last executing test programs:

3m24.215822935s ago: executing program 3 (id=4520):
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
pwritev(r1, &(0x7f0000000ec0)=[{0x0}, {&(0x7f0000000b00)="0000223b1a4d8b9ec192ecec702ff80722878c2d70bbef881626c995e63c4ed5c90ba624425eb14740e16caecff245098ed693d7b1c28b7b7fb7974bcbc1eeb6b7f8881dae9975a34158947e18882758619ce2539645a38db1fee8638475c1a27efb42607522515525842bb48c269f433d5766962397bf8b92ff00000085dfb4c39ac67f1cf2edb62d15f2286984c42cfc", 0x91}, {&(0x7f0000000d40)="783a067fc6d915f05db1a7c9974e9834594400dea6af865aac25997b8299c1ae3d6541c5ef2b8a33f220f0a0ca4f4d60b460ece44ec33c7bfdb7d846d8efcf48641508530fb1b0bdd69b5600a0dac68404be7dfa732869ed498c737c14db97c5d8bc77f2f2bacb93869a1ac52ec49be71208d9173b9334fbf9e489061bdd99260de95e034cf904f5721356d04bfe1b75c80de9073daf3e33cc5e43af7d01abc1ce196e0a4ae28433dd3c90a4c429dc7e7d59df5cf4713345532942afaac6fb3b734bab6e941aa9445dc7cf2594a4fe4c86b29283344086bc4b78b2965d539151e8ae602eadf0", 0xe6}, {&(0x7f0000000e40)="b3db92b30aa30d31cea6e0679b830463b129d9a92e8eb677ef616507718e0921d5a81bdc1382d5a5faa3be3055d0838a38e6862854fe7e3b591af6f1b2dd65b73c9d151b1d5127b584a750af", 0x4c}, {&(0x7f0000006b80)="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", 0x1000}], 0x5, 0x0, 0x81)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000006800)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f00000002c0)=""/158, 0x9e}, {0x0}, {0x0}, {&(0x7f0000000580)=""/143, 0x8f}, {&(0x7f0000000640)=""/249, 0xf9}], 0x5, &(0x7f00000007c0)=""/141, 0x8d}, 0x1}, {{0x0, 0x0, &(0x7f0000002240), 0x0, &(0x7f0000002280)=""/198, 0xc6}, 0x80000000}, {{&(0x7f0000002380)=@phonet, 0x80, &(0x7f0000003880)=[{&(0x7f0000002400)=""/159, 0x9f}, {0x0}, {&(0x7f0000002680)}, {0x0}, {&(0x7f0000002740)=""/4096, 0x1000}, {&(0x7f0000000c80)=""/133, 0x85}, {&(0x7f0000003800)=""/17, 0x11}, {&(0x7f0000003840)=""/59, 0x3b}], 0x8, &(0x7f0000003940)=""/147, 0x93}, 0xffff63f3}, {{0x0, 0x0, &(0x7f0000004dc0)=[{&(0x7f0000003ac0)=""/247, 0xf7}, {&(0x7f0000000a00)=""/93, 0x5d}, {&(0x7f0000003c40)=""/8, 0x8}, {&(0x7f0000003d00)=""/4096, 0x1000}, {&(0x7f0000004d00)=""/132, 0x84}], 0x5, &(0x7f0000004e40)=""/68, 0x44}, 0x5}, {{&(0x7f0000004ec0)=@generic, 0x80, &(0x7f0000005080)=[{&(0x7f0000000a80)=""/99, 0x63}, {&(0x7f0000003c80)=""/26, 0x1a}], 0x2, &(0x7f0000000380)=""/36, 0x24}, 0xaf}, {{&(0x7f0000005100)=@nfc_llcp, 0x80, &(0x7f00000063c0)=[{0x0}, {&(0x7f0000005240)=""/4092, 0xffc}], 0x2}, 0x6}, {{&(0x7f0000006480)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x80, 0x0, 0x0, &(0x7f00000067c0)=""/22, 0x16}, 0xe}], 0x7, 0x141, 0x0)
r2 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r2, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x0)

3m24.004759102s ago: executing program 3 (id=4529):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000100000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf76}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xf, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r2}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000030601010000000020000000010000000500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x10000000)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
add_key$fscrypt_v1(0x0, &(0x7f0000000180)={'fscrypt:', @desc3}, 0x0, 0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_netdev_private(r5, 0x8949, &(0x7f0000000180))
connect$can_bcm(r4, &(0x7f0000000000), 0x10)
io_submit(0x0, 0x1, &(0x7f0000000100)=[&(0x7f00000000c0)={0x400000, 0x0, 0x0, 0x1, 0x0, r4, &(0x7f0000000200)="0500000093c21faf16da39de706f646800580f02000000003f420f000000000000580f02000000003f420f00000000000029ffffff000000", 0x20000238}])

3m23.912500549s ago: executing program 3 (id=4530):
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, 0x0, 0x0)
socket(0x10, 0x800, 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x3000010, &(0x7f0000000100)={[{@errors_remount}, {@nobh}]}, 0x1, 0x519, &(0x7f00000009c0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000080000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x24, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000380)='/sys/power/pm_debug_messages', 0x4000, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000052f6f37e7f0d6eafed903b8308a496f0cd9e749e0a6a26de1f6789e0c31e6600006408a1236a584217e95be74be6db21075b8d75e8a655cd9451fb03cf515a52e216b78eab1b35d0af89159027646298680e04a4325a830795b1887f4a6edbcfa6cea9ba1080a351bcaab82db02a33ae08fccea113e1fa00"/153, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000e40)={&(0x7f0000001040)='kfree\x00', r4}, 0x18)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001080)=@newtaction={0x1d4, 0x30, 0x1, 0x0, 0x0, {}, [{0x1c0, 0x1, [@m_connmark={0x174, 0x8, 0x0, 0x0, {{0xd}, {0x74, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x6ee, 0x391, 0x7, 0x7, 0x2}, 0x4}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x4, 0x7, 0x4, 0x9516}, 0x101}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8001, 0x7, 0x3, 0xb9f, 0x8000}}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x9, 0x4, 0x4, 0x6, 0x70}, 0x6}}]}, {0xd3, 0x6, "fcfd2552b8f415dff51d34696b40192087fbe09de81697126cdebb4c9f91fa33efb3361eddf8abdde7f7d27da5414c3956ab3f28dea1becfb8dd10220be2c8ee73a2b30fa57ff64f9ef5181faf9eddb64f1735ac51faaf72071acaa78ff0586c4587dbc8b37d93774ca781272ad0b57892ae458600dc48de26bdb76ede36ba12d252beba6e089ca9d5702bf85fc7d56513eb11ea696cb98f85f719a00ed51048f0cec0dd4f4231e5a51f4b67c703679b106e905c64a6ddf010e4f8f1ab51dee91a9722b8ac8aa1e891663d872da4b8"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_ife={0x48, 0x1e, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xfffffffffffffffe}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x1d4}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000002000000000000000100000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000001000000850000000000000000"], &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
write$cgroup_int(r1, &(0x7f0000000040)=0xfe8e, 0x12)
r5 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000035c0)="5c00000013006bcd9e3fe3dc4e", 0xd}], 0x1, 0x0, 0x0, 0x1f000801}, 0x240000c0)
setreuid(0x0, 0xee00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f0000000400)=ANY=[])
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0041, &(0x7f0000000940)={[{@errors_continue}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@acl}, {@noinit_itable}, {@norecovery}, {@nodiscard}]}, 0xfe, 0x47d, &(0x7f0000000a40)="$eJzs3MtvVNUfAPDvnZmWlsev/SE+QNAqGomPlpaHLNxoNHGh0UQXGFd1WggyUENrIoQousAYF4bEvXFp4l/gSjdGXZm41b0hMYYN6GrMnXtvH8NMacu0U5jPJxk45547Ped7zz2955470wB61kj6TxKxPSJ+j4ihLLt0h5HsvxvXLlb/uXaxmkS9/sbfSWO/69cuVvMfMf++bdmGej3Pb2lR7+W3IyZrtelzeX5s7sx7Y7PnLzxz6szkyemT02cnjh07fGhf/9GJIx2JM43r+p4PZ/bufvmtK69Wj1955+dv0/Zuz8uLODppJDu6LT3e6cq6bMeidFLpYkNYlbTf0u7qa4z/oSjH4HzZULz0SVcbB6yrer1eb3V9zl2qA3exJLrdAqA7igt9ev9bvDZo6rEp/PV8dgOUxn0jf2UllSjl+/Q13d920kBEHL/071fpK9ZpHQIAYLHv0/nP063mf6W4b9F+/8ufoQxHxP8jYmdE3BMRuyLi3ojGvvdHxAOrrL/5CcnN85/S1TUFtkLp/O+5/NnW0vlfMfuL4XKe29GIvy85cao2fTA/Jgeib0uaH1/ylqV+ePG3L5q3fZ4vs48smv+lr7T+Yi6Yt+NqpWmBbmpybrIjwafxfxyxp9Iq/iSKxzhJROyOiD1rrOPUk9/sbVd26/iX0YHnTPWvI57I+v9SNMVfSNo+nxx/9ujEkbGBqE0fHCvOipv98uvl19vVf1vxd0Da/1tbnv9Z/Ok9YjIQMXv+wunG89rZ1ddx+Y9Pq0mbsl1rPP/7kzcb6f582weTc3PnxiP6k1fS7OCS7RML7y3yxf5p/Af2tx7/O7Pbs8aReDAi0pN4X0Q8FBEP5333SEQ8GhH7l4n/pxcee7ddWfv+X2ZVvoPS+KeW6f/0V16aWuj/1SfKp3/8rl399RX1/+FG6kC+ZSW//1bawNs5dgAAAHCnKDU+A5+URufTpdLoaPYZ/l2xtVSbmZ176sTM+2enss/KD0dfqVjpGlq0Hjqerw0X+Ymm/KF83fjL8mAjP1qdqU11O3jocdvajP/Un+Vutw5Yd76vBb3rFuN/eKPaAWw813/oXcY/9C7jH3pUf+vNH210O4CuWP31f2Bd2gFsPPN/6F3GP/Qu4x96UtvvxpeyonKs6Sv/d2qisjmacT5aFA1uhoYtJKLUsR+4Oc6x1z7LhsTmOLwLicqK/5jFGhNbWncKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAXeG/AAAA///vT+TL")
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000400)={0x0, 0x8001, 0xfffd}, 0x8)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x70, 0x103301)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000080)={0x0, <r6=>0x0})
socket$vsock_stream(0x28, 0x1, 0x28)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x9, 0x3, 0x7, 0x6, 0x2, r6})
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRESOCT=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r7, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000480)={&(0x7f0000000580)={0x8c, r8, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x5c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x188f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xff}]}]}, 0x8c}}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r9}, 0x10)

3m23.848806494s ago: executing program 3 (id=4531):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000016c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x840e, &(0x7f0000001080)={[{@discard}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@bsdgroups}, {@quota}]}, 0x3, 0x43a, &(0x7f0000001100)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f00000004c0)=[{0x28, 0x0, 0x5, 0xfffff034}, {0x80000006, 0x0, 0x12, 0xf9}]}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
sendmmsg$inet(r2, &(0x7f0000006740)=[{{&(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000cc0)="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", 0x179}, {&(0x7f0000003380)="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", 0x114}], 0x2}}, {{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000ec0)="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", 0x31f}], 0x1}}], 0x3, 0x2000c048)
sendto$inet(r2, &(0x7f0000000140)="e9", 0x1, 0x0, 0x0, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x142ba3)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/oops_count', 0x8a883, 0x2)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000000080)={r4, 0x0, {0x0, 0x0, 0x0, 0x7, 0x4000000000000ffd, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x9]}})
setsockopt$inet_msfilter(r4, 0x0, 0x29, &(0x7f0000000000)={@private=0xa010100, @multicast2, 0x0, 0x5, [@local, @loopback, @broadcast, @local, @local]}, 0x24)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r5 = getpid()
r6 = syz_pidfd_open(r5, 0x0)
setns(r6, 0x24020000)
r7 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = syz_pidfd_open(r7, 0x0)
setns(r8, 0x24020000)
mount(0x0, &(0x7f0000000140)='.\x00', &(0x7f00000000c0)='sysfs\x00', 0x989, 0x0)
r9 = open_tree(0xffffffffffffff9c, &(0x7f0000000e00)='./file0\x00', 0x9001)
socket$inet_udp(0x2, 0x2, 0x0)
renameat2(r9, &(0x7f0000000140)='./file0\x00', r9, &(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

3m23.671895178s ago: executing program 3 (id=4535):
symlink(0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r3 = accept(r0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20008045, &(0x7f00000001c0)={0xa, 0x2, 0x1000, @empty}, 0x1c)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000080)={0x0, 0xfffffffffffffc7d, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x10)
recvfrom(r2, 0x0, 0x0, 0x4112, 0x0, 0x0)

3m23.0054368s ago: executing program 3 (id=4541):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x89901)
statx(r0, &(0x7f0000000340)='./file0\x00', 0x4000, 0x40, &(0x7f00000006c0))
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast1}, 0x10)
sendto$inet(r5, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01dfffffff9a26000000210000000c00018008000100", @ANYRES32=r2], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000240)={0x80, <r7=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES64=r0, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x15, 0x7, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7020000020000008500000086000000954e169c1f7e434994ebe91c19f926c036832dd3633f25fc184ab61e12eb7af6a315e01bf8b9beea668b9b42d1536cfe20625da32a4744adf451e1834948eb6f22d292654f2e255e3c36dc8bd0f54b5c7fe32b5ea84c665bf25e176eddfeb0415ad4ecab88c6a2135d1c7d685e54a73fd3a4505aefda25a8c31544bb14a2190e4faf702d557e7dae3b39e189d7b628766b4c62d1de4a978a739b46590be4d819ec8b91a0e7fb9cb6b0cfe063d8a6ba51c2fe77"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = add_key$fscrypt_provisioning(&(0x7f0000000080), &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0xb, 0x0)
fstat(r0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, <r10=>0x0, <r11=>0x0})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x28007c2, &(0x7f0000000a40)={[{@user_xattr}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid={'resgid', 0x3d, r11}}, {@acl}, {@dax_always}]}, 0x0, 0x483, &(0x7f0000001040)="$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")
quotactl_fd$Q_SETQUOTA(0xffffffffffffffff, 0xffffffff80000800, r10, &(0x7f0000000180)={0xbf0, 0xd4b2, 0x2, 0x2, 0xfffffffffffffff9, 0x5, 0x5, 0x5, 0x100})
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000005c0)={{{@in6=@loopback, @in6=@ipv4={'\x00', '\xff\xff', @local}, 0x4e21, 0x6, 0x4e23, 0x3, 0x0, 0x0, 0x60, 0x0, 0x0, r10}, {0x1, 0x1, 0x8, 0x800, 0xff, 0x8001, 0x6, 0x3}, {0x5, 0x3ff, 0x7, 0x100}, 0x3, 0x6e6bb0, 0x0, 0x1, 0x0, 0x2}, {{@in=@empty, 0x4d3, 0x2b}, 0x2, @in=@broadcast, 0x3504, 0x0, 0x2, 0x0, 0x1db, 0x5, 0x5}}, 0xe8)
getresgid(&(0x7f0000000340), &(0x7f0000000580)=<r12=>0x0, &(0x7f00000005c0))
keyctl$chown(0x4, r9, r10, r12)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3m23.00495394s ago: executing program 32 (id=4541):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x89901)
statx(r0, &(0x7f0000000340)='./file0\x00', 0x4000, 0x40, &(0x7f00000006c0))
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast1}, 0x10)
sendto$inet(r5, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01dfffffff9a26000000210000000c00018008000100", @ANYRES32=r2], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000240)={0x80, <r7=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES64=r0, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x15, 0x7, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7020000020000008500000086000000954e169c1f7e434994ebe91c19f926c036832dd3633f25fc184ab61e12eb7af6a315e01bf8b9beea668b9b42d1536cfe20625da32a4744adf451e1834948eb6f22d292654f2e255e3c36dc8bd0f54b5c7fe32b5ea84c665bf25e176eddfeb0415ad4ecab88c6a2135d1c7d685e54a73fd3a4505aefda25a8c31544bb14a2190e4faf702d557e7dae3b39e189d7b628766b4c62d1de4a978a739b46590be4d819ec8b91a0e7fb9cb6b0cfe063d8a6ba51c2fe77"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = add_key$fscrypt_provisioning(&(0x7f0000000080), &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000840)=ANY=[@ANYBLOB="030000000000000e132821b90c1f11d94d08609d12aea7512eeedf886a6053b8d490ec7161fd2b39d127526b04d2d9f4e43afc47e69087669f098508670377533273951e25967b142289f3755562114cea5333b46a40597c80316e70025e9b482bd3e71492b0f690273d587b76d8d69cdbc5efd29ff1e63accd46b0afd8ba3627bff729c688c3f5ce2695033278525f4529d5b1a68cee94eae4268171152a3215d061cd37923872eb9a8f41cf9ab31678a82ea0d2eb1628351017705f8030895c7a3bd8ac9315aa80df61ab0046997235716b88d0ab379ed4cc57bf8e3aba9d1b0ac25b40fb5425f1660fc65aa6082a056c7c2eab6a736614a11705470c9f8fe8f5d3af7b3d1937118e7e7f1189db596db48344da5f8c097ed6a2af6b37d9975c6d23f8e04429cab53"], 0xb, 0x0)
fstat(r0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, <r10=>0x0, <r11=>0x0})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x28007c2, &(0x7f0000000a40)={[{@user_xattr}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid={'resgid', 0x3d, r11}}, {@acl}, {@dax_always}]}, 0x0, 0x483, &(0x7f0000001040)="$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")
quotactl_fd$Q_SETQUOTA(0xffffffffffffffff, 0xffffffff80000800, r10, &(0x7f0000000180)={0xbf0, 0xd4b2, 0x2, 0x2, 0xfffffffffffffff9, 0x5, 0x5, 0x5, 0x100})
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000005c0)={{{@in6=@loopback, @in6=@ipv4={'\x00', '\xff\xff', @local}, 0x4e21, 0x6, 0x4e23, 0x3, 0x0, 0x0, 0x60, 0x0, 0x0, r10}, {0x1, 0x1, 0x8, 0x800, 0xff, 0x8001, 0x6, 0x3}, {0x5, 0x3ff, 0x7, 0x100}, 0x3, 0x6e6bb0, 0x0, 0x1, 0x0, 0x2}, {{@in=@empty, 0x4d3, 0x2b}, 0x2, @in=@broadcast, 0x3504, 0x0, 0x2, 0x0, 0x1db, 0x5, 0x5}}, 0xe8)
getresgid(&(0x7f0000000340), &(0x7f0000000580)=<r12=>0x0, &(0x7f00000005c0))
keyctl$chown(0x4, r9, r10, r12)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m52.473206887s ago: executing program 0 (id=6159):
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x8}}, './file0\x00'})
getsockopt$inet6_udp_int(r0, 0x11, 0xf3549ea56401bdd7, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x7, 0xc00000, 0x7, 0x4c200, r0, 0x8, '\x00', 0x0, r0, 0x4, 0x1, 0x4, 0x2, @value=r0}, 0x50)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000001c0)=<r4=>0x0)
sendmsg$NFC_CMD_SE_IO(r2, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x8c, r3, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@NFC_ATTR_SE_APDU={0x6f, 0x19, "b72b06f092768b78b62cd6180c219e6f94295ba668aafa8a7cae525627714f116801ccd6c5a2d24654f464440cb9315176ce8f6d137ac18c1cb4a76f6c7f69c40f69ca9ab494e5bd0bebbef3b6c21e17040490bd6c9a461f1c436a3664a1074e53b76c8474b1cead50ac98"}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r4}]}, 0x8c}, 0x1, 0x0, 0x0, 0x24004084}, 0x40022)
r5 = dup(r1)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000380), r2)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r2, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x28, r6, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x11}, 0x0)
r7 = syz_genetlink_get_family_id$gtp(&(0x7f00000004c0), r5)
sendmsg$GTP_CMD_DELPDP(r0, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x34, r7, 0x202, 0x70bd29, 0x25dfdbfb, {}, [@GTPA_FLOW={0x6, 0x6, 0x3}, @GTPA_O_TEI={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @loopback}, @GTPA_MS_ADDRESS={0x8, 0x5, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r5, 0xc018937e, &(0x7f00000005c0)={{0x1, 0x1, 0x18, <r8=>r1}, './file0\x00'})
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000640)={'wpan4\x00', <r9=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r2, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x48, r6, 0x300, 0x70bd2d, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x8}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x9}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x10}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r9}]}, 0x48}, 0x1, 0x0, 0x0, 0xc000}, 0x40)
getdents64(r8, &(0x7f0000000780)=""/144, 0x90)
syz_genetlink_get_family_id$nfc(&(0x7f0000000840), 0xffffffffffffffff)
mlockall(0x0)
socketpair(0x0, 0x4, 0x5, &(0x7f0000000880)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
io_uring_enter(r5, 0x329d, 0xb710, 0x0, &(0x7f00000008c0)={[0x6]}, 0x8)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r5, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x20, 0x140f, 0x200, 0x70bd25, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x20004004)
sendmsg$NL80211_CMD_DEL_INTERFACE(r10, &(0x7f0000000a80)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000a40)={0x0}}, 0x24004011)
r12 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000b00), r5)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r11, &(0x7f0000000bc0)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x14, r12, 0x100, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000001}, 0x8c0)
r13 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000c00)={0x1b, 0x0, 0x0, 0x10000, 0x0, r0, 0xfffffffd, '\x00', 0x0, r8, 0x5, 0x2, 0x5}, 0x50)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000002000)={r5, 0x20, &(0x7f0000001fc0)={&(0x7f0000000ec0)=""/4096, 0x1000, <r14=>0x0, &(0x7f0000001ec0)=""/237, 0xed}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000002080)={0x1e, 0x22, &(0x7f0000000c80)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2d12, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r13}}, {}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @alu={0x4, 0x1, 0x5, 0x0, 0x0, 0x1, 0x8000000000000008}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @exit, @ldst={0x0, 0x1, 0x2, 0xa, 0x0, 0x100, 0x8}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000dc0)='GPL\x00', 0x3, 0x6e, &(0x7f0000000e00)=""/110, 0x41100, 0x72, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000e80)={0x8, 0x3}, 0x8, 0x10, 0x0, 0x0, r14, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000002040)=[{0x5, 0x2, 0x1, 0x6}, {0x0, 0x5, 0xa, 0x2}], 0x10, 0x2}, 0x94)
r15 = socket$nl_generic(0x10, 0x3, 0x10)
r16 = syz_genetlink_get_family_id$tipc(&(0x7f0000002180), r5)
sendmsg$TIPC_CMD_SET_LINK_PRI(r15, &(0x7f0000002240)={&(0x7f0000002140)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000002200)={&(0x7f00000021c0)={0x34, r16, 0x100, 0x70bd28, 0x25dfdbfd, {{}, {}, {0x18, 0x18, {0x0, @bearer=@l2={'eth', 0x3a, 'syzkaller1\x00'}}}}, ["", "", "", "", "", ""]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x840)

