last executing test programs:

5.854067512s ago: executing program 4 (id=667):
socket$inet6_sctp(0xa, 0x5, 0x84)
execveat(0xffffffffffffffff, &(0x7f0000000280)='./file10\x00', 0x0, 0x0, 0x400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x8020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x8800, &(0x7f0000001dc0)={0xf, 0x84, 0x40000}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r4}, 0x10)
socket$packet(0x11, 0xa, 0x300)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x55, 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
syz_emit_ethernet(0x3e, &(0x7f0000000540)=ANY=[], 0x0)
r6 = memfd_secret(0x80000)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r6, 0x84, 0x70, &(0x7f0000000240)={r3, @in6={{0xa, 0x4e23, 0xffff14de, @rand_addr=' \x01\x00', 0x3}}, [0x4002, 0x80000001, 0xf, 0x80, 0xd, 0x304, 0xfffffffffffffffe, 0x5, 0xffffffffffffffff, 0x6, 0x7, 0x401, 0x0, 0x7, 0x4ba]}, &(0x7f0000000000)=0x100)

5.732700983s ago: executing program 4 (id=671):
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, <r0=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001180)=ANY=[@ANYBLOB="280000001800010000000000000000000200000008000000040000000c00088008000c00", @ANYRES32=r0, @ANYBLOB="5bb7d1a215e20de7a18da9b28573bcca6adfd1875e499d8e95829ad2f519"], 0x28}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000980)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r2, 0x0, 0x0}, 0x10)
r3 = socket$kcm(0x10, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='sys_enter\x00', r4}, 0x10)
io_getevents(0x0, 0xffff, 0x0, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000300)={'batadv_slave_1\x00', &(0x7f0000000280)=@ethtool_cmd={0xa, 0x9, 0x7, 0x5, 0x8, 0x3, 0x4, 0x3, 0x9, 0x43, 0x4, 0x7, 0xffff, 0x8, 0x5, 0x6, [0x401, 0xe5]}})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_read_part_table(0x106c, &(0x7f0000000000)="$eJzsz61NbHEQxuHfnv/e/RA3bAfbAoVgcRiCIKELHLVQARoSBA5DJQjcIbtBUAEgnkfOvJnJG79qO21qLFpWb/2r3fowvng8buf1V+z9tJezPuZ5VV2P7p7mk1pUu+f9snHITL223Pbw/fy+m6vNeqr+t13VZdPtGMdv1Ti//+G6AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAnfQYAAP//8K0QyQ==")
socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000001200)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x64, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1a, 0x3, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1800"/24], &(0x7f0000000b00)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @tracing, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c010000100013870600000000000000fe8000000000000000000000000000aafe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000033000000ac1414aa00000000000000000000000000000000000000000700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000200040000000000000000004c001400636d6163286165732900"/244], 0x13c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r1, &(0x7f0000001140)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001100)={&(0x7f00000010c0)={0x14, r8, 0x8, 0x70bd2a, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24024115}, 0x20040010)
bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[], 0x48)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=")
socket$key(0xf, 0x3, 0x2)

5.489681205s ago: executing program 4 (id=676):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
gettid()
sendmsg$unix(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)

1.912532555s ago: executing program 2 (id=718):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x70f9a000)
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCSFEATURE(r1, 0xc0404806, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="3b00006602000000000000000000dab265cfadadadea1a4ebe6834e569854599b8a89582aa337dd782527b06fee9a9e3572a49a5fde0160dfccbbc9037ec3103b13779d240ce472c968a227d0234cb16570de4456dc7933de3a186121d58f30027bb9c486dd70893cc1e0cb5233d4598706902f62548a71b2495b31786ea47", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r5, 0x0, r3, 0x0, 0x2, 0x0)
vmsplice(r2, &(0x7f0000000180)=[{&(0x7f00000006c0)="fb", 0x1}], 0x1, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000000)=ANY=[], 0x18c6)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000480)={@loopback}, &(0x7f00000004c0)=0x14)
r6 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r7=>0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f00000002c0)={'ip6tnl0\x00', r7, 0x29, 0x0, 0x36, 0x9, 0x50, @mcast1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x20, 0x40, 0xc, 0x6}})
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x34, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x2, {0x0, 0x0, 0x0, r10, {}, {0xa, 0xffff}, {0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x4}}, @qdisc_kind_options=@q_qfg={0x8}]}, 0x34}}, 0x0)
r11 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r11, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r12=>0x0})
sendto$packet(r11, &(0x7f0000000000)="00001800722610452e2ea614c16669d628651ec3d1ff", 0x16, 0x8051, &(0x7f0000000400)={0x11, 0x8100, r12, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2c}}, 0x14)
socket$nl_route(0x10, 0x3, 0x0)

1.734250716s ago: executing program 0 (id=721):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRESOCT], 0x2, 0x699, &(0x7f0000000b40)="$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")
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000002400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc801}, 0x24000000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000100)='kmem_cache_free\x00', r2, 0x0, 0x1}, 0x18)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000080)=@generic={&(0x7f0000000040)='./file0\x00', r1}, 0x18)

1.613162537s ago: executing program 3 (id=723):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gretap0\x00', &(0x7f0000000340)={'tunl0\x00', <r0=>0x0, 0x20, 0x26, 0x6, 0x7ff, {{0x24, 0x4, 0x2, 0x9, 0x90, 0x64, 0x0, 0x9, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty, {[@timestamp={0x44, 0x2c, 0xe1, 0x0, 0xa, [0x8, 0x3, 0x200, 0x80000001, 0x4, 0x2, 0x9, 0xfebb, 0x0, 0xc]}, @timestamp={0x44, 0x8, 0xbc, 0x0, 0x3, [0x1000000]}, @ra={0x94, 0x4, 0x1}, @end, @ssrr={0x89, 0xb, 0x52, [@private=0xa010100, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_prespec={0x44, 0x34, 0x4c, 0x3, 0x7, [{@remote, 0x81}, {@broadcast, 0x2}, {@local, 0x9}, {@loopback, 0x7ff}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x81}, {@rand_addr=0x64010101, 0x6}]}, @end]}}}}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', r0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r1, 0xfffffffffffffffe, 0x29)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r1, 0x80585414, &(0x7f0000000180))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
io_uring_enter(0xffffffffffffffff, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020900000700000000000000000000000500", @ANYRES32], 0x38}}, 0x0)

1.598394727s ago: executing program 0 (id=724):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket(0x2, 0x80805, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+|[@\x00')
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x12, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r4, &(0x7f0000000100)}, 0x20)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000001080)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f0000000000)={r5, 0x9}, 0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x8000, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r8, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x3d, 0x0, 0x1}, {}]})
connect$vsock_stream(r7, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r9 = syz_open_dev$rtc(&(0x7f00000001c0), 0x4, 0x18800)
fsetxattr$trusted_overlay_nlink(r9, &(0x7f0000000240), &(0x7f0000000280)={'L-', 0x800}, 0x16, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000840)='virtio_transport_alloc_pkt\x00', r6}, 0x18)
socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r7, 0x28, 0x1, &(0x7f0000000100)=0xfffffffffffffffe, 0x112)
close_range(r0, 0xffffffffffffffff, 0x0)

1.504293408s ago: executing program 3 (id=725):
sched_setaffinity(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="050000f02ad8b49994e600270000000023000007", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080), &(0x7f00000002c0), 0x6, r0, 0x0, 0x1c000000007400}, 0x38)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0x20)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000020900010073797a30000000002c000000030a010200000000030000000100ffff0900010073797a30000000000900030073797a3100000000d4040000060a010400000000000000000100000008000b4000000000ac0404802c000180080001006c6f6700200002800900024073797a300000000008000340000000060800034000000002380401800c000100626974776973650028040280080003400000000808000240000000140800064000000002080006400000000064020580bb0001001d92704a203d5ecc985c4e4280e5378a36a2856959ffa601c237cc270251cf18420d11613ec98e629c7d84c655efcb2b5ecd71666675bf512cadfe09e4d05a4f60f60e007ca1cf70a5185f973cec0f1ab052acf1acf6a2df83dd88facc62c6e94a1b6368d6bda68abcaed2ee48c3d589bf2a814b728efb93401dfa1d1063200c10e56294dba0e7b780ce0f6090bd0de9f5e000c98c4b97cd985c91284c2bca23e4757407bb41fd8de797502a72e122032d4ef3160f9f7b00fd000100854e3cb6d05d310db3d528811da7f7450ebb2d62cddc6981343570b9f4ab17d75de9411dea482f508c0dce42c25c4778ebc56bb303f9f51c489eedffcb1490560ab26ab7507ec029cca3ddfe7c4f4f6d91db07cbc008636bc7bea7f96954d31da9d8a9ca043df7b409ca2864d56fc6b2a70fcc2f1a3579737bf47542dae337d5203869caff9ab95a317c25521ebf848fad8ceb87f4655ace0701dbe961e9dcaeffa37bfa2e9d127d61b8d6edc1437b46f54c061e1c9d68120ac8300e91d19c708aa9589c37de59a9f8df5546855e934599a2f31b6cb847347fc02231fec395b906e60300340d60ebe7a3f23e1aa6eec9e0150a9d16b3c25e590000002400028008000340fffffff8080003400000000908000340684dbc5808000180ffffffff6200010091de8d9ca3503f5a0a8259007bc5088ccfe97cfebb5ebb90e05d4e8a63fcbee6f14ab7eff7469cf243a6ef6e528b811dfd72af1e7e08de8fbdd4849367ea82016412fab2ccc0fb94fa63fac7fd0c6ea48c0e9ac7d1a30ecf3e70e44ed5ff00001c0002800800034080000000080003400000000308000180fffffffc080001400000000d600004804000028008000180fffffffb0d00020073797a3000000000080001802b30a3bc08000180000000000900020073797a31000000002900020073797a31000000001c0002800900020073797a31000000000900020073797a3200000000080002400000000a30010480380002800900020073797a3200000000080003400000000908000180fffffffc0800018000000007080003408000000108000340000000050b0001000bca99f460f4b0002800028008000180fffffffb0900020073797a3000000000080003400000000308000340000001ff04000100bc000100e27404a10a99dbcc4575917adc29373e2cc46e5e8f99d7a36b7c42c92713cce62084d863a11eb9c2e19fde212924e527db981a9be0c2c15f6a04a67e9e20f86e4bebd07665e2d01da200712427a5525403c1c75468f31b91a60def25f7757c9921d08b9a5b0bc6f8953efbd0416091bf2b30d9a37e789198313dd07b7b70cebff25c562434b67e9a6b70708dd84c86135ab9b0ffda2c4b2fb4a139220c101f4c0a3d58eb124346005c82dea6f0f36444b28300758475eb3d34000180090001006d65746100000000240002800800024000000002080003400000000d08000340000000090800034000000001100001800a0001006c696d69740000000900010073797a30"], 0x548}}, 0x0)

1.472545518s ago: executing program 0 (id=726):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
syz_clone(0x62005000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x222, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe28, 0xfffffffffffffff5, &(0x7f0000000980)="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", 0x0, 0x2f, 0xe8034000, 0xf000, 0xfffffffffffffe2a, &(0x7f0000000000), &(0x7f00000000c0)="c6769e45b7c61302926682c7f9e9bb5ba2b3cdf023e8da0392a4cd62e2370f25ae5ba0dab896bcf5b774cd28bebbde39f796ae27d04582bb7c03e9fe830ea22c9fd03f6d2779515fdad3f5d0de07b7b70996102fdb67b1e77a34a5b7136a212fa2c0ea502588309dc3e42c55a6f93e6ba5e1b492f9db48f0fdd2f9fb937b3e8a63dcf9dd855837433998ba579da27559", 0x5dc}, 0x28)

1.471717528s ago: executing program 1 (id=727):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
msgrcv(0x0, 0x0, 0x0, 0x2, 0x2000)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{}, &(0x7f0000000800), &(0x7f0000000840)=r2}, 0x20)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000380)=ANY=[@ANYBLOB="ffffffff0000ac1414aaac1414bbffffffffacff13040000000000001414bbac1414307f000001"], 0x34)
r3 = gettid()
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{0xffffffffffffffff, <r4=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000200)=r2}, 0x20)
bpf$PROG_BIND_MAP(0x23, &(0x7f00000002c0)={r2, r4}, 0xc)
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000000000))
openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0542, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
r5 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
io_setup(0x7d, &(0x7f0000000600)=<r6=>0x0)
io_submit(r6, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, r5}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff}])

1.388916939s ago: executing program 2 (id=728):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1ff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8991, &(0x7f0000001740)='lo:\x96o8\x14d\xa1\xba\xda\xd1\xa0J\x12t\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf\xc8>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\x00\x00\x00\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x88j\xca\xf8m\xab\xe8\x99\xeb\xe1\xde\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xfc\xfa 6(%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02!\xed\xf6\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe\x8f$\xd0qx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\a\xf6\xfc\x1d\xd4\x893\xeb)\xc1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00O!\xd2q\xda}\xe2\xa2\xfe\xfd)\\\xdf\x9aN\\\xaeyc\xe4g\xc0\x8a\n\v{\xa9H\\\xd1\x9d\xb1\xb7\xf5\f\xe1\xc5\xc1O\xc2Pl\x94o\xc2\xed\x0f\x83\xac\x00\x8d\x1b\xe6\xf7\x0e\xecf3\xea\xe9\xd0\xe9\xf2@nc\xf8\x11\xd8\xee\x98\ff\xe04<j\x11\xe4\x06O3\"l\x1c\xfc+\xbf-\xa1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf4\x9b\xd0\xf3]\xa9\x81\x12\x80\x9e \x1a5\xc2+\xb3\xcc\xe0\xbfF\xf7H\x1e\x04\x10\x02*\xef#\xc0\xb5\xa4\xca\x9b$u\x93\x80\xfb.\xbdA\xb4\x92\xa7\xa6s\xeb\xb7C\x17^\x80Y\r\\\xd6s\xbc\x00\x00\x00\x00\x00\x00\x00\x00\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0)={[{@dioread_nolock}, {@minixdf}, {@nolazytime}, {}]}, 0x1, 0x783, &(0x7f0000002200)="$eJzs3M9rXOUaAOD3nGaa/si9kwt3ce+mCi20UDpJmk27Mm7ETaFQcFtDMgkhJ5mSmdQkFpq6E4TabFQE0b1Lt0Kpf4A7KSi4F0RrXKibkTOZTNt0Zjptk04bnwdO5vvOfN9533dm8uUcyJkA/rFezX8kEUMRcTEiis39aUQcbLQORaxvjdu8d20q35Ko1y/9kuTTYrNebB0raT4ejcaU+F9E3ClEnH7v0bjV1bX5ySwrLzX7I7WFKyPV1bUzcwuTs+XZ8uLY+PnRc+Pj50bHd63WE2+dP3zr2zc2Nr77qnbz2MCZJCYadUeztl0L9ICt16QQEzv2L+5FsD5Kehgz8BzyAACgu/w8/0Dz3KwQxTjQ7SzNCRwAAAC8lOqD9V792fNIAAAA4AWTRL8zAAAAAPbW9v8BbN/bu1f3wXby8+sRMdwu/kDjHuKIQ1GIiCObyUO3HyRb0+CZrN+IiNsTbT5/vdzR3N3o/ebh3Tkiu+12vv5MtFt/0tb6E23Wn4Ht7054Rp3Xv/vxD3RY/y72GOPrz/5f6Bj/RnXl/WPt4iet+EmH+G/3GP/mxge3Oj1X/yLiZNu/P8lDsbp8P8TIzFzW7lerle6dv07d7Vx/xJFH4idJI2rSvf4rPdb/7uZv8+td4p863v3934o/+NC8/DPxYTOPNCJuNR/z/saOGMcXvv/m0cjJ+nb86Q6vf/v3/81W/Z/3WP+PXw6u9DgUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGtKIGIokLbXaaVoqRRyNiP/GkTSrVGunZyrLi9P5cxHDUUhn5rLyaEQUt/pJ3h9rtO/3z+7oj0fEf344vBV0LiuXpirZdL+LBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoOVoRAxFkpYiIo2I34tpWir1OysAAABg1w33OwEAAABgz7n+BwAAgP3vaa//k13OAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjXLl64kG/1zXvXpvL+9NXV5fnK1TPT5ep8aWF5qjRVWbpSmq1UZrNyaaqy8LjjpRExdj6WV0Zq5WptpLq6dnmhsrxYuzy3MDlbvlwuPJeqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeFJDjS1JSxGRNtppWipF/CsihqOQzMxl5dGI+HdE3C0WBvP+WL+TBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYNdVV9fmJ7OsvPRyN+r7q5yeG5FEvABpdGh80nxXuo1J1iP6nmraTPRZjhPxJLOuP+Zl6XfjlT6tRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9Fd1dW1+MsvKS9V+ZwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEB/pT8lEZFvJ4snhnY+ezD5o9h4jIh3Pr300cpkrbY0lu//tbW/9nFz/9kHJl5/njUAAADAvvfakwzevk7fvo4HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoVXV1bX4yy8pLe9iIG/2uEgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeBp/BwAA//9Js7nR")
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f0000"], 0x48)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)

1.388156829s ago: executing program 3 (id=729):
sched_setaffinity(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="050000f02ad8b49994e600270000000023000007", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080), &(0x7f00000002c0), 0x6, r0, 0x0, 0x1c000000007400}, 0x38)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0x20)
r7 = signalfd(r6, &(0x7f0000000340)={[0xfc6]}, 0x8)
ioctl$SG_SET_FORCE_PACK_ID(r7, 0x227b, &(0x7f0000000380)=0x1)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x3c1, 0x3, 0x470, 0x0, 0x268, 0x33a, 0x0, 0x268, 0x3a0, 0x460, 0x460, 0x3a0, 0x460, 0xc, 0x0, {[{{@uncond, 0x0, 0x240, 0x268, 0xd8000000, {0x9402}, [@common=@inet=@hashlimit2={{0x150}, {'pimreg\x00', {0x0, 0x8, 0x21, 0x1, 0x10000000, 0x5, 0x9}}}, @common=@hbh={{0x48}, {0x3, 0x1, 0x0, [0x0, 0x9, 0x6, 0x3, 0x9, 0xa, 0x17d, 0x7, 0xff, 0x81, 0x0, 0xb99, 0x6, 0x300, 0x8, 0x7c04], 0xa}}]}, @common=@inet=@TCPMSS={0x28}}, {{@uncond, 0x0, 0xd0, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00', 0x2}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4d0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x548}}, 0x0)

