last executing test programs:

23m9.730514988s ago: executing program 32 (id=425):
mount(&(0x7f00000002c0)=@filename='./file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000380)='cgroup\x00', 0x408, &(0x7f00000003c0)='-\xc5\\%-+\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRES64], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x3c, r4, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x28, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe0c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}]}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)
clock_nanosleep(0x8, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)
syz_usb_connect(0x2, 0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000958c834099043f4d2ad201020301090238000100fd20000904270001ff40d300052406000105240009000d240f01030000000d0010006306240200000009050b02"], 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000068c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x25dfdbfe, {}, [@IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_BRIDGE={0x4}]}]}, 0x28}}, 0x0)

20m41.087132264s ago: executing program 0 (id=965):
r0 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r0, &(0x7f0000000180), 0x400008a, 0x0)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, 0x0)
write(r1, 0x0, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="2801000017000100feffffff000000000a0100ff0000000000000000000000000000000000000000200100"/52, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000001000000000000000000000000ac141400"/36, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000f89aa977077107290000000004000000000000000000000800000000090000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000209000000ba6b6e000200000000000000000400"/136], 0x128}, 0x1, 0x0, 0x0, 0x1}, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x0)
lchown(0x0, r3, 0xee01)
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000000)={[{@norecovery}, {@grpquota}, {@nombcache}, {@user_xattr}, {@nomblk_io_submit}]}, 0x1, 0xbbc, &(0x7f00000017c0)="$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")
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r6, 0x402c542c, &(0x7f0000000340)={0x0, 0xfffffff9, 0xfffffe3f, 0x0, 0x0, "4d6bcb000000000000000000000000b4a5cf72", 0x0, 0x2})
readv(r6, &(0x7f0000000380)=[{&(0x7f0000000280)=""/79, 0x4f}], 0x1)
connect$can_bcm(r5, &(0x7f0000000380), 0x10)
readv(r5, &(0x7f00000000c0)=[{&(0x7f00000003c0)=""/115, 0x73}], 0x1)
sendmsg$can_bcm(r5, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001ac0), &(0x7f0000000080), 0x1, r7}, 0x38)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
setxattr$system_posix_acl(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="020000000100000000000000040000000000000008000000", @ANYRES32=0xee01, @ANYBLOB="100003000006000020"], 0x2c, 0x0)
symlink(&(0x7f0000000340)='./file1\x00', &(0x7f0000000200)='./file0/file1\x00')
sendmsg$key(r0, &(0x7f0000000000)={0x9, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2, 0x9, 0x0, 0x9, 0x6, 0x0, 0x0, 0x25dfdbff, [@sadb_lifetime={0x4, 0x2, 0x10, 0x6, 0xc37b, 0x7f}]}, 0x30}}, 0x0)

20m40.143082252s ago: executing program 0 (id=973):
r0 = syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$pokeuser(0x6, r0, 0x9, 0x702)

20m39.779071364s ago: executing program 0 (id=975):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, 0x0)
socket$inet6(0xa, 0x3, 0x8000000003c)
write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=<r1=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file2\x00', 0x0, &(0x7f0000007540)=ANY=[@ANYRES8, @ANYRESHEX=r1, @ANYRES32], 0x43, 0x5552, &(0x7f0000007580)="$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")
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$inet(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x410, 0x238, 0x238, 0x238, 0x98, 0x98, 0x378, 0x378, 0x378, 0x378, 0x378, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@dev={0xfe, 0x80, '\x00', 0x18}, 'veth0_virt_wifi\x00', {0x7}}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x470)

20m37.171526474s ago: executing program 0 (id=994):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond0\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001540)=ANY=[@ANYBLOB="4400000010003b15000800"/20, @ANYRES32=0x0, @ANYBLOB="0000000000b401001c00128009000100626f6e64000000000c000280050001000600000008000a00", @ANYRES32=r2], 0x44}}, 0x0)

20m36.943077976s ago: executing program 0 (id=997):
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r5}, 0x18)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, 0x0, 0x0)
bind$inet(r1, 0x0, 0x0)
connect$inet(r1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f00000003c0)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x6, 0x2, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, &(0x7f00000000c0)=0x13)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000700)=ANY=[@ANYBLOB="18082115702fffe485c2", @ANYRES32, @ANYBLOB="00000000000000006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa10000000000000701f800f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, &(0x7f00000000c0)=0x7ff00000)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000600)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="20019d000000bbb023ad8ab813541759a3a6869dcf42d297870774d5ac3639c0646f2220d0c7f5c6ec4f132e9671acdfca8149fef84562b97ad8fa3cc04b4fe79dec45679203e211c19571539db9bb2316fe789682"], 0x0})

20m32.896965336s ago: executing program 0 (id=1005):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@debug}, {@noload}, {@nombcache}, {@quota}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@barrier_val={'barrier', 0x3d, 0x80}}]}, 0xfe, 0x481, &(0x7f0000000940)="$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")
keyctl$clear(0x5, 0xffffffffffffffff)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)

20m16.47269855s ago: executing program 33 (id=1005):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@debug}, {@noload}, {@nombcache}, {@quota}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@barrier_val={'barrier', 0x3d, 0x80}}]}, 0xfe, 0x481, &(0x7f0000000940)="$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")
keyctl$clear(0x5, 0xffffffffffffffff)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)

9m0.578098327s ago: executing program 3 (id=3251):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0e0000000400"], 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r4, 0x18000000000002a0, 0x204, 0x0, &(0x7f0000000040)="5aee41dea43e63a3f7fb7f11c72b", 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

8m59.547026085s ago: executing program 3 (id=3256):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="18020000040000000000000000000000850000004100000018110000", @ANYRES32=r0], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

8m59.452584035s ago: executing program 3 (id=3258):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
setns(r1, 0x24020000)
userfaultfd(0x80801)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000200)='./bus\x00', 0x100)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_auto}]})
chroot(&(0x7f0000000000)='./bus\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)

8m54.133495734s ago: executing program 3 (id=3278):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
write$binfmt_register(r0, &(0x7f0000000140)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x2007, 0x3a, 'M', 0x3a, '\x84\xa3\xea\xd6O\x89|\xeb\x80\xf0\xe96\xf4`&\xd4E\xe7L\x82n;H\xd8\xdf\x9a, \\E\xd4\xab\x1ed', 0x3a, './file2', 0x3a, [0x46]}, 0x4b)
r1 = socket$inet6(0xa, 0x3, 0x3c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00'})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, 0x0)
r5 = open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x0)
write$tcp_mem(r5, &(0x7f0000000100)={0x2, 0x2d, 0xaf, 0xa, 0x80000b, 0x2c}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ptrace$ARCH_GET_GS(0x1e, r2, &(0x7f0000000400), 0x1004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='sched_switch\x00', r7}, 0x18)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x17, &(0x7f0000000180)=0x100000001, 0x4)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1258438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
mount$bind(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080)='./file1\x00', &(0x7f00000001c0), 0x4, 0x0)

8m53.049688873s ago: executing program 3 (id=3282):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGKBENT(r0, 0x4b46, &(0x7f0000000000)={0x6, 0x40, 0x7})
ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f00000004c0)={0x9, "52b3bc036fff660a161973ba0db79c19678750c6c05ebd46b3005c6e799e42d884341a1f2bd03c6dcffea849a0eb62df578f469c7843e119f84f40a7093f602cc3829cb63b0d53bd0210fe772c346705f4e26e30dfcf8a5f9abc513d4a40320b63cd44241b092c46957808754cab0b54dc5ad6296a4027704243d5a6898b9350e4aa208096ce3b4b233f2f5b6136085220501164b9b432823c91002279d701ac76a1632745280f3fc4e4b701830711574e048f93cf016b4e7d42e31516fbc36d336d824e90a49f49703d5c6c4fe448615df59ce4ed558e8d0465ade08485a1837eb7e13e497698ac7fef344a349d432831ea53cb74249cc2efc4f78c98c4fd898f91a91b953cec37bfff4b553fb925e7665bbe61f522ff42c4474b30928058ecceb08d2ccc34c352c118cbf410ffe28a9667bf46ea1acb0ad03151fc26852e19a526e244464e2b4cd97b73769c364e7a66f05c4b3e569700025850ea20a9cf00dce9fbd0c75c8dfcfc2e943e7d5ddf64cec7c12ecf23c27e4c795bb42f3ab3fcec8a32cd69b5358b83c9e78e4fd9b9b27ca977bfcfc5af79fd144eaa7f8a5bec8b27768fae7258ece7f207d67462b451767fc2cf9efae350c9f5f4f0333c207b60c8bdbb7e9f05a2c2d21dab491c2369e9ee3622cd601567602515ecf42e01b2b0be629d43835cfce766fa713dc422d44be425a3e46d6c4702e974dd3df0e27d"})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00')
read$FUSE(r5, &(0x7f00000002c0)={0x2020}, 0x2020)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=@ipv6_delrule={0x1c, 0x21, 0x121, 0x0, 0x25dfdbff}, 0x1c}}, 0x0)

8m49.27176519s ago: executing program 3 (id=3298):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
name_to_handle_at(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)

8m47.98421148s ago: executing program 34 (id=3298):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
name_to_handle_at(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)

6m9.667734572s ago: executing program 5 (id=3988):
r0 = socket$kcm(0x10, 0x100000000002, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000001100)=ANY=[@ANYBLOB="b7020000b96871dfbfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000001e6400000000000045040400010000001704000001000a00b7040000000100006a0af2fe0000004f850000001a000000b7000000000000009500000000000000455781a5feee5e1ce784909b849d5550adf200000000000000b61d69f2ffdaa10350e11cb97c8ad51bcda0c4ee6d9674c77404ceb9971e43405d62de53a9a53608c10556e5734eb84049761451ce2e2d9f8004e26f7fcc059c06220002595f6dba87b81d1106fb026cce67a66afd9ac3d09e29a9d542ca9d85a5c9c88474895c679838def0a83a733dc6a39b63a5ed69d32394c53361d7480884bd6fee53f5b2e7b91c61ced1ebad000000000000e8122a793c080a882add4e1179bd4a44f2fcb6d753a78845d8363e0401861abebe428ba953df4aece69311687f4122073a236c3ad198e3f3a532efa04137d452ff47d2638da3261c8362bb7c7824be6195a66d2e17e122040e11e3bd4a69fc6e8d9f7043e09b9e10dc7777bfae5884e4ba1e9cc4a2bbe99e30810400000000000000d63d716c0975e1ce4a655362e7062ff6ab3934555c01840219829472adefa06d3482c7b2711b98eabdca89b77efd13e6dba4a431ce47911834118093b6cabaa17a57727474e1785ee234835088445aa4a9b677d3d342640e328504aea02a2d727e62b7f097a02dbf8fe1d704765de7482040b2fc3000000000000000008947baeaaf954aff687deaa2f804924600273ee26d8115cbca081a14cba24788779291745083fccdddc90d7af35c048d46362ea0d8d79c79ddca066da478c197d4a550470557bc99cca336bd88cd28a5ee651627e3a6fbf6ea53b95ddb64c69c7d8d2f4baddc239828760459564124bad68209d2a1d16ad085886c017679cfcda8b10700ac1e2bcc5ede5b5687aa418abfa29acd7339e73b2cd185c9eb5fb34fccd20ffa155b16c0c309ed6f6663677df37de0ec0d0f548b273940be5d1fe0bae14d1a76bf741330dacd9cc19c0163bcc93059e8d2d120ea257bba458ecd989cb3581a3f270ad48255ac0dad4923e3e357e4e90583ce8d43ec65ed491d87a51d7c13f665dcf772e3ead71112008b16b0ea821f70aee1ccbd71c5a1c21e87d5b7b73d356337dbcf3456ff6cd0d6b98a258e3509a7d15b9dcae4d0d750ffa07909c955e718585b2456308beda2fa03bb9bcf03cdff31ee4b1665b987829c0f0872c006c6e4ed666fe23b343aae943923eedbdb0e7abee90e3da7b98b7d07d2d4816201ad1737798635b0a3ebd3aed120e4500c16e6c9dc729f009db49c6b8b19613e4d792cb4ff5106419291d4222980b49ddb9527ce785822d8f4e2bc30a96767f500b9e26e3b12854da63083320d8bfe49d85e0842803dc59d6375bce2b8a93caf39c0ba767880bbb9bf9407e6a6c0f9a43d1ab51dabf9423b482e848fbe1653ff0c6161fa43543546ce17a42e6cddadaf0767d84407478ffe2d0b567d81201efc81e800d4c0874235ff5cd7f5f0ee71cc2b0193bfc9290627ceaeb0b02931a817688f3a51fa2861e70cbab50a5d434ed8d8841694dba46f3d5a95ae86e4d471684ccf427b2ba53a157b2a7cf7a4c10051bb77822190a14c2ab1f271a7cf9c240b99"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4)
sendmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0180000000171300883795c04a31ba377a1b2cc32b38d3740000ffffffffffffffff", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)

6m9.443936383s ago: executing program 5 (id=3992):
unshare(0x20000400)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff})
recvmsg(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)

6m8.032021614s ago: executing program 5 (id=3998):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x20, 0x3, 0x1, 0x201, 0x0, 0x0, {}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x124}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x2400c804}, 0x800)

6m7.725787436s ago: executing program 5 (id=3999):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@i_version}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@auto_da_alloc}, {@errors_remount}, {@quota}]}, 0x3, 0x437, &(0x7f0000000400)="$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")
lsetxattr$system_posix_acl(0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01], 0x5c, 0x0)
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
dup2(r1, r0)
connect$rxrpc(r0, &(0x7f0000000240)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e22, 0x9, @local, 0x1a9}}, 0x24)
sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000100100000100000024"], 0x18, 0xe000}, 0x5}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0x500}}], 0x2, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
lseek(r2, 0x81, 0x0)
getdents64(r2, 0x0, 0x22)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)

