last executing test programs:

41.696191645s ago: executing program 4 (id=640):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0a"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='ext4_writepages_result\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='ext4_writepages_result\x00', r2}, 0x10)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

41.667724975s ago: executing program 4 (id=644):
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r0 = socket$tipc(0x1e, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x0, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000140)={0x0, 0x20d302, 0x0}, 0x0)
r2 = dup3(r0, r1, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r2, 0x0, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88)

41.603179415s ago: executing program 4 (id=646):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000b60000000800"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
connect$unix(r0, &(0x7f0000fce000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
accept(r3, 0x0, 0x0)

41.540604595s ago: executing program 4 (id=647):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x400, &(0x7f0000000100)=ANY=[], 0xfd, 0x2a4, &(0x7f0000000700)="$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")
open(&(0x7f0000000140)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
io_setup(0x7, &(0x7f00000000c0)=<r1=>0x0)
io_submit(r1, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000000)="96", 0xfe00}, &(0x7f0000000040)={0x0, 0x0, 0x41, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
r2 = syz_io_uring_setup(0x371d, &(0x7f0000000280)={0x0, 0xd967, 0x10, 0x2, 0x2e2}, &(0x7f0000000380), &(0x7f0000000300))
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x13, 0x2000ac0a, r3)

40.674742842s ago: executing program 4 (id=655):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r2 = io_uring_setup(0x410d, &(0x7f0000000200)={0x0, 0x60a4, 0x0, 0xfffffffc})
r3 = eventfd2(0x0, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD(r2, 0x4, &(0x7f0000000000)=r3, 0x1)
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, &(0x7f0000001580)={0x3, 0x0, 0x0, &(0x7f00000014c0)=[{0x0}, {0x0}, {&(0x7f0000000280)=""/4094, 0xffe}], &(0x7f0000001540)=[0x0, 0x0, 0x4]}, 0x20)
read$eventfd(r3, &(0x7f0000000040), 0x8)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000001b00)={0x0, 0x0, &(0x7f0000001a80)=[{0x0}, {0x0}, {0x0}], 0x0, 0x3}, 0x20)

40.442909251s ago: executing program 4 (id=660):
open(0x0, 0x60c2, 0x0)
rt_sigsuspend(0x0, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "76f7bc3e4ae1c84c", "af193cff4810ba5ac120d096eb00b40752095b4285514ca312c52e3a08756735", '8\x00', "bc3a20b10f4ad11e"}, 0x38)
close(r1)
rename(&(0x7f00000002c0)='./file0\x00', 0x0)

40.419557971s ago: executing program 32 (id=660):
open(0x0, 0x60c2, 0x0)
rt_sigsuspend(0x0, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "76f7bc3e4ae1c84c", "af193cff4810ba5ac120d096eb00b40752095b4285514ca312c52e3a08756735", '8\x00', "bc3a20b10f4ad11e"}, 0x38)
close(r1)
rename(&(0x7f00000002c0)='./file0\x00', 0x0)

2.009285556s ago: executing program 2 (id=1406):
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, 0x0, 0x0, 0xe7b, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r3, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000700)="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", 0x1d6}], 0x1}}], 0x1, 0x81)
setsockopt$sock_int(r3, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmmsg$inet(r3, &(0x7f0000004100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="ba58cc1aba2fc4037d69b05e9ddc0c78abe2f7f0104c50c29ba96f81674709bcac7a3c8e45f24db37d72dff8eef8cbbd", 0x30}], 0x1}}, {{0x0, 0x0, &(0x7f0000000440)}}], 0x2, 0x44)
shutdown(r3, 0x1)
recvmmsg(r3, &(0x7f00000006c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1}, 0x1}], 0x1, 0x0, 0x0)

1.870240226s ago: executing program 2 (id=1411):
socket$igmp(0x2, 0x3, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
io_setup(0x206, &(0x7f0000000200))
unshare(0x28000600)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18)
r0 = socket(0x10, 0x3, 0x0)
connect$netlink(r0, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001500)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
socket$kcm(0x21, 0x2, 0x2)
mknodat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x1000, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
acct(&(0x7f00000001c0)='./file0\x00')

1.781593026s ago: executing program 0 (id=1416):
socket$inet6(0xa, 0x6, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000))
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
pipe(&(0x7f0000000100))
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x403, 0xfffffffc, 0x3f, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0)

1.780834445s ago: executing program 2 (id=1417):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = epoll_create1(0x0)
r1 = epoll_create1(0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
select(0x40, &(0x7f0000000340)={0x1f, 0x0, 0x0, 0x0, 0x0, 0x2e787ec3}, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000015c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0x2}, 0x18)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000004740)='\x00', 0x0, 0x0, 0x1000)
ppoll(&(0x7f0000000500)=[{r2}], 0x1, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000400)={0xa})

1.672395665s ago: executing program 0 (id=1419):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100"/20, @ANYRES32=0x0, @ANYBLOB="0000579b0004000048000a00", @ANYRES32, @ANYBLOB="1400350064756d6d793000"/20], 0x3c}}, 0x0)

1.671591655s ago: executing program 0 (id=1421):
io_setup(0xd91b, 0x0)
prctl$PR_SET_NAME(0xf, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0)
r1 = syz_io_uring_setup(0x7b7a, &(0x7f0000000300)={0x0, 0xe484, 0x10000, 0x1, 0x2da}, 0x0, &(0x7f00000003c0))
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0x7ffffffffffffffd}, 0x18)
socket$tipc(0x1e, 0x2, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000680)={0x34, 0x0, 0x8, 0x401, 0x0, 0x0, {0x7, 0x0, 0x8}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6002}, @CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @icmp}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x34}}, 0x4000000)

1.650433075s ago: executing program 0 (id=1422):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
listen(r0, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/13, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000201000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='signal_generate\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r2, 0x0, 0x0, 0x1000f4)
prctl$PR_SET_NAME(0xf, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)

1.372308984s ago: executing program 5 (id=1426):
r0 = socket$inet6(0xa, 0x80002, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x200c8004, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r2}, 0x18)
setsockopt$inet6_int(r0, 0x29, 0x19, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000280)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
listen(r3, 0x2)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r5, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10)
close_range(r3, 0xffffffffffffffff, 0x0)

957.260193ms ago: executing program 3 (id=1429):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000940)=@newqdisc={0x78, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0xffe0}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x4c, 0x2, [@TCA_TBF_RATE64={0xc, 0x4, 0x4e1e2563543d84f9}, @TCA_TBF_PBURST={0x8, 0x7, 0x1fc0}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x0, 0x0, 0xffff}, {0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x81}}, @TCA_TBF_PRATE64={0xc, 0x5, 0xcb59372f370e8465}]}}]}, 0x78}}, 0x4000080)
bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @remote}, 0x14)
sendto$inet6(r1, &(0x7f0000000800)="4103082c1116480401020200c52cf7c25975e005b02f000006892f000300897c6b118777faffffff3066090cb600c5471d130a66321a54e7df305fbe258161b6fd8f2428652265d94c6fdbaefc57376a57c2feffff188be9427c323ef024a37016d2a7f9ab6e7941a6fc4f95aa73c1dfff4941f6503b5bd8c91db22cd33795481c94085fa12cdc679ac2a5d7b5d99b93fb07acb0da680e78b74c74aae8d7690d5986a9af81622a0ac210bc7b5ca5fed11cb54d046642670041e846bb184ff5d39fe8516d2d2a8d84e6e7dfcb2b8a8023444db513a3d7a124b59f0a5cd36489dbbb75cce3145d0ea3c3aa21af7cbcbc7a7575db782e757ca543109f5ddcec4930aa91f4119ea3d1f56140cb86cfe0724b23904ef5d05c725ee23918a502b1afe09fb0757d", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0)

922.188293ms ago: executing program 3 (id=1430):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x80001, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(r3, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000020"], 0xfe44, 0x0)
modify_ldt$write(0x1, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

888.208153ms ago: executing program 2 (id=1431):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0, <r2=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000340)='%pS    \x00'}, 0x20)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x2739, 0x0, r2, 0x42, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000a00)=@newlink={0x2c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r6, 0x192}, [@IFLA_VFINFO_LIST={0xc, 0x16, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x4}]}]}]}, 0x2c}}, 0x0)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f0000000480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x7c, 0x7c, 0x3, [@func_proto={0x0, 0x5, 0x0, 0xd, 0x0, [{0x2}, {0x10, 0x5}, {0x10, 0x2}, {0xd, 0x3}, {0x1, 0x2}]}, @typedef={0x1, 0x0, 0x0, 0x8, 0x4}, @struct={0xa, 0x4, 0x0, 0x4, 0x0, 0x8, [{0x0, 0x4, 0x3}, {0xc, 0x1, 0x8}, {0x10, 0x4, 0x8}, {0x2, 0x0, 0xffffffff}]}]}, {0x0, [0x2e]}}, &(0x7f0000000540)=""/130, 0x97, 0x82, 0x0, 0x0, 0x10000, @value}, 0x28)
pipe2$watch_queue(&(0x7f00000006c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1e, 0x1b, &(0x7f0000000380)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@generic={0xed, 0x5, 0x5, 0x4, 0x9f41}, @exit, @call={0x85, 0x0, 0x0, 0x5f}, @generic={0x5, 0x3, 0x2, 0x1, 0xfffffffe}, @map_idx={0x18, 0x0, 0x5, 0x0, 0x8}, @map_idx={0x18, 0x9, 0x5, 0x0, 0xe}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000300)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', r6, @fallback=0x36, r7, 0x8, &(0x7f0000000640)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000680)={0x2, 0xe, 0x6, 0x9}, 0x10, 0xffffffffffffffff, r1, 0x4, &(0x7f0000000700)=[r8], &(0x7f0000000740)=[{0x4, 0x2, 0x8, 0xc}, {0x4, 0x1, 0xe, 0xc}, {0x2, 0x4, 0x0, 0x7}, {0x2, 0x3, 0x5, 0x2}], 0x10, 0x1, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x9dd9000)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000, 0x3, &(0x7f00003c6000/0x3000)=nil)

887.607313ms ago: executing program 3 (id=1432):
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000001c0)={0x0, @multicast2, @private}, &(0x7f0000000200)=0xc)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x9}, 0x20, 0x2, 0x0, 0x6, 0x40, 0x0, 0x8}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x8)
process_vm_writev(0x0, &(0x7f0000000000), 0x0, &(0x7f00000001c0), 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x4c, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x54, 0x9, 0x6, 0x801, 0x0, 0x0, {0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_PROTO={0x5, 0x7, 0xff}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

788.442763ms ago: executing program 3 (id=1434):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000003b810100850000006d000000850000005000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$unlink(0x9, r1, r1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_DISABLE_BEARER(r4, &(0x7f0000000000)={0x0, 0x31, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r5, 0x1, 0x70bd28, 0x25dfdbfc, {{}, {}, {0x9, 0x13, @l2={'ib', 0x3a, 'team0\x00'}}}}, 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x200c48a4)

774.731822ms ago: executing program 3 (id=1435):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{}, 0x0, 0x0}, 0x20)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10000000}, 0x0, 0xc8, 0xffff, 0x7, 0xf9, 0x0, 0x2, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close(r1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd78, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r4}, 0x10)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb790700117df37538e486dd6317ce22000000000000000000000000000000007f"], 0xfdef)

769.358033ms ago: executing program 0 (id=1436):
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r1}, 0x10)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8922, &(0x7f0000000080))

724.466532ms ago: executing program 3 (id=1437):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, 0x0, 0x200888d9)
io_uring_setup(0x320c, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1})
socket$packet(0x11, 0x2, 0x300)
r3 = socket$inet6_dccp(0xa, 0x6, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x2, @remote, 0x6}, 0x1c)

679.884352ms ago: executing program 0 (id=1438):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@map=0x1, r4, 0x2f, 0x0, 0x4, @void, @value}, 0x10)