1.23121022s ago: executing program 3 (id=730):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
r2 = socket(0x2, 0x5, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
unshare(0x0)
semget$private(0x0, 0x4000, 0x555)
semtimedop(0x0, &(0x7f0000000280)=[{0x0, 0x0, 0x1000}], 0x1, 0x0)
r4 = semget$private(0x0, 0x6, 0x0)
semtimedop(r4, &(0x7f0000000140)=[{0xcde77a0cc719144, 0x9, 0x1000}], 0x1, 0x0)
unshare(0x2c040000)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x880)
sendmmsg$inet_sctp(r2, &(0x7f0000000bc0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000001c0)=[{0x0, 0x2}], 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c0000000000000002002b0388edb6556900"/51, @ANYRES32=0x0], 0x30}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000ffff000000000000000095000000000000000000e155f6fe4e0605ad5b31bc3794e5a64c803645b48ed0648c9cff09b90e1e5ad37c7e52097ccd137547b1ff384ee9ede5ad240c27951a44e964451852537756166080a3182548b22adb69c37a0a9d6651f7aef4632e4f7a965ce068401c12bbb51ff0f017d179b6d267652a8d2b5c47694379a6fb11c65f71a530047007dcad1c2806e45b019d14ae8f72b8fd88b499d5699a82625b2b4bc86951fc8f660ad81c467798956f01189209f8"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000200)={@private1, 0x1, 0x2, 0x0, 0xf3fb248e4045b199, 0x8, 0x2}, 0x20)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
chmod(&(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x100)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)

1.19320239s ago: executing program 1 (id=731):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@i_version}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@auto_da_alloc}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f0000000380)=ANY=[], 0x700, 0xe4ff)

1.19273558s ago: executing program 2 (id=732):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xfffffffffffffffe}, 0x18)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newtfilter={0x7c, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x50, 0x2, [@TCA_U32_SEL={0x44, 0x5, {0xe, 0x1, 0x3, 0x1, 0x4, 0x2, 0x6, 0xfffffffa, [{0x200, 0x500, 0x3, 0x6}, {0x6783, 0x2, 0x8001, 0x10}, {0x0, 0x53, 0xa9, 0x1}]}}, @TCA_U32_CLASSID={0x8, 0x1, {0xffff, 0xa}}]}}]}, 0x7c}}, 0x24040084)

1.100636151s ago: executing program 0 (id=733):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r5=>0x0})
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$setperm(0x5, r6, 0x2040200)
add_key$user(&(0x7f0000000e40), &(0x7f0000000e80)={'syz', 0x0}, &(0x7f0000000ec0)=':', 0x1, r6)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="bb", 0x1, r6)
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000001000000000f000000050030000000000005002f000000000008000300", @ANYRES32=r5, @ANYBLOB="0600806ea4d4"], 0x2c}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x3808002, &(0x7f0000000640), 0x3, 0x4e9, &(0x7f00000000c0)="$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")
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)

1.059226791s ago: executing program 0 (id=734):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r1}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

1.055262422s ago: executing program 2 (id=735):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x0, 0x600}, 0x93}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x1, 0x0, 0x0, 0x0, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x4, 0x0, 0x8000000}, {}, {0x2, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {}, {}, {}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0x8510}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, {0x0, 0x0, 0x200}, {}, {}, {0x5}, {}, {}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {0x0, 0x0, 0x0, 0x4, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x2, 0x0, 0x20000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x8000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000}, {0x0, 0x80000000, 0x0, 0x7fff800}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x4}, {0x3}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)

910.043372ms ago: executing program 2 (id=736):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kfree\x00', r1}, 0x18)
r2 = openat$sysfs(0xffffff9c, &(0x7f0000000200)='/sys/kernel/notes', 0x0, 0x0)
preadv(r2, &(0x7f0000000180)=[{&(0x7f0000000280)=""/220, 0xdc}], 0x1, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_clone(0x8140000, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$netlink(r0, &(0x7f0000000180)=@kern={0x10, 0x0, 0x0, 0x8010804}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000ff0000000000000a58000000060a0b040000000000000000020000002c0004802800018007000100637400001c000280050003001b000000080002400000001108000440000000040900010073797a30000000000900020073797a32"], 0x80}}, 0x0)

816.759204ms ago: executing program 2 (id=737):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x800000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r2 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r2, &(0x7f0000000000)={0xa0000001})
ppoll(&(0x7f0000000200)=[{r5, 0x1}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
epoll_wait(r2, &(0x7f0000000040)=[{}], 0x1, 0x400)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000240)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000004c0)='kfree\x00', r7}, 0x5)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f6873720000000058000000160a0101000b000000000000010000000900020073797a32000000000900010073797a30000000002c000380180003801400010076657468305f746f5f687372000000000800024000440000080001"], 0xf8}, 0x1, 0x0, 0x0, 0xc000}, 0x40)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x98, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x29, 0x4}, 0x0, 0x0, 0x2000, 0x4, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="120000000c0000000800000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r11, <r12=>0xffffffffffffffff}, &(0x7f0000000440), &(0x7f0000000100)=r9}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r12}, &(0x7f00000002c0), &(0x7f0000000380)=r10}, 0x20)

802.623433ms ago: executing program 0 (id=738):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
syz_usb_disconnect(r3)
r4 = socket(0x2, 0x3, 0xff)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$TIPC_NL_KEY_SET(r5, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000001680)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fcdbdf25170000002c000380080002004000000008000300dfd200000800010010f7ffff08000100090000000800030016440000"], 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x4010)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18070000000000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1, 0xfffffffc, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000006940)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)=""/6, 0x6}], 0x1}, 0x3}], 0x1, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmmsg$sock(r9, &(0x7f00000044c0), 0x4000000000001c0, 0x0)
recvfrom(r10, &(0x7f0000000040)=""/60, 0x3c, 0x40, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000640)='kmem_cache_free\x00', r6}, 0x10)
connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8000009, 0x5, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000090001007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r12}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="02000000040000000400000006"], 0x48)

773.977344ms ago: executing program 4 (id=676):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
gettid()
sendmsg$unix(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)

755.524254ms ago: executing program 4 (id=739):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='smaps\x00')
pread64(r1, &(0x7f000001a240)=""/102400, 0x19000, 0x1c98)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0)={[{@dioread_nolock}, {@minixdf}, {@nolazytime}, {}]}, 0x1, 0x783, &(0x7f0000002200)="$eJzs3M9rXOUaAOD3nGaa/si9kwt3ce+mCi20UDpJmk27Mm7ETaFQcFtDMgkhJ5mSmdQkFpq6E4TabFQE0b1Lt0Kpf4A7KSi4F0RrXKibkTOZTNt0Zjptk04bnwdO5vvOfN9533dm8uUcyJkA/rFezX8kEUMRcTEiis39aUQcbLQORaxvjdu8d20q35Ko1y/9kuTTYrNebB0raT4ejcaU+F9E3ClEnH7v0bjV1bX5ySwrLzX7I7WFKyPV1bUzcwuTs+XZ8uLY+PnRc+Pj50bHd63WE2+dP3zr2zc2Nr77qnbz2MCZJCYadUeztl0L9ICt16QQEzv2L+5FsD5Kehgz8BzyAACgu/w8/0Dz3KwQxTjQ7SzNCRwAAAC8lOqD9V792fNIAAAA4AWTRL8zAAAAAPbW9v8BbN/bu1f3wXby8+sRMdwu/kDjHuKIQ1GIiCObyUO3HyRb0+CZrN+IiNsTbT5/vdzR3N3o/ebh3Tkiu+12vv5MtFt/0tb6E23Wn4Ht7054Rp3Xv/vxD3RY/y72GOPrz/5f6Bj/RnXl/WPt4iet+EmH+G/3GP/mxge3Oj1X/yLiZNu/P8lDsbp8P8TIzFzW7lerle6dv07d7Vx/xJFH4idJI2rSvf4rPdb/7uZv8+td4p863v3934o/+NC8/DPxYTOPNCJuNR/z/saOGMcXvv/m0cjJ+nb86Q6vf/v3/81W/Z/3WP+PXw6u9DgUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGtKIGIokLbXaaVoqRRyNiP/GkTSrVGunZyrLi9P5cxHDUUhn5rLyaEQUt/pJ3h9rtO/3z+7oj0fEf344vBV0LiuXpirZdL+LBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoOVoRAxFkpYiIo2I34tpWir1OysAAABg1w33OwEAAABgz7n+BwAAgP3vaa//k13OAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjXLl64kG/1zXvXpvL+9NXV5fnK1TPT5ep8aWF5qjRVWbpSmq1UZrNyaaqy8LjjpRExdj6WV0Zq5WptpLq6dnmhsrxYuzy3MDlbvlwuPJeqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeFJDjS1JSxGRNtppWipF/CsihqOQzMxl5dGI+HdE3C0WBvP+WL+TBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYNdVV9fmJ7OsvPRyN+r7q5yeG5FEvABpdGh80nxXuo1J1iP6nmraTPRZjhPxJLOuP+Zl6XfjlT6tRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9Fd1dW1+MsvKS9V+ZwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEB/pT8lEZFvJ4snhnY+ezD5o9h4jIh3Pr300cpkrbY0lu//tbW/9nFz/9kHJl5/njUAAADAvvfakwzevk7fvo4HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoVXV1bX4yy8pLe9iIG/2uEgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeBp/BwAA//9Js7nR")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1d7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06"], 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16, @ANYBLOB="17090000000000000000010000000500070000000000080009000000001b08000a0000000000060002000100000014001f00000000000000000000000000000000001400200000000000000000000000ffffe0"], 0x64}}, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r3, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x4}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48881}, 0x40040)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000040)='fib6_table_lookup\x00', r6}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x807}, 0x4, 0x0, 0x0, 0x0, 0x3, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x89f1, &(0x7f0000000080))
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r8, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0xf4ff, 0x100000001})
sendfile(r4, r4, 0x0, 0xfffe80)

706.075144ms ago: executing program 1 (id=740):
sched_setaffinity(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="050000f02ad8b49994e600270000000023000007", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080), &(0x7f00000002c0), 0x6, r0, 0x0, 0x1c000000007400}, 0x38)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x548}}, 0x0)

631.438975ms ago: executing program 1 (id=741):
sched_setaffinity(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="050000f02ad8b49994e600270000000023000007", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080), &(0x7f00000002c0), 0x6, r0, 0x0, 0x1c000000007400}, 0x38)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0x20)
r7 = signalfd(r6, &(0x7f0000000340)={[0xfc6]}, 0x8)
ioctl$SG_SET_FORCE_PACK_ID(r7, 0x227b, &(0x7f0000000380)=0x1)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x3c1, 0x3, 0x470, 0x0, 0x268, 0x33a, 0x0, 0x268, 0x3a0, 0x460, 0x460, 0x3a0, 0x460, 0xc, 0x0, {[{{@uncond, 0x0, 0x240, 0x268, 0xd8000000, {0x9402}, [@common=@inet=@hashlimit2={{0x150}, {'pimreg\x00', {0x0, 0x8, 0x21, 0x1, 0x10000000, 0x5, 0x9}}}, @common=@hbh={{0x48}, {0x3, 0x1, 0x0, [0x0, 0x9, 0x6, 0x3, 0x9, 0xa, 0x17d, 0x7, 0xff, 0x81, 0x0, 0xb99, 0x6, 0x300, 0x8, 0x7c04], 0xa}}]}, @common=@inet=@TCPMSS={0x28}}, {{@uncond, 0x0, 0xd0, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00', 0x2}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4d0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x548}}, 0x0)

554.278926ms ago: executing program 4 (id=742):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x1f, &(0x7f0000000240)=@raw=[@cb_func={0x18, 0x4, 0x4, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @jmp={0x5, 0x0, 0x6, 0xa, 0xb, 0xfffffffffffffff8}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @jmp={0x5, 0x0, 0x3, 0x9dd27a6982f37b8e, 0x1, 0xfffffffffffffff8, 0x10}, @printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xd}}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}], &(0x7f0000000100)='GPL\x00', 0xd6, 0x0, &(0x7f0000000140), 0x100, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000180)={0x4, 0x10, 0x5, 0xfffffffb}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000340)=[0xffffffffffffffff, 0x1], &(0x7f0000000380)=[{0x3, 0x1, 0x7, 0x2}, {0x3, 0x4, 0x2, 0x8}, {0x5, 0x5, 0x9}, {0x1, 0x5, 0x8, 0x2}], 0x10, 0xe9, @void, @value}, 0x94)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0x0, 0x8000008, 0x3, 0x4, 0x1, 0x0, 0x2})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x9, 0xe1d9, 0x3, 0x7})
readv(r1, &(0x7f0000000480)=[{&(0x7f0000000140)=""/37, 0x25}, {0x0}], 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='initcall_level\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52d, &(0x7f0000000640)="$eJzs3d9rZFcdAPDvnWSyyW62SdUHLbRWW8kW3ZmksW3woVYQfSqI9X2NySSETDIhM2k3oWj2LxBEVPBJX3wR/AMEWfDFRxEK+qxQUUS3CvqgvTIzd5I4uZPM1tlMdvL5wN17zrk/vufM5ty5Pw53Ariyno2I1yLi/TRNX4iImay8kE1x2J6a67334O2V5pREmr7x1ySSrKyzrySb38g2m4yIr3454hvJ6bj1/YPN5Wq1spvly42tnXJ9/+D2xtbyemW9sr24uPDy0itLLy3ND6SdNyPi1S/+8Xvf/smXXv3FZ976w50/3/pms1rT2fKT7XhI42ctbDe9eG2ya4PdDxjsMmq2p9jJTPW3zb1HWB8AAHprnuN/KCI+GREvxEyMnX06CwAAADyG0s9Px7+TiDTfRI9yAAAA4DFSaI2BTQqlbCzAdBQKpVJ7DO9H4nqhWqs3Pr1W29tebY+VnY1iYW2jWpnPxgrPRjFp5hda6eP8i135xYh4MiK+OzPVypdWatXVYd/8AAAAgCviRtf1/z9m2tf/AAAAwIiZHXYFAAAAgEfO9T8AAACMPtf/AAAAMNK+8vrrzSnt/P716pv7e5u1N2+vVuqbpa29ldJKbXentF6rrbfe2bd13v6qtdrOZ2N77265Uak3yvX9gztbtb3txp2NmLyQBgEAAACnPPnx+79LIuLwc1OtqWli2JUCLsT4USrJ5jm9//dPtOfvXlClgAsx1sc6717LL3eeAI+38e6CHn0dGD3FYVcAGLrknOU9B+/8Opt/YrD1AQAABm/uY/nP/wvnbnl4/irApaYTw9XV9fw/nRlWRYAL13r+3+9AHicLMFKKfY0ABEbZ//38/1xp+lAVAgAABm66NSWFUnZ7bzoKhVIp4mbrZwGKydpGtTIfEU9ExG9nitea+YXWlsm51wwAAAAAAAAAAAAAAAAAAAAAAAAAQFuaJpECAAAAIy2i8Kfkl+13+c/NPD/dfX9gIvlX6yeBJyLirR++8f27y43G7kKz/G9H5Y0fZOUvDuMOBgAAANCtc53emv9z2LUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYNS89+Dtlc7Ux+pTg4r7ly9ExGxe/PGYbM0noxgR1/+exPiJ7ZKIGBtA/MN7EfHRvPhJs1pHIfPiD+JDOCd+zGafQl78GwOID1fZ/ebx57W8/leIZ1vz/P43HvE/+Q+q9/Evjo5/Yz36/80+Yzz1zs/KPePfi3hqPP/404mf9Ij/XJ/xv/61g4Ney9IfRcx1vn9aR7yTEY5T5cbWTrm+f3B7Y2t5vbJe2V5cXHh56ZWll5bmy2sb1Ur2b26M7zz98/fPav/13O+/JKtN7/Y/n7O/vO+k/7xz98GHO5nD0/FvPZcT/1c/ztY4Hb+QxflUlm4un+ukD9vpk5756W+eOav9q8ftLz7M//+tXjvtdqqjPN3vnw4A8AjU9w82l6vVyu7IJppX6ZegGhKXMPGtge4wTdO02adyFt2PiH72k8SAW1rIr89xoucRYNhHJgAAYNCOT/qHXRMAAAAAAAAAAAAAAAAAAAC4ui7iLWvdMY9fgZwM4hXaAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8d8AAAD//42Q0/o=")

512.856776ms ago: executing program 1 (id=743):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1ff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8991, &(0x7f0000001740)='lo:\x96o8\x14d\xa1\xba\xda\xd1\xa0J\x12t\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf\xc8>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\x00\x00\x00\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x88j\xca\xf8m\xab\xe8\x99\xeb\xe1\xde\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xfc\xfa 6(%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02!\xed\xf6\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe\x8f$\xd0qx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\a\xf6\xfc\x1d\xd4\x893\xeb)\xc1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00O!\xd2q\xda}\xe2\xa2\xfe\xfd)\\\xdf\x9aN\\\xaeyc\xe4g\xc0\x8a\n\v{\xa9H\\\xd1\x9d\xb1\xb7\xf5\f\xe1\xc5\xc1O\xc2Pl\x94o\xc2\xed\x0f\x83\xac\x00\x8d\x1b\xe6\xf7\x0e\xecf3\xea\xe9\xd0\xe9\xf2@nc\xf8\x11\xd8\xee\x98\ff\xe04<j\x11\xe4\x06O3\"l\x1c\xfc+\xbf-\xa1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf4\x9b\xd0\xf3]\xa9\x81\x12\x80\x9e \x1a5\xc2+\xb3\xcc\xe0\xbfF\xf7H\x1e\x04\x10\x02*\xef#\xc0\xb5\xa4\xca\x9b$u\x93\x80\xfb.\xbdA\xb4\x92\xa7\xa6s\xeb\xb7C\x17^\x80Y\r\\\xd6s\xbc\x00\x00\x00\x00\x00\x00\x00\x00\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0)={[{@dioread_nolock}, {@minixdf}, {@nolazytime}, {}]}, 0x1, 0x783, &(0x7f0000002200)="$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")
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)