1m52.389701773s ago: executing program 0 (id=6163):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f00000003c0)={0x6}, 0x1)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000400)={0x0, r1}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x2000013a, &(0x7f00000009c0)=ANY=[@ANYRES16=r1], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000e8f70000000000ff000044850000000e000000650000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
bind$unix(0xffffffffffffffff, &(0x7f0000000200)=@abs={0x1, 0x0, 0x4e22}, 0x6e)
bind$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r3 = socket(0x10, 0x3, 0x6)
r4 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000040)={'team0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0x0, 0xffff}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x2, 0x2], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x20008010)

1m52.389370133s ago: executing program 0 (id=6164):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="12000000070000000400000002"], 0x48)
socketpair(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r0, &(0x7f0000000280), &(0x7f0000000400)=@udp=r1}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000240)={r0, &(0x7f0000000600), &(0x7f0000000340)=@udp=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$key(0xf, 0x3, 0x2)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000300), 0x40200, 0x0)
readlinkat(r5, &(0x7f0000000380)='./file0\x00', &(0x7f0000000500)=""/138, 0x8a)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r2}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r6=>0x0})
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000040)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x4, '\x00', r6, 0xffffffffffffffff, 0x5, 0x0, 0x5}, 0x50)

1m52.154259511s ago: executing program 0 (id=6169):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x1, 0x21b, &(0x7f0000000300)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x18)
statx(0xffffffffffffffff, 0x0, 0x4000, 0x800, 0x0)
r0 = msgget$private(0x0, 0x100)
msgsnd(r0, &(0x7f0000002900)=ANY=[@ANYBLOB="03"], 0xfd1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1, 0x0, 0x4}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000580000/0x4000)=nil)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x800, 0x0, 0x0, 0x1}, 0x20)
msgctl$IPC_SET(r0, 0x1, &(0x7f0000002880)={{0x2, 0x0, 0x0, 0x0, 0x0, 0x1a, 0x7}, 0x0, 0x0, 0x1, 0x1414, 0x10001, 0x0, 0xffffffffffffffca, 0x8, 0xff})
msgsnd(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="0100000000"], 0xcc, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="070000b27f7e0f7f0665feff00021b6746b7d3104f6ad8a08d03126a7c7a819abbb5bc21191425c419e1b8"], 0x50)
r7 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r6}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYRESHEX=r7, @ANYRESHEX=r6, @ANYRESHEX, @ANYRESOCT=r2, @ANYRES8=r6, @ANYRES64=r0, @ANYBLOB="d4b759ace77389e6d1ce983f86fa34fdec2db8a53120615128fac9e707782f6000a24056d9bb516d5c68c6f154d0c4e62c90eb145a2f24c5e7dfbbc4d12cb4f5f82beb4823b1a128041d8867774642b0974f99", @ANYRES32=r7], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m51.107777894s ago: executing program 0 (id=6178):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000db00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000007000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500009256bc6cafe3629ccaf07e4665aa5de30000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x2000, 0x10000, 0x0, 0x4, 0x8, 0x20005, 0x3, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mincore(&(0x7f00006fb000/0x2000)=nil, 0x2000, &(0x7f0000000980)=""/237)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000680)={0x1, &(0x7f0000000480)=[{0x200000000006, 0x0, 0x3, 0x7ffc0002}]})
mincore(&(0x7f00006fb000/0x2000)=nil, 0x2000, &(0x7f0000000280)=""/150)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$eJzs3c1vVFUbAPDnzkwLpe9rKzEqLkyjIZAoLS1g8GMBe0LwY+fGSgtBho/QGi2aWBLcmBg3LkhcuRD/CyW6dWXiwoUbV4akGsNGY3TMnbkzDO1MOy0dbu39/ZLbOeeeOz3nQp85Z+49ZyaAwhpLf5Qi9kTE5SRipK2sElnhWOO4O7+/fzrdkqjVXv0tiSTb1zw+yR6Hsyf/PRLx/TdJ7C6vrHdu4er56Wp19kqWn5i/cHlibuHqgXMXps/Onp29OPXc1NEjh48cnTx4X+dXakufuP7WOyMfnXz9i8/+Sia//OlkEsfi1zONsvbz2CxjMRZ/1GofLN+f/rse3ezKclJu/Z3clSzfwZZVyWJkMCIei5Eot/1vjsSHL+faOKCvaklEDSioRPxDQTXHAc339r29Dy71eVQCPAhLx9OfAx3iv9K4NhijMRARe5c9r8MlvQ1J6/ju25PX0y36dB0O6Gzx2o4stTz+k3psjsbOem7XndI913nTEcCp7DHd/8oG6x9blhf/8OAsXouIxzuN/9eO/zfa4v/NDdYv/gEAAAAAAGDz3DoeEc92uv9Xyu7N7Yyn6vf/ksb9vx/urhA8tgn1r33/r3R7E6oBOlg6HvFSx/m/rTm+o+Us9//GbMDkzLnq7MGIeCgi9sfAjjQ/uUodBz7efaNbWfv8v3RL62/OBczacbuy497nzEzPT9/POQMNS9cinqh0n/+T9v9Je/+fSV8PLvdYx+69N091K1s7/oF+qX0esa9j/5+0jklW/3yOifp4YKI5Kljpyfc++apb/eIf8pP2/7tWj//RpP3zeubW9/sHI+LQQqXWrXyj4//B5LVy8/en3p2en78yGTGYnFi5f2p9bYbtqhkPzXhJ43//06tf/2uN/9vicCgiFnus89F/hn/uVqb/h/yk8T+zrv5//Ympm6Nfd6u/t/7/cL1P35/tcf0PVtdrgObdTgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4LypFxP8iKY230qXS+HjEcEQ8ErtK1Utz88+cufT2xZm0rP79/6XmN/2ONPJJ8/v/R9vyU8vyhyLi4Yj4tDxUz4+fvlSdyfvkAQAAAAAAAAAAAAAAAAAAYIsY7rL+P/VLOe/WAX1XyR7FOxRPJe8GALkR/1Bc4h+KS/xDcYl/KK4Nxr/bBbAN6P+hqAZ6O2xnv9sB5EH/DwAAAAAA28qtF5+/kUTE4gtD9S01mJW1bgwO5dU6oJ9KeTcAyI05vFBcpv5AcfU4+RfYxpJW6s9ap/Lus/+T/jQIAAAAAAAAAAAAAFhh355bP665/h/Ylqz/h+Ky/h+Ky/p/KC7v8YG1VvFb/w8AAAAAAAAAAAAA+ZtbuHp+ulqdvSIhsdUSAxGxBZqRQ2Iw//DM+YUJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo+TcAAP//Swsk/Q==")
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r4=>0x0})
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r5, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x6, 0x4, &(0x7f00000001c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x10000001, 0x0, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r6 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r7, 0x11b, 0x3, &(0x7f0000000380)=0x20000, 0x4)
setsockopt$XDP_UMEM_REG(r7, 0x11b, 0x4, &(0x7f0000000100)={&(0x7f0000000000)=""/5, 0x204000, 0x1000}, 0x20)
r8 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522eb, 0x0, {0x0, 0x0, 0x74, r4, {0x4, 0x4}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x4000010)

1m48.006868136s ago: executing program 0 (id=6229):
open(0x0, 0x64042, 0x1e9)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = syz_pidfd_open(0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
fstat(0xffffffffffffffff, &(0x7f0000000600))
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYRESOCT=r2, @ANYRES32, @ANYRESOCT, @ANYRES32=r0, @ANYBLOB="bf796860a5dabe7255ee0617548b3432bd9329604ca1005fc7a61969924779d173b70910262c5e89fadba4f198bfe7d42cc6bab20cf377b7dd6e33008d32f67118c021a12220d123bbd5ce78608f2c77e4b757cd2505a45b59b3ca3f4f80150aeede04845406c4b16c5af5b954c858c6d4d51cdbde36ff5b2e8f0090450c20469b068b7a36e9ad2bc577dbbd40a923994cbf57f09ce3021bbd41c53628aa1581e3bd7c88ff613f384dde75bd206be0c1", @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)

1m47.976765179s ago: executing program 33 (id=6229):
open(0x0, 0x64042, 0x1e9)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = syz_pidfd_open(0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
fstat(0xffffffffffffffff, &(0x7f0000000600))
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYRESOCT=r2, @ANYRES32, @ANYRESOCT, @ANYRES32=r0, @ANYBLOB="bf796860a5dabe7255ee0617548b3432bd9329604ca1005fc7a61969924779d173b70910262c5e89fadba4f198bfe7d42cc6bab20cf377b7dd6e33008d32f67118c021a12220d123bbd5ce78608f2c77e4b757cd2505a45b59b3ca3f4f80150aeede04845406c4b16c5af5b954c858c6d4d51cdbde36ff5b2e8f0090450c20469b068b7a36e9ad2bc577dbbd40a923994cbf57f09ce3021bbd41c53628aa1581e3bd7c88ff613f384dde75bd206be0c1", @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)

2.785210292s ago: executing program 2 (id=8024):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r2}, 0x10)
wait4(r0, 0x0, 0x40000000, 0x0)

2.675191651s ago: executing program 5 (id=8025):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r5 = accept4(r3, 0x0, 0x0, 0x0)
sendto(r5, &(0x7f0000000000)="00c8", 0x2, 0x0, 0x0, 0x0)
recvfrom(r4, &(0x7f00000001c0)=""/62, 0x3e, 0x10120, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x200000000000000)

2.617441855s ago: executing program 5 (id=8026):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="757466383d312c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c756e695f786c6174653d302c73686f72746e616d653d77696e39352c000f3556feecb6412e00c80bdee16891f8bf67c9f2380e4ccafc9da9def41b05c1dfb2cfa24e43aedf5536d3bce06ddda97c586bc37fab5366b1ab6fbde3785fdd0fc4e7df753a0e2658aa5e88e1d38366c7908a7b2b678ee4b4bfc7aafa2101c157745926241af5ac30189eced78c1611b972d03bfef046f4adcada230ef0ac02ede79fb7d92a8354670c01cb80361c1fde2cef3204a182323c318e10ef11cb24c435d589b17a396377800f00af7fcb5394000000000000000000000000000000b77852afdd71c74bb5b7c5711237cc59195e4aeb5878987cefd666ef6b56a81553b8c7ffdcf6658d8a70ad52a23a68b6d0e5ea"], 0x1, 0x21b, &(0x7f0000000300)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x18)
statx(0xffffffffffffffff, 0x0, 0x4000, 0x800, 0x0)
r0 = msgget$private(0x0, 0x100)
msgsnd(r0, &(0x7f0000002900)=ANY=[@ANYBLOB="03"], 0xfd1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1, 0x0, 0x4}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000580000/0x4000)=nil)
r6 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x800, 0x0, 0x0, 0x1}, 0x20)
connect$inet6(r6, 0x0, 0x0)
msgctl$IPC_SET(r0, 0x1, &(0x7f0000002880)={{0x2, 0x0, 0x0, 0x0, 0x0, 0x1a, 0x7}, 0x0, 0x0, 0x1, 0x1414, 0x10001, 0x0, 0xffffffffffffffca, 0x8, 0xff})
msgsnd(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="0100000000"], 0xcc, 0x0)
msgctl$IPC_RMID(r0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="070000b27f7e0f7f0665feff00021b6746b7d3104f6ad8a08d03126a7c7a819abbb5bc21191425c419e1b8"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESHEX=r7, @ANYRESHEX, @ANYRESOCT=r2, @ANYRES8=r7, @ANYRES64=r0, @ANYBLOB="d4b759ace77389e6d1ce983f86fa34fdec2db8a53120615128fac9e707782f6000a24056d9bb516d5c68c6f154d0c4e62c90eb145a2f24c5e7dfbbc4d12cb4f5f82beb4823b1a128041d8867774642b0974f99", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.612094485s ago: executing program 2 (id=8027):
r0 = socket$inet6(0xa, 0x3, 0x3c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x2400c004)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000f00)=ANY=[@ANYBLOB="000202010000000000"], 0x18)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x201, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0xc, 0x4000007}, 0x180, 0xa88, 0x8406, 0x5, 0x0, 0x3c, 0xffff, 0x0, 0x0, 0x0, 0x46}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0xa)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20002)
r4 = fcntl$dupfd(r3, 0x0, r3)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xb, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kfree\x00', r5}, 0x10)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0xf)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000004700)={'team0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r8, {}, {0xe}, {0xfff1, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)

2.534200291s ago: executing program 2 (id=8028):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000800)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mincore(&(0x7f00006fb000/0x2000)=nil, 0x2000, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000680)={0x1, &(0x7f0000000480)=[{0x200000000006, 0x0, 0x3, 0x7ffc0002}]})
mincore(&(0x7f00006fb000/0x2000)=nil, 0x2000, &(0x7f0000000280)=""/150)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140))
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x6, 0x4, &(0x7f00000001c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x10000001, 0x0, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0xe, 0x0, &(0x7f0000000680)="548852ac5b4eba7aeaccd2c62b2b", 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x8}, 0x50)
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kfree\x00', r4, 0x0, 0x80005}, 0x18)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f0000000100)={&(0x7f0000000000)=""/5, 0x204000, 0x1000}, 0x20)
socket$phonet(0x23, 0x2, 0x1)

2.445450198s ago: executing program 2 (id=8029):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r1 = syz_open_dev$vcsa(&(0x7f0000000080), 0x3, 0x500)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000300)={0x8, 0x1, {0xffffffffffffffff, 0x2, 0x1, 0x2, 0x7}})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$inet6_tcp_TLS_RX(r1, 0x11a, 0x2, &(0x7f0000000500)=@ccm_128={{0x303}, "aac00f4f12f61764", "de4fda01126390a6f79d67b2cb85ad34", "0551fc04", "cb59c030d5961af0"}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=ANY=[@ANYBLOB="d300000000010000180a00000000000000000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0x2c, &(0x7f000000cf3d)=""/195}, 0x23)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r3, 0x6, 0x1b, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")
r4 = open(&(0x7f0000000000)='./file0\x00', 0x640001, 0x17c)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000380), r4)
sendmsg$TIPC_NL_MON_PEER_GET(r4, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000880)={0x328, r5, 0x200, 0x70bd2a, 0xffff, {}, [@TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x10}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x10000}]}, @TIPC_NLA_BEARER={0x74, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}]}]}, @TIPC_NLA_SOCK={0x8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_BEARER={0xb0, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x8, @dev={0xfe, 0x80, '\x00', 0x19}, 0x4dc}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x7ff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0xc}}}}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x800, @rand_addr=' \x01\x00', 0xd}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0xfffffff9, @dev={0xfe, 0x80, '\x00', 0x27}, 0x80}}}}]}, @TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x400}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}]}, @TIPC_NLA_NODE={0x4}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9af8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xb}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_NODE={0xa8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "2e1f52d7559b637877c7c6204db188ba13d2a1f8b15014371ec4c9"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "b07a0e0f4d9596e7cd8b1944ee7796712f7dc0acec015c15f463a561dc9b1cb5497c1520"}}, @TIPC_NLA_NODE_ID={0x5, 0x3, "87"}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8000000000000001}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}]}]}, 0x328}}, 0x40084)
syz_open_dev$mouse(&(0x7f0000000200), 0x5b39be23, 0x181000)