6m6.138678597s ago: executing program 5 (id=4012):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f00000007c0)={0x2, 0x2, @remote}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, 0x0, &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r1}, 0x18)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_args={0x48, 0x114, 0x1, {{0x1ff, 0x3}, {&(0x7f00000004c0)=""/152, 0x98}, &(0x7f0000000780)=[{&(0x7f00000002c0)=""/11, 0xb}], 0x1, 0x4a, 0x7fff}}], 0x48}, 0x0)

6m3.535397477s ago: executing program 5 (id=4022):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x1c4)
pipe2$9p(&(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

6m3.12420199s ago: executing program 35 (id=4022):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x1c4)
pipe2$9p(&(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

3m20.851410871s ago: executing program 7 (id=4738):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
recvmsg(r0, &(0x7f0000000cc0)={&(0x7f00000003c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, 0x0}, 0x2100)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xa, 0x6, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_genetlink_get_family_id$ethtool(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f0000000040)={{0x2, 0x4e22, @multicast2}, {}, 0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'ip6gre0\x00'})

3m19.737893239s ago: executing program 7 (id=4742):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x9, 0x1}}}}]}, 0x44}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001380)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xa}, {}, {0x1, 0xfff1}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_FLAGS={0x8, 0xb, 0x8}]}}]}, 0x38}}, 0x1)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3m19.60132073s ago: executing program 7 (id=4744):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000ec0)=@newqdisc={0x4c, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x1, 0x3, 0x400, 0x8}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)

3m19.383141102s ago: executing program 7 (id=4748):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
creat(&(0x7f0000000340)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$sock_buf(r1, 0x1, 0x4a, &(0x7f0000000000)=""/183, &(0x7f00000000c0)=0xb7)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x13, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000"})

3m18.832272676s ago: executing program 7 (id=4751):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000cc0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000500), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
connect$netlink(r2, &(0x7f0000000280)=@proc={0x10, 0x0, 0x1, 0x40000000}, 0xc)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001500)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {0x0, 0x0, 0x2}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

3m16.633834982s ago: executing program 7 (id=4759):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3000046, &(0x7f0000000580)={[{@noauto_da_alloc}, {@nojournal_checksum}, {@errors_remount}, {@dioread_lock}, {@jqfmt_vfsv1}, {@dioread_nolock}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@inlinecrypt}, {@bh}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6522}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
pwrite64(r0, &(0x7f0000000940)='2', 0x1, 0x8000c61)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1d7)
sendfile(r1, r1, 0x0, 0xfffe80)
fallocate(r0, 0x8, 0x40000, 0x10000)

3m15.55647621s ago: executing program 36 (id=4759):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3000046, &(0x7f0000000580)={[{@noauto_da_alloc}, {@nojournal_checksum}, {@errors_remount}, {@dioread_lock}, {@jqfmt_vfsv1}, {@dioread_nolock}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@inlinecrypt}, {@bh}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6522}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
pwrite64(r0, &(0x7f0000000940)='2', 0x1, 0x8000c61)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1d7)
sendfile(r1, r1, 0x0, 0xfffe80)
fallocate(r0, 0x8, 0x40000, 0x10000)

1m37.387764092s ago: executing program 6 (id=5216):
timer_create(0x2, &(0x7f0000000240)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)=<r0=>0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
eventfd(0x3ff)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r3, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x1000000000000000, 0x0, 0x0, 0x8000}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
timer_delete(r0)

1m36.543261648s ago: executing program 6 (id=5219):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001380)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xa}, {}, {0x1, 0xfff1}}}, 0x24}}, 0x1)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m35.732495514s ago: executing program 6 (id=5221):
open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
r0 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x1}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0})
io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r3, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$VT_DISALLOCATE(r3, 0x5608)
creat(0x0, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000001080)='smaps_rollup\x00')
mlockall(0x3)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000a00)=""/197, 0xc5}], 0x1, 0x0, 0x0)

1m31.416874675s ago: executing program 6 (id=5238):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
creat(&(0x7f0000000340)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$sock_buf(r1, 0x1, 0x4a, &(0x7f0000000000)=""/183, &(0x7f00000000c0)=0xb7)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x13, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000"})

1m30.924173199s ago: executing program 6 (id=5244):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYRES32], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, 0x0, &(0x7f00000002c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
timer_create(0x0, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000140)=ANY=[@ANYBLOB="5800000055003d0926bd70000200000007000000", @ANYBLOB="200002", @ANYRES32=0x0, @ANYBLOB="00010100"/18], 0x58}}, 0x80)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[], 0x50}}, 0x0)

1m30.72198658s ago: executing program 6 (id=5246):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000810526bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="02200000200000001c0012800b00010062726964676500000c0002800600270001"], 0x3c}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)

1m29.630169018s ago: executing program 37 (id=5246):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000810526bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="02200000200000001c0012800b00010062726964676500000c0002800600270001"], 0x3c}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)

14.987841806s ago: executing program 9 (id=5577):
r0 = socket$nl_route(0x10, 0x3, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f00000002c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000000000000000003000000000300000002000000000000000000000000000001050000001000000200008602b1309a20cf40a8c12f8bb8ba8a7f38cd2b80a3b3dbc4cdd62f807dcaf7801ff3080c83b5d111dcb0523efba47e6b3ba0e4026df68aabc6495133b54064dee810633c9b0e5212cb135bc9d73843d82f2aa13cdd8d04"], 0x0, 0x42, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0xffffffff, 0x25dfdbfc, {0x0, 0x0, 0x0, r7, {0x0, 0x3}, {0xffff, 0xffff}, {0xf}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x800, 0x200000, 0x88, 0x0, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x0)
r8 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r8, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x41e382, 0x40)
sendto$inet(r8, 0x0, 0x0, 0x20004ffd, &(0x7f0000000040)={0x2, 0x4e23, @empty}, 0x10)
sendto$inet(r8, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b483", 0x20, 0x0, 0x0, 0x0)

14.859202588s ago: executing program 1 (id=5578):
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$setpipe(r0, 0x407, 0x7000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
timer_create(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r4 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000240)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r4, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r5}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffff9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)

13.672312085s ago: executing program 9 (id=5583):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
setns(r1, 0x24020000)
userfaultfd(0x80801)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000200)='./bus\x00', 0x100)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_auto}]})
chroot(&(0x7f0000000000)='./bus\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)

12.575673972s ago: executing program 9 (id=5586):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f0000070000000000", @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt(r4, 0x65, 0x1, &(0x7f0000000080), 0x1d0)
bind$can_raw(r4, &(0x7f0000000040), 0x10)

12.256788654s ago: executing program 1 (id=5590):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180)=@known='trusted.overlay.origin\x00')
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000240)={0x1, 0x10, 0x5, 0x100, 0xd, "f4cb8263142b68b545190e3b30a9cb5fff7954"})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000200)={&(0x7f0000001000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ff2000/0xd000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000003000/0x2000)=nil, &(0x7f0000004000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0}, 0x68)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x679fd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000540000/0x1000)=nil, 0x1000, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
getresuid(&(0x7f00000008c0), &(0x7f0000000900), &(0x7f0000000940)=<r6=>0x0)
mount$9p_xen(&(0x7f0000000780), &(0x7f00000007c0)='./file2\x00', &(0x7f0000000800), 0x401, &(0x7f0000000a40)=ANY=[@ANYBLOB='trans=xen,ignoreqv,noextend,fscache,posixacl,audit,smackfsfloor=sysfs\x00,uid>', @ANYRESDEC=r6, @ANYBLOB="2c00fc059acbb2e7d7f59078ba8ac363602d46b6d33b04fe9f85c374e8fa95e86eb814282251f4454079b7347ccb9ff8d99f5375a47bc93d2d654e2b27077815cb793470d4d7ccd8de69ccdd3d3aa7a3c858357e35d6dacab9ceb635b0843e1be31604bf32c5c32d95c7dca77522aef5f95b5a942379824e0dddde87f829babc436d15ae40bafb8b743d9f5052d58a43b069a53ed63b61dd26000018a8e89f7a71b40c9f8099e7309a406ef5b29d581ae045f775dd8f747912ebeca941e34946a32df63f27475392b92e45cf732622dc95fdf5dbeb8a3d3471e77f0bae76b2dc084e"])
r7 = getgid()
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000800)={{{@in6=@mcast1, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000440)=0xe8)
stat(&(0x7f0000000480)='./file0\x00', &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0})
sendmmsg$unix(r3, &(0x7f0000000a00)=[{{&(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000280)=[{&(0x7f0000000540)="9296504d246b98022d0a180ca4f9bd8c120412bfcbf0bab4f070b35651461bb71a17215c1ce74fdbf4a9e885837b8895f89a7d57f6748cb4898b3dccd33798583cc1a0c33873c46fad87c41b0f39e0310436fd84893ec8f67fbb4c149c73e76b1b639168273ff0689602e50d5bceb6b542f9f1024778397494954b675cd92ef02524ca15d34d545db38bf8e3c171197cc320f4d0c2548eb2ab28e7dcb40898b82495a941491bbc1e443f01b9b3820ad2bbba941ecabf9f29e3b19c4950dbe00d4bb0c0f58634778047e796a80d77234606b97f8d8702eb1f5cf1ebf132f5811aa478fc0a6276aa6646cdd792de11d35a512cef199d", 0xf5}, {&(0x7f00000001c0)="9ea493195e018d35b6e69cb82b2ab5", 0xf}, {&(0x7f0000000640)="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", 0xfa}, {&(0x7f0000000740)="06efb8607390942d656e4461778b54f5d60d9100a5a6fbd337a660d81a61720458564a7f9d582edaea06d2516950c91e7a2bcfba14be75ef1c86889c7fee5530bbd78831f81c49b9bc066fac2d9066c8f6529d9b1266ededad7b0b6abc6922ebb4cd5c8da19c91017c9ad887e76a038cbf54bc413b9f208510fa4ab59d6e48af18e105c565f823180b93", 0x8a}], 0x4, &(0x7f0000000980)=[@cred={{0x1c, 0x1, 0x2, {r2, r6, r7}}}, @cred={{0x1c, 0x1, 0x2, {r2, r8, r9}}}, @rights={{0x20, 0x1, 0x1, [r5, r5, r3, r3]}}], 0x60, 0x24801}}], 0x1, 0x2000c000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fcntl$getown(r0, 0x9)
r10 = syz_open_dev$tty20(0xc, 0x4, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, 0x0, 0x0)
ioctl$TCFLSH(r10, 0x5608, 0x0)
syz_clone(0x40004000, 0x0, 0x0, 0x0, 0x0, 0x0)

9.48194715s ago: executing program 1 (id=5596):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
write(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)

9.111084283s ago: executing program 1 (id=5598):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@nodioread_nolock}, {}, {@nombcache}, {@debug}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7c}}, {@nojournal_checksum}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x572, &(0x7f0000001b40)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
truncate(&(0x7f0000000100)='./file0/file0\x00', 0x9)

8.048896962s ago: executing program 1 (id=5600):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, 0x0, &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ustat(0x3ff, 0x0)

8.045269102s ago: executing program 4 (id=5601):
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$setpipe(r0, 0x407, 0x7000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
timer_create(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r4 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000240)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r4, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r5}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffff9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)

5.973734657s ago: executing program 8 (id=5607):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000001840)=@newtaction={0x894, 0x30, 0x12f, 0x0, 0x0, {}, [{0x880, 0x1, [@m_police={0x87c, 0x1, 0x0, 0x0, {{0xb}, {0x850, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x7, 0x0, 0x2, 0x0, 0x0, 0x7}}}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x80000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0xb, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffff35, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x3, 0x0, 0x1]}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x7, 0x6, 0xffffffff, 0x7f, 0x401, 0x2, 0x0, 0x2, 0x80000000, 0x4, 0x5, 0x8, 0x0, 0x7fff, 0x75ba, 0x7fffffff, 0x5, 0xffffffff, 0x7ff, 0x2, 0x9, 0x2, 0x0, 0x1000, 0x1, 0x3, 0x6, 0x0, 0xfa, 0x4, 0x9, 0xf, 0x80000001, 0x7, 0xeffffffb, 0x1, 0x20, 0x5, 0x8, 0x1, 0x2f2, 0x7fff, 0x0, 0x81, 0x206, 0x1ff, 0x7, 0x3, 0x5, 0x3, 0x9, 0x1000, 0x401, 0x1, 0x6, 0x7, 0x2, 0x4, 0x7f, 0x5, 0xfffffffb, 0x1, 0x4, 0x5, 0x8, 0x8, 0x9, 0x10, 0x9, 0x7, 0xffffff00, 0x97, 0x0, 0x4, 0x8, 0x8, 0x1, 0x958, 0x1fe, 0x4, 0x6, 0x7, 0x80, 0x5, 0xe53, 0x0, 0xfffffffe, 0x4, 0x8, 0x9, 0x7fff, 0x30, 0x8, 0xfffffff7, 0x4, 0x9, 0x1, 0x4, 0x7, 0x9, 0x5, 0x7, 0x6, 0x0, 0x5, 0x2, 0x7, 0x3, 0xcdd, 0x2, 0xd67, 0x7, 0x4, 0x25, 0x9dc5, 0x7, 0xfffffff7, 0x2, 0x400, 0x8, 0x0, 0x7, 0x5, 0x9, 0xa, 0xa, 0x9, 0x5, 0xdb5, 0x101, 0x4, 0x74e4, 0x7fff, 0x7, 0x7ff, 0x1, 0xd70, 0x1, 0x8, 0xa, 0x7, 0x1, 0x82, 0x52e, 0x7, 0x1, 0x5, 0x26, 0x1, 0x1b2a, 0x81, 0x9, 0x1c, 0x767, 0x7, 0x9, 0x10, 0xc2a, 0xff, 0x0, 0x6, 0x7, 0x3, 0xfffffff4, 0x8, 0x3, 0xfff, 0x8, 0x5, 0x5, 0x6, 0x3, 0xd7c3, 0x2, 0x10000, 0x7fff, 0x5, 0x5, 0x0, 0xfffffff7, 0x7, 0x2, 0x0, 0x6ee1847d, 0x10001, 0x7ff, 0x1, 0xf0, 0x7, 0x2, 0x7, 0x4, 0x6, 0x4, 0x7, 0x2, 0x0, 0x1, 0x4, 0x3, 0xfff, 0x80000001, 0x7, 0x676, 0x3, 0x9, 0x2, 0x4, 0x7fff, 0x4a5, 0x23, 0x4, 0x9, 0x8, 0x0, 0x8000, 0xa, 0x9, 0xca000000, 0x2, 0xfffffffa, 0x3, 0x7, 0x9, 0x7, 0x65fe, 0x9, 0x6, 0x4, 0x80000000, 0x5, 0x801, 0xb848, 0x6, 0x6, 0x800, 0x1007, 0x1, 0xb, 0x80, 0x2, 0x3, 0x6, 0x9, 0x4, 0x4, 0xc, 0x80000001, 0x5, 0x5, 0x10000000, 0xb, 0x7, 0x5, 0x2, 0x4]}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x894}}, 0x0)