313.466088ms ago: executing program 3 (id=744):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43, 0x0, 0x4}}, 0xfffffffffffffee0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmsg(r4, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r5, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) (fail_nth: 2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
r6 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000040)={0x43}, 0x10)
r7 = socket(0x10, 0x2, 0x0)
r8 = socket$inet6(0xa, 0x1, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r10}, 0x10)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1}, 0x0, 0x40000103})
r11 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4, 0x10010, r6, 0x10000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r12=>0xffffffffffffffff})
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r11, &(0x7f00000005c0)=@IORING_OP_CONNECT={0x10, 0x6d, 0x0, r12, 0x80, &(0x7f00000006c0)=@qipcrtr={0x2a, 0x3, 0x7ffe}, 0x0, 0x0, 0x0, {0x0, r13}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r8, 0x89f2, &(0x7f0000000600)={'syztnl1\x00', 0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r7, 0x89f1, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f0000000540)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, @loopback, @private1, 0x7800, 0x700}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r7, 0x89f3, &(0x7f0000000440)={'syztnl1\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, @loopback={0x30000000000}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x6}})
sendmmsg$sock(r1, &(0x7f0000002100)=[{{&(0x7f0000000180)=@tipc=@name={0x1e, 0x2, 0x0, {{0x43}, 0x1}}, 0x80, 0x0}}], 0x1, 0x10)

109.509439ms ago: executing program 1 (id=745):
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(r0, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, 0x140a, 0x300, 0x70bd2a, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x10000}, 0x20008040) (async, rerun: 32)
syz_emit_ethernet(0x32, &(0x7f0000000880)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x4, 0x24, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) (async, rerun: 32)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10) (async, rerun: 32)
syz_emit_ethernet(0x32, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @random="e43f6642531e", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x5, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2, 0x1, 0x1, 0x10, 0x100}}}}}}}, 0x0) (rerun: 32)

0s ago: executing program 3 (id=746):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newtfilter={0x7c, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x50, 0x2, [@TCA_U32_SEL={0x44, 0x5, {0xe, 0x1, 0x3, 0x1, 0x4, 0x2, 0x6, 0xfffffffa, [{0x200, 0x500, 0x3, 0x6}, {0x6783, 0x2, 0x8001, 0x10}, {0x0, 0x53, 0xa9, 0x1}]}}, @TCA_U32_CLASSID={0x8, 0x1, {0xffff, 0xa}}]}}]}, 0x7c}}, 0x24040084)

kernel console output (not intermixed with test programs):

fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.153: bg 0: block 7: invalid block bitmap
[   43.165152][ T3933] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   43.174138][ T3933] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2977: inode #11: comm syz.3.153: corrupted xattr block 95: invalid header
[   43.189468][ T3933] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[   43.198904][ T3933] EXT4-fs (loop3): 1 orphan inode deleted
[   43.208376][ T3933] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.299326][ T3944] loop1: detected capacity change from 0 to 512
[   43.323880][ T3944] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.336540][ T3944] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.349753][ T3944] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.160: corrupted inode contents
[   43.361822][ T3944] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #2: comm syz.1.160: mark_inode_dirty error
[   43.367345][ T3953] netlink: 104 bytes leftover after parsing attributes in process `syz.2.163'.
[   43.385138][ T3944] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.160: corrupted inode contents
[   43.397279][ T3944] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.160: mark_inode_dirty error
[   43.411857][ T3953] wireguard0: entered promiscuous mode
[   43.417709][ T3953] wireguard0: entered allmulticast mode
[   43.572448][ T3972] netlink: 100 bytes leftover after parsing attributes in process `syz.2.169'.
[   43.798925][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.905236][ T3983] loop4: detected capacity change from 0 to 512
[   43.928030][ T3983] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   43.943031][ T3985] loop3: detected capacity change from 0 to 512
[   43.953790][ T3985] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   43.988337][ T3985] EXT4-fs (loop3): 1 truncate cleaned up
[   44.023766][ T3985] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.038721][ T3983] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.056282][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.065565][ T3983] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.145281][ T3993] /dev/nullb0: Can't lookup blockdev
[   44.213364][ T3996] loop1: detected capacity change from 0 to 512
[   44.243306][ T3996] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   44.265371][ T3996] EXT4-fs (loop1): 1 truncate cleaned up
[   44.290647][   T30] kauditd_printk_skb: 360 callbacks suppressed
[   44.290665][   T30] audit: type=1400 audit(1741899482.194:1012): avc:  denied  { getopt } for  pid=3991 comm="syz.0.177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   44.329350][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.352647][ T3996] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.413071][   T30] audit: type=1400 audit(1741899482.314:1013): avc:  denied  { read } for  pid=4003 comm="syz.3.179" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   44.436522][   T30] audit: type=1400 audit(1741899482.314:1014): avc:  denied  { open } for  pid=4003 comm="syz.3.179" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   44.485331][ T3993] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   44.500269][   T30] audit: type=1400 audit(1741899482.384:1015): avc:  denied  { ioctl } for  pid=4003 comm="syz.3.179" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   44.527689][ T3993] EXT4-fs (loop1): Remounting filesystem read-only
[   44.534906][ T3993] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -5)
[   44.672287][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.725359][ T4014] FAULT_INJECTION: forcing a failure.
[   44.725359][ T4014] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   44.738612][ T4014] CPU: 1 UID: 0 PID: 4014 Comm: syz.3.183 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   44.738778][ T4014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   44.738790][ T4014] Call Trace:
[   44.738797][ T4014]  <TASK>
[   44.738806][ T4014]  dump_stack_lvl+0xf2/0x150
[   44.738835][ T4014]  dump_stack+0x15/0x1a
[   44.738929][ T4014]  should_fail_ex+0x24a/0x260
[   44.738961][ T4014]  should_fail+0xb/0x10
[   44.739005][ T4014]  should_fail_usercopy+0x1a/0x20
[   44.739043][ T4014]  _copy_from_user+0x1c/0xa0
[   44.739085][ T4014]  ucma_get_event+0x7a/0x3d0
[   44.739138][ T4014]  ? should_fail_ex+0xd7/0x260
[   44.739175][ T4014]  ucma_write+0x1a4/0x240
[   44.739283][ T4014]  ? __pfx_ucma_write+0x10/0x10
[   44.739314][ T4014]  vfs_write+0x27d/0x920
[   44.739339][ T4014]  ? putname+0xcf/0xf0
[   44.739356][ T4014]  ? __fget_files+0x17c/0x1c0
[   44.739433][ T4014]  ksys_write+0xe8/0x1b0
[   44.739526][ T4014]  __x64_sys_write+0x42/0x50
[   44.739562][ T4014]  x64_sys_call+0x287e/0x2dc0
[   44.739592][ T4014]  do_syscall_64+0xc9/0x1c0
[   44.739625][ T4014]  ? clear_bhb_loop+0x55/0xb0
[   44.739672][ T4014]  ? clear_bhb_loop+0x55/0xb0
[   44.739761][ T4014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.739791][ T4014] RIP: 0033:0x7fbbeb70d169
[   44.739809][ T4014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.739826][ T4014] RSP: 002b:00007fbbe9d71038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   44.739844][ T4014] RAX: ffffffffffffffda RBX: 00007fbbeb925fa0 RCX: 00007fbbeb70d169
[   44.739920][ T4014] RDX: 0000000000000010 RSI: 0000400000000080 RDI: 0000000000000003
[   44.739935][ T4014] RBP: 00007fbbe9d71090 R08: 0000000000000000 R09: 0000000000000000
[   44.739948][ T4014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.739962][ T4014] R13: 0000000000000000 R14: 00007fbbeb925fa0 R15: 00007ffe4de976d8
[   44.739981][ T4014]  </TASK>
[   44.981567][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.007844][   T30] audit: type=1326 audit(1741899482.894:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4017 comm="syz.1.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   45.032004][   T30] audit: type=1326 audit(1741899482.894:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4017 comm="syz.1.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   45.056287][   T30] audit: type=1326 audit(1741899482.894:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4017 comm="syz.1.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   45.080462][   T30] audit: type=1326 audit(1741899482.894:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4017 comm="syz.1.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   45.106073][   T30] audit: type=1326 audit(1741899482.894:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4017 comm="syz.1.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   45.130007][   T30] audit: type=1326 audit(1741899482.894:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4017 comm="syz.1.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   45.208342][ T4034] /dev/nullb0: Can't lookup blockdev
[   45.219784][ T4036] netlink: 4 bytes leftover after parsing attributes in process `syz.3.194'.
[   45.268511][ T4041] loop1: detected capacity change from 0 to 512
[   45.268771][ T4041] EXT4-fs: Ignoring removed nobh option
[   45.275259][ T4041] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   45.311722][ T4044] 9pnet_fd: Insufficient options for proto=fd
[   45.328417][ T4041] EXT4-fs (loop1): 1 truncate cleaned up
[   45.343462][ T4048] loop0: detected capacity change from 0 to 512
[   45.359368][ T4044] loop4: detected capacity change from 0 to 128
[   45.368614][ T4041] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.374758][ T4048] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   45.393342][ T4044] msdos: Unknown parameter './file0'
[   45.438790][ T4050] loop2: detected capacity change from 0 to 8192
[   45.452298][ T4048] EXT4-fs (loop0): 1 truncate cleaned up
[   45.458719][ T4048] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.461089][ T4044] 9pnet_fd: Insufficient options for proto=fd
[   45.481527][ T4052] xt_hashlimit: max too large, truncated to 1048576
[   45.488635][ T4052] xt_hashlimit: overflow, rate too high: 0
[   45.496731][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.509689][ T4034] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   45.527729][ T4050]  loop2: p1 p3 p4
[   45.534585][ T4050] loop2: p1 size 3506438656 extends beyond EOD, truncated
[   45.542212][ T4034] EXT4-fs (loop0): Remounting filesystem read-only
[   45.542238][ T4034] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -5)
[   45.559135][ T4050] loop2: p3 start 218103808 is beyond EOD, truncated
[   45.565921][ T4050] loop2: p4 size 50331648 extends beyond EOD, truncated
[   45.609697][ T3000]  loop2: p1 p3 p4
[   45.613853][ T3000] loop2: p1 size 3506438656 extends beyond EOD, truncated
[   45.635527][ T3000] loop2: p3 start 218103808 is beyond EOD, truncated
[   45.642683][ T3000] loop2: p4 size 50331648 extends beyond EOD, truncated
[   45.650322][ T4057] loop1: detected capacity change from 0 to 256
[   45.674928][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.698963][ T3567] udevd[3567]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   45.726311][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   45.791344][ T3567] udevd[3567]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   45.805250][ T3288] udevd[3288]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   45.860474][ T4077] netlink: 8 bytes leftover after parsing attributes in process `syz.3.208'.
[   45.907218][ T4089] lo: entered promiscuous mode
[   45.912115][ T4089] lo: entered allmulticast mode
[   46.001720][ T4101] netlink: 116 bytes leftover after parsing attributes in process `syz.3.217'.
[   46.025817][ T4101] netlink: 4 bytes leftover after parsing attributes in process `syz.3.217'.
[   46.071700][ T4112] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   46.072962][ T4111] loop2: detected capacity change from 0 to 512
[   46.101893][ T4111] EXT4-fs: Ignoring removed nobh option
[   46.133831][ T4111] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   46.168144][ T4111] EXT4-fs (loop2): mount failed
[   46.406851][ T4127] loop2: detected capacity change from 0 to 1024
[   46.418766][ T4127] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   46.430606][ T4127] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   46.468192][ T4127] JBD2: no valid journal superblock found
[   46.474132][ T4127] EXT4-fs (loop2): Could not load journal inode
[   46.661008][ T4145] netlink: 4 bytes leftover after parsing attributes in process `syz.3.231'.
[   46.702029][ T4145] loop3: detected capacity change from 0 to 512
[   46.731336][ T4145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.767733][ T4145] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.895748][ T4161] loop2: detected capacity change from 0 to 8192
[   46.960286][ T4161]  loop2: p1 p3 p4
[   46.965058][ T4161] loop2: p1 size 3506438656 extends beyond EOD, truncated
[   47.073711][ T4161] loop2: p3 start 218103808 is beyond EOD, truncated
[   47.080664][ T4161] loop2: p4 size 50331648 extends beyond EOD, truncated
[   47.125877][ T4166] loop0: detected capacity change from 0 to 128
[   47.141335][ T4166] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   47.164587][ T4166] bio_check_eod: 8412 callbacks suppressed
[   47.164609][ T4166] syz.0.234: attempt to access beyond end of device
[   47.164609][ T4166] loop0: rw=3, sector=6950, nr_sectors = 2 limit=128
[   47.183939][ T4166] syz.0.234: attempt to access beyond end of device
[   47.183939][ T4166] loop0: rw=2051, sector=6952, nr_sectors = 942 limit=128
[   47.274913][ T4167] lo speed is unknown, defaulting to 1000
[   47.449712][ T4164] netlink: 84 bytes leftover after parsing attributes in process `syz.4.237'.
[   47.572761][ T4167] lo speed is unknown, defaulting to 1000
[   47.657416][ T4167] lo speed is unknown, defaulting to 1000
[   47.734637][ T4167] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   47.772013][ T4167] lo speed is unknown, defaulting to 1000
[   47.778336][ T4167] lo speed is unknown, defaulting to 1000
[   47.849183][ T4167] lo speed is unknown, defaulting to 1000
[   47.876052][ T4177] loop2: detected capacity change from 0 to 1024
[   47.883485][ T4177] EXT4-fs: Ignoring removed orlov option
[   47.890529][ T4177] ext4: Bad value for 'journal_dev'
[   47.896499][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.916020][ T4177] loop2: detected capacity change from 0 to 2048
[   47.923420][ T4167] lo speed is unknown, defaulting to 1000
[   47.934236][ T4167] lo speed is unknown, defaulting to 1000
[   47.952311][ T4177] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.010771][ T4177] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.062246][ T4188] process 'syz.3.244' launched './file0' with NULL argv: empty string added
[   48.077460][ T4191] loop4: detected capacity change from 0 to 512
[   48.130611][ T4192] netlink: 52 bytes leftover after parsing attributes in process `syz.0.246'.
[   48.163246][ T4194] xt_hashlimit: max too large, truncated to 1048576
[   48.170410][ T4194] xt_hashlimit: overflow, rate too high: 0
[   48.262033][ T4198] loop4: detected capacity change from 0 to 2048
[   48.312301][ T4199] loop2: detected capacity change from 0 to 512
[   48.334321][ T4199] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   48.346994][ T4198] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.374125][ T4199] EXT4-fs (loop2): 1 truncate cleaned up
[   48.388607][ T4199] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.509947][ T4212] loop3: detected capacity change from 0 to 512
[   48.540453][ T4212] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.560227][ T4212] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.580938][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.730406][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.759043][ T4218] netlink: 'syz.0.254': attribute type 2 has an invalid length.
[   48.766881][ T4218] netlink: 52 bytes leftover after parsing attributes in process `syz.0.254'.
[   48.802833][ T4220] lo speed is unknown, defaulting to 1000
[   48.885889][ T4226] netlink: 28 bytes leftover after parsing attributes in process `syz.0.256'.
[   48.894683][ T4224] xt_hashlimit: max too large, truncated to 1048576
[   48.902719][ T4224] xt_hashlimit: overflow, rate too high: 0
[   48.928692][ T4226] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[   49.135326][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.247788][ T4233] loop4: detected capacity change from 0 to 512
[   49.270800][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.278251][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.301553][   T30] kauditd_printk_skb: 245 callbacks suppressed
[   49.301571][   T30] audit: type=1400 audit(1741899487.204:1266): avc:  denied  { create } for  pid=4236 comm="syz.0.260" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   49.311421][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.334658][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.342123][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.349672][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.357452][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.365323][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.372842][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.380399][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.388164][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.395664][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.403113][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.412959][ T4233] EXT4-fs: Ignoring removed i_version option
[   49.423703][   T30] audit: type=1326 audit(1741899487.324:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4234 comm="syz.3.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbeb70d169 code=0x7ffc0000
[   49.432755][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.454861][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.462473][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.470005][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.477408][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.485349][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.493072][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.500598][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.508035][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.515468][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.522917][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.530535][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.533021][   T30] audit: type=1326 audit(1741899487.324:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4234 comm="syz.3.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbeb70d169 code=0x7ffc0000
[   49.537918][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.568904][ T3361] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.577078][ T4233] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   49.597207][ T3361] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   49.623330][ T4233] EXT4-fs (loop4): failed to initialize system zone (-117)
[   49.640127][   T30] audit: type=1326 audit(1741899487.514:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4240 comm="syz.0.262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb1939d169 code=0x7ffc0000
[   49.657752][ T4233] EXT4-fs (loop4): mount failed
[   49.663956][   T30] audit: type=1326 audit(1741899487.514:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4240 comm="syz.0.262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb1939d169 code=0x7ffc0000
[   49.663998][   T30] audit: type=1400 audit(1741899487.524:1271): avc:  denied  { write } for  pid=3297 comm="syz-executor" name="52" dev="tmpfs" ino=293 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[   49.664036][   T30] audit: type=1400 audit(1741899487.524:1272): avc:  denied  { remove_name } for  pid=3297 comm="syz-executor" name="binderfs" dev="tmpfs" ino=297 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[   49.664115][   T30] audit: type=1400 audit(1741899487.524:1273): avc:  denied  { rmdir } for  pid=3297 comm="syz-executor" name="52" dev="tmpfs" ino=293 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[   49.775168][   T30] audit: type=1326 audit(1741899487.604:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4234 comm="syz.3.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fbbeb70d169 code=0x7ffc0000
[   49.814842][   T30] audit: type=1326 audit(1741899487.604:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4234 comm="syz.3.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbeb70d169 code=0x7ffc0000
[   49.949472][ T4259] netlink: 165 bytes leftover after parsing attributes in process `syz.0.268'.
[   50.071389][ T4261] sctp: [Deprecated]: syz.3.266 (pid 4261) Use of struct sctp_assoc_value in delayed_ack socket option.
[   50.071389][ T4261] Use struct sctp_sack_info instead
[   50.097320][ T4271] /dev/nullb0: Can't lookup blockdev
[   50.105623][ T4261] Zero length message leads to an empty skb
[   50.139147][ T4271] lo speed is unknown, defaulting to 1000
[   50.158827][ T4274] loop0: detected capacity change from 0 to 512
[   50.181791][ T4248] cgroup2: Unknown parameter 'cpuacct'
[   50.196229][ T4274] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   50.212620][ T4274] EXT4-fs (loop0): 1 truncate cleaned up
[   50.223330][ T4274] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.249398][ T4271] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   50.386862][ T4271] EXT4-fs (loop0): Remounting filesystem read-only
[   50.396374][ T4271] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -5)
[   50.473002][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.582992][ T4288] __nla_validate_parse: 1 callbacks suppressed
[   50.583012][ T4288] netlink: 8 bytes leftover after parsing attributes in process `syz.1.275'.
[   50.650140][ T4291] lo speed is unknown, defaulting to 1000
[   50.806687][ T4297] loop4: detected capacity change from 0 to 128
[   50.818730][ T4295] loop3: detected capacity change from 0 to 512
[   50.826385][ T4297] EXT4-fs: Ignoring removed nobh option
[   50.858295][ T4297] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   50.924922][ T4295] EXT4-fs: Ignoring removed i_version option
[   50.942535][ T4297] ext4 filesystem being mounted at /52/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   50.956000][ T4297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7699 sclass=netlink_route_socket pid=4297 comm=syz.4.281
[   50.968959][ T4302] loop2: detected capacity change from 0 to 1024
[   50.975798][ T4302] EXT4-fs: Ignoring removed i_version option
[   50.981928][ T4302] EXT4-fs: Ignoring removed orlov option
[   50.982005][ T4287] loop0: detected capacity change from 0 to 32768
[   50.987562][ T4302] EXT4-fs: Ignoring removed oldalloc option
[   51.001377][ T3298] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   51.070384][ T4295] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   51.086180][ T4302] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   51.097172][ T4302] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   51.150733][ T4302] EXT4-fs (loop2): invalid journal inode
[   51.156956][ T4302] EXT4-fs (loop2): can't get journal size
[   51.172136][ T4287]  loop0: p1 p3 < p5 p6 >
[   51.177668][ T4302] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   51.190823][ T4295] EXT4-fs (loop3): 1 truncate cleaned up
[   51.207350][ T4295] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.226119][ T4287] loop0: p6 start 337920 is beyond EOD, truncated
[   51.270588][ T4309] lo speed is unknown, defaulting to 1000
[   51.419178][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.759812][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.798768][ T4318] /dev/nullb0: Can't lookup blockdev
[   51.831529][ T4318] lo speed is unknown, defaulting to 1000
[   51.872635][ T4324] loop3: detected capacity change from 0 to 512
[   51.912775][ T4326] netlink: 14 bytes leftover after parsing attributes in process `syz.2.290'.
[   51.925010][ T4324] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   51.954730][ T4331] loop1: detected capacity change from 0 to 164
[   51.979478][ T4324] EXT4-fs (loop3): 1 truncate cleaned up
[   52.041660][ T4324] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.064644][ T4340] loop2: detected capacity change from 0 to 128