623.946812ms ago: executing program 2 (id=1439):
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000d40)=ANY=[@ANYBLOB="0212000005020000fcffffff0000000001020900008000006bdae99676f5d98b222c1d175b1bde5f2af814867595cca148f284845d6726daecb906b52bcbe4a0671f0cfe91064a71252070eab7b079faae2437c1c6375c071120ac3c3dfb0e5500269ca1cd7c4713a0369feb90311ab8556d5bac400f5ffbe90545162b4d370163c56d991d223d5da19c52bdbff65404e119035c710bccfff638d731934ecdd791b655adfc821d0887903e07df64c986fa6fb88f4a7d0b3f81044ac984488238d0f3c48cf099ab574e73f1a68d600ab06ec38d634b447f1d4aad0dd4f056494500bab1d7792480ea186568121117e75c05a8bde6476b7304bb2b64f14f54921845a91f868fa925cf0a818b9bba4ea375d10464e94cba1fefd1cf5efc16c2e5c1cf9adb172617d21d333c27c4554adf58cd7508fe0eed1a11186e77fce9e4518b7280db2fc8acac72e4934e0ae31d2132afdb95c105813b90284c0f3bd48d2bae45cd2d03aeb092f6ad45692fc26c26909b57d12e3bf2024de3edce03c2dd8cf1081fbc181cb24fb432907ee893125e386edee1e48b5fb72dc536fd879fc356b5bff8ae29afeda341fbb0fbba2d1a133f05b1cac0479743ca5c562d8a9d0ddb7bee5282f97fea614ca3aab3c10d6d6a81f495737f3787737ade4f9af413bc0298d7364c46dbcacedb88aba3b4add5e20c7927ca485152618468c3d23edc4d9cd368d4791e555fd2b8ec465a838f331950b862e23a9d8291dc879d7ea58209a3372319c8a5f2db16e3ebd1e349eb699a79faa391f8cee02ba5e9d1bc0f71b4e912681dfe4716c490dbf06199553c3bac487a1f2964d2f5fd7f064807dd11c3ca2f12c7a3ec79362c247f63d20d3ca52f0474b47c40a394ddfed196dce0259bf849bcb86f2d4919522d46f87443998f7ed5e40da41a80428d3b6e3845a9b377b3c6577add73ead5d1dc4d3620b53818be04d9f7ba74600cf5b462a7ed38b53b701465a152983c8fabe301fc42bebcb7c631e94afec308dee54b51e9c1df0f446fcd47612e90a275e51516310c59eb67c1e3b2da93bd52a7c9c4135fdc36027aad74c3cfd5c6ca6f5ae914a7cab1a3a5d397422163c49c609f53bd370fdecb126cea447defd3d448dadf5079430c058cba11fbb17c14ea71f96091f9a5d3a034ae9b34ac7a0b1d4eca440a51e4cd265911eeba260345b28ac84c065553e9aace53f1f29aa6b80ef7c4070192e4c12cb4389c3476b1f0a69825fdf4de60e9d02266fe9f50cba35775b2103bf85b312b04f3c6bec4b67e1b642a6b9bbef45d28ea1af055bf3c6cc62cb571cfbc4229c7d5aa62a2ed3ce2f42666fa295c71f44263c703d207fb6925f303a3facbd7afa4dccb0b6c37cf8e8a3fdc8ed1cfff049b48a94e50a5631a75589317dbcfd154f16e7dddac2945baf059a2aa4b14b9ac1d411c81dc600343abf5e9c4750e190a5116bab2258d8f1d5e0d3ab740423267be7e21c2eac41ae2aefead42fd71f91c4c3694617fb7fc265a48c3b82eea6e57c90824914847f857deb94c810b34ad53a9824127c2fef4cc5d7fd23307dd90c01bc32c79c2344459a58442b59260d8e21dc41f0b54d5d5433b9fd44ba4803766cacfec5bb5fd1ca3ccbc7c11cfd7274b526b9b61a231499a83831b9be1f708cde614165ce3bd0ccd42ab401bcd35143199d43395107e240e61c3abbcbad69a53ec9205bc2946dab619214ae55dfc6aad9a72683cb84f489efd02f1d439d6abfc4a9d2588c4db6419a7dd6c2387461298941a1d8d5bf4c0e35d0294014f217985cca434d557899c3090c236efe06bc9f2c5dc46f67896d56450a0aa4b6b6247ce45c12a1f547825cbac09f13bb48200ee1f85b00a0ce88723c19449fe2bbe500861bb03dbc2ae489e9b3f5ddaea3b4459be8aebd66cdc054affa87d60e0e86bb0ce56f604f697c5be3cb868e6dad28e3366ef5b6e9a26f8e1ba44d700eda13fa3f589ae638843a8a98c157f25c5e88c3df285e1e70d32110614c51d0e0a74abc7800006cf0d1d3d66e84ec726edc5c52f26f702d182e702be580bf74670201ebeffecc62630b637320626cbac4e9e98c608252e3932da36804e3e1e3ec3bee53bcf0071088c84f2a014b0122dcd9507d6003e63e34d7b59807dd24907e17ba43b83af0b734d9861870f137464be924a415a7607d7c2936c9156f6bc604c51600c558cdf18fe73fffa575443a4174311ecab11cd96572306b00a8998c20bb3879c37c9d400b06f03fd7b54ab24cefc134176df98af05086839f83eeaa9efa3e7629bdb0bc8377020b040e86cf36ff9f2bcc788091c9285b423cc7670a8290c394db287b24533b508a7df6786d571e6be8cd989ea2d1b846a03f24fcdae10333f55461716292e0589efbf61462943b8c8544ac128c8ce01e99ae5ba81cf037e86e1f35271c405c640a8429bc189a749033b831ef71bfb05fa72d2da716f2d86046296f481e4364f7e033dcb4fed15eb0937a66b62143ad51e76242f4cf425d662eeeb179a46a059489c2bbdee163cf5ac3d0fb6441bf171a7c34bbbcf2e3a59e637d35f32301d9d4a85b2a1db1a5cb6fffa7ebec998674711fdfd49297d7ac33f5c89d0999172bc3dad8e76ac1f081e4c1bb755562ff5715361000f56fb464881dfe6abb4f039a139f8fb2e2dca14b895ad3ee1d2835e0cd47051ea34d855b7c8387ef1a85d94b851602cbdb2242a2afb59d26292be2ebbd8ca3b2866b293c1ef2048dd65addb63230643502ab8e9548dfee031ee8306344f89973dc22712ae6896ab40c61e6093c026524da15ca192b1ecd14ec10cebfea7faed1a9bae2be7edf9c53182805fa4af868751ff3758b9c4f7e877dc8e16475592c85bda5a62c1b38938ac3b7031773c06c5eb5539baeb0588e6ede91d2da317a1a823045e375bb4ac29d6dc75d228a4ade916671eccd320ee5c0298650b541d98c4d1e09ed841f1cffbf0c7551c5ae725ad0f77f612829a409becb4e60ccc3cbb80d77e8d9bac59cfcac2c8a4c857f862747473148d9089dc56ed827784a63390eeb78f791c75c4eb3a1efad0f75e062cc4948e4b1b67a373494b88ff819a695ceac580bdd7b2c63222a663432e31b8531ee74d34afa70266ffe08d6ab6439c1b442df9195bd1b729d9ebfa25f326e48f7104303120046b2f1eb45c59a415b68d9cc3f6ca68dadf64748393f4c1f4a5876173ef0c95ea73c682b05e9e05c9a8a1d65500106a980f0a0effa10b93a03715f40f851d122a15fd4b60740a711b1121c146bb59b740ccf8db57b2eee36e4c5a3c6aadaca73b9637cb21f1d87acd9b76885b8694a5d036b6e3dde6ceb589575b6414bef68ae179973b5e04012a3ad10c55f9049ccd757185583633543f556967796eeebb8348e969860fdeb9166f1a431d44a2ae6e73c75d3b891ea014ce2be631c9d1eb301c7043aa03b66218095c0375ed12090e5bc32c44e3ddfbbcbe48f8d396e489db24cd7d8779d659b48193b96374e2937d3087e911b4d1c70cef3b984a72f80ed2f17ef50aab6f5931c897367aa6dd86e8e93de921c611f112f676e34b4ee720f46434b2c70742c1af99bee1b0c72683cd840bbba4e75e3a0128d0ebf1010dea64f896ef3cfd82a73fe329ce53b63697cb7bc0c03e127fd59d3241646f62a25ceb692d9e469c649dec8b693975d718d89394345b684ea2507d295422c88892de4e69c71e2dbf6bfd160a1c20b63e6e21b73d6bb14377ce3578664196f7ab33be87d3fe5772415361f857f6128b7ecd261638f4133f6384b1e2ba1c045985636e818e622460d4ef2af43267efb71168a92d22ec6b337158d3bcff2f0913ece4258ba89b5e19f8cae9c7f87ac8d051247f3635f398404f1d9fb1ace4082dd6897024070dddd7942b566d3f7f2a4fd9ec148397ddb814057c66b738f45ccb08f2f9ed8c5c8735a9c6938b7c5260a8cb0cbfd2bb9656592b4a70f368ecdcc8fdfcd52ad0ea0b9c3152147e9e441519eb1a69bc1b216fda362376ce23729bd384e8579c37aadf759b6c23ea54bfde28652d0b37cbcea221da9125919212cbad64e4aec3075bb70cc7eca71a25cb2a77c898fd775d74d61dcfcbff9d4d20102f3b5c804ccc3bb711b88140508a8802dcb205ebff54cbd9af252f36cf44b2337c382a7562ad6fc035313bff7f7d30a45fe01a083fb744460147a3a4b34b8dcc047607f38ba6b927c93872830e8d0c84031889b29afc2ef3944c4c0a3f3060f337bf0da8c7209e79a81f09330ecbf0024dcf85f7e4ec644867f5343f259825b1f421c51d30f3da87bbcb67946f133c6a4add120054b1b8a16a12a58352d37425f68d55e8e3a0391ed03085fef286214f51ab917906b2b9fcbf6ef85e04ba368f8811f9ec5a3a112c1b498f553e6659ed41b10ad141d921cca6878c7e1960380a2d0f86226f6b7e95a9639b41be4f73c392d3e7b133cfc2009f6a02edcfeb11bd2c84b3fcf50d4cb0d49f770ae2c71c73c766d327fb0c8d79c9908e1f7292eff8657f0ff0542df3127613c31cc2387d270b9510bd0a9709d80ed781b828d3a0f92df1be687206d572066d44b9afcf6b440b7298bf30f657fd9f986debea4f23032f37d711859854a134e7ad44613643eb7104e624e0bc34dddc2dd0ecee2bd04a87b03e06864710c51d561f28718c88ddc35dcbf23f1c5f0ef8149e24949e1d50572f039da9ef0fd29934fc6c7bcc9c44771b0d8c1dd739796eedd036abd78f4f26da1bb680138f9191eac4669d84e4866974257d8438f3253198b0478d33c325f633aaf85d9e6056766d1a17fa6cc1e1d639cf59dd06c1d8c1f4d48ea9ab2c3cc08fa812821eda5f32f17e808c14002aa846ee6f18177d27e6f715462e5562f0f7afbe6f5fa6ec031536b478733270175d928a46bc23cf14ed073854afd5032a8bef43d4c5664e159ffa7e9cdef4fe17c2c5ef36c6e6ddf342d16ce207cfe09b8067f2e48c6bae69b620d8be76725200b63522d766517203c6641e7d891469bf239c7a48d14f7c690e182c4f6a1fd02f2aa1b97dbecb8e120cc0fbd374ff598c53cb505698f94429466b97acb1a0232169e0e19e9ad7e3a41ee63e3b9ddcc0d40385c3d5acbb51e1987821de029bd9dc1fabd200a2e55bf786c52ae9ffc335d8a82e9156705ebfaff0992c1f5bca9d0d020834fea9163fcb691bf06deb6f92b76e2c21b3fa1625910846f3c715cbfb7de75209aec43c1a9acd2b4f833ac3a3883ba23349aa2a439871764c54ac8842a4a10280ff498072928aa1b4ced9ab3d9d27e4b5fab13bb979788848f7a4239896fe73a176a38766ed7fa1e84e88efb12a9c75c2e4431396b192b9dc4fa92343a702538feef01ae577fa443f4b50666bb87fc62577045963e8168981e1b6063b7454345a84dfdb278a4090d155220a18fd21e90a2c84943d947f5079aaa3e04364ffeb8a804df0f6e3c1b45782fcd5a4535940f26636ee79188ccb2ba071e0c832d9e9a9a391e0992e0f6965100ad2e6608d5db25847b2aa794ea6ee9b7687a1f9357320d073d06db8c38fbdc1be781bf53d05a5deeeb9e8d8ff66876b3a88b309d27bb83f8b3390947fd97c9f9ea41b215803088ac254cdab849291ed081e4a0cfd611fb7819d50753121bdda8770ad38d84bfadd9da9d7e9ffa5b9af3b9b8c13d7f73d920173137a6d4d17f2a2d0605926a68623947ee798dffe22746288195a718ae5dbfcc03b7da8a8ff0aa40c133b56c0c3ee95dd1dfaadafbdb37dc17ec84b0a0ce29ad46d50ef4fde31b6ba31c76498091fea2ef0c785be2daf492121dbc2101fd102000a"], 0x1028}}, 0x20000050)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)

603.982182ms ago: executing program 2 (id=1440):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x6db6e559)

524.134512ms ago: executing program 5 (id=1442):
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, 0x0, 0x0, 0xe7b, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r3, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000700)="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", 0x1d6}], 0x1}}], 0x1, 0x81)
setsockopt$sock_int(r3, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmmsg$inet(r3, &(0x7f0000004100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="ba58cc1aba2fc4037d69b05e9ddc0c78abe2f7f0104c50c29ba96f81674709bcac7a3c8e45f24db37d72dff8eef8cbbd", 0x30}], 0x1}}, {{0x0, 0x0, &(0x7f0000000440)}}], 0x2, 0x44)
shutdown(r3, 0x1)
recvmmsg(r3, &(0x7f00000006c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1}, 0x1}], 0x1, 0x0, 0x0)

483.532602ms ago: executing program 1 (id=1443):
syz_open_procfs$namespace(0x0, &(0x7f0000000000))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
close(0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x19, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={0xffffffffffffffff, 0x3, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair(0x21, 0x4, 0x8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xfd85}, 0x0)
r2 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x97, 0x1, 0x0, 0x0, 0x0, 0x0, 0x204, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfffffffbffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000080)=',]-(%-\'@\\\'\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b04, &(0x7f0000000040)={'wlan1\x00', @random="0e00"})

443.437661ms ago: executing program 5 (id=1444):
bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r2}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

336.646911ms ago: executing program 1 (id=1445):
socket$igmp(0x2, 0x3, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
io_setup(0x206, &(0x7f0000000200))
unshare(0x28000600)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18)
r0 = socket(0x10, 0x3, 0x0)
connect$netlink(r0, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001500)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
socket$kcm(0x21, 0x2, 0x2)
mknodat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x1000, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
acct(&(0x7f00000001c0)='./file0\x00')

336.243891ms ago: executing program 5 (id=1446):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x2, @loopback}, 0x2, 0x0, 0x4}}, 0x2e)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000006000000140008"], 0x28}}, 0x8000)

268.368621ms ago: executing program 5 (id=1447):
socket$kcm(0x10, 0x2, 0x10)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d80)={0x7, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
fsopen(&(0x7f00000000c0)='proc\x00', 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
socket$kcm(0x10, 0x3, 0x10)
socket$kcm(0x10, 0x2, 0x4)
socket$kcm(0x11, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000050000000100000001000013020000000100000000000000000000000061"], 0x0, 0x35, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
socket$kcm(0x10, 0x2, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000b00)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYRES64=r0], 0x20)

204.270631ms ago: executing program 1 (id=1448):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000780)={0x2c, r1, 0xc13, 0x70bd28, 0x25dfdbfd, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}]}]}, 0x2c}}, 0x2004010)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f00000002c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x6, [@restrict={0xd, 0x0, 0x0, 0xb, 0x1}]}, {0x0, [0x30, 0x61, 0x61, 0x30]}}, &(0x7f0000002f40)=""/4096, 0x2a, 0x1000, 0x0, 0x5, 0x10000, @value}, 0x28)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000280)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f0000000300)=[0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], <r4=>0x0, 0x96, &(0x7f0000000380), 0x0, 0x10, &(0x7f0000000380), 0x0, 0x0, 0x100000d2, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400)=r4, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x13, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
fchdir(r6)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f00000000c0)={[{@quota}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@grpjquota}, {@errors_remount}, {@nobarrier}]}, 0x3, 0x4c1, &(0x7f0000000680)="$eJzs3d9rW9cdAPDvle3ESZzZ2faQBZaFLcMJWyQ7XhKzh8yDsT0FlmXvnmfLxli2jCUnsQnDYX9AofQX7VOf+lLocymU/AmlEGjfSyktoU3Shz60VZF81SSubMvEshLr84Hje8+9V/5+j4SOdO656AbQsU5FxFhEdEXE2YjoT7dn0hJr66V63IP7tyarJYlK5dqXSSTptvr/StLlkfRhvRHxr39E/Df5adzSyurcRKGQX0rrufL8Yq60snpudn5iJj+TXxgbGb44emn0wujQrrX18t8+e+WFt/5++f0/3vhk/Isz/6um1Zfue7wdzVhr8rj1pvfUnou67ohY2kmwZ1hX2p6edicCAEBTqt/xfx4Rv42Ih6+3OxsAAACgFSp/6Ytvk4gKAAAAsG9latfAJplsei1AX2Qy2ez6Nby/jMOZQrFU/sN0cXlhav1a2YHoyUzPFvJD6bXCA9GTVOvDtfVH9fMb6iMRcSwiXuo/VKtnJ4uFqXaf/AAAAIAOcWTD+P/r/vXxPwAAALDPDLQ7AQAAAKDljP8BAABg/9t0/J90720iAAAAQCv888qVaqnU7389dX1lea54/dxUvjSXnV+ezE4WlxazM8XiTO03++a3+3+FYnHxT7GwfDNXzpfKudLK6vh8cXmhPF67r/d43n2iAQAAYO8d+82dj5OIWPvzoVqpOpDua2KsPtba7IBWyuzs8KRVeQB7r6vdCQBt4wJf6Fzm44FtBvYvb6jv8LQBAADwLBj81VPN/5sPhOeYgTx0LvP/0LnM/0PnMv8PHe7g9of0brbjg13OBQAAaJm+Wkky2XQusC8ymWw24mjttgA9yfRsIT8UET+LiI/6ew5W68PtThoAAAAAAAAAAAAAAAAAAAAAAAAAnjOVShIVAAAAYF+LyHyepDfyH+w/3bfx/MCB5Jv+2jIibrxx7dWbE+Xy0nB1+1c/bi+/lm4/344zGAAAAMBG9XF6fRwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALvpwf1bk/Wyl3Hv/TUiBhrF747e2rL33f6IOPwwie7HHpdERNcuxF+7HRHHG8VPqmnFQJrFxviZiDjU5vhHdiE+dLI71f5nrNH7LxOnasvG77/utDyte6c26/8y9f6v1s816v+ONhnjxN13cpvGvx1xortx/1OPnzxl//uff6+ubrav8mbEYMPPn+SJWLny/GKutLJ6bnZ+YiY/k18YGRm+OHpp9MLoUG56tpBP/zaM8eKv3/t+q/Yf3iT+wDbtP91k+7+7e/P+L7aIf+Z3jV//41vErz73v08/B6r7B+vra+vrjzv59ocnt2r/1Cbt3+71P9Nk+89e/f+nTR4KAOyB0srq3EShkF+yYsXK/lu5mr7Rd/zwNndMAADArnv0pb/dmQAAAAAAAAAAAAAAAAAAAEDnavmPkB188pcFetvXVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACALf0QAAD//9sy0wA=")

106.32053ms ago: executing program 5 (id=1449):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffe}}, 0x10)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0x2d, &(0x7f0000000240)=0x9, 0x4)
bind$tipc(r0, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x1}}, 0x10)
bind$tipc(r0, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000000c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r2, &(0x7f00000001c0)=[{0x0, 0xe1, 0x0, 0x0, @time={0x0, 0x1}, {}, {}, @result}], 0x1c)
write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})
openat$random(0xffffffffffffff9c, 0x0, 0x2003, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

37.772251ms ago: executing program 1 (id=1450):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='mm_page_free\x00', r0}, 0x10)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, r1)
getsockname$packet(r1, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x24, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = inotify_init()
inotify_add_watch(r2, 0x0, 0x40000001)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000500), 0x8, 0x0)
r4 = syz_io_uring_setup(0x39, &(0x7f0000000580)={0x0, 0xe7b7, 0x13500}, &(0x7f0000000240), &(0x7f0000001880))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r4, 0x21, &(0x7f0000000440)=r3, 0x1)

