9b83Ij7pMf6bR358afvxP11p/MXNr/915//xC3ff//Tbbu33dv5fb5aOZ2t66f96PcAnee4AAAAAAABg0OQi4kAkufxaOZfL51ff33Ek9uXK1Vr9xIXq4qViND8rOx5judad7kNt74eYyt4P26pPr6vPRMThiPhqZG+zni9Uy8WdDh4AAAAAAAAAAAAAAAAAAAAGxP4un/9P/Tay00cHPHW+8huG15b5349vegIGkv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX507ezZdGisPrhXSevHK0uJ89crJYqk2n68sFvKF6sLl/Fy1Olcu5QvVylZ/r1ytXp6ajsWrk/VSrT5ZW1o+X6kuXqqfv1j54WBEaeyZRAUAAAAAAAAAAAAAAAAAAADPl9rS8vxsuVxaUGgWdsdAHMZzVBgdjMNQ6HNhp3smAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHjo3wAAAP//waw5Ug==")
r0 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
fallocate(r0, 0x0, 0x0, 0x1001f0)
copy_file_range(r0, 0x0, r0, &(0x7f00000000c0)=0xc615, 0x39ea, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = openat$full(0xffffffffffffff9c, 0x0, 0x100, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYRESHEX=r2], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='task_newtask\x00', r4, 0x0, 0xfffffffffffffffc}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000200)={'team0\x00', <r5=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000580)={0x0, <r6=>0x0}, &(0x7f0000000600)=0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@local, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4e24, 0x4, 0x4e21, 0x0, 0xa, 0xa0, 0x20, 0x73, r5, r6}, {0x6, 0x4, 0x4, 0xffff, 0x40, 0x35e, 0x0, 0xfffffffffffeffff}, {0xc68b, 0x6, 0x6c7, 0x1}, 0x3, 0x6e6bb8, 0x3, 0x1, 0x1, 0x1}, {{@in6=@loopback, 0x4d2, 0xff}, 0x2, @in6=@private1, 0x3505, 0x4, 0x1, 0x6, 0x7, 0xfffffff2, 0x3}}, 0xe8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x18)
nanosleep(0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x2, &(0x7f0000000b40)=ANY=[@ANYRES32=0x0, @ANYBLOB="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", @ANYRES32], 0xff, 0x2e7, &(0x7f0000000280)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x0)

4m0.078561285s ago: executing program 2 (id=140):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x0, 0xe}, 0x94)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5c00000000010104000000000000000002000000240002801400018008000100e000000108000200e00000010c0002800500010000000000080008400000000814000580080001"], 0x5c}}, 0x0)

3m59.238807488s ago: executing program 2 (id=150):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x13)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)

3m59.219320428s ago: executing program 32 (id=150):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x13)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)

1m38.132827251s ago: executing program 3 (id=1504):
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0xd931d3864d39dcc9)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0xf1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="58000000020601080000000000000000000000000c000780050015002c0000000500010006000000050005000a00000005000400000000000900020073797a300000000012000300686173683a6e65742c706f727400000036879b23452fda6df56b03a08b2d007a96a00c3ebb7c0ec586ffd06083a232fb92b8b4d2506947f4543a2251cc85602d9d31a6dcd7b922b87683da62bb0a3893791bb0fcce379ff52b98a0d4abc8fd49e7241aa318a6b8b2c68cb05eed9d7c8e4a8d6a1cb7"], 0x58}}, 0x800)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x89901)
unlinkat(r2, &(0x7f00000002c0)='./file0\x00', 0x0)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r4 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYRES16=r4, @ANYRES32, @ANYRES16=r4], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
chroot(&(0x7f0000000280)='./file0\x00')
syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), r0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000b80)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x40041)
ioctl$USBDEVFS_REAPURB(r4, 0x4008550c, &(0x7f0000000700))
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3804402, &(0x7f0000000680)={[{@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@abort}, {@resuid}, {@user_xattr}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@nolazytime}, {@noinit_itable}, {@nombcache}, {@nodelalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x1, 0x55f, &(0x7f0000000c80)="$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")
r8 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
fallocate(r8, 0x0, 0x0, 0x1001f0)
copy_file_range(r8, 0x0, r8, &(0x7f00000000c0)=0xc615, 0x101, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80042, 0x8)
fallocate(r9, 0x10, 0x6, 0x10001)
ioctl$USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0x0, 0x0, 0xfffc, 0x360}, 0x8, 0x7, 0x80, 0x0, 0x1, 0x101, 0x0})
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x200)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000740)=@urb_type_iso={0x0, {0x1, 0x1}, 0x81, 0xc0, &(0x7f0000000400)="354a4be55defcfc947110122e2d168f6370ac04d878997df2f6ff3661ad678469de6f9a43e9072abc27f5578963533aefd8969b2d32d76222c74bd97fcc8df449543e1a15299db9f89a3db08421e584b313ee431523ead22ef4310218a81f1c3a8cb01eb6656daf1447235dc88ac2915262c88187862fdcc81019b7cfe9b7f014e5f6e0a0ff2054a73360a4ed94fec319603f083d5a8f9dd571c7d0f7789eb57e60c540a4e5ab7d4cbdba751447126d575cbe724a657ac339ef122c41f6a9a389b7463cbedf025103df2d37f317abf498d9d272cc27628eaf636b7075c796b2472dc2aa96fca465cb94779b6d778675a4ce5", 0xf2, 0x7, 0x9, 0x44, 0xffffffff, 0x8, &(0x7f0000000500)="8e9f24c783baafda5c66db7e17f6e1a0055f61094c89beb2e8630c1ce1c9380e3fa3b9ebbeec19d5a8a3fe19b881662627cca0a6a28d044f64ffe88a66490590c42fc03c31d8c8d7af239072233ab409d68a12b0303f53a5d8efba6cabfcd7014b02eb32dc27cff2f055c3f73ced3fd508a115eac5c5944317081a97109c53420eaabd1a10d92dc0f58b660dcbf15c1180be316883a66a23d3d7eca44939f28d72258ec593e79a89c44b0a503c1a0d1e", [{0x0, 0x8, 0x7}, {0x7, 0xd898, 0x9}, {0x2b21, 0x8, 0x9}, {0x8, 0x4014e, 0x3}, {0x2, 0x9, 0x16}, {0x6, 0x6, 0x3}, {0x2, 0x71bc, 0x2}, {0x7fffffff}, {0x6, 0xffff0001, 0x1000}, {0xffffffff, 0x80000000, 0x7}, {0x718a, 0x0, 0x2}, {0xd, 0x8, 0x9bc5}, {0x1, 0x8, 0x7}, {0xae, 0x1, 0x1}, {0xda9, 0x0, 0x2}, {0x8, 0x7, 0x1}, {0x7, 0xffffffff, 0x9}, {0x80, 0x0, 0x101}, {0x7, 0x3, 0x7903}, {0x200, 0x19c, 0x8000}, {0x9, 0x10fd, 0x7}, {0x7ff, 0xffffffff}, {0x1, 0x5, 0x10}, {0x77d, 0x10, 0x6}, {0x1, 0x10001, 0x101}, {0xfffffffa, 0x299, 0x180000}, {0xe85, 0x3, 0x1}, {0x7, 0x5, 0x3}, {0x6, 0x80, 0x8}, {0x800, 0x6, 0x7}, {0x21ee, 0x2}, {0xb052, 0x10, 0x80000000}, {0x80, 0xc, 0x8}, {0x25fa165d, 0x1ff, 0x3}, {0x3779, 0x7, 0xce}, {0x8001, 0x7fffffff, 0x7f}, {0x0, 0x0, 0x80000000}, {0x7fffffff, 0x8, 0xf0}, {0x6, 0x40, 0x3}, {0x4, 0x5, 0x68}, {0x1, 0xb, 0x6}, {0x4, 0x80000000, 0xa9}, {0x8e70, 0x3f1, 0x8}, {0x8, 0x7, 0xf0}, {0x7, 0x1, 0x7}, {0x82, 0x9, 0xfffffff8}, {0xff, 0x29, 0x9}, {0x0, 0x0, 0xfffffff8}, {0x6, 0xa6b, 0x9}, {0x8, 0x6, 0x10000}, {0x6, 0x0, 0x9}, {0xc9fd, 0x2, 0xd}, {0x4, 0x1, 0x8001}, {0x1c, 0x10000, 0x1}, {0x8000, 0x8, 0x5}, {0x8, 0xd4, 0x9}, {0xa33, 0x0, 0x6}, {0x5, 0x4cb, 0x1}, {0x42, 0x6, 0x3}, {0x13, 0x3d, 0x81}, {0xffff, 0x9, 0x9}, {0x8, 0xd, 0x10001}, {0xa3, 0x200, 0x2}, {0x6, 0x4, 0x9}, {0x101, 0x1, 0x8000}, {0x0, 0x5, 0x1000}, {0xd585, 0x8, 0x800}, {0x9, 0x95fe, 0x4}]})

1m37.966141854s ago: executing program 3 (id=1509):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYRES64=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x38, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x47)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000400)={0x34, r3, 0x205, 0x0, 0x25dfdbfc, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x850}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r7, 0x400, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r8}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r5, 0x0, 0x2}, 0x18)

1m37.904771995s ago: executing program 3 (id=1512):
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000400), r0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4800000010000305ff810000fddbdf2500000000", @ANYRES32=r1, @ANYBLOB="1748000040000200280012800a000100767863616e0000001800028014000100000000", @ANYRES32=r1], 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x0)
modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0xffffffffffffffff}, 0x10)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001cc0)={0x5, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f00000009c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x2c, r6, 0x6a98047402e98331, 0x0, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8040}, 0x4886)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02})
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0x200, 0x70bd30, 0x25dfdbfb, {0x60, 0x0, 0x0, 0x0, {0x9, 0xf}, {0xffff, 0x6}, {0xffff, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x4800}, 0x44080)
preadv(r7, &(0x7f0000001300)=[{&(0x7f00000000c0)=""/124, 0x7c}], 0x1, 0xfffffffe, 0x0)
r8 = socket$inet6(0xa, 0x2, 0x3a)
sendmmsg$inet6(r8, &(0x7f0000000b80)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x7ffe, @remote, 0x4}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000080)="8000102e7577d401", 0x8}], 0x1, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000002900000008"], 0x18}}], 0x1, 0x4000084)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)

1m37.028094978s ago: executing program 3 (id=1526):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000540)='/sys/power/reserved_size', 0x80001, 0xd1)
writev(r1, &(0x7f0000000940)=[{&(0x7f00000006c0)='\x00', 0x1}], 0x1)
sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000480)="9da207", 0x3}], 0x1, 0x0, 0x0, 0x11000000}, 0x10)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000540))
ptrace$cont(0x20, r2, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x1, 0x6}, 0x2, 0x7fffffff, 0x2, 0x7, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r3 = syz_clone(0xa00c0100, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_tgsigqueueinfo(r3, r3, 0x1c, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000740), 0x280401, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xfffffffffffffc79)
r5 = memfd_create(&(0x7f0000000480)='\xff\x00l\x1e\xa0</\x00\x8eO4._\x14zC\x8a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-]\xc2Vk\xaeky\xd3\x83\xe2\xc7\xd3\xe6M^\x98ox\x14\t\xe9Q1\x1dK\x9a\x045\xd37\xb22\xfdD(\xd2\xdd\xa0\xff\x0f\x00\x00\x00\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xed6g\xfd\xd2\xd4\xe3\x1f\xa6 \xa0\x8d\xb5\x9aE<2`]<\x8cR\xd69\x0fO\xbf\xc3\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yx\xf2jJb\x97\x9c/\x1f5i\xc6\x861\x9a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd\x84\xeepQ\x93nn\x0f\xc6\xa9?\xad\x8b~\x96@i=G\x9ft\x1d\xcc\xc6Ys7\x7f\x8ehv\xd3$\x13s\xa0\xbfi\xfaFS\xa9=Xe\xf8tI\x15\x882\x8b\x8e-X\xb8\xf2\x9du\x15S^\xec\xce\xfaf$S\x9f\xe7Ed\n\x84\\ u\xd2\x16\xc1\xa5\xa0\xaa\xe8.i\xc8\x0e\vt\xe2\xf1lA\x93\xdd\xce\x8f$\x06v\xbe\xe7\x95nN\xc5\xaa\x1ev\xc6P\x9c\\G&y\x8bYA\xc3}\xd9\x86[\xb2\xf3\x0f\x90%\xcb\x81\xe8\xea\xbcs\x95\xe9\x8eXH\x19m\xdfOY\xf1E9-\xc8\xe7\x13^+(\x034\x82\xafiOO\x14\x8f^\x8c', 0x7)
ftruncate(r5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x541c, &(0x7f0000000600))
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x10000000, 0x800000000004, @tid=r6}, 0x0)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f00000004c0)='./file1\x00')
ptrace$poke(0x5, r6, &(0x7f0000000700), 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x550, 0x1c0, 0xffffffff, 0xffffffff, 0x1c0, 0xffffffff, 0x480, 0xffffffff, 0xffffffff, 0x480, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x298, 0x2c0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x2b4, 0x1, 0x2, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x1300, 0x4, 0x0, 'syz0\x00'}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0xfd}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b0)

1m36.970774559s ago: executing program 3 (id=1528):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYRES64=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x38, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x47)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000400)={0x34, r3, 0x205, 0x0, 0x25dfdbfc, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x850}, 0x0)

1m36.694724993s ago: executing program 3 (id=1531):
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x67a, 0x1, 0xfffffffe, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r2, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)

1m36.694353203s ago: executing program 33 (id=1531):
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x67a, 0x1, 0xfffffffe, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r2, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)

1m21.1067798s ago: executing program 5 (id=1749):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x38, 0x3, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f88)
fadvise64(r0, 0xfffffffffffffff8, 0x2000000000b09c, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mq_unlink(0x0)

1m21.08076812s ago: executing program 5 (id=1751):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="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", 0xff}, {0x0}], 0x3)

1m21.048722101s ago: executing program 5 (id=1752):
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000540)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
futex(&(0x7f0000000000)=0x2, 0x80, 0x1, &(0x7f0000000340), 0x0, 0x1)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x18)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0)
r5 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x9, 0x8020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000}, 0x0, 0x0, 0x101, 0x9, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f0000000180)='cpu==0||!')
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x1b, 0x2000000000000273, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffedd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7, 0x0, 0xf}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/10, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000b600000000"], 0x50)
ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000300)={0x0, 0x0, 0x2c, 0x4, 0x104, 0x1})

1m20.125817995s ago: executing program 5 (id=1762):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="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", 0xff}, {0x0}], 0x3)

1m20.066697595s ago: executing program 5 (id=1763):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800002, &(0x7f0000000000)={[{@noblock_validity}, {@dioread_nolock}, {@errors_remount}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x22}, 0x84, 0x464, &(0x7f0000000ac0)="$eJzs3EtvG0UcAPD/bpq+S0Ipjz6AQEFEPJImLdADFxBIvSAhwaEcQ5pWpWmDmiDRKqIpQuWI+gmAIxKfgBNcEHACcYU7QqpQLgQOaNHau6lx7GAncZ3g30/aeGZ31jt/7449O2MngJ41lP9JIvZGxM8RMRARffUFhqoPS4vzk38uzk8mkWWv/57ku8Ufi/OTZdGkeNxTZIbTiPTDJA43OO7slasXJqanpy4X+dG5i++Mzl65+sz5ixPnps5NXRo/efLE8bHnnxt/dkPi3JfX9dD7M0cOnnrz5quTp2++9d0XeX33Fttr46gaXPcxh2Jo+TWp9/i6n31z2VeTTrZ1sSK0JW/r+enqr7T/geiL2ydvIF75oKuVAzoqy7Jsx4q1yz2AhQz4H0ui2zUAuqP8oM/vf8vlDnY/uu7Wi9UboDzupWKpbtkWaVGmv+7+diMNRcTphb8+yZdoOA4BALCxvsr7P0836v+lcV9NubuKuaHBiLg7IvZHxD0RcSAi7o2olL0/Ih5o8/hDdfmV/Z8fd60psBbl/b8Xirmtf/f/yt5fDPYVuX2V+PuTs+enp44Vr8lw9O/I82OrHOPrl3/6uNm22v5fviz1x2TZFyzq8du2ugG6MxNzE+uJudat65UxwGsr40+WZwKSiDgYEYfW8Pw7I+L8k58fabZ9RfyL83Xxr2ID5pmyzyKeqJ7/haiLv5SsPj85ujOmp46NllfFSt//cOO1ZsdfV/wbID//uxte/8vxDya187Wz7R/jxi8fNb2n+e/4G1//25M3Kuntxbr3JubmLo9FbE8WVq4fv71vmS/L5/EPH23c/vdH/P1psd/hiMgv4gcj4qGIeLio+yMR8WhEHF0l/m9feuzttcffWXn8Z9o6/+0n+i5882Wz47d2/k9UUsPFmlbe/1qt4HpeOwAAANgq0sp34JN0ZDmdpiMj1e/wH4jd6fTM7NxTZ2fevXSm+l35wehPy5GugZrx0LFibLjMj9flj1fGjbMsy3ZV8iOTM9OdmlMHWrOnSfvP/drX7doBHdfWPFqzX7QBW5Lfa0Lv0v6hd2n/0Lu0f+hdjdr/tYilVXe63rHqAHeQz3/oXdo/9C7tH3qX9g89aT2/618tsf9Ua4XLf0DYoWpsgUTf5qhG24lIN0U11pZIN0c1qokdEdFq4Wt3rKV0+Y0JAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgg/wTAAD//7YA6Ok=")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
close(0xffffffffffffffff)
r2 = getpid()
syz_pidfd_open(r2, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r4=>0x0})
r5 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001300a7cc4a372eaf541d002007000000", @ANYRES32=r4, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYBLOB="35874207"], 0x44}}, 0x0)
eventfd(0x4)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='kmem_cache_free\x00', r7, 0x0, 0x10001}, 0x18)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000000000000001000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r8}, 0x10)
r9 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r9, 0x10e, 0xc, &(0x7f0000000280)={0x3}, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="1400000007000000"], 0x14}}, 0x0)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
r10 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r10, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})
open_by_handle_at(0xffffffffffffffff, 0x0, 0x0)