[   52.214855][ T4318] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   52.260104][ T4318] EXT4-fs (loop3): Remounting filesystem read-only
[   52.266804][ T4318] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -5)
[   52.268136][ T4352] xt_hashlimit: max too large, truncated to 1048576
[   52.288975][ T4352] xt_hashlimit: overflow, rate too high: 0
[   52.351988][ T4361] x_tables: duplicate underflow at hook 2
[   52.365290][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.376352][ T4359] infiniband syz!: set down
[   52.381046][ T4359] infiniband syz!: added team_slave_0
[   52.469709][ T4359] RDS/IB: syz!: added
[   52.473856][ T4359] smc: adding ib device syz! with port count 1
[   52.480696][ T4359] smc:    ib device syz! port 1 has pnetid 
[   52.601610][ T4374] loop4: detected capacity change from 0 to 512
[   52.656272][ T4358] cgroup2: Unknown parameter 'cpuacct'
[   52.664448][ T4374] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.682200][ T4374] ext4 filesystem being mounted at /58/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   52.776867][ T4374] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #18: comm syz.4.305: corrupted inode contents
[   52.803308][ T4374] EXT4-fs error (device loop4): ext4_dirty_inode:6042: inode #18: comm syz.4.305: mark_inode_dirty error
[   52.825291][ T4374] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #18: comm syz.4.305: corrupted inode contents
[   52.854980][ T4374] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3006: inode #18: comm syz.4.305: mark_inode_dirty error
[   52.882054][ T4374] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3009: inode #18: comm syz.4.305: mark inode dirty (error -117)
[   52.898501][ T4374] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[   52.931782][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.945145][ T4393] loop1: detected capacity change from 0 to 512
[   52.971901][ T4397] /dev/nullb0: Can't lookup blockdev
[   52.976704][ T4393] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.313: bg 0: block 35: padding at end of block bitmap is not set
[   53.008165][ T4393] EXT4-fs (loop1): Remounting filesystem read-only
[   53.018620][ T4397] lo speed is unknown, defaulting to 1000
[   53.024599][ T4393] EXT4-fs (loop1): 1 truncate cleaned up
[   53.031719][ T4393] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.044248][ T4393] SELinux: (dev loop1, type ext4) getxattr errno 5
[   53.057892][ T4403] 9pnet_fd: Insufficient options for proto=fd
[   53.077114][ T4401] mmap: syz.2.315 (4401) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   53.097725][ T4405] loop0: detected capacity change from 0 to 2048
[   53.118434][ T4402] loop4: detected capacity change from 0 to 512
[   53.148448][ T4402] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   53.162920][ T4408] loop3: detected capacity change from 0 to 512
[   53.193276][ T4408] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.3.318: corrupted xattr block 95: invalid header
[   53.208894][ T4408] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.318: bg 0: block 7: invalid block bitmap
[   53.225176][ T4408] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   53.235157][ T4402] EXT4-fs (loop4): 1 truncate cleaned up
[   53.243052][ T4408] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2977: inode #11: comm syz.3.318: corrupted xattr block 95: invalid header
[   53.256840][ T4408] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[   53.284094][ T4397] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   53.286930][ T4417] netlink: 'syz.2.319': attribute type 6 has an invalid length.
[   53.300260][ T4408] EXT4-fs (loop3): 1 orphan inode deleted
[   53.313847][ T4397] EXT4-fs (loop4): Remounting filesystem read-only
[   53.322230][ T4397] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -5)
[   53.602698][ T4428] lo: entered promiscuous mode
[   53.607690][ T4428] lo: entered allmulticast mode
[   53.624934][ T4428] loop4: detected capacity change from 0 to 512
[   53.632769][ T3436] lo speed is unknown, defaulting to 1000
[   53.638720][ T3436] lo speed is unknown, defaulting to 1000
[   53.657130][ T4428] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   53.674124][ T4428] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.066989][ T4442] loop3: detected capacity change from 0 to 128
[   54.076191][ T4442] EXT4-fs: Ignoring removed nobh option
[   54.078587][ T4441] loop1: detected capacity change from 0 to 164
[   54.099084][ T4442] ext4 filesystem being mounted at /64/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   54.109457][ T4441] syz.1.328: attempt to access beyond end of device
[   54.109457][ T4441] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   54.127900][ T4441] syz.1.328: attempt to access beyond end of device
[   54.127900][ T4441] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   54.132246][ T4442] EXT4-fs warning (device loop3): verify_group_input:137: Cannot add at group 1751281518 (only 1 groups)
[   54.333211][ T4455] /dev/nullb0: Can't lookup blockdev
[   54.378378][ T4455] lo speed is unknown, defaulting to 1000
[   54.412595][ T4458] loop4: detected capacity change from 0 to 512
[   54.441651][ T4460] loop0: detected capacity change from 0 to 1024
[   54.559809][ T4458] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   54.576431][ T4460] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   54.587452][ T4460] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   54.601485][ T4462] netlink: 52 bytes leftover after parsing attributes in process `syz.2.335'.
[   54.606919][ T4458] EXT4-fs (loop4): 1 truncate cleaned up
[   54.659827][ T4460] JBD2: no valid journal superblock found
[   54.665704][ T4460] EXT4-fs (loop0): Could not load journal inode
[   54.680325][ T4455] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   54.702962][   T30] kauditd_printk_skb: 211 callbacks suppressed
[   54.702979][   T30] audit: type=1400 audit(1741899492.604:1487): avc:  denied  { mount } for  pid=4459 comm="syz.0.334" name="/" dev="cgroup" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   54.744307][ T4455] EXT4-fs (loop4): Remounting filesystem read-only
[   54.753463][ T4462] netlink: 28 bytes leftover after parsing attributes in process `syz.2.335'.
[   54.766543][ T4455] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -5)
[   54.809799][   T30] audit: type=1400 audit(1741899492.644:1488): avc:  denied  { create } for  pid=4461 comm="syz.2.335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   54.830091][   T30] audit: type=1400 audit(1741899492.644:1489): avc:  denied  { create } for  pid=4461 comm="syz.2.335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   54.850254][   T30] audit: type=1400 audit(1741899492.654:1490): avc:  denied  { bind } for  pid=4461 comm="syz.2.335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   54.870153][   T30] audit: type=1400 audit(1741899492.654:1491): avc:  denied  { connect } for  pid=4461 comm="syz.2.335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   54.890458][   T30] audit: type=1400 audit(1741899492.654:1492): avc:  denied  { write } for  pid=4461 comm="syz.2.335" path="socket:[7644]" dev="sockfs" ino=7644 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   54.914362][   T30] audit: type=1400 audit(1741899492.664:1493): avc:  denied  { unmount } for  pid=3301 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   54.934508][   T30] audit: type=1400 audit(1741899492.674:1494): avc:  denied  { ioctl } for  pid=4461 comm="syz.2.335" path="socket:[7639]" dev="sockfs" ino=7639 ioctlcmd=0x8904 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   54.959698][   T30] audit: type=1400 audit(1741899492.674:1495): avc:  denied  { ioctl } for  pid=4461 comm="syz.2.335" path="socket:[7648]" dev="sockfs" ino=7648 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   54.984466][   T30] audit: type=1400 audit(1741899492.674:1496): avc:  denied  { ioctl } for  pid=4461 comm="syz.2.335" path="socket:[7650]" dev="sockfs" ino=7650 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   55.029117][ T4470] capability: warning: `syz.2.338' uses deprecated v2 capabilities in a way that may be insecure
[   55.050153][ T4472] loop1: detected capacity change from 0 to 164
[   55.080766][ T4475] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.337'.
[   55.125173][ T4468] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.337'.
[   55.148418][ T4477] netlink: 36 bytes leftover after parsing attributes in process `syz.4.340'.
[   55.222062][ T3436] kernel write not supported for file /169/oom_adj (pid: 3436 comm: kworker/1:5)
[   55.270927][ T4487] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   55.326791][ T4493] xt_hashlimit: max too large, truncated to 1048576
[   55.341063][ T4493] xt_hashlimit: overflow, rate too high: 0
[   55.369965][ T4494] syz.4.346 uses obsolete (PF_INET,SOCK_PACKET)
[   55.380075][ T4494] loop4: detected capacity change from 0 to 512
[   55.420747][ T4494] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.444803][ T4496] /dev/nullb0: Can't lookup blockdev
[   55.451818][ T4494] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   55.512058][ T4496] lo speed is unknown, defaulting to 1000
[   55.524236][ T4503] loop2: detected capacity change from 0 to 512
[   55.531530][ T4494] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 31 with error 28
[   55.544091][ T4494] EXT4-fs (loop4): This should not happen!! Data will be lost
[   55.544091][ T4494] 
[   55.554030][ T4494] EXT4-fs (loop4): Total free blocks count 0
[   55.560159][ T4494] EXT4-fs (loop4): Free/Dirty block details
[   55.566296][ T4494] EXT4-fs (loop4): free_blocks=65280
[   55.571793][ T4494] EXT4-fs (loop4): dirty_blocks=31
[   55.577545][ T4494] EXT4-fs (loop4): Block reservation details
[   55.583891][ T4494] EXT4-fs (loop4): i_reserved_data_blocks=31
[   55.592156][ T4503] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   55.634867][ T4503] EXT4-fs (loop2): 1 truncate cleaned up
[   55.722992][ T4496] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   55.738996][ T4496] EXT4-fs (loop2): Remounting filesystem read-only
[   55.772610][ T4496] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -5)
[   55.832952][ T4500] cgroup2: Unknown parameter 'cpuacct'
[   55.856716][ T4509] loop4: detected capacity change from 0 to 1024
[   55.988460][ T4510] cgroup2: Unknown parameter 'cpuacct'
[   56.136999][ T4520] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[   56.241354][    T9] IPVS: starting estimator thread 0...
[   56.260972][ T4528] netlink: 'syz.0.361': attribute type 1 has an invalid length.
[   56.330203][ T4526] IPVS: using max 1920 ests per chain, 96000 per kthread
[   56.348567][ T4534] netlink: 44 bytes leftover after parsing attributes in process `syz.0.361'.
[   56.402309][ T4528] 8021q: adding VLAN 0 to HW filter on device bond2
[   56.912200][ T4555] xt_CT: No such helper "syz1"
[   56.954038][ T4560] No source specified
[   57.024319][ T4560] lo speed is unknown, defaulting to 1000
[   57.072338][ T4565] loop0: detected capacity change from 0 to 512
[   57.119929][ T4565] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   57.196601][ T4565] EXT4-fs (loop0): 1 truncate cleaned up
[   57.207371][ T4576] loop3: detected capacity change from 0 to 512
[   57.241404][ T4576] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   57.297940][ T4560] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 33:
[   57.298020][ T4557] cgroup2: Unknown parameter 'cpuacct'
[   57.298026][ T4560] freeing already freed block (bit 32); block bitmap corrupt.
[   57.329925][ T4560] EXT4-fs (loop0): Remounting filesystem read-only
[   57.336516][ T4560] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -5)
[   57.352127][ T4582] unsupported nla_type 52263
[   57.435692][ T4586] /dev/nullb0: Can't lookup blockdev
[   57.518368][ T4600] loop1: detected capacity change from 0 to 512
[   57.523057][ T4586] lo speed is unknown, defaulting to 1000
[   57.524714][ T4594] netlink: 'syz.0.381': attribute type 1 has an invalid length.
[   57.565934][ T4600] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   57.580910][ T4594] SELinux:  policydb version 524654449 does not match my version range 15-34
[   57.606400][ T4594] SELinux: failed to load policy
[   57.620778][ T4600] EXT4-fs (loop1): 1 truncate cleaned up
[   57.640899][ T4602] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.656451][ T4600] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   57.679022][ T4600] EXT4-fs (loop1): Remounting filesystem read-only
[   57.693220][ T4600] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -5)
[   57.723569][ T4611] sd 0:0:1:0: device reset
[   57.742796][ T4602] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.757580][ T4614] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.385'.
[   57.785513][ T4614] pim6reg1: entered promiscuous mode
[   57.785535][ T4614] pim6reg1: entered allmulticast mode
[   57.786849][ T4610] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.385'.
[   57.818342][ T4602] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.902866][ T4602] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.925743][ T4617] xt_hashlimit: max too large, truncated to 1048576
[   57.933037][ T4617] xt_hashlimit: overflow, rate too high: 0
[   57.947535][ T4619] netlink: 4 bytes leftover after parsing attributes in process `syz.4.387'.
[   57.992755][ T4602] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.012960][ T4602] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.031123][ T4602] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.049606][ T4626] loop4: detected capacity change from 0 to 128
[   58.057806][ T4626] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   58.070496][ T4626] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.083519][ T4602] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.221058][ T4635] netlink: 56 bytes leftover after parsing attributes in process `syz.4.393'.
[   58.287889][ T4641] xt_hashlimit: max too large, truncated to 1048576
[   58.304104][ T4641] xt_hashlimit: overflow, rate too high: 0
[   58.338789][ T4629] cgroup2: Unknown parameter 'cpuacct'
[   58.411972][ T4652] /dev/nullb0: Can't lookup blockdev
[   58.440681][ T4654] FAULT_INJECTION: forcing a failure.
[   58.440681][ T4654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.454108][ T4654] CPU: 0 UID: 0 PID: 4654 Comm: syz.2.399 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   58.454139][ T4654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   58.454154][ T4654] Call Trace:
[   58.454161][ T4654]  <TASK>
[   58.454171][ T4654]  dump_stack_lvl+0xf2/0x150
[   58.454199][ T4654]  dump_stack+0x15/0x1a
[   58.454236][ T4654]  should_fail_ex+0x24a/0x260
[   58.454332][ T4654]  should_fail+0xb/0x10
[   58.454362][ T4654]  should_fail_usercopy+0x1a/0x20
[   58.454394][ T4654]  _copy_from_user+0x1c/0xa0
[   58.454425][ T4654]  copy_msghdr_from_user+0x54/0x2a0
[   58.454472][ T4654]  ? __fget_files+0x17c/0x1c0
[   58.454515][ T4654]  __sys_sendmsg+0x13e/0x230
[   58.454636][ T4654]  __x64_sys_sendmsg+0x46/0x50
[   58.454665][ T4654]  x64_sys_call+0x2734/0x2dc0
[   58.454730][ T4654]  do_syscall_64+0xc9/0x1c0
[   58.454770][ T4654]  ? clear_bhb_loop+0x55/0xb0
[   58.454803][ T4654]  ? clear_bhb_loop+0x55/0xb0
[   58.454904][ T4654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.454937][ T4654] RIP: 0033:0x7f77d5b5d169
[   58.454955][ T4654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.454977][ T4654] RSP: 002b:00007f77d41c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.454997][ T4654] RAX: ffffffffffffffda RBX: 00007f77d5d75fa0 RCX: 00007f77d5b5d169
[   58.455009][ T4654] RDX: 0000000000000004 RSI: 0000400000000380 RDI: 0000000000000006
[   58.455020][ T4654] RBP: 00007f77d41c7090 R08: 0000000000000000 R09: 0000000000000000
[   58.455082][ T4654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.455109][ T4654] R13: 0000000000000000 R14: 00007f77d5d75fa0 R15: 00007ffe9a533848
[   58.455130][ T4654]  </TASK>
[   58.634508][ T4652] lo speed is unknown, defaulting to 1000
[   58.645571][ T4656] loop0: detected capacity change from 0 to 2048
[   58.656159][ T4659] loop4: detected capacity change from 0 to 512
[   58.679043][ T4656] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.685664][ T4659] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   58.707503][ T4656] futex_wake_op: syz.0.400 tries to shift op by -1; fix this program
[   58.707835][ T4664] xt_hashlimit: max too large, truncated to 1048576
[   58.728054][ T4664] xt_hashlimit: overflow, rate too high: 0
[   58.760914][ T4659] EXT4-fs (loop4): 1 truncate cleaned up
[   58.783154][ T4659] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   58.808627][ T4659] EXT4-fs (loop4): Remounting filesystem read-only
[   58.815609][ T4659] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -5)
[   58.849312][ T4671] netlink: 256 bytes leftover after parsing attributes in process `syz.0.405'.
[   58.968693][ T4682] loop0: detected capacity change from 0 to 128
[   59.006547][ T4682] FAT-fs (loop0): Directory bread(block 162) failed
[   59.015003][ T4682] FAT-fs (loop0): Directory bread(block 163) failed
[   59.024864][ T4682] FAT-fs (loop0): Directory bread(block 164) failed
[   59.033209][ T4682] FAT-fs (loop0): Directory bread(block 165) failed
[   59.043598][ T4687] loop4: detected capacity change from 0 to 512
[   59.063006][ T4682] FAT-fs (loop0): Directory bread(block 166) failed
[   59.071706][ T4682] FAT-fs (loop0): Directory bread(block 167) failed
[   59.079709][ T4682] FAT-fs (loop0): Directory bread(block 168) failed
[   59.087888][ T4687] ext4 filesystem being mounted at /80/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   59.113279][ T4676] cgroup2: Unknown parameter 'cpuacct'
[   59.131695][ T4682] FAT-fs (loop0): Directory bread(block 169) failed
[   59.141674][ T4691] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=23 sclass=netlink_tcpdiag_socket pid=4691 comm=syz.3.413
[   59.142955][ T4682] FAT-fs (loop0): Directory bread(block 162) failed
[   59.155646][ T4687] lo speed is unknown, defaulting to 1000
[   59.161287][ T4682] FAT-fs (loop0): Directory bread(block 163) failed
[   59.174265][ T4682] syz.0.409: attempt to access beyond end of device
[   59.174265][ T4682] loop0: rw=3, sector=226, nr_sectors = 6 limit=128
[   59.191881][ T4682] syz.0.409: attempt to access beyond end of device
[   59.191881][ T4682] loop0: rw=2051, sector=232, nr_sectors = 2 limit=128
[   59.242374][ T4696] xt_hashlimit: max too large, truncated to 1048576
[   59.246417][ T4694] loop1: detected capacity change from 0 to 2048
[   59.249441][ T4696] xt_hashlimit: overflow, rate too high: 0
[   59.308724][ T4699] loop3: detected capacity change from 0 to 512
[   59.320891][ T4699] EXT4-fs: Ignoring removed i_version option
[   59.353029][ T4699] ext4 filesystem being mounted at /84/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.604718][ T4720] loop4: detected capacity change from 0 to 512
[   59.640211][ T4720] EXT4-fs: Ignoring removed i_version option
[   59.655981][ T4722] /dev/nullb0: Can't lookup blockdev
[   59.661832][ T4720] EXT4-fs: Invalid want_extra_isize 67108970
[   59.688701][ T4720] loop4: detected capacity change from 0 to 512
[   59.712336][ T4722] lo speed is unknown, defaulting to 1000
[   59.771521][ T4727] loop3: detected capacity change from 0 to 512
[   59.829871][ T4727] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   59.859850][   T30] kauditd_printk_skb: 254 callbacks suppressed
[   59.859941][   T30] audit: type=1400 audit(1741899497.754:1751): avc:  denied  { ioctl } for  pid=4719 comm="syz.4.421" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   59.891628][   T30] audit: type=1400 audit(1741899497.754:1752): avc:  denied  { create } for  pid=4719 comm="syz.4.421" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   59.911624][   T30] audit: type=1400 audit(1741899497.754:1753): avc:  denied  { write } for  pid=4719 comm="syz.4.421" path="socket:[8994]" dev="sockfs" ino=8994 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   59.935438][   T30] audit: type=1400 audit(1741899497.754:1754): avc:  denied  { ioctl } for  pid=4719 comm="syz.4.421" path="socket:[8994]" dev="sockfs" ino=8994 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   59.977567][ T4727] EXT4-fs (loop3): 1 truncate cleaned up
[   59.986690][ T4733] netlink: 64 bytes leftover after parsing attributes in process `syz.4.425'.
[   60.020066][   T30] audit: type=1400 audit(1741899497.904:1755): avc:  denied  { create } for  pid=4732 comm="syz.4.425" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   60.032392][ T4727] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   60.039571][   T30] audit: type=1400 audit(1741899497.904:1756): avc:  denied  { write } for  pid=4732 comm="syz.4.425" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   60.074784][ T4727] EXT4-fs (loop3): Remounting filesystem read-only
[   60.081596][ T4727] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -5)
[   60.136811][   T30] audit: type=1400 audit(1741899498.034:1757): avc:  denied  { read } for  pid=4738 comm="syz.0.427" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   60.160151][   T30] audit: type=1400 audit(1741899498.034:1758): avc:  denied  { open } for  pid=4738 comm="syz.0.427" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   60.192455][ T4741] 9pnet_fd: p9_fd_create_unix (4741): problem connecting socket: ./file0: -111
[   60.216597][ T4744] netlink: 4 bytes leftover after parsing attributes in process `syz.1.428'.
[   60.226023][ T4744] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   60.233554][ T4744] batman_adv: batadv0: Removing interface: batadv_slave_0
[   60.245095][   T30] audit: type=1400 audit(1741899498.104:1759): avc:  denied  { ioctl } for  pid=4738 comm="syz.0.427" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   60.270504][   T30] audit: type=1400 audit(1741899498.114:1760): avc:  denied  { read } for  pid=4738 comm="syz.0.427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   60.292501][ T4744] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   60.293448][   T36] hid-generic B401:75BB38:8001.0002: item fetching failed at offset 0/4
[   60.299951][ T4744] batman_adv: batadv0: Removing interface: batadv_slave_1