5.901331117s ago: executing program 9 (id=5608):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x80000}, 0x18)
ioctl$SNAPSHOT_SET_SWAP_AREA(0xffffffffffffffff, 0x400c330d, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004d40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

5.791043488s ago: executing program 8 (id=5609):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000a850000000f000000850000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
connect$unix(0xffffffffffffffff, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x11, 0x0, 0xfffff000, 0x8000, 0x0, 0xffffffffffffffff, 0x10, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000010101010000000000000000020000002400018014000180080001007f007ea770aa11756dd600000c000280"], 0x44}}, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000800), 0x101007, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x0, 0x0, 0x9, 0x3}, @func_proto, @const={0x0, 0x0, 0x0, 0xa, 0x2}]}}, &(0x7f0000000100)=""/223, 0x3e, 0xdf, 0x1, 0x0, 0x0, @void, @value}, 0x20)
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020}, 0x2020)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f0000000000)={[{@nobarrier}]}, 0xff, 0x485, &(0x7f0000001040)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@nfs_export_on}], [], 0x2c})

4.957355654s ago: executing program 4 (id=5612):
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000004c0)=0xe)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
write$binfmt_elf64(r5, &(0x7f0000000180)=ANY=[], 0x78)
sendfile(r4, r5, &(0x7f00000001c0), 0x8)
fcntl$addseals(r5, 0x409, 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x6, 0x21, &(0x7f0000000680)=ANY=[], 0x0, 0x6, 0x0, 0x0, 0x41100, 0x30, '\x00', 0x0, 0x25, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000940), 0x0, 0x10, 0x8001, @void, @value}, 0x94)
fallocate(r5, 0x3, 0x0, 0x3)
recvmsg$unix(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000000)=""/64, 0x40}], 0x1}, 0x0)
setresuid(0x0, r2, 0x0)
setresuid(r2, 0xee00, r2)
lstat(&(0x7f0000000240)='./file0\x00', 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x800)
r7 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000480), 0x400, 0x0)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000580), &(0x7f00000005c0)=0xc)
write$P9_RSTATu(r1, &(0x7f0000000ac0)={0xce, 0x7d, 0x1, {{0x0, 0xb5, 0x0, 0xf, {0x20, 0x0, 0x3}, 0x40040000, 0x6, 0x56a, 0x3, 0x2, '\\[', 0x66, '&^\x94\x04\xdd\xed\x14\x9d\x89dN\xff\xc8\x96\x90t\xf6F\xd9\x9a\xe6\x8cM\xf2 \x0e\xbaB\x85HQ.\x0fi\xc1\xd5\xc2{Q\xafC\xbfq\x12q?|\xa4\xa5\xfeN\xb2}g\x06\b\xb9\xb12\xad\xb9\x1d.\x1b\xfav\xddY\xf7n@J\x11\b\xa3\x91\x19(\x19?\x0f\xcdgx+j\x82Jp\x1b\xa5\x9f\xc6e\x0e\xb4\x019ZQ\xf4\xb2', 0xb, '/dev/ttyS3\x00', 0xf, '&/#:{/+!!^-.\'*,'}, 0x4, 'GPL\x00', r2, 0x0, r6}}, 0xce)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000005cb00000200009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffe9e, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=', @ANYRESHEX, @ANYRESDEC, @ANYRESHEX])
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x10000000000000)

3.975409152s ago: executing program 8 (id=5613):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)={0x54, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xfffffffa}]}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_REVISION={0x5}]}, 0x54}}, 0x0)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg(r2, &(0x7f00000005c0)={&(0x7f0000000300)=@qipcrtr={0x2a, 0xffffffff, 0x4001}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000380)="e3f467545f39b5657e504213b2cd11f3b4f04b439d75ecd6b43432de405532f8d39256307e45e322e486abd93aace9645cfed756ad6b68fe9e5de0c42618675a2df7e1e7fde3ce73ab5a1b2bee1c4c87ebfbaf8c006d51ec35a5a27d5d30a45909f301525ebbded91a25710ca748bb58f23cda9b64fcdedbaf92da419d63bd8ba50ee0", 0x83}, {&(0x7f0000000800)="05efda2fe8a3afa1f85e5f0e972ee5734c40e5eb9fc2ba2bdd3cb4432726024335155b20c424b833a6094b884800933e743b2f832db92ed06dad8f35625f9bb5766719b283b32c10536c73d0630bd2343168a505ab414cbacaf23536a7fcc6de3f827c592a5b5b521aa2ab7b553cfbf5780bdff4df2db3e581d7f4a456359a39c0d5cb3daa99707eb5406dcb97ae25288e0d7078557e0b22e64fa8", 0x9b}, {&(0x7f0000000040)="451ee039d2990d3b3956bf7ac221e0c42c86f8814e165800b33ef57a0c264fdf34a79b7925c06d2e0000000000000000000000007aebba6753ff62985804fc97", 0x40}], 0x3, &(0x7f0000002480)=[{0x58, 0x1, 0x401, "98138cd46e166992a75fbaaaaa176c16e49181e89912608278a2a5af697981ea90b6257a6d58de6e0a58643deb92ca0fc070864632947f737a51d9a3e2ac8d8002ee80287262"}, {0x1010, 0x116, 0x0, "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"}, {0x90, 0x0, 0xfffff1f9, "4c9f95f526f7bdac9a3619cef5bd331bcb2c88c6066180b5cb099c807795f7ec09e03d90fa559314198d5772de95595bf97c79dfcd69bccab35ec5e8cac80c1733b2fb784e30dc3d92ba2b69c5fbd1233dbe6b3819055fef917ef9f878ecea78dd4094428bc9c7d681a76d0a0bd7ad3c824fa84d9f5206b0ef79efb43e383f"}, {0x110, 0x109, 0x1, "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"}, {0x10, 0x1, 0xe}, {0x38, 0x11, 0x8, "5b6828bb2f3a6d5a4503e8c7de026b02c7c6865bf8a7f6544d35788e09732bf34e"}, {0x20, 0x10f, 0x2, "a599e60767f6b1712419058a95"}, {0xb0, 0x114, 0x0, "4cf27cdfeb987abda5d893e74f4fd2b261ba9fb4dd0cc7f7ba5861845db091ad6eda0292a731bb0c87b255cce8b13b657aed56befc19dc583067ae6042a18fcb6a5081fd0499b6de6f9ef0cf60109202dc11330841215e90265f450ceb5951bcb7f1450a9986780eb2ef84c9d6987f04e7d4e45f8d25d8621bc0eca1fb769b821c79e30787ad9043c5206872ce71c44296f7400c2a6ed886d763"}], 0x1320}, 0x4040004)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r4 = getpid()
syz_pidfd_open(r4, 0x0)
r5 = getpgrp(0x0)
syz_pidfd_open(r5, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000580)='./file0\x00', 0x10000, &(0x7f0000001900)=ANY=[], 0x0, 0x222, &(0x7f00000016c0)="$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")
r7 = socket$inet6(0xa, 0x80002, 0x0)
sendto$inet6(r7, 0x0, 0x0, 0x200c8004, &(0x7f0000000280)={0xa, 0xe20, 0x0, @remote}, 0x1c)
sendto$inet6(r7, &(0x7f00000009c0)="c7cfcaaa22e10542fca5c0195350f15147657e0bfc59d383a47190db88690e6fedc3040ab5809ae02a54cd429cc3338c5afa0c9dce3f91950d1f567f358ac21154159130e88cbb6c43197813b2f23f3e442f80877490b393408142ebcfea6821f543e5ee9e27032e2b75d78f1b79f5a6bb6f0645e267770ef7e8f3a92148091217450ce8581e54223eeb6486205a209bf1fe854d211c03f8c3140fc3979d824082990d119473d20e94f253c9621fac339560ae46cb24b88bf2d01559bb658e343257b90f233b81bc5c398be3bbddb23a1e", 0xffd6, 0xc001, 0x0, 0xffffffffffffff0c)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r10], 0x20}}, 0x0)

3.974954821s ago: executing program 1 (id=5614):
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe28, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x4)
r2 = dup2(r1, r1)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x200000a, 0x1})
ioctl$BLKTRACESETUP(r2, 0x1276, 0x0)

3.892354362s ago: executing program 4 (id=5615):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001640)={0x11, 0x19, &(0x7f0000001740)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x18, &(0x7f0000001840)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x71, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x2, 0x8, 0x472, 0x5}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000040)=[0x1, 0xffffffffffffffff], &(0x7f0000001700), 0x10, 0xb, @void, @value}, 0x94)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f00000000c0)={[{@grpquota}, {@grpquota}, {@quota}]}, 0x1, 0x558, &(0x7f0000000680)="$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")
socket$can_j1939(0x1d, 0x2, 0x7)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x200)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r4, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0x0, 0x400, 0x2, 0x2, 0x0, 0x40, 0x2000000, 0x0, 0x1, 0x1})
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, 0x0, 0x0)
sendmmsg(r5, &(0x7f0000003a40), 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)={0x2c, 0x0, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)

3.699537333s ago: executing program 2 (id=5617):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000970000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x10)
kexec_load(0x300, 0x0, 0x0, 0x0)

3.635111474s ago: executing program 9 (id=5618):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f0000070000000000", @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt(r4, 0x65, 0x1, &(0x7f0000000080), 0x1d0)
bind$can_raw(r4, &(0x7f0000000040), 0x10)

3.625955704s ago: executing program 4 (id=5619):
socket(0x11, 0x800000003, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETSNDBUF(0xffffffffffffffff, 0x400454d4, 0x0)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000010140)=ANY=[], 0xffdd)
ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x4008550c, &(0x7f0000000000)={0x0, 0x2, "ec9fe44d4dbe56a65274d7c727e7e53c1bb714e315eeb406bfdd73835e57efa94b1a0275781c647aa7e3470c6028643b17832b10b386a6f73791011c26a9aa141f406e312295ee620a9a46577b9249b738fe7750bec83bf6ed5b67213fa7d6c0823fd154ed29ede1ff379742c3f0b46caa357d70ee438f901d7645c3f87e4b21482b76f2ad8eaac090272081f98fd2e3e5a63e006204df635e731a5bfcf142f4529517454618de595cd179445b4bdbf698b9986356f0ebf7d25a57774ef474f86a3ad24ae9f0bf94b99e6b87de5f79d383d05bb32701daed400785a49788f08caecc9e0c48a3740bbe6e1c1fd400cfdfe756bcb7d08e36655c00"})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)

3.416566325s ago: executing program 2 (id=5620):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x54}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r3, @ANYBLOB="0100000000000000240012000c000100627269646765000e14000200080007004a"], 0x44}}, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

3.415766125s ago: executing program 8 (id=5621):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56561, 0x4, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x4040010)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r3, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000080)={[{@resgid}, {@noload}, {@acl}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$eJzs3c9rHFUcAPDvbJKmSauJIGg9BQQNlG5Mja2Ch4oHESwU9Gy7bLahZpMt2U1pQg4tIngRVDwIeunZH/Xm1R9X/S88SEvVtFjxIJHZH+222U03bXY3kM8HXva9mdm89903P97sDDsB7FkT6Z9MxKGI+DiJGKtPTyJiqJobjDhRW+72+lo+TUlsbLz9Z1Jd5tb6Wj6a3pM6UC88HRE/fRBxOLO53vLK6nyuWCws1ctTlYXzU+WV1SPnFnJzhbnC4rHpmZmjx186fmznYv3719WD1z954/lvT/z7/lNXP/o5iRNxsD6vOY6dMhET9c9kKP0I7/H6TlfWZ0m/G8BDSTfNgdpWHodiLAaquTZGetkyAKBbNgCAPSgxBgCAPabxPcCt9bV8I/X3G4neuvFaROyvxd+4vlmbM1i/Zre/eh109FZyz5WRJCLGd6D+iYj48vt3v05T1PvBtTSgFy5djogz4xOb9//JpnsWtuuFrWZuDFdfJu6bvNeOP9BPP6Tjn5dbjf8yd8Y/0WL8M9xi230YD97+M9d2oJq20vHfq033tt1uir9ufKBeeqw65htKzp4rFtJ92+MRMRlDw2l5urpo65Hb5M3/brarv3n899en732V1p++3l0ic21w+N73zOYquUeNu+HG5YhnBlvFn9zp/6TN+PdUh3W8+cqHX7Sbl8afxttIm+Pvro0rEc+17P+7fZlseX/iVHV1mGqsFC1899vno+3qb+7/NKX1N84FeiHt/9Gt4x9Pmu/XLG+/jl+ujP3Ybt6D42+9/u9L3qnm99WnXcxVKkvTEfuStzZPP3r3vY1yY/k0/slnW2//tWpbr//pOeGZDuMfvP7HNw8ff3el8c9uq/+3n7l6e36gXf2d9f9MNTdZn9LJ/q/TBj7KZwcAAAAAAAAAAAAAAAAAAAAAAAAAncpExMFIMtk7+Uwmm609w/vJGM0US+XK4bOl5cXZqD4rezyGMo2fuhxr+j3U6frv4TfKR+8rvxgRT0TEZ8Mj1XI2XyrO9jt4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKg70Ob5/6nfh/vdOgCga/b3uwEAQM85/gPA3rO94/9I19oBAPSO838A2Hs6Pv6f6W47AIDecf4PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAl506eTJNG/+sr+XT8uyFleX50oUjs4XyfHZhOZ/Nl5bOZ+dKpbliIZsvLbT9R5dqL8VS6fxMLC5fnKoUypWp8srq6YXS8mLl9LmF3FzhdGGoZ5EBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQOfKK6vzuWKxsCSzZWZkdzRj12QGY1c0Q6Zrmea9xEj/dlAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu9z/AQAA//+MoS4e")
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000000)={0x40, 0x6, 0x100, 0x4, 0x0, 0xfffffffc, 0x0})
sendto$inet(r3, 0x0, 0xffffffffffffff7c, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10)