1m19.555491493s ago: executing program 5 (id=1772):
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f0000000180)='./file0\x00')
creat(&(0x7f0000000080)='./file0\x00', 0xa)

1m4.339286334s ago: executing program 34 (id=1772):
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f0000000180)='./file0\x00')
creat(&(0x7f0000000080)='./file0\x00', 0xa)

4.85423244s ago: executing program 0 (id=2893):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
unshare(0x2040400)
unshare(0x2000400)

4.763357211s ago: executing program 0 (id=2894):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000540)='/sys/power/reserved_size', 0x80001, 0xd1)
writev(r1, &(0x7f0000000940)=[{&(0x7f00000006c0)='\x00', 0x1}], 0x1)
sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000480)="9da207", 0x3}], 0x1, 0x0, 0x0, 0x11000000}, 0x10)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000540))
ptrace$cont(0x20, r2, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x1, 0x6}, 0x2, 0x7fffffff, 0x2, 0x7, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r3 = syz_clone(0xa00c0100, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_tgsigqueueinfo(r3, r3, 0x1c, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x280401, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xfffffffffffffc79)
r5 = memfd_create(&(0x7f0000000480)='\xff\x00l\x1e\xa0</\x00\x8eO4._\x14zC\x8a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-]\xc2Vk\xaeky\xd3\x83\xe2\xc7\xd3\xe6M^\x98ox\x14\t\xe9Q1\x1dK\x9a\x045\xd37\xb22\xfdD(\xd2\xdd\xa0\xff\x0f\x00\x00\x00\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xed6g\xfd\xd2\xd4\xe3\x1f\xa6 \xa0\x8d\xb5\x9aE<2`]<\x8cR\xd69\x0fO\xbf\xc3\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yx\xf2jJb\x97\x9c/\x1f5i\xc6\x861\x9a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd\x84\xeepQ\x93nn\x0f\xc6\xa9?\xad\x8b~\x96@i=G\x9ft\x1d\xcc\xc6Ys7\x7f\x8ehv\xd3$\x13s\xa0\xbfi\xfaFS\xa9=Xe\xf8tI\x15\x882\x8b\x8e-X\xb8\xf2\x9du\x15S^\xec\xce\xfaf$S\x9f\xe7Ed\n\x84\\ u\xd2\x16\xc1\xa5\xa0\xaa\xe8.i\xc8\x0e\vt\xe2\xf1lA\x93\xdd\xce\x8f$\x06v\xbe\xe7\x95nN\xc5\xaa\x1ev\xc6P\x9c\\G&y\x8bYA\xc3}\xd9\x86[\xb2\xf3\x0f\x90%\xcb\x81\xe8\xea\xbcs\x95\xe9\x8eXH\x19m\xdfOY\xf1E9-\xc8\xe7\x13^+(\x034\x82\xafiOO\x14\x8f^\x8c', 0x7)
ftruncate(r5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x541c, &(0x7f0000000600))
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x10000000, 0x800000000004, @tid=r6}, 0x0)
pivot_root(&(0x7f0000000000)='.\x00', 0x0)
ptrace$poke(0x5, r6, &(0x7f0000000700), 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x550, 0x1c0, 0xffffffff, 0xffffffff, 0x1c0, 0xffffffff, 0x480, 0xffffffff, 0xffffffff, 0x480, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x298, 0x2c0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x2b4, 0x1, 0x2, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x1300, 0x4, 0x0, 'syz0\x00'}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0xfd}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b0)

4.397429177s ago: executing program 0 (id=2900):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=@newtaction={0x224, 0x30, 0x51b, 0x0, 0x0, {}, [{0x210, 0x1, [@m_skbmod={0x78, 0x1, 0x0, 0x0, {{0xb}, {0x4c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x0, 0x5, 0xab8}, @TCA_SKBMOD_SMAC={0xa, 0x4, @multicast}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}]}, {0x4, 0x14}, {0xc}, {0xc, 0x6}}}, @m_ct={0xfffffffffffffef9, 0x0, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}]}, {0x68, 0x6, "9f9b3fc2ddc24af6f0e10a015de0eee6fc0900c6e7d94c24ec368c475d7486514b6d2677226afad90c7d6c3ad311a9dee1f031afe3919c34f8636d67f86e3ebd80589ce5f55db46e88a14f002788b194b3ccfdf8c4b86ba094bef19b3a0cddb8831b84bb"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_tunnel_key={0xec, 0x0, 0x0, 0x0, {{0xf}, {0x54, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @mcast2}, @TCA_TUNNEL_KEY_PARMS={0x1c}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @empty}, @TCA_TUNNEL_KEY_NO_CSUM={0x5}]}, {0x69, 0x6, "9c52af17f462814d38170f632f883a02e6a90db7e490d2b8bd19fcb7872621f629a33220c9b5f21052aa40bb9616cbe2ae3debc7ea8dcc879c436c50c4b2e001d6b687516d71ee6b27e990693d6b67974963a28a690808e192e0ecf03e7f3535c9492c8e09"}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x224}}, 0x0)
tgkill(0x0, 0x0, 0x17)
sendmsg$key(r0, &(0x7f0000000240)={0x2, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02180006050000002cbd7000fe00002503000002004e210a0101020000000000000000"], 0x28}}, 0x0)

4.182381919s ago: executing program 0 (id=2903):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32, @ANYBLOB="00000000000000001c001a800800028008000200080000003e"], 0x44}}, 0x40800)
r3 = socket(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)

4.085247031s ago: executing program 0 (id=2909):
socket$netlink(0x10, 0x3, 0x0)
socket$kcm(0x10, 0x2, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, &(0x7f0000000900)={&(0x7f0000003000)={[{0x0, 0x0, 0x1}]}, 0x1, 0x3}, 0x1)
io_uring_register$IORING_UNREGISTER_PBUF_RING(0xffffffffffffffff, 0x17, &(0x7f0000000f40)={0x0, 0x0, 0x3}, 0x1)

3.886257353s ago: executing program 0 (id=2916):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0xf)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x2020, 0x8, 0x3, 0x5, 0x1}, 0x8)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000080000000000000000000001811", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, 0x0, 0x0)

1.238585272s ago: executing program 7 (id=2985):
symlink(0x0, 0x0)
r0 = mq_open(&(0x7f0000000040)='!seli\x1a\x1d!\xa7\x00\x00inux\x00G\xd0\xc6(X', 0x6e93ebbbcc0884f2, 0x10, &(0x7f0000000300)={0x0, 0x4, 0x3})
mq_timedreceive(r0, &(0x7f00000003c0)=""/83, 0x53, 0x8000000000002003, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

1.158603223s ago: executing program 7 (id=2988):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYRES64=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x38, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x47)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000400)={0x34, r3, 0x205, 0x0, 0x25dfdbfc, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x850}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r6, 0x400, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r7}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

1.157663123s ago: executing program 7 (id=2989):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
iopl(0x3)

1.117485654s ago: executing program 7 (id=2991):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x200}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r3 = accept(r1, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_lsm={0x6, 0x3, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2031}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r5}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20048054}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xd0}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000012c0)={{0x14}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0x2400c840}, 0x0)
connect$unix(r3, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e)

1.108082324s ago: executing program 6 (id=2992):
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='xprtrdma_post_send\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
munlockall()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0)
writev(r2, &(0x7f0000000440)=[{&(0x7f0000000040)="93d90400000300", 0x7}, {&(0x7f0000000140)="139776ff030370", 0x7}], 0x2)
symlink(&(0x7f0000001780)='./file0/../file0\x00', 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0xe, 0xc, &(0x7f0000000200)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYRESDEC=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='\xa3\x19\xfd\xba\xcaH\x90A?\x8a\xce\x1e\x1a\x9cN*\xd1\xbb\x16\xab\x93Z\x9cS\x99\xfcs\xd0\xed\xa8\x00\x97\x0e\xed\xb6\xfd-_\xd4l\xbf \xf3')
quotactl$Q_QUOTAON(0xffffffff80000200, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000240)={'wg1\x00', 0x800})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r7)
sendmsg$NLBL_MGMT_C_ADDDEF(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01000000000000000000040000001400050003030000000a0000005dc00000000001080002000500000014000600ff01000a00f2f3f31f000a00000000"], 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)

1.081593244s ago: executing program 1 (id=2993):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8)
sendto$inet6(r2, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
shutdown(r2, 0x1)

1.027554745s ago: executing program 6 (id=2995):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}}, 0x40800)
r3 = socket(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1.012108395s ago: executing program 1 (id=2996):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000010080)=ANY=[@ANYBLOB="0a000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x26, &(0x7f0000000000))

1.003194595s ago: executing program 6 (id=2997):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000440))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
set_robust_list(&(0x7f0000001840)={&(0x7f0000001780)={&(0x7f0000001740)}, 0x11, &(0x7f0000001800)={&(0x7f00000017c0)}}, 0x18)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r4 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x500, 0x0, 0x2000040}, 0xc, &(0x7f0000000240)={&(0x7f0000000800)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd7000ffdbdf2514000000080001000100000008000300", @ANYRES32=0x0, @ANYBLOB="08001c00", @ANYRES32=r4], 0x2c}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)

940.769436ms ago: executing program 6 (id=2998):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x200}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r3 = accept(r1, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_lsm={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2031}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r5}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20048054}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}, 0x1, 0x0, 0x0, 0xd0}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000012c0)={{0x14}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0x2400c840}, 0x0)
connect$unix(r3, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e)

878.692817ms ago: executing program 1 (id=2999):
creat(&(0x7f00000000c0)='./file0\x00', 0x67)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x71e, 0x4)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

712.97623ms ago: executing program 1 (id=3000):
r0 = io_uring_setup(0x3c92, &(0x7f0000000100)={0x0, 0x3, 0x0, 0xffffffff})
gettid()
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'syz_tun\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000080)={0x11, 0x800, r2, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x800, r2, 0x1, 0x0, 0x6, @local}, 0x14)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0xffffffffffffff4b, 0x240000}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = memfd_secret(0x0)
fcntl$setlease(r3, 0x400, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

617.042701ms ago: executing program 1 (id=3002):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000540)='/sys/power/reserved_size', 0x80001, 0xd1)
writev(r1, &(0x7f0000000940)=[{&(0x7f00000006c0)='\x00', 0x1}], 0x1)
sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000480)="9da207", 0x3}], 0x1, 0x0, 0x0, 0x11000000}, 0x10)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000540))
ptrace$cont(0x20, r2, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x1, 0x6}, 0x2, 0x7fffffff, 0x2, 0x7, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r3 = syz_clone(0xa00c0100, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_tgsigqueueinfo(r3, r3, 0x1c, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x280401, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xfffffffffffffc79)
r5 = memfd_create(&(0x7f0000000480)='\xff\x00l\x1e\xa0</\x00\x8eO4._\x14zC\x8a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-]\xc2Vk\xaeky\xd3\x83\xe2\xc7\xd3\xe6M^\x98ox\x14\t\xe9Q1\x1dK\x9a\x045\xd37\xb22\xfdD(\xd2\xdd\xa0\xff\x0f\x00\x00\x00\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xed6g\xfd\xd2\xd4\xe3\x1f\xa6 \xa0\x8d\xb5\x9aE<2`]<\x8cR\xd69\x0fO\xbf\xc3\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yx\xf2jJb\x97\x9c/\x1f5i\xc6\x861\x9a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd\x84\xeepQ\x93nn\x0f\xc6\xa9?\xad\x8b~\x96@i=G\x9ft\x1d\xcc\xc6Ys7\x7f\x8ehv\xd3$\x13s\xa0\xbfi\xfaFS\xa9=Xe\xf8tI\x15\x882\x8b\x8e-X\xb8\xf2\x9du\x15S^\xec\xce\xfaf$S\x9f\xe7Ed\n\x84\\ u\xd2\x16\xc1\xa5\xa0\xaa\xe8.i\xc8\x0e\vt\xe2\xf1lA\x93\xdd\xce\x8f$\x06v\xbe\xe7\x95nN\xc5\xaa\x1ev\xc6P\x9c\\G&y\x8bYA\xc3}\xd9\x86[\xb2\xf3\x0f\x90%\xcb\x81\xe8\xea\xbcs\x95\xe9\x8eXH\x19m\xdfOY\xf1E9-\xc8\xe7\x13^+(\x034\x82\xafiOO\x14\x8f^\x8c', 0x7)
ftruncate(r5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x541c, &(0x7f0000000600))
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x10000000, 0x800000000004, @tid=r6}, 0x0)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f00000004c0)='./file1\x00')
ptrace$poke(0x5, r6, &(0x7f0000000700), 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, 0x0, 0x0)

616.243621ms ago: executing program 1 (id=3003):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = dup(0xffffffffffffffff)
write$binfmt_aout(r1, 0x0, 0xfffffeb7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x48, &(0x7f0000000000)=[@in={0x2, 0x4e21, @broadcast}, @in6={0xa, 0x4e22, 0x9, @rand_addr=' \x01\x00', 0x7ff}, @in6={0xa, 0x4e24, 0x4dc, @dev={0xfe, 0x80, '\x00', 0x3c}, 0x9}]}, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000640)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000300)="06", 0x1}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000040)=ANY=[], 0x1000f)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100202, 0x80000000, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1b, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
syz_open_dev$loop(&(0x7f00000005c0), 0x9, 0x12d600)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000025940000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c000240"], 0x118}}, 0x0)
setsockopt$sock_int(r6, 0x1, 0x2, &(0x7f0000000000)=0x3, 0x4)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000001000), 0xe09)

572.084311ms ago: executing program 4 (id=3005):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
unshare(0x2040400)
unshare(0x2000400)

512.334212ms ago: executing program 4 (id=3007):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8)
sendto$inet6(r2, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
shutdown(r2, 0x1)

452.559553ms ago: executing program 4 (id=3008):
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000500)={[0x5]}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xb, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe3616b7186ab0ba2, '\x00', 0x0, @fallback=0x34, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @value=r0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
name_to_handle_at(r0, &(0x7f0000004740)='\x00', 0x0, 0x0, 0x1200)

374.700184ms ago: executing program 4 (id=3009):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2, 0x0, 0x2}, 0x18)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x24, r3, 0xfc5, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0x8, 0x2a, [@perr={0x84, 0xffffffffffffff21}]}]}, 0x24}}, 0x0)

374.182344ms ago: executing program 4 (id=3010):
symlink(0x0, 0x0)
r0 = mq_open(&(0x7f0000000040)='!seli\x1a\x1d!\xa7\x00\x00inux\x00G\xd0\xc6(X', 0x6e93ebbbcc0884f2, 0x10, &(0x7f0000000300)={0x0, 0x4, 0x3})
mq_timedreceive(r0, &(0x7f00000003c0)=""/83, 0x53, 0x8000000000002003, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
dup(r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

337.238325ms ago: executing program 4 (id=3011):
r0 = creat(&(0x7f0000000140)='./file0\x00', 0x1c4)
close(r0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4f4, &(0x7f0000000a40)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000080)={0x0, 0x1, 0xaac, 0x0, 0x7, 0x42, 0xffffffffefffbffe, 0xfffffffffffffffd, 0x3f})
socket$tipc(0x1e, 0x5, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x1000000, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
setsockopt$packet_int(r0, 0x107, 0x10, &(0x7f0000000040)=0x3, 0x4)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x2000759, &(0x7f0000000580)={[{@jqfmt_vfsold}, {@noblock_validity}, {@discard}, {@errors_remount}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xff}, 0x0}, {@noauto_da_alloc}, {@max_batch_time={'max_batch_time', 0x3d, 0xc}}, {@jqfmt_vfsv1}, {@nombcache}, {@lazytime}, {@resuid}, {@dax_always}, {@test_dummy_encryption_v1}, {@auto_da_alloc}, {@nodioread_nolock}, {@data_writeback}, {@noblock_validity}], [], 0x2c}, 0x0, 0x51b, &(0x7f0000001300)="$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")

259.884126ms ago: executing program 7 (id=3012):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r5, 0x0, 0x7}, 0x18)
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000480), 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000540)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r3, {0x10, 0xffe0}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x22044028}, 0x40040)

180.626738ms ago: executing program 7 (id=3013):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x1080810, &(0x7f0000000100)={[{@journal_dev={'journal_dev', 0x3d, 0x2d353}}, {@nobh}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
socket(0x10, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000000000000000dfffffffffffffff", @ANYRES32=0x0, @ANYRES32, @ANYRESDEC=r0], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r2, &(0x7f0000000280), &(0x7f0000000000)=""/3, 0x2}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$watch_queue(0xffffffffffffffff, 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
unshare(0x64000600) (fail_nth: 10)
syz_clone(0xa0280000, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r6=>0x0})
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r7, &(0x7f0000000080)={0x1d, r6, 0x0, {0x0, 0x0, 0x4}, 0xfe}, 0x18)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000400)={{0x0, 0x1, 0x1, 0x4, 0x8, 0xff, 0x4, 0xb, 0x9, 0x9, 0x9, 0x2, 0x9, 0x9, 0x57}, 0x28, [0x0, 0x0, 0x0, 0x0, 0x0]})