[   60.315377][   T36] hid-generic B401:75BB38:8001.0002: probe with driver hid-generic failed with error -22
[   60.387454][ T4742] cgroup2: Unknown parameter 'cpuacct'
[   60.424996][ T4750] 8021q: adding VLAN 0 to HW filter on device bond1
[   60.441490][ T4753] loop2: detected capacity change from 0 to 164
[   60.446006][ T4750] team0: Port device bond1 added
[   60.475390][ T4750] loop3: detected capacity change from 0 to 512
[   60.505083][ T4750] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.431: bg 0: block 16: invalid block bitmap
[   60.535218][ T4750] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   60.544263][ T4750] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.431: invalid indirect mapped block 5 (level 0)
[   60.558979][ T4750] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.431: invalid indirect mapped block 4294967295 (level 1)
[   60.560573][ T4760] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[   60.577633][ T4750] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.431: invalid indirect mapped block 4294967295 (level 2)
[   60.579838][ T4760] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   60.579959][ T4760] vhci_hcd vhci_hcd.0: Device attached
[   60.610908][ T4750] EXT4-fs (loop3): 1 truncate cleaned up
[   60.615047][ T4764] netlink: 'syz.2.436': attribute type 1 has an invalid length.
[   60.624732][ T4764] netlink: 16 bytes leftover after parsing attributes in process `syz.2.436'.
[   60.635302][ T4760] vhci_hcd vhci_hcd.0: port 0 already used
[   60.644334][ T4760] netlink: 24 bytes leftover after parsing attributes in process `syz.1.435'.
[   60.723328][ T4761] vhci_hcd: connection closed
[   60.723720][ T3513] vhci_hcd: stop threads
[   60.732937][ T3513] vhci_hcd: release socket
[   60.737392][ T3513] vhci_hcd: disconnect device
[   60.743027][ T4768] FAULT_INJECTION: forcing a failure.
[   60.743027][ T4768] name failslab, interval 1, probability 0, space 0, times 0
[   60.755697][ T4768] CPU: 1 UID: 0 PID: 4768 Comm: syz.3.437 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   60.755724][ T4768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   60.755738][ T4768] Call Trace:
[   60.755744][ T4768]  <TASK>
[   60.755752][ T4768]  dump_stack_lvl+0xf2/0x150
[   60.755784][ T4768]  dump_stack+0x15/0x1a
[   60.755809][ T4768]  should_fail_ex+0x24a/0x260
[   60.755842][ T4768]  should_failslab+0x8f/0xb0
[   60.755878][ T4768]  kmem_cache_alloc_noprof+0x52/0x320
[   60.755904][ T4768]  ? anon_vma_fork+0xac/0x2d0
[   60.755942][ T4768]  anon_vma_fork+0xac/0x2d0
[   60.755974][ T4768]  copy_mm+0x7be/0x12d0
[   60.756016][ T4768]  copy_process+0xd06/0x1f50
[   60.756058][ T4768]  kernel_clone+0x167/0x5e0
[   60.756089][ T4768]  ? vfs_write+0x644/0x920
[   60.756123][ T4768]  ? 0xffffffffff600000
[   60.756138][ T4768]  __x64_sys_clone+0xe7/0x120
[   60.756173][ T4768]  ? 0xffffffffff600000
[   60.756190][ T4768]  x64_sys_call+0x2d7e/0x2dc0
[   60.756219][ T4768]  do_syscall_64+0xc9/0x1c0
[   60.756253][ T4768]  ? clear_bhb_loop+0x55/0xb0
[   60.756282][ T4768]  ? clear_bhb_loop+0x55/0xb0
[   60.756312][ T4768]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.756341][ T4768] RIP: 0033:0x7fbbeb70d169
[   60.756359][ T4768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.756378][ T4768] RSP: 002b:00007fbbe9d70fe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[   60.756396][ T4768] RAX: ffffffffffffffda RBX: 00007fbbeb925fa0 RCX: 00007fbbeb70d169
[   60.756408][ T4768] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000002c9a4080
[   60.756419][ T4768] RBP: 00007fbbe9d71090 R08: ffffffffff600000 R09: ffffffffff600000
[   60.756430][ T4768] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002
[   60.756443][ T4768] R13: 0000000000000000 R14: 00007fbbeb925fa0 R15: 00007ffe4de976d8
[   60.756460][ T4768]  ? 0xffffffffff600000
[   60.756476][ T4768]  ? 0xffffffffff600000
[   60.756495][ T4768]  </TASK>
[   60.795970][ T4772] loop2: detected capacity change from 0 to 164
[   61.014398][ T4778] loop0: detected capacity change from 0 to 256
[   61.024309][ T4778] FAT-fs (loop0): bogus number of FAT sectors
[   61.030516][ T4778] FAT-fs (loop0): Can't find a valid FAT filesystem
[   61.072488][ T4781] /dev/nullb0: Can't lookup blockdev
[   61.102358][ T4781] lo speed is unknown, defaulting to 1000
[   61.131831][ T4786] loop2: detected capacity change from 0 to 512
[   61.159923][ T4786] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   61.202821][ T4786] EXT4-fs (loop2): 1 truncate cleaned up
[   61.270393][ T4797] loop1: detected capacity change from 0 to 164
[   61.349656][ T4801] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.361753][ T4795] SELinux: ebitmap: truncated map
[   61.382222][ T4795] SELinux: failed to load policy
[   61.391631][ T4781] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   61.415059][ T4781] EXT4-fs (loop2): Remounting filesystem read-only
[   61.422474][ T4781] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -5)
[   61.439202][ T4806] loop0: detected capacity change from 0 to 1024
[   61.452988][ T4795] block device autoloading is deprecated and will be removed.
[   61.470243][ T4795] syz.3.442: attempt to access beyond end of device
[   61.470243][ T4795] md30: rw=2048, sector=0, nr_sectors = 8 limit=0
[   61.483715][ T4806] EXT4-fs: Ignoring removed bh option
[   61.508764][ T4794] cgroup2: Unknown parameter 'cpuacct'
[   61.521447][ T4813] xt_hashlimit: max too large, truncated to 1048576
[   61.528487][ T4813] xt_hashlimit: overflow, rate too high: 0
[   61.551658][ T4806] EXT4-fs error (device loop0): ext4_xattr_inode_iget:440: comm syz.0.448: inode #13617: comm syz.0.448: iget: illegal inode #
[   61.634066][ T4819] loop3: detected capacity change from 0 to 2048
[   61.640668][ T4806] EXT4-fs (loop0): Remounting filesystem read-only
[   61.647218][ T4806] EXT4-fs warning (device loop0): ext4_xattr_inode_inc_ref_all:1146: inode #18: comm syz.0.448: cleanup dec ref error -5
[   61.661166][ T4806] EXT4-fs warning (device loop0): ext4_xattr_block_set:2198: inode #18: comm syz.0.448: dec ref error=-5
[   61.690579][ T4819]  loop3: p1 < > p4
[   61.695153][ T4819] loop3: p4 size 8388608 extends beyond EOD, truncated
[   61.740412][ T4826] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   61.748305][ T4826] vhci_hcd: default hub control req: 6011 v8001 i0001 l0
[   61.758420][ T4827] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   61.777224][ T4827] vhci_hcd: default hub control req: 6011 v8001 i0001 l0
[   61.792392][ T4819] xt_connbytes: Forcing CT accounting to be enabled
[   61.795395][ T4836] FAULT_INJECTION: forcing a failure.
[   61.795395][ T4836] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.799082][ T4819] Cannot find add_set index 0 as target
[   61.813133][ T4836] CPU: 1 UID: 0 PID: 4836 Comm: syz.1.459 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   61.813167][ T4836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   61.813198][ T4836] Call Trace:
[   61.813206][ T4836]  <TASK>
[   61.813215][ T4836]  dump_stack_lvl+0xf2/0x150
[   61.813261][ T4836]  dump_stack+0x15/0x1a
[   61.813287][ T4836]  should_fail_ex+0x24a/0x260
[   61.813424][ T4836]  should_fail+0xb/0x10
[   61.813459][ T4836]  should_fail_usercopy+0x1a/0x20
[   61.813571][ T4836]  _copy_from_user+0x1c/0xa0
[   61.813597][ T4836]  get_timespec64+0x49/0x140
[   61.813625][ T4836]  __se_sys_clock_nanosleep+0xfd/0x240
[   61.813702][ T4836]  __x64_sys_clock_nanosleep+0x55/0x70
[   61.813747][ T4836]  x64_sys_call+0x25b8/0x2dc0
[   61.813782][ T4836]  do_syscall_64+0xc9/0x1c0
[   61.813891][ T4836]  ? clear_bhb_loop+0x55/0xb0
[   61.813926][ T4836]  ? clear_bhb_loop+0x55/0xb0
[   61.814014][ T4836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.814048][ T4836] RIP: 0033:0x7f286784d169
[   61.814068][ T4836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.814091][ T4836] RSP: 002b:00007f2865eb7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
[   61.814160][ T4836] RAX: ffffffffffffffda RBX: 00007f2867a65fa0 RCX: 00007f286784d169
[   61.814177][ T4836] RDX: 0000400000000000 RSI: 0000000000ca9a3b RDI: 00000000fffffff2
[   61.814260][ T4836] RBP: 00007f2865eb7090 R08: 0000000000000000 R09: 0000000000000000
[   61.814276][ T4836] R10: 9999999999999999 R11: 0000000000000246 R12: 0000000000000001
[   61.814289][ T4836] R13: 0000000000000000 R14: 00007f2867a65fa0 R15: 00007ffd91d819e8
[   61.814314][ T4836]  </TASK>
[   61.828765][ T4838] loop2: detected capacity change from 0 to 1764
[   61.829259][ T4838] iso9660: Bad value for 'gid'
[   61.844448][ T4819] __nla_validate_parse: 1 callbacks suppressed
[   61.844477][ T4819] netlink: 24 bytes leftover after parsing attributes in process `syz.3.452'.
[   61.845554][ T4838] iso9660: Bad value for 'gid'
[   62.124639][ T4854] xt_hashlimit: max too large, truncated to 1048576
[   62.138229][ T4854] xt_hashlimit: overflow, rate too high: 0
[   62.214881][ T4861] 
: renamed from bond0 (while UP)
[   62.254789][ T4848] cgroup2: Unknown parameter 'cpuacct'
[   62.371424][ T4880] FAULT_INJECTION: forcing a failure.
[   62.371424][ T4880] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.384666][ T4880] CPU: 0 UID: 0 PID: 4880 Comm: syz.4.477 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   62.384695][ T4880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   62.384707][ T4880] Call Trace:
[   62.384713][ T4880]  <TASK>
[   62.384721][ T4880]  dump_stack_lvl+0xf2/0x150
[   62.384754][ T4880]  dump_stack+0x15/0x1a
[   62.384780][ T4880]  should_fail_ex+0x24a/0x260
[   62.384881][ T4880]  should_fail+0xb/0x10
[   62.384910][ T4880]  should_fail_usercopy+0x1a/0x20
[   62.384972][ T4880]  strncpy_from_user+0x25/0x210
[   62.385004][ T4880]  strncpy_from_user_nofault+0x66/0xe0
[   62.385063][ T4880]  bpf_probe_read_compat_str+0xb3/0x130
[   62.385176][ T4880]  bpf_prog_e42f6260c1b72fb3+0x3e/0x40
[   62.385197][ T4880]  bpf_trace_run3+0x10c/0x1d0
[   62.385299][ T4880]  ? security_file_free+0x61/0xa0
[   62.385329][ T4880]  ? security_file_free+0x61/0xa0
[   62.385438][ T4880]  __traceiter_kmem_cache_free+0x33/0x50
[   62.385526][ T4880]  ? security_file_free+0x61/0xa0
[   62.385552][ T4880]  kmem_cache_free+0x237/0x2d0
[   62.385577][ T4880]  security_file_free+0x61/0xa0
[   62.385608][ T4880]  __fput+0x45c/0x640
[   62.385655][ T4880]  ____fput+0x1c/0x30
[   62.385679][ T4880]  task_work_run+0x13a/0x1a0
[   62.385718][ T4880]  syscall_exit_to_user_mode+0xa8/0x120
[   62.385794][ T4880]  do_syscall_64+0xd6/0x1c0
[   62.385831][ T4880]  ? clear_bhb_loop+0x55/0xb0
[   62.385863][ T4880]  ? clear_bhb_loop+0x55/0xb0
[   62.385911][ T4880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.385996][ T4880] RIP: 0033:0x7f6570ead169
[   62.386014][ T4880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.386036][ T4880] RSP: 002b:00007f656f517038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   62.386057][ T4880] RAX: 0000000000000000 RBX: 00007f65710c5fa0 RCX: 00007f6570ead169
[   62.386072][ T4880] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000
[   62.386086][ T4880] RBP: 00007f656f517090 R08: 0000000000000000 R09: 0000000000000000
[   62.386099][ T4880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.386113][ T4880] R13: 0000000000000000 R14: 00007f65710c5fa0 R15: 00007fffa8e9b5c8
[   62.386144][ T4880]  </TASK>
[   62.751701][ T4892] netlink: 4 bytes leftover after parsing attributes in process `syz.1.479'.
[   62.836250][ T4898] xt_hashlimit: max too large, truncated to 1048576
[   62.845269][ T4898] xt_hashlimit: overflow, rate too high: 0
[   62.988123][ T4904] capability: warning: `syz.4.485' uses 32-bit capabilities (legacy support in use)
[   63.014496][ T4902] tipc: Started in network mode
[   63.019484][ T4902] tipc: Node identity 4, cluster identity 4711
[   63.026122][ T4902] tipc: Node number set to 4
[   63.120837][ T4911] netlink: 12 bytes leftover after parsing attributes in process `syz.1.488'.
[   63.129782][ T4911] netlink: 11 bytes leftover after parsing attributes in process `syz.1.488'.
[   63.174475][ T4915] loop1: detected capacity change from 0 to 128
[   63.193420][ T4913] netlink: 3 bytes leftover after parsing attributes in process `syz.0.487'.
[   63.202660][ T4913] 0ŞXą¦Ŕ: renamed from caif0
[   63.212649][ T4913] 0ŞXą¦Ŕ: entered allmulticast mode
[   63.217969][ T4913] A link change request failed with some changes committed already. Interface 
60ŞXą¦Ŕ may have been left with an inconsistent configuration, please check.
[   63.230893][ T4915] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   63.244685][ T4919] netlink: 36 bytes leftover after parsing attributes in process `syz.4.489'.
[   63.254942][ T4911] FAT-fs (loop1): error, invalid access to FAT (entry 0x0affffff)
[   63.262919][ T4911] FAT-fs (loop1): Filesystem has been set read-only
[   63.272238][ T4911] FAT-fs (loop1): error, invalid access to FAT (entry 0x0affffff)
[   63.294086][ T4911] netlink: 28 bytes leftover after parsing attributes in process `syz.1.488'.
[   63.303665][ T4911] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=4911 comm=syz.1.488
[   63.344296][ T3297] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   63.362754][ T4924] netlink: 8 bytes leftover after parsing attributes in process `syz.0.492'.
[   63.371709][ T4924] netlink: 4 bytes leftover after parsing attributes in process `syz.0.492'.
[   63.438255][ T4932] xt_hashlimit: max too large, truncated to 1048576
[   63.445739][ T4927] loop1: detected capacity change from 0 to 8192
[   63.478678][ T4932] xt_hashlimit: overflow, rate too high: 0
[   63.614636][ T4940] netlink: 23 bytes leftover after parsing attributes in process `syz.2.496'.
[   63.625186][ T4940] caif0: entered allmulticast mode
[   63.861721][ T4948] loop2: detected capacity change from 0 to 512
[   63.882383][ T4948] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   63.910539][ T4948] EXT4-fs (loop2): 1 truncate cleaned up
[   64.140989][ T4954] netlink: 'syz.4.501': attribute type 10 has an invalid length.
[   64.167791][ T4954] team0: Port device geneve1 added
[   64.243724][ T4961] loop4: detected capacity change from 0 to 512
[   64.250982][ T4961] EXT4-fs: Ignoring removed orlov option
[   64.257249][ T4961] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   64.292378][ T4961] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   64.303845][ T4961] EXT4-fs (loop4): orphan cleanup on readonly fs
[   64.320324][ T4961] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 248: padding at end of block bitmap is not set
[   64.336854][ T4966] /dev/nullb0: Can't lookup blockdev
[   64.356447][ T4966] lo speed is unknown, defaulting to 1000
[   64.366149][ T4961] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm +}[@: Failed to acquire dquot type 1
[   64.401344][ T4972] loop3: detected capacity change from 0 to 512
[   64.417237][ T4972] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   64.506818][ T4961] EXT4-fs (loop4): 1 truncate cleaned up
[   64.566803][ T4972] EXT4-fs (loop3): 1 truncate cleaned up
[   64.632412][ T4966] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   64.648525][ T4966] EXT4-fs (loop3): Remounting filesystem read-only
[   64.665021][ T4966] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -5)
[   64.758382][ T4993] /dev/nullb0: Can't lookup blockdev
[   64.784330][ T4996] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[   64.814036][ T4995] FAULT_INJECTION: forcing a failure.
[   64.814036][ T4995] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.827444][ T4995] CPU: 0 UID: 0 PID: 4995 Comm: syz.4.518 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   64.827473][ T4995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   64.827497][ T4995] Call Trace:
[   64.827504][ T4995]  <TASK>
[   64.827512][ T4995]  dump_stack_lvl+0xf2/0x150
[   64.827545][ T4995]  dump_stack+0x15/0x1a
[   64.827571][ T4995]  should_fail_ex+0x24a/0x260
[   64.827607][ T4995]  should_fail+0xb/0x10
[   64.827702][ T4995]  should_fail_usercopy+0x1a/0x20
[   64.827818][ T4995]  _copy_to_user+0x20/0xa0
[   64.827843][ T4995]  simple_read_from_buffer+0xa0/0x110
[   64.827879][ T4995]  proc_fail_nth_read+0xf9/0x140
[   64.827943][ T4995]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   64.827976][ T4995]  vfs_read+0x19b/0x6f0
[   64.828046][ T4995]  ? __rcu_read_unlock+0x4e/0x70
[   64.828073][ T4995]  ? __fget_files+0x17c/0x1c0
[   64.828141][ T4995]  ksys_read+0xe8/0x1b0
[   64.828168][ T4995]  __x64_sys_read+0x42/0x50
[   64.828197][ T4995]  x64_sys_call+0x2874/0x2dc0
[   64.828237][ T4995]  do_syscall_64+0xc9/0x1c0
[   64.828345][ T4995]  ? clear_bhb_loop+0x55/0xb0
[   64.828379][ T4995]  ? clear_bhb_loop+0x55/0xb0
[   64.828421][ T4995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.828452][ T4995] RIP: 0033:0x7f6570eabb7c
[   64.828471][ T4995] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   64.828507][ T4995] RSP: 002b:00007f656f517030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   64.828530][ T4995] RAX: ffffffffffffffda RBX: 00007f65710c5fa0 RCX: 00007f6570eabb7c
[   64.828545][ T4995] RDX: 000000000000000f RSI: 00007f656f5170a0 RDI: 0000000000000005
[   64.828558][ T4995] RBP: 00007f656f517090 R08: 0000000000000000 R09: 0000000000000000
[   64.828571][ T4995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.828585][ T4995] R13: 0000000000000000 R14: 00007f65710c5fa0 R15: 00007fffa8e9b5c8
[   64.828607][ T4995]  </TASK>
[   64.830187][ T3374] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.834370][ T3374] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   64.858268][ T4993] lo speed is unknown, defaulting to 1000
[   65.056616][ T5001] loop2: detected capacity change from 0 to 512
[   65.063785][ T5001] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   65.085486][ T5001] EXT4-fs (loop2): 1 truncate cleaned up
[   65.122887][ T5010] xt_hashlimit: max too large, truncated to 1048576
[   65.130148][ T5010] xt_hashlimit: overflow, rate too high: 0
[   65.138708][   T30] kauditd_printk_skb: 484 callbacks suppressed
[   65.138725][   T30] audit: type=1400 audit(1741899503.034:2243): avc:  denied  { nlmsg_write } for  pid=5015 comm="syz.4.523" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   65.168402][ T5021] futex_wake_op: syz.4.524 tries to shift op by -1; fix this program
[   65.203871][ T4993] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   65.218791][ T4993] EXT4-fs (loop2): Remounting filesystem read-only
[   65.225437][ T4993] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -5)
[   65.226131][ T5023] loop1: detected capacity change from 0 to 2048
[   65.251736][ T5023] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.265617][   T30] audit: type=1326 audit(1741899503.164:2244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5022 comm="syz.1.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   65.267412][ T5023] futex_wake_op: syz.1.525 tries to shift op by -1; fix this program
[   65.289208][   T30] audit: type=1326 audit(1741899503.164:2245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5022 comm="syz.1.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   65.320850][   T30] audit: type=1326 audit(1741899503.164:2246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5022 comm="syz.1.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   65.344350][   T30] audit: type=1326 audit(1741899503.164:2247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5022 comm="syz.1.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   65.367988][   T30] audit: type=1326 audit(1741899503.164:2248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5022 comm="syz.1.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   65.405310][   T30] audit: type=1326 audit(1741899503.164:2249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5022 comm="syz.1.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   65.429028][   T30] audit: type=1326 audit(1741899503.164:2250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5022 comm="syz.1.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   65.429387][ T5030] loop4: detected capacity change from 0 to 1024
[   65.452917][   T30] audit: type=1326 audit(1741899503.164:2251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5022 comm="syz.1.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   65.469974][ T5033] loop2: detected capacity change from 0 to 128
[   65.482591][   T30] audit: type=1326 audit(1741899503.164:2252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5022 comm="syz.1.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   65.489668][ T5030] ext4: Unknown parameter 'syzkaller'
[   65.596681][ T5033] syz.2.527: attempt to access beyond end of device
[   65.596681][ T5033] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128
[   65.600704][ T5045] loop3: detected capacity change from 0 to 164
[   65.624844][ T5037] Restarting kernel threads ... done.
[   65.631366][ T5033] syz.2.527: attempt to access beyond end of device
[   65.631366][ T5033] loop2: rw=524288, sector=897, nr_sectors = 144 limit=128
[   65.650896][ T5033] syz.2.527: attempt to access beyond end of device
[   65.650896][ T5033] loop2: rw=0, sector=1025, nr_sectors = 8 limit=128
[   65.665437][ T5033] syz.2.527: attempt to access beyond end of device
[   65.665437][ T5033] loop2: rw=0, sector=1025, nr_sectors = 8 limit=128
[   65.678826][ T5033] syz.2.527: attempt to access beyond end of device
[   65.678826][ T5033] loop2: rw=0, sector=1025, nr_sectors = 8 limit=128
[   65.708501][ T5043] /dev/nullb0: Can't lookup blockdev
[   65.731536][ T5043] lo speed is unknown, defaulting to 1000
[   65.744592][ T5033] syz.2.527: attempt to access beyond end of device
[   65.744592][ T5033] loop2: rw=0, sector=1025, nr_sectors = 8 limit=128
[   65.747704][ T5049] syz.2.527: attempt to access beyond end of device
[   65.747704][ T5049] loop2: rw=524288, sector=145, nr_sectors = 752 limit=128
[   65.775958][ T5033] syz.2.527: attempt to access beyond end of device
[   65.775958][ T5033] loop2: rw=0, sector=1025, nr_sectors = 8 limit=128
[   65.791365][ T5054] loop4: detected capacity change from 0 to 512
[   65.798759][ T5054] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   65.811659][ T5033] syz.2.527: attempt to access beyond end of device
[   65.811659][ T5033] loop2: rw=0, sector=1025, nr_sectors = 8 limit=128