2.145516892s ago: executing program 2 (id=8030):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000ff292807000000000000950000000000"], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x100010, r1, 0x10a9000)
ppoll(0x0, 0x0, 0x0, &(0x7f0000000500)={[0xfe9]}, 0x8)
perf_event_open(&(0x7f0000000600)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x8, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x5, @perf_config_ext={0x4, 0x7}, 0x13748, 0x10000, 0x0, 0x5, 0xa, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r2 = socket(0xa, 0x3, 0xff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r3, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r4)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r2)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="a4000000", @ANYRES16=r6, @ANYBLOB="040829bd7000fbdbdf2507000000080001000400000008000300", @ANYRES32=r7, @ANYBLOB="05005300000000000a00e80008021100000000000a00e80008021100000100000c00178004000100040006000a00e800ffffffffffff00001c00e700d01af1cf8d780b6bd1e3d2d1b9a9a714685e085c1bdd70020a00e800080211000001000014347a726000040073797a5f74756e0000000000000000000a00180003030303"], 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$IEEE802154_LIST_PHY(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r5, 0x30b, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4044}, 0x20000004)
sendmmsg$inet6(r2, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="5e546507da932c3e8c628a600b17cbe584d2f93ce23f60e91af3fbcf0e16db6e759d420151c6c575", 0x77}], 0x1}}], 0x1, 0x4046040)
r9 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r10}, 0x18)
r11 = socket$kcm(0x21, 0x2, 0x2)
r12 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x2, 0x781900)
r13 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000700), r2)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r12, &(0x7f0000000a00)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r13, @ANYBLOB="020027bd7000fd04002512000000080006000a0000000800080003000000080009006b96b9fd08000600050000000800080002000000"], 0x3c}}, 0x80)
sendmsg$kcm(r11, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
sendfile(r9, r9, 0x0, 0xfffa83)

2.014981562s ago: executing program 4 (id=8033):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7a7}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x97}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r1, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4000804)

1.999244253s ago: executing program 4 (id=8034):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0x60, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000008000000850000005900000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$vfat(&(0x7f0000001800), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="00631dda01aef2456795dd9b2620df1c0f624854ea3dd5a00bd6df44035f5c3ae796fec6d633a0ffad0579794acfef7da01767fd4175f2cd82df769aa2ee7bfe3640554507d2e660c9f9e222a72e1e3e71145c480657d2864e5e276f028d64701ae31cde0ceaf408fdb05c0f4142da00e900000100000149e6d308cbe315789f4baffe39bbced9b1d421d2e290e9fc561a62225f002ee310e1fa7321000000000000d6231001a4b2d467825f3abb0c167e129cf1fa0e7854103f4bf2d3a0194983bc86cbd3d75ccef3c8ac4516dac102"], 0x4, 0x26d, &(0x7f00000005c0)="$eJzs281OE18Yx/EfL/8/CMJUURSM8YludDOBegUNgcTYRIPU+JKYDDLVpkNLOg2mxgg7t14HcenOxHgDbLwCF+7YuGRhHMNMLS2UqAuZaL+fzXnI4deck+dMcxadnXuvV8vF0C16dfX3mQalTe1KGfVrQIm+5tgf1/+r3aauTeQ/Xbxz/8HNXD4/v2i2kFu6njWz8Uvvn714c/lDffTu2/F3Q9rOPNr5kv28Pbk9tfNt6WkptFJolWrdPFuuVuvecuDbSiksu2a3A98LfStVQr/WMV8MqmtrDfMqK2MjazU/DM2rNKzsN6xetXqtYd4Tr1Qx13VtbET4mcLW4qKXS3sV+LNqtZw3J2n60ExhK5UFAQCAVHH/72Xc/3vB3v3/YfP57cT9HwAAAAAAAAAAAAAAAAAAAACAv8FuFDlRFDk/xv+k+A2fqPn3CUkjkkYlnZQ0JmlckiMpI+mUpNOSJiSdkXRW0qSkc5LOS5pq+6y094rDjur/AP3vCTz/vY3+97a2F3eHpdVX64X1QjIm87miSgrka0aOvsa9bErqhRv5+RmLZXRhdaOZ31gvDHTmZ+XsHZhu+dkkb535ofjctfJZOXsHrFs+2zU/rKtX2vKuHH18rKoCrcRncj//ctZs7lb+QH46/r9/nWstXfvnukfNJ/lfOB/RTNf+DGp6MN29Qwobz8teEPg1CgoKilaR9jcTjsN+09NeCQAAAAAAAAAAAAAAAADgdxzHzwnT3iMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAd9DwAA//+TC2AL")
openat(0xffffffffffffff9c, &(0x7f0000000800)='./file2\x00', 0x125042, 0x144)
socket$kcm(0x29, 0x5, 0x0)
syz_io_uring_setup(0x18d6, 0x0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000cc0)=ANY=[@ANYBLOB, @ANYRES16, @ANYBLOB], 0x17c}}, 0x40020)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00'}, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f00000007c0)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000001980)}}, {{&(0x7f0000000080)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000800)="696b487a92e473bb26", 0x9}], 0x1}}], 0x2, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

1.666340769s ago: executing program 5 (id=8037):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
unshare(0x2c020400)
socket$l2tp6(0xa, 0x2, 0x73)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
r3 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000540)={0x28, 0x0, 0xffffffff, @hyper}, 0x10, 0x80800)
accept4$vsock_stream(r3, &(0x7f0000000940)={0x28, 0x0, 0x2711, @local}, 0x10, 0x80000)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
close_range(r4, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYRES64=r4, @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r6}, 0x10)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000080)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000f40)="$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")
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000002200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1a4a438, &(0x7f0000000480)=ANY=[@ANYRESOCT=r7, @ANYRES16, @ANYRES32=r7, @ANYRES64=r5], 0xb, 0x0, &(0x7f0000000000))
renameat2(r7, &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r7, &(0x7f0000000040)='./file1\x00', 0x0)

1.141753881s ago: executing program 2 (id=8039):
setrlimit(0xf, &(0x7f0000000000)={0x0, 0x8000})
timer_create(0x6, 0x0, &(0x7f00000003c0))
timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x3938700}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
r0 = fsopen(&(0x7f0000000300)='debugfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000170000de00000000ff000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000000}, 0x94)
inotify_init1(0x80800)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0], 0x50}}, 0x24008080)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
umount2(&(0x7f0000000040)='.\x00', 0x2)

1.14115921s ago: executing program 4 (id=8040):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
readv(r0, &(0x7f00000005c0)=[{&(0x7f0000000440)=""/238, 0xee}], 0x1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

1.059615416s ago: executing program 5 (id=8041):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0x60, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000008000000850000005900000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$vfat(&(0x7f0000001800), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="00631dda01aef2456795dd9b2620df1c0f624854ea3dd5a00bd6df44035f5c3ae796fec6d633a0ffad0579794acfef7da01767fd4175f2cd82df769aa2ee7bfe3640554507d2e660c9f9e222a72e1e3e71145c480657d2864e5e276f028d64701ae31cde0ceaf408fdb05c0f4142da00e900000100000149e6d308cbe315789f4baffe39bbced9b1d421d2e290e9fc561a62225f002ee310e1fa7321000000000000d6231001a4b2d467825f3abb0c167e129cf1fa0e7854103f4bf2d3a0194983bc86cbd3d75ccef3c8ac4516dac102"], 0x4, 0x26d, &(0x7f00000005c0)="$eJzs281OE18Yx/EfL/8/CMJUURSM8YludDOBegUNgcTYRIPU+JKYDDLVpkNLOg2mxgg7t14HcenOxHgDbLwCF+7YuGRhHMNMLS2UqAuZaL+fzXnI4deck+dMcxadnXuvV8vF0C16dfX3mQalTe1KGfVrQIm+5tgf1/+r3aauTeQ/Xbxz/8HNXD4/v2i2kFu6njWz8Uvvn714c/lDffTu2/F3Q9rOPNr5kv28Pbk9tfNt6WkptFJolWrdPFuuVuvecuDbSiksu2a3A98LfStVQr/WMV8MqmtrDfMqK2MjazU/DM2rNKzsN6xetXqtYd4Tr1Qx13VtbET4mcLW4qKXS3sV+LNqtZw3J2n60ExhK5UFAQCAVHH/72Xc/3vB3v3/YfP57cT9HwAAAAAAAAAAAAAAAAAAAACAv8FuFDlRFDk/xv+k+A2fqPn3CUkjkkYlnZQ0JmlckiMpI+mUpNOSJiSdkXRW0qSkc5LOS5pq+6y094rDjur/AP3vCTz/vY3+97a2F3eHpdVX64X1QjIm87miSgrka0aOvsa9bErqhRv5+RmLZXRhdaOZ31gvDHTmZ+XsHZhu+dkkb535ofjctfJZOXsHrFs+2zU/rKtX2vKuHH18rKoCrcRncj//ctZs7lb+QH46/r9/nWstXfvnukfNJ/lfOB/RTNf+DGp6MN29Qwobz8teEPg1CgoKilaR9jcTjsN+09NeCQAAAAAAAAAAAAAAAADgdxzHzwnT3iMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAd9DwAA//+TC2AL")
openat(0xffffffffffffff9c, &(0x7f0000000800)='./file2\x00', 0x125042, 0x144)
socket$kcm(0x29, 0x5, 0x0)
syz_io_uring_setup(0x18d6, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000cc0)=ANY=[@ANYBLOB, @ANYRES16, @ANYBLOB], 0x17c}}, 0x40020)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f00000007c0)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000001980)}}, {{&(0x7f0000000080)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000800)="696b487a92e473bb265f9a7a", 0xc}], 0x1}}], 0x2, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

1.041289258s ago: executing program 4 (id=8043):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0x6, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB], 0x38}}, 0x0)

1.01280191s ago: executing program 6 (id=8044):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1100, 0x0, 0xfffffffc, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x1e5800, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r3)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)={0x1c, r4, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x4000054)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f0000000740)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000700)={&(0x7f00000002c0)={0x5c, r4, 0x800, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8, 0x12}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x57}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x76}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x5e}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x70}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0x2000004c)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_ethernet(0x37, &(0x7f0000000100)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1e}, @void, {@llc_tr={0x11, {@snap={0xaa, 0xaa, '\r=', "da1f9a", 0x884c, "46dedea572dcab0766c8084e6f7c3c19557b938759ed17b2cd9574e324cca20c"}}}}}, 0x0)

972.996223ms ago: executing program 6 (id=8047):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00', @ANYRES16=0x0, @ANYBLOB="05dff72e1800cd13381600000000000000", @ANYRES32=0x0, @ANYBLOB="0800050004000000050053"], 0x2c}, 0x1, 0x0, 0x0, 0x4000801}, 0xc0c4)
setsockopt$inet6_opts(r0, 0x29, 0x40, &(0x7f0000000000)=ANY=[], 0xd0060)

950.167455ms ago: executing program 6 (id=8049):
r0 = syz_io_uring_setup(0x102, &(0x7f0000000300)={0x0, 0x2d48, 0x10, 0x3, 0x200008d}, &(0x7f0000000500)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x4000)
keyctl$chown(0x4, 0x0, r3, r4)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x14, 0x0, 0xffffffffffffffff, &(0x7f0000000040)={0x880, 0x1}, 0x0, 0x18, 0x0, 0x12345})
io_uring_enter(r0, 0x3516, 0x7723, 0xa, 0x0, 0x0)

949.374815ms ago: executing program 4 (id=8050):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x30}}, 0x20040000)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r2, 0x0, 0x63f}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000240)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x6}]})
setsockopt$CAN_RAW_FD_FRAMES(0xffffffffffffffff, 0x65, 0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f00000017c0)='./file1\x00', 0x0, &(0x7f0000000000), 0x1, 0xb80, &(0x7f0000000c40)="$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")
chown(&(0x7f0000001840)='./file1\x00', 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000540)={'syztnl1\x00', &(0x7f00000004c0)={'syztnl2\x00', <r3=>0x0, 0x29, 0x34, 0x6, 0xffff, 0x0, @mcast2, @empty, 0x1, 0x8, 0x1, 0x7}})
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYRESOCT=r1, @ANYBLOB="8a380dea461df4c11f9f4c049e175d2bfbab6add324dd7c5dca5839d2306555c485dc9d7bf5ffdb0271b208899197a083bff2202e2b3ccfae7ad1ca31e379cb20aba78e58738d01f1685fe53b0dfb9cb281113161f99db57e7c34d04433ef2ef8f57aedc82546c5c7f59d547c6160fb5c5421f8ecf675be99688f1811c451747924fa9680d442528a841790ccc2092b3a3414a7d4bfbad34b084b17074ff01877c64d1bb3ccbf0de1f373f6652d2969b44d673880c142c2d86"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, @sched_cls=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x60000, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0) (fail_nth: 3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000004700)={'team0\x00', <r7=>0x0})
r8 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x98, r6, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r7}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x4000001}, 0x4040084)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2000001, 0x13, r9, 0x0)

880.377681ms ago: executing program 6 (id=8051):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendto$inet6(r2, &(0x7f0000000080)="de598d54e98e8ffdfc501f9c3ac5a2d6d3eecb3fd239db9003b62dbda65e0e79dbf40199b674777990802339fb5bfbd33fbfaddaea4a3494a1d44440e8734ff9fa483c981c0a95b3e9fb252ce1d5d5f5b45a587c2ad3faccf2160ce05e667604f5cafb8b728987c8aad6583f22eb158b9699f9780266442092c6b2925276f98e504c9c40582782d009234790739a651b3dbad2603a77bf66020dd4cb71102ef572a94d1aaf705d90a95db83e8d6d785bda7c7cb3a9c30fc71b3364df6f31a8e7b8ee843c2e8bbdb2d52d9f7c82a85a6badc5b75bf7ebccc9e0cd44bb9afbc897610fe96fbb2cd62ad97e5cd92643c4408c233ce55c6581", 0xf7, 0x4, &(0x7f0000000000)={0xa, 0x4e23, 0x5, @ipv4={'\x00', '\xff\xff', @broadcast}, 0xe}, 0x1c) (async)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBLED(r3, 0x4b65, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x59d, &(0x7f0000001100)="$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")

879.274471ms ago: executing program 6 (id=8053):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x1, 0x21b, &(0x7f0000000300)="$eJzs2j+LHGUcB/DfnJHEC5dd8R8JiA9aqM2Q3doihyQgLiiaFaIgmXizuuy4e+wsBytirtLWl2AtlnaCpLS5xldgYXfNlSnEkWRjcnesxSHein4+zXzhmS88D8/w8BSz/9rXn44GdT4oZrGWZbF2JXbjbhbtWIs/7carL9/46fl3b7z/5mavd/WdlK5tXu90U0oXXvjxg8+/e/HO7Px731/44WzstT/cP+j+uvfs3sX9369/MqzTsE7jySwV6dZkMituVWXaGtajPKW3q7KoyzQc1+X0yPigmmxvz1Mx3tpY356WdZ2K8TyNynmaTdJsOk/Fx8VwnPI8Txvrwd/R//Zu08RB8/jNaJrmiW/i/J3Y+CVakT2ZsqeuZM/czJ7bzS4eNE1r1VPlH2H//98OHernIqqvdvo7/cVzMb45iGFUUcblaMVvce8zeWCRr73Ru3o53deOL6vbD/q3d/qPHe13ohXt5f3Oop+O9s/G+uF+N1rx9PJ+d2n/XLzy0qF+Hq34+aOYRBVbca/7qP9FJ6XX3+od61+6/x4AwH9Nnh5aen/L878aX/RPcD88dr86E5fOrHbtRNTzz0ZFVZVTQRCEh2HVJxOn4dGmr3omAAAAAAAAAAAAnMRp/E646jUCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/bn8EAAD//xrx1cI=")
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB], 0x50)
statx(0xffffffffffffffff, 0x0, 0x4000, 0x800, 0x0)
r0 = msgget$private(0x0, 0x100)
msgsnd(r0, &(0x7f0000002900)=ANY=[@ANYBLOB], 0xfd1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1, 0x0, 0x4}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000580000/0x4000)=nil)
r6 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x800, 0x0, 0x0, 0x1}, 0x20)
msgctl$IPC_SET(r0, 0x1, &(0x7f0000002880)={{0x2, 0x0, 0x0, 0x0, 0x0, 0x1a, 0x7}, 0x0, 0x0, 0x1, 0x1414, 0x10001, 0x0, 0xffffffffffffffca, 0x8, 0xff})
msgsnd(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="0100000000"], 0xcc, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="070000b27f7e0f7f0665feff00021b6746b7d3104f6ad8a08d03126a7c7a819abbb5bc21191425c419e1b8"], 0x50)
r8 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r7}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYRESHEX=r8, @ANYRESHEX=r7, @ANYRESHEX, @ANYRESOCT=r2, @ANYRES8=r7, @ANYRES64=r0, @ANYBLOB="d4b759ace77389e6d1ce983f86fa34fdec2db8a53120615128fac9e707782f6000a24056d9bb516d5c68c6f154d0c4e62c90eb145a2f24c5e7dfbbc4d12cb4f5f82beb4823b1a128041d8867774642b0974f99", @ANYRES32=r8], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

357.303732ms ago: executing program 1 (id=8057):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7a7}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x97}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r1, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4000804)

356.612022ms ago: executing program 1 (id=8058):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1100, 0x0, 0xfffffffc, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x1e5800, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r3)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)={0x1c, r4, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x4000054)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f0000000740)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000700)={&(0x7f00000002c0)={0x5c, r4, 0x800, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8, 0x12}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x57}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x76}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x5e}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x70}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0x2000004c)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_ethernet(0x37, &(0x7f0000000100)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1e}, @void, {@llc_tr={0x11, {@snap={0xaa, 0xaa, '\r=', "da1f9a", 0x884c, "46dedea572dcab0766c8084e6f7c3c19557b938759ed17b2cd9574e324cca20c"}}}}}, 0x0)

280.320788ms ago: executing program 1 (id=8059):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000040), &(0x7f00000003c0)}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000580)='kmem_cache_free\x00', r2, 0x0, 0x7fff}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
execve(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0xfffffffffffffe05, 0x0, 0x40f00, 0x80, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x5}, 0x18)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = syz_open_dev$loop(&(0x7f0000000000), 0x6, 0x101000)
ioctl$BLKPG(r5, 0x1269, &(0x7f0000000100)={0x1, 0x0, 0x98, &(0x7f0000000040)={0x84b, 0xfffffffffffffff4, 0xa}})
syz_open_procfs(0x0, &(0x7f0000000300)='net/icmp\x00')
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x7, &(0x7f00000019c0)={0x0, 0x3, 0x4})
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000080)=ANY=[@ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb:\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w') (fail_nth: 2)

203.923194ms ago: executing program 1 (id=8060):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0x6, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB], 0x38}}, 0x0)

159.901277ms ago: executing program 5 (id=8061):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r1}, 0x10)
ioctl$TIOCGPTPEER(r0, 0x5441, 0xbd3)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x58)