18.52526ms ago: executing program 1 (id=1451):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
timerfd_create(0x3, 0x80000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
socket$inet6(0xa, 0x5, 0x0)
setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}, 0x0, 0xc8, 0x8, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7902009875f37538e486dd6317ce62667f2c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
recvmsg$unix(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000), 0xfdef)

0s ago: executing program 1 (id=1452):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x18)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3800000010000100"/19, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00C'], 0x38}}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
setsockopt$inet_int(r1, 0x0, 0x17, &(0x7f0000000180)=0x6, 0x4)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x2e, &(0x7f0000000500)={@broadcast, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x300000000000000, 0x0, 0x0)

kernel console output (not intermixed with test programs):

c0000
[   41.971875][ T4549] syz.2.454[4549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   41.981624][   T29] audit: type=1326 audit(1737242748.285:3136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4474 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9bb9aecce7 code=0x7ffc0000
[   41.993837][ T4549] syz.2.454[4549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   42.016992][ T4549] syz.2.454[4549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   42.112275][    T9] IPVS: starting estimator thread 0...
[   42.173303][ T4572] xt_hashlimit: max too large, truncated to 1048576
[   42.189450][ T4572] Cannot find set identified by id 0 to match
[   42.214598][ T4564] IPVS: using max 3216 ests per chain, 160800 per kthread
[   42.298943][ T4584] loop4: detected capacity change from 0 to 512
[   42.319455][ T4584] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   42.347877][ T4584] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.388025][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.437184][ T4594] wireguard0: entered promiscuous mode
[   42.442692][ T4594] wireguard0: entered allmulticast mode
[   42.487854][ T4605] loop4: detected capacity change from 0 to 128
[   42.494372][ T4605] EXT4-fs: Ignoring removed nobh option
[   42.497491][ T4606] loop2: detected capacity change from 0 to 164
[   42.507366][ T4606] Unable to read rock-ridge attributes
[   42.516483][ T4605] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   42.517530][ T4606] Unable to read rock-ridge attributes
[   42.529047][ T4605] ext4 filesystem being mounted at /92/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   42.551272][ T4605] bridge0: entered promiscuous mode
[   42.556619][ T4605] macvlan2: entered promiscuous mode
[   42.563373][ T4605] bridge0: port 3(macvlan2) entered blocking state
[   42.570121][ T4605] bridge0: port 3(macvlan2) entered disabled state
[   42.576886][ T4605] macvlan2: entered allmulticast mode
[   42.582271][ T4605] bridge0: entered allmulticast mode
[   42.588080][ T4605] macvlan2: left allmulticast mode
[   42.593199][ T4605] bridge0: left allmulticast mode
[   42.599229][ T4605] bridge0: left promiscuous mode
[   42.643431][ T4618] loop2: detected capacity change from 0 to 1024
[   42.657622][ T4618] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.669953][ T4618] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.670666][ T3308] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   42.704470][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.717016][ T4623] veth1_macvtap: left promiscuous mode
[   42.746056][ T4629] loop4: detected capacity change from 0 to 512
[   42.757876][ T4629] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.770700][ T4629] ext4 filesystem being mounted at /94/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.803040][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.146760][ T4646] xt_connbytes: Forcing CT accounting to be enabled
[   43.177968][ T4646] --map-set only usable from mangle table
[   43.198201][ T4633] Set syz1 is full, maxelem 65536 reached
[   43.206528][   T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   43.286584][ T4651] syzkaller0: entered allmulticast mode
[   43.303005][ T4653] loop1: detected capacity change from 0 to 1024
[   43.319043][ T4651] syzkaller0 (unregistering): left allmulticast mode
[   43.357880][ T4655] loop2: detected capacity change from 0 to 8192
[   43.366008][ T4655] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   43.376078][ T4657] loop0: detected capacity change from 0 to 2048
[   43.406898][ T4657] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.420133][ T4653] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.530425][ T4657] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   43.584985][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.607054][ T4657] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 1536 with max blocks 32 with error 28
[   43.619733][ T4657] EXT4-fs (loop0): This should not happen!! Data will be lost
[   43.619733][ T4657] 
[   43.629469][ T4657] EXT4-fs (loop0): Total free blocks count 0
[   43.635471][ T4657] EXT4-fs (loop0): Free/Dirty block details
[   43.641402][ T4657] EXT4-fs (loop0): free_blocks=2415919104
[   43.647244][ T4657] EXT4-fs (loop0): dirty_blocks=32
[   43.652437][ T4657] EXT4-fs (loop0): Block reservation details
[   43.658448][ T4657] EXT4-fs (loop0): i_reserved_data_blocks=2
[   43.686142][ T4670] xt_hashlimit: max too large, truncated to 1048576
[   43.687033][ T4673] loop1: detected capacity change from 0 to 512
[   43.737556][ T4673] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.760031][ T4673] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.814100][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.858841][ T4684] loop4: detected capacity change from 0 to 512
[   43.872649][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.895164][ T4684] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.924635][ T4684] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.936383][ T4698] netlink: 24 bytes leftover after parsing attributes in process `syz.3.510'.
[   43.971887][ T4684] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.507: Failed to acquire dquot type 0
[   44.045951][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.088071][ T4708] loop2: detected capacity change from 0 to 512
[   44.149344][ T4708] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.172721][ T4708] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.255553][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.324044][ T4732] hsr_slave_0: left promiscuous mode
[   44.333169][ T4732] hsr_slave_1: left promiscuous mode
[   44.379583][ T4737] pim6reg1: entered promiscuous mode
[   44.385067][ T4737] pim6reg1: entered allmulticast mode
[   44.409844][ T4740] netlink: 'syz.3.526': attribute type 10 has an invalid length.
[   44.435554][ T4740] team0: Device hsr_slave_0 failed to register rx_handler
[   44.515709][ T4745] loop1: detected capacity change from 0 to 512
[   44.540528][ T4745] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.556843][ T4745] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.573507][ T4761] netlink: zone id is out of range
[   44.578991][ T4761] netlink: zone id is out of range
[   44.587339][ T4745] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.528: Failed to acquire dquot type 0
[   44.608032][ T4761] netlink: set zone limit has 4 unknown bytes
[   44.637336][ T4763] netem: incorrect gi model size
[   44.642302][ T4763] netem: change failed
[   44.650718][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.685406][ T4770] netlink: 'syz.4.540': attribute type 7 has an invalid length.
[   44.693128][ T4770] netlink: 'syz.4.540': attribute type 5 has an invalid length.
[   44.700825][ T4770] netlink: 17 bytes leftover after parsing attributes in process `syz.4.540'.
[   44.729980][ T4776] netlink: 'syz.4.542': attribute type 4 has an invalid length.
[   44.756534][ T4778] loop4: detected capacity change from 0 to 128
[   44.771926][ T4778] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   44.785820][ T4783] netlink: 28 bytes leftover after parsing attributes in process `syz.1.544'.
[   44.787937][ T4778] ext4 filesystem being mounted at /109/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   44.794734][ T4783] netlink: 28 bytes leftover after parsing attributes in process `syz.1.544'.
[   44.939135][ T3308] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   44.957090][ T4790] loop1: detected capacity change from 0 to 1024
[   44.984384][ T4790] EXT4-fs: Ignoring removed bh option
[   44.989881][ T4790] EXT4-fs: Ignoring removed mblk_io_submit option
[   44.990701][ T4798] syz.4.549[4798] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   44.999296][ T4798] syz.4.549[4798] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   45.011156][ T4798] syz.4.549[4798] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   45.037723][ T4798] syz.4.549[4798] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   45.056131][ T4790] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.103752][ T4803] bond1: entered promiscuous mode
[   45.108925][ T4803] bond1: entered allmulticast mode
[   45.118295][ T4803] 8021q: adding VLAN 0 to HW filter on device bond1
[   45.139576][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.231217][ T4820] bridge0: entered promiscuous mode
[   45.236663][ T4820] macvlan2: entered promiscuous mode
[   45.243217][ T4820] bridge0: port 3(macvlan2) entered blocking state
[   45.249789][ T4820] bridge0: port 3(macvlan2) entered disabled state
[   45.256638][ T4820] macvlan2: entered allmulticast mode
[   45.262079][ T4820] bridge0: entered allmulticast mode
[   45.274081][ T4820] macvlan2: left allmulticast mode
[   45.279287][ T4820] bridge0: left allmulticast mode
[   45.285669][ T4820] bridge0: left promiscuous mode
[   45.379901][ T4827] syz.3.561 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   45.434281][ T4836] xt_connbytes: Forcing CT accounting to be enabled
[   46.055346][ T4834] syz.2.564 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[   46.069484][ T4834] CPU: 1 UID: 0 PID: 4834 Comm: syz.2.564 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   46.080152][ T4834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   46.090310][ T4834] Call Trace:
[   46.094679][ T4834]  <TASK>
[   46.097608][ T4834]  dump_stack_lvl+0xf2/0x150
[   46.102272][ T4834]  dump_stack+0x15/0x1a
[   46.106609][ T4834]  dump_header+0x83/0x2d0
[   46.111017][ T4834]  oom_kill_process+0x341/0x4c0
[   46.115972][ T4834]  out_of_memory+0x9af/0xbe0
[   46.120680][ T4834]  ? css_next_descendant_pre+0x11c/0x140
[   46.126345][ T4834]  mem_cgroup_out_of_memory+0x13e/0x190
[   46.131972][ T4834]  try_charge_memcg+0x508/0x7f0
[   46.136897][ T4834]  obj_cgroup_charge_pages+0xbd/0x1a0
[   46.142674][ T4834]  __memcg_kmem_charge_page+0x9d/0x170
[   46.148218][ T4834]  __alloc_pages_noprof+0x1bc/0x340
[   46.153449][ T4834]  alloc_pages_mpol_noprof+0xb8/0x260
[   46.158997][ T4834]  alloc_pages_noprof+0xe1/0x100
[   46.163997][ T4834]  __vmalloc_node_range_noprof+0x6eb/0xe80
[   46.169833][ T4834]  __kvmalloc_node_noprof+0x121/0x170
[   46.175372][ T4834]  ? ip_set_alloc+0x1f/0x30
[   46.179887][ T4834]  ip_set_alloc+0x1f/0x30
[   46.184219][ T4834]  hash_netiface_create+0x273/0x730
[   46.189497][ T4834]  ? __nla_parse+0x40/0x60
[   46.193904][ T4834]  ? __pfx_hash_netiface_create+0x10/0x10
[   46.199623][ T4834]  ip_set_create+0x359/0x8a0
[   46.204225][ T4834]  ? strnstr+0xe1/0x100
[   46.208380][ T4834]  ? __nla_parse+0x40/0x60
[   46.212867][ T4834]  nfnetlink_rcv_msg+0x4a9/0x570
[   46.217804][ T4834]  netlink_rcv_skb+0x12c/0x230
[   46.222563][ T4834]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   46.228114][ T4834]  nfnetlink_rcv+0x16c/0x15d0
[   46.232800][ T4834]  ? kmem_cache_free+0xdc/0x2d0
[   46.237671][ T4834]  ? nlmon_xmit+0x51/0x60
[   46.242071][ T4834]  ? __kfree_skb+0x102/0x150
[   46.246653][ T4834]  ? consume_skb+0x49/0x160
[   46.251169][ T4834]  ? nlmon_xmit+0x51/0x60
[   46.255509][ T4834]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   46.260795][ T4834]  ? __dev_queue_xmit+0xb6e/0x2090
[   46.265906][ T4834]  ? ref_tracker_free+0x3a5/0x410
[   46.271047][ T4834]  ? __dev_queue_xmit+0x186/0x2090
[   46.276224][ T4834]  ? __netlink_deliver_tap+0x4c6/0x4f0
[   46.281753][ T4834]  netlink_unicast+0x599/0x670
[   46.286524][ T4834]  netlink_sendmsg+0x5cc/0x6e0
[   46.291283][ T4834]  ? __pfx_netlink_sendmsg+0x10/0x10
[   46.296625][ T4834]  __sock_sendmsg+0x140/0x180
[   46.301298][ T4834]  ____sys_sendmsg+0x312/0x410
[   46.306107][ T4834]  __sys_sendmsg+0x19d/0x230
[   46.310742][ T4834]  __x64_sys_sendmsg+0x46/0x50
[   46.315870][ T4834]  x64_sys_call+0x2734/0x2dc0
[   46.320669][ T4834]  do_syscall_64+0xc9/0x1c0
[   46.325315][ T4834]  ? clear_bhb_loop+0x55/0xb0
[   46.330109][ T4834]  ? clear_bhb_loop+0x55/0xb0
[   46.334846][ T4834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.340750][ T4834] RIP: 0033:0x7f7807105d29
[   46.345159][ T4834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.364830][ T4834] RSP: 002b:00007f7805777038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.373239][ T4834] RAX: ffffffffffffffda RBX: 00007f78072f5fa0 RCX: 00007f7807105d29
[   46.381212][ T4834] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[   46.389273][ T4834] RBP: 00007f7807181b08 R08: 0000000000000000 R09: 0000000000000000
[   46.397242][ T4834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   46.405287][ T4834] R13: 0000000000000000 R14: 00007f78072f5fa0 R15: 00007ffd6e4a6148
[   46.413475][ T4834]  </TASK>
[   46.416601][ T4834] memory: usage 307200kB, limit 307200kB, failcnt 555
[   46.423445][ T4834] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[   46.431373][ T4834] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[   46.438761][ T4834] Memory cgroup stats for /syz2:
[   46.439340][ T4834] cache 0
[   46.447348][ T4834] rss 0
[   46.450653][ T4834] shmem 0
[   46.453795][ T4834] mapped_file 0
[   46.457364][ T4834] dirty 0
[   46.460340][ T4834] writeback 0
[   46.463626][ T4834] workingset_refault_anon 174
[   46.468471][ T4834] workingset_refault_file 320
[   46.473466][ T4834] swap 212992
[   46.476801][ T4834] swapcached 12288
[   46.480531][ T4834] pgpgin 19016
[   46.484029][ T4834] pgpgout 19012
[   46.487597][ T4834] pgfault 23207
[   46.491085][ T4834] pgmajfault 101
[   46.494630][ T4834] inactive_anon 0
[   46.498248][ T4834] active_anon 12288
[   46.502041][ T4834] inactive_file 0
[   46.505687][ T4834] active_file 4096
[   46.509399][ T4834] unevictable 0
[   46.512937][ T4834] hierarchical_memory_limit 314572800
[   46.518357][ T4834] hierarchical_memsw_limit 9223372036854771712
[   46.524568][ T4834] total_cache 0
[   46.528031][ T4834] total_rss 0
[   46.531314][ T4834] total_shmem 0
[   46.534788][ T4834] total_mapped_file 0
[   46.538810][ T4834] total_dirty 0
[   46.542338][ T4834] total_writeback 0
[   46.546180][ T4834] total_workingset_refault_anon 174
[   46.551445][ T4834] total_workingset_refault_file 320
[   46.556725][ T4834] total_swap 212992
[   46.560548][ T4834] total_swapcached 12288
[   46.564893][ T4834] total_pgpgin 19016
[   46.568870][ T4834] total_pgpgout 19012
[   46.572831][ T4834] total_pgfault 23207
[   46.576917][ T4834] total_pgmajfault 101
[   46.580974][ T4834] total_inactive_anon 0
[   46.585299][ T4834] total_active_anon 12288
[   46.589626][ T4834] total_inactive_file 0
[   46.593768][ T4834] total_active_file 4096
[   46.598024][ T4834] total_unevictable 0
[   46.601990][ T4834] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.564,pid=4833,uid=0
[   46.616538][ T4834] Memory cgroup out of memory: Killed process 4833 (syz.2.564) total-vm:93648kB, anon-rss:792kB, file-rss:22344kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   46.689308][ T4858] wireguard0: entered promiscuous mode
[   46.737632][   T29] kauditd_printk_skb: 400 callbacks suppressed
[   46.737647][   T29] audit: type=1326 audit(1737242753.195:3533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.767232][   T29] audit: type=1326 audit(1737242753.195:3534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.794721][   T29] audit: type=1326 audit(1737242753.195:3535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.818655][   T29] audit: type=1326 audit(1737242753.195:3536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.842120][   T29] audit: type=1326 audit(1737242753.195:3537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.865521][   T29] audit: type=1326 audit(1737242753.195:3538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.888845][   T29] audit: type=1326 audit(1737242753.195:3539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.912409][   T29] audit: type=1326 audit(1737242753.195:3540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.935744][   T29] audit: type=1326 audit(1737242753.195:3541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.959064][   T29] audit: type=1326 audit(1737242753.195:3542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4863 comm="syz.1.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f0495cb5d29 code=0x7ffc0000
[   46.991582][ T4836] --map-set only usable from mangle table
[   47.036474][ T4834] syz.2.564 (4834) used greatest stack depth: 6360 bytes left
[   47.036643][ T4878] netem: incorrect gi model size
[   47.049525][ T4878] netem: change failed
[   47.168749][ T4888] loop0: detected capacity change from 0 to 2048
[   47.175794][ T4888] EXT4-fs: Ignoring removed oldalloc option
[   47.217557][ T4888] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.274169][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.514067][ T4928] loop2: detected capacity change from 0 to 512
[   47.527515][ T4928] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #12: comm syz.2.601: corrupted in-inode xattr: invalid ea_ino
[   47.541734][ T4928] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.601: couldn't read orphan inode 12 (err -117)
[   47.579335][ T4928] EXT4-fs (loop2): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.618157][ T4928] EXT4-fs error (device loop2): ext4_add_entry:2444: inode #2: comm syz.2.601: Directory hole found for htree leaf block 0