2.959203969s ago: executing program 2 (id=5622):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYRES32], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, 0x0, &(0x7f00000002c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
timer_create(0x0, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000140)=ANY=[@ANYBLOB="5800000055003d0926bd70000200000007000000", @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="00010100"/18, @ANYBLOB], 0x58}}, 0x80)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[], 0x50}}, 0x0)

1.34710824s ago: executing program 4 (id=5623):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000a850000000f000000850000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
connect$unix(0xffffffffffffffff, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x11, 0x0, 0xfffff000, 0x8000, 0x0, 0xffffffffffffffff, 0x10, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000010101010000000000000000020000002400018014000180080001007f007ea770aa11756dd600000c0002800513010001000000"], 0x44}}, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000800), 0x101007, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x0, 0x0, 0x9, 0x3}, @func_proto, @const={0x0, 0x0, 0x0, 0xa, 0x2}]}}, &(0x7f0000000100)=""/223, 0x3e, 0xdf, 0x1, 0x0, 0x0, @void, @value}, 0x20)
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020}, 0x2020)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f0000000000)={[{@nobarrier}]}, 0xff, 0x485, &(0x7f0000001040)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@nfs_export_on}], [], 0x2c})

1.295236331s ago: executing program 8 (id=5624):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r2, 0x0, 0xffffffffffffff7c, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10)

994.593063ms ago: executing program 2 (id=5625):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x14)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000180)={0x0, 0x10, 0x0, 0x0, 0x6, 0x2})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

679.129845ms ago: executing program 2 (id=5626):
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
ppoll(&(0x7f0000000040)=[{r0, 0x4000}], 0x1, 0x0, 0x0, 0x0)

443.042337ms ago: executing program 2 (id=5627):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003f80)=ANY=[], 0x1, 0x2f4, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
fdatasync(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x3)

442.608847ms ago: executing program 8 (id=5628):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800e000100696d6d656469617465000000280002801c000280180002800900020073797a320000000008000180fffffffc08000140000000000900010073797a30000000000900020073797a32"], 0x94}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
creat(&(0x7f0000000140)='./file2\x00', 0x1ad)
unlink(&(0x7f0000000180)='./file1\x00')

337.488048ms ago: executing program 4 (id=5629):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001640)={0x11, 0x19, &(0x7f0000001740)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x18, &(0x7f0000001840)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x71, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x2, 0x8, 0x472, 0x5}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000040)=[0x1, 0xffffffffffffffff], &(0x7f0000001700), 0x10, 0xb, @void, @value}, 0x94)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f00000000c0)={[{@grpquota}, {@grpquota}, {@quota}]}, 0x1, 0x558, &(0x7f0000000680)="$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")
socket$can_j1939(0x1d, 0x2, 0x7)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x200)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r4, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0x0, 0x400, 0x2, 0x2, 0x0, 0x40, 0x2000000, 0x0, 0x1, 0x1})
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, 0x0, 0x0)
sendmmsg(r5, &(0x7f0000003a40), 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)={0x2c, 0x0, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)

0s ago: executing program 9 (id=5630):
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
pipe(&(0x7f0000000d00)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket(0x1e, 0x2, 0x0)
sendmsg$tipc(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004880}, 0x404c001)
close(r2)
preadv(r3, &(0x7f00000008c0)=[{0x0}, {&(0x7f0000000280)=""/46, 0x2e}, {0x0}, {&(0x7f0000000400)=""/24, 0x18}, {0x0}, {0x0}, {&(0x7f00000007c0)=""/240, 0xf0}], 0x7, 0x69, 0x8)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r5, 0x0, 0x0, 0x2000c044)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r8], 0x20}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000240), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x7151, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

kernel console output (not intermixed with test programs):