105.073181ms ago: executing program 5 (id=8062):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x32, 0x43a1bd78, 0x2, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0xc64}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x2, 0x80805, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x7702fa32cd97898d, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x83, &(0x7f0000000140), 0x8)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
chmod(&(0x7f0000000040)='./file2\x00', 0x199)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000b80)=[{0x6}]}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x42718, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={&(0x7f0000000100)}, 0x112b2c, 0x6, 0x80, 0x1, 0xb, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
lsm_list_modules(0x0, 0x0, 0x0)
bind$bt_hci(r2, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
fsync(r2)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)
removexattr(&(0x7f0000000080)='./file0\x00', &(0x7f0000000000)=@known='system.posix_acl_default\x00')

104.163491ms ago: executing program 1 (id=8063):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000040), &(0x7f00000003c0)}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000580)='kmem_cache_free\x00', r2, 0x0, 0x7fff}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
execve(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0xfffffffffffffe05, 0x0, 0x40f00, 0x80, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x5}, 0x18)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = syz_open_dev$loop(&(0x7f0000000000), 0x6, 0x101000)
ioctl$BLKPG(r5, 0x1269, &(0x7f0000000100)={0x1, 0x0, 0x98, &(0x7f0000000040)={0x84b, 0xfffffffffffffff4, 0xa}})
syz_open_procfs(0x0, &(0x7f0000000300)='net/icmp\x00')
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x7, &(0x7f00000019c0)={0x0, 0x3, 0x4})
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000080)=ANY=[@ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb:\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')

25.662348ms ago: executing program 4 (id=8064):
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x800400, &(0x7f00000009c0)={[{@quota}]}, 0x1, 0x4f3, &(0x7f0000000a00)="$eJzs3c9rXFsdAPDvnSRt0uY5eeri+cD3iq+SFu1M0tg2uCgVxF1BrfsYkkkImWRCZtI2oZQU/wBBRBeuXLkR/AME6cZ9EQq6FxGl2FYXLtSRO3PHxnQmGV4nM+3k84HTe+6P3O/3dDq399x7yAng1LoQEbciYiQiLkdEPtuey0rsN0t63MsXD5bSkkS9fudvSSTZtta5kmx5Pvux8Yj4bnJgxwHV3b31xXK5tJ2tF2sbW8Xq7t6VtY3F1dJqaXNubvb6/I35a/MzPWvrzW/++Sc//MW3bv7mq/f+uPDXSw/TtCazfQfb0UvNpo81/i5aRiNi+ySCDcBI1p6xLo8/e8L5AABwtPQe/7MR8aXG/X8+Rhp3cwAAAMAwqScR/0oi6gAAAMDQyjXGwCa5QjYWYDJyuUKhOYb383EuV65Ua19ZqexsLjfHyk7FWG5lrVyaycYKT8VYkq7PNuqv1q8eWp+LiPcj4sf5iWTlbJQKS5Xy8qAffgAAAMApcf5Q//8f+Wb/HwAAABgyU4NOAAAAADhx+v8AAAAw/Dr2/xOTAQAAAMAQ+Pbt22mpt+a/Xr67u7NeuXtluVRdL2zsLBWWKttbhdVKZbVcKixVNo47X7lS2fpabO7cL9ZK1Vqxuru3sFHZ2awtNOb1Xih1O080AAAA0Dvvf/z4D0lE7H99olFSZ7J9+uow3HLHHzJxoJ6cZC5Af40MOgFgYD7dAF/DgmEYHNfHf16v9ykTYFCO69iPd9rxpPe5AAAAJ2P6C53f/wPDrYv3/23c6nkeQP95/w+nlzf5cHoZ4w+82ft/g4QAAOBdMNkoSa6QvQucjFyuUIh4rzEtwFiyslYuzUTEZyLi9/mxs+n67KCTBgAAAAAAAAAAAAAAAAAAAAAAAIB3TL2eRP2wM69vAgAAAN5dEbm/JNn8X9P5i5OHnw+cSf6Zbywj4t7P7vz0/mKttj2bbn+efzVrWLb9at8fXwAAAACp3/7/aquf3urHAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAP1ZPmcunliwdL/Qz87BsRMRWRxm2V5p7RGG8sx2MsIs79PYnRAz+X5jvSg/j7jyLig3bxkzStmMqyOBw/FxETA45/vgfx4TR7nF5/brX7/uXiQmPZ/vs3mpU39exCp+tf7n/Xv5EO17/3uozx4dNfFTvGfxTx4Wj7608rftIh/iddxv/+9/b2Ou2r/zxiOtrHPxirWNvYKlZ3966sbSyullZLm3Nzs9fnb8xfm58prqyVS9mfbWP86Iu//s9R7T/XIf7UMe2/2GX7//30/ovPvbb14dVW/EuftP/8Pzgifvpv4svZ/wPp/ulWfb9ZP+ijX/7uo6Pav9yh/cd9/pe6bP/l7/zgT10eCgD0QXV3b32xXC5tH1l5Escf079K6z7kbcknvRdKKzf7F7T16KGXZ/44Pd+JJj8Rb8XnpdJNZYAXJQAA4ES8uukfdCYAAAAAAAAAAAAAAAAAAABwevXj14kNuo0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN34bwAAAP//tfDGOw==")
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
faccessat(r0, &(0x7f0000000000)='./file0\x00', 0x141)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x4008662c, 0x0)

5.309759ms ago: executing program 6 (id=8065):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0x60, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000008000000850000005900000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$vfat(&(0x7f0000001800), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="00631dda01aef2456795dd9b2620df1c0f624854ea3dd5a00bd6df44035f5c3ae796fec6d633a0ffad0579794acfef7da01767fd4175f2cd82df769aa2ee7bfe3640554507d2e660c9f9e222a72e1e3e71145c480657d2864e5e276f028d64701ae31cde0ceaf408fdb05c0f4142da00e900000100000149e6d308cbe315789f4baffe39bbced9b1d421d2e290e9fc561a62225f002ee310e1fa7321000000000000d6231001a4b2d467825f3abb0c167e129cf1fa0e7854103f4bf2d3a0194983bc86cbd3d75ccef3c8ac4516dac102"], 0x4, 0x26d, &(0x7f00000005c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000800)='./file2\x00', 0x125042, 0x144)
socket$kcm(0x29, 0x5, 0x0)
syz_io_uring_setup(0x18d6, 0x0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000cc0)=ANY=[@ANYBLOB, @ANYRES16, @ANYBLOB], 0x17c}}, 0x40020)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b70400000000000085000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f00000007c0)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000001980)}}, {{&(0x7f0000000080)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000800)="696b487a92e473bb265f9a7a", 0xc}], 0x1}}], 0x2, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

0s ago: executing program 1 (id=8066):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
listen(r3, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r5 = accept4(r3, 0x0, 0x0, 0x0)
sendto(r5, &(0x7f0000000000)="00c8", 0x2, 0x0, 0x0, 0x0)
recvfrom(r4, &(0x7f00000001c0)=""/62, 0x3e, 0x10120, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x200000000000000)

kernel console output (not intermixed with test programs):