30.385409ms ago: executing program 6 (id=3014):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000540)='/sys/power/reserved_size', 0x80001, 0xd1)
writev(r1, &(0x7f0000000940)=[{&(0x7f00000006c0)='\x00', 0x1}], 0x1)
sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000480)="9da207", 0x3}], 0x1, 0x0, 0x0, 0x11000000}, 0x10)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000540))
ptrace$cont(0x20, r2, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x1, 0x6}, 0x2, 0x7fffffff, 0x2, 0x7, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r3 = syz_clone(0xa00c0100, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_tgsigqueueinfo(r3, r3, 0x1c, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x280401, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xfffffffffffffc79)
r5 = memfd_create(&(0x7f0000000480)='\xff\x00l\x1e\xa0</\x00\x8eO4._\x14zC\x8a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-]\xc2Vk\xaeky\xd3\x83\xe2\xc7\xd3\xe6M^\x98ox\x14\t\xe9Q1\x1dK\x9a\x045\xd37\xb22\xfdD(\xd2\xdd\xa0\xff\x0f\x00\x00\x00\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xed6g\xfd\xd2\xd4\xe3\x1f\xa6 \xa0\x8d\xb5\x9aE<2`]<\x8cR\xd69\x0fO\xbf\xc3\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yx\xf2jJb\x97\x9c/\x1f5i\xc6\x861\x9a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd\x84\xeepQ\x93nn\x0f\xc6\xa9?\xad\x8b~\x96@i=G\x9ft\x1d\xcc\xc6Ys7\x7f\x8ehv\xd3$\x13s\xa0\xbfi\xfaFS\xa9=Xe\xf8tI\x15\x882\x8b\x8e-X\xb8\xf2\x9du\x15S^\xec\xce\xfaf$S\x9f\xe7Ed\n\x84\\ u\xd2\x16\xc1\xa5\xa0\xaa\xe8.i\xc8\x0e\vt\xe2\xf1lA\x93\xdd\xce\x8f$\x06v\xbe\xe7\x95nN\xc5\xaa\x1ev\xc6P\x9c\\G&y\x8bYA\xc3}\xd9\x86[\xb2\xf3\x0f\x90%\xcb\x81\xe8\xea\xbcs\x95\xe9\x8eXH\x19m\xdfOY\xf1E9-\xc8\xe7\x13^+(\x034\x82\xafiOO\x14\x8f^\x8c', 0x7)
ftruncate(r5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x541c, &(0x7f0000000600))
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x10000000, 0x800000000004, @tid=r6}, 0x0)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f00000004c0)='./file1\x00')
ptrace$poke(0x5, r6, &(0x7f0000000700), 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, 0x0, 0x0)

0s ago: executing program 6 (id=3015):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001680)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffc01}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001c80)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYRES64=r0, @ANYRESHEX, @ANYRESOCT=0x0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = memfd_create(&(0x7f0000000280)='\x01\xfd\xae.+\xa6\x8c\xb6?2\x199\x94S,|x?Ue[\xbd\xe1!\x033\xbc\'#\xff\x17\x9b%\xf3[d  \x97\xf5G\x97A\xc2\xd8\xf0Uq\xe6+\xa5l\x94\v\xb6\a\x17\\\xfb\x04!\xe4\xc4\xb1\xa2\x1c\xffC;\x94Q\r\xb6}\x9c\xecC\v\xcf\xeb\xe4\x9aR\xe5,\x82\x03\x00\x19\x8d\xe8\xc6\xb9\xe4\xb4\x99\x8a\x19P\xb8\x8cx\b\x99\x04R\x05\xaf\xa2\xea5\f\xcc\x1a\x9b\x00Uf\xa5\xf7\x80Tgiz\nX\b\x91\xfd0\x8e\xb6\xa3\v#\xa1\xdf\xb4\xc0\xe6\xb4\xef\xa8i\xd8\xa2\xd2(\x98\x9bA\x8f\x13\xeb\xf4b/\xef!\x8f\xf6]-\xe9k\xb62\x89gEv\x13\xf4\xc7\xb2\xf5\\\x17\x90\xb5\xa6\xa8\xb8o\x0f\xe2 \xe7\x9c$\xd7\xf2@\xf7cdv[\t\x00\x8d\xf3\xcc1\r$\x1e\xff\xf0P\xb2\x97\xb8\xbc\xeb\x91\x87\x8bu\xbf\xd4\'\xff\x1f\f\x016\x9dQ\xeeT\xe8\bY\x00\xb2\x06\xa6\xbel\x9b.o\xbe\x80\x9dx\xd5O\xd6h\\I\xc9\x8d\a\x1d\xc9\x0f\x82\xdbs\xc7\x83L\x9e\xa2\xd1\xb3\xac\x8d\xd8\xb4\xb4\xea\x90Q\xd8\xc7\xeb%\x8bOp\x1ab\x96\xcf\xbb\x15\xcf\xfcN\xed\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00s\xaf\xa2\x14]p+\x96\x1ei|n\xda\xee\\\xae\x96*\x82*\xb8j\xda\xaa\x14\x1f\x1d\xf8\xf8\xae\xfcH\xc4\xb3j\xe8\xcfO\xef\x0e\xafe\xb5*\x89\x18\xb2w\x96\b\x1by\xeaT\xdd\xb3g6\xbc\x85\xb2Y\xccv\x06\x00\x00\x00\xc5e\x90\xc51\x9f\v_# \b\xa5\xbcP,|\xe9\xd6s\x1f\x1f\xbe\xd3\x80\xb1\xa8 \xce|df\x903\v\x02\xea.\x03X\xb5\xe4,8\xb7\xadEI\xdcA\xa7\xcc\xd7\xf9n\x1b\x95\xf8\x11Z\xe6:\x03\xce\xfe\x02\x8ctdy~_oC\x9e\xef\xf0\xa2K\xe9;\x8e:\x01\x03C\x92\xeb\x16\x1c\xbf\xbe\xef\xccUxhg\xffY\xe6\x83\xa6z\xff\x01\x9d o_{!O\xaajU\x84 \xe9\xb59r\x9cw\x18Z\xd3\xcd\x0e\xba\\\xdb\xf0\xe1\x86\t\xaf\vi\xdc\xbf?\xf5\n\xbd^\x05\xc0\xceuC}\xa8\xc7\xad\x86\xd7\x15&\xb9]1\x05J\x96\xf0\x84\xc1\f\xa6p\x96\xb8\x02\x13pA\x19\tf\x12\x88\xc8\x9c\xc9Cn\xd4\xa47V\'+\xcc\xbf\r\xa9\x10\x1d\xcf\xebKlb\xe5:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00G\xdf\xbb\xc0_\x99F\xf4n]\x14\xbc\xcd\xd3\x9f\x9fe\xc5\xe6\xe8Mb\xc6\x82\x82\xcc\xcaXe\xe1\xa2\xaa\x02\x86\xb8\x18\xe2C\xeb\xa9\x17&\x01&\'w\xa1t0\x80\xf0\x93\x80\x9f\x9b\xe0\x9f\xea\xb9\x9eD]#V\xda\x92\xca\xc6\xfa.\xd6\xe31\xfe\xe8\x02\xebX\xbd\nz\x01O\xd3r\xa2\xa9u\x93', 0x6)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xe, 0x12, r2, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, 0x0, 0x8, 0x201, 0x0, 0x0, {0x2, 0x0, 0x4}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xe754}]}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_SHUTDOWN_ACK_SENT={0x8, 0x7, 0x1, 0x0, 0x10001}, @CTA_TIMEOUT_SCTP_COOKIE_ECHOED={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_SCTP_CLOSED={0x8, 0x1, 0x1, 0x0, 0x7}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x3a}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @gre}]}, 0x54}, 0x1, 0x0, 0x0, 0x8010}, 0x240000c0)
syz_read_part_table(0x60d, &(0x7f0000002200)="$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")
creat(&(0x7f0000000200)='./bus\x00', 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xfee00}], 0x1, 0x1200, 0x30, 0x3)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x10, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x3804402, &(0x7f0000000240)={[{@user_xattr}, {@abort}, {@resuid}, {@user_xattr}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@nolazytime}, {@noinit_itable}, {@nomblk_io_submit}, {@nodelalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x1, 0x55f, &(0x7f0000000c80)="$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")

kernel console output (not intermixed with test programs):