nly fs
[ 1402.763002][T20399] Quota error (device loop8): do_check_range: Getting block 196613 out of range 1-5
[ 1402.773438][T20399] Quota error (device loop8): qtree_read_dquot: Can't read quota structure for id 0
[ 1402.783082][T20399] EXT4-fs error (device loop8): ext4_acquire_dquot:6795: comm syz.8.4740: Failed to acquire dquot type 1
[ 1402.806136][T20399] EXT4-fs (loop8): 1 truncate cleaned up
[ 1403.106118][T20399] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1403.257844][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1403.266981][T20411] loop6: detected capacity change from 0 to 512
[ 1403.352957][T20411] EXT4-fs (loop6): too many log groups per flexible block group
[ 1403.365632][T20411] EXT4-fs (loop6): failed to initialize mballoc (-12)
[ 1403.383229][T20411] EXT4-fs (loop6): mount failed
[ 1403.482633][   T26] audit: type=1326 audit(2000001312.399:1638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20409 comm="syz.6.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f727038d169 code=0x7ffc0000
[ 1403.498408][T20421] loop7: detected capacity change from 0 to 512
[ 1403.516656][   T26] audit: type=1326 audit(2000001312.399:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20409 comm="syz.6.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f727038d169 code=0x7ffc0000
[ 1403.524808][T20421] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1403.569516][T20419] block device autoloading is deprecated and will be removed.
[ 1403.583162][   T26] audit: type=1326 audit(2000001312.429:1640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20409 comm="syz.6.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f727038d169 code=0x7ffc0000
[ 1403.609027][T20419] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1403.619726][   T26] audit: type=1326 audit(2000001312.429:1641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20409 comm="syz.6.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f727038d169 code=0x7ffc0000
[ 1403.659165][   T26] audit: type=1326 audit(2000001312.429:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20409 comm="syz.6.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f727038d169 code=0x7ffc0000
[ 1403.724092][   T26] audit: type=1326 audit(2000001312.429:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20409 comm="syz.6.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f727038d169 code=0x7ffc0000
[ 1403.755368][T20423] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4747'.
[ 1403.764301][T20423] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4747'.
[ 1403.776654][T20421] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1403.786139][T20421] ext4 filesystem being mounted at /266/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1403.792301][T20423] loop8: detected capacity change from 0 to 512
[ 1403.816802][T20423] EXT4-fs error (device loop8): ext4_orphan_get:1400: inode #15: comm syz.8.4747: casefold flag without casefold feature
[ 1403.830153][T20423] EXT4-fs error (device loop8): ext4_orphan_get:1405: comm syz.8.4747: couldn't read orphan inode 15 (err -117)
[ 1403.842308][T20423] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1403.909271][T20431] loop2: detected capacity change from 0 to 1024
[ 1403.916923][T20431] EXT4-fs: Ignoring removed bh option
[ 1403.922555][T20431] EXT4-fs: inline encryption not supported
[ 1403.942910][T20431] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[ 1403.952120][T20421] loop7: detected capacity change from 512 to 64
[ 1403.973204][T20431] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 2: comm syz.2.4749: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1404.026730][T20431] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 48: comm syz.2.4749: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1404.080971][T20431] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.4749: Failed to acquire dquot type 0
[ 1404.108283][T20431] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5885: Corrupt filesystem
[ 1404.207153][T20431] EXT4-fs error (device loop2): ext4_evict_inode:279: inode #11: comm syz.2.4749: mark_inode_dirty error
[ 1404.236718][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1404.250895][T20431] EXT4-fs warning (device loop2): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[ 1404.265596][T20431] EXT4-fs (loop2): 1 orphan inode deleted
[ 1404.272833][T20431] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1404.286432][T15337] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 1: comm kworker/u4:1: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1404.354532][T15337] EXT4-fs error (device loop2): ext4_release_dquot:6818: comm kworker/u4:1: Failed to release dquot type 0
[ 1404.443657][T20443] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1404.458361][T20443] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1404.467018][T20443] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1405.061222][T20431] EXT4-fs (loop2): re-mounted. Quota mode: writeback.
[ 1405.144007][T20431] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 16: comm syz.2.4749: lblock 0 mapped to illegal pblock 16 (length 1)
[ 1405.230632][T20430] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1405.260263][T20430] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1405.267155][T20430] Bluetooth: hci2: Suspend notifier action (1) failed: -4
[ 1405.278945][T20430] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1405.284955][T20430] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1405.317459][T20430] Bluetooth: hci0: Suspend notifier action (1) failed: -4
[ 1405.324937][T20430] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1405.332762][T20430] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1405.342072][T20430] Bluetooth: hci4: Suspend notifier action (1) failed: -4
[ 1405.350729][T20430] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1405.356777][T20430] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1405.366183][T20430] Bluetooth: hci1: Suspend notifier action (1) failed: -4
[ 1405.426003][T15727] EXT4-fs (loop7): unmounting filesystem.
[ 1405.586397][ T7974] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1405.712414][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1406.207765][T14106] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1406.237579][T20457] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.4757'.
[ 1406.325699][T20462] loop2: detected capacity change from 0 to 128
[ 1406.383991][ T7974] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1406.465770][T20462] syz.2.4760: attempt to access beyond end of device
[ 1406.465770][T20462] loop2: rw=2049, sector=145, nr_sectors = 232 limit=128
[ 1406.787378][T20463] hub 9-0:1.0: USB hub found
[ 1406.865744][T20463] hub 9-0:1.0: 1 port detected
[ 1406.885463][ T7974] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1407.288265][   T48] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1407.369344][   T48] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1407.375390][ T7974] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1407.375458][   T48] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1407.500907][   T26] kauditd_printk_skb: 32 callbacks suppressed
[ 1407.500924][   T26] audit: type=1326 audit(2000001316.419:1673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1407.595250][   T26] audit: type=1326 audit(2000001316.449:1674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1407.665269][   T26] audit: type=1326 audit(2000001316.449:1675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1407.705339][   T26] audit: type=1326 audit(2000001316.449:1676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1407.732559][   T26] audit: type=1326 audit(2000001316.449:1677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1407.860274][   T26] audit: type=1326 audit(2000001316.449:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1407.883386][   T26] audit: type=1326 audit(2000001316.449:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1407.956621][   T26] audit: type=1326 audit(2000001316.459:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1408.052911][T20486] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1408.062523][T20486] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1408.070018][T20486] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1408.246184][   T26] audit: type=1326 audit(2000001316.459:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1408.297473][   T48] Bluetooth: hci2: command 0x0406 tx timeout
[ 1408.645634][   T26] audit: type=1326 audit(2000001316.459:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20473 comm="syz.1.4765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc21958d169 code=0x7ffc0000
[ 1409.186592][T14106] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1409.200174][T14106] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1409.222277][T14106] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1409.266433][T14106] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1409.275053][T14106] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1409.282527][T14106] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1409.367927][T14106] Bluetooth: hci0: command 0x0406 tx timeout
[ 1409.406597][T20496] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4774'.
[ 1409.415638][T20496] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4774'.
[ 1409.432645][T20496] loop2: detected capacity change from 0 to 512
[ 1409.450667][T14106] Bluetooth: hci4: command 0x0406 tx timeout
[ 1409.456738][T14106] Bluetooth: hci1: command 0x0406 tx timeout
[ 1409.488350][T20496] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.4774: casefold flag without casefold feature
[ 1409.501877][T20496] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.4774: couldn't read orphan inode 15 (err -117)
[ 1409.514383][T20496] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1409.581343][T20507] netlink: 'syz.6.4776': attribute type 9 has an invalid length.
[ 1409.832366][T20518] netlink: 104 bytes leftover after parsing attributes in process `syz.1.4780'.
[ 1409.844142][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1409.855636][T20517] team0: No ports can be present during mode change
[ 1409.912057][T20517] device vlan0 entered promiscuous mode
[ 1410.005290][T20517] team0: Port device vlan0 added
[ 1410.079580][T20523] ALSA: seq fatal error: cannot create timer (-22)
[ 1410.100982][T20494] chnl_net:caif_netlink_parms(): no params data found
[ 1410.133982][T20519] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4781'.
[ 1410.619724][T20539] xt_CT: No such helper "syz1"
[ 1410.668559][T20519] team0 (unregistering): Port device team_slave_0 removed
[ 1410.753153][T20519] team0 (unregistering): Port device team_slave_1 removed
[ 1410.784063][T20519] team0 (unregistering): Port device vlan0 removed
[ 1410.963211][T20544] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4792'.
[ 1410.973046][T20544] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4792'.
[ 1411.002071][T20544] loop6: detected capacity change from 0 to 512
[ 1411.018848][T20544] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.4792: casefold flag without casefold feature
[ 1411.032881][T20544] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.4792: couldn't read orphan inode 15 (err -117)
[ 1411.045370][T20544] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1411.323734][T17610] EXT4-fs (loop6): unmounting filesystem.
[ 1411.368134][T14106] Bluetooth: hci3: command 0x0409 tx timeout
[ 1411.687781][T20494] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1411.702401][T20494] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1411.727609][T20494] device bridge_slave_0 entered promiscuous mode
[ 1411.874503][T20578] overlayfs: missing 'lowerdir'
[ 1412.472349][T20494] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1412.493144][T20494] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1412.501697][T20494] device bridge_slave_1 entered promiscuous mode
[ 1412.624346][T20586] loop1: detected capacity change from 0 to 128
[ 1412.936996][T20589] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4809'.
[ 1412.946355][T20589] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4809'.
[ 1412.965978][T20589] loop2: detected capacity change from 0 to 512
[ 1412.982083][T20589] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.4809: casefold flag without casefold feature
[ 1412.995489][T20589] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.4809: couldn't read orphan inode 15 (err -117)
[ 1413.007959][T20589] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1413.024437][ T7974] device hsr_slave_0 left promiscuous mode
[ 1413.050183][ T7974] device hsr_slave_1 left promiscuous mode
[ 1413.088219][ T7974] device bridge_slave_1 left promiscuous mode
[ 1413.094458][ T7974] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1413.144097][ T7974] device bridge_slave_0 left promiscuous mode
[ 1413.164544][ T7974] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1413.279379][ T7974] device veth1_macvtap left promiscuous mode
[ 1413.310978][ T7974] device veth0_macvtap left promiscuous mode
[ 1413.317176][ T7974] device veth1_vlan left promiscuous mode
[ 1413.339524][ T7974] device veth0_vlan left promiscuous mode
[ 1413.385177][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1413.447626][T14106] Bluetooth: hci3: command 0x041b tx timeout
[ 1414.924770][ T7974] team0 (unregistering): Port device team_slave_1 removed
[ 1414.980046][ T7974] team0 (unregistering): Port device team_slave_0 removed
[ 1415.033353][ T7974] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1415.090060][ T7974] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1415.533850][T14106] Bluetooth: hci3: command 0x040f tx timeout
[ 1415.542964][ T7974] bond0 (unregistering): Released all slaves
[ 1415.617501][T20494] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1415.632528][T20494] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1415.660761][T20610] netem: change failed
[ 1415.699501][T20494] team0: Port device team_slave_0 added
[ 1415.745162][T20494] team0: Port device team_slave_1 added
[ 1415.961064][T20494] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1415.995280][T20494] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1416.021578][T20494] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1416.035917][T20494] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1416.667759][T20623] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1416.676549][T20623] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1416.810384][T20494] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1417.088754][T20494] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1417.470304][T20630] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1417.478517][T20630] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1417.609712][T14106] Bluetooth: hci3: command 0x0419 tx timeout
[ 1417.849433][T20494] device hsr_slave_0 entered promiscuous mode
[ 1418.114602][T20494] device hsr_slave_1 entered promiscuous mode
[ 1418.182900][T20636] xt_NFQUEUE: number of total queues is 0
[ 1418.236085][T20639] 9pnet_fd: Insufficient options for proto=fd
[ 1419.294335][T20652] loop6: detected capacity change from 0 to 2048
[ 1419.394311][T20494] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1419.414039][T20652] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 1419.491628][T20494] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1419.563590][T20494] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1419.603976][T20494] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1419.623929][T17610] EXT4-fs (loop6): unmounting filesystem.
[ 1419.721140][T20664] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1419.730108][T20664] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1420.399202][T20494] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1420.496322][T11398] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1420.516563][T11398] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1420.554237][T20494] 8021q: adding VLAN 0 to HW filter on device team0
[ 1420.574084][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1420.586239][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1420.599587][ T9481] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1420.606758][ T9481] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1420.633004][T20672] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1420.662742][T20672] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1420.681808][T20672] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1420.718065][T20672] device bridge_slave_0 left promiscuous mode
[ 1420.749138][T20672] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1420.996048][T20672] device bridge_slave_1 left promiscuous mode
[ 1421.003348][T20672] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1422.163250][T20672] bond0: (slave bond_slave_0): Releasing backup interface
[ 1422.206036][T20672] bond0: (slave bond_slave_1): Releasing backup interface
[ 1422.238325][T20672] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1422.245976][T20672] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1422.256628][T20672] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1422.266118][T20672] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1422.282293][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1422.291858][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1422.543698][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1422.649540][ T9481] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1422.656791][ T9481] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1422.804286][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1423.131156][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1423.140278][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1423.151961][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1423.186857][T20687] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1423.196674][T20687] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1423.204717][T20687] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1423.394248][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1423.409553][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1423.430697][T20702] loop1: detected capacity change from 0 to 2048
[ 1423.456112][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1423.465546][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1423.480739][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1423.495209][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1423.516177][T20702] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1423.530023][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.541609][ T9481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1423.664183][T14830] EXT4-fs (loop1): unmounting filesystem.
[ 1423.755610][T20494] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1423.777839][T20712] netlink: 'syz.6.4845': attribute type 4 has an invalid length.
[ 1423.872040][T20720] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1423.881090][T20720] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1426.465602][T20753] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1426.474275][T20753] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1427.203392][T20494] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1427.242385][T20759] loop6: detected capacity change from 0 to 1024
[ 1427.254460][T20759] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e000c02c, mo2=0003]
[ 1427.263108][T15360] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1427.264091][T20759] System zones: 0-1, 3-36
[ 1427.280650][T15360] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1427.303610][T20759] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1427.347793][   T26] kauditd_printk_skb: 51 callbacks suppressed
[ 1427.347811][   T26] audit: type=1800 audit(2000001336.269:1734): pid=20759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4860" name="bus" dev="loop6" ino=18 res=0 errno=0
[ 1427.437899][   T26] audit: type=1800 audit(2000001336.269:1735): pid=20759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4860" name="bus" dev="loop6" ino=18 res=0 errno=0
[ 1427.581139][T20767] loop2: detected capacity change from 0 to 2048
[ 1427.613203][T20771] lo speed is unknown, defaulting to 1000
[ 1427.624611][T20767] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1427.639302][T20771] lo speed is unknown, defaulting to 1000
[ 1427.645531][T20771] lo speed is unknown, defaulting to 1000
[ 1427.672282][T20771] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 1427.697881][T20771] lo speed is unknown, defaulting to 1000
[ 1427.705461][T20771] lo speed is unknown, defaulting to 1000
[ 1427.712439][T20771] lo speed is unknown, defaulting to 1000
[ 1427.719363][T20771] lo speed is unknown, defaulting to 1000
[ 1427.726071][T20771] lo speed is unknown, defaulting to 1000
[ 1427.754876][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1427.824925][T17610] EXT4-fs (loop6): unmounting filesystem.
[ 1428.257028][T20786] overlayfs: missing 'lowerdir'
[ 1429.173922][T20791] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4867'.
[ 1429.182912][T20791] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4867'.
[ 1429.199384][T20791] loop6: detected capacity change from 0 to 512
[ 1429.238377][T15368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1429.249764][T15368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1429.265726][T20791] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.4867: casefold flag without casefold feature
[ 1429.285073][T20791] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.4867: couldn't read orphan inode 15 (err -117)
[ 1429.297557][T20791] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1429.407471][T15368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1429.435314][T15368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1429.463967][T20494] device veth0_vlan entered promiscuous mode
[ 1429.472613][T15368] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1429.488803][T15368] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1429.511588][T20494] device veth1_vlan entered promiscuous mode
[ 1429.667012][T15360] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1429.751061][T15360] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1429.935411][T15360] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1430.099998][T15360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1430.348455][T20799] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1430.358487][T20799] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1430.366161][T20799] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1430.417748][T20494] device veth0_macvtap entered promiscuous mode
[ 1430.506218][T20494] device veth1_macvtap entered promiscuous mode
[ 1430.554106][T17610] EXT4-fs (loop6): unmounting filesystem.