2: no valid journal superblock found
[  420.359655][T24365] EXT4-fs (loop6): Could not load journal inode
[  420.460655][T24368] loop6: detected capacity change from 0 to 128
[  420.556668][T24371] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  420.568333][T24370] tipc: Disabling bearer <eth:syzkaller0>
[  420.602869][T24377] syzkaller0: entered promiscuous mode
[  420.608358][T24377] syzkaller0: entered allmulticast mode
[  420.735313][T24381] loop4: detected capacity change from 0 to 1024
[  420.754663][T24381] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  420.766231][T24381] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  420.776922][T24381] EXT4-fs (loop4): invalid journal inode
[  420.782712][T24381] EXT4-fs (loop4): can't get journal size
[  420.788774][T24381] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 17104912: comm syz.4.7129: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  420.805116][T24381] EXT4-fs (loop4): failed to initialize system zone (-117)
[  420.812449][T24381] EXT4-fs (loop4): mount failed
[  420.940091][T24389] loop4: detected capacity change from 0 to 256
[  420.947366][T24389] vfat: Bad value for 'uid'
[  420.952130][T24389] vfat: Bad value for 'uid'
[  421.116296][T24394] loop2: detected capacity change from 0 to 128
[  421.201628][T24398] syzkaller0: entered promiscuous mode
[  421.207196][T24398] syzkaller0: entered allmulticast mode
[  421.420697][T24412] syzkaller0: entered promiscuous mode
[  421.426238][T24412] syzkaller0: entered allmulticast mode
[  421.510619][T24416] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  421.518958][T24416] syzkaller0: entered promiscuous mode
[  421.524521][T24416] syzkaller0: entered allmulticast mode
[  421.547443][T24416] tipc: Resetting bearer <eth:syzkaller0>
[  421.554404][T24415] tipc: Resetting bearer <eth:syzkaller0>
[  421.572797][T24415] tipc: Disabling bearer <eth:syzkaller0>
[  421.653762][T24423] loop6: detected capacity change from 0 to 2048
[  421.681173][T24428] loop1: detected capacity change from 0 to 128
[  421.698058][T24423] Alternate GPT is invalid, using primary GPT.
[  421.704403][T24423]  loop6: p1 p2 p3
[  421.714098][T24430] __nla_validate_parse: 6 callbacks suppressed
[  421.714111][T24430] netlink: 68 bytes leftover after parsing attributes in process `syz.5.7147'.
[  421.837825][T24445] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  421.845712][T24444] tipc: Disabling bearer <eth:syzkaller0>
[  422.172355][T24461] netlink: 68 bytes leftover after parsing attributes in process `syz.2.7159'.
[  422.231724][T24468] vfat: Bad value for 'uid'
[  422.236245][T24468] vfat: Bad value for 'uid'
[  422.557340][T24474] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  422.568410][T24474] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  422.693806][T24474] JBD2: no valid journal superblock found
[  422.699571][T24474] EXT4-fs (loop1): Could not load journal inode
[  422.811786][T24479] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  423.000456][T24509] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7174'.
[  423.015329][T24508] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  423.026279][T24508] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  423.038668][T24508] JBD2: no valid journal superblock found
[  423.044486][T24508] EXT4-fs (loop5): Could not load journal inode
[  423.134904][T24517] netlink: 68 bytes leftover after parsing attributes in process `syz.5.7181'.
[  423.179625][T24513] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  423.284273][T24533] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7188'.
[  423.322404][T24524] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  423.334607][T24524] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  423.347743][T24540] vfat: Bad value for 'uid'
[  423.352537][T24540] vfat: Bad value for 'uid'
[  423.438612][T20910] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  423.507503][T24546] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  423.518452][T24546] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  423.529321][T24546] JBD2: no valid journal superblock found
[  423.535121][T24546] EXT4-fs (loop4): Could not load journal inode
[  423.626487][T24551] netlink: 68 bytes leftover after parsing attributes in process `syz.4.7194'.
[  423.673657][T24555] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24555 comm=syz.4.7196
[  423.781976][T24565] vfat: Unknown parameter 'ÿ01777777777777777777777'
[  423.886442][T24567] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7201'.
[  424.076444][   T29] kauditd_printk_skb: 706 callbacks suppressed
[  424.076459][   T29] audit: type=1326 audit(1765622772.239:75156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  424.106236][   T29] audit: type=1326 audit(1765622772.239:75157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  424.129716][   T29] audit: type=1326 audit(1765622772.239:75158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f6455c4f749 code=0x7ffc0000
[  424.153369][   T29] audit: type=1326 audit(1765622772.249:75159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  424.176837][   T29] audit: type=1326 audit(1765622772.249:75160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  424.200375][   T29] audit: type=1326 audit(1765622772.249:75161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f6455c4f749 code=0x7ffc0000
[  424.224046][   T29] audit: type=1326 audit(1765622772.259:75162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  424.247537][   T29] audit: type=1326 audit(1765622772.259:75163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  424.271137][   T29] audit: type=1326 audit(1765622772.259:75164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f6455c4f749 code=0x7ffc0000
[  424.297773][   T29] audit: type=1326 audit(1765622772.269:75165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24569 comm="syz.1.7202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  424.339019][T24590] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  424.345564][T24590] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  424.353095][T24590] vhci_hcd vhci_hcd.0: Device attached
[  424.361261][T24591] vhci_hcd: connection closed
[  424.361960][T20910] vhci_hcd vhci_hcd.5: stop threads
[  424.371937][T20910] vhci_hcd vhci_hcd.5: release socket
[  424.377302][T20910] vhci_hcd vhci_hcd.5: disconnect device
[  424.715275][T24596] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  424.802377][T24610] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7213'.
[  424.843142][ T2042] Bluetooth: hci0: Frame reassembly failed (-84)
[  424.845595][T24613] set_capacity_and_notify: 10 callbacks suppressed
[  424.845610][T24613] loop6: detected capacity change from 0 to 512
[  424.868113][T24613] loop6: detected capacity change from 0 to 128
[  424.914717][T24616] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7216'.
[  425.233749][T24631] loop2: detected capacity change from 0 to 1024
[  425.241015][T24631] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  425.251940][T24631] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  425.263194][T24631] JBD2: no valid journal superblock found
[  425.268922][T24631] EXT4-fs (loop2): Could not load journal inode
[  425.407345][T24635] loop2: detected capacity change from 0 to 128
[  425.928965][T24648] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7228'.
[  426.234079][T24676] loop4: detected capacity change from 0 to 128
[  426.871270][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  426.871305][T24614] Bluetooth: hci0: command 0x1003 tx timeout
[  427.270700][T24709] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  427.415380][T24728] loop5: detected capacity change from 0 to 1024
[  427.438098][T24730] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7258'.
[  427.447782][T24728] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  427.465675][T24733] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  427.471370][T24728] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  427.473691][T24733] syzkaller0: entered promiscuous mode
[  427.487917][T24733] syzkaller0: entered allmulticast mode
[  427.499154][T24733] sch_tbf: burst 0 is lower than device syzkaller0 mtu (1514) !
[  427.502034][T24728] EXT4-fs (loop5): invalid journal inode
[  427.508809][T24733] tipc: Resetting bearer <eth:syzkaller0>
[  427.520237][T24732] tipc: Resetting bearer <eth:syzkaller0>
[  427.526431][T24728] EXT4-fs (loop5): can't get journal size
[  427.533245][T24728] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 17104912: comm syz.5.7257: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  427.549082][T24732] tipc: Disabling bearer <eth:syzkaller0>
[  427.549255][T24728] EXT4-fs (loop5): failed to initialize system zone (-117)
[  427.562912][T24728] EXT4-fs (loop5): mount failed
[  427.663169][T24742] loop4: detected capacity change from 0 to 128
[  428.268783][T24759] loop2: detected capacity change from 0 to 1024
[  428.276897][T24759] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  428.284498][T24762] loop1: detected capacity change from 0 to 1024
[  428.287340][T24759] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  428.304645][T24759] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  428.313046][T24759] EXT4-fs (loop2): orphan cleanup on readonly fs
[  428.315761][T24762] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  428.322374][T24759] EXT4-fs error (device loop2): ext4_read_inode_bitmap:167: comm syz.2.7269: Inode bitmap for bg 0 marked uninitialized
[  428.333501][T24761] EXT4-fs error (device loop1): ext4_read_inline_dir:1486: inode #12: block 7: comm syz.1.7270: path /279/file1/file0: bad entry in directory: inode out of bounds - offset=24, inode=150994957, rec_len=16, size=80 fake=0
[  428.344562][T24759] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  428.381483][T24759] EXT4-fs (loop2): ext4_remount: Checksum for group 0 failed (32298!=35945)
[  428.398005][T20884] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  428.466069][T24770] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7272'.
[  428.759908][T24799] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  428.785489][T24805] loop5: detected capacity change from 0 to 128
[  428.954383][T24810] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7285'.
[  429.086419][   T29] kauditd_printk_skb: 1318 callbacks suppressed
[  429.086435][   T29] audit: type=1326 audit(1765622777.249:76484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda91db65e7 code=0x7ffc0000
[  429.116773][   T29] audit: type=1326 audit(1765622777.249:76485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fda91d5b829 code=0x7ffc0000
[  429.140375][   T29] audit: type=1326 audit(1765622777.249:76486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  429.163989][   T29] audit: type=1326 audit(1765622777.259:76487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda91db65e7 code=0x7ffc0000
[  429.187599][   T29] audit: type=1326 audit(1765622777.259:76488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fda91d5b829 code=0x7ffc0000
[  429.211266][   T29] audit: type=1326 audit(1765622777.259:76489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  429.234967][   T29] audit: type=1326 audit(1765622777.259:76490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda91db65e7 code=0x7ffc0000
[  429.258512][   T29] audit: type=1326 audit(1765622777.259:76491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fda91d5b829 code=0x7ffc0000
[  429.282044][   T29] audit: type=1326 audit(1765622777.259:76492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  429.305685][   T29] audit: type=1326 audit(1765622777.289:76493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.6.7289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda91db65e7 code=0x7ffc0000
[  429.329883][T21145] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.401022][T24824] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24824 comm=syz.1.7291
[  429.595687][T24830] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  429.602897][T24830] syzkaller0: entered promiscuous mode
[  429.608410][T24830] syzkaller0: entered allmulticast mode
[  429.617968][T24830] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  429.636256][T24830] tipc: Resetting bearer <eth:syzkaller0>
[  429.644854][T24829] tipc: Resetting bearer <eth:syzkaller0>
[  429.653010][T24829] tipc: Disabling bearer <eth:syzkaller0>
[  429.779855][T24840] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7297'.
[  429.849709][T24853] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  429.860740][T24853] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  429.872159][T24853] JBD2: no valid journal superblock found
[  429.877912][T24853] EXT4-fs (loop5): Could not load journal inode
[  429.987010][T24861] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24861 comm=syz.5.7306
[  430.397121][T24874] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  430.440591][T24874] syzkaller0: entered promiscuous mode
[  430.446212][T24874] syzkaller0: entered allmulticast mode
[  430.493977][T24874] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  430.505363][T24874] tipc: Resetting bearer <eth:syzkaller0>
[  430.511909][T24873] tipc: Resetting bearer <eth:syzkaller0>
[  430.521113][T24880] set_capacity_and_notify: 1 callbacks suppressed
[  430.521128][T24880] loop5: detected capacity change from 0 to 764
[  430.545467][T24873] tipc: Disabling bearer <eth:syzkaller0>
[  430.837667][T24896] loop2: detected capacity change from 0 to 1024
[  430.846037][T24896] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  430.857662][T24896] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  430.861968][T24890] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7315'.
[  430.867937][T24898] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7313'.
[  430.880085][T24896] JBD2: no valid journal superblock found
[  430.890985][T24896] EXT4-fs (loop2): Could not load journal inode
[  431.079817][T24907] loop2: detected capacity change from 0 to 128
[  431.086874][T24907] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  431.099123][T24907] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  431.116107][ T2722] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  431.205512][T24920] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  431.215113][T24920] syzkaller0: entered promiscuous mode
[  431.220596][T24920] syzkaller0: entered allmulticast mode
[  431.229429][T24920] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  431.239354][T24920] tipc: Resetting bearer <eth:syzkaller0>
[  431.246605][T24919] tipc: Resetting bearer <eth:syzkaller0>
[  431.255555][T24919] tipc: Disabling bearer <eth:syzkaller0>
[  431.440085][T24930] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7329'.
[  431.505455][T24936] loop1: detected capacity change from 0 to 1024
[  431.512873][T24936] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  431.522488][T24936] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  431.534035][T24936] EXT4-fs (loop1): invalid journal inode
[  431.539691][T24936] EXT4-fs (loop1): can't get journal size
[  431.545890][T24936] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 17104912: comm syz.1.7331: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  431.562002][T24936] EXT4-fs (loop1): failed to initialize system zone (-117)
[  431.569222][T24936] EXT4-fs (loop1): mount failed
[  431.853646][T24965] loop1: detected capacity change from 0 to 128
[  431.868097][T24967] loop4: detected capacity change from 0 to 128
[  432.189700][T24972] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7341'.
[  432.690648][T24981] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7343'.
[  432.881807][T25001] loop4: detected capacity change from 0 to 1024
[  432.889028][T25001] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  432.900351][T25001] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  432.911777][T25001] JBD2: no valid journal superblock found
[  432.917652][T25001] EXT4-fs (loop4): Could not load journal inode
[  433.238606][T25010] loop2: detected capacity change from 0 to 128
[  433.482414][T25017] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25017 comm=syz.5.7360
[  433.648343][T25026] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  433.702363][T25035] loop5: detected capacity change from 0 to 128
[  433.762089][T25043] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7369'.
[  433.841863][T25049] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7370'.
[  434.096558][   T29] kauditd_printk_skb: 2026 callbacks suppressed
[  434.096619][   T29] audit: type=1326 audit(1765622782.259:78520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25009 comm="syz.2.7357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  434.128107][   T29] audit: type=1326 audit(1765622782.289:78521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25009 comm="syz.2.7357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  434.151624][   T29] audit: type=1326 audit(1765622782.289:78522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25009 comm="syz.2.7357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  434.175135][   T29] audit: type=1326 audit(1765622782.289:78523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25009 comm="syz.2.7357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  434.198591][   T29] audit: type=1326 audit(1765622782.289:78524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25009 comm="syz.2.7357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  434.249347][   T29] audit: type=1326 audit(1765622782.389:78525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25009 comm="syz.2.7357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  434.272900][   T29] audit: type=1326 audit(1765622782.389:78526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25009 comm="syz.2.7357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  434.296456][   T29] audit: type=1326 audit(1765622782.389:78527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25009 comm="syz.2.7357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  434.327977][T25057] loop2: detected capacity change from 0 to 256
[  434.337832][T25057] vfat: Bad value for 'uid'
[  434.342432][T25057] vfat: Bad value for 'uid'
[  434.460769][T25066] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  434.467822][T25066] syzkaller0: entered promiscuous mode
[  434.473298][T25066] syzkaller0: entered allmulticast mode
[  434.481004][T25066] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  434.489957][T25066] tipc: Resetting bearer <eth:syzkaller0>
[  434.496218][T25065] tipc: Resetting bearer <eth:syzkaller0>
[  434.506055][T25065] tipc: Disabling bearer <eth:syzkaller0>
[  434.598995][T25069] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  434.608282][T25068] tipc: Disabling bearer <eth:syzkaller0>
[  434.683100][T25076] syzkaller0: entered promiscuous mode
[  434.688650][T25076] syzkaller0: entered allmulticast mode
[  434.697245][T25076] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7380'.
[  434.964131][T25091] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  434.976475][T25091] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  435.033827][ T2722] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  435.135609][T25108] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  435.145584][T25107] tipc: Disabling bearer <eth:syzkaller0>
[  435.158139][   T29] audit: type=1326 audit(1765622783.319:78528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25114 comm="syz.1.7392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6455c4f749 code=0x7ffc0000
[  435.182234][   T29] audit: type=1326 audit(1765622783.319:78529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25114 comm="syz.1.7392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6455c4f749 code=0x7ffc0000
[  435.268738][T25118] syzkaller0: entered promiscuous mode
[  435.274275][T25118] syzkaller0: entered allmulticast mode
[  435.320448][T25118] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7393'.
[  435.336120][T25115] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7392'.
[  435.492928][T25127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7405'.
[  435.527595][T25135] set_capacity_and_notify: 1 callbacks suppressed
[  435.527611][T25135] loop2: detected capacity change from 0 to 512
[  435.541685][T25135] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  435.570018][T25137] loop5: detected capacity change from 0 to 1024
[  435.577185][T25137] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  435.587316][T25137] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  435.599141][T25137] EXT4-fs (loop5): invalid journal inode
[  435.606095][T25137] EXT4-fs (loop5): can't get journal size
[  435.622561][T25135] EXT4-fs (loop2): 1 truncate cleaned up
[  435.628577][T25135] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.641295][T25137] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 17104912: comm syz.5.7398: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  435.709673][T25137] EXT4-fs (loop5): failed to initialize system zone (-117)
[  435.723153][T25135] bridge0: port 2(bridge_slave_1) entered disabled state
[  435.730296][T25135] bridge0: port 1(bridge_slave_0) entered disabled state
[  435.747813][T25137] EXT4-fs (loop5): mount failed
[  435.794810][T25153] loop4: detected capacity change from 0 to 256
[  435.827103][T25153] vfat: Bad value for 'uid'
[  435.831766][T25153] vfat: Bad value for 'uid'
[  435.859054][T25157] netlink: 68 bytes leftover after parsing attributes in process `syz.6.7407'.
[  435.873284][T25155] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  435.888467][T25154] tipc: Disabling bearer <eth:syzkaller0>
[  435.911798][T21145] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.949900][T25166] loop2: detected capacity change from 0 to 128
[  436.072457][T25171] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7413'.
[  436.083854][T25184] loop5: detected capacity change from 0 to 128
[  436.719441][T25199] loop4: detected capacity change from 0 to 1024
[  436.726936][T25199] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  436.736704][T25199] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  436.747823][T25199] EXT4-fs (loop4): invalid journal inode
[  436.753616][T25199] EXT4-fs (loop4): can't get journal size
[  436.759980][T25199] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 17104912: comm syz.4.7423: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  436.777566][T25199] EXT4-fs (loop4): failed to initialize system zone (-117)
[  436.784987][T25199] EXT4-fs (loop4): mount failed
[  436.802106][T25203] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  436.810380][T25202] tipc: Disabling bearer <eth:syzkaller0>
[  436.852940][T25209] netlink: 'syz.2.7425': attribute type 7 has an invalid length.
[  436.864316][T25209] loop2: detected capacity change from 0 to 512
[  436.891007][T25209] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  436.899288][T25209] EXT4-fs (loop2): orphan cleanup on readonly fs
[  436.908770][T25209] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #16: comm syz.2.7425: corrupted inode contents
[  436.926959][T25209] EXT4-fs (loop2): Remounting filesystem read-only
[  436.933854][T25209] EXT4-fs (loop2): 1 truncate cleaned up
[  436.939733][T21331] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  436.950326][T21331] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  436.993372][T21331] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  437.004186][T25209] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  437.032040][T21145] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.041842][T25226] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7429'.
[  437.060785][T25228] geneve2: entered promiscuous mode
[  437.064302][T25230] loop5: detected capacity change from 0 to 128
[  437.066072][T25228] geneve2: entered allmulticast mode
[  437.091319][T25232] loop2: detected capacity change from 0 to 256
[  437.097922][T25232] vfat: Bad value for 'uid'
[  437.102525][T25232] vfat: Bad value for 'uid'
[  437.207925][T25237] syzkaller0: entered promiscuous mode
[  437.213501][T25237] syzkaller0: entered allmulticast mode
[  437.232199][T25237] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  437.247619][T25236] tipc: Resetting bearer <eth:syzkaller0>
[  437.268993][T25236] tipc: Disabling bearer <eth:syzkaller0>
[  437.288087][T25240] loop2: detected capacity change from 0 to 1024
[  437.296139][T25240] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  437.306810][T25240] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  437.306937][T25235] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  437.327334][T25240] EXT4-fs (loop2): invalid journal inode
[  437.329866][T25235] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  437.334491][T25240] EXT4-fs (loop2): can't get journal size
[  437.360191][T21329] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  437.374793][T25244] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  437.382424][T25244] syzkaller0: entered promiscuous mode
[  437.387882][T25244] syzkaller0: entered allmulticast mode
[  437.395907][T25244] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  437.404028][T25240] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 17104912: comm syz.2.7437: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  437.404895][T25244] tipc: Resetting bearer <eth:syzkaller0>
[  437.431385][T25243] tipc: Resetting bearer <eth:syzkaller0>
[  437.435912][T25240] EXT4-fs (loop2): failed to initialize system zone (-117)
[  437.444729][T25240] EXT4-fs (loop2): mount failed
[  437.457621][T25243] tipc: Disabling bearer <eth:syzkaller0>
[  437.562690][T25259] bond1 (unregistering): Released all slaves
[  437.821408][T25270] vfat: Bad value for 'uid'
[  437.825922][T25270] vfat: Bad value for 'uid'
[  438.226583][T25278] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  438.238792][T25278] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  438.259391][ T2722] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  438.450649][T25290] netlink: 96 bytes leftover after parsing attributes in process `syz.4.7455'.
[  438.697830][T25302] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  438.709388][T25302] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  438.770937][T25302] JBD2: no valid journal superblock found
[  438.776775][T25302] EXT4-fs (loop4): Could not load journal inode
[  438.924893][T25310] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  438.941171][T25313] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7462'.