233.619016][T11041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.619088][T11041] RIP: 0033:0x7f066746e929
[  233.619136][T11041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.619171][T11041] RSP: 002b:00007f0665ad7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  233.619267][T11041] RAX: ffffffffffffffda RBX: 00007f0667695fa0 RCX: 00007f066746e929
[  233.619277][T11041] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  233.619288][T11041] RBP: 00007f0665ad7090 R08: 0000000000000000 R09: 0000000000000000
[  233.619299][T11041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.619373][T11041] R13: 0000000000000000 R14: 00007f0667695fa0 R15: 00007ffee5020c48
[  233.619395][T11041]  </TASK>
[  233.619588][   T29] kauditd_printk_skb: 265 callbacks suppressed
[  233.619600][   T29] audit: type=1326 audit(1004.604:7873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f95b75d58e7 code=0x7ffc0000
[  233.855711][   T29] audit: type=1326 audit(1004.604:7874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f95b757ab19 code=0x7ffc0000
[  233.878663][   T29] audit: type=1326 audit(1004.604:7875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  233.901780][   T29] audit: type=1326 audit(1004.614:7876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f95b75d58e7 code=0x7ffc0000
[  233.924737][   T29] audit: type=1326 audit(1004.614:7877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f95b757ab19 code=0x7ffc0000
[  233.947636][   T29] audit: type=1326 audit(1004.614:7878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  234.022969][T11049] loop6: detected capacity change from 0 to 164
[  234.059019][T11043] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2273'.
[  234.082383][T11049] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  234.085316][   T29] audit: type=1326 audit(1004.624:7879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f95b75d58e7 code=0x7ffc0000
[  234.092730][T11043] syz_tun: entered promiscuous mode
[  234.113426][   T29] audit: type=1326 audit(1004.624:7880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f95b757ab19 code=0x7ffc0000
[  234.141499][   T29] audit: type=1326 audit(1004.624:7881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  234.141542][   T29] audit: type=1326 audit(1004.634:7882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11002 comm="syz.1.2260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f95b75d58e7 code=0x7ffc0000
[  234.229749][T11043] macvtap1: entered promiscuous mode
[  234.229874][T11043] macvtap1: entered allmulticast mode
[  234.229889][T11043] syz_tun: entered allmulticast mode
[  234.234923][T11052] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2278'.
[  234.293558][T11038] syz_tun: left allmulticast mode
[  234.293630][T11038] syz_tun: left promiscuous mode
[  234.300687][T11038] loop7: detected capacity change from 0 to 164
[  234.454311][T11071] SET target dimension over the limit!
[  234.463163][T11070] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  234.557438][T11079] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2286'.
[  234.591395][T11079] ip6gretap0: entered promiscuous mode
[  234.607222][T11079] macvtap1: entered promiscuous mode
[  234.613033][T11079] macvtap1: entered allmulticast mode
[  234.618558][T11079] ip6gretap0: entered allmulticast mode
[  234.647784][T11081] ip6gretap0: left allmulticast mode
[  234.653215][T11081] ip6gretap0: left promiscuous mode
[  234.767544][T11075] loop6: detected capacity change from 0 to 164
[  234.826613][T11083] loop0: detected capacity change from 0 to 1024
[  234.916889][T11088] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2289'.
[  234.933773][T11087] loop6: detected capacity change from 0 to 1024
[  234.941694][T11088] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2289'.
[  235.043613][T11091] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2290'.
[  235.076671][T11091] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2290'.
[  235.291338][T11101] loop1: detected capacity change from 0 to 1024
[  235.319743][T11101] loop1: detected capacity change from 0 to 512
[  235.328058][T11101] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  235.338005][T11101] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  235.346133][T11101] EXT4-fs (loop1): orphan cleanup on readonly fs
[  235.357544][T11101] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2295: bg 0: block 248: padding at end of block bitmap is not set
[  235.433196][T11101] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2295: Failed to acquire dquot type 1
[  235.465171][T11101] EXT4-fs (loop1): 1 truncate cleaned up
[  235.472842][T11104] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  235.482347][T11101] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  235.492205][T11101] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  235.508454][T11101] EXT4-fs error (device loop1): __ext4_remount:6736: comm syz.1.2295: Abort forced by user
[  235.518827][T11101] EXT4-fs (loop1): Remounting filesystem read-only
[  235.525397][T11101] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  235.579557][T11109] netlink: 'syz.1.2298': attribute type 9 has an invalid length.
[  235.827399][T11132] FAULT_INJECTION: forcing a failure.
[  235.827399][T11132] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  235.840505][T11132] CPU: 0 UID: 0 PID: 11132 Comm: syz.7.2308 Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  235.840534][T11132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  235.840546][T11132] Call Trace:
[  235.840553][T11132]  <TASK>
[  235.840561][T11132]  __dump_stack+0x1d/0x30
[  235.840587][T11132]  dump_stack_lvl+0xe8/0x140
[  235.840608][T11132]  dump_stack+0x15/0x1b
[  235.840626][T11132]  should_fail_ex+0x265/0x280
[  235.840695][T11132]  should_fail+0xb/0x20
[  235.840719][T11132]  should_fail_usercopy+0x1a/0x20
[  235.840768][T11132]  _copy_from_user+0x1c/0xb0
[  235.840790][T11132]  bpf_test_init+0xdf/0x160
[  235.840884][T11132]  bpf_prog_test_run_xdp+0x274/0x910
[  235.840912][T11132]  ? __rcu_read_unlock+0x4f/0x70
[  235.840934][T11132]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  235.841029][T11132]  bpf_prog_test_run+0x227/0x390
[  235.841051][T11132]  __sys_bpf+0x3dc/0x790
[  235.841086][T11132]  __x64_sys_bpf+0x41/0x50
[  235.841172][T11132]  x64_sys_call+0x2478/0x2fb0
[  235.841217][T11132]  do_syscall_64+0xd2/0x200
[  235.841235][T11132]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  235.841261][T11132]  ? clear_bhb_loop+0x40/0x90
[  235.841284][T11132]  ? clear_bhb_loop+0x40/0x90
[  235.841347][T11132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.841411][T11132] RIP: 0033:0x7fe8d983e929
[  235.841424][T11132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.841438][T11132] RSP: 002b:00007fe8d7ea7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  235.841493][T11132] RAX: ffffffffffffffda RBX: 00007fe8d9a65fa0 RCX: 00007fe8d983e929
[  235.841506][T11132] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  235.841520][T11132] RBP: 00007fe8d7ea7090 R08: 0000000000000000 R09: 0000000000000000
[  235.841533][T11132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  235.841546][T11132] R13: 0000000000000000 R14: 00007fe8d9a65fa0 R15: 00007ffc3eb39d28
[  235.841568][T11132]  </TASK>
[  236.261581][T11148] SET target dimension over the limit!
[  236.294706][T11154] netlink: 'syz.0.2317': attribute type 9 has an invalid length.
[  236.432533][T11156] loop6: detected capacity change from 0 to 164
[  236.440330][T11156] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  236.522166][T11164] loop7: detected capacity change from 0 to 1024
[  236.578253][T11164] EXT4-fs: Ignoring removed nobh option
[  236.583827][T11164] EXT4-fs: Ignoring removed bh option
[  236.681937][T11164] EXT4-fs error (device loop7): ext4_xattr_inode_iget:442: comm syz.7.2322: error while reading EA inode 32 err=-116
[  236.725254][T11164] EXT4-fs (loop7): Remounting filesystem read-only
[  236.746345][T11164] EXT4-fs warning (device loop7): ext4_xattr_inode_inc_ref_all:1129: inode #18: comm syz.7.2322: cleanup dec ref error -30
[  236.828438][T11164] EXT4-fs warning (device loop7): ext4_xattr_block_set:2190: inode #18: comm syz.7.2322: dec ref error=-30
[  236.879995][T11180] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  236.887499][T11180] batadv_slave_1: entered promiscuous mode
[  237.097559][T11194] loop0: detected capacity change from 0 to 164
[  237.149904][T11194] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  237.314253][T11206] FAULT_INJECTION: forcing a failure.
[  237.314253][T11206] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  237.327340][T11206] CPU: 0 UID: 0 PID: 11206 Comm: syz.6.2339 Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  237.327376][T11206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  237.327389][T11206] Call Trace:
[  237.327396][T11206]  <TASK>
[  237.327404][T11206]  __dump_stack+0x1d/0x30
[  237.327424][T11206]  dump_stack_lvl+0xe8/0x140
[  237.327440][T11206]  dump_stack+0x15/0x1b
[  237.327457][T11206]  should_fail_ex+0x265/0x280
[  237.327530][T11206]  should_fail+0xb/0x20
[  237.327553][T11206]  should_fail_usercopy+0x1a/0x20
[  237.327709][T11206]  _copy_from_iter+0xcf/0xe40
[  237.327792][T11206]  hci_sock_sendmsg+0x36d/0x910
[  237.327854][T11206]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  237.327880][T11206]  __sock_sendmsg+0x145/0x180
[  237.327905][T11206]  sock_write_iter+0x165/0x1b0
[  237.327933][T11206]  ? __pfx_sock_write_iter+0x10/0x10
[  237.327955][T11206]  vfs_write+0x49d/0x8e0
[  237.328068][T11206]  ksys_write+0xda/0x1a0
[  237.328152][T11206]  __x64_sys_write+0x40/0x50
[  237.328179][T11206]  x64_sys_call+0x2cdd/0x2fb0
[  237.328201][T11206]  do_syscall_64+0xd2/0x200
[  237.328257][T11206]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  237.328281][T11206]  ? clear_bhb_loop+0x40/0x90
[  237.328303][T11206]  ? clear_bhb_loop+0x40/0x90
[  237.328395][T11206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.328418][T11206] RIP: 0033:0x7f066746e929
[  237.328434][T11206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.328450][T11206] RSP: 002b:00007f0665ad7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  237.328469][T11206] RAX: ffffffffffffffda RBX: 00007f0667695fa0 RCX: 00007f066746e929
[  237.328482][T11206] RDX: 0000000000000006 RSI: 0000200000001280 RDI: 0000000000000004
[  237.328530][T11206] RBP: 00007f0665ad7090 R08: 0000000000000000 R09: 0000000000000000
[  237.328543][T11206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  237.328554][T11206] R13: 0000000000000000 R14: 00007f0667695fa0 R15: 00007ffee5020c48
[  237.328655][T11206]  </TASK>
[  237.658125][T11210] SELinux: ebitmap: truncated map
[  237.664906][T11210] SELinux: failed to load policy
[  237.735493][T11213] __nla_validate_parse: 2 callbacks suppressed
[  237.735507][T11213] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  237.864719][T11224] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2346'.
[  237.949542][T11224] 0�X���: renamed from caif0
[  237.959672][T11224] 0�X���: entered allmulticast mode
[  237.964909][T11224] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  238.127003][T11241] loop1: detected capacity change from 0 to 1024
[  238.181846][T11241] vhci_hcd: invalid port number 96
[  238.186985][T11241] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  238.211134][T11243] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  238.304205][T11254] netlink: 'syz.1.2359': attribute type 9 has an invalid length.
[  238.687059][T11273] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  238.696459][   T29] kauditd_printk_skb: 598 callbacks suppressed
[  238.696469][   T29] audit: type=1326 audit(1009.664:8479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11272 comm="syz.7.2367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  238.725764][   T29] audit: type=1326 audit(1009.664:8480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11272 comm="syz.7.2367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  238.759362][   T29] audit: type=1400 audit(1009.744:8481): avc:  denied  { listen } for  pid=11279 comm="syz.1.2370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  239.762285][T11293] netlink: 'syz.6.2372': attribute type 9 has an invalid length.
[  240.211824][   T29] audit: type=1326 audit(1011.204:8482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11311 comm="syz.7.2381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  240.246512][T11312] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  240.321135][T11314] loop6: detected capacity change from 0 to 2048
[  240.408995][   T29] audit: type=1326 audit(1011.204:8483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11311 comm="syz.7.2381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  240.432049][   T29] audit: type=1326 audit(1011.224:8484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11311 comm="syz.7.2381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  240.455139][   T29] audit: type=1326 audit(1011.224:8485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11311 comm="syz.7.2381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  240.478108][   T29] audit: type=1326 audit(1011.224:8486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11311 comm="syz.7.2381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  240.501112][   T29] audit: type=1326 audit(1011.224:8487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11311 comm="syz.7.2381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  240.524153][   T29] audit: type=1326 audit(1011.224:8488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11311 comm="syz.7.2381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  240.622655][T11318] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2383'.
[  240.649240][T11321] loop0: detected capacity change from 0 to 2048
[  240.671610][T11318] ip6gretap0: entered promiscuous mode
[  240.677197][T11318] macvtap2: entered promiscuous mode
[  240.677921][ T8845] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  240.682632][T11318] macvtap2: entered allmulticast mode
[  240.702300][T11318] ip6gretap0: entered allmulticast mode
[  240.738904][ T8845] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  240.761523][T11325] loop7: detected capacity change from 0 to 164
[  240.837523][T11322] ip6gretap0: left allmulticast mode
[  240.842971][T11322] ip6gretap0: left promiscuous mode
[  240.903930][T11328] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.2386'.
[  240.936572][ T3312] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  240.956666][ T3312] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  240.967964][T11333] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2387'.
[  241.096466][T11333] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2387'.
[  241.167218][T11345] loop7: detected capacity change from 0 to 128
[  241.189359][T11345] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  241.197185][T11345] FAT-fs (loop7): Filesystem has been set read-only
[  241.210030][T11343] loop0: detected capacity change from 0 to 1024
[  241.217882][T11345] syz.7.2393: attempt to access beyond end of device
[  241.217882][T11345] loop7: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  241.249290][T11345] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  241.257169][T11345] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  241.327261][T11345] syz.7.2393: attempt to access beyond end of device
[  241.327261][T11345] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  241.348239][T11352] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2395'.
[  241.357773][T11345] syz.7.2393: attempt to access beyond end of device
[  241.357773][T11345] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  241.537415][T11366] loop1: detected capacity change from 0 to 128
[  241.561472][T11362] loop0: detected capacity change from 0 to 4096
[  241.688589][T11366] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  241.696410][T11366] FAT-fs (loop1): Filesystem has been set read-only
[  241.748029][T11366] syz.1.2400: attempt to access beyond end of device
[  241.748029][T11366] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  241.764143][T11366] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  241.772152][T11366] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  241.794447][T11366] syz.1.2400: attempt to access beyond end of device
[  241.794447][T11366] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  241.816289][T11366] syz.1.2400: attempt to access beyond end of device
[  241.816289][T11366] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  241.816759][T11369] SET target dimension over the limit!
[  241.872082][T11328] Set syz1 is full, maxelem 65536 reached
[  241.903108][T11375] loop7: detected capacity change from 0 to 1024
[  241.922806][T11375] EXT4-fs: Ignoring removed orlov option
[  242.110128][T11375] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  242.121284][T11375] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  242.620630][T11402] vhci_hcd: invalid port number 96
[  242.625765][T11402] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  242.902874][T11402] __nla_validate_parse: 9 callbacks suppressed
[  242.902888][T11402] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2412'.
[  243.013075][T11412] loop1: detected capacity change from 0 to 128
[  243.050327][T11412] vfat: Unknown parameter '0x00007f95b5c23000'
[  243.152026][T11426] loop1: detected capacity change from 0 to 1024
[  243.188768][T11429] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2418'.
[  243.212663][T11429] ip6gretap0: entered promiscuous mode
[  243.231774][T11429] macvtap3: entered promiscuous mode
[  243.237125][T11429] macvtap3: entered allmulticast mode
[  243.242742][T11429] ip6gretap0: entered allmulticast mode
[  243.317858][T11434] ip6gretap0: left allmulticast mode
[  243.323257][T11434] ip6gretap0: left promiscuous mode
[  243.353751][T11439] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2419'.
[  243.386723][T11439] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2419'.
[  243.405456][T11440] loop6: detected capacity change from 0 to 1024
[  243.441977][T11440] vhci_hcd: invalid port number 96
[  243.447121][T11440] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  243.543884][T11444] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  243.642284][T11452] loop6: detected capacity change from 0 to 1024
[  243.686943][T11452] vhci_hcd: invalid port number 96
[  243.692145][T11452] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  244.031304][T11474] loop1: detected capacity change from 0 to 1024
[  244.076800][T11470] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  244.084361][T11470] batadv_slave_1: entered promiscuous mode
[  244.122022][T11470] ip6tnl1: entered promiscuous mode
[  244.127247][T11470] ip6tnl1: entered allmulticast mode
[  244.135748][T11482] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2434'.
[  244.179855][T11483] loop0: detected capacity change from 0 to 512
[  244.187168][T11482] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2434'.
[  244.249473][T11483] EXT4-fs: Ignoring removed orlov option
[  244.269610][T11483] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  244.319256][T11483] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  244.336713][T11483] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.2436: corrupted in-inode xattr: e_value size too large
[  244.371233][T11483] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.2436: couldn't read orphan inode 15 (err -117)
[  244.412858][T11491] loop6: detected capacity change from 0 to 1024
[  244.444409][T11491] vhci_hcd: invalid port number 96
[  244.449614][T11491] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  244.508107][   T29] kauditd_printk_skb: 177 callbacks suppressed
[  244.508120][   T29] audit: type=1400 audit(1015.474:8666): avc:  denied  { create } for  pid=11479 comm="syz.0.2436" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  244.572956][T11480] EXT4-fs error (device loop0): ext4_check_dx_root:2203: inode #2: comm syz.0.2436: Corrupt dir, invalid name_len for '..', running e2fsck is recommended
[  244.633318][T11483] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2436'.
[  244.670051][T11498] FAULT_INJECTION: forcing a failure.
[  244.670051][T11498] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  244.683169][T11498] CPU: 0 UID: 0 PID: 11498 Comm: syz.6.2441 Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  244.683252][T11498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  244.683268][T11498] Call Trace:
[  244.683273][T11498]  <TASK>
[  244.683280][T11498]  __dump_stack+0x1d/0x30
[  244.683299][T11498]  dump_stack_lvl+0xe8/0x140
[  244.683334][T11498]  dump_stack+0x15/0x1b
[  244.683348][T11498]  should_fail_ex+0x265/0x280
[  244.683379][T11498]  should_fail+0xb/0x20
[  244.683403][T11498]  should_fail_usercopy+0x1a/0x20
[  244.683454][T11498]  strncpy_from_user+0x25/0x230
[  244.683479][T11498]  ? kmem_cache_alloc_noprof+0x186/0x310
[  244.683505][T11498]  ? getname_flags+0x80/0x3b0
[  244.683525][T11498]  getname_flags+0xae/0x3b0
[  244.683573][T11498]  __se_sys_mq_unlink+0x6b/0x260
[  244.683618][T11498]  __x64_sys_mq_unlink+0x1f/0x30
[  244.683642][T11498]  x64_sys_call+0x1c2a/0x2fb0
[  244.683704][T11498]  do_syscall_64+0xd2/0x200
[  244.683724][T11498]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  244.683751][T11498]  ? clear_bhb_loop+0x40/0x90
[  244.683772][T11498]  ? clear_bhb_loop+0x40/0x90
[  244.683879][T11498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.683896][T11498] RIP: 0033:0x7f066746e929
[  244.683909][T11498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.683923][T11498] RSP: 002b:00007f0665ad7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f1
[  244.683940][T11498] RAX: ffffffffffffffda RBX: 00007f0667695fa0 RCX: 00007f066746e929
[  244.684027][T11498] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  244.684039][T11498] RBP: 00007f0665ad7090 R08: 0000000000000000 R09: 0000000000000000
[  244.684107][T11498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  244.684118][T11498] R13: 0000000000000000 R14: 00007f0667695fa0 R15: 00007ffee5020c48
[  244.684138][T11498]  </TASK>
[  244.939069][T11502] loop7: detected capacity change from 0 to 164
[  244.985836][T11502] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  245.117634][   T29] audit: type=1326 audit(1016.104:8667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11519 comm="syz.7.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  245.140722][   T29] audit: type=1326 audit(1016.104:8668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11519 comm="syz.7.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  245.221796][T11522] FAULT_INJECTION: forcing a failure.
[  245.221796][T11522] name failslab, interval 1, probability 0, space 0, times 0
[  245.234555][T11522] CPU: 0 UID: 0 PID: 11522 Comm: syz.0.2453 Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  245.234582][T11522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  245.234594][T11522] Call Trace:
[  245.234600][T11522]  <TASK>
[  245.234606][T11522]  __dump_stack+0x1d/0x30
[  245.234684][T11522]  dump_stack_lvl+0xe8/0x140
[  245.234704][T11522]  dump_stack+0x15/0x1b