[   47.797841][ T4942] xt_CT: No such helper "pptp"
[   47.842606][ T3295] EXT4-fs (loop2): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[   47.915262][ T4952] __nla_validate_parse: 1 callbacks suppressed
[   47.915276][ T4952] netlink: 4 bytes leftover after parsing attributes in process `syz.3.611'.
[   47.934257][ T4952] bridge_slave_1: left allmulticast mode
[   47.940036][ T4952] bridge_slave_1: left promiscuous mode
[   47.945956][ T4952] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.957630][ T4952] bridge_slave_0: left allmulticast mode
[   47.963302][ T4952] bridge_slave_0: left promiscuous mode
[   47.968998][ T4952] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.017409][ T4967] bpf_get_probe_write_proto: 11 callbacks suppressed
[   48.017425][ T4967] syz.4.617[4967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.024789][ T4967] syz.4.617[4967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.036399][ T4967] syz.4.617[4967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.170033][ T4984] bridge0: port 3(vlan2) entered blocking state
[   48.187609][ T4984] bridge0: port 3(vlan2) entered disabled state
[   48.195124][ T4984] vlan2: entered allmulticast mode
[   48.200876][ T4984] vlan2: left allmulticast mode
[   48.361212][ T5004] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   48.417874][ T5016] loop0: detected capacity change from 0 to 512
[   48.424690][ T5018] syz.4.638[5018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.424810][ T5018] syz.4.638[5018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.425938][ T5016] ext4: Unknown parameter 'appraise_type'
[   48.436140][ T5018] syz.4.638[5018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.454356][ T5016] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   48.476227][ T5016] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   48.644237][ T5039] loop4: detected capacity change from 0 to 128
[   49.553412][ T3308] FAT-fs (loop4): error, invalid access to FAT (entry 0xffff0000)
[   49.561366][ T3308] FAT-fs (loop4): Filesystem has been set read-only
[   49.568847][ T3308] FAT-fs (loop4): error, corrupted directory (invalid entries)
[   49.576800][ T3308] FAT-fs (loop4): error, corrupted directory (invalid entries)
[   49.751415][ T5063] netlink: 'syz.0.658': attribute type 4 has an invalid length.
[   49.774101][ T5066] loop1: detected capacity change from 0 to 4096
[   49.785625][ T5066] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.812657][ T5063] netlink: 'syz.0.658': attribute type 4 has an invalid length.
[   49.846758][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.006828][ T5083] Falling back ldisc for ttyS3.
[   50.083613][ T5071] chnl_net:caif_netlink_parms(): no params data found
[   50.146985][ T5071] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.149703][ T5092] loop2: detected capacity change from 0 to 1024
[   50.154055][ T5071] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.166120][ T5092] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.168135][ T5071] bridge_slave_0: entered allmulticast mode
[   50.186280][ T5071] bridge_slave_0: entered promiscuous mode
[   50.193176][ T5071] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.200377][ T5071] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.207808][ T5071] bridge_slave_1: entered allmulticast mode
[   50.208591][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.214320][ T5071] bridge_slave_1: entered promiscuous mode
[   50.241858][ T5097] netlink: 32 bytes leftover after parsing attributes in process `syz.1.667'.
[   50.252226][ T5071] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   50.265252][ T5071] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   50.285855][ T5071] team0: Port device team_slave_0 added
[   50.292260][ T5071] team0: Port device team_slave_1 added
[   50.298232][ T5102] syzkaller0: entered promiscuous mode
[   50.303803][ T5102] syzkaller0: entered allmulticast mode
[   50.321327][ T5071] batman_adv: batadv0: Adding interface: batadv_slave_0
[   50.328339][ T5071] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.354259][ T5071] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   50.365551][ T5071] batman_adv: batadv0: Adding interface: batadv_slave_1
[   50.372509][ T5071] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.398609][ T5071] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   50.435258][ T5071] hsr_slave_0: entered promiscuous mode
[   50.442476][ T5071] hsr_slave_1: entered promiscuous mode
[   50.513402][ T5118] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5118 comm=syz.3.675
[   50.544741][ T5123] atomic_op ffff888121349128 conn xmit_atomic 0000000000000000
[   50.594103][ T5127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.680'.
[   50.617453][ T5071] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   50.634697][ T5071] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   50.646506][ T5127] bridge_slave_1: left allmulticast mode
[   50.652275][ T5127] bridge_slave_1: left promiscuous mode
[   50.658096][ T5127] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.674389][ T5127] bridge_slave_0: left allmulticast mode
[   50.680201][ T5127] bridge_slave_0: left promiscuous mode
[   50.685872][ T5127] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.752737][ T5071] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   50.762956][ T5071] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   50.788272][ T5071] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.795376][ T5071] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.802719][ T5071] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.809833][ T5071] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.898119][ T5140] loop2: detected capacity change from 0 to 8192
[   50.901963][ T5071] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.924293][ T5140] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   50.928086][ T5146] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5146 comm=syz.1.687
[   50.949632][   T50] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.965971][   T50] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.001086][ T5071] 8021q: adding VLAN 0 to HW filter on device team0
[   51.018969][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.026063][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.035053][ T5152] bridge0: entered allmulticast mode
[   51.046449][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.053554][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.100992][ T5156] netlink: 28 bytes leftover after parsing attributes in process `syz.2.690'.
[   51.203734][ T5071] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.308076][ T5169] loop2: detected capacity change from 0 to 2048
[   51.338939][ T5169] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.382444][ T5169] ext4 filesystem being mounted at /126/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.418798][ T5178] netlink: 8 bytes leftover after parsing attributes in process `syz.1.694'.
[   51.436684][ T5169] syz.2.693[5169] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   51.436833][ T5169] syz.2.693[5169] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   51.455705][ T5178] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   51.486334][ T5169] syz.2.693[5169] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   51.513905][ T5071] veth0_vlan: entered promiscuous mode
[   51.553540][ T5071] veth1_vlan: entered promiscuous mode
[   51.572514][ T5071] veth0_macvtap: entered promiscuous mode
[   51.586384][ T5071] veth1_macvtap: entered promiscuous mode
[   51.597140][ T5071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   51.607688][ T5071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.617523][ T5071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   51.628009][ T5071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.637845][ T5071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   51.648396][ T5071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.665242][ T5071] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.673689][ T5071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   51.684241][ T5071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.694118][ T5071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   51.704619][ T5071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.714580][ T5071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   51.725092][ T5071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.735035][ T5071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   51.745462][ T5071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   51.755951][ T5071] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.774957][ T5071] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.783775][ T5071] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.785498][ T5184] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.693: bg 0: block 345: padding at end of block bitmap is not set
[   51.792720][ T5071] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.811944][ T5184] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[   51.815473][ T5071] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.827907][ T5184] EXT4-fs (loop2): This should not happen!! Data will be lost
[   51.827907][ T5184] 
[   51.915035][   T29] kauditd_printk_skb: 572 callbacks suppressed
[   51.915058][   T29] audit: type=1400 audit(1737242758.345:4115): avc:  denied  { mount } for  pid=5071 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   51.943536][   T29] audit: type=1400 audit(1737242758.355:4116): avc:  denied  { mounton } for  pid=5071 comm="syz-executor" path="/root/syzkaller.rpzlvJ/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   51.970504][   T29] audit: type=1400 audit(1737242758.355:4117): avc:  denied  { mount } for  pid=5071 comm="syz-executor" name="/" dev="gadgetfs" ino=3791 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   52.016525][ T5196] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   52.024878][ T5196] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   52.040063][   T50] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[   52.052837][   T50] EXT4-fs (loop2): This should not happen!! Data will be lost
[   52.052837][   T50] 
[   52.081888][   T50] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[   52.094773][   T50] EXT4-fs (loop2): This should not happen!! Data will be lost
[   52.094773][   T50] 
[   52.104463][   T50] EXT4-fs (loop2): Total free blocks count 0
[   52.110472][   T50] EXT4-fs (loop2): Free/Dirty block details
[   52.116406][   T50] EXT4-fs (loop2): free_blocks=0
[   52.190625][   T29] audit: type=1400 audit(1737242758.645:4118): avc:  denied  { execute } for  pid=5202 comm="syz.2.700" path="/127/memory.events" dev="tmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   52.240029][ T5210] syz.1.701[5210] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   52.317569][   T29] audit: type=1400 audit(1737242758.775:4119): avc:  denied  { execute_no_trans } for  pid=5214 comm="syz.2.706" path="/128/file1" dev="tmpfs" ino=702 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   52.338163][ T5219] netlink: 8 bytes leftover after parsing attributes in process `syz.5.708'.
[   52.379312][   T29] audit: type=1326 audit(1737242758.835:4120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5221 comm="syz.0.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb9af5d29 code=0x7ffc0000
[   52.402703][   T29] audit: type=1326 audit(1737242758.835:4121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5221 comm="syz.0.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb9af5d29 code=0x7ffc0000
[   52.433790][   T29] audit: type=1326 audit(1737242758.835:4122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5221 comm="syz.0.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f9bb9af5d29 code=0x7ffc0000
[   52.457283][   T29] audit: type=1326 audit(1737242758.835:4123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5221 comm="syz.0.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb9af5d29 code=0x7ffc0000
[   52.480726][   T29] audit: type=1326 audit(1737242758.835:4124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5221 comm="syz.0.709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb9af5d29 code=0x7ffc0000
[   52.563530][ T5229] loop7: detected capacity change from 0 to 16384
[   52.638849][ T5229] I/O error, dev loop7, sector 8192 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[   52.650737][ T5229] I/O error, dev loop7, sector 8448 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[   52.663053][ T5229] I/O error, dev loop7, sector 8192 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   52.672582][ T5229] Buffer I/O error on dev loop7, logical block 1024, async page read
[   52.752400][ T5228] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   52.762138][ T5228] Buffer I/O error on dev loop7, logical block 0, lost async page write
[   52.770663][ T5228] Buffer I/O error on dev loop7, logical block 1, lost async page write
[   52.779106][ T5228] Buffer I/O error on dev loop7, logical block 2, lost async page write
[   52.787637][ T5228] Buffer I/O error on dev loop7, logical block 3, lost async page write
[   52.796067][ T5228] Buffer I/O error on dev loop7, logical block 4, lost async page write
[   52.804617][ T5228] Buffer I/O error on dev loop7, logical block 5, lost async page write
[   52.813157][ T5228] Buffer I/O error on dev loop7, logical block 6, lost async page write
[   52.821530][ T5228] Buffer I/O error on dev loop7, logical block 7, lost async page write
[   52.829972][ T5228] Buffer I/O error on dev loop7, logical block 8, lost async page write
[   52.850838][ T5228] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   52.864256][ T5228] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   52.880070][ T5228] I/O error, dev loop7, sector 3072 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   52.893393][ T5228] I/O error, dev loop7, sector 4096 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   52.906485][ T5228] I/O error, dev loop7, sector 5120 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   52.919619][ T5228] I/O error, dev loop7, sector 6144 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[   53.044182][ T5243] loop5: detected capacity change from 0 to 512
[   53.057637][ T5243] EXT4-fs: Ignoring removed orlov option
[   53.069615][ T5243] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities
[   53.193012][ T5245] tipc: Started in network mode
[   53.198129][ T5245] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   53.206084][ T5245] tipc: Enabled bearer <eth:team0>, priority 0
[   53.354174][ T5271] netlink: 112 bytes leftover after parsing attributes in process `syz.1.730'.
[   53.387958][ T5278] tmpfs: Bad value for 'mpol'
[   53.393275][ T5278] netlink: 'syz.1.733': attribute type 13 has an invalid length.
[   53.498394][ T5280] capability: warning: `syz.3.734' uses deprecated v2 capabilities in a way that may be insecure
[   53.530098][ T5278] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   53.547839][ T5278] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   53.619218][ T5278] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   53.628277][ T5278] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   53.637490][ T5278] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   53.647671][ T5278] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   53.665428][ T5278] netdevsim netdevsim1 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[   53.674679][ T5278] netdevsim netdevsim1 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[   53.683670][ T5278] netdevsim netdevsim1 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[   53.692709][ T5278] netdevsim netdevsim1 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[   53.799902][ T5291] syzkaller1: entered promiscuous mode
[   53.805464][ T5291] syzkaller1: entered allmulticast mode
[   54.091786][ T5314] bpf_get_probe_write_proto: 2 callbacks suppressed
[   54.091802][ T5314] syz.0.747[5314] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.124879][ T5314] syz.0.747[5314] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.151678][ T5314] syz.0.747[5314] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.184973][ T5323] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.751'.
[   54.324539][ T1104] tipc: Node number set to 11578026
[   54.359047][ T5339] loop7: detected capacity change from 0 to 16384
[   54.403529][ T5341] loop5: detected capacity change from 0 to 512
[   54.441869][ T5341] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.484978][ T5341] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.546946][ T5352] loop0: detected capacity change from 0 to 1024
[   54.593006][ T5352] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.696982][ T5359] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #19: comm syz.5.758: corrupted inode contents
[   54.716662][ T5359] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #19: comm syz.5.758: mark_inode_dirty error
[   54.740510][ T5359] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #19: comm syz.5.758: corrupted inode contents
[   54.741395][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.757064][ T5363] dummy0: entered promiscuous mode
[   54.767873][ T5363] macvtap1: entered promiscuous mode
[   54.773259][ T5363] macvtap1: entered allmulticast mode
[   54.778429][ T5359] EXT4-fs error (device loop5): ext4_xattr_delete_inode:3006: inode #19: comm syz.5.758: mark_inode_dirty error
[   54.778725][ T5363] dummy0: entered allmulticast mode
[   54.798135][ T5363] dummy0: left allmulticast mode
[   54.803241][ T5363] dummy0: left promiscuous mode
[   54.831269][ T5359] EXT4-fs error (device loop5): ext4_xattr_delete_inode:3009: inode #19: comm syz.5.758: mark inode dirty (error -117)
[   54.845222][ T5359] EXT4-fs warning (device loop5): ext4_evict_inode:276: xattr delete (err -117)
[   54.893821][ T5373] syz.3.770[5373] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.893900][ T5373] syz.3.770[5373] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.906236][ T5373] syz.3.770[5373] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.935492][ T5071] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.971354][ T5377] loop7: detected capacity change from 0 to 16384