[   65.827643][ T5033] syz.2.527: attempt to access beyond end of device
[   65.827643][ T5033] loop2: rw=0, sector=1025, nr_sectors = 8 limit=128
[   65.828120][ T5057] futex_wake_op: syz.3.536 tries to shift op by -1; fix this program
[   65.870209][ T5054] EXT4-fs (loop4): 1 truncate cleaned up
[   65.871048][ T5053] xt_hashlimit: max too large, truncated to 1048576
[   65.886311][ T5053] xt_hashlimit: overflow, rate too high: 0
[   65.941791][ T5054] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   65.969586][ T5064] loop0: detected capacity change from 0 to 1024
[   66.011083][ T5066] cgroup: Unknown subsys name 'cpuset'
[   66.021412][ T5064] EXT4-fs: Ignoring removed nobh option
[   66.027466][ T5064] EXT4-fs: Ignoring removed bh option
[   66.047659][ T5066] loop3: detected capacity change from 0 to 256
[   66.071254][ T5054] EXT4-fs (loop4): Remounting filesystem read-only
[   66.078007][ T5054] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -5)
[   66.116426][ T5064] xt_l2tp: missing protocol rule (udp|l2tpip)
[   66.122925][ T5064] netlink: 'syz.0.537': attribute type 4 has an invalid length.
[   66.431634][ T5081] pim6reg: entered allmulticast mode
[   66.439950][ T5068] cgroup2: Unknown parameter 'cpuacct'
[   66.469957][ T5085] sch_tbf: burst 25 is lower than device lo mtu (65550) !
[   66.493275][ T5090] loop1: detected capacity change from 0 to 512
[   66.500521][ T5088] pim6reg: left allmulticast mode
[   66.533215][ T5095] FAULT_INJECTION: forcing a failure.
[   66.533215][ T5095] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.533810][ T5090] ext4 filesystem being mounted at /109/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.546388][ T5095] CPU: 0 UID: 0 PID: 5095 Comm: syz.2.545 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   66.546420][ T5095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   66.546434][ T5095] Call Trace:
[   66.546441][ T5095]  <TASK>
[   66.546451][ T5095]  dump_stack_lvl+0xf2/0x150
[   66.546488][ T5095]  dump_stack+0x15/0x1a
[   66.546518][ T5095]  should_fail_ex+0x24a/0x260
[   66.546595][ T5095]  should_fail+0xb/0x10
[   66.546638][ T5095]  should_fail_usercopy+0x1a/0x20
[   66.546679][ T5095]  _copy_from_user+0x1c/0xa0
[   66.546703][ T5095]  __sys_bpf+0x14e/0x7a0
[   66.546749][ T5095]  __x64_sys_bpf+0x43/0x50
[   66.546819][ T5095]  x64_sys_call+0x2914/0x2dc0
[   66.546853][ T5095]  do_syscall_64+0xc9/0x1c0
[   66.546894][ T5095]  ? clear_bhb_loop+0x55/0xb0
[   66.546928][ T5095]  ? clear_bhb_loop+0x55/0xb0
[   66.547006][ T5095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.547040][ T5095] RIP: 0033:0x7f77d5b5d169
[   66.547060][ T5095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.547082][ T5095] RSP: 002b:00007f77d41c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   66.547113][ T5095] RAX: ffffffffffffffda RBX: 00007f77d5d75fa0 RCX: 00007f77d5b5d169
[   66.547177][ T5095] RDX: 0000000000000048 RSI: 0000400000000840 RDI: 0000000000000000
[   66.547192][ T5095] RBP: 00007f77d41c7090 R08: 0000000000000000 R09: 0000000000000000
[   66.547277][ T5095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.547292][ T5095] R13: 0000000000000000 R14: 00007f77d5d75fa0 R15: 00007ffe9a533848
[   66.547314][ T5095]  </TASK>
[   66.760844][ T5102] futex_wake_op: syz.1.548 tries to shift op by -1; fix this program
[   66.818467][ T5104] xt_hashlimit: max too large, truncated to 1048576
[   66.828036][ T5104] xt_hashlimit: overflow, rate too high: 0
[   66.900392][ T5113] CĂ: renamed from team_slave_0 (while UP)
[   66.908820][ T5112] loop2: detected capacity change from 0 to 128
[   66.921568][ T5113] netlink: 'syz.1.552': attribute type 3 has an invalid length.
[   66.929373][ T5113] __nla_validate_parse: 2 callbacks suppressed
[   66.929390][ T5113] netlink: 152 bytes leftover after parsing attributes in process `syz.1.552'.
[   66.973749][ T5113] A link change request failed with some changes committed already. Interface CĂ may have been left with an inconsistent configuration, please check.
[   67.071678][ T5113] loop1: detected capacity change from 0 to 1024
[   67.091582][ T5113] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c018, mo2=0002]
[   67.101268][ T5113] System zones: 0-1, 3-12
[   67.158248][ T5135] loop2: detected capacity change from 0 to 2048
[   67.159061][ T5131] loop3: detected capacity change from 0 to 512
[   67.178679][ T5115] cgroup2: Unknown parameter 'cpuacct'
[   67.183243][ T5131] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   67.211807][ T5135] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.223555][ T5131] EXT4-fs (loop3): 1 truncate cleaned up
[   67.237589][ T5135] futex_wake_op: syz.2.560 tries to shift op by -1; fix this program
[   67.259821][ T5141] loop1: detected capacity change from 0 to 512
[   67.266471][ T5141] EXT4-fs: inline encryption not supported
[   67.290893][ T5141] EXT4-fs (loop1): can't mount with journal_async_commit, fs mounted w/o journal
[   67.358633][ T5148] xt_hashlimit: max too large, truncated to 1048576
[   67.366042][ T5148] xt_hashlimit: overflow, rate too high: 0
[   67.408933][ T5157] netlink: 28 bytes leftover after parsing attributes in process `syz.4.568'.
[   67.425994][ T5159] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   67.434538][ T5160] netlink: 16 bytes leftover after parsing attributes in process `syz.0.569'.
[   67.466717][ T5162] /dev/nullb0: Can't lookup blockdev
[   67.501871][ T5162] lo speed is unknown, defaulting to 1000
[   67.642245][ T5162] loop4: detected capacity change from 0 to 512
[   67.655124][ T5160] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.663760][ T5160] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   67.674667][ T5162] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   67.686415][ T5168] cgroup2: Unknown parameter 'cpuacct'
[   67.711025][ T5162] EXT4-fs (loop4): 1 truncate cleaned up
[   67.725458][ T5162] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   67.742125][ T5162] EXT4-fs (loop4): Remounting filesystem read-only
[   67.748853][ T5162] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -5)
[   67.950012][ T5184] loop4: detected capacity change from 0 to 4096
[   67.956769][ T5186] loop3: detected capacity change from 0 to 128
[   67.967080][ T5184] EXT4-fs mount: 67 callbacks suppressed
[   67.967149][ T5184] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.970483][ T5186] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   67.993377][ T5186] FAT-fs (loop3): Filesystem has been set read-only
[   68.000402][ T5186] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   68.008346][ T5186] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   68.121516][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.140961][ T5191] loop3: detected capacity change from 0 to 256
[   68.174770][ T5195] xt_hashlimit: max too large, truncated to 1048576
[   68.188771][ T5195] xt_hashlimit: overflow, rate too high: 0
[   68.242887][ T5199] loop0: detected capacity change from 0 to 1024
[   68.252777][ T5199] EXT4-fs: Ignoring removed bh option
[   68.258636][ T5199] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   68.269411][ T5199] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   68.282821][ T5199] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[   68.291742][ T5199] System zones: 0-1, 3-12
[   68.297405][ T5199] EXT4-fs error (device loop0): ext4_map_blocks:705: inode #3: block 1: comm syz.0.584: lblock 1 mapped to illegal pblock 1 (length 1)
[   68.317888][ T5199] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.584: Failed to acquire dquot type 0
[   68.332580][ T5199] EXT4-fs error (device loop0): ext4_free_blocks:6589: comm syz.0.584: Freeing blocks not in datazone - block = 0, count = 4096
[   68.346716][ T5199] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.584: Invalid inode bitmap blk 0 in block_group 0
[   68.346812][ T5199] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   68.347034][ T5199] EXT4-fs (loop0): 1 orphan inode deleted
[   68.347449][ T5199] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.385971][ T5197] cgroup2: Unknown parameter 'cpuacct'
[   68.406951][ T3521] EXT4-fs error (device loop0): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:46: lblock 1 mapped to illegal pblock 1 (length 1)
[   68.421764][ T3521] EXT4-fs error (device loop0): ext4_release_dquot:6950: comm kworker/u8:46: Failed to release dquot type 0
[   68.434830][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.458711][ T5207] futex_wake_op: syz.0.586 tries to shift op by 36; fix this program
[   68.468609][ T5207] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   68.477665][ T5207] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   68.555278][ T5215] lo speed is unknown, defaulting to 1000
[   68.702828][ T5219] loop2: detected capacity change from 0 to 2048
[   68.731108][ T5219]  loop2: p1 < > p4
[   68.735399][ T5219] loop2: p4 size 8388608 extends beyond EOD, truncated
[   68.818402][ T5223] loop2: detected capacity change from 0 to 164
[   68.849585][ T5225] xt_hashlimit: max too large, truncated to 1048576
[   68.857165][ T5225] xt_hashlimit: overflow, rate too high: 0
[   68.961928][ T5229] loop4: detected capacity change from 0 to 512
[   69.090909][ T5231] cgroup2: Unknown parameter 'cpuacct'
[   69.118185][ T5240] Illegal XDP return value 4294967274 on prog  (id 524) dev syz_tun, expect packet loss!
[   69.136448][ T5240] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   69.398363][ T5273] lo speed is unknown, defaulting to 1000
[   70.055111][ T5323] loop3: detected capacity change from 0 to 764
[   70.062768][ T5323] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   70.152271][ T5332] lo speed is unknown, defaulting to 1000
[   70.238813][   T30] kauditd_printk_skb: 230 callbacks suppressed
[   70.238829][   T30] audit: type=1326 audit(1741899508.134:2480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.272091][   T30] audit: type=1326 audit(1741899508.134:2481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.299850][   T30] audit: type=1326 audit(1741899508.134:2482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.325254][   T30] audit: type=1326 audit(1741899508.134:2483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.348685][   T30] audit: type=1326 audit(1741899508.134:2484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.372153][   T30] audit: type=1326 audit(1741899508.134:2485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.379929][ T5337] loop2: detected capacity change from 0 to 256
[   70.395573][   T30] audit: type=1326 audit(1741899508.134:2486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.425815][   T30] audit: type=1326 audit(1741899508.134:2487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.438168][ T5337] msdos: Bad value for 'umask'
[   70.449699][   T30] audit: type=1326 audit(1741899508.134:2488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.449764][   T30] audit: type=1326 audit(1741899508.134:2489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5333 comm="syz.4.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f6570ead169 code=0x7ffc0000
[   70.482074][ T5341] FAULT_INJECTION: forcing a failure.
[   70.482074][ T5341] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.515061][ T5341] CPU: 1 UID: 0 PID: 5341 Comm: syz.0.610 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   70.515091][ T5341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   70.515102][ T5341] Call Trace:
[   70.515110][ T5341]  <TASK>
[   70.515118][ T5341]  dump_stack_lvl+0xf2/0x150
[   70.515216][ T5341]  dump_stack+0x15/0x1a
[   70.515243][ T5341]  should_fail_ex+0x24a/0x260
[   70.515278][ T5341]  should_fail+0xb/0x10
[   70.515310][ T5341]  should_fail_usercopy+0x1a/0x20
[   70.515344][ T5341]  _copy_to_user+0x20/0xa0
[   70.515440][ T5341]  rng_dev_read+0x3e8/0x700
[   70.515483][ T5341]  vfs_readv+0x3e2/0x660
[   70.515506][ T5341]  ? __pfx_rng_dev_read+0x10/0x10
[   70.515626][ T5341]  __x64_sys_preadv+0xf4/0x1c0
[   70.515729][ T5341]  x64_sys_call+0x2680/0x2dc0
[   70.515756][ T5341]  do_syscall_64+0xc9/0x1c0
[   70.515848][ T5341]  ? clear_bhb_loop+0x55/0xb0
[   70.515887][ T5341]  ? clear_bhb_loop+0x55/0xb0
[   70.515914][ T5341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.515945][ T5341] RIP: 0033:0x7ffb1939d169
[   70.515965][ T5341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.515982][ T5341] RSP: 002b:00007ffb179e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   70.516007][ T5341] RAX: ffffffffffffffda RBX: 00007ffb195b6080 RCX: 00007ffb1939d169
[   70.516022][ T5341] RDX: 0000000000000001 RSI: 0000400000000240 RDI: 0000000000000007
[   70.516062][ T5341] RBP: 00007ffb179e0090 R08: 0000000000000000 R09: 0000000000000000
[   70.516074][ T5341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.516085][ T5341] R13: 0000000000000000 R14: 00007ffb195b6080 R15: 00007fff7f1347b8
[   70.516103][ T5341]  </TASK>
[   70.710806][ T5344] cgroup2: Unknown parameter 'cpuacct'
[   70.806744][ T5352] wireguard0: entered promiscuous mode
[   70.812309][ T5352] wireguard0: entered allmulticast mode
[   70.997390][ T5358] loop1: detected capacity change from 0 to 2048
[   71.069205][ T5358] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.092437][ T5358] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.126693][ T5368] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.620'.
[   71.137768][ T5358] futex_wake_op: syz.1.618 tries to shift op by -1; fix this program
[   71.163794][ T5369] loop4: detected capacity change from 0 to 2048
[   71.172788][ T5352] lo speed is unknown, defaulting to 1000
[   71.200666][ T5369] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.222458][ T5369] ext4 filesystem being mounted at /130/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.271479][ T5378] loop3: detected capacity change from 0 to 2048
[   71.274426][ T5376] netlink: 12 bytes leftover after parsing attributes in process `syz.2.623'.
[   71.288178][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.301638][ T5378] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.320468][ T5378] ext4 filesystem being mounted at /127/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.331209][ T5369] futex_wake_op: syz.4.621 tries to shift op by -1; fix this program
[   71.355538][ T5383] loop1: detected capacity change from 0 to 512
[   71.367814][ T5383] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   71.390761][ T5378] futex_wake_op: syz.3.624 tries to shift op by -1; fix this program
[   71.400021][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.431580][ T5383] EXT4-fs (loop1): 1 truncate cleaned up
[   71.440750][ T5383] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.472584][ T5383] EXT4-fs (loop1): Online resizing not supported with sparse_super2
[   71.537512][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.562212][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.573650][ T5398] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[   71.639196][ T5404] /dev/nullb0: Can't lookup blockdev
[   71.657750][ T5404] lo speed is unknown, defaulting to 1000
[   71.704963][ T5409] loop3: detected capacity change from 0 to 512
[   71.723685][ T5409] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   71.742651][ T5411] loop4: detected capacity change from 0 to 2048
[   71.768368][ T5409] EXT4-fs (loop3): 1 truncate cleaned up
[   71.775896][ T5411] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.785140][ T5409] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.794481][ T5411] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.817846][ T5411] futex_wake_op: syz.4.637 tries to shift op by -1; fix this program
[   71.850163][ T5404] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   71.868724][ T5404] EXT4-fs (loop3): Remounting filesystem read-only
[   71.888949][ T5404] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -5)
[   71.924875][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.038896][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.105350][ T5437] netlink: 12 bytes leftover after parsing attributes in process `syz.3.644'.
[   72.114213][ T5441] FAULT_INJECTION: forcing a failure.
[   72.114213][ T5441] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.114244][ T5441] CPU: 1 UID: 0 PID: 5441 Comm: syz.1.645 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   72.114307][ T5441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   72.114321][ T5441] Call Trace:
[   72.114329][ T5441]  <TASK>
[   72.114336][ T5441]  dump_stack_lvl+0xf2/0x150
[   72.114367][ T5441]  dump_stack+0x15/0x1a
[   72.114392][ T5441]  should_fail_ex+0x24a/0x260
[   72.114457][ T5441]  should_fail+0xb/0x10
[   72.114551][ T5441]  should_fail_usercopy+0x1a/0x20
[   72.114594][ T5441]  strncpy_from_user+0x25/0x210
[   72.114646][ T5441]  ? xas_load+0x3ae/0x3d0
[   72.114729][ T5441]  strncpy_from_user_nofault+0x66/0xe0
[   72.114762][ T5441]  bpf_probe_read_compat_str+0xb3/0x130
[   72.114807][ T5441]  bpf_prog_e42f6260c1b72fb3+0x3e/0x40
[   72.114828][ T5441]  bpf_trace_run3+0x10c/0x1d0
[   72.114859][ T5441]  ? security_file_free+0x61/0xa0
[   72.114938][ T5441]  ? security_file_free+0x61/0xa0
[   72.114971][ T5441]  kmem_cache_free+0x237/0x2d0
[   72.115003][ T5441]  security_file_free+0x61/0xa0
[   72.115037][ T5441]  __fput+0x45c/0x640
[   72.115138][ T5441]  ____fput+0x1c/0x30
[   72.115163][ T5441]  task_work_run+0x13a/0x1a0
[   72.115219][ T5441]  syscall_exit_to_user_mode+0xa8/0x120
[   72.115257][ T5441]  do_syscall_64+0xd6/0x1c0
[   72.115297][ T5441]  ? clear_bhb_loop+0x55/0xb0
[   72.115383][ T5441]  ? clear_bhb_loop+0x55/0xb0
[   72.115416][ T5441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.115515][ T5441] RIP: 0033:0x7f286784d169
[   72.115534][ T5441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.115556][ T5441] RSP: 002b:00007f2865e96038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   72.115642][ T5441] RAX: 0000000000000000 RBX: 00007f2867a66080 RCX: 00007f286784d169
[   72.115657][ T5441] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000
[   72.115672][ T5441] RBP: 00007f2865e96090 R08: 0000000000000000 R09: 0000000000000000
[   72.115686][ T5441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.115701][ T5441] R13: 0000000000000000 R14: 00007f2867a66080 R15: 00007ffd91d819e8
[   72.115725][ T5441]  </TASK>
[   72.243370][ T5449] lo speed is unknown, defaulting to 1000
[   72.652582][ T5472] loop1: detected capacity change from 0 to 128
[   72.692260][ T5452] xt_hashlimit: max too large, truncated to 1048576
[   72.700486][ T5452] xt_hashlimit: overflow, rate too high: 0
[   72.763806][ T5476] bio_check_eod: 11337 callbacks suppressed
[   72.763825][ T5476] syz.1.653: attempt to access beyond end of device
[   72.763825][ T5476] loop1: rw=2049, sector=145, nr_sectors = 848 limit=128
[   72.866027][   T12] kworker/u8:0: attempt to access beyond end of device
[   72.866027][   T12] loop1: rw=1, sector=993, nr_sectors = 48 limit=128
[   73.009560][ T5486] xt_hashlimit: max too large, truncated to 1048576
[   73.022081][ T5486] xt_hashlimit: overflow, rate too high: 0
[   73.105233][ T5498] netlink: 36 bytes leftover after parsing attributes in process `syz.4.660'.
[   73.119825][ T5498] netlink: 'syz.4.660': attribute type 1 has an invalid length.
[   73.147417][ T5497] netlink: 20 bytes leftover after parsing attributes in process `syz.1.662'.
[   73.156653][ T5497] netlink: 20 bytes leftover after parsing attributes in process `syz.1.662'.
[   73.163068][ T5494] futex_wake_op: syz.0.661 tries to shift op by -1; fix this program
[   73.194828][ T5497] netlink: 96 bytes leftover after parsing attributes in process `syz.1.662'.
[   73.237468][ T5497] netlink: 'syz.1.662': attribute type 5 has an invalid length.
[   73.245484][ T5497] netlink: 44 bytes leftover after parsing attributes in process `syz.1.662'.
[   73.398062][ T5518] loop2: detected capacity change from 0 to 164
[   73.434018][ T5519] netlink: 'syz.3.668': attribute type 13 has an invalid length.
[   73.478954][ T5523] netlink: 'syz.2.672': attribute type 4 has an invalid length.
[   73.505642][ T5526] loop3: detected capacity change from 0 to 1024
[   73.521688][ T5519] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   73.572930][ T5525] loop1: detected capacity change from 0 to 2048
[   73.580628][ T5526] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.602067][ T5525] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.620205][ T5525] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.634147][ T5525] futex_wake_op: syz.1.673 tries to shift op by -1; fix this program
[   73.643088][ T5519] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   73.682754][ T5535] loop2: detected capacity change from 0 to 764
[   73.692647][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.704369][ T5535] iso9660: Unknown parameter 'GPL'
[   73.757857][ T5519] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   73.770379][ T5519] EXT4-fs (loop3): This should not happen!! Data will be lost
[   73.770379][ T5519] 
[   73.780196][ T5519] EXT4-fs (loop3): Total free blocks count 0
[   73.786255][ T5519] EXT4-fs (loop3): Free/Dirty block details
[   73.792294][ T5519] EXT4-fs (loop3): free_blocks=68451041280
[   73.798146][ T5519] EXT4-fs (loop3): dirty_blocks=16
[   73.803636][ T5519] EXT4-fs (loop3): Block reservation details
[   73.809664][ T5519] EXT4-fs (loop3): i_reserved_data_blocks=1
[   73.818736][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.833704][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.860633][ T5539] lo speed is unknown, defaulting to 1000
[   73.895917][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.044590][ T5538] loop2: detected capacity change from 0 to 512
[   74.055670][ T5538] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.677: casefold flag without casefold feature
[   74.071043][ T5538] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.677: couldn't read orphan inode 15 (err -117)
[   74.088832][ T5538] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.102398][ T5538] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.103213][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.150719][ T3509] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   74.174602][ T5539] chnl_net:caif_netlink_parms(): no params data found