[ 1430.578109][T20494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1430.603331][T20494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1430.633968][T20494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1430.687656][T20494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1430.709540][T20494] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1430.741170][T15375] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1430.761636][T15375] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1430.778733][T20494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1430.807297][T20494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1430.837437][T20494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1430.877808][T20494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1430.906599][T20494] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1430.922250][T15375] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1430.998314][T15375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1431.039591][T20494] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.088883][T20494] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.137502][T20494] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.157383][T20494] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.399082][T20823] 9pnet_fd: Insufficient options for proto=fd
[ 1431.450199][T20824] overlayfs: missing 'lowerdir'
[ 1432.109762][   T26] audit: type=1326 audit(2000001341.029:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20822 comm="syz.1.4878" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc21958d169 code=0x0
[ 1432.173721][T18966] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1432.235803][T18966] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1432.276323][T15341] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1432.295425][T15341] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1432.351831][T15341] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1432.432332][T15341] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1432.741245][T20836] loop9: detected capacity change from 0 to 512
[ 1433.424586][T20838] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4881'.
[ 1433.433697][T20838] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4881'.
[ 1433.458316][T20838] loop1: detected capacity change from 0 to 512
[ 1433.575813][T20838] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.4881: casefold flag without casefold feature
[ 1433.602683][T20838] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.4881: couldn't read orphan inode 15 (err -117)
[ 1433.619873][T20838] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1433.872280][T20851] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1433.880405][T20851] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1434.509455][T14830] EXT4-fs (loop1): unmounting filesystem.
[ 1435.912030][T20866] overlayfs: missing 'lowerdir'
[ 1437.925535][T20885] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4894'.
[ 1443.633344][T20926] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1443.642778][T20926] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1443.650289][T20926] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1444.664748][   T26] audit: type=1326 audit(2000001353.579:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1444.723550][T20929] loop9: detected capacity change from 0 to 512
[ 1444.763203][   T26] audit: type=1326 audit(2000001353.609:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1444.787950][   T26] audit: type=1326 audit(2000001353.609:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1444.816327][   T26] audit: type=1326 audit(2000001353.609:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f898238d1a3 code=0x7ffc0000
[ 1444.841932][   T26] audit: type=1326 audit(2000001353.609:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f898238bc1f code=0x7ffc0000
[ 1444.920905][   T26] audit: type=1326 audit(2000001353.639:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f898238d1f7 code=0x7ffc0000
[ 1444.993852][   T26] audit: type=1326 audit(2000001353.639:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f898238bad0 code=0x7ffc0000
[ 1445.112839][T20929] EXT4-fs error (device loop9): ext4_validate_block_bitmap:438: comm syz.9.4910: bg 0: block 248: padding at end of block bitmap is not set
[ 1445.127412][   T26] audit: type=1326 audit(2000001353.639:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f898238cd6b code=0x7ffc0000
[ 1445.127463][   T26] audit: type=1326 audit(2000001353.709:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f898238bdca code=0x7ffc0000
[ 1445.127510][   T26] audit: type=1326 audit(2000001353.709:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20928 comm="syz.9.4910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f898238bdca code=0x7ffc0000
[ 1445.358017][T20929] EXT4-fs error (device loop9): ext4_acquire_dquot:6795: comm syz.9.4910: Failed to acquire dquot type 1
[ 1445.397468][T20929] EXT4-fs (loop9): 1 truncate cleaned up
[ 1445.426873][T20929] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1445.449367][T20929] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1445.491227][T20953] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4917'.
[ 1446.558786][T20494] EXT4-fs (loop9): unmounting filesystem.
[ 1449.615226][T20983] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1449.626064][T20983] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1449.633906][T20983] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1452.356236][T21021] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1452.369311][T21021] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1452.377502][T21021] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1453.373126][T21040] loop6: detected capacity change from 0 to 2048
[ 1453.449022][T21040] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 1453.592768][T17610] EXT4-fs (loop6): unmounting filesystem.
[ 1453.872336][   T26] kauditd_printk_skb: 11 callbacks suppressed
[ 1453.872352][   T26] audit: type=1326 audit(2000001362.789:1756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1453.958652][   T26] audit: type=1326 audit(2000001362.819:1757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1453.984396][T21067] netlink: 'syz.9.4954': attribute type 1 has an invalid length.
[ 1454.052113][   T26] audit: type=1326 audit(2000001362.819:1758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1454.172153][   T26] audit: type=1326 audit(2000001362.819:1759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1454.264906][   T26] audit: type=1326 audit(2000001362.819:1760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1454.331222][   T26] audit: type=1326 audit(2000001362.819:1761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1454.393658][   T26] audit: type=1326 audit(2000001362.829:1762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1454.467424][   T26] audit: type=1326 audit(2000001362.829:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1454.504596][T21081] loop2: detected capacity change from 0 to 2048
[ 1454.527651][   T26] audit: type=1326 audit(2000001362.829:1764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1454.644628][T21081] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1454.660424][   T26] audit: type=1326 audit(2000001362.829:1765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21059 comm="syz.9.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1455.478438][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1455.665934][T21099] loop1: detected capacity change from 0 to 512
[ 1455.737481][T21099] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1455.796980][T21099] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1455.810561][T21099] ext4 filesystem being mounted at /375/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1455.953746][T14830] EXT4-fs (loop1): unmounting filesystem.
[ 1456.132691][T21121] netlink: 'syz.6.4973': attribute type 8 has an invalid length.
[ 1456.583508][T21133] loop1: detected capacity change from 0 to 512
[ 1456.590598][T21133] EXT4-fs: Ignoring removed orlov option
[ 1456.628386][T21133] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #2: block 3: comm syz.1.4975: lblock 0 mapped to illegal pblock 3 (length 1)
[ 1456.633381][T21132] loop8: detected capacity change from 0 to 2048
[ 1456.654613][T21133] EXT4-fs warning (device loop1): dx_probe:823: inode #2: lblock 0: comm syz.1.4975: error -117 reading directory block
[ 1456.667747][T21133] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[ 1456.675983][T21133] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1458.147280][T14830] EXT4-fs (loop1): unmounting filesystem.
[ 1458.208915][T21132] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1458.456086][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1459.211672][T21180] loop9: detected capacity change from 0 to 512
[ 1459.220554][T21180] EXT4-fs: Ignoring removed orlov option
[ 1459.416662][T21180] EXT4-fs error (device loop9): ext4_map_blocks:634: inode #2: block 3: comm syz.9.4991: lblock 0 mapped to illegal pblock 3 (length 1)
[ 1459.432738][T21180] EXT4-fs warning (device loop9): dx_probe:823: inode #2: lblock 0: comm syz.9.4991: error -117 reading directory block
[ 1459.445723][T21180] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -117
[ 1459.454804][T21180] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1459.860446][T20494] EXT4-fs (loop9): unmounting filesystem.
[ 1460.253582][T21200] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5001'.
[ 1460.716002][T21213] loop8: detected capacity change from 0 to 512
[ 1460.941736][T21213] EXT4-fs (loop8): 1 orphan inode deleted
[ 1460.957665][T21213] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1460.974731][T21213] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1461.075855][T21221] loop6: detected capacity change from 0 to 512
[ 1461.084915][T21221] EXT4-fs: Ignoring removed orlov option
[ 1461.268919][T21221] EXT4-fs error (device loop6): ext4_map_blocks:634: inode #2: block 3: comm syz.6.5007: lblock 0 mapped to illegal pblock 3 (length 1)
[ 1461.284660][T21221] EXT4-fs warning (device loop6): dx_probe:823: inode #2: lblock 0: comm syz.6.5007: error -117 reading directory block
[ 1461.298881][T21221] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117
[ 1461.307176][T21221] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1461.774133][ T4299] __quota_error: 42 callbacks suppressed
[ 1461.774151][ T4299] Quota error (device loop8): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1461.790404][ T4299] EXT4-fs error (device loop8): ext4_release_dquot:6818: comm kworker/u4:5: Failed to release dquot type 1
[ 1461.819130][T17610] EXT4-fs (loop6): unmounting filesystem.
[ 1461.826101][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1461.986773][   T26] audit: type=1326 audit(2000001370.899:1808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21228 comm="syz.2.5012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1462.044147][   T26] audit: type=1326 audit(2000001370.929:1809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21228 comm="syz.2.5012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1462.090173][   T26] audit: type=1326 audit(2000001370.929:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21228 comm="syz.2.5012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1462.113973][   T26] audit: type=1326 audit(2000001370.929:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21228 comm="syz.2.5012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1462.154469][   T26] audit: type=1326 audit(2000001370.939:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21228 comm="syz.2.5012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1462.177790][   T26] audit: type=1326 audit(2000001370.939:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21228 comm="syz.2.5012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1462.209355][   T26] audit: type=1326 audit(2000001370.939:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21228 comm="syz.2.5012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1462.238884][   T26] audit: type=1326 audit(2000001370.939:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21228 comm="syz.2.5012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1462.270019][   T26] audit: type=1326 audit(2000001370.939:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21228 comm="syz.2.5012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1462.289179][T21237] netlink: 104 bytes leftover after parsing attributes in process `syz.8.5014'.
[ 1463.103867][T21259] loop2: detected capacity change from 0 to 512
[ 1463.112511][T21259] EXT4-fs: Ignoring removed orlov option
[ 1463.380487][T21259] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 3: comm syz.2.5021: lblock 0 mapped to illegal pblock 3 (length 1)
[ 1463.397045][T21259] EXT4-fs warning (device loop2): dx_probe:823: inode #2: lblock 0: comm syz.2.5021: error -117 reading directory block
[ 1463.410240][T21259] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[ 1463.418569][T21259] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1463.771292][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1463.992193][T21273] netlink: 104 bytes leftover after parsing attributes in process `syz.6.5027'.
[ 1465.191349][T21302] loop9: detected capacity change from 0 to 512
[ 1465.200050][T21302] EXT4-fs: Ignoring removed orlov option
[ 1465.369904][T21302] EXT4-fs error (device loop9): ext4_map_blocks:634: inode #2: block 3: comm syz.9.5036: lblock 0 mapped to illegal pblock 3 (length 1)
[ 1465.390393][T21302] EXT4-fs warning (device loop9): dx_probe:823: inode #2: lblock 0: comm syz.9.5036: error -117 reading directory block
[ 1465.403251][T21302] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -117
[ 1465.411894][T21302] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1465.800005][T21305] netlink: 104 bytes leftover after parsing attributes in process `syz.8.5039'.
[ 1465.869089][T20494] EXT4-fs (loop9): unmounting filesystem.
[ 1466.395962][T21326] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5048'.
[ 1466.424452][T21326] IPVS: Error joining to the multicast group
[ 1467.739691][T21341] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5055'.
[ 1467.829684][T21350] loop8: detected capacity change from 0 to 1024
[ 1467.859214][T21350] EXT4-fs (loop8): revision level too high, forcing read-only mode
[ 1467.870217][T21350] EXT4-fs (loop8): orphan cleanup on readonly fs
[ 1467.887444][T21350] EXT4-fs error (device loop8): ext4_ext_check_inode:520: inode #3: comm syz.8.5058: pblk 1 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[ 1467.905889][T21350] EXT4-fs (loop8): Remounting filesystem read-only
[ 1467.913600][T21350] EXT4-fs error (device loop8): ext4_quota_enable:6989: comm syz.8.5058: Bad quota inode: 3, type: 0
[ 1467.925631][T21350] EXT4-fs (loop8): Remounting filesystem read-only
[ 1467.937113][T21350] EXT4-fs warning (device loop8): ext4_enable_quotas:7030: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[ 1467.953019][T21350] EXT4-fs (loop8): Cannot turn on quotas: error -117
[ 1467.959956][T21350] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1467.976750][T21350] EXT4-fs error (device loop8): ext4_search_dir:1549: inode #2: block 16: comm syz.8.5058: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[ 1468.016211][   T26] kauditd_printk_skb: 43 callbacks suppressed
[ 1468.016233][   T26] audit: type=1326 audit(2000001376.929:1860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1468.030550][T21350] EXT4-fs error (device loop8): ext4_search_dir:1549: inode #2: block 16: comm syz.8.5058: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[ 1468.116147][   T26] audit: type=1326 audit(2000001376.929:1861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1468.196197][T21358] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5061'.
[ 1468.199727][   T26] audit: type=1326 audit(2000001376.929:1862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1468.234544][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1468.249075][   T26] audit: type=1326 audit(2000001376.939:1863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1468.296127][T21358] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5061'.
[ 1468.305923][   T26] audit: type=1326 audit(2000001376.939:1864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1468.415088][   T26] audit: type=1326 audit(2000001376.939:1865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1468.475532][   T26] audit: type=1326 audit(2000001376.939:1866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1468.510489][   T26] audit: type=1326 audit(2000001376.939:1867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1468.574309][   T26] audit: type=1326 audit(2000001376.939:1868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1468.613683][   T26] audit: type=1326 audit(2000001376.949:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21343 comm="syz.8.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1469.452213][T21381] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1469.462263][T21381] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1469.469850][T21381] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1470.602316][T21388] netlink: 104 bytes leftover after parsing attributes in process `syz.8.5071'.
[ 1470.616397][T21386] serio: Serial port ptm0
[ 1470.928167][T21407] syz.6.5079[21407] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1470.928277][T21407] syz.6.5079[21407] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1472.408867][T21424] netlink: 104 bytes leftover after parsing attributes in process `syz.6.5087'.
[ 1472.611253][T21428] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1472.620869][T21428] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1472.628426][T21428] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1474.032774][T21447] 9pnet_fd: p9_fd_create_tcp (21447): problem connecting socket to 127.0.0.1
[ 1474.282392][T21455] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5099'.
[ 1476.609391][T21470] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1476.622186][T21470] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1476.630798][T21470] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1477.454584][T21479] loop9: detected capacity change from 0 to 512
[ 1477.475173][T21479] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1477.559128][T21479] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1477.566497][T21489] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5110'.
[ 1477.577614][T21479] ext4 filesystem being mounted at /39/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1477.660770][T20494] EXT4-fs (loop9): unmounting filesystem.
[ 1478.804013][T21512] loop8: detected capacity change from 0 to 1024
[ 1478.811629][T21512] EXT4-fs: Ignoring removed i_version option
[ 1478.818327][T21512] EXT4-fs: Ignoring removed orlov option
[ 1478.824003][T21512] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1478.836624][T21512] EXT4-fs: Invalid want_extra_isize 132
[ 1479.344594][T21527] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1479.359919][T21527] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1479.368447][T21527] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1479.499512][T21528] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1481.462474][   T26] kauditd_printk_skb: 11 callbacks suppressed
[ 1481.462580][   T26] audit: type=1326 audit(2000001390.369:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1481.673861][   T26] audit: type=1326 audit(2000001390.379:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1482.206166][   T26] audit: type=1326 audit(2000001390.389:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1482.286463][   T26] audit: type=1326 audit(2000001390.389:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1482.309678][   T26] audit: type=1326 audit(2000001390.389:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1482.332754][   T26] audit: type=1326 audit(2000001390.389:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1482.378442][   T26] audit: type=1326 audit(2000001390.389:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1482.425124][   T26] audit: type=1326 audit(2000001390.409:1888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1482.447792][   T26] audit: type=1326 audit(2000001390.439:1889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1482.490749][   T26] audit: type=1326 audit(2000001390.439:1890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21549 comm="syz.9.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1482.518225][T21556] netlink: 104 bytes leftover after parsing attributes in process `syz.1.5135'.
[ 1483.559640][T21566] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1483.573924][T21566] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1483.582069][T21566] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1484.197077][T21571] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5139'.
[ 1484.525136][T21590] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1484.874064][T21604] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1485.018587][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1485.601251][T21590] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1486.635492][T21590] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1486.711641][T21590] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1487.081293][T21621] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1487.090511][T21621] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1487.090511][T21621] 
[ 1487.971285][T21624] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1487.980390][T21624] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1487.987909][T21624] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1488.914225][T21626] serio: Serial port ptm0
[ 1488.979886][T21590] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1489.026003][T21590] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1489.069448][T21590] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1489.143155][T21590] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1489.182676][T21633] netlink: 36 bytes leftover after parsing attributes in process `syz.9.5158'.
[ 1489.701241][T21655] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1490.590511][T21663] netlink: 104 bytes leftover after parsing attributes in process `syz.6.5166'.
[ 1490.931604][T21673] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1490.939794][T21673] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1491.790646][T21683] netlink: 36 bytes leftover after parsing attributes in process `syz.8.5172'.
[ 1491.826527][T21682] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1492.079958][T21682] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1492.209900][T21682] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1492.304189][T21682] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1493.119583][T21701] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1494.191727][T21706] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1494.200391][T21706] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1494.200391][T21706] 
[ 1496.306938][T21720] serio: Serial port ptm0
[ 1496.664641][T21730] netlink: 36 bytes leftover after parsing attributes in process `syz.9.5187'.