[   55.158497][    T9] IPVS: starting estimator thread 0...
[   55.188492][ T5398] loop5: detected capacity change from 0 to 512
[   55.226837][ T5398] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.243175][ T5398] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.254009][ T5396] IPVS: using max 2928 ests per chain, 146400 per kthread
[   55.281992][ T5071] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.303775][ T5411] loop0: detected capacity change from 0 to 2048
[   55.314867][ T5413] vlan2: entered allmulticast mode
[   55.322799][ T5411] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.367802][ T5411] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   55.382847][ T5411] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   55.395206][ T5411] EXT4-fs (loop0): This should not happen!! Data will be lost
[   55.395206][ T5411] 
[   55.405024][ T5411] EXT4-fs (loop0): Total free blocks count 0
[   55.411019][ T5411] EXT4-fs (loop0): Free/Dirty block details
[   55.417103][ T5411] EXT4-fs (loop0): free_blocks=2415919104
[   55.422837][ T5411] EXT4-fs (loop0): dirty_blocks=16
[   55.424814][ T5419] capability: warning: `syz.3.788' uses 32-bit capabilities (legacy support in use)
[   55.428140][ T5411] EXT4-fs (loop0): Block reservation details
[   55.443717][ T5411] EXT4-fs (loop0): i_reserved_data_blocks=1
[   55.520173][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.521669][ T5428] loop5: detected capacity change from 0 to 256
[   55.541765][ T5428] FAT-fs (loop5): Directory bread(block 64) failed
[   55.548685][ T5428] FAT-fs (loop5): Directory bread(block 65) failed
[   55.555862][ T5428] FAT-fs (loop5): Directory bread(block 66) failed
[   55.562547][ T5428] FAT-fs (loop5): Directory bread(block 67) failed
[   55.569415][ T5428] FAT-fs (loop5): Directory bread(block 68) failed
[   55.576235][ T5428] FAT-fs (loop5): Directory bread(block 69) failed
[   55.582878][ T5428] FAT-fs (loop5): Directory bread(block 70) failed
[   55.589492][ T5428] FAT-fs (loop5): Directory bread(block 71) failed
[   55.596187][ T5428] FAT-fs (loop5): Directory bread(block 72) failed
[   55.602772][ T5428] FAT-fs (loop5): Directory bread(block 73) failed
[   55.633681][ T5428] syz.5.792: attempt to access beyond end of device
[   55.633681][ T5428] loop5: rw=2049, sector=1224, nr_sectors = 608 limit=256
[   55.650131][ T5428] syz.5.792: attempt to access beyond end of device
[   55.650131][ T5428] loop5: rw=2049, sector=1864, nr_sectors = 1440 limit=256
[   55.791003][ T5454] loop2: detected capacity change from 0 to 1024
[   55.798195][ T5454] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   55.817068][ T5456] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.828406][ T5454] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.866223][ T5465] xt_hashlimit: size too large, truncated to 1048576
[   55.947667][ T5470] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.807'.
[   55.963507][ T5456] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.028758][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.057509][ T5456] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.128149][ T5456] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.183273][ T5456] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.205620][ T5456] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.236209][ T5456] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.256257][ T5456] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.538604][ T5494] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   56.547849][ T5494] batadv_slave_0: entered promiscuous mode
[   56.606150][ T5496] loop0: detected capacity change from 0 to 256
[   56.893901][ T5508] ref_ctr increment failed for inode: 0x9e offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff88811a619500
[   56.905781][ T5507] uprobe: syz.5.823:5507 failed to unregister, leaking uprobe
[   57.155513][ T5511] vlan2: entered allmulticast mode
[   57.160682][ T5511] bridge_slave_0: entered allmulticast mode
[   57.167969][ T5513] ref_ctr increment failed for inode: 0xa4 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff88811a619f80
[   57.188265][ T5512] uprobe: syz.5.824:5512 failed to unregister, leaking uprobe
[   57.197253][ T5516] tmpfs: Bad value for 'mpol'
[   57.202612][ T5516] netlink: 'syz.2.827': attribute type 13 has an invalid length.
[   57.281068][ T5511] bridge_slave_0: left allmulticast mode
[   57.405914][ T5516] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.413075][ T5516] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.423750][   T29] kauditd_printk_skb: 920 callbacks suppressed
[   57.423764][   T29] audit: type=1326 audit(1737242763.875:5045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.453434][   T29] audit: type=1326 audit(1737242763.875:5046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.476882][   T29] audit: type=1326 audit(1737242763.875:5047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.500410][   T29] audit: type=1326 audit(1737242763.875:5048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.523924][   T29] audit: type=1326 audit(1737242763.875:5049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.547458][   T29] audit: type=1326 audit(1737242763.875:5050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.570847][   T29] audit: type=1326 audit(1737242763.875:5051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.594356][   T29] audit: type=1326 audit(1737242763.875:5052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.617674][   T29] audit: type=1326 audit(1737242763.875:5053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.641256][   T29] audit: type=1326 audit(1737242763.885:5054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.5.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   57.749944][ T5516] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   57.760078][ T5516] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   57.797466][ T5516] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.806650][ T5516] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.815655][ T5516] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.824615][ T5516] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.882959][ T5532] @: renamed from vlan0
[   57.909085][ T5534] syz.2.835[5534] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.909179][ T5534] syz.2.835[5534] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.921344][ T5534] syz.2.835[5534] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.945570][ T5534] syz.2.835[5534] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.101976][ T5548] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[   58.151503][ T5554] netlink: 196 bytes leftover after parsing attributes in process `syz.2.842'.
[   58.241723][ T5558] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[   58.248326][ T5558] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   58.255960][ T5558] vhci_hcd vhci_hcd.0: Device attached
[   58.309235][ T5562] geneve0: entered allmulticast mode
[   58.341348][ T5559] vhci_hcd: connection closed
[   58.341607][ T3390] vhci_hcd: stop threads
[   58.350715][ T3390] vhci_hcd: release socket
[   58.355230][ T3390] vhci_hcd: disconnect device
[   58.576289][ T5572] ref_ctr increment failed for inode: 0x39c offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff888107f89f80
[   58.598458][ T5571] uprobe: syz.0.849:5571 failed to unregister, leaking uprobe
[   58.983970][ T5586] loop2: detected capacity change from 0 to 512
[   59.026392][ T5586] ext4 filesystem being mounted at /153/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.383703][ T5596] netlink: 24 bytes leftover after parsing attributes in process `syz.1.857'.
[   59.546784][ T5600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   59.565005][ T5600] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   59.885711][ T5627] ref_ctr increment failed for inode: 0x396 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff88811a619a40
[   59.897718][ T5626] uprobe: syz.1.870:5626 failed to unregister, leaking uprobe
[   59.935543][ T5631] pim6reg1: entered promiscuous mode
[   59.940893][ T5631] pim6reg1: entered allmulticast mode
[   60.191004][ T5639] loop0: detected capacity change from 0 to 512
[   60.198821][ T5639] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   60.220219][ T5639] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=884ee02c, mo2=0102]
[   60.229006][ T5639] EXT4-fs (loop0): orphan cleanup on readonly fs
[   60.236328][ T5639] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 33619980: comm syz.0.876: invalid block
[   60.248315][ T5639] EXT4-fs (loop0): Remounting filesystem read-only
[   60.255065][ T5639] EXT4-fs (loop0): 1 truncate cleaned up
[   60.261042][ T5639] SELinux: (dev loop0, type ext4) getxattr errno 5
[   60.690736][ T5667] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[   60.700528][ T5666] IPVS: stopping master sync thread 5667 ...
[   60.772886][ T5671] netlink: 4 bytes leftover after parsing attributes in process `syz.0.889'.
[   61.440689][ T5694] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   61.449116][ T5694] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   61.488518][ T5696] bpf_get_probe_write_proto: 8 callbacks suppressed
[   61.488531][ T5696] syz.2.899[5696] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   61.495586][ T5696] syz.2.899[5696] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   61.510499][ T5696] syz.2.899[5696] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   61.547270][ T5696] netlink: 'syz.2.899': attribute type 3 has an invalid length.
[   61.566279][ T5696] netlink: 'syz.2.899': attribute type 3 has an invalid length.
[   61.576601][ T5696] netlink: 16 bytes leftover after parsing attributes in process `syz.2.899'.
[   61.776926][ T5704] loop1: detected capacity change from 0 to 512
[   61.805995][ T5704] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.052189][ T5717] loop1: detected capacity change from 0 to 1024
[   62.060450][ T5717] EXT4-fs: Ignoring removed orlov option
[   62.066162][ T5717] EXT4-fs: Ignoring removed nomblk_io_submit option
[   62.103591][ T5717] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   62.200060][ T5734] loop1: detected capacity change from 0 to 128
[   62.215954][ T5734] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5734 comm=syz.1.914
[   62.294382][ T5739] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   62.304211][ T5739] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.316035][ T5739] netlink: 12 bytes leftover after parsing attributes in process `syz.1.916'.
[   62.349367][ T5741] netlink: 92 bytes leftover after parsing attributes in process `syz.2.917'.
[   62.442989][ T5751] loop2: detected capacity change from 0 to 2048
[   62.491373][   T29] kauditd_printk_skb: 553 callbacks suppressed
[   62.491387][   T29] audit: type=1400 audit(1737242768.945:5608): avc:  denied  { unmount } for  pid=5071 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   62.655209][   T29] audit: type=1400 audit(1737242769.115:5609): avc:  denied  { write } for  pid=5765 comm="syz.3.927" path="socket:[11847]" dev="sockfs" ino=11847 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   62.739637][   T29] audit: type=1326 audit(1737242769.195:5610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.3.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   62.764141][   T29] audit: type=1326 audit(1737242769.195:5611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.3.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   62.787551][   T29] audit: type=1326 audit(1737242769.195:5612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.3.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   62.810837][   T29] audit: type=1326 audit(1737242769.195:5613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.3.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   62.834317][   T29] audit: type=1326 audit(1737242769.195:5614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.3.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   62.857747][   T29] audit: type=1326 audit(1737242769.195:5615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.3.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   62.881052][   T29] audit: type=1326 audit(1737242769.195:5616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.3.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   62.904277][   T29] audit: type=1326 audit(1737242769.195:5617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.3.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   62.952336][ T5777] syzkaller0: entered allmulticast mode
[   62.962143][ T5777] syzkaller0 (unregistering): left allmulticast mode
[   63.065882][ T5781] syzkaller0: entered promiscuous mode
[   63.068989][ T5786] netlink: 4 bytes leftover after parsing attributes in process `syz.3.935'.
[   63.071673][ T5781] syzkaller0: entered allmulticast mode
[   63.153623][ T5791] 9pnet_fd: Insufficient options for proto=fd
[   63.224317][ T5796] xt_connbytes: Forcing CT accounting to be enabled
[   63.467202][ T5809] syzkaller0: entered allmulticast mode
[   63.474928][ T5809] syzkaller0 (unregistering): left allmulticast mode
[   63.491820][ T5811] netlink: 28 bytes leftover after parsing attributes in process `syz.2.945'.
[   63.500758][ T5811] netlink: 28 bytes leftover after parsing attributes in process `syz.2.945'.
[   63.517763][ T5811] macvlan1: entered promiscuous mode
[   63.525672][ T5811] bridge0: entered promiscuous mode
[   63.531419][ T5811] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   63.539733][ T5811] Cannot create hsr debugfs directory
[   63.545748][ T5811] hsr0: Slave A (macvlan1) is not up; please bring it up to get a fully working HSR network
[   63.555949][ T5811] hsr0: Slave B (bridge0) is not up; please bring it up to get a fully working HSR network
[   64.241445][ T5856] loop2: detected capacity change from 0 to 1024
[   64.249526][ T5856] EXT4-fs: Ignoring removed i_version option
[   64.256572][ T5856] EXT4-fs (loop2): stripe (4) is not aligned with cluster size (16), stripe is disabled
[   64.277334][ T5856] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.963: Failed to acquire dquot type 0
[   64.302225][ T5856] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   64.357635][ T5856] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.963: corrupted inode contents
[   64.357653][ T5796] Cannot find del_set index 1 as target
[   64.377669][ T5856] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #13: comm syz.2.963: mark_inode_dirty error
[   64.400901][ T5863] tipc: Started in network mode
[   64.405870][ T5863] tipc: Node identity 52cd9930a091, cluster identity 4711
[   64.413032][ T5863] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   64.448538][ T5856] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.963: corrupted inode contents
[   64.452668][ T5863] syzkaller0: entered promiscuous mode
[   64.465995][ T5863] syzkaller0: entered allmulticast mode
[   64.506628][ T5863] tipc: Resetting bearer <eth:syzkaller0>
[   64.507626][ T5856] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #13: comm syz.2.963: mark_inode_dirty error
[   64.523865][ T5869] 9pnet_fd: Insufficient options for proto=fd
[   64.577218][ T5862] tipc: Resetting bearer <eth:syzkaller0>
[   64.580175][ T5856] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.963: corrupted inode contents
[   64.604267][ T5862] tipc: Disabling bearer <eth:syzkaller0>
[   64.664976][ T5874] tmpfs: Bad value for 'nr_blocks'
[   64.685644][ T5856] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   64.704762][ T5867] netlink: 16 bytes leftover after parsing attributes in process `syz.0.967'.
[   64.725306][ T5856] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.963: corrupted inode contents
[   64.774251][ T5856] EXT4-fs error (device loop2): ext4_truncate:4240: inode #13: comm syz.2.963: mark_inode_dirty error
[   64.810963][ T5856] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   64.836469][ T5883] loop1: detected capacity change from 0 to 512
[   64.856515][ T5856] EXT4-fs (loop2): 1 truncate cleaned up
[   64.876310][ T5883] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   64.958353][ T5888] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   64.972458][ T5890] netlink: 24 bytes leftover after parsing attributes in process `syz.1.976'.
[   64.991664][ T5888] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.020217][ T5888] netlink: 12 bytes leftover after parsing attributes in process `syz.2.975'.
[   65.100062][ T5892] random: crng reseeded on system resumption
[   65.246678][ T5897] loop1: detected capacity change from 0 to 512
[   65.256762][ T5897] EXT4-fs mount: 14 callbacks suppressed
[   65.256807][ T5897] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   65.276200][ T5897] ext4 filesystem being mounted at /192/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.355052][ T5897] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.979: Failed to acquire dquot type 1
[   65.383158][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   65.706752][ T5923] netlink: 96 bytes leftover after parsing attributes in process `syz.2.988'.
[   65.843760][ T5904] netlink: 88 bytes leftover after parsing attributes in process `syz.1.980'.
[   65.921551][ T5941] loop1: detected capacity change from 0 to 1764
[   65.928507][ T5941] iso9660: Unknown parameter 'mod‰~7+È¥~µ000map'
[   65.937791][ T5941] netlink: 4 bytes leftover after parsing attributes in process `syz.1.997'.
[   66.005288][ T5937] netlink: 4 bytes leftover after parsing attributes in process `syz.3.995'.
[   66.082797][ T5947] netlink: 4 bytes leftover after parsing attributes in process `syz.1.999'.
[   66.208109][ T5960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1004'.
[   66.217735][ T5960] tipc: Resetting bearer <eth:team0>
[   66.247041][ T5960] tipc: Disabling bearer <eth:team0>
[   66.280274][ T5960] team0 (unregistering): Port device team_slave_0 removed
[   66.304015][ T5960] team0 (unregistering): Port device team_slave_1 removed
[   66.606744][ T5971] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1009'.
[   66.786969][ T5984] netlink: 'syz.1.1014': attribute type 21 has an invalid length.