[  245.234721][T11522]  should_fail_ex+0x265/0x280
[  245.234813][T11522]  ? _request_firmware+0x1a3/0xbb0
[  245.234836][T11522]  should_failslab+0x8c/0xb0
[  245.234876][T11522]  __kmalloc_cache_noprof+0x4c/0x320
[  245.234908][T11522]  _request_firmware+0x1a3/0xbb0
[  245.234935][T11522]  ? __rcu_read_unlock+0x4f/0x70
[  245.234966][T11522]  ? avc_has_perm_noaudit+0x1b1/0x200
[  245.234990][T11522]  ? __rcu_read_unlock+0x4f/0x70
[  245.235009][T11522]  request_firmware+0x36/0x50
[  245.235150][T11522]  devlink_compat_flash_update+0xb2/0x1b0
[  245.235178][T11522]  dev_ethtool+0x148b/0x1650
[  245.235196][T11522]  ? full_name_hash+0x92/0xe0
[  245.235222][T11522]  dev_ioctl+0x2e0/0x960
[  245.235319][T11522]  sock_do_ioctl+0x197/0x220
[  245.235344][T11522]  sock_ioctl+0x41b/0x610
[  245.235367][T11522]  ? __pfx_sock_ioctl+0x10/0x10
[  245.235388][T11522]  __se_sys_ioctl+0xcb/0x140
[  245.235412][T11522]  __x64_sys_ioctl+0x43/0x50
[  245.235460][T11522]  x64_sys_call+0x19a8/0x2fb0
[  245.235548][T11522]  do_syscall_64+0xd2/0x200
[  245.235566][T11522]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  245.235646][T11522]  ? clear_bhb_loop+0x40/0x90
[  245.235667][T11522]  ? clear_bhb_loop+0x40/0x90
[  245.235689][T11522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.235711][T11522] RIP: 0033:0x7fbb35d7e929
[  245.235725][T11522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.235805][T11522] RSP: 002b:00007fbb343e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  245.235825][T11522] RAX: ffffffffffffffda RBX: 00007fbb35fa5fa0 RCX: 00007fbb35d7e929
[  245.235873][T11522] RDX: 0000200000000340 RSI: 0000000000008946 RDI: 0000000000000003
[  245.235886][T11522] RBP: 00007fbb343e7090 R08: 0000000000000000 R09: 0000000000000000
[  245.235899][T11522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.235912][T11522] R13: 0000000000000000 R14: 00007fbb35fa5fa0 R15: 00007ffc035fe1d8
[  245.235934][T11522]  </TASK>
[  245.235959][T11522] netdevsim netdevsim0: _request_firmware_prepare: kmalloc(struct firmware) failed
[  245.309359][T11531] loop7: detected capacity change from 0 to 1024
[  245.314280][   T29] audit: type=1326 audit(1016.104:8669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11519 comm="syz.7.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  245.428798][T11533] loop1: detected capacity change from 0 to 1024
[  245.436530][   T29] audit: type=1326 audit(1016.104:8670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11519 comm="syz.7.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  245.543363][   T29] audit: type=1326 audit(1016.104:8671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11519 comm="syz.7.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  245.566424][   T29] audit: type=1326 audit(1016.104:8672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11519 comm="syz.7.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  245.589422][   T29] audit: type=1326 audit(1016.104:8673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11519 comm="syz.7.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  245.612629][   T29] audit: type=1326 audit(1016.104:8674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11519 comm="syz.7.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  245.635717][   T29] audit: type=1326 audit(1016.104:8675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11519 comm="syz.7.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  245.712348][T11533] vhci_hcd: invalid port number 96
[  245.717514][T11533] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  245.731703][T11551] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2463'.
[  245.741651][T11552] tipc: Started in network mode
[  245.746595][T11552] tipc: Node identity 7efd9ac5fa9e, cluster identity 4711
[  245.753821][T11552] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  245.782864][T11551] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2463'.
[  245.801784][T11554] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  245.808313][T11554] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  245.816068][T11554] vhci_hcd vhci_hcd.0: Device attached
[  245.816838][T11552] tipc: Disabling bearer <eth:syzkaller0>
[  245.825402][T11554] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2466'.
[  245.867608][T11555] vhci_hcd: connection closed
[  245.871581][   T31] vhci_hcd: stop threads
[  245.880582][   T31] vhci_hcd: release socket
[  245.885042][   T31] vhci_hcd: disconnect device
[  245.933433][T11557] loop6: detected capacity change from 0 to 2048
[  246.088947][T11575] loop7: detected capacity change from 0 to 1024
[  246.137301][T11575] loop7: detected capacity change from 0 to 512
[  246.153748][T11575] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  246.202462][T11575] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  246.242000][T11575] EXT4-fs (loop7): orphan cleanup on readonly fs
[  246.296403][T11575] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.2473: bg 0: block 248: padding at end of block bitmap is not set
[  246.382555][T11575] EXT4-fs error (device loop7): ext4_acquire_dquot:6933: comm syz.7.2473: Failed to acquire dquot type 1
[  246.423991][T11557]  loop6: unable to read partition table
[  246.455119][T11557] loop6: partition table beyond EOD, truncated
[  246.461438][T11557] loop_reread_partitions: partition scan of loop6 () failed (rc=-5)
[  246.499596][T11575] EXT4-fs (loop7): 1 truncate cleaned up
[  246.907031][T11593] loop0: detected capacity change from 0 to 1024
[  246.924879][T11575] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[  246.952756][T11575] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  247.039316][T11600] vhci_hcd: invalid port number 96
[  247.044445][T11600] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  247.074459][T11575] EXT4-fs error (device loop7): __ext4_remount:6736: comm syz.7.2473: Abort forced by user
[  247.130305][T11575] EXT4-fs (loop7): Remounting filesystem read-only
[  247.136881][T11575] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  247.187253][T11604] FAULT_INJECTION: forcing a failure.
[  247.187253][T11604] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  247.200426][T11604] CPU: 1 UID: 0 PID: 11604 Comm: syz.6.2481 Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  247.200456][T11604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  247.200467][T11604] Call Trace:
[  247.200473][T11604]  <TASK>
[  247.200479][T11604]  __dump_stack+0x1d/0x30
[  247.200498][T11604]  dump_stack_lvl+0xe8/0x140
[  247.200562][T11604]  dump_stack+0x15/0x1b
[  247.200579][T11604]  should_fail_ex+0x265/0x280
[  247.200682][T11604]  should_fail+0xb/0x20
[  247.200706][T11604]  should_fail_usercopy+0x1a/0x20
[  247.200734][T11604]  _copy_from_user+0x1c/0xb0
[  247.200757][T11604]  __ia32_sys_rt_sigreturn+0x128/0x350
[  247.200798][T11604]  x64_sys_call+0x2e8a/0x2fb0
[  247.200817][T11604]  do_syscall_64+0xd2/0x200
[  247.200835][T11604]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  247.200879][T11604]  ? clear_bhb_loop+0x40/0x90
[  247.200902][T11604]  ? clear_bhb_loop+0x40/0x90
[  247.200922][T11604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.200939][T11604] RIP: 0033:0x7f066740ab19
[  247.200952][T11604] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  247.201003][T11604] RSP: 002b:00007f0665ad6a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  247.201021][T11604] RAX: ffffffffffffffda RBX: 00007f0667695fa0 RCX: 00007f066740ab19
[  247.201031][T11604] RDX: 00007f0665ad6a80 RSI: 00007f0665ad6bb0 RDI: 0000000000000021
[  247.201107][T11604] RBP: 00007f0665ad7090 R08: 0000000000000000 R09: 0000000000000000
[  247.201121][T11604] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  247.201134][T11604] R13: 0000000000000000 R14: 00007f0667695fa0 R15: 00007ffee5020c48
[  247.201157][T11604]  </TASK>
[  248.179408][T11617] __nla_validate_parse: 2 callbacks suppressed
[  248.179421][T11617] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  248.198200][T11618] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2486'.
[  248.221821][T11618] ip6gretap0: entered promiscuous mode
[  248.227700][T11618] macvtap1: entered promiscuous mode
[  248.233106][T11618] macvtap1: entered allmulticast mode
[  248.238606][T11618] ip6gretap0: entered allmulticast mode
[  248.593283][T11636] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2496'.
[  248.609478][T11636] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2496'.
[  248.746867][T11650] loop1: detected capacity change from 0 to 1024
[  248.768607][T11645] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  248.803568][T11650] EXT4-fs mount: 49 callbacks suppressed
[  248.803580][T11650] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.009363][T11650] vhci_hcd: invalid port number 96
[  249.014533][T11650] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  249.029991][T11658] SET target dimension over the limit!
[  249.140467][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.615089][   T29] kauditd_printk_skb: 378 callbacks suppressed
[  249.615104][   T29] audit: type=1400 audit(1020.574:9052): avc:  denied  { audit_write } for  pid=11671 comm="syz.7.2509" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  249.642124][   T29] audit: type=1107 audit(1020.574:9053): pid=11671 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  250.191308][T11688] netlink: 'syz.1.2515': attribute type 9 has an invalid length.
[  250.296637][T11694] loop0: detected capacity change from 0 to 2048
[  250.451848][T11694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.492096][   T29] audit: type=1326 audit(1021.474:9054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.1.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  250.515242][   T29] audit: type=1326 audit(1021.474:9055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.1.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  250.538508][   T29] audit: type=1326 audit(1021.474:9056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.1.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  250.561575][   T29] audit: type=1326 audit(1021.474:9057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.1.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  250.584578][   T29] audit: type=1326 audit(1021.474:9058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.1.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  250.607627][   T29] audit: type=1326 audit(1021.474:9059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.1.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  250.630600][   T29] audit: type=1326 audit(1021.474:9060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.1.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  250.653597][   T29] audit: type=1326 audit(1021.484:9061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.1.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f95b75de929 code=0x7ffc0000
[  250.958211][ T3312] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  251.067436][ T3312] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  251.104853][T11723] loop4: detected capacity change from 0 to 164
[  251.153041][T11723] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  251.172390][T11725] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2531'.
[  251.181299][T11725] sch_tbf: burst 0 is lower than device syz_tun mtu (1514) !
[  251.208216][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.326851][T11734] loop0: detected capacity change from 0 to 1024
[  251.356914][T11732] netlink: 'syz.6.2535': attribute type 12 has an invalid length.
[  251.379467][T11734] loop0: detected capacity change from 0 to 512
[  251.408382][T11734] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  251.436824][T11739] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2536'.
[  251.451929][T11734] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  251.473742][T11734] EXT4-fs (loop0): orphan cleanup on readonly fs
[  251.490016][T11734] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2527: bg 0: block 248: padding at end of block bitmap is not set
[  251.529196][T11734] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.2527: Failed to acquire dquot type 1
[  251.555574][T11734] EXT4-fs (loop0): 1 truncate cleaned up
[  251.566838][T11734] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  251.584867][T11734] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  251.596082][T11734] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  251.629740][T11734] EXT4-fs error (device loop0): __ext4_remount:6736: comm syz.0.2527: Abort forced by user
[  251.642066][T11734] EXT4-fs (loop0): Remounting filesystem read-only
[  251.648791][T11734] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  251.690765][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.785474][T11761] loop0: detected capacity change from 0 to 164
[  251.796012][T11761] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  251.815055][T11762] FAULT_INJECTION: forcing a failure.
[  251.815055][T11762] name failslab, interval 1, probability 0, space 0, times 0
[  251.827679][T11762] CPU: 0 UID: 0 PID: 11762 Comm: syz.1.2543 Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  251.827774][T11762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  251.827784][T11762] Call Trace:
[  251.827790][T11762]  <TASK>
[  251.827796][T11762]  __dump_stack+0x1d/0x30
[  251.827819][T11762]  dump_stack_lvl+0xe8/0x140
[  251.827837][T11762]  dump_stack+0x15/0x1b
[  251.827932][T11762]  should_fail_ex+0x265/0x280
[  251.827964][T11762]  should_failslab+0x8c/0xb0
[  251.827984][T11762]  __kvmalloc_node_noprof+0x123/0x4e0
[  251.828078][T11762]  ? nf_hook_entries_grow+0x1bc/0x450
[  251.828103][T11762]  ? xas_load+0x413/0x430
[  251.828131][T11762]  nf_hook_entries_grow+0x1bc/0x450
[  251.828190][T11762]  ? pcpu_block_refresh_hint+0x10b/0x170
[  251.828258][T11762]  __nf_register_net_hook+0x18e/0x480
[  251.828292][T11762]  nf_register_net_hook+0x88/0x130
[  251.828378][T11762]  nf_register_net_hooks+0x44/0x150
[  251.828411][T11762]  nf_defrag_ipv4_enable+0x6e/0xc0
[  251.828436][T11762]  tproxy_tg4_check+0x2d/0x100
[  251.828454][T11762]  xt_check_target+0x28d/0x4c0
[  251.828527][T11762]  ? strnlen+0x28/0x50
[  251.828543][T11762]  ? strcmp+0x22/0x50
[  251.828558][T11762]  ? xt_find_target+0x1cd/0x200
[  251.828583][T11762]  translate_table+0xc31/0xf90
[  251.828671][T11762]  do_ipt_set_ctl+0x66f/0x820
[  251.828695][T11762]  ? _raw_spin_unlock_bh+0x36/0x40
[  251.828715][T11762]  ? tcp_release_cb+0xf1/0x370
[  251.828774][T11762]  nf_setsockopt+0x199/0x1b0
[  251.828797][T11762]  ip_setsockopt+0x102/0x110
[  251.828851][T11762]  tcp_setsockopt+0x95/0xb0
[  251.828880][T11762]  sock_common_setsockopt+0x69/0x80
[  251.828911][T11762]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  251.828991][T11762]  __sys_setsockopt+0x184/0x200
[  251.829018][T11762]  __x64_sys_setsockopt+0x64/0x80
[  251.829096][T11762]  x64_sys_call+0x2bd5/0x2fb0
[  251.829188][T11762]  do_syscall_64+0xd2/0x200
[  251.829232][T11762]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  251.829253][T11762]  ? clear_bhb_loop+0x40/0x90
[  251.829271][T11762]  ? clear_bhb_loop+0x40/0x90
[  251.829292][T11762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.829314][T11762] RIP: 0033:0x7f95b75de929
[  251.829331][T11762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.829346][T11762] RSP: 002b:00007f95b5c47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  251.829362][T11762] RAX: ffffffffffffffda RBX: 00007f95b7805fa0 RCX: 00007f95b75de929
[  251.829373][T11762] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  251.829385][T11762] RBP: 00007f95b5c47090 R08: 0000000000000570 R09: 0000000000000000
[  251.829469][T11762] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000001
[  251.829480][T11762] R13: 0000000000000000 R14: 00007f95b7805fa0 R15: 00007fff82576698
[  251.829497][T11762]  </TASK>
[  252.191693][T11770] Cannot find del_set index 0 as target
[  252.453787][T11786] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  252.501270][T11765] loop0: detected capacity change from 0 to 512
[  252.662079][T11765] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  252.797390][T11765] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.819332][T11794] loop6: detected capacity change from 0 to 764
[  253.027140][T11794] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  253.039237][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.082244][T11805] netlink: 'syz.7.2558': attribute type 9 has an invalid length.
[  253.113637][T11794] netlink: 'syz.6.2552': attribute type 1 has an invalid length.
[  253.121400][T11794] netlink: 224 bytes leftover after parsing attributes in process `syz.6.2552'.
[  253.137052][T11806] loop4: detected capacity change from 0 to 1024
[  253.171250][T11806] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.221403][T11806] vhci_hcd: invalid port number 96
[  253.226547][T11806] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  253.235977][T11810] loop0: detected capacity change from 0 to 2048
[  253.300203][T11810] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.330056][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.434230][ T3312] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  253.487885][T11546] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  253.527800][ T3312] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  253.582386][T11821] loop6: detected capacity change from 0 to 2048
[  253.598271][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.786939][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.794394][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.801874][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.812884][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.820298][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.827675][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.835130][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.842532][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.849960][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.857337][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.864813][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.872265][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.879697][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.887123][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.894586][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.902071][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.909566][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.916939][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.924331][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.931783][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.939284][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.946678][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.954161][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.961675][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.969127][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.976494][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.984016][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.991440][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  253.998907][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.006278][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.013683][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.021175][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.028654][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.036031][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.043474][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.050958][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.058377][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.065770][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.073184][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.080584][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.088020][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.095417][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.102837][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.110255][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.117695][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.125106][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.132511][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.139984][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.147353][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.154753][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.162139][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.169532][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.176904][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.184293][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.191758][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.199236][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.206658][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.214075][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.221456][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.228954][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.236367][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.243784][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.251192][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.258585][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.265953][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.273397][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.280780][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.288247][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.295615][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.303005][   T10] hid-generic 0008:F427:000D.002C: unknown main item tag 0x0
[  254.645807][T11850] Cannot find del_set index 0 as target
[  254.739972][T11821] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  254.789338][T11821] EXT4-fs (loop6): shut down requested (0)
[  254.789673][   T29] kauditd_printk_skb: 415 callbacks suppressed
[  254.789685][   T29] audit: type=1400 audit(1025.784:9475): avc:  denied  { ioctl } for  pid=11820 comm="syz.6.2562" path="/242/file0/blkio.bfq.io_queued" dev="loop6" ino=18 ioctlcmd=0x587d scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  254.840352][T11862] EXT4-fs error (device loop6): ext4_iget_extra_inode:5035: inode #12: comm syz.6.2562: corrupted in-inode xattr: e_name out of bounds
[  254.908548][   T10] hid-generic 0008:F427:000D.002C: hidraw0: <UNKNOWN> HID v0.18 Device [syz1] on syz1
[  254.919197][T11861] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  254.981132][T11866] fido_id[11866]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  255.217003][T11872] loop7: detected capacity change from 0 to 512
[  255.223754][T11872] EXT4-fs: Ignoring removed mblk_io_submit option
[  255.230290][T11872] EXT4-fs: Ignoring removed bh option
[  255.236438][T11872] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  255.253986][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.283785][T11872] EXT4-fs (loop7): 1 truncate cleaned up
[  255.290141][T11872] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.676882][   T29] audit: type=1326 audit(1026.664:9476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11884 comm="syz.0.2586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb35d7e929 code=0x7ffc0000