[ 1496.783153][T21731] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1496.792250][T21731] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1496.799737][T21731] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1498.126159][T21740] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1498.812699][T21682] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1498.911311][T21682] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1498.973545][T21682] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1499.020644][T21682] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1499.617606][T21758] loop2: detected capacity change from 0 to 512
[ 1499.626989][T21758] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1499.649984][T21758] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1499.663538][T21758] __quota_error: 2 callbacks suppressed
[ 1499.663559][T21758] Quota error (device loop2): do_check_range: Getting block 196613 out of range 1-5
[ 1499.679254][T21758] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[ 1499.688779][T21758] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.5195: Failed to acquire dquot type 1
[ 1499.708263][T21758] EXT4-fs (loop2): 1 truncate cleaned up
[ 1499.714354][T21758] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1499.938333][T21685] Set syz1 is full, maxelem 65536 reached
[ 1500.317489][T21765] netlink: 104 bytes leftover after parsing attributes in process `syz.6.5197'.
[ 1500.403033][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1500.562221][T21769] netlink: 36 bytes leftover after parsing attributes in process `syz.6.5199'.
[ 1501.883142][T21775] syz.9.5201[21775] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1501.883244][T21775] syz.9.5201[21775] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1501.930903][T21784] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1501.955176][T21780] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5201'.
[ 1501.984678][T21780] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5201'.
[ 1502.023326][T21780] loop9: detected capacity change from 0 to 512
[ 1502.092512][T21780] EXT4-fs error (device loop9): ext4_orphan_get:1400: inode #15: comm syz.9.5201: casefold flag without casefold feature
[ 1502.120090][T21784] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1502.217370][T21790] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1502.264413][T21780] EXT4-fs error (device loop9): ext4_orphan_get:1405: comm syz.9.5201: couldn't read orphan inode 15 (err -117)
[ 1502.485406][T21780] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1502.889488][T21784] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1503.185290][T20494] EXT4-fs (loop9): unmounting filesystem.
[ 1503.202718][T21784] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1503.994374][T21784] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1504.023974][T21802] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5209'.
[ 1504.057302][T21802] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1504.064925][T21802] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1504.081264][T21802] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1504.089141][T21802] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1504.150637][T21784] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1504.172745][T21804] netlink: 36 bytes leftover after parsing attributes in process `syz.8.5210'.
[ 1504.201039][T21784] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1504.250813][T21784] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1506.359080][T21830] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1507.310645][T21837] syz.1.5218[21837] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1507.310770][T21837] syz.1.5218[21837] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1507.324079][T21837] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5218'.
[ 1507.344897][T21837] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5218'.
[ 1507.730969][T21851] loop9: detected capacity change from 0 to 512
[ 1507.783997][T21851] EXT4-fs (loop9): too many log groups per flexible block group
[ 1507.801650][T21853] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1507.813884][T21851] EXT4-fs (loop9): failed to initialize mballoc (-12)
[ 1507.829653][T21851] EXT4-fs (loop9): mount failed
[ 1507.888719][T21853] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1507.932624][   T26] audit: type=1326 audit(2000001416.849:1893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1507.974843][   T26] audit: type=1326 audit(2000001416.869:1894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1508.008542][T21853] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1508.043067][   T26] audit: type=1326 audit(2000001416.879:1895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1508.083115][   T26] audit: type=1326 audit(2000001416.879:1896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1508.110862][T21853] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1508.131167][   T26] audit: type=1326 audit(2000001416.879:1897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1508.143199][T21858] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5225'.
[ 1508.177432][   T26] audit: type=1326 audit(2000001416.879:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1508.238911][   T26] audit: type=1326 audit(2000001416.879:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1508.291631][T21853] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1508.312381][   T26] audit: type=1326 audit(2000001416.879:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1508.359469][T21853] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1508.377316][   T26] audit: type=1326 audit(2000001416.879:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1508.425814][T21853] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1508.435124][   T26] audit: type=1326 audit(2000001416.879:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21847 comm="syz.9.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1508.463295][T21862] netlink: 104 bytes leftover after parsing attributes in process `syz.8.5226'.
[ 1508.467960][T21853] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1508.896612][T21872] netlink: 64 bytes leftover after parsing attributes in process `syz.8.5227'.
[ 1509.643809][T21877] serio: Serial port ptm0
[ 1510.079530][T21887] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1510.924478][T21881] syz.9.5233[21881] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1510.924587][T21881] syz.9.5233[21881] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1511.031911][T21899] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5237'.
[ 1511.172307][T21881] loop9: detected capacity change from 0 to 512
[ 1511.202801][T21881] EXT4-fs error (device loop9): ext4_orphan_get:1400: inode #15: comm syz.9.5233: casefold flag without casefold feature
[ 1511.216903][T21881] EXT4-fs error (device loop9): ext4_orphan_get:1405: comm syz.9.5233: couldn't read orphan inode 15 (err -117)
[ 1511.231934][T21881] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1511.485797][T21908] loop6: detected capacity change from 0 to 512
[ 1511.507472][T21908] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1511.543806][T21910] netlink: 104 bytes leftover after parsing attributes in process `syz.1.5239'.
[ 1511.565896][T21908] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1511.625168][T21908] ext4 filesystem being mounted at /245/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1511.685803][T20494] EXT4-fs (loop9): unmounting filesystem.
[ 1511.827522][T21908] loop6: detected capacity change from 512 to 64
[ 1511.949687][T21918] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1512.035575][T17610] EXT4-fs (loop6): unmounting filesystem.
[ 1512.225907][T21918] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1512.441413][T21929] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1513.155904][T21918] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1513.284511][T21934] netlink: 'syz.2.5250': attribute type 3 has an invalid length.
[ 1513.321475][T21918] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1513.363353][T21936] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5249'.
[ 1513.519772][T21918] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1513.571901][T21918] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1513.605141][T21918] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1513.622876][T21918] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1513.655017][T21940] syz.8.5251[21940] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1513.655120][T21940] syz.8.5251[21940] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1513.755998][T21945] loop8: detected capacity change from 0 to 512
[ 1513.853306][T21945] EXT4-fs error (device loop8): ext4_orphan_get:1400: inode #15: comm syz.8.5251: casefold flag without casefold feature
[ 1513.878004][T21945] EXT4-fs error (device loop8): ext4_orphan_get:1405: comm syz.8.5251: couldn't read orphan inode 15 (err -117)
[ 1513.912012][T21945] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1514.021966][T14106] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1514.033617][ T4263] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1514.042175][T14106] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1514.051977][T14106] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1514.059707][T14106] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1514.067555][T14106] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1514.145980][T21956] lo speed is unknown, defaulting to 1000
[ 1515.074355][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1515.465258][T21974] netlink: 64 bytes leftover after parsing attributes in process `syz.8.5256'.
[ 1515.893136][T21956] chnl_net:caif_netlink_parms(): no params data found
[ 1516.199027][T14106] Bluetooth: hci4: command 0x0409 tx timeout
[ 1516.441711][T21956] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1516.459563][T21956] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1516.493290][T21956] device bridge_slave_0 entered promiscuous mode
[ 1516.548769][T21984] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1516.591983][T21956] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1516.607420][T21956] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1516.628606][T21956] device bridge_slave_1 entered promiscuous mode
[ 1516.701453][T21984] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1516.779567][T21956] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1516.814109][T21956] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1516.838881][T21984] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1516.880453][T21956] team0: Port device team_slave_0 added
[ 1516.891949][T21984] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1516.916105][T21990] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1516.940177][T21956] team0: Port device team_slave_1 added
[ 1516.954585][T21992] serio: Serial port ptm0
[ 1517.003114][T21956] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1517.023197][T21956] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1517.185252][   T26] kauditd_printk_skb: 26 callbacks suppressed
[ 1517.185269][   T26] audit: type=1326 audit(2000001426.099:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21998 comm="syz.2.5266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1517.252552][T21997] syz.1.5265[21997] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1517.252658][T21997] syz.1.5265[21997] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1517.253633][T21956] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1517.273592][   T26] audit: type=1326 audit(2000001426.169:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21998 comm="syz.2.5266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1517.340766][T21956] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1517.570118][T21956] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1517.596493][   T26] audit: type=1326 audit(2000001426.229:1931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21998 comm="syz.2.5266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1517.620374][T21956] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1517.636371][   T26] audit: type=1326 audit(2000001426.229:1932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21998 comm="syz.2.5266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1517.688294][   T26] audit: type=1326 audit(2000001426.229:1933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21998 comm="syz.2.5266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1517.825820][T21984] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1517.882082][T21956] device hsr_slave_0 entered promiscuous mode
[ 1517.922379][T21956] device hsr_slave_1 entered promiscuous mode
[ 1517.942392][T21956] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1517.962361][T21956] Cannot create hsr debugfs directory
[ 1518.328216][T14106] Bluetooth: hci4: command 0x041b tx timeout
[ 1518.441890][T21984] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1518.706793][T21984] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1518.789359][T21984] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1519.263307][T22015] xt_CT: No such helper "syz1"
[ 1520.026048][T22020] team0: No ports can be present during mode change
[ 1520.038696][T22025] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5273'.
[ 1520.063030][T22024] device vlan0 entered promiscuous mode
[ 1520.072516][T22032] serio: Serial port ptm0
[ 1520.170343][T22024] team0: Port device vlan0 added
[ 1520.188784][T22028] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1520.209343][T22028] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1520.238254][T22028] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1520.420568][   T48] Bluetooth: hci4: command 0x040f tx timeout
[ 1521.588528][T22053] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1522.487420][T14106] Bluetooth: hci4: command 0x0419 tx timeout
[ 1523.520241][T22064] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5285'.
[ 1523.538579][T22069] serio: Serial port ptm0
[ 1523.915312][T21956] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1523.968439][T21956] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1524.042703][T21956] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1524.120872][T21956] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1526.067977][T22095] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1527.030810][T22100] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1527.070294][T22105] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1527.089619][T22105] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1527.173936][T22105] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1527.761094][T22114] serio: Serial port ptm0
[ 1527.804408][T22111] netlink: 64 bytes leftover after parsing attributes in process `syz.8.5299'.
[ 1527.874762][T22100] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1527.932938][T21956] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1527.956947][T22100] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1528.005047][T21956] 8021q: adding VLAN 0 to HW filter on device team0
[ 1528.015057][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1528.024534][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1528.052806][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1528.072869][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1528.089182][T15363] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1528.096383][T15363] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1528.117686][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1528.148030][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1528.167079][T15363] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1528.174255][T15363] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1528.211531][T22100] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1528.241236][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1528.251755][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1528.264077][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1528.273941][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1528.296602][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1528.341378][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1528.351761][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1528.369083][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1528.390401][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1528.401214][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1528.422521][T21956] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1528.454736][T21956] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1528.474114][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1528.488345][T15363] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1528.503102][T22100] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1528.550532][T22100] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1528.595318][T22100] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1528.669177][T22100] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1528.928154][ T4674] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1528.944796][ T4674] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1528.971253][T21956] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1529.179898][T22146] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1530.337090][T22166] serio: Serial port ptm0
[ 1530.496776][T22169] netlink: 64 bytes leftover after parsing attributes in process `syz.8.5313'.
[ 1531.351173][T15373] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1531.366813][T15373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1531.405339][T18737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1531.453848][T18737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1531.495302][T21956] device veth0_vlan entered promiscuous mode
[ 1531.502854][T18737] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1531.529029][T18737] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1531.553544][T21956] device veth1_vlan entered promiscuous mode
[ 1531.568263][T22179] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1531.683900][T15377] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1531.714866][T15377] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1531.771631][T15377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1531.796627][T15377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1531.902821][T22189] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1531.923665][T21956] device veth0_macvtap entered promiscuous mode
[ 1532.634198][T22179] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1532.698136][T10668] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1532.720472][T21956] device veth1_macvtap entered promiscuous mode
[ 1532.746498][T22179] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1532.797156][T22197] xt_NFQUEUE: number of total queues is 0
[ 1532.801492][T21956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1532.834338][T22195] serio: Serial port ptm0
[ 1532.839080][T21956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1532.849392][T21956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1532.859939][T21956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1532.878930][T21956] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1532.920123][T21956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1532.937349][T21956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1532.956925][T21956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1532.979509][T21956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1533.001637][T21956] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1533.018921][T21956] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1533.053488][T21956] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1533.097331][T21956] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1533.119900][T21956] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1533.129883][   T48] Bluetooth: hci3: command 0x0406 tx timeout
[ 1533.145411][T22179] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1533.165763][ T4674] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1533.184479][ T4674] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1533.277142][ T4674] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1533.421546][ T4674] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1533.871424][T22207] netlink: 64 bytes leftover after parsing attributes in process `syz.8.5327'.
[ 1534.050247][T18966] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1534.061756][T18737] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1534.085361][T18737] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1534.101004][T18966] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1534.115346][T18966] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1534.141093][T22179] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1534.189110][T22179] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1534.266132][T22179] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1534.331340][T18966] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1534.355820][T22179] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1534.470850][T22223] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1535.231598][T22229] netlink: 'syz.1.5335': attribute type 7 has an invalid length.
[ 1535.261800][T22229] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5335'.
[ 1535.321037][T22235] serio: Serial port ptm0
[ 1536.426353][T22252] netlink: 64 bytes leftover after parsing attributes in process `syz.9.5341'.
[ 1537.292703][T22258] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5346'.
[ 1537.359208][T22264] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5346'.
[ 1537.481791][T22269] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1538.395770][T22267] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1538.440621][T22277] netlink: 'syz.1.5350': attribute type 7 has an invalid length.
[ 1538.462891][T22277] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5350'.
[ 1538.759331][T22292] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5355'.
[ 1539.397712][T22295] serio: Serial port ptm0
[ 1540.514706][T22267] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1540.529407][T22307] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5358'.
[ 1540.763442][T22267] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1540.797824][T22317] device ipvlan0 entered promiscuous mode
[ 1540.804758][T22317] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5361'.
[ 1540.848951][T22317] device ipvlan0 left promiscuous mode