[   66.795098][ T5984] netlink: 'syz.1.1014': attribute type 1 has an invalid length.
[   66.806642][ T5983] hub 2-0:1.0: USB hub found
[   66.814327][ T5983] hub 2-0:1.0: 8 ports detected
[   66.951751][ T6007] 9pnet_fd: Insufficient options for proto=fd
[   66.970253][ T6011] batman_adv: batadv0: Removing interface: batadv_slave_0
[   66.998250][ T6011] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.005964][ T6011] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.238007][ T6051] loop1: detected capacity change from 0 to 512
[   67.254960][ T6051] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   67.278855][ T6051] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=884ee02c, mo2=0102]
[   67.314678][ T6051] EXT4-fs (loop1): orphan cleanup on readonly fs
[   67.324787][ T6051] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 33619980: comm syz.1.1043: invalid block
[   67.364863][ T6051] EXT4-fs (loop1): Remounting filesystem read-only
[   67.395358][ T6051] EXT4-fs (loop1): 1 truncate cleaned up
[   67.401553][ T6051] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[   67.437244][ T6051] SELinux: (dev loop1, type ext4) getxattr errno 5
[   67.456566][ T6051] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[   67.533216][ T6064] loop2: detected capacity change from 0 to 128
[   67.679628][   T29] kauditd_printk_skb: 413 callbacks suppressed
[   67.679641][   T29] audit: type=1326 audit(1737242774.135:6026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6074 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   67.717062][   T29] audit: type=1326 audit(1737242774.165:6027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6074 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   67.764994][   T29] audit: type=1326 audit(1737242774.225:6028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6074 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   67.788501][   T29] audit: type=1326 audit(1737242774.225:6029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6074 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   67.814530][   T29] audit: type=1326 audit(1737242774.265:6030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6074 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   67.839372][ T6076] hub 2-0:1.0: USB hub found
[   67.846493][   T29] audit: type=1326 audit(1737242774.295:6031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6074 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   67.851488][ T6076] hub 2-0:1.0: 8 ports detected
[   67.869986][   T29] audit: type=1326 audit(1737242774.295:6032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6074 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   68.014539][   T29] audit: type=1326 audit(1737242774.465:6033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6086 comm="syz.5.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   68.039394][   T29] audit: type=1326 audit(1737242774.465:6034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6086 comm="syz.5.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   68.063195][   T29] audit: type=1326 audit(1737242774.465:6035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6086 comm="syz.5.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   68.094686][ T6084] loop2: detected capacity change from 0 to 1024
[   68.160352][ T6084] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.186861][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.273058][ T6057] syz.0.1046 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[   68.284108][ T6057] CPU: 0 UID: 0 PID: 6057 Comm: syz.0.1046 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   68.294795][ T6057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   68.304857][ T6057] Call Trace:
[   68.308137][ T6057]  <TASK>
[   68.311100][ T6057]  dump_stack_lvl+0xf2/0x150
[   68.315806][ T6057]  dump_stack+0x15/0x1a
[   68.320143][ T6057]  dump_header+0x83/0x2d0
[   68.324513][ T6057]  oom_kill_process+0x341/0x4c0
[   68.329372][ T6057]  out_of_memory+0x9af/0xbe0
[   68.333972][ T6057]  ? css_next_descendant_pre+0x11c/0x140
[   68.339647][ T6057]  mem_cgroup_out_of_memory+0x13e/0x190
[   68.345329][ T6057]  try_charge_memcg+0x508/0x7f0
[   68.350231][ T6057]  charge_memcg+0x50/0xc0
[   68.354621][ T6057]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[   68.360670][ T6057]  __read_swap_cache_async+0x236/0x480
[   68.366203][ T6057]  swap_cluster_readahead+0x381/0x3f0
[   68.371603][ T6057]  swapin_readahead+0xe4/0x6f0
[   68.376507][ T6057]  ? swap_cache_get_folio+0x77/0x210
[   68.381869][ T6057]  do_swap_page+0x31b/0x2550
[   68.386490][ T6057]  ? tracing_record_taskinfo_sched_switch+0x6f/0x270
[   68.393259][ T6057]  ? probe_sched_wakeup+0x81/0xa0
[   68.398282][ T6057]  ? __rcu_read_lock+0x36/0x50
[   68.403125][ T6057]  ? __pfx_default_wake_function+0x10/0x10
[   68.408923][ T6057]  handle_mm_fault+0x8e4/0x2ac0
[   68.413849][ T6057]  exc_page_fault+0x3b9/0x650
[   68.418593][ T6057]  asm_exc_page_fault+0x26/0x30
[   68.423453][ T6057] RIP: 0033:0x7f9bb99cf529
[   68.427889][ T6057] Code: 39 f0 73 46 49 89 34 24 48 89 ce 48 89 4f f8 49 8b 14 24 49 8b 4c 24 08 eb 85 0f 1f 80 00 00 00 00 48 89 fe 4c 89 ea 48 89 df <e8> f2 fe ff ff 48 89 d8 4c 29 e0 48 3d 80 00 00 00 7e 7f 4d 85 ed
[   68.447673][ T6057] RSP: 002b:00007ffc866d4f40 EFLAGS: 00010246
[   68.453814][ T6057] RAX: 00007f9bb926c9f0 RBX: 00007f9bb926c9f0 RCX: ffffffff81555e35
[   68.461880][ T6057] RDX: 0000000000000015 RSI: 00007f9bb926cad8 RDI: 00007f9bb926c9f0
[   68.469864][ T6057] RBP: 00007f9bb926c910 R08: 00007f9bb926c9f0 R09: 00007f9bb9cd2000
[   68.477828][ T6057] R10: 00007f9bb916f008 R11: 000000000000000a R12: 00007f9bb926c908
[   68.485893][ T6057] R13: 0000000000000015 R14: 0000000000000032 R15: 00007f9bb916f008
[   68.493902][ T6057]  ? lru_gen_update_size+0xe5/0x400
[   68.499115][ T6057]  </TASK>
[   68.502403][ T6057] memory: usage 307200kB, limit 307200kB, failcnt 1402
[   68.509451][ T6057] memory+swap: usage 307760kB, limit 9007199254740988kB, failcnt 0
[   68.517699][ T6057] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   68.525199][ T6057] Memory cgroup stats for /syz0:
[   68.559892][ T6057] cache 0
[   68.567950][ T6057] rss 0
[   68.570735][ T6057] shmem 0
[   68.573662][ T6057] mapped_file 0
[   68.577158][ T6057] dirty 0
[   68.580110][ T6057] writeback 0
[   68.583513][ T6057] workingset_refault_anon 75
[   68.588240][ T6057] workingset_refault_file 256
[   68.592916][ T6057] swap 573440
[   68.596238][ T6057] swapcached 0
[   68.599837][ T6057] pgpgin 51778
[   68.603553][ T6057] pgpgout 51778
[   68.607047][ T6057] pgfault 72293
[   68.610598][ T6057] pgmajfault 38
[   68.614074][ T6057] inactive_anon 0
[   68.617773][ T6057] active_anon 0
[   68.621243][ T6057] inactive_file 0
[   68.624915][ T6057] active_file 0
[   68.628398][ T6057] unevictable 0
[   68.631858][ T6057] hierarchical_memory_limit 314572800
[   68.637326][ T6057] hierarchical_memsw_limit 9223372036854771712
[   68.643560][ T6057] total_cache 0
[   68.647051][ T6057] total_rss 0
[   68.650340][ T6057] total_shmem 0
[   68.653934][ T6057] total_mapped_file 0
[   68.655362][ T6124] netlink: 'syz.1.1065': attribute type 39 has an invalid length.
[   68.658179][ T6057] total_dirty 0
[   68.669619][ T6057] total_writeback 0
[   68.673400][ T6057] total_workingset_refault_anon 75
[   68.678574][ T6057] total_workingset_refault_file 256
[   68.683772][ T6057] total_swap 573440
[   68.687591][ T6057] total_swapcached 0
[   68.691508][ T6057] total_pgpgin 51778
[   68.695405][ T6057] total_pgpgout 51778
[   68.699368][ T6057] total_pgfault 72293
[   68.703497][ T6057] total_pgmajfault 38
[   68.707619][ T6057] total_inactive_anon 0
[   68.711752][ T6057] total_active_anon 0
[   68.715779][ T6057] total_inactive_file 0
[   68.719926][ T6057] total_active_file 0
[   68.723897][ T6057] total_unevictable 0
[   68.727869][ T6057] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1046,pid=6057,uid=0
[   68.742639][ T6057] Memory cgroup out of memory: Killed process 6057 (syz.0.1046) total-vm:95564kB, anon-rss:896kB, file-rss:22212kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
[   68.989698][ T6141] loop5: detected capacity change from 0 to 128
[   69.011145][ T6141] syz.5.1072: attempt to access beyond end of device
[   69.011145][ T6141] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   69.034975][ T6145] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   69.042434][ T6145] batman_adv: batadv0: Removing interface: batadv_slave_0
[   69.062256][ T6145] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   69.069773][ T6145] batman_adv: batadv0: Removing interface: batadv_slave_1
[   69.120893][ T6141] bridge_slave_0: left allmulticast mode
[   69.126649][ T6141] bridge_slave_0: left promiscuous mode
[   69.132404][ T6141] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.142321][ T6141] bridge_slave_1: left allmulticast mode
[   69.148253][ T6141] bridge_slave_1: left promiscuous mode
[   69.153937][ T6141] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.163286][ T6141] bond0: (slave bond_slave_0): Releasing backup interface
[   69.173038][ T6141] bond0: (slave bond_slave_1): Releasing backup interface
[   69.183892][ T6141] team0: Port device team_slave_0 removed
[   69.193794][ T6141] team0: Port device team_slave_1 removed
[   69.241609][ T6159] loop1: detected capacity change from 0 to 256
[   69.263390][ T6159] FAT-fs (loop1): Directory bread(block 64) failed
[   69.284796][ T6159] FAT-fs (loop1): Directory bread(block 65) failed
[   69.292638][ T6159] FAT-fs (loop1): Directory bread(block 66) failed
[   69.299390][ T6159] FAT-fs (loop1): Directory bread(block 67) failed
[   69.306291][ T6159] FAT-fs (loop1): Directory bread(block 68) failed
[   69.319179][ T6159] FAT-fs (loop1): Directory bread(block 69) failed
[   69.325977][ T6159] FAT-fs (loop1): Directory bread(block 70) failed
[   69.332807][ T6159] FAT-fs (loop1): Directory bread(block 71) failed
[   69.340295][ T6159] FAT-fs (loop1): Directory bread(block 72) failed
[   69.347218][ T6159] FAT-fs (loop1): Directory bread(block 73) failed
[   69.366275][ T6164] loop2: detected capacity change from 0 to 2048
[   69.395425][ T6164]  loop2: p1 < > p4
[   69.399645][ T6164] loop2: p4 size 8388608 extends beyond EOD, truncated
[   69.411828][ T6159] GPL: attempt to access beyond end of device
[   69.411828][ T6159] loop1: rw=2049, sector=1280, nr_sectors = 264 limit=256
[   69.433007][ T6159] GPL: attempt to access beyond end of device
[   69.433007][ T6159] loop1: rw=2049, sector=1576, nr_sectors = 256 limit=256
[   69.480071][ T6173] loop2: detected capacity change from 0 to 512
[   69.485052][ T6159] GPL: attempt to access beyond end of device
[   69.485052][ T6159] loop1: rw=2049, sector=1864, nr_sectors = 2044 limit=256
[   69.518820][ T3390] kworker/u8:6: attempt to access beyond end of device
[   69.518820][ T3390] loop1: rw=1, sector=1224, nr_sectors = 56 limit=256
[   69.538388][ T6173] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.550977][ T6173] ext4 filesystem being mounted at /205/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.666570][ T6173] EXT4-fs error (device loop2): ext4_get_first_dir_block:3539: inode #12: comm syz.2.1085: Attempting to read directory block (0) that is past i_size (3)
[   69.702692][ T6173] EXT4-fs (loop2): Remounting filesystem read-only
[   69.741957][ T6181] __nla_validate_parse: 10 callbacks suppressed
[   69.741975][ T6181] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1096'.
[   69.758136][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.871196][ T6190] loop2: detected capacity change from 0 to 512
[   69.877808][ T6190] EXT4-fs: Ignoring removed i_version option
[   69.884077][ T6190] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   69.896101][ T6190] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c028, mo2=0002]
[   69.904284][ T6190] System zones: 1-12
[   69.911372][ T6190] EXT4-fs (loop2): 1 truncate cleaned up
[   69.917496][ T6190] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.462457][ T6202] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   70.470762][ T6202] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   70.566286][ T6206] loop0: detected capacity change from 0 to 128
[   70.681370][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.697683][ T6209] loop5: detected capacity change from 0 to 512
[   70.708347][ T6214] loop2: detected capacity change from 0 to 128
[   70.738912][ T6209] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[   70.756992][ T6209] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[   70.793175][ T6209] EXT4-fs (loop5): 1 truncate cleaned up
[   70.846394][ T6209] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.863754][ T6214] syz.2.1098: attempt to access beyond end of device
[   70.863754][ T6214] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128
[   70.889671][ T6209] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   70.908161][ T6214] syz.2.1098: attempt to access beyond end of device
[   70.908161][ T6214] loop2: rw=524288, sector=145, nr_sectors = 224 limit=128
[   70.922787][ T5071] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.924194][ T6214] syz.2.1098: attempt to access beyond end of device
[   70.924194][ T6214] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[   70.963323][ T6214] syz.2.1098: attempt to access beyond end of device
[   70.963323][ T6214] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[   70.993552][ T6225] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1102'.
[   70.996116][ T6214] syz.2.1098: attempt to access beyond end of device
[   70.996116][ T6214] loop2: rw=0, sector=145, nr_sectors = 8 limit=128
[   71.055022][ T6233] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1101'.
[   71.068571][ T6233] bridge1: entered promiscuous mode
[   71.321959][ T6248] loop0: detected capacity change from 0 to 128
[   71.392565][ T6252] syz.0.1113[6252] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.392673][ T6252] syz.0.1113[6252] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.418935][ T6252] syz.0.1113[6252] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.595221][ T6265] loop2: detected capacity change from 0 to 2048
[   71.626294][ T6265] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.643106][ T6265] EXT4-fs error (device loop2): ext4_ext_precache:631: inode #2: comm syz.2.1116: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   71.661184][ T6265] EXT4-fs (loop2): Remounting filesystem read-only
[   71.677330][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.697788][ T6270] loop2: detected capacity change from 0 to 1024
[   71.716318][ T6270] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.728603][ T6270] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.767979][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.930371][ T6281] SELinux: security policydb version 18 (MLS) not backwards compatible
[   71.938859][ T6281] SELinux: failed to load policy
[   71.945116][ T6281] random: crng reseeded on system resumption
[   72.052137][ T6287] netlink: 'syz.5.1126': attribute type 4 has an invalid length.
[   72.055361][ T6283] loop1: detected capacity change from 0 to 8192
[   72.070227][ T6287] netlink: 'syz.5.1126': attribute type 4 has an invalid length.
[   72.095441][ T6283] Process accounting resumed
[   72.352309][ T6300] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   72.352373][ T6302] loop0: detected capacity change from 0 to 256
[   72.360222][ T6300] syzkaller0: MTU too low for tipc bearer
[   72.371576][ T6300] tipc: Disabling bearer <eth:syzkaller0>
[   72.377688][ T6302] FAT-fs (loop0): Directory bread(block 64) failed
[   72.384553][ T6302] FAT-fs (loop0): Directory bread(block 65) failed
[   72.391260][ T6302] FAT-fs (loop0): Directory bread(block 66) failed
[   72.398128][ T6302] FAT-fs (loop0): Directory bread(block 67) failed
[   72.404848][ T6302] FAT-fs (loop0): Directory bread(block 68) failed
[   72.411365][ T6302] FAT-fs (loop0): Directory bread(block 69) failed
[   72.417966][ T6302] FAT-fs (loop0): Directory bread(block 70) failed
[   72.424678][ T6302] FAT-fs (loop0): Directory bread(block 71) failed
[   72.431396][ T6302] FAT-fs (loop0): Directory bread(block 72) failed
[   72.438307][ T6302] FAT-fs (loop0): Directory bread(block 73) failed
[   72.493269][ T6307] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1132'.
[   72.517632][ T6307] bridge0: entered promiscuous mode
[   72.561566][    C0] IPv4: Oversized IP packet from 172.20.20.24
[   72.567751][    C0] IPv4: Oversized IP packet from 172.20.20.24
[   72.592556][ T6314] hsr_slave_0: left promiscuous mode
[   72.598384][ T6314] hsr_slave_1: left promiscuous mode
[   72.618169][ T6312] hub 2-0:1.0: USB hub found
[   72.622960][ T6312] hub 2-0:1.0: 8 ports detected
[   72.644259][ T6316] netlink: 'syz.2.1137': attribute type 27 has an invalid length.
[   72.652804][ T6318] netlink: zone id is out of range
[   72.671390][ T6316] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.674309][ T6318] netlink: set zone limit has 4 unknown bytes
[   72.680245][ T6316] 8021q: adding VLAN 0 to HW filter on device team0
[   72.693228][ T6316] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   72.739230][   T29] kauditd_printk_skb: 775 callbacks suppressed
[   72.739246][   T29] audit: type=1400 audit(1737242779.195:6811): avc:  denied  { execmem } for  pid=6324 comm="syz.0.1141" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   72.767966][   T29] audit: type=1400 audit(1737242779.225:6812): avc:  denied  { unmount } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   72.851262][ T6328] loop1: detected capacity change from 0 to 512
[   72.857790][ T6328] EXT4-fs: Ignoring removed i_version option
[   72.864177][ T6328] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   72.875545][ T6328] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c028, mo2=0002]
[   72.883602][ T6328] System zones: 1-12
[   72.888308][ T6328] EXT4-fs (loop1): 1 truncate cleaned up