[  255.700029][   T29] audit: type=1326 audit(1026.664:9477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11884 comm="syz.0.2586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb35d7e929 code=0x7ffc0000
[  255.791755][T10163] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.802036][   T29] audit: type=1326 audit(1026.764:9478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11884 comm="syz.0.2586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbb35d7e929 code=0x7ffc0000
[  255.825056][   T29] audit: type=1326 audit(1026.764:9479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11884 comm="syz.0.2586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb35d7e929 code=0x7ffc0000
[  255.848050][   T29] audit: type=1326 audit(1026.764:9480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11884 comm="syz.0.2586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb35d7e929 code=0x7ffc0000
[  255.931475][T11891] netlink: 'syz.0.2588': attribute type 9 has an invalid length.
[  256.113246][   T29] audit: type=1326 audit(1026.864:9481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11884 comm="syz.0.2586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbb35d7e929 code=0x7ffc0000
[  256.136321][   T29] audit: type=1326 audit(1026.864:9482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11884 comm="syz.0.2586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb35d7e929 code=0x7ffc0000
[  256.215145][T11897] loop4: detected capacity change from 0 to 1024
[  256.255695][T11900] loop0: detected capacity change from 0 to 1024
[  256.275278][T11897] loop4: detected capacity change from 0 to 512
[  256.313343][T11897] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  256.338276][T11900] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.367540][T11897] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  256.390893][T11897] EXT4-fs (loop4): orphan cleanup on readonly fs
[  256.406818][T11897] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2591: bg 0: block 248: padding at end of block bitmap is not set
[  256.437929][T11897] Quota error (device loop4): write_blk: dquota write failed
[  256.445336][T11897] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  256.455330][T11897] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.2591: Failed to acquire dquot type 1
[  256.510184][T11897] EXT4-fs (loop4): 1 truncate cleaned up
[  256.670996][T11897] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  256.685018][T11897] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  256.696313][T11897] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  256.738495][T11897] EXT4-fs error (device loop4): __ext4_remount:6736: comm syz.4.2591: Abort forced by user
[  256.771146][T11897] EXT4-fs (loop4): Remounting filesystem read-only
[  256.777671][T11897] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  256.844913][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.870112][T11908] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  256.952267][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.050250][T11914] loop0: detected capacity change from 0 to 2048
[  257.105151][T11918] SELinux: syz.1.2597 (11918) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  257.151853][ T3487]  loop0: p1 < > p4
[  257.156359][ T3487] loop0: p4 size 8388608 extends beyond EOD, truncated
[  257.183707][T11918] veth1_to_bond: entered allmulticast mode
[  257.198786][T11914]  loop0: p1 < > p4
[  257.203283][T11914] loop0: p4 size 8388608 extends beyond EOD, truncated
[  257.218264][T11918] veth1_to_bond: entered promiscuous mode
[  257.226065][T11924] netlink: 'syz.4.2600': attribute type 9 has an invalid length.
[  257.238615][ T2997]  loop0: p1 < > p4
[  257.249975][T11918] veth1_to_bond: left promiscuous mode
[  257.255628][T11918] veth1_to_bond: left allmulticast mode
[  257.263642][ T2997] loop0: p4 size 8388608 extends beyond EOD, truncated
[  257.345603][ T2997]  loop0: p1 < > p4
[  257.367302][ T2997] loop0: p4 size 8388608 extends beyond EOD, truncated
[  257.453851][T11929] tipc: Started in network mode
[  257.458824][T11929] tipc: Node identity 961aa995daf, cluster identity 4711
[  257.465912][T11929] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  257.493990][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  257.586267][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  257.607324][T11936] tipc: Disabling bearer <eth:syzkaller0>
[  257.670132][T11935] loop4: detected capacity change from 0 to 1024
[  257.742859][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  257.781460][T11935] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.923994][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.950411][T11950] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  258.118035][T11959] SET target dimension over the limit!
[  258.129947][T11964] Cannot find del_set index 0 as target
[  258.289237][T11980] tipc: Started in network mode
[  258.294140][T11980] tipc: Node identity 3ade302b2a9b, cluster identity 4711
[  258.301355][T11980] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  258.363484][T11984] tipc: Disabling bearer <eth:syzkaller0>
[  258.519899][T11992] loop0: detected capacity change from 0 to 512
[  258.559897][T11992] EXT4-fs: Ignoring removed mblk_io_submit option
[  258.904537][T11992] EXT4-fs: Ignoring removed mblk_io_submit option
[  258.927700][T12006] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2630'.
[  259.034598][T11992] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  259.213992][T12006] loop1: detected capacity change from 0 to 512
[  259.242543][T11992] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  259.272296][T12006] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.2630: casefold flag without casefold feature
[  259.332368][T12006] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.2630: couldn't read orphan inode 15 (err -117)
[  259.378616][T11992] System zones: 1-12
[  259.403986][T11992] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.2625: corrupted in-inode xattr: e_value size too large
[  259.431614][T12006] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.512383][T12024] loop4: detected capacity change from 0 to 1024
[  259.560261][T12024] loop4: detected capacity change from 0 to 512
[  259.570373][T11992] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.2625: couldn't read orphan inode 15 (err -117)
[  259.582765][T11992] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  259.594992][T12024] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  259.709192][T12024] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  259.831072][T12024] EXT4-fs (loop4): orphan cleanup on readonly fs
[  259.843480][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.864520][T12024] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2635: bg 0: block 248: padding at end of block bitmap is not set
[  259.906942][T12024] __quota_error: 62 callbacks suppressed
[  259.906961][T12024] Quota error (device loop4): write_blk: dquota write failed
[  259.920134][T12024] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  259.930063][T12024] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.2635: Failed to acquire dquot type 1
[  260.000896][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.019731][T12024] EXT4-fs (loop4): 1 truncate cleaned up
[  260.041911][T12024] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  260.104653][T12024] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  260.124920][T12024] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  260.161610][T12024] EXT4-fs error (device loop4): __ext4_remount:6736: comm syz.4.2635: Abort forced by user
[  260.192382][T12024] EXT4-fs (loop4): Remounting filesystem read-only
[  260.199013][T12024] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  260.273388][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.706226][   T29] audit: type=1326 audit(1031.694:9545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12040 comm="syz.1.2641" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f95b75de929 code=0x0
[  260.758983][   T29] audit: type=1326 audit(1031.754:9546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12047 comm="syz.7.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  260.779116][T12048] loop7: detected capacity change from 0 to 128
[  260.804117][T12048] syz.7.2644: attempt to access beyond end of device
[  260.804117][T12048] loop7: rw=2049, sector=129, nr_sectors = 8 limit=128
[  260.819230][T12048] syz.7.2644: attempt to access beyond end of device
[  260.819230][T12048] loop7: rw=2049, sector=145, nr_sectors = 8 limit=128
[  260.851126][   T29] audit: type=1326 audit(1031.754:9547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12047 comm="syz.7.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  260.874162][   T29] audit: type=1326 audit(1031.754:9548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12047 comm="syz.7.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  260.897350][   T29] audit: type=1326 audit(1031.754:9549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12047 comm="syz.7.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  260.920334][   T29] audit: type=1326 audit(1031.754:9550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12047 comm="syz.7.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  260.933808][T12054] loop6: detected capacity change from 0 to 1024
[  260.943240][   T29] audit: type=1326 audit(1031.754:9551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12047 comm="syz.7.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  260.972674][   T29] audit: type=1326 audit(1031.754:9552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12047 comm="syz.7.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  261.018545][T12056] FAT-fs (loop7): error, invalid access to FAT (entry 0x05000006)
[  261.026440][T12056] FAT-fs (loop7): Filesystem has been set read-only
[  261.080653][T12066] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  261.202133][T12070] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.227625][T12054] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.399699][T12070] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.431748][T12050] vhci_hcd: invalid port number 96
[  261.436893][T12050] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  261.455858][T12070] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.528942][T12070] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.603406][T12070] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  261.614521][T12070] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  261.626135][T12070] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  261.634866][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.689186][T12070] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  261.906585][T12089] loop7: detected capacity change from 0 to 512
[  261.931608][T12089] EXT4-fs: Ignoring removed mblk_io_submit option
[  261.958396][T12089] EXT4-fs: Ignoring removed mblk_io_submit option
[  261.985988][T12089] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  262.082305][T12089] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  262.098611][T12092] netlink: 'syz.4.2657': attribute type 9 has an invalid length.
[  262.117973][T12089] System zones: 1-12
[  262.126366][T12089] EXT4-fs error (device loop7): ext4_iget_extra_inode:5035: inode #15: comm syz.7.2656: corrupted in-inode xattr: e_value size too large
[  262.160799][T12089] EXT4-fs error (device loop7): ext4_orphan_get:1398: comm syz.7.2656: couldn't read orphan inode 15 (err -117)
[  262.194241][T12089] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.284569][T10163] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.490529][T12103] loop0: detected capacity change from 0 to 1024
[  262.511465][T12103] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.531240][T12103] vhci_hcd: invalid port number 96
[  262.536368][T12103] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  262.557200][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.625441][T12112] loop0: detected capacity change from 0 to 2048
[  262.651150][T12112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.722371][T12111] Cannot find del_set index 0 as target
[  262.752172][ T3312] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  262.809214][ T3312] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  262.851721][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.083919][T12129] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  263.267795][T12132] SET target dimension over the limit!
[  263.360126][T12144] loop4: detected capacity change from 0 to 2048
[  263.660610][T12144]  loop4: p1 < > p4
[  263.793171][T12144] loop4: p4 size 8388608 extends beyond EOD, truncated
[  263.846082][T12151] loop6: detected capacity change from 0 to 512
[  263.854310][T12151] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  263.865523][T12151] EXT4-fs (loop6): orphan cleanup on readonly fs
[  263.872502][T12151] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.2673: Failed to acquire dquot type 1
[  263.887539][T12151] EXT4-fs (loop6): 1 truncate cleaned up
[  264.430379][T12150] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  264.531256][T12163] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  264.616589][T12166] loop4: detected capacity change from 0 to 512
[  264.635991][T12151] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  264.723262][T12166] EXT4-fs: Ignoring removed mblk_io_submit option
[  264.778295][T12166] EXT4-fs: Ignoring removed mblk_io_submit option
[  264.819790][ T3299] udevd[3299]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  265.009450][T12166] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  265.032357][T12166] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  265.061492][T12166] System zones: 1-12
[  265.075868][T12166] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.2680: corrupted in-inode xattr: e_value size too large
[  265.119731][T12166] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.2680: couldn't read orphan inode 15 (err -117)
[  265.161877][T12166] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  265.288185][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.341369][   T29] kauditd_printk_skb: 410 callbacks suppressed
[  265.341383][   T29] audit: type=1400 audit(1036.334:9961): avc:  denied  { create } for  pid=12172 comm="syz.1.2682" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=x25_socket permissive=1
[  265.430836][T12175] netlink: 'syz.1.2682': attribute type 10 has an invalid length.
[  265.469779][T12175] team0: Device hsr_slave_0 failed to register rx_handler
[  265.479908][   T29] audit: type=1326 audit(1036.364:9962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.1.2682" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f95b75de929 code=0x0
[  265.561609][T12179] loop0: detected capacity change from 0 to 1024
[  265.573219][T12178] tipc: Started in network mode
[  265.578111][T12178] tipc: Node identity 420fe732eef4, cluster identity 4711
[  265.585303][T12178] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  265.643688][T12179] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  265.677312][T12182] tipc: Disabling bearer <eth:syzkaller0>
[  265.696248][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  265.906596][T12188] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2685'.
[  265.981970][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.996035][T12188] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2685'.
[  266.037865][   T29] audit: type=1326 audit(1037.014:9963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12191 comm="syz.4.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdc036e929 code=0x7ffc0000
[  266.060932][   T29] audit: type=1326 audit(1037.014:9964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12191 comm="syz.4.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdc036e929 code=0x7ffc0000
[  266.084154][   T29] audit: type=1326 audit(1037.014:9965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12191 comm="syz.4.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcdc036e929 code=0x7ffc0000
[  266.107122][   T29] audit: type=1326 audit(1037.014:9966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12191 comm="syz.4.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdc036e929 code=0x7ffc0000
[  266.130198][   T29] audit: type=1326 audit(1037.014:9967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12191 comm="syz.4.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcdc036e929 code=0x7ffc0000
[  266.153194][   T29] audit: type=1326 audit(1037.014:9968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12191 comm="syz.4.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdc036e929 code=0x7ffc0000
[  266.176216][   T29] audit: type=1326 audit(1037.014:9969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12191 comm="syz.4.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcdc036e929 code=0x7ffc0000
[  266.199148][   T29] audit: type=1326 audit(1037.014:9970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12191 comm="syz.4.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdc036e929 code=0x7ffc0000
[  266.240733][T12199] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  266.270574][T12202] loop6: detected capacity change from 0 to 164
[  266.560169][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.573209][T12220] SELinux: syz.1.2700 (12220) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  266.888150][T12243] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  266.958350][T12246] SET target dimension over the limit!
[  267.152308][T12257] loop1: detected capacity change from 0 to 2048
[  267.209071][T12258] SELinux: syz.0.2711 (12258) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  267.228232][T12257] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  267.414123][ T3306] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  267.429071][T12269] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  267.520985][ T3306] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  267.584336][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.737651][T12293] loop1: detected capacity change from 0 to 2048
[  267.749121][T12297] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  267.799283][T12293] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  267.829809][T12304] SELinux: syz.7.2728 (12304) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  267.880642][ T3306] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  267.910147][ T3306] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  267.950722][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.000534][T12309] loop1: detected capacity change from 0 to 1024
[  268.025112][T12309] loop1: detected capacity change from 0 to 512
[  268.032567][T12309] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  268.045313][T12309] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  268.078587][T12309] EXT4-fs (loop1): orphan cleanup on readonly fs
[  268.107908][T12309] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2730: bg 0: block 248: padding at end of block bitmap is not set
[  268.139906][T12309] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2730: Failed to acquire dquot type 1
[  268.201003][T12309] EXT4-fs (loop1): 1 truncate cleaned up
[  268.211857][T12309] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  268.258303][T12315] 0�X���: left allmulticast mode
[  268.263295][T12315] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  268.283749][T12320] loop7: detected capacity change from 0 to 128
[  268.284152][T12309] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  268.318800][T12309] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0102]
[  268.337955][T12309] EXT4-fs error (device loop1): __ext4_remount:6736: comm syz.1.2730: Abort forced by user
[  268.359357][T12309] EXT4-fs (loop1): Remounting filesystem read-only
[  268.365868][T12309] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  268.402304][T12322] loop6: detected capacity change from 0 to 1024
[  268.412076][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.461127][T12320] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  268.469101][T12320] FAT-fs (loop7): Filesystem has been set read-only
[  268.496027][T12320] syz.7.2734: attempt to access beyond end of device
[  268.496027][T12320] loop7: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  268.576896][T12320] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  268.584839][T12320] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  268.604850][T12322] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  268.659979][T12323] syz.7.2734: attempt to access beyond end of device
[  268.659979][T12323] loop7: rw=0, sector=2065, nr_sectors = 1 limit=128
[  268.673316][T12323] Buffer I/O error on dev loop7, logical block 2065, async page read
[  268.772349][T12322] vhci_hcd: invalid port number 96
[  268.777570][T12322] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  268.797912][T12338] netlink: 'syz.4.2739': attribute type 9 has an invalid length.
[  268.814201][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.832667][T12323] syz.7.2734: attempt to access beyond end of device
[  268.832667][T12323] loop7: rw=0, sector=2066, nr_sectors = 1 limit=128
[  268.845899][T12323] Buffer I/O error on dev loop7, logical block 2066, async page read
[  268.875517][T12340] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  268.897911][T12342] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  268.930575][T12323] syz.7.2734: attempt to access beyond end of device
[  268.930575][T12323] loop7: rw=0, sector=2067, nr_sectors = 1 limit=128
[  268.943875][T12323] Buffer I/O error on dev loop7, logical block 2067, async page read
[  268.970590][T12346] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  268.997746][T12348] Cannot find del_set index 0 as target
[  269.058317][T12323] syz.7.2734: attempt to access beyond end of device
[  269.058317][T12323] loop7: rw=0, sector=2068, nr_sectors = 1 limit=128
[  269.071557][T12323] Buffer I/O error on dev loop7, logical block 2068, async page read
[  269.160341][T12323] syz.7.2734: attempt to access beyond end of device
[  269.160341][T12323] loop7: rw=0, sector=2069, nr_sectors = 1 limit=128
[  269.173660][T12323] Buffer I/O error on dev loop7, logical block 2069, async page read
[  269.267755][T12359] loop6: detected capacity change from 0 to 1024
[  269.285065][T12323] syz.7.2734: attempt to access beyond end of device
[  269.285065][T12323] loop7: rw=0, sector=2070, nr_sectors = 1 limit=128
[  269.298382][T12323] Buffer I/O error on dev loop7, logical block 2070, async page read
[  269.359121][T12323] syz.7.2734: attempt to access beyond end of device
[  269.359121][T12323] loop7: rw=0, sector=2071, nr_sectors = 1 limit=128
[  269.372352][T12323] Buffer I/O error on dev loop7, logical block 2071, async page read
[  269.426884][T12323] syz.7.2734: attempt to access beyond end of device
[  269.426884][T12323] loop7: rw=0, sector=2072, nr_sectors = 1 limit=128
[  269.440137][T12323] Buffer I/O error on dev loop7, logical block 2072, async page read
[  269.464848][T12373] loop1: detected capacity change from 0 to 1024