[  438.975969][T25315] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  438.986130][T25315] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  438.996824][T25315] EXT4-fs (loop4): invalid journal inode
[  439.002659][T25315] EXT4-fs (loop4): can't get journal size
[  439.008826][T25315] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 17104912: comm syz.4.7464: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  439.025277][T25315] EXT4-fs (loop4): failed to initialize system zone (-117)
[  439.032616][T25315] EXT4-fs (loop4): mount failed
[  439.145205][   T29] kauditd_printk_skb: 988 callbacks suppressed
[  439.145221][   T29] audit: type=1400 audit(1765622787.309:79512): avc:  denied  { watch watch_reads } for  pid=25330 comm="syz.4.7468" path="/330" dev="tmpfs" ino=1723 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  439.244521][   T29] audit: type=1326 audit(1765622787.409:79513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25339 comm="syz.2.7472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  439.274026][   T29] audit: type=1326 audit(1765622787.439:79514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25339 comm="syz.2.7472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  439.297663][   T29] audit: type=1326 audit(1765622787.439:79515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25339 comm="syz.2.7472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  439.321368][   T29] audit: type=1326 audit(1765622787.439:79516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25339 comm="syz.2.7472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3466e91667 code=0x7ffc0000
[  439.344879][   T29] audit: type=1326 audit(1765622787.439:79517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25339 comm="syz.2.7472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f3466e915dc code=0x7ffc0000
[  439.368514][   T29] audit: type=1326 audit(1765622787.439:79518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25339 comm="syz.2.7472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f3466e91514 code=0x7ffc0000
[  439.392138][   T29] audit: type=1326 audit(1765622787.439:79519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25339 comm="syz.2.7472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f3466e91514 code=0x7ffc0000
[  439.415696][   T29] audit: type=1326 audit(1765622787.439:79520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25339 comm="syz.2.7472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f3466e8e3aa code=0x7ffc0000
[  439.439213][   T29] audit: type=1326 audit(1765622787.439:79521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25339 comm="syz.2.7472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  439.465620][T25344] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  439.492094][T25347] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  439.503028][T25347] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  439.515869][T25344] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  439.527061][T25347] JBD2: no valid journal superblock found
[  439.532907][T25347] EXT4-fs (loop5): Could not load journal inode
[  439.555357][T25344] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  439.634084][T25344] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  439.689579][T20539] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  439.710070][T20539] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  439.737640][T20539] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  439.747604][T20539] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  439.785479][T25355] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  439.795151][T25355] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  439.811935][T25355] EXT4-fs (loop1): invalid journal inode
[  439.817675][T25355] EXT4-fs (loop1): can't get journal size
[  439.827659][T25355] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 17104912: comm syz.1.7479: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  439.846875][T25359] netlink: 68 bytes leftover after parsing attributes in process `syz.6.7480'.
[  439.858785][T25355] EXT4-fs (loop1): failed to initialize system zone (-117)
[  439.866122][T25355] EXT4-fs (loop1): mount failed
[  439.953799][T25370] netlink: 260 bytes leftover after parsing attributes in process `syz.6.7484'.
[  440.072203][T25375] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  440.081062][T25375] syzkaller0: entered promiscuous mode
[  440.086596][T25375] syzkaller0: entered allmulticast mode
[  440.114804][T25375] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7485'.
[  440.528602][T25381] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  440.538395][T25381] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  440.562626][T25381] netlink: 260 bytes leftover after parsing attributes in process `syz.5.7489'.
[  440.571930][T25381] netlink: 104 bytes leftover after parsing attributes in process `syz.5.7489'.
[  440.580972][T25381] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7489'.
[  440.604325][T25381] program syz.5.7489 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  440.613837][T25381] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  440.782284][T25394] netlink: 68 bytes leftover after parsing attributes in process `syz.1.7494'.
[  440.800107][T25397] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7491'.
[  440.806235][T25396] set_capacity_and_notify: 11 callbacks suppressed
[  440.806249][T25396] loop4: detected capacity change from 0 to 1024
[  440.823171][T25396] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  440.832985][T25396] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  440.843903][T25396] EXT4-fs (loop4): invalid journal inode
[  440.849581][T25396] EXT4-fs (loop4): can't get journal size
[  440.855980][T25396] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 17104912: comm syz.4.7495: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  440.871740][T25396] EXT4-fs (loop4): failed to initialize system zone (-117)
[  440.878984][T25396] EXT4-fs (loop4): mount failed
[  440.971374][T25411] loop4: detected capacity change from 0 to 128
[  441.143304][T25415] syzkaller0: entered promiscuous mode
[  441.148782][T25415] syzkaller0: entered allmulticast mode
[  441.156574][T25415] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  441.163763][T25414] tipc: Resetting bearer <eth:syzkaller0>
[  441.173998][T25414] tipc: Disabling bearer <eth:syzkaller0>
[  441.580693][T25420] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  441.589951][T25420] syzkaller0: entered promiscuous mode
[  441.596083][T25420] syzkaller0: entered allmulticast mode
[  441.701438][T25429] loop2: detected capacity change from 0 to 128
[  441.726915][T25431] bridge0: entered promiscuous mode
[  441.734799][T25431] bridge0: left promiscuous mode
[  441.750976][T25431] loop1: detected capacity change from 0 to 2048
[  441.766295][T25431] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  441.908245][T25446] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  441.916505][T25446] syzkaller0: entered promiscuous mode
[  441.922044][T25446] syzkaller0: entered allmulticast mode
[  442.176885][T25453] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  442.186446][T20884] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.238291][T25456] loop5: detected capacity change from 0 to 128
[  442.250625][T25446] tipc: Resetting bearer <eth:syzkaller0>
[  442.264347][T25445] tipc: Resetting bearer <eth:syzkaller0>
[  442.302844][T25445] tipc: Disabling bearer <eth:syzkaller0>
[  443.126355][T25490] loop5: detected capacity change from 0 to 1024
[  443.135043][T25490] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  443.144920][T25490] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  443.155601][T25490] EXT4-fs (loop5): invalid journal inode
[  443.161349][T25490] EXT4-fs (loop5): can't get journal size
[  443.168457][T25490] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 17104912: comm syz.5.7521: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  443.185630][T25490] EXT4-fs (loop5): failed to initialize system zone (-117)
[  443.193027][T25490] EXT4-fs (loop5): mount failed
[  443.356074][T25507] loop5: detected capacity change from 0 to 256
[  443.363614][T25507] vfat: Bad value for 'uid'
[  443.368126][T25507] vfat: Bad value for 'uid'
[  443.434999][T25510] loop1: detected capacity change from 0 to 1024
[  443.444316][T25510] EXT4-fs: Ignoring removed orlov option
[  443.463093][T25510] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  443.481937][T25510] ext4 filesystem being mounted at /337/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.584839][T20884] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  443.676503][T25521] loop2: detected capacity change from 0 to 1024
[  443.692907][T25521] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  443.703841][T25521] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  443.742274][T25521] JBD2: no valid journal superblock found
[  443.748002][T25521] EXT4-fs (loop2): Could not load journal inode
[  443.773185][T25519] loop1: detected capacity change from 0 to 128
[  443.789330][T25519] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  443.815676][T25519] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  443.865279][   T31] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  443.913399][T25524] __nla_validate_parse: 5 callbacks suppressed
[  443.913446][T25524] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7530'.
[  443.928581][T25524] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7530'.
[  443.940433][T25524] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  443.952480][T25524] program syz.1.7530 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  443.983666][T25530] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  443.993639][T25530] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  444.004388][T25530] EXT4-fs (loop1): invalid journal inode
[  444.010087][T25530] EXT4-fs (loop1): can't get journal size
[  444.016144][T25530] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 17104912: comm syz.1.7533: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  444.031553][T25530] EXT4-fs (loop1): failed to initialize system zone (-117)
[  444.038863][T25530] EXT4-fs (loop1): mount failed
[  444.059571][T25533] bridge0: entered promiscuous mode
[  444.066028][T25533] bridge0: left promiscuous mode
[  444.242451][   T29] kauditd_printk_skb: 479 callbacks suppressed
[  444.242467][   T29] audit: type=1326 audit(1765622792.399:80001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25540 comm="syz.6.7537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  444.272994][   T29] audit: type=1326 audit(1765622792.399:80002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25540 comm="syz.6.7537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  444.296797][   T29] audit: type=1326 audit(1765622792.399:80003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25540 comm="syz.6.7537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  444.321107][   T29] audit: type=1326 audit(1765622792.409:80004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25540 comm="syz.6.7537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  444.344952][   T29] audit: type=1326 audit(1765622792.409:80005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25540 comm="syz.6.7537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  444.348577][T25548] vfat: Bad value for 'uid'
[  444.369144][   T29] audit: type=1326 audit(1765622792.409:80006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25540 comm="syz.6.7537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  444.373068][T25548] vfat: Bad value for 'uid'
[  444.397128][   T29] audit: type=1326 audit(1765622792.409:80007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25540 comm="syz.6.7537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  444.425067][   T29] audit: type=1326 audit(1765622792.409:80008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25540 comm="syz.6.7537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  444.448974][   T29] audit: type=1326 audit(1765622792.409:80009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25540 comm="syz.6.7537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fda91dbf749 code=0x7ffc0000
[  444.471489][T25552] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7537'.
[  444.480804][   T29] audit: type=1326 audit(1765622792.619:80010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25550 comm="syz.4.7540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  444.879699][ T2722] Bluetooth: hci0: Frame reassembly failed (-84)
[  444.992542][T25562] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  445.003551][T25562] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  445.013833][T25562] JBD2: no valid journal superblock found
[  445.019547][T25562] EXT4-fs (loop1): Could not load journal inode
[  445.150219][T25568] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  445.159808][T25568] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  445.251576][T25568] EXT4-fs (loop1): invalid journal inode
[  445.264395][T25568] EXT4-fs (loop1): can't get journal size
[  445.271561][T25568] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 17104912: comm syz.1.7545: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  445.309697][T25568] EXT4-fs (loop1): failed to initialize system zone (-117)
[  445.334922][T25568] EXT4-fs (loop1): mount failed
[  445.481879][T25572] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7546'.
[  445.490897][T25572] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7546'.
[  445.543681][T25575] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  445.590347][T25572] program syz.4.7546 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  445.650321][T25579] vfat: Bad value for 'uid'
[  445.654908][T25579] vfat: Bad value for 'uid'
[  445.910765][T25586] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7552'.
[  446.444219][T25607] set_capacity_and_notify: 11 callbacks suppressed
[  446.444231][T25607] loop5: detected capacity change from 0 to 1024
[  446.457752][T25607] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  446.467723][T25607] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  446.478317][T25607] EXT4-fs (loop5): invalid journal inode
[  446.483991][T25607] EXT4-fs (loop5): can't get journal size
[  446.491968][T25607] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 17104912: comm syz.5.7560: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  446.507514][T25607] EXT4-fs (loop5): failed to initialize system zone (-117)
[  446.514992][T25607] EXT4-fs (loop5): mount failed
[  446.537044][T25610] netlink: 68 bytes leftover after parsing attributes in process `syz.5.7562'.
[  446.555833][T25612] loop1: detected capacity change from 0 to 128
[  446.626398][T25616] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7564'.
[  446.708666][T25620] loop5: detected capacity change from 0 to 128
[  446.715937][T25620] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  446.730845][T25620] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  446.766335][T25624] loop4: detected capacity change from 0 to 1024
[  446.773478][T25624] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  446.784410][T25624] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  446.793894][ T2042] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  446.795837][T25624] JBD2: no valid journal superblock found
[  446.808879][T25624] EXT4-fs (loop4): Could not load journal inode
[  446.951635][T25627] syzkaller0: entered promiscuous mode
[  446.957128][T25627] syzkaller0: entered allmulticast mode
[  446.968692][T25627] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  446.991951][T24614] Bluetooth: hci0: command 0x1003 tx timeout
[  447.021704][T25626] tipc: Resetting bearer <eth:syzkaller0>
[  447.033225][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  447.061922][T25626] tipc: Disabling bearer <eth:syzkaller0>
[  447.150856][T25631] loop2: detected capacity change from 0 to 128
[  447.240228][T25634] loop4: detected capacity change from 0 to 128
[  447.298585][T25638] loop5: detected capacity change from 0 to 1024
[  447.305497][T25638] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  447.315053][T25638] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  447.326207][T25638] EXT4-fs (loop5): invalid journal inode
[  447.331874][T25638] EXT4-fs (loop5): can't get journal size
[  447.338023][T25638] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 17104912: comm syz.5.7572: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  447.354229][T25638] EXT4-fs (loop5): failed to initialize system zone (-117)
[  447.361630][T25638] EXT4-fs (loop5): mount failed
[  447.441246][T25643] netlink: 68 bytes leftover after parsing attributes in process `syz.1.7574'.
[  447.524002][T25648] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7576'.
[  447.608745][T25654] loop1: detected capacity change from 0 to 256
[  447.615377][T25654] vfat: Bad value for 'uid'
[  447.619883][T25654] vfat: Bad value for 'uid'
[  448.132189][T25666] loop4: detected capacity change from 0 to 1024
[  448.143647][T25666] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  448.154938][T25666] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  448.171628][T25666] EXT4-fs (loop4): invalid journal inode
[  448.183343][T25666] EXT4-fs (loop4): can't get journal size
[  448.196785][T25666] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 17104912: comm syz.4.7583: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  448.228177][T25666] EXT4-fs (loop4): failed to initialize system zone (-117)
[  448.237854][T25666] EXT4-fs (loop4): mount failed
[  448.273366][T25680] loop4: detected capacity change from 0 to 128
[  448.828741][T25695] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  448.839754][T25695] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  448.851918][T25695] JBD2: no valid journal superblock found
[  448.857647][T25695] EXT4-fs (loop2): Could not load journal inode
[  449.047651][T25703] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  449.060617][T25703] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  449.080745][T25707] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  449.090832][T25707] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=42c028, mo2=0002]
[  449.099555][T25707] EXT4-fs (loop5): orphan cleanup on readonly fs
[  449.107568][T25707] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.7596: Allocating blocks 41-42 which overlap fs metadata
[  449.122613][T25707] EXT4-fs (loop5): Remounting filesystem read-only
[  449.129504][T25707] EXT4-fs (loop5): 1 truncate cleaned up
[  449.136130][T25707] EXT4-fs (loop5): pa ffff888107e617e0: logic 1, phys. 41, len 23
[  449.144733][T25707] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  449.168977][T20539] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  449.186017][T16605] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  449.256584][   T29] kauditd_printk_skb: 1401 callbacks suppressed
[  449.256631][   T29] audit: type=1326 audit(1765622797.419:81410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  449.266809][T25722] vfat: Bad value for 'uid'
[  449.291745][T25722] vfat: Bad value for 'uid'
[  449.294885][   T29] audit: type=1326 audit(1765622797.459:81411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  449.320439][   T29] audit: type=1326 audit(1765622797.459:81412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  449.343988][   T29] audit: type=1326 audit(1765622797.459:81413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  449.368207][   T29] audit: type=1326 audit(1765622797.459:81414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f6455c4f749 code=0x7ffc0000
[  449.398095][   T29] audit: type=1326 audit(1765622797.529:81415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  449.422250][   T29] audit: type=1326 audit(1765622797.529:81416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  449.445785][   T29] audit: type=1326 audit(1765622797.529:81417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f6455c4f749 code=0x7ffc0000
[  449.470136][   T29] audit: type=1326 audit(1765622797.529:81418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  449.494559][   T29] audit: type=1326 audit(1765622797.529:81419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25696 comm="syz.1.7593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  449.519116][T25727] __nla_validate_parse: 2 callbacks suppressed
[  449.519206][T25727] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7602'.
[  449.543151][T25727] team0 (unregistering): Port device team_slave_0 removed
[  449.553655][T25727] team0 (unregistering): Port device team_slave_1 removed
[  449.866426][T25752] syzkaller0: entered promiscuous mode
[  449.872602][T25752] syzkaller0: entered allmulticast mode
[  449.973763][T25752] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  449.999629][T25751] tipc: Resetting bearer <eth:syzkaller0>
[  450.027201][T25751] tipc: Disabling bearer <eth:syzkaller0>
[  450.303934][T25765] netlink: 68 bytes leftover after parsing attributes in process `syz.4.7620'.
[  450.371686][T25771] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  450.399571][T25783] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7623'.
[  450.435942][T25776] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7624'.
[  450.487231][T21326] Bluetooth: hci0: Frame reassembly failed (-84)
[  450.506065][T25789] syzkaller0: entered promiscuous mode
[  450.511599][T25789] syzkaller0: entered allmulticast mode
[  450.519425][T25789] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  450.526541][T25788] tipc: Resetting bearer <eth:syzkaller0>
[  450.539462][T25788] tipc: Disabling bearer <eth:syzkaller0>
[  450.631025][T25796] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  450.640714][T25796] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  450.651893][T25796] EXT4-fs (loop5): invalid journal inode
[  450.657550][T25796] EXT4-fs (loop5): can't get journal size
[  450.663934][T25796] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 17104912: comm syz.5.7632: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  450.679629][T25796] EXT4-fs (loop5): failed to initialize system zone (-117)
[  450.687394][T25796] EXT4-fs (loop5): mount failed
[  450.798936][T25806] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  450.809854][T25806] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  450.820981][T25806] JBD2: no valid journal superblock found
[  450.826731][T25806] EXT4-fs (loop5): Could not load journal inode
[  450.879437][T25810] netlink: 68 bytes leftover after parsing attributes in process `syz.5.7635'.
[  451.113210][T25817] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7638'.
[  451.300078][T25830] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  451.305586][T25832] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  451.310409][T25830] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  451.329205][T25830] EXT4-fs (loop2): invalid journal inode
[  451.335825][T25830] EXT4-fs (loop2): can't get journal size
[  451.364119][T25830] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 17104912: comm syz.2.7643: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  451.380510][T25830] EXT4-fs (loop2): failed to initialize system zone (-117)
[  451.387808][T25830] EXT4-fs (loop2): mount failed
[  451.890535][T25848] set_capacity_and_notify: 13 callbacks suppressed
[  451.890553][T25848] loop2: detected capacity change from 0 to 512
[  451.905538][T25848] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  451.915477][T25848] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=42c028, mo2=0002]
[  451.916147][T25854] netlink: 68 bytes leftover after parsing attributes in process `syz.5.7647'.
[  451.923464][T25848] EXT4-fs (loop2): orphan cleanup on readonly fs
[  451.939408][T25848] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.7645: Allocating blocks 41-42 which overlap fs metadata
[  451.953465][T25848] EXT4-fs (loop2): Remounting filesystem read-only
[  451.960077][T25848] EXT4-fs (loop2): 1 truncate cleaned up
[  451.966066][T25848] EXT4-fs (loop2): pa ffff888107eab690: logic 1, phys. 41, len 23
[  451.967432][T25857] loop5: detected capacity change from 0 to 128
[  451.974375][T25848] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  452.024448][T21145] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.122103][T25871] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7651'.
[  452.205811][T25875] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  452.306273][T25888] netlink: 68 bytes leftover after parsing attributes in process `syz.2.7658'.
[  452.355020][T25892] loop2: detected capacity change from 0 to 128
[  452.551398][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  452.560075][T24614] Bluetooth: hci0: command 0x1003 tx timeout
[  452.959397][T25908] syzkaller0: entered promiscuous mode
[  452.964924][T25908] syzkaller0: entered allmulticast mode
[  452.975780][T25908] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  452.989416][T25907] tipc: Resetting bearer <eth:syzkaller0>
[  453.008894][T25907] tipc: Disabling bearer <eth:syzkaller0>
[  453.019881][T25915] loop1: detected capacity change from 0 to 1024
[  453.026845][T25915] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  453.037876][T25915] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  453.048220][T25915] JBD2: no valid journal superblock found
[  453.053992][T25915] EXT4-fs (loop1): Could not load journal inode
[  453.088042][T25917] loop5: detected capacity change from 0 to 1024
[  453.105201][T25917] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  453.123186][T25917] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  453.133994][T25917] EXT4-fs (loop5): invalid journal inode
[  453.146048][T25917] EXT4-fs (loop5): can't get journal size
[  453.155685][T25917] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 17104912: comm syz.5.7670: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  453.185220][T25920] syzkaller0: entered promiscuous mode
[  453.190703][T25920] syzkaller0: entered allmulticast mode
[  453.212126][T25920] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7671'.
[  453.256146][T25917] EXT4-fs (loop5): failed to initialize system zone (-117)
[  453.263645][T25917] EXT4-fs (loop5): mount failed
[  453.289277][T25924] loop2: detected capacity change from 0 to 512
[  453.295952][T20539] Bluetooth: hci0: Frame reassembly failed (-84)