[   72.894636][ T6328] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.932007][   T29] audit: type=1400 audit(1737242779.385:6813): avc:  denied  { mounton } for  pid=6327 comm="syz.1.1142" path="/228/bus" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   72.954640][   T29] audit: type=1400 audit(1737242779.385:6814): avc:  denied  { watch watch_reads } for  pid=6327 comm="syz.1.1142" path="/228/bus/file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   73.018281][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.176981][   T29] audit: type=1400 audit(1737242779.635:6815): avc:  denied  { ioctl } for  pid=6332 comm="syz.5.1144" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   73.202647][ T6335] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   73.211664][ T6335] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   73.265749][   T29] audit: type=1326 audit(1737242779.715:6816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6338 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   73.289487][   T29] audit: type=1326 audit(1737242779.715:6817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6338 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   73.313232][   T29] audit: type=1326 audit(1737242779.715:6818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6338 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   73.336830][   T29] audit: type=1326 audit(1737242779.715:6819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6338 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   73.360371][   T29] audit: type=1326 audit(1737242779.715:6820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6338 comm="syz.2.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   73.393508][ T6341] loop1: detected capacity change from 0 to 164
[   73.684755][ T6361] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1154'.
[   73.819530][ T6370] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[   74.078290][ T6376] batman_adv: batadv0: Adding interface: dummy0
[   74.084589][ T6376] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.085245][ T6376] batman_adv: batadv0: Interface activated: dummy0
[   74.120707][ T6376] batadv0: mtu less than device minimum
[   74.121056][ T6376] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   74.144093][ T6376] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   74.144557][ T6376] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   74.144936][ T6376] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   74.286410][ T6382] loop2: detected capacity change from 0 to 256
[   74.305497][ T6382] FAT-fs (loop2): Directory bread(block 64) failed
[   74.312152][ T6382] FAT-fs (loop2): Directory bread(block 65) failed
[   74.312189][ T6382] FAT-fs (loop2): Directory bread(block 66) failed
[   74.312208][ T6382] FAT-fs (loop2): Directory bread(block 67) failed
[   74.312230][ T6382] FAT-fs (loop2): Directory bread(block 68) failed
[   74.312280][ T6382] FAT-fs (loop2): Directory bread(block 69) failed
[   74.312303][ T6382] FAT-fs (loop2): Directory bread(block 70) failed
[   74.312322][ T6382] FAT-fs (loop2): Directory bread(block 71) failed
[   74.312374][ T6382] FAT-fs (loop2): Directory bread(block 72) failed
[   74.312409][ T6382] FAT-fs (loop2): Directory bread(block 73) failed
[   74.396172][ T6382] bio_check_eod: 18769 callbacks suppressed
[   74.396238][ T6382] GPL: attempt to access beyond end of device
[   74.396238][ T6382] loop2: rw=2049, sector=1280, nr_sectors = 264 limit=256
[   74.396781][ T6382] GPL: attempt to access beyond end of device
[   74.396781][ T6382] loop2: rw=2049, sector=1576, nr_sectors = 256 limit=256
[   74.431290][ T6382] GPL: attempt to access beyond end of device
[   74.431290][ T6382] loop2: rw=2049, sector=1864, nr_sectors = 2044 limit=256
[   74.501809][   T55] kworker/u8:4: attempt to access beyond end of device
[   74.501809][   T55] loop2: rw=1, sector=1224, nr_sectors = 56 limit=256
[   74.542559][ T6392] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[   74.711725][ T6407] netlink: 'syz.5.1173': attribute type 10 has an invalid length.
[   74.721932][ T6407] team0: Device hsr_slave_0 failed to register rx_handler
[   74.808189][ T6417] netlink: 'syz.1.1176': attribute type 4 has an invalid length.
[   74.818590][ T6417] netlink: 'syz.1.1176': attribute type 4 has an invalid length.
[   75.166538][ T6432] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[   75.184769][ T6432] SELinux: failed to load policy
[   75.243661][ T6437] syz.2.1184[6437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.243752][ T6437] syz.2.1184[6437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.270084][ T6437] syz.2.1184[6437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.285516][ T6437] ÿÿÿÿÿÿ: renamed from vlan1
[   75.340605][ T6441] lo: entered allmulticast mode
[   75.359390][ T6440] lo: left allmulticast mode
[   75.413009][ T6447] loop0: detected capacity change from 0 to 512
[   75.456377][ T6447] ext4: Unknown parameter 'appraise_type'
[   75.657006][ T6456] random: crng reseeded on system resumption
[   75.792697][ T6463] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1191'.
[   76.240342][ T6477] lo: entered promiscuous mode
[   76.246626][ T6477] lo: entered allmulticast mode
[   76.251647][ T6477] lo: left allmulticast mode
[   76.256338][ T6477] lo: left promiscuous mode
[   76.311509][ T6481] tipc: Started in network mode
[   76.316431][ T6481] tipc: Node identity 9a2fad5a1107, cluster identity 4711
[   76.323594][ T6481] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   76.333545][ T6481] syzkaller0: MTU too low for tipc bearer
[   76.339341][ T6481] tipc: Disabling bearer <eth:syzkaller0>
[   76.363192][ T6485] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1202'.
[   76.440372][ T6490] loop0: detected capacity change from 0 to 128
[   76.503582][ T6496] loop0: detected capacity change from 0 to 2048
[   76.528161][ T6496] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.551377][ T6496] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 8 with max blocks 2 with error 28
[   76.563710][ T6496] EXT4-fs (loop0): This should not happen!! Data will be lost
[   76.563710][ T6496] 
[   76.573491][ T6496] EXT4-fs (loop0): Total free blocks count 0
[   76.579571][ T6496] EXT4-fs (loop0): Free/Dirty block details
[   76.586210][ T6496] EXT4-fs (loop0): free_blocks=0
[   76.591159][ T6496] EXT4-fs (loop0): dirty_blocks=0
[   76.596225][ T6496] EXT4-fs (loop0): Block reservation details
[   76.602394][ T6496] EXT4-fs (loop0): i_reserved_data_blocks=0
[   76.636732][ T6508] wg2: entered promiscuous mode
[   76.641685][ T6508] wg2: entered allmulticast mode
[   76.656171][ T6510] pim6reg1: entered promiscuous mode
[   76.661602][ T6510] pim6reg1: entered allmulticast mode
[   76.686431][ T6514] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1214'.
[   76.725481][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.933059][ T6531] netlink: 'syz.0.1222': attribute type 10 has an invalid length.
[   76.989940][ T6536] loop0: detected capacity change from 0 to 164
[   77.152968][ T6545] loop1: detected capacity change from 0 to 512
[   77.162530][ T6545] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   77.183554][ T6545] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.1227: casefold flag without casefold feature
[   77.200451][ T6545] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1227: couldn't read orphan inode 15 (err -117)
[   77.213249][ T6545] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.229871][ T6545] kernel profiling enabled (shift: 17)
[   77.256196][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.297113][ T6551] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[   77.567231][ T6559] netlink: 100 bytes leftover after parsing attributes in process `syz.5.1233'.
[   77.637390][ T6567] netlink: 'syz.2.1235': attribute type 21 has an invalid length.
[   77.645290][ T6567] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1235'.
[   77.654808][ T6567] netlink: 'syz.2.1235': attribute type 4 has an invalid length.
[   77.683974][ T6572] loop5: detected capacity change from 0 to 128
[   77.721490][ T6572] syz.5.1237: attempt to access beyond end of device
[   77.721490][ T6572] loop5: rw=0, sector=121, nr_sectors = 920 limit=128
[   77.745652][   T29] kauditd_printk_skb: 1569 callbacks suppressed
[   77.745667][   T29] audit: type=1326 audit(1737242784.205:8390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6560 comm="syz.3.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbcb473cce7 code=0x7ffc0000
[   77.777327][   T29] audit: type=1400 audit(1737242784.205:8391): avc:  denied  { unmount } for  pid=5071 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   77.797517][   T29] audit: type=1326 audit(1737242784.235:8392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6560 comm="syz.3.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbcb46e1f29 code=0x7ffc0000
[   77.821172][   T29] audit: type=1326 audit(1737242784.235:8393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6560 comm="syz.3.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbcb473cce7 code=0x7ffc0000
[   77.844559][   T29] audit: type=1326 audit(1737242784.235:8394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6560 comm="syz.3.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbcb46e1f29 code=0x7ffc0000
[   77.868253][   T29] audit: type=1326 audit(1737242784.235:8395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6560 comm="syz.3.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   77.891788][   T29] audit: type=1326 audit(1737242784.275:8396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6560 comm="syz.3.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbcb473cce7 code=0x7ffc0000
[   77.915438][   T29] audit: type=1326 audit(1737242784.275:8397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6560 comm="syz.3.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbcb46e1f29 code=0x7ffc0000
[   77.938923][   T29] audit: type=1326 audit(1737242784.275:8398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6560 comm="syz.3.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fbcb4745d29 code=0x7ffc0000
[   77.962328][   T29] audit: type=1326 audit(1737242784.275:8399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6560 comm="syz.3.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbcb473cce7 code=0x7ffc0000
[   78.132739][ T6590] SELinux:  Context @ is not valid (left unmapped).
[   78.249065][ T6596] cgroup: fork rejected by pids controller in /syz5
[   78.341537][ T7005] loop2: detected capacity change from 0 to 512
[   78.368522][ T7005] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.1251: casefold flag without casefold feature
[   78.410340][ T7005] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.1251: couldn't read orphan inode 15 (err -117)
[   78.447269][ T7005] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.632323][ T7024] smc: net device bond0 applied user defined pnetid SYZ1
[   78.639750][ T7024] smc: net device bond0 erased user defined pnetid SYZ1
[   78.798224][ T7044] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1267'.
[   78.811532][ T7044] 8021q: adding VLAN 0 to HW filter on device bond1
[   78.828851][ T7044] 8021q: adding VLAN 0 to HW filter on device bond1
[   78.836095][ T7044] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   78.847764][ T7044] bond1: (slave wireguard0): Error -95 calling set_mac_address
[   79.016324][ T7050] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1268'.
[   79.178299][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.250399][ T7065] netlink: 'syz.2.1276': attribute type 10 has an invalid length.
[   79.258562][ T7065] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.267852][ T7065] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[   79.635591][ T7084] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1281'.
[   79.692487][ T7053] syz.0.1271 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[   79.703796][ T7053] CPU: 1 UID: 0 PID: 7053 Comm: syz.0.1271 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   79.714486][ T7053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   79.724636][ T7053] Call Trace:
[   79.727940][ T7053]  <TASK>
[   79.730872][ T7053]  dump_stack_lvl+0xf2/0x150
[   79.735639][ T7053]  dump_stack+0x15/0x1a
[   79.739821][ T7053]  dump_header+0x83/0x2d0
[   79.744205][ T7053]  oom_kill_process+0x341/0x4c0
[   79.749077][ T7053]  out_of_memory+0x9af/0xbe0
[   79.753738][ T7053]  ? css_next_descendant_pre+0x11c/0x140
[   79.759373][ T7053]  mem_cgroup_out_of_memory+0x13e/0x190
[   79.765020][ T7053]  try_charge_memcg+0x508/0x7f0
[   79.770008][ T7053]  charge_memcg+0x50/0xc0
[   79.774393][ T7053]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[   79.780394][ T7053]  __read_swap_cache_async+0x236/0x480
[   79.785871][ T7053]  swap_cluster_readahead+0x279/0x3f0
[   79.791450][ T7053]  swapin_readahead+0xe4/0x6f0
[   79.796211][ T7053]  ? __lruvec_stat_mod_folio+0xdb/0x120
[   79.801853][ T7053]  ? swap_cache_get_folio+0x77/0x210
[   79.807221][ T7053]  do_swap_page+0x31b/0x2550
[   79.811847][ T7053]  ? __rcu_read_lock+0x36/0x50
[   79.816702][ T7053]  ? __pfx_default_wake_function+0x10/0x10
[   79.822500][ T7053]  handle_mm_fault+0x8e4/0x2ac0
[   79.827409][ T7053]  exc_page_fault+0x3b9/0x650
[   79.832198][ T7053]  asm_exc_page_fault+0x26/0x30
[   79.837194][ T7053] RIP: 0033:0x7f9bb99ccaf8
[   79.841599][ T7053] Code: 48 f7 f1 48 01 d8 49 39 c4 4c 0f 42 e0 83 3d ca b0 31 00 00 0f 8e 0a fe ff ff e8 63 a7 fe ff 49 39 c4 72 66 66 0f 1f 44 00 00 <69> 3d 96 8b e4 00 e8 03 00 00 48 8d 1d 97 94 31 00 e8 72 91 12 00
[   79.861197][ T7053] RSP: 002b:00007ffc866d51a0 EFLAGS: 00010202
[   79.867302][ T7053] RAX: 0000000000013720 RBX: 00007f9bb9ce7ba0 RCX: 0000000000013498
[   79.875271][ T7053] RDX: 0000000000000288 RSI: 00007ffc866d5180 RDI: 0000000000000001
[   79.883236][ T7053] RBP: 00007f9bb9ce7ba0 R08: 0000000026aa3754 R09: 7fffffffffffffff
[   79.891226][ T7053] R10: 00007f9bba81e038 R11: 0000000000000010 R12: 00000000000137f5
[   79.899187][ T7053] R13: 00007ffc866d52a0 R14: 0000000000000032 R15: ffffffffffffffff
[   79.907185][ T7053]  </TASK>
[   79.910344][ T7053] memory: usage 307200kB, limit 307200kB, failcnt 1625
[   79.917256][ T7053] memory+swap: usage 308292kB, limit 9007199254740988kB, failcnt 0
[   79.925176][ T7053] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[   79.932455][ T7053] Memory cgroup stats for /syz0:
[   79.932778][ T7053] cache 0
[   79.940918][ T7053] rss 0
[   79.943686][ T7053] shmem 0
[   79.946648][ T7053] mapped_file 0
[   79.950109][ T7053] dirty 0
[   79.953103][ T7053] writeback 0
[   79.956419][ T7053] workingset_refault_anon 137
[   79.961162][ T7053] workingset_refault_file 362
[   79.965943][ T7053] swap 1118208
[   79.969376][ T7053] swapcached 8192
[   79.973007][ T7053] pgpgin 71718
[   79.976395][ T7053] pgpgout 71716
[   79.979869][ T7053] pgfault 99795
[   79.983321][ T7053] pgmajfault 73
[   79.986802][ T7053] inactive_anon 8192
[   79.990760][ T7053] active_anon 0
[   79.994227][ T7053] inactive_file 0
[   79.997886][ T7053] active_file 0
[   80.001351][ T7053] unevictable 0
[   80.004853][ T7053] hierarchical_memory_limit 314572800
[   80.010227][ T7053] hierarchical_memsw_limit 9223372036854771712
[   80.016514][ T7053] total_cache 0
[   80.019971][ T7053] total_rss 0
[   80.023259][ T7053] total_shmem 0
[   80.026747][ T7053] total_mapped_file 0
[   80.030719][ T7053] total_dirty 0
[   80.034175][ T7053] total_writeback 0
[   80.037995][ T7053] total_workingset_refault_anon 137
[   80.043194][ T7053] total_workingset_refault_file 362
[   80.048403][ T7053] total_swap 1118208
[   80.052294][ T7053] total_swapcached 8192
[   80.056511][ T7053] total_pgpgin 71718
[   80.060555][ T7053] total_pgpgout 71716
[   80.064551][ T7053] total_pgfault 99795
[   80.068561][ T7053] total_pgmajfault 73
[   80.072616][ T7053] total_inactive_anon 8192
[   80.077049][ T7053] total_active_anon 0
[   80.081033][ T7053] total_inactive_file 0
[   80.085232][ T7053] total_active_file 0
[   80.089213][ T7053] total_unevictable 0
[   80.093295][ T7053] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1271,pid=7053,uid=0
[   80.107911][ T7053] Memory cgroup out of memory: Killed process 7053 (syz.0.1271) total-vm:93384kB, anon-rss:916kB, file-rss:22216kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:1000
[   80.280538][ T7100] loop2: detected capacity change from 0 to 128
[   80.361121][ T7104] netlink: 'syz.5.1289': attribute type 10 has an invalid length.
[   80.370472][ T7100] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   80.382921][ T7100] ext4 filesystem being mounted at /242/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   80.398226][ T7102] loop1: detected capacity change from 0 to 1024
[   80.405074][ T7102] EXT4-fs: Ignoring removed i_version option
[   80.411151][ T7102] EXT4-fs: Ignoring removed bh option
[   80.416621][ T7104] batadv_slave_0: left promiscuous mode
[   80.424686][ T7104] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[   80.479384][ T7102] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.515101][ T7114] SELinux: security_context_str_to_sid () failed with errno=-22
[   80.538585][ T3295] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   80.570338][ T7120] loop2: detected capacity change from 0 to 128
[   80.577569][ T7120] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[   80.600414][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.611504][ T7120] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   80.613956][ T7122] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1296'.
[   80.619372][ T7120] FAT-fs (loop2): Filesystem has been set read-only
[   80.628418][ T7122] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1296'.
[   80.644035][ T7120] syz.2.1292: attempt to access beyond end of device
[   80.644035][ T7120] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   80.644083][ T7120] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   80.644099][ T7120] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   80.843367][ T7131] __nla_validate_parse: 2 callbacks suppressed
[   80.843385][ T7131] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1300'.
[   80.900643][ T7132] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1299'.
[   80.910910][ T7120] syz.2.1292: attempt to access beyond end of device
[   80.910910][ T7120] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   80.977935][ T7120] syz.2.1292: attempt to access beyond end of device
[   80.977935][ T7120] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   81.107302][ T7120] syz.2.1292: attempt to access beyond end of device