[  269.491062][T12371] loop0: detected capacity change from 0 to 512
[  269.499455][T12371] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  269.509375][T12371] EXT4-fs (loop0): orphan cleanup on readonly fs
[  269.516004][T12371] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.2751: Failed to acquire dquot type 1
[  269.528726][T12371] EXT4-fs (loop0): 1 truncate cleaned up
[  269.618964][T12373] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  269.662467][T12373] vhci_hcd: invalid port number 96
[  269.667599][T12373] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  269.687531][T12359] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  269.702830][T12384] netlink: 'syz.7.2756': attribute type 9 has an invalid length.
[  269.807655][T12359] vhci_hcd: invalid port number 96
[  269.813077][T12359] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  270.134997][T12393] loop4: detected capacity change from 0 to 2048
[  270.290884][T12393]  loop4: p1 < > p4
[  270.315458][T12393] loop4: p4 size 8388608 extends beyond EOD, truncated
[  270.339705][T12371] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  270.388629][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.401473][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.656556][T12398] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  271.217885][   T29] kauditd_printk_skb: 229 callbacks suppressed
[  271.217900][   T29] audit: type=1326 audit(1042.184:10196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12408 comm="syz.7.2766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  271.247108][   T29] audit: type=1326 audit(1042.184:10197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12408 comm="syz.7.2766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  271.270232][   T29] audit: type=1326 audit(1042.184:10198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12408 comm="syz.7.2766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  271.293300][   T29] audit: type=1326 audit(1042.184:10199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12408 comm="syz.7.2766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  271.316335][   T29] audit: type=1326 audit(1042.184:10200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12408 comm="syz.7.2766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  271.339469][   T29] audit: type=1326 audit(1042.184:10201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12408 comm="syz.7.2766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  271.362478][   T29] audit: type=1326 audit(1042.184:10202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12408 comm="syz.7.2766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  271.385693][   T29] audit: type=1326 audit(1042.184:10203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12408 comm="syz.7.2766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  271.625558][T12420] loop7: detected capacity change from 0 to 1024
[  271.740023][T12420] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  271.749566][   T29] audit: type=1326 audit(1042.644:10204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12421 comm="syz.1.2771" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f95b75de929 code=0x0
[  271.773238][T12411] vhci_hcd: invalid port number 96
[  271.779878][T12411] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  271.790664][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.821824][T10163] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.862523][T12430] loop0: detected capacity change from 0 to 2048
[  271.892965][T12428] loop6: detected capacity change from 0 to 2048
[  271.898466][T12430]  loop0: p1 < > p4
[  271.906289][T12430] loop0: p4 size 8388608 extends beyond EOD, truncated
[  271.990353][T12428]  loop6: p1 < > p4
[  271.998757][T12440] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  272.047986][T12428] loop6: p4 size 8388608 extends beyond EOD, truncated
[  272.080923][   T29] audit: type=1326 audit(1043.074:10205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12445 comm="syz.0.2781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb35d7e929 code=0x7ffc0000
[  272.140161][T12447] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  272.218900][T12461] loop0: detected capacity change from 0 to 2048
[  272.258265][T12461]  loop0: p1 < > p4
[  272.268324][T12463] loop6: detected capacity change from 0 to 1024
[  272.268345][T12461] loop0: p4 size 8388608 extends beyond EOD, truncated
[  272.316131][T12463] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  272.327294][T12463] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  272.405395][T12463] JBD2: no valid journal superblock found
[  272.411263][T12463] EXT4-fs (loop6): Could not load journal inode
[  272.454806][T12451] chnl_net:caif_netlink_parms(): no params data found
[  272.551000][T12475] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  272.560393][T12472] netlink: 'syz.1.2787': attribute type 9 has an invalid length.
[  272.639593][T12463] Cannot find del_set index 2 as target
[  272.659831][T12451] bridge0: port 1(bridge_slave_0) entered blocking state
[  272.666924][T12451] bridge0: port 1(bridge_slave_0) entered disabled state
[  272.681639][T12451] bridge_slave_0: entered allmulticast mode
[  272.692003][T12451] bridge_slave_0: entered promiscuous mode
[  272.702215][T12451] bridge0: port 2(bridge_slave_1) entered blocking state
[  272.709341][T12451] bridge0: port 2(bridge_slave_1) entered disabled state
[  272.730141][T12463] SELinux: security_context_str_to_sid (��) failed with errno=-22
[  272.744119][T12451] bridge_slave_1: entered allmulticast mode
[  272.754281][T12479] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  272.758676][T12451] bridge_slave_1: entered promiscuous mode
[  272.842477][T12451] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  272.873665][T12451] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  272.924114][T12494] veth1_to_bond: entered allmulticast mode
[  272.930920][T12451] team0: Port device team_slave_0 added
[  272.966644][T12494] veth1_to_bond: entered promiscuous mode
[  272.974643][T12451] team0: Port device team_slave_1 added
[  272.999995][T12494] veth1_to_bond: left promiscuous mode
[  273.005515][T12494] veth1_to_bond: left allmulticast mode
[  273.020390][T12497] loop1: detected capacity change from 0 to 1024
[  273.024839][T12451] batman_adv: batadv0: Adding interface: batadv_slave_0
[  273.033744][T12451] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  273.059792][T12451] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  273.081756][T12451] batman_adv: batadv0: Adding interface: batadv_slave_1
[  273.088876][T12451] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  273.115123][T12451] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  273.120009][T12507] loop6: detected capacity change from 0 to 512
[  273.132232][T12507] EXT4-fs: Ignoring removed mblk_io_submit option
[  273.139023][T12507] EXT4-fs: Ignoring removed mblk_io_submit option
[  273.147329][T12507] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  273.156349][T12497] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  273.171185][T12509] loop7: detected capacity change from 0 to 164
[  273.173650][T12497] vhci_hcd: invalid port number 96
[  273.177670][T12509] iso9660: Unknown parameter '����������00000000000000000000000'
[  273.182567][T12497] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  273.213741][T12507] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  273.222577][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.224717][T12451] hsr_slave_0: entered promiscuous mode
[  273.231651][T12507] System zones: 1-12
[  273.239222][T12451] hsr_slave_1: entered promiscuous mode
[  273.246908][T12451] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  273.248163][T12507] EXT4-fs error (device loop6): ext4_iget_extra_inode:5035: inode #15: comm syz.6.2802: corrupted in-inode xattr: e_value size too large
[  273.255505][T12451] Cannot create hsr debugfs directory
[  273.281887][T12507] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.2802: couldn't read orphan inode 15 (err -117)
[  273.294468][T12507] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  273.407053][T12451] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.467083][T12538] loop7: detected capacity change from 0 to 512
[  273.474025][T12538] EXT4-fs: Ignoring removed mblk_io_submit option
[  273.480635][T12538] EXT4-fs: Ignoring removed mblk_io_submit option
[  273.513660][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.514325][T12451] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.537159][T12538] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  273.559586][T12538] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  273.567561][T12538] System zones: 1-12
[  273.574525][T12538] EXT4-fs error (device loop7): ext4_iget_extra_inode:5035: inode #15: comm syz.7.2814: corrupted in-inode xattr: e_value size too large
[  273.589787][T12451] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.590142][T12538] EXT4-fs error (device loop7): ext4_orphan_get:1398: comm syz.7.2814: couldn't read orphan inode 15 (err -117)
[  273.614675][T12538] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  273.660100][T12451] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.670588][T10163] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.737330][T12451] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  273.750898][T12568] loop6: detected capacity change from 0 to 1024
[  273.759224][T12451] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  273.773155][T12451] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  273.780642][T12568] vhci_hcd: invalid port number 96
[  273.785782][T12568] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  273.795215][T12451] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  273.804619][T12572] loop7: detected capacity change from 0 to 512
[  273.812553][T12572] EXT4-fs: Ignoring removed mblk_io_submit option
[  273.819188][T12572] EXT4-fs: Ignoring removed mblk_io_submit option
[  273.829538][T12572] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  273.838299][T12576] netlink: 'syz.0.2820': attribute type 10 has an invalid length.
[  273.852425][T12584] loop6: detected capacity change from 0 to 512
[  273.857312][T12572] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  273.870420][T12584] EXT4-fs: Ignoring removed mblk_io_submit option
[  273.874940][T12576] team0: Device hsr_slave_0 failed to register rx_handler
[  273.877056][T12584] EXT4-fs: Ignoring removed mblk_io_submit option
[  273.884196][T12572] System zones: 1-12
[  273.896145][T12572] EXT4-fs error (device loop7): ext4_iget_extra_inode:5035: inode #15: comm syz.7.2827: corrupted in-inode xattr: e_value size too large
[  273.927378][T12584] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  273.927423][T12572] EXT4-fs error (device loop7): ext4_orphan_get:1398: comm syz.7.2827: couldn't read orphan inode 15 (err -117)
[  273.951345][T12584] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  273.971938][T12584] System zones: 1-12
[  273.983930][T12451] 8021q: adding VLAN 0 to HW filter on device bond0
[  273.996511][T12451] 8021q: adding VLAN 0 to HW filter on device team0
[  274.006275][T12584] EXT4-fs error (device loop6): ext4_iget_extra_inode:5035: inode #15: comm syz.6.2829: corrupted in-inode xattr: e_value size too large
[  274.006726][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  274.027390][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  274.038262][T12584] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.2829: couldn't read orphan inode 15 (err -117)
[  274.051810][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  274.058873][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  274.082987][T12451] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  274.093373][T12451] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  274.142934][T12600] FAULT_INJECTION: forcing a failure.
[  274.142934][T12600] name failslab, interval 1, probability 0, space 0, times 0
[  274.150909][T12451] 8021q: adding VLAN 0 to HW filter on device batadv0
[  274.155725][T12600] CPU: 1 UID: 0 PID: 12600 Comm: syz.1.2835 Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  274.155752][T12600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  274.155764][T12600] Call Trace:
[  274.155770][T12600]  <TASK>
[  274.155777][T12600]  __dump_stack+0x1d/0x30
[  274.155811][T12600]  dump_stack_lvl+0xe8/0x140
[  274.155835][T12600]  dump_stack+0x15/0x1b
[  274.155852][T12600]  should_fail_ex+0x265/0x280
[  274.155882][T12600]  should_failslab+0x8c/0xb0
[  274.155905][T12600]  __kmalloc_noprof+0xa5/0x3e0
[  274.155964][T12600]  ? sock_kmalloc+0x85/0xc0
[  274.156015][T12600]  ? iovec_from_user+0x5e/0x210
[  274.156037][T12600]  sock_kmalloc+0x85/0xc0
[  274.156056][T12600]  ____sys_sendmsg+0xf8/0x4e0
[  274.156105][T12600]  ___sys_sendmsg+0x17b/0x1d0
[  274.156255][T12600]  __x64_sys_sendmsg+0xd4/0x160
[  274.156299][T12600]  x64_sys_call+0x2999/0x2fb0
[  274.156320][T12600]  do_syscall_64+0xd2/0x200
[  274.156408][T12600]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  274.156434][T12600]  ? clear_bhb_loop+0x40/0x90
[  274.156455][T12600]  ? clear_bhb_loop+0x40/0x90
[  274.156495][T12600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.156534][T12600] RIP: 0033:0x7f95b75de929
[  274.156630][T12600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.156646][T12600] RSP: 002b:00007f95b5c47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  274.156664][T12600] RAX: ffffffffffffffda RBX: 00007f95b7805fa0 RCX: 00007f95b75de929
[  274.156677][T12600] RDX: 0000000000000000 RSI: 0000200000001600 RDI: 0000000000000004
[  274.156689][T12600] RBP: 00007f95b5c47090 R08: 0000000000000000 R09: 0000000000000000
[  274.156701][T12600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.156714][T12600] R13: 0000000000000000 R14: 00007f95b7805fa0 R15: 00007fff82576698
[  274.156734][T12600]  </TASK>
[  274.455038][T12620] loop6: detected capacity change from 0 to 1024
[  274.537593][T12631] loop0: detected capacity change from 0 to 512
[  274.538896][T12451] veth0_vlan: entered promiscuous mode
[  274.557202][T12634] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2840'.
[  274.569402][T12631] EXT4-fs warning (device loop0): dx_probe:861: inode #2: comm syz.0.2842: dx entry: limit 0 != root limit 125
[  274.581233][T12631] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.2842: Corrupt directory, running e2fsck is recommended
[  274.599890][T12631] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  274.610203][T12631] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.2842: corrupted in-inode xattr: invalid ea_ino
[  274.624178][T12631] EXT4-fs (loop0): Remounting filesystem read-only
[  274.657025][T12451] veth1_vlan: entered promiscuous mode
[  274.676867][T12637] Cannot find del_set index 0 as target
[  274.690638][T12634] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2840'.
[  274.716083][T12451] veth0_macvtap: entered promiscuous mode
[  274.732914][T12451] veth1_macvtap: entered promiscuous mode
[  274.749722][T12451] batman_adv: batadv0: Interface activated: batadv_slave_0
[  274.772746][T12451] batman_adv: batadv0: Interface activated: batadv_slave_1
[  274.781877][T12646] veth1_to_bond: entered allmulticast mode
[  274.789469][T12451] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  274.798228][T12451] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  274.806909][T12451] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  274.815731][T12451] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  274.826083][T12647] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  274.836087][T12646] veth1_to_bond: entered promiscuous mode
[  274.843446][T12646] veth1_to_bond: left promiscuous mode
[  274.850318][T12646] veth1_to_bond: left allmulticast mode
[  274.934417][T12659] loop7: detected capacity change from 0 to 512
[  274.941470][T12659] EXT4-fs: Ignoring removed mblk_io_submit option
[  274.949437][T12659] EXT4-fs: Ignoring removed mblk_io_submit option
[  274.962230][T12659] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  274.984058][T12659] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  274.992210][T12659] System zones: 1-12
[  275.007651][T12659] EXT4-fs error (device loop7): ext4_iget_extra_inode:5035: inode #15: comm syz.7.2850: corrupted in-inode xattr: e_value size too large
[  275.126553][T12676] loop1: detected capacity change from 0 to 512
[  275.144328][T12678] loop0: detected capacity change from 0 to 512
[  275.152656][T12659] EXT4-fs error (device loop7): ext4_orphan_get:1398: comm syz.7.2850: couldn't read orphan inode 15 (err -117)
[  275.158118][T12676] EXT4-fs: Ignoring removed mblk_io_submit option
[  275.167610][T12678] EXT4-fs: Ignoring removed mblk_io_submit option
[  275.173551][T12676] EXT4-fs: Ignoring removed mblk_io_submit option
[  275.177729][T12678] EXT4-fs: Ignoring removed mblk_io_submit option
[  275.188021][T12676] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  275.202787][T12680] loop4: detected capacity change from 0 to 1024
[  275.209392][T12678] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  275.212210][T12680] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[  275.231817][T12678] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  275.231821][T12680] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  275.232500][T12680] EXT4-fs (loop4): invalid journal inode
[  275.239903][T12678] System zones: 1-12
[  275.260221][T12676] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  275.268229][    C1] vxcan1: j1939_tp_rxtimer: 0xffff888112bdba00: rx timeout, send abort
[  275.289463][T12678] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.2859: corrupted in-inode xattr: e_value size too large
[  275.305360][T12680] EXT4-fs (loop4): can't get journal size
[  275.316987][T12676] System zones: 1-12
[  275.322080][T12678] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.2859: couldn't read orphan inode 15 (err -117)
[  275.322462][T12676] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.2858: corrupted in-inode xattr: e_value size too large
[  275.352457][T12676] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.2858: couldn't read orphan inode 15 (err -117)
[  275.434224][T12685] loop6: detected capacity change from 0 to 764
[  275.472180][T12685] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  275.525198][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.532689][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.540131][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.547524][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.555014][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.562551][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.569994][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.577469][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.584912][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.592339][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.599731][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.607386][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.614932][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.622443][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.629915][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.637363][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.644790][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x4
[  275.655837][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.663301][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.670729][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x2
[  275.678158][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.685812][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.693222][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.700757][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.708235][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.715619][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.723079][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.730468][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.737864][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.745237][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.752664][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.759092][T12706] loop1: detected capacity change from 0 to 1024
[  275.760312][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.768265][    C1] vxcan1: j1939_tp_rxtimer: 0xffff888112bdba00: abort rx timeout. Force session deactivation
[  275.773809][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.791452][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.798849][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.806281][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.813845][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.821308][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.821331][   T10] hid-generic 0000:0000:0002.002D: unknown main item tag 0x0
[  275.828406][   T10] hid-generic 0000:0000:0002.002D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  275.916908][T12719] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2871'.
[  275.935174][T12719] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2871'.
[  275.958921][T12713] SET target dimension over the limit!
[  275.996788][T12721] loop4: detected capacity change from 0 to 2048
[  276.052509][T12721]  loop4: p1 < > p4
[  276.057331][T12721] loop4: p4 size 8388608 extends beyond EOD, truncated
[  276.110049][T12735] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2881'.
[  276.199867][T12745] hsr0: entered promiscuous mode
[  276.255690][T12749] loop4: detected capacity change from 0 to 256
[  276.294781][   T29] kauditd_printk_skb: 224 callbacks suppressed
[  276.294794][   T29] audit: type=1326 audit(1047.284:10430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.7.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  276.331495][T12755] FAULT_INJECTION: forcing a failure.
[  276.331495][T12755] name failslab, interval 1, probability 0, space 0, times 0
[  276.333772][   T29] audit: type=1326 audit(1047.324:10431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.7.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  276.344182][T12755] CPU: 0 UID: 0 PID: 12755 Comm: syz.7.2890 Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  276.344259][T12755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  276.344272][T12755] Call Trace:
[  276.344278][T12755]  <TASK>
[  276.344286][T12755]  __dump_stack+0x1d/0x30
[  276.344308][T12755]  dump_stack_lvl+0xe8/0x140
[  276.344328][T12755]  dump_stack+0x15/0x1b
[  276.344345][T12755]  should_fail_ex+0x265/0x280
[  276.344448][T12755]  should_failslab+0x8c/0xb0
[  276.344471][T12755]  kmem_cache_alloc_noprof+0x50/0x310
[  276.344497][T12755]  ? audit_log_start+0x365/0x6c0
[  276.344607][T12755]  audit_log_start+0x365/0x6c0
[  276.344641][T12755]  audit_seccomp+0x48/0x100
[  276.344667][T12755]  ? __seccomp_filter+0x68c/0x10d0
[  276.344726][T12755]  __seccomp_filter+0x69d/0x10d0
[  276.344751][T12755]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  276.344840][T12755]  ? vfs_write+0x75e/0x8e0
[  276.344870][T12755]  ? __rcu_read_unlock+0x4f/0x70