[  453.320322][T25927] loop5: detected capacity change from 0 to 128
[  453.332417][T25924] loop2: detected capacity change from 0 to 128
[  453.454624][T25936] team0 (unregistering): Port device team_slave_0 removed
[  453.469198][T25936] team0 (unregistering): Port device team_slave_1 removed
[  454.167227][T25944] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  454.174734][T25944] syzkaller0: entered promiscuous mode
[  454.180220][T25944] syzkaller0: entered allmulticast mode
[  454.188750][T25944] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  454.199479][T25943] tipc: Resetting bearer <eth:syzkaller0>
[  454.209701][T25943] tipc: Disabling bearer <eth:syzkaller0>
[  454.384676][   T29] kauditd_printk_skb: 1295 callbacks suppressed
[  454.384688][   T29] audit: type=1326 audit(1765622802.549:82713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.455830][   T29] audit: type=1326 audit(1765622802.579:82714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.479707][   T29] audit: type=1326 audit(1765622802.579:82715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.503360][   T29] audit: type=1326 audit(1765622802.579:82716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.526964][   T29] audit: type=1326 audit(1765622802.579:82717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.550533][   T29] audit: type=1326 audit(1765622802.579:82718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.574460][   T29] audit: type=1326 audit(1765622802.579:82719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.598035][   T29] audit: type=1326 audit(1765622802.579:82720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.621605][   T29] audit: type=1326 audit(1765622802.619:82721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.645168][   T29] audit: type=1326 audit(1765622802.619:82722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25960 comm="syz.5.7687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e6093f749 code=0x7ffc0000
[  454.839654][T25965] __nla_validate_parse: 5 callbacks suppressed
[  454.839741][T25965] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7687'.
[  454.877270][T25959] loop4: detected capacity change from 0 to 128
[  454.889641][T25959] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  454.901954][T25959] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  454.918613][T20539] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  454.936161][T25968] netlink: 68 bytes leftover after parsing attributes in process `syz.1.7688'.
[  455.026848][T25972] FAULT_INJECTION: forcing a failure.
[  455.026848][T25972] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  455.040079][T25972] CPU: 1 UID: 0 PID: 25972 Comm: syz.4.7689 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  455.040112][T25972] Tainted: [W]=WARN
[  455.040119][T25972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  455.040133][T25972] Call Trace:
[  455.040168][T25972]  <TASK>
[  455.040175][T25972]  __dump_stack+0x1d/0x30
[  455.040197][T25972]  dump_stack_lvl+0xe8/0x140
[  455.040219][T25972]  dump_stack+0x15/0x1b
[  455.040240][T25972]  should_fail_ex+0x265/0x280
[  455.040292][T25972]  should_fail+0xb/0x20
[  455.040318][T25972]  should_fail_usercopy+0x1a/0x20
[  455.040339][T25972]  fpu__restore_sig+0x12d/0xaa0
[  455.040361][T25972]  ? x86_task_fpu+0x36/0x60
[  455.040378][T25972]  ? should_fail_ex+0xdb/0x280
[  455.040407][T25972]  __ia32_sys_rt_sigreturn+0x29f/0x350
[  455.040442][T25972]  x64_sys_call+0x274a/0x3000
[  455.040469][T25972]  do_syscall_64+0xd8/0x2a0
[  455.040509][T25972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.040531][T25972] RIP: 0033:0x7f809b82f747
[  455.040544][T25972] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  455.040578][T25972] RSP: 002b:00007f809a28f038 EFLAGS: 00000246
[  455.040593][T25972] RAX: 0000000000000147 RBX: 00007f809ba85fa0 RCX: 00007f809b82f749
[  455.040606][T25972] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000004
[  455.040617][T25972] RBP: 00007f809a28f090 R08: 0000000000008000 R09: 0000000000000000
[  455.040628][T25972] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000001
[  455.040718][T25972] R13: 00007f809ba86038 R14: 00007f809ba85fa0 R15: 00007ffcc13a3988
[  455.040734][T25972]  </TASK>
[  455.331575][T25990] loop4: detected capacity change from 0 to 128
[  455.351364][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  455.357372][T24614] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  455.893605][T26006] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7700'.
[  455.904634][T26010] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7699'.
[  455.960560][T26013] syzkaller0: entered promiscuous mode
[  455.966145][T26013] syzkaller0: entered allmulticast mode
[  455.974534][T26013] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  455.982451][T26012] tipc: Resetting bearer <eth:syzkaller0>
[  455.990727][T26012] tipc: Disabling bearer <eth:syzkaller0>
[  456.654284][T26025] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  456.665264][T26025] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  456.677227][T26025] JBD2: no valid journal superblock found
[  456.682990][T26025] EXT4-fs (loop2): Could not load journal inode
[  456.763412][T26028] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  456.770924][T26028] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7708'.
[  456.781075][T26028] tipc: Resetting bearer <eth:syzkaller0>
[  456.791137][T26027] tipc: Disabling bearer <eth:syzkaller0>
[  456.813080][T26030] netlink: 'syz.2.7709': attribute type 21 has an invalid length.
[  456.821119][T26030] netlink: 'syz.2.7709': attribute type 1 has an invalid length.
[  456.829345][T26030] netlink: 144 bytes leftover after parsing attributes in process `syz.2.7709'.
[  456.882390][T26036] xt_hashlimit: overflow, try lower: 17592186044416/11
[  456.894370][T26036] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7710'.
[  456.903414][T26036] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7710'.
[  456.914960][T26040] FAULT_INJECTION: forcing a failure.
[  456.914960][T26040] name failslab, interval 1, probability 0, space 0, times 0
[  456.927766][T26040] CPU: 0 UID: 0 PID: 26040 Comm: syz.2.7713 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  456.927821][T26040] Tainted: [W]=WARN
[  456.927827][T26040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  456.927839][T26040] Call Trace:
[  456.927844][T26040]  <TASK>
[  456.927851][T26040]  __dump_stack+0x1d/0x30
[  456.927945][T26040]  dump_stack_lvl+0xe8/0x140
[  456.927964][T26040]  dump_stack+0x15/0x1b
[  456.927981][T26040]  should_fail_ex+0x265/0x280
[  456.928000][T26040]  should_failslab+0x8c/0xb0
[  456.928019][T26040]  kmem_cache_alloc_node_noprof+0x6b/0x4c0
[  456.928120][T26040]  ? __alloc_skb+0x324/0x4d0
[  456.928140][T26040]  __alloc_skb+0x324/0x4d0
[  456.928173][T26040]  ? __alloc_skb+0x24d/0x4d0
[  456.928193][T26040]  audit_log_start+0x3a0/0x720
[  456.928211][T26040]  ? kstrtouint+0x76/0xc0
[  456.928228][T26040]  audit_seccomp+0x48/0x100
[  456.928254][T26040]  ? __seccomp_filter+0x832/0x1260
[  456.928337][T26040]  __seccomp_filter+0x843/0x1260
[  456.928386][T26040]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  456.928410][T26040]  ? vfs_write+0x7e8/0x960
[  456.928433][T26040]  ? __rcu_read_unlock+0x4f/0x70
[  456.928451][T26040]  ? __fget_files+0x184/0x1c0
[  456.928510][T26040]  __secure_computing+0x82/0x150
[  456.928532][T26040]  syscall_trace_enter+0xcf/0x1e0
[  456.928696][T26040]  do_syscall_64+0xb2/0x2a0
[  456.928723][T26040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.928803][T26040] RIP: 0033:0x7f3466e8f749
[  456.928817][T26040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.928832][T26040] RSP: 002b:00007f34658ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[  456.928861][T26040] RAX: ffffffffffffffda RBX: 00007f34670e5fa0 RCX: 00007f3466e8f749
[  456.928871][T26040] RDX: 0000000000000010 RSI: 0000200000000040 RDI: 0000000000000001
[  456.928882][T26040] RBP: 00007f34658ef090 R08: 0000000000000000 R09: 0000000000000000
[  456.928893][T26040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  456.928903][T26040] R13: 00007f34670e6038 R14: 00007f34670e5fa0 R15: 00007fff7d5db3c8
[  456.928918][T26040]  </TASK>
[  457.148006][T26036] bond0: entered promiscuous mode
[  457.153101][T26036] bond_slave_0: entered promiscuous mode
[  457.158819][T26036] bond_slave_1: entered promiscuous mode
[  457.167298][T26036] bond0: left promiscuous mode
[  457.172150][T26036] bond_slave_0: left promiscuous mode
[  457.178041][T26036] bond_slave_1: left promiscuous mode
[  457.220318][T26050] syzkaller0: entered promiscuous mode
[  457.225921][T26050] syzkaller0: entered allmulticast mode
[  457.245085][T26050] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  457.254020][T26038] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7712'.
[  457.266275][T26049] tipc: Resetting bearer <eth:syzkaller0>
[  457.276631][T26052] set_capacity_and_notify: 4 callbacks suppressed
[  457.276650][T26052] loop4: detected capacity change from 0 to 256
[  457.314173][T26052] vfat: Bad value for 'uid'
[  457.314401][T26049] tipc: Disabling bearer <eth:syzkaller0>
[  457.318678][T26052] vfat: Bad value for 'uid'
[  457.373347][T26046] loop2: detected capacity change from 0 to 128
[  457.380087][T26046] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  457.392098][T26046] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  457.421633][T20910] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  457.431704][T26058] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7719'.
[  457.509477][T26062] loop2: detected capacity change from 0 to 128
[  457.914356][T26063] chnl_net:caif_netlink_parms(): no params data found
[  457.986101][T26063] bridge0: port 1(bridge_slave_0) entered blocking state
[  457.993196][T26063] bridge0: port 1(bridge_slave_0) entered disabled state
[  458.000950][T26063] bridge_slave_0: entered allmulticast mode
[  458.009179][T26063] bridge_slave_0: entered promiscuous mode
[  458.017112][T26063] bridge0: port 2(bridge_slave_1) entered blocking state
[  458.024250][T26063] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.034259][T26063] bridge_slave_1: entered allmulticast mode
[  458.041778][T26063] bridge_slave_1: entered promiscuous mode
[  458.074818][T26063] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  458.087261][T26063] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  458.157777][T26063] team0: Port device team_slave_0 added
[  458.164140][ T3578] Bluetooth: hci0: command 0x1003 tx timeout
[  458.170187][T25992] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  458.187571][T26063] team0: Port device team_slave_1 added
[  458.211394][T26063] batman_adv: batadv0: Adding interface: batadv_slave_0
[  458.218361][T26063] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  458.244372][T26063] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  458.261335][T26081] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  458.268329][T26063] batman_adv: batadv0: Adding interface: batadv_slave_1
[  458.275942][T26063] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  458.302523][T26063] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  458.314819][T26080] tipc: Disabling bearer <eth:syzkaller0>
[  458.341269][T26063] hsr_slave_0: entered promiscuous mode
[  458.347704][T26063] hsr_slave_1: entered promiscuous mode
[  458.353690][T26063] debugfs: 'hsr0' already exists in 'hsr'
[  458.359397][T26063] Cannot create hsr debugfs directory
[  458.447996][T26095] FAULT_INJECTION: forcing a failure.
[  458.447996][T26095] name fail_futex, interval 1, probability 0, space 0, times 1
[  458.460866][T26095] CPU: 0 UID: 0 PID: 26095 Comm: syz.2.7728 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  458.460894][T26095] Tainted: [W]=WARN
[  458.460902][T26095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  458.460967][T26095] Call Trace:
[  458.460974][T26095]  <TASK>
[  458.460982][T26095]  __dump_stack+0x1d/0x30
[  458.461005][T26095]  dump_stack_lvl+0xe8/0x140
[  458.461029][T26095]  dump_stack+0x15/0x1b
[  458.461047][T26095]  should_fail_ex+0x265/0x280
[  458.461071][T26095]  should_fail+0xb/0x20
[  458.461098][T26095]  get_futex_key+0x907/0xc00
[  458.461128][T26095]  futex_wait_requeue_pi+0x15c/0x6a0
[  458.461150][T26095]  ? __pfx_futex_wake_mark+0x10/0x10
[  458.461192][T26095]  ? proc_fail_nth_write+0x13b/0x160
[  458.461222][T26095]  do_futex+0x136/0x380
[  458.461251][T26095]  __se_sys_futex+0x2ed/0x360
[  458.461314][T26095]  ? mutex_unlock+0x4f/0x90
[  458.461349][T26095]  __x64_sys_futex+0x78/0x90
[  458.461378][T26095]  x64_sys_call+0x2bc2/0x3000
[  458.461404][T26095]  do_syscall_64+0xd8/0x2a0
[  458.461486][T26095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  458.461505][T26095] RIP: 0033:0x7f3466e8f749
[  458.461518][T26095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  458.461619][T26095] RSP: 002b:00007f34658ef038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  458.461645][T26095] RAX: ffffffffffffffda RBX: 00007f34670e5fa0 RCX: 00007f3466e8f749
[  458.461660][T26095] RDX: 0000000000000000 RSI: 000080000000000b RDI: 000020000000cffc
[  458.461674][T26095] RBP: 00007f34658ef090 R08: 0000200000048000 R09: 0000000000000300
[  458.461688][T26095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  458.461701][T26095] R13: 00007f34670e6038 R14: 00007f34670e5fa0 R15: 00007fff7d5db3c8
[  458.461720][T26095]  </TASK>
[  459.194757][T26063] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.266737][T26063] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.299942][T26119] syzkaller0: entered promiscuous mode
[  459.305483][T26119] syzkaller0: entered allmulticast mode
[  459.311312][T26122] loop2: detected capacity change from 0 to 256
[  459.317977][T26122] vfat: Bad value for 'uid'
[  459.322503][T26122] vfat: Bad value for 'uid'
[  459.327981][T26119] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  459.335283][T26117] tipc: Resetting bearer <eth:syzkaller0>
[  459.346402][T26117] tipc: Disabling bearer <eth:syzkaller0>
[  459.354879][T26063] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.373328][T26124] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  459.409917][T26127] loop4: detected capacity change from 0 to 512
[  459.418494][T26127] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  459.423176][T26124] tipc: Resetting bearer <eth:syzkaller0>
[  459.427548][T26127] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  459.444615][T26127] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  459.454919][T26123] tipc: Disabling bearer <eth:syzkaller0>
[  459.463165][T26063] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.475534][T26127] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  459.483733][T26127] System zones: 0-2, 18-18, 34-35
[  459.489548][T26127] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.505390][T26127] netlink: 'syz.4.7737': attribute type 298 has an invalid length.
[  459.513940][T26127] EXT4-fs warning (device loop4): ext4_lookup:1797: Inconsistent encryption contexts: 12/14
[  459.526142][   T29] kauditd_printk_skb: 439 callbacks suppressed
[  459.526154][   T29] audit: type=1400 audit(1765622807.689:83160): avc:  denied  { write } for  pid=26126 comm="syz.4.7737" name="file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  459.526423][T26127] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.7737: bg 0: block 353: padding at end of block bitmap is not set
[  459.532997][   T29] audit: type=1400 audit(1765622807.689:83161): avc:  denied  { open } for  pid=26126 comm="syz.4.7737" path="/373/file0/file0/file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  459.571765][T26127] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  459.621303][   T29] audit: type=1400 audit(1765622807.769:83162): avc:  denied  { read } for  pid=26126 comm="syz.4.7737" name="file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  459.631934][T26127] EXT4-fs warning (device loop4): ext4_lookup:1797: Inconsistent encryption contexts: 12/14
[  459.643702][   T29] audit: type=1400 audit(1765622807.769:83163): avc:  denied  { watch watch_reads } for  pid=26126 comm="syz.4.7737" path="/373/file0/file0/file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  459.678704][   T29] audit: type=1326 audit(1765622807.769:83164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26126 comm="syz.4.7737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  459.702285][   T29] audit: type=1326 audit(1765622807.769:83165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26126 comm="syz.4.7737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  459.725769][   T29] audit: type=1400 audit(1765622807.769:83166): avc:  denied  { create } for  pid=26126 comm="syz.4.7737" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  459.768071][   T29] audit: type=1326 audit(1765622807.769:83167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26126 comm="syz.4.7737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  459.791647][   T29] audit: type=1326 audit(1765622807.769:83168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26126 comm="syz.4.7737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  459.815342][   T29] audit: type=1326 audit(1765622807.779:83169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26126 comm="syz.4.7737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  459.843162][T26139] __nla_validate_parse: 5 callbacks suppressed
[  459.843175][T26139] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7740'.
[  459.858891][T20724] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.864621][T26063] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  459.877728][T26063] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  459.887871][T26063] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  459.896961][T26063] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  459.915117][ T2042] Bluetooth: hci0: Frame reassembly failed (-84)
[  459.925738][T26150] loop1: detected capacity change from 0 to 512
[  459.935791][T26150] loop1: detected capacity change from 0 to 128
[  459.936768][T26063] 8021q: adding VLAN 0 to HW filter on device bond0
[  459.954748][T26063] 8021q: adding VLAN 0 to HW filter on device team0
[  459.964330][T21331] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.971452][T21331] bridge0: port 1(bridge_slave_0) entered forwarding state
[  459.983463][ T2042] bridge0: port 2(bridge_slave_1) entered blocking state
[  459.990520][ T2042] bridge0: port 2(bridge_slave_1) entered forwarding state
[  460.052188][T26063] 8021q: adding VLAN 0 to HW filter on device batadv0
[  460.262408][T26063] veth0_vlan: entered promiscuous mode
[  460.274673][T26063] veth1_vlan: entered promiscuous mode
[  460.305140][T26063] veth0_macvtap: entered promiscuous mode
[  460.314846][T26063] veth1_macvtap: entered promiscuous mode
[  460.336999][T26063] batman_adv: batadv0: Interface activated: batadv_slave_0
[  460.348091][T26063] batman_adv: batadv0: Interface activated: batadv_slave_1
[  460.456589][T26170] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7744'.
[  460.536439][T26185] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  460.581248][T21331] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  460.598926][T26187] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7748'.
[  460.633359][   T31] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  460.648692][   T31] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  460.728831][   T31] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  460.761040][T26192] loop5: detected capacity change from 0 to 512
[  460.769930][T26192] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: comm 
: Parent and EA inode have the same ino 15
[  460.781696][T26192] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: comm 
: Parent and EA inode have the same ino 15
[  460.793880][T26192] EXT4-fs (loop5): 1 orphan inode deleted
[  460.800110][T26192] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  460.816800][T26192] EXT4-fs error (device loop5): ext4_lookup:1789: inode #2: comm 
: deleted inode referenced: 15
[  460.840767][T26063] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.859696][T26200] loop5: detected capacity change from 0 to 128
[  460.928845][T26204] loop2: detected capacity change from 0 to 128
[  460.936276][T26202] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7750'.
[  461.896655][T26226] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7755'.
[  461.932980][T26228] FAULT_INJECTION: forcing a failure.
[  461.932980][T26228] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  461.946259][T26228] CPU: 1 UID: 0 PID: 26228 Comm: syz.5.7757 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  461.946293][T26228] Tainted: [W]=WARN
[  461.946300][T26228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  461.946313][T26228] Call Trace:
[  461.946320][T26228]  <TASK>
[  461.946328][T26228]  __dump_stack+0x1d/0x30
[  461.946354][T26228]  dump_stack_lvl+0xe8/0x140
[  461.946415][T26228]  dump_stack+0x15/0x1b
[  461.946436][T26228]  should_fail_ex+0x265/0x280
[  461.946461][T26228]  should_fail+0xb/0x20
[  461.946482][T26228]  should_fail_usercopy+0x1a/0x20
[  461.946551][T26228]  _copy_to_user+0x20/0xa0
[  461.946580][T26228]  simple_read_from_buffer+0xb5/0x130
[  461.946652][T26228]  proc_fail_nth_read+0x10e/0x150
[  461.946737][T26228]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  461.946765][T26228]  vfs_read+0x1a8/0x770
[  461.946784][T26228]  ? __rcu_read_unlock+0x4f/0x70
[  461.946805][T26228]  ? __fget_files+0x184/0x1c0
[  461.946889][T26228]  ? mutex_lock+0x58/0x90
[  461.946916][T26228]  ksys_read+0xda/0x1a0
[  461.946936][T26228]  __x64_sys_read+0x40/0x50
[  461.946956][T26228]  x64_sys_call+0x2889/0x3000
[  461.947000][T26228]  do_syscall_64+0xd8/0x2a0
[  461.947034][T26228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.947104][T26228] RIP: 0033:0x7fa994f1e15c
[  461.947120][T26228] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  461.947140][T26228] RSP: 002b:00007fa993987030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  461.947160][T26228] RAX: ffffffffffffffda RBX: 00007fa995175fa0 RCX: 00007fa994f1e15c
[  461.947173][T26228] RDX: 000000000000000f RSI: 00007fa9939870a0 RDI: 0000000000000003
[  461.947217][T26228] RBP: 00007fa993987090 R08: 0000000000000000 R09: 0000000000000000
[  461.947230][T26228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  461.947243][T26228] R13: 00007fa995176038 R14: 00007fa995175fa0 R15: 00007ffedd441ab8
[  461.947261][T26228]  </TASK>
[  462.014731][ T3578] Bluetooth: hci0: command 0x1003 tx timeout
[  462.019234][T25992] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  462.271524][T26247] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  462.280580][T26247] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  462.292424][T26247] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  462.311459][T26247] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  462.319506][T26247] System zones: 0-2, 18-18, 34-35
[  462.330997][T26247] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  462.356256][T26247] netlink: 'syz.2.7766': attribute type 298 has an invalid length.
[  462.381089][T26247] EXT4-fs warning (device loop2): ext4_lookup:1797: Inconsistent encryption contexts: 12/14
[  462.394255][T26241] set_capacity_and_notify: 2 callbacks suppressed
[  462.394271][T26241] loop4: detected capacity change from 0 to 128
[  462.407390][T26241] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  462.422626][T26247] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.7766: bg 0: block 353: padding at end of block bitmap is not set
[  462.437554][T26241] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  462.446694][T26247] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  462.459125][T26254] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7767'.
[  462.488093][   T31] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  462.498200][T26247] EXT4-fs warning (device loop2): ext4_lookup:1797: Inconsistent encryption contexts: 12/14
[  462.520042][T21145] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.612131][T26263] loop2: detected capacity change from 0 to 512
[  462.619424][T26263] EXT4-fs: Ignoring removed mblk_io_submit option
[  462.647626][T26265] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.662504][T26263] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.7769: invalid block
[  462.676093][T26263] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.7769: invalid indirect mapped block 4294967295 (level 1)
[  462.693758][T26265] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.708932][T26266] serio: Serial port ptm0
[  462.729118][T26263] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.7769: invalid indirect mapped block 4294967295 (level 1)
[  462.757035][T26265] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.793637][T26263] EXT4-fs (loop2): 2 truncates cleaned up
[  462.803911][T26265] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.833892][T26263] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  462.892828][T21331] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  462.912904][T21331] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  462.940346][T26263] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.953926][T21331] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  462.982115][T21331] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  463.537250][T26282] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7777'.
[  463.598036][T26293] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7781'.
[  463.734821][T26298] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7783'.
[  463.797951][T26300] loop2: detected capacity change from 0 to 128
[  464.200099][T26316] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7791'.
[  464.222620][T26316] team0 (unregistering): Port device team_slave_0 removed
[  464.236062][T26316] team0 (unregistering): Port device team_slave_1 removed
[  464.536529][   T29] kauditd_printk_skb: 827 callbacks suppressed