[   81.107302][ T7120] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   81.135548][ T7141] ip6gre1: entered allmulticast mode
[   81.577378][ T7152] loop0: detected capacity change from 0 to 512
[   81.602064][ T7152] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1306: corrupted in-inode xattr: invalid ea_ino
[   81.616713][ T7152] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1306: couldn't read orphan inode 15 (err -117)
[   81.629699][ T7152] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.646528][ T7152] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm syz.0.1306: path /268/file1/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[   81.671222][ T7152] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm syz.0.1306: path /268/file1/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[   81.707781][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.957466][ T7158] loop0: detected capacity change from 0 to 512
[   81.999466][ T7163] syz.3.1310[7163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.999523][ T7163] syz.3.1310[7163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.012316][ T7163] syz.3.1310[7163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.012318][ T7158] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.028302][ T7166] loop5: detected capacity change from 0 to 1024
[   82.036084][ T7158] ext4 filesystem being mounted at /269/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.047934][ T7166] EXT4-fs: Ignoring removed orlov option
[   82.070081][ T7166] EXT4-fs: Ignoring removed nomblk_io_submit option
[   82.103497][ T7169] net_ratelimit: 15 callbacks suppressed
[   82.103512][ T7169] netlink: zone id is out of range
[   82.114345][ T7169] netlink: zone id is out of range
[   82.119810][ T7169] netlink: set zone limit has 4 unknown bytes
[   82.146329][ T7166] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.148847][ T7174] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1313'.
[   82.247002][ T7178] syz.0.1308[7178] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.247111][ T7178] syz.0.1308[7178] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.300338][ T7178] syz.0.1308[7178] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.422965][ T5071] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.562804][ T7190] loop2: detected capacity change from 0 to 164
[   82.642956][ T7190] syz.2.1318: attempt to access beyond end of device
[   82.642956][ T7190] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   82.680095][ T7190] syz.2.1318: attempt to access beyond end of device
[   82.680095][ T7190] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[   82.783708][   T29] kauditd_printk_skb: 1007 callbacks suppressed
[   82.783721][   T29] audit: type=1400 audit(1737242789.235:9407): avc:  denied  { unlink } for  pid=5071 comm="syz-executor" name="file0" dev="tmpfs" ino=601 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   82.875809][   T29] audit: type=1400 audit(1737242789.335:9408): avc:  denied  { connect } for  pid=7194 comm="syz.1.1321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   82.919088][   T29] audit: type=1400 audit(1737242789.335:9409): avc:  denied  { name_connect } for  pid=7194 comm="syz.1.1321" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   82.939555][   T29] audit: type=1400 audit(1737242789.335:9410): avc:  denied  { ioctl } for  pid=7195 comm="syz.3.1320" path="socket:[15120]" dev="sockfs" ino=15120 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   82.985285][ T7202] tipc: New replicast peer: 255.255.255.255
[   82.991452][ T7202] tipc: Enabled bearer <udp:syz2>, priority 10
[   82.999206][   T29] audit: type=1400 audit(1737242789.375:9411): avc:  denied  { watch watch_reads } for  pid=7198 comm="syz.5.1331" path="/113/file0" dev="tmpfs" ino=612 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   83.137882][ T7206] loop5: detected capacity change from 0 to 512
[   83.175314][ T7206] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   83.185191][ T7206] EXT4-fs (loop5): orphan cleanup on readonly fs
[   83.201968][ T7206] Quota error (device loop5): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[   83.213017][ T7206] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   83.228888][ T7206] EXT4-fs (loop5): Cannot turn on quotas: error -117
[   83.236207][ T7206] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1323: bg 0: block 40: padding at end of block bitmap is not set
[   83.251294][ T7206] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   83.261845][ T7206] EXT4-fs (loop5): 1 truncate cleaned up
[   83.268378][ T7206] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   83.286930][   T29] audit: type=1326 audit(1737242789.745:9412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   83.334527][   T29] audit: type=1326 audit(1737242789.765:9413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   83.358115][   T29] audit: type=1326 audit(1737242789.765:9414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   83.381651][   T29] audit: type=1326 audit(1737242789.765:9415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bed585d29 code=0x7ffc0000
[   83.448590][ T5071] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.555671][ T7212] loop5: detected capacity change from 0 to 8192
[   84.040134][ T7228] vlan0: entered promiscuous mode
[   84.045504][ T7228] vlan0: entered allmulticast mode
[   84.050692][ T7228] hsr_slave_1: entered allmulticast mode
[   84.114812][ T3180] tipc: Node number set to 4066154800
[   84.115922][ T7230] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1332'.
[   84.168431][ T7230] hsr_slave_1 (unregistering): left allmulticast mode
[   84.245904][ T7230] hsr_slave_1 (unregistering): left promiscuous mode
[   84.401044][ T7240] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1336'.
[   84.410100][ T7240] tipc: Started in network mode
[   84.415014][ T7240] tipc: Node identity 7, cluster identity 5
[   84.420985][ T7240] tipc: Node number set to 7
[   84.555590][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.563418][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.570847][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.581730][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.589371][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.596955][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.604394][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.611851][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.619319][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.626802][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.633889][ T7257] syz.2.1343[7257] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.634199][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.634262][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.634284][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.656845][ T7257] syz.2.1343[7257] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.660479][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.680937][ T7257] syz.2.1343[7257] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.702805][ T7260] loop1: detected capacity change from 0 to 2048
[   84.719356][ T7263] loop5: detected capacity change from 0 to 128
[   84.734581][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.739924][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.741976][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.758343][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.765823][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.773263][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.780763][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.785603][ T7263] syz.5.1346: attempt to access beyond end of device
[   84.785603][ T7263] loop5: rw=34817, sector=97, nr_sectors = 944 limit=128
[   84.788460][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.810877][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.818636][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.826156][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.833568][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.841005][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.848582][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.856082][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.863486][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.870872][ T3372] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   84.879830][ T3372] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID vffffff.fd Device [syz0] on syz1
[   84.908039][ T7268] tmpfs: Unsupported parameter 'huge'
[   85.000637][ T7279] SELinux: security_context_str_to_sid (u) failed with errno=-22
[   85.196356][ T7303] random: crng reseeded on system resumption
[   85.253048][ T7304] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   85.263245][ T7304] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   85.407510][ T7317] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1369'.
[   85.416720][ T7317] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1369'.
[   85.425838][ T7317] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1369'.
[   85.434875][ T7317] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1369'.
[   85.483878][ T7323] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1372'.
[   85.486662][ T7322] loop2: detected capacity change from 0 to 512
[   85.518825][ T7322] EXT4-fs (loop2): 1 orphan inode deleted
[   85.524968][ T7322] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.538164][ T7322] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.549034][   T50] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:3: Failed to release dquot type 1
[   85.563688][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.601915][ T7332] loop2: detected capacity change from 0 to 512
[   85.616126][ T7332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.628884][ T7332] ext4 filesystem being mounted at /261/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.667812][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.094653][ T7345] random: crng reseeded on system resumption
[   87.065755][ T7365] syz.1.1386: attempt to access beyond end of device
[   87.065755][ T7365] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   87.109585][ T7367] __nla_validate_parse: 2 callbacks suppressed
[   87.109621][ T7367] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1387'.
[   87.297194][ T7381] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   87.305471][ T7381] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   87.490891][ T7384] loop1: detected capacity change from 0 to 512
[   87.497637][ T7384] EXT4-fs: Ignoring removed i_version option
[   87.504521][ T7384] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   87.561133][ T7389] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1397'.
[   87.571964][ T7390] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7390 comm=syz.2.1396
[   87.589907][ T7384] EXT4-fs (loop1): 1 truncate cleaned up
[   87.596255][ T7384] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.672526][ T7392] loop2: detected capacity change from 0 to 1024
[   87.685848][ T7392] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   87.707119][ T7392] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   87.716032][ T7392] EXT4-fs (loop2): orphan cleanup on readonly fs
[   87.722985][ T7392] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   87.732709][ T7392] EXT4-fs (loop2): Remounting filesystem read-only
[   87.740138][ T7392] EXT4-fs (loop2): 1 orphan inode deleted
[   87.747003][ T7392] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   87.761586][ T7392] SELinux: (dev loop2, type ext4) getxattr errno 5
[   87.768548][ T7392] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.857170][   T29] kauditd_printk_skb: 650 callbacks suppressed
[   87.857184][   T29] audit: type=1326 audit(1737242794.315:10061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   87.904403][   T29] audit: type=1326 audit(1737242794.345:10062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   87.928374][   T29] audit: type=1326 audit(1737242794.345:10063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   87.952208][   T29] audit: type=1326 audit(1737242794.345:10064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   87.976024][   T29] audit: type=1326 audit(1737242794.345:10065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   87.999971][   T29] audit: type=1326 audit(1737242794.345:10066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   88.023502][   T29] audit: type=1326 audit(1737242794.345:10067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   88.047001][   T29] audit: type=1326 audit(1737242794.345:10068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   88.052895][ T7405] bridge0: Device is already in use.
[   88.070397][   T29] audit: type=1326 audit(1737242794.345:10069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   88.070474][   T29] audit: type=1326 audit(1737242794.345:10070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7807105d29 code=0x7ffc0000
[   88.167253][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.186541][ T7407] loop0: detected capacity change from 0 to 2048
[   88.222490][ T7407] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.224751][ T7409] loop1: detected capacity change from 0 to 128
[   88.297090][ T7409] syz.1.1405: attempt to access beyond end of device
[   88.297090][ T7409] loop1: rw=34817, sector=97, nr_sectors = 944 limit=128
[   88.390326][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.452899][ T7437] ipvlan0: entered promiscuous mode
[   88.459296][ T7437] 8021q: adding VLAN 0 to HW filter on device ipvlan0
[   88.468088][ T7437] team0: Device ipvlan0 is already an upper device of the team interface
[   88.536285][ T7446] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1419'.
[   88.612499][ T7451] loop0: detected capacity change from 0 to 8192
[   88.665920][ T7456] syz.5.1424[7456] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.666036][ T7456] syz.5.1424[7456] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.678177][ T7456] syz.5.1424[7456] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.724223][ T7459] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1425'.
[   88.776341][ T7459] hsr_slave_1 (unregistering): left promiscuous mode
[   89.248220][ T7467] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   89.275786][ T7469] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1429'.
[   89.344957][ T7474] batadv_slave_0: entered promiscuous mode
[   89.395086][ T7478] loop1: detected capacity change from 0 to 128
[   89.477961][ T7478] syz.1.1433: attempt to access beyond end of device
[   89.477961][ T7478] loop1: rw=0, sector=121, nr_sectors = 920 limit=128
[   89.529298][ T7487] ip6_vti0: mtu greater than device maximum
[   89.701018][ T7494] loop2: detected capacity change from 0 to 8192
[   90.099186][ T7517] loop1: detected capacity change from 0 to 512
[   90.125512][ T7517] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   90.136495][ T7517] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.149227][ T7517] ext4 filesystem being mounted at /file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.160648][ T7517] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.298516][ T7494] ==================================================================
[   90.306612][ T7494] BUG: KCSAN: data-race in __writeback_single_inode / xas_clear_mark
[   90.314667][ T7494] 
[   90.316975][ T7494] write to 0xffff888106b0d714 of 4 bytes by task 7503 on cpu 1:
[   90.324593][ T7494]  xas_clear_mark+0x169/0x180
[   90.329340][ T7494]  __folio_start_writeback+0x2d9/0x430
[   90.334805][ T7494]  __block_write_full_folio+0x506/0x8c0
[   90.340374][ T7494]  block_write_full_folio+0x293/0x2b0
[   90.345769][ T7494]  __mpage_writepage+0xcfe/0xe10
[   90.350790][ T7494]  write_cache_pages+0x62/0x100
[   90.355633][ T7494]  mpage_writepages+0x72/0xf0
[   90.360350][ T7494]  fat_writepages+0x24/0x30
[   90.364876][ T7494]  do_writepages+0x1d8/0x480
[   90.370076][ T7494]  file_write_and_wait_range+0x168/0x2f0
[   90.375709][ T7494]  __generic_file_fsync+0x46/0x140
[   90.380821][ T7494]  fat_file_fsync+0x46/0x100
[   90.385407][ T7494]  vfs_fsync_range+0x116/0x130
[   90.390174][ T7494]  generic_file_write_iter+0x185/0x1c0
[   90.395724][ T7494]  iter_file_splice_write+0x5f1/0x980
[   90.401093][ T7494]  direct_splice_actor+0x160/0x2c0
[   90.406208][ T7494]  splice_direct_to_actor+0x302/0x670
[   90.411599][ T7494]  do_splice_direct+0xd7/0x150
[   90.416445][ T7494]  do_sendfile+0x398/0x660
[   90.420855][ T7494]  __x64_sys_sendfile64+0x110/0x150
[   90.426057][ T7494]  x64_sys_call+0xfbd/0x2dc0
[   90.430648][ T7494]  do_syscall_64+0xc9/0x1c0
[   90.435152][ T7494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.441054][ T7494] 
[   90.443372][ T7494] read to 0xffff888106b0d714 of 4 bytes by task 7494 on cpu 0:
[   90.450917][ T7494]  __writeback_single_inode+0x210/0x850
[   90.456467][ T7494]  writeback_single_inode+0x16c/0x3f0
[   90.461856][ T7494]  sync_inode_metadata+0x5c/0x90
[   90.466805][ T7494]  __generic_file_fsync+0xed/0x140
[   90.471936][ T7494]  fat_file_fsync+0x46/0x100
[   90.476535][ T7494]  vfs_fsync_range+0x116/0x130
[   90.481311][ T7494]  generic_file_write_iter+0x185/0x1c0
[   90.486778][ T7494]  iter_file_splice_write+0x5f1/0x980
[   90.492159][ T7494]  direct_splice_actor+0x160/0x2c0
[   90.497283][ T7494]  splice_direct_to_actor+0x302/0x670
[   90.502651][ T7494]  do_splice_direct+0xd7/0x150
[   90.507412][ T7494]  do_sendfile+0x398/0x660
[   90.511836][ T7494]  __x64_sys_sendfile64+0x110/0x150
[   90.517055][ T7494]  x64_sys_call+0xfbd/0x2dc0
[   90.521653][ T7494]  do_syscall_64+0xc9/0x1c0
[   90.526161][ T7494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.532147][ T7494] 
[   90.534460][ T7494] value changed: 0x0e000021 -> 0x04000021
[   90.540171][ T7494] 
[   90.542569][ T7494] Reported by Kernel Concurrency Sanitizer on:
[   90.548709][ T7494] CPU: 0 UID: 0 PID: 7494 Comm: syz.2.1440 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   90.559384][ T7494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   90.569487][ T7494] ==================================================================