[   74.184024][ T5562] loop3: detected capacity change from 0 to 1024
[   74.236546][ T5562] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.326473][ T5562] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.681: Allocating blocks 385-513 which overlap fs metadata
[   74.372545][   T12] bridge_slave_1: left allmulticast mode
[   74.378250][   T12] bridge_slave_1: left promiscuous mode
[   74.384050][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.421352][ T5562] EXT4-fs (loop3): pa ffff8881064f23f0: logic 16, phys. 129, len 24
[   74.430405][ T5562] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 8
[   74.448014][   T12] bridge_slave_0: left allmulticast mode
[   74.454057][   T12] bridge_slave_0: left promiscuous mode
[   74.459872][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.469909][ T5562] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[   74.482307][ T5562] EXT4-fs (loop3): This should not happen!! Data will be lost
[   74.482307][ T5562] 
[   74.492012][ T5562] EXT4-fs (loop3): Total free blocks count 0
[   74.498199][ T5562] EXT4-fs (loop3): Free/Dirty block details
[   74.504494][ T5562] EXT4-fs (loop3): free_blocks=128
[   74.509624][ T5562] EXT4-fs (loop3): dirty_blocks=0
[   74.515006][ T5562] EXT4-fs (loop3): Block reservation details
[   74.521311][ T5562] EXT4-fs (loop3): i_reserved_data_blocks=0
[   74.749646][   T12] team0: Port device geneve1 removed
[   74.832130][ T5587] loop2: detected capacity change from 0 to 2048
[   74.862490][ T5587] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.902467][ T5587] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.914446][ T5587] futex_wake_op: syz.2.688 tries to shift op by -1; fix this program
[   75.242643][   T30] kauditd_printk_skb: 917 callbacks suppressed
[   75.242661][   T30] audit: type=1326 audit(1741899513.144:3407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2867844127 code=0x7ffc0000
[   75.272258][   T30] audit: type=1326 audit(1741899513.144:3408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f28677e9359 code=0x7ffc0000
[   75.295881][   T30] audit: type=1326 audit(1741899513.144:3409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   75.320084][   T30] audit: type=1326 audit(1741899513.224:3410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2867844127 code=0x7ffc0000
[   75.343466][   T30] audit: type=1326 audit(1741899513.224:3411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f28677e9359 code=0x7ffc0000
[   75.367013][   T30] audit: type=1326 audit(1741899513.224:3412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   75.430091][   T30] audit: type=1326 audit(1741899513.294:3413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2867844127 code=0x7ffc0000
[   75.431918][   T12] bond0 (unregistering): left promiscuous mode
[   75.453536][   T30] audit: type=1326 audit(1741899513.294:3414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f28677e9359 code=0x7ffc0000
[   75.459805][   T12] bond_slave_0: left promiscuous mode
[   75.459924][   T12] bond_slave_1: left promiscuous mode
[   75.483482][   T30] audit: type=1326 audit(1741899513.294:3415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f286784d169 code=0x7ffc0000
[   75.518192][   T30] audit: type=1326 audit(1741899513.324:3416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2867844127 code=0x7ffc0000
[   75.579630][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   75.590143][ T5591] netlink: 68 bytes leftover after parsing attributes in process `syz.3.689'.
[   75.610461][ T5591] netlink: 36 bytes leftover after parsing attributes in process `syz.3.689'.
[   75.625078][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   75.643099][   T12] bond0 (unregistering): Released all slaves
[   75.661936][ T5539] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.669055][ T5539] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.676678][ T5539] bridge_slave_0: entered allmulticast mode
[   75.687335][ T5539] bridge_slave_0: entered promiscuous mode
[   75.704336][ T5539] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.711823][ T5539] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.730125][ T5539] bridge_slave_1: entered allmulticast mode
[   75.740616][ T5539] bridge_slave_1: entered promiscuous mode
[   75.762254][ T5591] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.786920][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.848802][ T5539] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.863408][ T5594] loop1: detected capacity change from 0 to 2048
[   75.870434][   T12] dummy0: left promiscuous mode
[   75.876115][ T5594] EXT4-fs: Ignoring removed oldalloc option
[   75.883301][   T12] hsr_slave_0: left promiscuous mode
[   75.900713][   T12] hsr_slave_1: left promiscuous mode
[   75.907746][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   75.911432][ T5594] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.915350][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   75.938787][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   75.946507][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   75.956092][   T12] veth1_macvtap: left promiscuous mode
[   75.963407][   T12] veth0_macvtap: left promiscuous mode
[   75.969094][   T12] veth1_vlan: left promiscuous mode
[   75.974610][   T12] veth0_vlan: left promiscuous mode
[   75.982601][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.035350][ T5613] loop2: detected capacity change from 0 to 1024
[   76.042470][ T5610] loop3: detected capacity change from 0 to 164
[   76.055818][ T5613] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.068747][ T5613] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.103671][   T12] team0 (unregistering): Port device team_slave_1 removed
[   76.115558][   T12] team0 (unregistering): Port device team_slave_0 removed
[   76.155017][ T5539] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.198629][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.200836][ T5539] team0: Port device team_slave_0 added
[   76.218848][ T5620] xt_hashlimit: max too large, truncated to 1048576
[   76.228007][ T5622] loop1: detected capacity change from 0 to 2048
[   76.231644][ T5622] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.237898][ T5620] xt_hashlimit: overflow, rate too high: 0
[   76.257182][ T5539] team0: Port device team_slave_1 added
[   76.296750][ T5539] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.304149][ T5539] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.330333][ T5539] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.343718][ T5626] loop2: detected capacity change from 0 to 2048
[   76.353457][ T5629] loop3: detected capacity change from 0 to 512
[   76.360602][ T5629] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   76.361385][ T5539] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.377436][ T5539] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.382694][ T5629] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[   76.403786][ T5539] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.418997][ T5626] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.423830][ T5629] EXT4-fs (loop3): orphan cleanup on readonly fs
[   76.437103][ T5626] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.461498][ T5626] futex_wake_op: syz.2.701 tries to shift op by -1; fix this program
[   76.461864][ T5539] hsr_slave_0: entered promiscuous mode
[   76.476010][ T5629] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.702: bg 0: block 361: padding at end of block bitmap is not set
[   76.486102][ T5539] hsr_slave_1: entered promiscuous mode
[   76.491613][ T5629] EXT4-fs (loop3): Remounting filesystem read-only
[   76.503855][ T5629] EXT4-fs (loop3): 1 truncate cleaned up
[   76.503985][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.510250][ T5629] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[   76.532262][ T5629] SELinux: (dev loop3, type ext4) getxattr errno 5
[   76.540156][ T5629] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[   76.589330][ T5629] loop3: detected capacity change from 0 to 512
[   76.612179][ T5629] EXT4-fs (loop3): 1 orphan inode deleted
[   76.618665][ T5629] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.631651][ T5629] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.642279][ T3521] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:46: Failed to release dquot type 1
[   76.702381][ T5644] netlink: 12 bytes leftover after parsing attributes in process `syz.2.705'.
[   76.715745][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.715755][ T5646] FAULT_INJECTION: forcing a failure.
[   76.715755][ T5646] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.725908][ T5644] vlan0: entered promiscuous mode
[   76.738037][ T5646] CPU: 1 UID: 0 PID: 5646 Comm: syz.0.706 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   76.738117][ T5646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   76.738133][ T5646] Call Trace:
[   76.738215][ T5646]  <TASK>
[   76.738226][ T5646]  dump_stack_lvl+0xf2/0x150
[   76.738263][ T5646]  dump_stack+0x15/0x1a
[   76.738331][ T5646]  should_fail_ex+0x24a/0x260
[   76.738392][ T5646]  should_fail+0xb/0x10
[   76.738426][ T5646]  should_fail_usercopy+0x1a/0x20
[   76.738468][ T5646]  _copy_from_user+0x1c/0xa0
[   76.738493][ T5646]  __se_sys_rt_sigtimedwait+0x81/0x1f0
[   76.738561][ T5646]  __x64_sys_rt_sigtimedwait+0x55/0x70
[   76.738596][ T5646]  x64_sys_call+0xe48/0x2dc0
[   76.738630][ T5646]  do_syscall_64+0xc9/0x1c0
[   76.738720][ T5646]  ? clear_bhb_loop+0x55/0xb0
[   76.738756][ T5646]  ? clear_bhb_loop+0x55/0xb0
[   76.738861][ T5646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.738909][ T5646] RIP: 0033:0x7ffb1939d169
[   76.738928][ T5646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.739018][ T5646] RSP: 002b:00007ffb17a01038 EFLAGS: 00000246 ORIG_RAX: 0000000000000080
[   76.739042][ T5646] RAX: ffffffffffffffda RBX: 00007ffb195b5fa0 RCX: 00007ffb1939d169
[   76.739058][ T5646] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000040
[   76.739073][ T5646] RBP: 00007ffb17a01090 R08: 0000000000000000 R09: 0000000000000000
[   76.739088][ T5646] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[   76.739102][ T5646] R13: 0000000000000000 R14: 00007ffb195b5fa0 R15: 00007fff7f1347b8
[   76.739126][ T5646]  </TASK>
[   76.802283][ T3436] Process accounting resumed
[   76.804363][ T5644] veth0: entered promiscuous mode
[   76.921296][ T5644] veth0: left promiscuous mode
[   76.958580][ T5654] loop3: detected capacity change from 0 to 164
[   76.968945][ T5652] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   76.981039][ T5652] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   77.064278][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.084598][ T5661] xt_hashlimit: max too large, truncated to 1048576
[   77.106939][ T5661] xt_hashlimit: overflow, rate too high: 0
[   77.131402][ T5662] loop2: detected capacity change from 0 to 2048
[   77.169913][ T5662] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.203350][ T5539] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   77.214645][ T5662] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.226169][ T5662] futex_wake_op: syz.2.713 tries to shift op by -1; fix this program
[   77.248542][ T5539] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   77.256262][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.269026][ T5664] loop1: detected capacity change from 0 to 512
[   77.281463][ T5664] EXT4-fs: Ignoring removed i_version option
[   77.282572][ T5539] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   77.296658][ T5664] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   77.316904][ T5539] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   77.326679][ T5678] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   77.347698][ T1050] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   77.355750][ T1050] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   77.372541][ T5664] EXT4-fs (loop1): 1 truncate cleaned up
[   77.385934][ T5664] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.471846][ T5539] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.484208][ T5539] 8021q: adding VLAN 0 to HW filter on device team0
[   77.494685][ T3509] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.501774][ T3509] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.530550][ T3515] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.537790][ T3515] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.580324][ T5539] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   77.591036][ T5539] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   77.702694][ T5539] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.732644][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.813897][ T5708] xt_hashlimit: max too large, truncated to 1048576
[   77.826117][ T5708] xt_hashlimit: overflow, rate too high: 0
[   77.846718][ T5711] loop2: detected capacity change from 0 to 2048
[   77.891605][ T5711] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.916603][ T5711] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.928890][ T5711] futex_wake_op: syz.2.728 tries to shift op by -1; fix this program
[   77.970437][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.998481][ T5539] veth0_vlan: entered promiscuous mode
[   78.009172][ T5539] veth1_vlan: entered promiscuous mode
[   78.052429][ T5539] veth0_macvtap: entered promiscuous mode
[   78.072570][ T5539] veth1_macvtap: entered promiscuous mode
[   78.089086][ T5725] loop1: detected capacity change from 0 to 512
[   78.105623][ T5539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.112576][ T5725] EXT4-fs: Ignoring removed i_version option
[   78.116490][ T5539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.116507][ T5539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.116526][ T5539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.116584][ T5539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.116600][ T5539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.125392][ T5539] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.159987][ T5725] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   78.187856][ T5539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.207585][ T5539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.217771][ T5539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.228281][ T5539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.238219][ T5539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.248785][ T5539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.259500][ T5539] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.280003][ T5539] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.288328][ T5725] EXT4-fs (loop1): 1 truncate cleaned up
[   78.288789][ T5539] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.303439][ T5539] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.312356][ T5539] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.317760][ T5725] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.413972][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.448437][ T5747] loop4: detected capacity change from 0 to 2048
[   78.472337][ T5747] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.486158][ T5747] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.543683][ T5755] xt_hashlimit: max too large, truncated to 1048576
[   78.551275][ T5755] xt_hashlimit: overflow, rate too high: 0
[   78.608979][ T5539] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.660859][ T5742] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64663 sclass=netlink_route_socket pid=5742 comm=syz.0.738
[   78.688734][ T5760] loop1: detected capacity change from 0 to 2048
[   78.756130][ T5760] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.770128][ T5760] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.813546][ T5760] futex_wake_op: syz.1.743 tries to shift op by -1; fix this program
[   78.825418][ T5765] loop4: detected capacity change from 0 to 512
[   78.868819][ T5765] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.742: bg 0: block 248: padding at end of block bitmap is not set
[   78.887196][ T5770] FAULT_INJECTION: forcing a failure.
[   78.887196][ T5770] name failslab, interval 1, probability 0, space 0, times 0
[   78.900164][ T5770] CPU: 1 UID: 0 PID: 5770 Comm: syz.3.744 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   78.900237][ T5770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   78.900252][ T5770] Call Trace:
[   78.900259][ T5770]  <TASK>
[   78.900268][ T5770]  dump_stack_lvl+0xf2/0x150
[   78.900301][ T5770]  dump_stack+0x15/0x1a
[   78.900325][ T5770]  should_fail_ex+0x24a/0x260
[   78.900358][ T5770]  should_failslab+0x8f/0xb0
[   78.900429][ T5770]  kmem_cache_alloc_node_noprof+0x59/0x320
[   78.900531][ T5770]  ? __alloc_skb+0x10b/0x310
[   78.900553][ T5770]  __alloc_skb+0x10b/0x310
[   78.900576][ T5770]  tipc_msg_build+0xc2/0x830
[   78.900610][ T5770]  __tipc_sendstream+0x672/0xb20
[   78.900642][ T5770]  ? __pfx_woken_wake_function+0x10/0x10
[   78.900677][ T5770]  ? __pfx_tipc_sendstream+0x10/0x10
[   78.900756][ T5770]  tipc_sendstream+0x3e/0x60
[   78.900810][ T5770]  __sock_sendmsg+0x140/0x180
[   78.900850][ T5770]  ____sys_sendmsg+0x326/0x4b0
[   78.900882][ T5770]  __sys_sendmsg+0x19d/0x230
[   78.900925][ T5770]  __x64_sys_sendmsg+0x46/0x50
[   78.900988][ T5770]  x64_sys_call+0x2734/0x2dc0
[   78.901014][ T5770]  do_syscall_64+0xc9/0x1c0
[   78.901051][ T5770]  ? clear_bhb_loop+0x55/0xb0
[   78.901082][ T5770]  ? clear_bhb_loop+0x55/0xb0
[   78.901164][ T5770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.901241][ T5770] RIP: 0033:0x7fbbeb70d169
[   78.901258][ T5770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.901278][ T5770] RSP: 002b:00007fbbe9d50038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.901297][ T5770] RAX: ffffffffffffffda RBX: 00007fbbeb926080 RCX: 00007fbbeb70d169
[   78.901311][ T5770] RDX: 0000000000000000 RSI: 0000400000000240 RDI: 0000000000000007
[   78.901308][ T5765] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.742: Failed to acquire dquot type 1
[   78.901326][ T5770] RBP: 00007fbbe9d50090 R08: 0000000000000000 R09: 0000000000000000
[   78.901346][ T5770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.901403][ T5765] ==================================================================
[   78.901358][ T5770] R13: 0000000000000001 R14: 00007fbbeb926080 R15: 00007ffe4de976d8
[   78.901434][ T5770]  </TASK>
[   79.079412][ T5765] BUG: KCSAN: data-race in data_push_tail / number
[   79.079470][ T5765] 
[   79.079480][ T5765] write to 0xffffffff88bd4100 of 1 bytes by task 5770 on cpu 1:
[   79.079502][ T5765]  number+0x90a/0xac0
[   79.079525][ T5765]  vsnprintf+0x6ae/0x890
[   79.079547][ T5765]  vscnprintf+0x42/0x90
[   79.079574][ T5765]  printk_sprint+0x30/0x2d0
[   79.079604][ T5765]  vprintk_store+0x589/0x870
[   79.079628][ T5765]  vprintk_emit+0x168/0x690
[   79.079652][ T5765]  vprintk_default+0x26/0x30
[   79.079675][ T5765]  vprintk+0x1d/0x30
[   79.079705][ T5765]  _printk+0x7a/0xa0
[   79.079735][ T5765]  __show_regs+0xbc/0x450
[   79.079759][ T5765]  show_trace_log_lvl+0x348/0x400
[   79.079789][ T5765]  dump_stack_lvl+0xf2/0x150
[   79.079812][ T5765]  dump_stack+0x15/0x1a
[   79.079835][ T5765]  should_fail_ex+0x24a/0x260
[   79.079873][ T5765]  should_failslab+0x8f/0xb0
[   79.079905][ T5765]  kmem_cache_alloc_node_noprof+0x59/0x320
[   79.079929][ T5765]  __alloc_skb+0x10b/0x310
[   79.079951][ T5765]  tipc_msg_build+0xc2/0x830
[   79.079980][ T5765]  __tipc_sendstream+0x672/0xb20
[   79.080006][ T5765]  tipc_sendstream+0x3e/0x60
[   79.080048][ T5765]  __sock_sendmsg+0x140/0x180
[   79.080090][ T5765]  ____sys_sendmsg+0x326/0x4b0
[   79.080147][ T5765]  __sys_sendmsg+0x19d/0x230
[   79.080173][ T5765]  __x64_sys_sendmsg+0x46/0x50
[   79.080203][ T5765]  x64_sys_call+0x2734/0x2dc0
[   79.080237][ T5765]  do_syscall_64+0xc9/0x1c0
[   79.080277][ T5765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.080311][ T5765] 
[   79.080320][ T5765] read to 0xffffffff88bd4100 of 8 bytes by task 5765 on cpu 0:
[   79.080342][ T5765]  data_push_tail+0x102/0x430
[   79.080385][ T5765]  data_alloc+0xbe/0x2c0
[   79.080424][ T5765]  prb_reserve+0x85e/0xb60
[   79.080459][ T5765]  vprintk_store+0x558/0x870
[   79.080478][ T5765]  vprintk_emit+0x168/0x690
[   79.080497][ T5765]  vprintk_default+0x26/0x30
[   79.080521][ T5765]  vprintk+0x1d/0x30
[   79.080553][ T5765]  _printk+0x7a/0xa0
[   79.080587][ T5765]  __ext4_error+0x221/0x310
[   79.080626][ T5765]  ext4_acquire_dquot+0x1d3/0x210
[   79.080651][ T5765]  dqget+0x522/0x8b0
[   79.080687][ T5765]  __dquot_initialize+0x26d/0x760
[   79.080726][ T5765]  dquot_initialize+0x1a/0x20
[   79.080756][ T5765]  ext4_process_orphan+0x32/0x1c0
[   79.080799][ T5765]  ext4_orphan_cleanup+0x696/0x9e0
[   79.080844][ T5765]  ext4_fill_super+0x32ec/0x3630
[   79.080884][ T5765]  get_tree_bdev_flags+0x29f/0x310
[   79.080916][ T5765]  get_tree_bdev+0x1f/0x30
[   79.080943][ T5765]  ext4_get_tree+0x1c/0x30
[   79.080977][ T5765]  vfs_get_tree+0x56/0x1e0
[   79.081014][ T5765]  do_new_mount+0x227/0x690
[   79.081052][ T5765]  path_mount+0x49b/0xb30
[   79.081082][ T5765]  __se_sys_mount+0x27f/0x2d0
[   79.081125][ T5765]  __x64_sys_mount+0x67/0x80
[   79.081162][ T5765]  x64_sys_call+0x2c84/0x2dc0
[   79.081197][ T5765]  do_syscall_64+0xc9/0x1c0
[   79.081230][ T5765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.081265][ T5765] 
[   79.081273][ T5765] value changed: 0x00000000ffffe083 -> 0x3052203039303035
[   79.081290][ T5765] 
[   79.081296][ T5765] Reported by Kernel Concurrency Sanitizer on:
[   79.081306][ T5765] CPU: 0 UID: 0 PID: 5765 Comm: syz.4.742 Not tainted 6.14.0-rc6-syzkaller-00022-gb7f94fcf5546 #0
[   79.081332][ T5765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   79.081348][ T5765] ==================================================================
[   79.335704][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.381911][ T5765] EXT4-fs (loop4): 1 truncate cleaned up
[   79.473152][ T5765] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.485937][ T5765] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.535433][ T5539] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.