[  464.536543][   T29] audit: type=1326 audit(1765622812.699:83997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  464.566296][   T29] audit: type=1326 audit(1765622812.699:83998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  464.595232][   T29] audit: type=1326 audit(1765622812.699:83999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  464.618898][   T29] audit: type=1326 audit(1765622812.709:84000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  464.642426][   T29] audit: type=1326 audit(1765622812.709:84001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  464.665932][   T29] audit: type=1326 audit(1765622812.709:84002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  464.689483][   T29] audit: type=1326 audit(1765622812.719:84003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  464.712955][   T29] audit: type=1326 audit(1765622812.719:84004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  464.736546][   T29] audit: type=1326 audit(1765622812.719:84005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  464.760299][   T29] audit: type=1326 audit(1765622812.729:84006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26299 comm="syz.2.7784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  464.789664][T26330] tipc: Started in network mode
[  464.794655][T26330] tipc: Node identity b69b2ab304fc, cluster identity 4711
[  464.801833][T26330] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  464.808984][T26330] syzkaller0: entered promiscuous mode
[  464.814520][T26330] syzkaller0: entered allmulticast mode
[  464.836574][T26330] tipc: Resetting bearer <eth:syzkaller0>
[  464.847337][T26329] tipc: Resetting bearer <eth:syzkaller0>
[  464.856532][T26329] tipc: Disabling bearer <eth:syzkaller0>
[  464.913280][T26339] loop5: detected capacity change from 0 to 128
[  465.098039][T26351] __nla_validate_parse: 1 callbacks suppressed
[  465.098056][T26351] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7803'.
[  465.514037][T26357] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7805'.
[  465.847016][T26383] loop5: detected capacity change from 0 to 256
[  465.854907][T26383] vfat: Bad value for 'uid'
[  465.859431][T26383] vfat: Bad value for 'uid'
[  465.906230][T26382] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7813'.
[  465.966544][T26400] loop2: detected capacity change from 0 to 128
[  466.764747][T26426] loop5: detected capacity change from 0 to 128
[  466.896174][T26429] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7828'.
[  467.340649][T26452] loop4: detected capacity change from 0 to 128
[  467.974906][T26471] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7843'.
[  468.024920][T26471] team0 (unregistering): Port device team_slave_0 removed
[  468.050610][T26471] team0 (unregistering): Port device team_slave_1 removed
[  468.280870][T26497] loop4: detected capacity change from 0 to 512
[  468.283791][T26498] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7851'.
[  468.296320][T26497] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  468.302056][T26497] EXT4-fs (loop4): orphan cleanup on readonly fs
[  468.313116][T26497] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.7855: Allocating blocks 41-42 which overlap fs metadata
[  468.327428][T26497] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.7855: Allocating blocks 41-42 which overlap fs metadata
[  468.341730][T26497] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.7855: Failed to acquire dquot type 1
[  468.353457][T26497] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  468.368098][T26497] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.7855: corrupted inode contents
[  468.380129][T26497] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #12: comm syz.4.7855: mark_inode_dirty error
[  468.391660][T26497] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.7855: corrupted inode contents
[  468.403694][T26497] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.7855: mark_inode_dirty error
[  468.415382][T26497] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.7855: corrupted inode contents
[  468.427405][T26497] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  468.436052][T26497] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.7855: corrupted inode contents
[  468.448059][T26497] EXT4-fs error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.7855: mark_inode_dirty error
[  468.459323][T26497] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  468.468708][T26497] EXT4-fs (loop4): 1 truncate cleaned up
[  468.474756][T26497] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  468.493955][T26497] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  468.519302][T20724] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.584987][T26504] syzkaller0: entered promiscuous mode
[  468.590500][T26504] syzkaller0: entered allmulticast mode
[  468.748944][T26511] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7860'.
[  468.807137][T26523] loop5: detected capacity change from 0 to 1024
[  468.814841][T26523] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  468.825233][T26523] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  468.836241][T26523] EXT4-fs (loop5): invalid journal inode
[  468.843024][T26523] EXT4-fs (loop5): can't get journal size
[  468.849418][T26523] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 17104912: comm syz.5.7865: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  468.865199][T26523] EXT4-fs (loop5): failed to initialize system zone (-117)
[  468.867756][T26519] loop4: detected capacity change from 0 to 128
[  468.873333][T26523] EXT4-fs (loop5): mount failed
[  468.879101][T26519] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  468.895498][T26519] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  468.957141][ T2042] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  469.011174][T26539] syzkaller0: entered promiscuous mode
[  469.016824][T26539] syzkaller0: entered allmulticast mode
[  469.029217][T26541] loop4: detected capacity change from 0 to 512
[  469.056714][T26541] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  469.069500][T26541] ext4 filesystem being mounted at /401/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  469.082003][T26541] netlink: 32 bytes leftover after parsing attributes in process `syz.4.7870'.
[  469.092015][T26541] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[  469.122628][T20724] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.139373][T26553] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7874'.
[  469.160628][T26553] team0 (unregistering): Port device team_slave_0 removed
[  469.173256][T26553] team0 (unregistering): Port device team_slave_1 removed
[  469.206662][T26557] loop4: detected capacity change from 0 to 128
[  469.287175][T26559] loop2: detected capacity change from 0 to 1024
[  469.295042][T26559] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  469.305984][T26559] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  469.316870][T26559] JBD2: no valid journal superblock found
[  469.322696][T26559] EXT4-fs (loop2): Could not load journal inode
[  469.395629][T26561] loop5: detected capacity change from 0 to 128
[  469.402928][T26561] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  469.415396][T26561] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  469.433140][T21326] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  469.474683][T26567] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7880'.
[  469.546399][   T29] kauditd_printk_skb: 2362 callbacks suppressed
[  469.546414][   T29] audit: type=1326 audit(1765622817.709:86365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26547 comm="syz.1.7872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  469.588260][   T29] audit: type=1326 audit(1765622817.749:86366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26547 comm="syz.1.7872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  469.611960][   T29] audit: type=1326 audit(1765622817.749:86367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26547 comm="syz.1.7872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  469.635475][   T29] audit: type=1326 audit(1765622817.749:86368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26547 comm="syz.1.7872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  469.658968][   T29] audit: type=1326 audit(1765622817.749:86369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26547 comm="syz.1.7872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f6455c4f749 code=0x7ffc0000
[  469.682642][   T29] audit: type=1326 audit(1765622817.749:86370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26547 comm="syz.1.7872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  469.706165][   T29] audit: type=1326 audit(1765622817.749:86371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26547 comm="syz.1.7872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6455beb829 code=0x7ffc0000
[  469.729671][   T29] audit: type=1326 audit(1765622817.749:86372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26547 comm="syz.1.7872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f6455c4f749 code=0x7ffc0000
[  469.753367][   T29] audit: type=1400 audit(1765622817.849:86373): avc:  denied  { nlmsg_read } for  pid=26575 comm="syz.2.7882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  469.774144][   T29] audit: type=1326 audit(1765622817.899:86374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26547 comm="syz.1.7872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6455c465e7 code=0x7ffc0000
[  470.125055][T26618] loop2: detected capacity change from 0 to 128
[  470.156927][T26610] __nla_validate_parse: 3 callbacks suppressed
[  470.157014][T26610] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7893'.
[  470.175976][T26620] loop4: detected capacity change from 0 to 128
[  471.133448][T26645] netlink: 48 bytes leftover after parsing attributes in process `syz.1.7907'.
[  471.142933][T26645] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  471.404537][T26665] 9p: Bad value for 'wfdno'
[  471.817677][T26684] syzkaller0: entered promiscuous mode
[  471.823573][T26684] syzkaller0: entered allmulticast mode
[  471.905921][T26686] loop2: detected capacity change from 0 to 128
[  472.197377][T26697] 9p: Bad value for 'wfdno'
[  472.568805][T26730] 9p: Bad value for 'wfdno'
[  473.287964][T26742] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7946'.
[  473.335132][T26752] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  473.344883][T26752] syzkaller0: entered promiscuous mode
[  473.350485][T26752] syzkaller0: entered allmulticast mode
[  473.359228][T26752] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7950'.
[  473.369864][T26752] tipc: Resetting bearer <eth:syzkaller0>
[  473.376409][T26751] tipc: Resetting bearer <eth:syzkaller0>
[  473.385418][T26751] tipc: Disabling bearer <eth:syzkaller0>
[  473.392025][T26753] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7949'.
[  473.443453][T26755] set_capacity_and_notify: 1 callbacks suppressed
[  473.443498][T26755] loop4: detected capacity change from 0 to 1024
[  473.481369][T26755] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  473.491927][T26755] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  473.502916][T26755] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  473.515913][T26755] JBD2: no valid journal superblock found
[  473.521669][T26755] EXT4-fs (loop4): Could not load journal inode
[  473.533411][T26755] FAULT_INJECTION: forcing a failure.
[  473.533411][T26755] name failslab, interval 1, probability 0, space 0, times 0
[  473.546068][T26755] CPU: 0 UID: 0 PID: 26755 Comm: syz.4.7951 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  473.546170][T26755] Tainted: [W]=WARN
[  473.546175][T26755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  473.546182][T26755] Call Trace:
[  473.546186][T26755]  <TASK>
[  473.546191][T26755]  __dump_stack+0x1d/0x30
[  473.546256][T26755]  dump_stack_lvl+0xe8/0x140
[  473.546276][T26755]  dump_stack+0x15/0x1b
[  473.546286][T26755]  should_fail_ex+0x265/0x280
[  473.546301][T26755]  should_failslab+0x8c/0xb0
[  473.546314][T26755]  __kmalloc_node_track_caller_noprof+0xb9/0x5b0
[  473.546330][T26755]  ? sidtab_sid2str_get+0xa0/0x130
[  473.546360][T26755]  kmemdup_noprof+0x2b/0x70
[  473.546372][T26755]  sidtab_sid2str_get+0xa0/0x130
[  473.546388][T26755]  security_sid_to_context_core+0x1eb/0x2e0
[  473.546406][T26755]  security_sid_to_context+0x27/0x40
[  473.546441][T26755]  selinux_lsmprop_to_secctx+0x67/0xf0
[  473.546458][T26755]  security_lsmprop_to_secctx+0x1a3/0x1c0
[  473.546472][T26755]  audit_log_subj_ctx+0xa4/0x3e0
[  473.546585][T26755]  ? skb_put+0xa9/0xf0
[  473.546599][T26755]  audit_log_task_context+0x48/0x70
[  473.546612][T26755]  audit_log_task+0xf4/0x250
[  473.546631][T26755]  audit_seccomp+0x61/0x100
[  473.546707][T26755]  ? __seccomp_filter+0x832/0x1260
[  473.546771][T26755]  __seccomp_filter+0x843/0x1260
[  473.546787][T26755]  ? __schedule+0x85f/0xcd0
[  473.546839][T26755]  ? __cond_resched+0x4e/0x90
[  473.546857][T26755]  __secure_computing+0x82/0x150
[  473.546901][T26755]  syscall_trace_enter+0xcf/0x1e0
[  473.546915][T26755]  do_syscall_64+0xb2/0x2a0
[  473.546934][T26755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.546946][T26755] RIP: 0033:0x7f809b82e15c
[  473.547023][T26755] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  473.547033][T26755] RSP: 002b:00007f809a28f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  473.547054][T26755] RAX: ffffffffffffffda RBX: 00007f809ba85fa0 RCX: 00007f809b82e15c
[  473.547062][T26755] RDX: 000000000000000f RSI: 00007f809a28f0a0 RDI: 0000000000000006
[  473.547069][T26755] RBP: 00007f809a28f090 R08: 0000000000000000 R09: 0000000000000000
[  473.547078][T26755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  473.547090][T26755] R13: 00007f809ba86038 R14: 00007f809ba85fa0 R15: 00007ffcc13a3988
[  473.547108][T26755]  </TASK>
[  474.556400][   T29] kauditd_printk_skb: 1522 callbacks suppressed
[  474.556483][   T29] audit: type=1326 audit(1765622822.719:87896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  474.588469][   T29] audit: type=1326 audit(1765622822.759:87897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  474.611991][   T29] audit: type=1326 audit(1765622822.759:87898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  474.635475][   T29] audit: type=1326 audit(1765622822.759:87899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  474.659033][   T29] audit: type=1326 audit(1765622822.759:87900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  474.698011][   T29] audit: type=1326 audit(1765622822.849:87901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  474.721503][   T29] audit: type=1326 audit(1765622822.849:87902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  474.745058][   T29] audit: type=1326 audit(1765622822.849:87903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f3466e8f749 code=0x7ffc0000
[  474.768600][   T29] audit: type=1326 audit(1765622822.849:87904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466e865e7 code=0x7ffc0000
[  474.792141][   T29] audit: type=1326 audit(1765622822.849:87905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26776 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3466e2b829 code=0x7ffc0000
[  474.873038][T26796] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7963'.
[  475.438150][T26803] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.495867][T26803] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.546203][T26803] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.607106][T26803] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.766164][ T2042] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  475.821459][ T2042] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  475.896449][ T2042] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  475.967264][ T2042] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  476.293628][T26810] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7969'.
[  476.413749][T26828] loop4: detected capacity change from 0 to 1024
[  476.430745][T26828] EXT4-fs: inline encryption not supported
[  476.493557][T26828] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  476.525451][T26828] netlink: 224 bytes leftover after parsing attributes in process `syz.4.7974'.
[  476.646403][T20724] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  477.055572][T26848] loop4: detected capacity change from 0 to 512
[  477.167716][T26860] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7984'.
[  477.239594][T26869] loop4: detected capacity change from 0 to 1024
[  477.246795][T26869] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  477.256419][T26869] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  477.267121][T26869] EXT4-fs (loop4): invalid journal inode
[  477.272890][T26869] EXT4-fs (loop4): can't get journal size
[  477.279015][T26869] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 17104912: comm syz.4.7988: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  477.294410][T26869] EXT4-fs (loop4): failed to initialize system zone (-117)
[  477.301687][T26869] EXT4-fs (loop4): mount failed
[  477.364884][T26875] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7989'.
[  477.407529][T26882] loop4: detected capacity change from 0 to 1024
[  477.414549][T26882] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  477.424523][T26882] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  477.436237][T26882] EXT4-fs (loop4): invalid journal inode
[  477.442183][T26882] EXT4-fs (loop4): can't get journal size
[  477.448197][T26882] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 17104912: comm syz.4.7991: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  477.463600][T26882] EXT4-fs (loop4): failed to initialize system zone (-117)
[  477.470953][T26882] EXT4-fs (loop4): mount failed
[  477.635530][T26903] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7997'.
[  477.644874][T26903] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  477.652406][T26903] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.660064][T26903] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  477.667487][T26903] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.701361][T26907] loop4: detected capacity change from 0 to 1024
[  477.708550][T26907] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  477.719571][T26907] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  477.729954][T26907] JBD2: no valid journal superblock found
[  477.735819][T26907] EXT4-fs (loop4): Could not load journal inode
[  477.862136][T26911] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8001'.
[  477.979393][T26929] loop2: detected capacity change from 0 to 128
[  478.744112][T26960] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8015'.
[  479.088831][T26971] loop4: detected capacity change from 0 to 128
[  479.214555][T26978] ip6gre1: entered promiscuous mode
[  479.347515][T26990] loop5: detected capacity change from 0 to 128
[  479.440750][T26992] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8027'.
[  479.483317][T26997] loop2: detected capacity change from 0 to 1024
[  479.493547][T26997] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  479.504463][T26997] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  479.514750][T26997] JBD2: no valid journal superblock found
[  479.520460][T26997] EXT4-fs (loop2): Could not load journal inode
[  479.650007][T27000] loop2: detected capacity change from 0 to 512
[  479.724945][T27000] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.8029: iget: bad extra_isize 90 (inode size 256)
[  479.739336][T27000] EXT4-fs (loop2): Remounting filesystem read-only
[  479.746168][T27000] EXT4-fs warning (device loop2): ext4_evict_inode:273: xattr delete (err -30)
[  479.756209][T27000] EXT4-fs (loop2): 1 orphan inode deleted
[  479.762944][T27000] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  479.807279][T21145] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  480.026111][T27015] loop4: detected capacity change from 0 to 128
[  480.040023][   T29] kauditd_printk_skb: 878 callbacks suppressed
[  480.040035][   T29] audit: type=1326 audit(1765622828.199:88784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  480.077585][   T29] audit: type=1326 audit(1765622828.219:88785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  480.101103][   T29] audit: type=1326 audit(1765622828.219:88786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  480.124686][   T29] audit: type=1326 audit(1765622828.219:88787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f809b831667 code=0x7ffc0000
[  480.148203][   T29] audit: type=1326 audit(1765622828.219:88788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f809b8315dc code=0x7ffc0000
[  480.171770][   T29] audit: type=1326 audit(1765622828.219:88789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f809b831514 code=0x7ffc0000
[  480.195271][   T29] audit: type=1326 audit(1765622828.219:88790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f809b831514 code=0x7ffc0000
[  480.218769][   T29] audit: type=1326 audit(1765622828.219:88791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f809b82e3aa code=0x7ffc0000
[  480.242149][   T29] audit: type=1326 audit(1765622828.219:88792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  480.265716][   T29] audit: type=1326 audit(1765622828.219:88793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27014 comm="syz.4.8034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f809b82f749 code=0x7ffc0000
[  480.843952][ T2042] Bluetooth: hci0: Frame reassembly failed (-84)
[  480.859772][T27025] loop5: detected capacity change from 0 to 128
[  480.866483][T27025] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  480.879584][T27025] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  480.882235][T27035] serio: Serial port ptm1
[  480.897655][ T2042] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  480.965213][T27038] loop5: detected capacity change from 0 to 128
[  480.984965][T27042] syzkaller0: entered promiscuous mode
[  480.990579][T27042] syzkaller0: entered allmulticast mode
[  481.140656][T27063] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8052'.
[  481.193951][T27068] loop4: detected capacity change from 0 to 4096
[  481.203180][T27068] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  481.217106][T27068] FAULT_INJECTION: forcing a failure.
[  481.217106][T27068] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  481.230194][T27068] CPU: 0 UID: 0 PID: 27068 Comm: syz.4.8050 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  481.230334][T27068] Tainted: [W]=WARN
[  481.230338][T27068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  481.230346][T27068] Call Trace:
[  481.230349][T27068]  <TASK>
[  481.230355][T27068]  __dump_stack+0x1d/0x30
[  481.230370][T27068]  dump_stack_lvl+0xe8/0x140
[  481.230433][T27068]  dump_stack+0x15/0x1b
[  481.230444][T27068]  should_fail_ex+0x265/0x280
[  481.230457][T27068]  should_fail+0xb/0x20
[  481.230523][T27068]  should_fail_usercopy+0x1a/0x20
[  481.230582][T27068]  _copy_from_iter+0xcf/0xe70
[  481.230597][T27068]  ? __alloc_skb+0x3bb/0x4d0
[  481.230661][T27068]  ? __alloc_skb+0x24d/0x4d0
[  481.230675][T27068]  netlink_sendmsg+0x471/0x6b0
[  481.230694][T27068]  ? __pfx_netlink_sendmsg+0x10/0x10
[  481.230785][T27068]  __sock_sendmsg+0x145/0x180
[  481.230796][T27068]  ____sys_sendmsg+0x31e/0x4a0
[  481.230813][T27068]  ___sys_sendmsg+0x17b/0x1d0
[  481.230835][T27068]  __x64_sys_sendmsg+0xd4/0x160
[  481.230867][T27068]  x64_sys_call+0x17ba/0x3000
[  481.230881][T27068]  do_syscall_64+0xd8/0x2a0
[  481.230899][T27068]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.230912][T27068] RIP: 0033:0x7f809b82f749
[  481.230975][T27068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  481.231045][T27068] RSP: 002b:00007f809a26e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  481.231056][T27068] RAX: ffffffffffffffda RBX: 00007f809ba86090 RCX: 00007f809b82f749
[  481.231086][T27068] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000006
[  481.231093][T27068] RBP: 00007f809a26e090 R08: 0000000000000000 R09: 0000000000000000
[  481.231100][T27068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  481.231108][T27068] R13: 00007f809ba86128 R14: 00007f809ba86090 R15: 00007ffcc13a3988
[  481.231118][T27068]  </TASK>
[  481.909614][T21329] Bluetooth: hci1: Frame reassembly failed (-84)
[  481.936590][T20724] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.954205][T27096] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  481.994111][T20724] ==================================================================
[  482.002211][T20724] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru
[  482.009771][T20724] 
[  482.012091][T20724] read-write to 0xffff888237c26468 of 1 bytes by task 27098 on cpu 0:
[  482.020234][T20724]  folio_add_lru+0xa5/0x1f0
[  482.024735][T20724]  folio_add_lru_vma+0x49/0x70
[  482.029490][T20724]  do_wp_page+0x1550/0x2510
[  482.033986][T20724]  handle_mm_fault+0x7b0/0x2c60
[  482.038842][T20724]  do_user_addr_fault+0x630/0x1080
[  482.043946][T20724]  exc_page_fault+0x62/0xa0
[  482.048452][T20724]  asm_exc_page_fault+0x26/0x30
[  482.053298][T20724] 
[  482.055612][T20724] read to 0xffff888237c26468 of 1 bytes by task 20724 on cpu 1:
[  482.063224][T20724]  __lru_add_drain_all+0x17e/0x450
[  482.068335][T20724]  lru_add_drain_all+0x10/0x20
[  482.073091][T20724]  invalidate_bdev+0x47/0x70
[  482.077669][T20724]  ext4_put_super+0x624/0x7d0
[  482.082335][T20724]  generic_shutdown_super+0xe6/0x210
[  482.087620][T20724]  kill_block_super+0x2a/0x70
[  482.092283][T20724]  ext4_kill_sb+0x42/0x80
[  482.096597][T20724]  deactivate_locked_super+0x75/0x1c0
[  482.101960][T20724]  deactivate_super+0x97/0xa0
[  482.106632][T20724]  cleanup_mnt+0x2a9/0x320
[  482.111037][T20724]  __cleanup_mnt+0x19/0x20
[  482.115441][T20724]  task_work_run+0x131/0x1a0
[  482.120016][T20724]  exit_to_user_mode_loop+0x1fe/0x740
[  482.125373][T20724]  do_syscall_64+0x202/0x2a0
[  482.129958][T20724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.135836][T20724] 
[  482.138142][T20724] value changed: 0x01 -> 0x04
[  482.142796][T20724] 
[  482.145105][T20724] Reported by Kernel Concurrency Sanitizer on:
[  482.151240][T20724] CPU: 1 UID: 0 PID: 20724 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  482.162769][T20724] Tainted: [W]=WARN
[  482.166550][T20724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  482.176586][T20724] ==================================================================
[  482.200133][T27103] loop4: detected capacity change from 0 to 512
[  482.213005][T27103] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  482.225521][T27103] ext4 filesystem being mounted at /444/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  482.244943][T20724] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.871329][T25992] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  482.871365][T24614] Bluetooth: hci0: command 0x1003 tx timeout
[  483.911239][T25992] Bluetooth: hci1: command 0x1003 tx timeout
[  483.911239][ T3578] Bluetooth: hci1: Opcode 0x1003 failed: -110