[  276.344893][T12755]  ? __fget_files+0x184/0x1c0
[  276.344917][T12755]  __secure_computing+0x82/0x150
[  276.344986][T12755]  syscall_trace_enter+0xcf/0x1e0
[  276.345011][T12755]  do_syscall_64+0xac/0x200
[  276.345028][T12755]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  276.345053][T12755]  ? clear_bhb_loop+0x40/0x90
[  276.345170][T12755]  ? clear_bhb_loop+0x40/0x90
[  276.345192][T12755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.345212][T12755] RIP: 0033:0x7fe8d983e929
[  276.345228][T12755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.345244][T12755] RSP: 002b:00007fe8d7ea7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  276.345264][T12755] RAX: ffffffffffffffda RBX: 00007fe8d9a65fa0 RCX: 00007fe8d983e929
[  276.345310][T12755] RDX: 0000200000000340 RSI: 0000000000008955 RDI: 0000000000000004
[  276.345322][T12755] RBP: 00007fe8d7ea7090 R08: 0000000000000000 R09: 0000000000000000
[  276.345358][T12755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  276.345370][T12755] R13: 0000000000000000 R14: 00007fe8d9a65fa0 R15: 00007ffc3eb39d28
[  276.345437][T12755]  </TASK>
[  276.345445][T12755] audit: audit_lost=2 audit_rate_limit=0 audit_backlog_limit=64
[  276.367191][   T29] audit: type=1326 audit(1047.324:10432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.7.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  276.379731][T12755] audit: out of memory in audit_log_start
[  276.389762][   T29] audit: type=1326 audit(1047.324:10433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.7.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  276.389788][   T29] audit: type=1326 audit(1047.324:10434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.7.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  276.389839][   T29] audit: type=1326 audit(1047.324:10435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.7.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  276.389862][   T29] audit: type=1326 audit(1047.324:10436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.7.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  276.480867][   T10] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  276.482443][   T29] audit: type=1326 audit(1047.324:10437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12754 comm="syz.7.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fe8d983e929 code=0x7ffc0000
[  276.504102][T12755] loop7: detected capacity change from 0 to 1024
[  276.690180][T12767] Cannot find del_set index 0 as target
[  276.713437][   T10] hid-generic 0000:0000:0000.002E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  276.768353][T12755] EXT4-fs: Ignoring removed nomblk_io_submit option
[  276.788095][T12765] veth1_to_bond: entered allmulticast mode
[  276.794269][T12755] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  276.795758][T12765] veth1_to_bond: entered promiscuous mode
[  276.856198][T12765] veth1_to_bond: left promiscuous mode
[  276.861854][T12765] veth1_to_bond: left allmulticast mode
[  276.951974][T12779] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=25443 sclass=netlink_route_socket pid=12779 comm=syz.4.2901
[  276.958144][   T10] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  276.980563][T12782] netlink: 404 bytes leftover after parsing attributes in process `syz.0.2900'.
[  276.989697][T12782] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2900'.
[  276.998663][T12782] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2900'.
[  277.007727][T12782] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2900'.
[  277.023329][T12774] loop1: detected capacity change from 0 to 1024
[  277.039696][   T10] hid-generic 0000:0000:0000.002F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  277.050300][T12774] EXT4-fs: Ignoring removed nomblk_io_submit option
[  277.057515][T12774] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  277.380791][T12812] veth1_to_bond: entered allmulticast mode
[  277.388190][T12812] veth1_to_bond: entered promiscuous mode
[  277.396949][T12812] veth1_to_bond: left promiscuous mode
[  277.402608][T12812] veth1_to_bond: left allmulticast mode
[  277.544866][T12833] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  277.580657][T12835] loop1: detected capacity change from 0 to 512
[  277.922420][T12861] can0: slcan on ttyS3.
[  277.968377][T12861] can0 (unregistered): slcan off ttyS3.
[  277.979669][T12862] Cannot find del_set index 0 as target
[  278.382585][T12880] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  278.421634][T12884] loop6: detected capacity change from 0 to 2048
[  278.471166][T12884]  loop6: p1 < > p4
[  278.478515][T12884] loop6: p4 size 8388608 extends beyond EOD, truncated
[  278.553894][T12896] loop4: detected capacity change from 0 to 512
[  278.578257][T12896] EXT4-fs: Ignoring removed mblk_io_submit option
[  278.605891][T12896] EXT4-fs: Ignoring removed mblk_io_submit option
[  278.626689][T12901] loop6: detected capacity change from 0 to 1024
[  278.643152][T12896] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  278.662728][T12901] vhci_hcd: invalid port number 96
[  278.667869][T12901] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  278.700805][T12896] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  278.753026][T12910] __nla_validate_parse: 1 callbacks suppressed
[  278.753040][T12910] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2948'.
[  278.771925][T12896] System zones: 1-12
[  278.776113][T12896] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.2945: corrupted in-inode xattr: e_value size too large
[  278.791990][T12896] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.2945: couldn't read orphan inode 15 (err -117)
[  278.808293][T12896] EXT4-fs mount: 28 callbacks suppressed
[  278.808340][T12896] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.821760][T12912] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  278.863027][T12912] tipc: Disabling bearer <eth:syzkaller0>
[  278.891231][T12451] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.911816][T12913] loop6: detected capacity change from 0 to 1024
[  278.960581][T12913] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.990390][T12913] vhci_hcd: invalid port number 96
[  278.995528][T12913] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  279.011057][T12915] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  279.050727][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.183452][T12931] netlink: 'syz.1.2957': attribute type 1 has an invalid length.
[  279.191284][T12931] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2957'.
[  279.265559][T12937] loop6: detected capacity change from 0 to 1024
[  279.308312][T12937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  279.332240][T12937] vhci_hcd: invalid port number 96
[  279.337395][T12937] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  279.381106][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.482778][T12946] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  279.660714][T12975] loop1: detected capacity change from 0 to 128
[  279.679213][T12980] veth1_to_bond: entered allmulticast mode
[  279.688646][T12980] veth1_to_bond: entered promiscuous mode
[  279.689117][T12975] /dev/loop1: Can't open blockdev
[  279.698158][T12980] veth1_to_bond: left promiscuous mode
[  279.705264][T12980] veth1_to_bond: left allmulticast mode
[  279.715378][T12981] loop7: detected capacity change from 0 to 1024
[  279.788191][T12986] netlink: 'syz.1.2977': attribute type 1 has an invalid length.
[  279.796000][T12986] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2977'.
[  279.830554][T12981] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  279.848806][T12988] netlink: 'syz.6.2978': attribute type 1 has an invalid length.
[  279.856579][T12988] netlink: 224 bytes leftover after parsing attributes in process `syz.6.2978'.
[  279.899691][T12981] vhci_hcd: invalid port number 96
[  279.904879][T12981] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  279.924977][T10163] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  280.100832][T13006] veth1_to_bond: entered allmulticast mode
[  280.121087][T13006] veth1_to_bond: entered promiscuous mode
[  280.142996][T13006] veth1_to_bond: left promiscuous mode
[  280.148759][T13006] veth1_to_bond: left allmulticast mode
[  280.228124][T13020] netlink: 8 bytes leftover after parsing attributes in process `����H�A?���N'.
[  280.259837][T13024] loop4: detected capacity change from 0 to 512
[  280.266363][T13024] EXT4-fs: Ignoring removed mblk_io_submit option
[  280.308043][T13024] EXT4-fs: Ignoring removed mblk_io_submit option
[  280.324795][T13030] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  280.357713][T13024] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  280.407678][T13024] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  280.441418][T13024] System zones: 1-12
[  280.508121][T13024] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.2994: corrupted in-inode xattr: e_value size too large
[  280.547752][T13040] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  280.563170][T13024] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.2994: couldn't read orphan inode 15 (err -117)
[  280.587642][T13024] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  280.617145][T12451] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  280.972538][T13075] loop4: detected capacity change from 0 to 512
[  281.012364][T13075] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.054794][T13059] chnl_net:caif_netlink_parms(): no params data found
[  281.062462][T13075] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.124362][T13086] loop7: detected capacity change from 0 to 512
[  281.131409][T13059] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.138491][T13059] bridge0: port 1(bridge_slave_0) entered disabled state
[  281.146868][T13087] loop4: detected capacity change from 0 to 512
[  281.165908][T13087] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  281.206779][T13087] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  281.228534][T13059] bridge_slave_0: entered allmulticast mode
[  281.234698][T13087] EXT4-fs (loop4): orphan cleanup on readonly fs
[  281.248650][T13059] bridge_slave_0: entered promiscuous mode
[  281.255307][T13059] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.262372][T13059] bridge0: port 2(bridge_slave_1) entered disabled state
[  281.269670][T13059] bridge_slave_1: entered allmulticast mode
[  281.276049][T13059] bridge_slave_1: entered promiscuous mode
[  281.325167][T13087] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.3011: attempt to clear invalid blocks 1024 len 1
[  281.339802][T13095] FAULT_INJECTION: forcing a failure.
[  281.339802][T13095] name failslab, interval 1, probability 0, space 0, times 0
[  281.352564][T13095] CPU: 0 UID: 0 PID: 13095 Comm: syz.7.3013 Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  281.352593][T13095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  281.352606][T13095] Call Trace:
[  281.352612][T13095]  <TASK>
[  281.352650][T13095]  __dump_stack+0x1d/0x30
[  281.352670][T13095]  dump_stack_lvl+0xe8/0x140
[  281.352686][T13095]  dump_stack+0x15/0x1b
[  281.352756][T13095]  should_fail_ex+0x265/0x280
[  281.352839][T13095]  should_failslab+0x8c/0xb0
[  281.352876][T13095]  __kmalloc_noprof+0xa5/0x3e0
[  281.352903][T13095]  ? __register_sysctl_table+0x54/0xc00
[  281.352927][T13095]  __register_sysctl_table+0x54/0xc00
[  281.352949][T13095]  ? __kmalloc_node_track_caller_noprof+0x1e5/0x410
[  281.352982][T13095]  register_pidns_sysctls+0xe0/0x140
[  281.353004][T13095]  copy_pid_ns+0x351/0x550
[  281.353030][T13095]  ? __cond_resched+0x4e/0x90
[  281.353083][T13095]  create_new_namespaces+0x176/0x3d0
[  281.353138][T13095]  unshare_nsproxy_namespaces+0xe8/0x120
[  281.353169][T13095]  ksys_unshare+0x3d0/0x6d0
[  281.353191][T13095]  ? ksys_write+0x192/0x1a0
[  281.353322][T13095]  __x64_sys_unshare+0x1f/0x30
[  281.353348][T13095]  x64_sys_call+0x2d4b/0x2fb0
[  281.353369][T13095]  do_syscall_64+0xd2/0x200
[  281.353387][T13095]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  281.353433][T13095]  ? clear_bhb_loop+0x40/0x90
[  281.353556][T13095]  ? clear_bhb_loop+0x40/0x90
[  281.353580][T13095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.353602][T13095] RIP: 0033:0x7fe8d983e929
[  281.353616][T13095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.353700][T13095] RSP: 002b:00007fe8d7e65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  281.353721][T13095] RAX: ffffffffffffffda RBX: 00007fe8d9a66160 RCX: 00007fe8d983e929
[  281.353734][T13095] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000064000600
[  281.353746][T13095] RBP: 00007fe8d7e65090 R08: 0000000000000000 R09: 0000000000000000
[  281.353759][T13095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  281.353772][T13095] R13: 0000000000000000 R14: 00007fe8d9a66160 R15: 00007ffc3eb39d28
[  281.353868][T13095]  </TASK>
[  281.695667][T13097] loop6: detected capacity change from 0 to 2048
[  281.708612][T13087] EXT4-fs (loop4): Remounting filesystem read-only
[  281.724882][T13087] EXT4-fs (loop4): 1 truncate cleaned up
[  281.739355][T13087] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  281.787365][T13087] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  281.804062][T13097]  loop6: p1 < > p4
[  281.824016][T13059] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  281.838657][T13097] loop6: p4 size 8388608 extends beyond EOD, truncated
[  281.858094][T13059] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  281.897349][   T29] kauditd_printk_skb: 398 callbacks suppressed
[  281.897362][   T29] audit: type=1326 audit(1052.884:10836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13094 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f066746e929 code=0x7ffc0000
[  281.968497][T10163] ==================================================================
[  281.976587][T10163] BUG: KCSAN: data-race in shmem_add_to_page_cache / shmem_getattr
[  281.984483][T10163] 
[  281.986798][T10163] read-write to 0xffff888114156810 of 8 bytes by task 13096 on cpu 0:
[  281.994945][T10163]  shmem_add_to_page_cache+0x37f/0x490
[  282.000413][T10163]  shmem_get_folio_gfp+0x4e8/0xd60
[  282.005533][T10163]  shmem_write_begin+0xa8/0x190
[  282.010397][T10163]  generic_perform_write+0x184/0x490
[  282.015682][T10163]  shmem_file_write_iter+0xc5/0xf0
[  282.020789][T10163]  __kernel_write_iter+0x253/0x4c0
[  282.025910][T10163]  dump_user_range+0x407/0x8c0
[  282.030682][T10163]  elf_core_dump+0x1dc2/0x1f80
[  282.035447][T10163]  do_coredump+0x1dfa/0x27b0
[  282.040044][T10163]  get_signal+0xd85/0xf70
[  282.044388][T10163]  arch_do_signal_or_restart+0x96/0x480
[  282.049932][T10163]  irqentry_exit_to_user_mode+0x5e/0xa0
[  282.055488][T10163]  irqentry_exit+0x12/0x50
[  282.059925][T10163]  asm_exc_page_fault+0x26/0x30
[  282.064780][T10163] 
[  282.067095][T10163] read to 0xffff888114156810 of 8 bytes by task 10163 on cpu 1:
[  282.074719][T10163]  shmem_getattr+0x68/0x200
[  282.079222][T10163]  vfs_getattr_nosec+0x143/0x1e0
[  282.084174][T10163]  vfs_statx+0x113/0x390
[  282.088423][T10163]  vfs_fstatat+0x115/0x170
[  282.092837][T10163]  __se_sys_newfstatat+0x55/0x260
[  282.097864][T10163]  __x64_sys_newfstatat+0x55/0x70
[  282.102891][T10163]  x64_sys_call+0x2c22/0x2fb0
[  282.107568][T10163]  do_syscall_64+0xd2/0x200
[  282.112070][T10163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.117962][T10163] 
[  282.120282][T10163] value changed: 0x00000000000031a2 -> 0x00000000000031a7
[  282.127379][T10163] 
[  282.129692][T10163] Reported by Kernel Concurrency Sanitizer on:
[  282.135826][T10163] CPU: 1 UID: 0 PID: 10163 Comm: syz-executor Not tainted 6.16.0-rc3-syzkaller-00319-gded779017ad7 #0 PREEMPT(voluntary) 
[  282.148499][T10163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  282.158550][T10163] ==================================================================
[  282.195981][   T29] audit: type=1326 audit(1052.924:10837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13094 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f066746e929 code=0x7ffc0000
[  282.219181][   T29] audit: type=1326 audit(1052.924:10838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13094 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f066746e963 code=0x7ffc0000
[  282.242079][   T29] audit: type=1326 audit(1052.934:10839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13094 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f066746d3df code=0x7ffc0000
[  282.265095][   T29] audit: type=1326 audit(1053.154:10840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13094 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f066746e9b7 code=0x7ffc0000
[  282.288153][   T29] audit: type=1326 audit(1053.154:10841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13094 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f066746d290 code=0x7ffc0000
[  282.311184][   T29] audit: type=1326 audit(1053.154:10842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13094 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f066746e52b code=0x7ffc0000
[  282.334129][   T29] audit: type=1326 audit(1053.154:10843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13094 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f066746e52b code=0x7ffc0000
[  282.357178][   T29] audit: type=1326 audit(1053.154:10844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13094 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f06674a11e5 code=0x7ffc0000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  282.380241][   T29] audit: type=1400 audit(1053.164:10845): avc:  denied  { write } for  pid=3296 comm="syz-executor" path="pipe:[1450]" dev="pipefs" ino=1450 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  282.680944][   T41] bridge_slave_1: left allmulticast mode
[  282.686648][   T41] bridge_slave_1: left promiscuous mode
[  282.692434][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.702048][   T41] bridge_slave_0: left allmulticast mode
[  282.707706][   T41] bridge_slave_0: left promiscuous mode
[  282.713513][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[  282.799244][   T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  282.808776][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  282.817767][   T41] bond0 (unregistering): Released all slaves
[  283.202102][   T41] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.240410][   T41] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.279941][   T41] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.330979][   T41] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.381079][   T41] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.430145][   T41] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.479935][   T41] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.529883][   T41] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.599510][   T41] bridge_slave_1: left allmulticast mode
[  283.605150][   T41] bridge_slave_1: left promiscuous mode
[  283.610960][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[  283.618632][   T41] bridge_slave_0: left allmulticast mode
[  283.624383][   T41] bridge_slave_0: left promiscuous mode
[  283.630012][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.638695][   T41] bridge_slave_1: left allmulticast mode
[  283.644413][   T41] bridge_slave_1: left promiscuous mode
[  283.650066][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[  283.657670][   T41] bridge_slave_0: left allmulticast mode
[  283.663329][   T41] bridge_slave_0: left promiscuous mode
[  283.668990][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.713852][   T41] ip6gretap0 (unregistering): left allmulticast mode
[  283.839699][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  283.849194][   T41] bond0 (unregistering): Released all slaves
[  283.920505][   T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  283.930177][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  283.939436][   T41] bond0 (unregistering): Released all slaves
[  283.990157][   T41] tipc: Left network mode
[  283.997012][   T41] hsr_slave_0: left promiscuous mode
[  284.002546][   T41] hsr_slave_1: left promiscuous mode
[  284.008018][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  284.015450][   T41] batman_adv: batadv0: Removing interface: batadv_slave_0
[  284.023228][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  284.030716][   T41] batman_adv: batadv0: Removing interface: batadv_slave_1
[  284.040249][   T41] hsr_slave_0: left promiscuous mode
[  284.045788][   T41] hsr_slave_1: left promiscuous mode
[  284.051452][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  284.058849][   T41] batman_adv: batadv0: Removing interface: batadv_slave_0
[  284.066339][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  284.073727][   T41] batman_adv: batadv0: Removing interface: batadv_slave_1
[  284.086363][   T41] veth1_macvtap: left promiscuous mode
[  284.091844][   T41] veth0_macvtap: left promiscuous mode
[  284.097316][   T41] veth1_vlan: left promiscuous mode
[  284.102583][   T41] veth0_vlan: left promiscuous mode
[  284.108271][   T41] veth1_macvtap: left promiscuous mode
[  284.113802][   T41] veth0_macvtap: left promiscuous mode
[  284.119438][   T41] veth1_vlan: left promiscuous mode
[  284.124685][   T41] veth0_vlan: left promiscuous mode
[  284.204315][   T41] team0 (unregistering): Port device team_slave_1 removed
[  284.214309][   T41] team0 (unregistering): Port device team_slave_0 removed
[  284.259313][   T41] team0 (unregistering): Port device team_slave_1 removed
[  284.269529][   T41] team0 (unregistering): Port device team_slave_0 removed
[  284.701855][   T41] IPVS: stop unused estimator thread 0...
[  284.770963][   T41] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.820164][   T41] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.879993][   T41] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.949926][   T41] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.029046][   T41] bridge_slave_1: left allmulticast mode
[  285.034674][   T41] bridge_slave_1: left promiscuous mode
[  285.040317][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[  285.048008][   T41] bridge_slave_0: left allmulticast mode
[  285.053639][   T41] bridge_slave_0: left promiscuous mode
[  285.059313][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[  285.111819][   T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  285.121464][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  285.130951][   T41] bond0 (unregistering): Released all slaves
[  285.168725][   T41] tipc: Left network mode
[  285.220331][   T41] hsr_slave_0: left promiscuous mode
[  285.225840][   T41] hsr_slave_1: left promiscuous mode
[  285.231567][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  285.239025][   T41] batman_adv: batadv0: Removing interface: batadv_slave_0
[  285.246451][   T41] batman_adv: batadv0: Removing interface: batadv_slave_1
[  285.256104][   T41] veth1_macvtap: left promiscuous mode
[  285.261658][   T41] veth0_macvtap: left promiscuous mode
[  285.267106][   T41] veth1_vlan: left promiscuous mode
[  285.272462][   T41] veth0_vlan: left promiscuous mode
[  285.323341][   T41] team0 (unregistering): Port device team_slave_1 removed
[  285.334384][   T41] team0 (unregistering): Port device team_slave_0 removed