[ 1540.943719][T22267] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1541.226965][T22267] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1541.272500][T22267] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1541.293348][T22267] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1541.328321][T22267] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1541.415590][T22328] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1542.018545][T15352] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1542.169438][T15352] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1542.264937][T15352] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1542.365192][T15352] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1544.820360][T22353] netlink: 64 bytes leftover after parsing attributes in process `syz.1.5371'.
[ 1545.103015][T22355] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5373'.
[ 1545.324012][T22355] team0: Port device vlan0 removed
[ 1545.487884][T22360] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1545.574737][T22360] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1545.856141][T22360] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1545.986703][T22374] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1546.414753][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.609343][T22360] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1546.963020][T22360] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1547.278348][T22360] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1547.781567][T22360] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1547.830963][T22360] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1548.095875][T22392] loop9: detected capacity change from 0 to 512
[ 1549.239353][T15352] device hsr_slave_0 left promiscuous mode
[ 1549.259700][T15352] device hsr_slave_1 left promiscuous mode
[ 1549.283267][T15352] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1549.297583][T15352] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1549.308301][T15352] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1549.325972][T15352] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1549.338455][T15352] device bridge_slave_0 left promiscuous mode
[ 1549.344799][T15352] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1549.463847][T15352] device veth1_macvtap left promiscuous mode
[ 1549.483728][T15352] device veth0_macvtap left promiscuous mode
[ 1549.504016][T15352] device veth1_vlan left promiscuous mode
[ 1549.518538][T15352] device veth0_vlan left promiscuous mode
[ 1549.670837][T22412] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1551.611994][T22428] loop4: detected capacity change from 0 to 512
[ 1551.635995][T22428] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1551.720120][T22428] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 1552.051496][T22428] EXT4-fs (loop4): 1 truncate cleaned up
[ 1552.148008][T22428] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1552.604598][T21956] EXT4-fs (loop4): unmounting filesystem.
[ 1552.682057][   T26] audit: type=1326 audit(2000001461.599:1934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1552.726310][   T26] audit: type=1326 audit(2000001461.619:1935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1552.767143][   T26] audit: type=1326 audit(2000001461.619:1936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1552.811702][   T26] audit: type=1326 audit(2000001461.619:1937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1552.834755][   T26] audit: type=1326 audit(2000001461.619:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1552.858156][   T26] audit: type=1326 audit(2000001461.619:1939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1552.885373][   T26] audit: type=1326 audit(2000001461.619:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1552.908097][   T26] audit: type=1326 audit(2000001461.619:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1552.930822][   T26] audit: type=1326 audit(2000001461.619:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1552.962285][   T26] audit: type=1326 audit(2000001461.619:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22438 comm="syz.4.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1553.109894][T15352] team0 (unregistering): Port device team_slave_1 removed
[ 1553.172693][T15352] team0 (unregistering): Port device team_slave_0 removed
[ 1553.226252][T15352] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1553.282724][T15352] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1553.882183][T15352] bond0 (unregistering): Released all slaves
[ 1553.994093][T22417] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1554.164038][T22417] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1554.303549][T22417] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1554.340204][T22454] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5403'.
[ 1554.363433][T22454] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5403'.
[ 1554.423188][T22417] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1554.481254][T22456] lo speed is unknown, defaulting to 1000
[ 1555.263187][T22479] loop4: detected capacity change from 0 to 512
[ 1555.350705][T22479] EXT4-fs (loop4): 1 orphan inode deleted
[ 1555.356516][T22479] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1555.375206][T15341] EXT4-fs error (device loop4): ext4_release_dquot:6818: comm kworker/u4:6: Failed to release dquot type 1
[ 1555.438893][T22479] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1555.560029][T21956] EXT4-fs (loop4): unmounting filesystem.
[ 1555.965884][T22492] loop4: detected capacity change from 0 to 128
[ 1557.208487][T22511] loop4: detected capacity change from 0 to 512
[ 1557.230039][T22417] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1557.253940][T22511] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1557.264198][T22511] ext4 filesystem being mounted at /13/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1557.286141][T22417] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1557.306222][T22417] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1557.322453][T22417] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1557.596889][T21956] EXT4-fs (loop4): unmounting filesystem.
[ 1558.501307][T22540] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1558.511066][T22540] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1558.518623][T22540] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1559.378704][T22558] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1559.500659][T22561] xt_hashlimit: max too large, truncated to 1048576
[ 1559.524203][T22558] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1559.620491][T22558] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1559.754651][T22558] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1559.778554][   T26] kauditd_printk_skb: 57 callbacks suppressed
[ 1559.778571][   T26] audit: type=1326 audit(2000001468.699:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1559.820004][T22566] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5436'.
[ 1559.840425][T22566] device veth1_macvtap left promiscuous mode
[ 1559.866622][   T26] audit: type=1326 audit(2000001468.729:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1559.930097][   T26] audit: type=1326 audit(2000001468.729:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1559.989801][   T26] audit: type=1326 audit(2000001468.729:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1560.032114][   T26] audit: type=1326 audit(2000001468.729:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1560.080348][T22558] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1560.108479][   T26] audit: type=1326 audit(2000001468.729:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1560.181810][   T26] audit: type=1326 audit(2000001468.729:2006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1560.227122][T22558] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1560.267673][   T26] audit: type=1326 audit(2000001468.729:2007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1560.297532][T22558] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1560.321910][T22558] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1560.341651][   T26] audit: type=1326 audit(2000001468.729:2008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1560.420191][   T26] audit: type=1326 audit(2000001468.729:2009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22565 comm="syz.2.5436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78878d169 code=0x7ffc0000
[ 1561.574820][T22588] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1561.584399][T22588] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1561.591945][T22588] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1562.372963][T22618] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5457'.
[ 1563.669454][T22633] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1563.679565][T22633] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1563.687044][T22633] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1563.899342][T22636] loop9: detected capacity change from 0 to 2048
[ 1563.966746][T22636] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[ 1564.157144][T20494] EXT4-fs (loop9): unmounting filesystem.
[ 1564.303158][T22645] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1564.940544][   T26] kauditd_printk_skb: 48 callbacks suppressed
[ 1564.940561][   T26] audit: type=1326 audit(2000001473.859:2058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.066554][   T26] audit: type=1326 audit(2000001473.899:2059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.149309][T22653] loop4: detected capacity change from 0 to 2048
[ 1565.158550][   T26] audit: type=1326 audit(2000001473.899:2060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.183123][   T26] audit: type=1326 audit(2000001473.899:2061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.209842][   T26] audit: type=1326 audit(2000001473.899:2062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.247231][   T26] audit: type=1326 audit(2000001473.909:2063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.270227][   T26] audit: type=1326 audit(2000001473.909:2064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.293209][   T26] audit: type=1326 audit(2000001473.909:2065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.316082][   T26] audit: type=1326 audit(2000001473.909:2066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.340848][T22653] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1565.372922][   T26] audit: type=1326 audit(2000001473.909:2067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7d398d169 code=0x7ffc0000
[ 1565.401122][T22653] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1565.917296][T21956] EXT4-fs (loop4): unmounting filesystem.
[ 1566.159557][T22664] syz.1.5471[22664] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1566.159664][T22664] syz.1.5471[22664] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1567.223209][T22684] loop9: detected capacity change from 0 to 1024
[ 1567.255586][T22684] EXT4-fs: Ignoring removed oldalloc option
[ 1567.302230][T22684] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1567.672940][T22684] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1568.271841][T20494] EXT4-fs (loop9): unmounting filesystem.
[ 1568.419921][T22703] netlink: 32 bytes leftover after parsing attributes in process `syz.9.5482'.
[ 1568.916655][T22714] netlink: 64 bytes leftover after parsing attributes in process `syz.9.5485'.
[ 1569.797888][T22717] syz.8.5487[22717] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1569.798008][T22717] syz.8.5487[22717] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1569.819246][T22717] loop8: detected capacity change from 0 to 512
[ 1570.053326][T22717] EXT4-fs error (device loop8): ext4_orphan_get:1400: inode #15: comm syz.8.5487: casefold flag without casefold feature
[ 1570.069066][T22717] EXT4-fs error (device loop8): ext4_orphan_get:1405: comm syz.8.5487: couldn't read orphan inode 15 (err -117)
[ 1570.083319][T22717] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1571.065154][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1571.344494][T22733] lo speed is unknown, defaulting to 1000
[ 1572.574817][T22748] netlink: 24 bytes leftover after parsing attributes in process `syz.9.5499'.
[ 1573.481281][T22748] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5499'.
[ 1573.548078][T22755] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5498'.
[ 1573.795891][T22764] batman_adv: batadv0: Adding interface: dummy0
[ 1573.802319][T22764] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1573.838932][T22764] batman_adv: batadv0: Interface activated: dummy0
[ 1573.958045][T22762] syz.4.5502[22762] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1573.958150][T22762] syz.4.5502[22762] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1573.984267][T22762] loop4: detected capacity change from 0 to 512
[ 1574.046407][T22762] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.5502: casefold flag without casefold feature
[ 1574.059883][T22762] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.5502: couldn't read orphan inode 15 (err -117)
[ 1574.075794][T22762] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1574.203088][T22779] bridge0: port 1(vlan2) entered blocking state
[ 1574.240218][   T26] kauditd_printk_skb: 12 callbacks suppressed
[ 1574.240235][   T26] audit: type=1326 audit(2000001483.159:2080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22780 comm="syz.9.5510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1574.277706][T22779] bridge0: port 1(vlan2) entered disabled state
[ 1574.328002][   T26] audit: type=1326 audit(2000001483.189:2081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22780 comm="syz.9.5510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1574.355255][   T26] audit: type=1326 audit(2000001483.189:2082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22780 comm="syz.9.5510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1574.387734][   T26] audit: type=1326 audit(2000001483.189:2083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22780 comm="syz.9.5510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1574.434249][T21956] EXT4-fs (loop4): unmounting filesystem.
[ 1574.555020][T22787] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1574.601775][   T26] audit: type=1326 audit(2000001483.519:2084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22784 comm="syz.9.5513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1574.703036][   T26] audit: type=1326 audit(2000001483.539:2085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22784 comm="syz.9.5513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1574.813608][T22787] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1574.848350][   T26] audit: type=1326 audit(2000001483.539:2086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22784 comm="syz.9.5513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1574.875164][   T26] audit: type=1326 audit(2000001483.539:2087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22784 comm="syz.9.5513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1574.904971][   T26] audit: type=1326 audit(2000001483.539:2088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22784 comm="syz.9.5513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1574.942213][   T26] audit: type=1326 audit(2000001483.539:2089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22784 comm="syz.9.5513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7f898238d169 code=0x7ffc0000
[ 1575.016649][T22797] netlink: 64 bytes leftover after parsing attributes in process `syz.8.5514'.
[ 1575.255569][T22787] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1575.872760][T22787] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1576.169363][T22787] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1576.254504][T22787] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1576.282302][T22805] xt_NFQUEUE: number of total queues is 0
[ 1576.310216][T22787] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1576.324787][T22787] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1576.991318][T22821] syz.2.5523[22821] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1576.991433][T22821] syz.2.5523[22821] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1577.005818][T22821] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5523'.
[ 1577.100224][T22822] loop2: detected capacity change from 0 to 512
[ 1577.300887][T22822] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.5523: casefold flag without casefold feature
[ 1577.326990][T22822] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.5523: couldn't read orphan inode 15 (err -117)
[ 1577.344556][T22822] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1577.415300][T22828] syz.8.5525[22828] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1577.415427][T22828] syz.8.5525[22828] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1577.436986][T22828] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1577.533829][T22828] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1577.622399][T22828] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1577.732329][T22828] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1577.753630][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1577.968694][T22839] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1578.053286][T22828] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1578.783241][T22839] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1578.862676][T22828] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1578.884330][T22828] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1578.929735][T22828] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1578.941047][ T4297] hid-generic 0000:0004:0000.0007: unknown main item tag 0x0
[ 1578.949524][ T4297] hid-generic 0000:0004:0000.0007: unknown main item tag 0x0
[ 1578.956971][ T4297] hid-generic 0000:0004:0000.0007: unknown main item tag 0x0
[ 1578.982417][T22839] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1578.994175][ T4297] hid-generic 0000:0004:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1579.098121][T22839] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1579.271533][T22852] netlink: 80 bytes leftover after parsing attributes in process `syz.2.5534'.
[ 1579.557046][T22858] loop2: detected capacity change from 0 to 512
[ 1579.592226][T22858] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1579.645447][T22858] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1579.842012][T22858] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #2: comm syz.2.5537: corrupted inode contents
[ 1579.895485][T22858] EXT4-fs error (device loop2): ext4_dirty_inode:6089: inode #2: comm syz.2.5537: mark_inode_dirty error
[ 1579.914420][T22866] syz.8.5539[22866] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1579.914579][T22866] syz.8.5539[22866] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1579.928575][T22866] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5539'.
[ 1579.929497][T22858] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #2: comm syz.2.5537: corrupted inode contents
[ 1579.986445][T22868] loop8: detected capacity change from 0 to 512
[ 1580.040657][T22868] EXT4-fs error (device loop8): ext4_orphan_get:1400: inode #15: comm syz.8.5539: casefold flag without casefold feature
[ 1580.089731][T22868] EXT4-fs error (device loop8): ext4_orphan_get:1405: comm syz.8.5539: couldn't read orphan inode 15 (err -117)
[ 1580.155279][T22868] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1580.256517][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1580.635014][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1580.928008][T22877] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5541'.
[ 1581.871903][T22882] loop8: detected capacity change from 0 to 256
[ 1582.232726][T22807] Set syz1 is full, maxelem 65536 reached
[ 1583.254896][T22894] lo speed is unknown, defaulting to 1000
[ 1583.700326][T22914] netlink: 64 bytes leftover after parsing attributes in process `syz.8.5553'.
[ 1584.685026][T22920] netlink: 3656 bytes leftover after parsing attributes in process `syz.9.5558'.
[ 1584.708340][T22920] netlink: 3656 bytes leftover after parsing attributes in process `syz.9.5558'.
[ 1584.761894][T22918] lo speed is unknown, defaulting to 1000
[ 1584.949266][T22927] loop9: detected capacity change from 0 to 2048
[ 1585.068329][T22927] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[ 1585.089811][T22839] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1585.168687][   T26] kauditd_printk_skb: 2 callbacks suppressed
[ 1585.168705][   T26] audit: type=1326 audit(2000001750.075:2092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1585.211155][T22839] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1585.269082][T20494] EXT4-fs (loop9): unmounting filesystem.
[ 1585.343113][T22839] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1585.346499][   T26] audit: type=1326 audit(2000001750.075:2093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1585.374920][   T26] audit: type=1326 audit(2000001750.075:2094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1585.397826][   T26] audit: type=1326 audit(2000001750.075:2095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1585.422624][   T26] audit: type=1326 audit(2000001750.075:2096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1585.573846][T22839] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1586.105867][   T26] audit: type=1326 audit(2000001750.075:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1586.181454][T22941] netlink: 88 bytes leftover after parsing attributes in process `syz.8.5566'.
[ 1586.234289][   T26] audit: type=1326 audit(2000001750.075:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1586.412284][   T26] audit: type=1326 audit(2000001750.075:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1586.522039][   T26] audit: type=1326 audit(2000001750.075:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1586.680674][   T26] audit: type=1326 audit(2000001750.075:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22931 comm="syz.8.5563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350b8d169 code=0x7ffc0000
[ 1586.726903][T22950] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5567'.
[ 1586.940113][T22954] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1587.116785][T22956] bridge0: port 3(gretap0) entered blocking state
[ 1587.158558][T22956] bridge0: port 3(gretap0) entered disabled state
[ 1587.194542][T22959] netlink: 'syz.9.5571': attribute type 3 has an invalid length.
[ 1587.361152][T22956] device gretap0 entered promiscuous mode
[ 1587.449767][T22956] bridge0: port 3(gretap0) entered blocking state
[ 1587.459847][T22956] bridge0: port 3(gretap0) entered forwarding state
[ 1587.513866][T22949] syz.4.5568[22949] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1587.513976][T22949] syz.4.5568[22949] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1587.527856][T22949] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5568'.
[ 1587.602152][T22969] netlink: 104 bytes leftover after parsing attributes in process `syz.8.5574'.
[ 1587.704718][T22966] loop4: detected capacity change from 0 to 512
[ 1587.801917][T22966] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.5568: casefold flag without casefold feature
[ 1587.860191][T22966] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.5568: couldn't read orphan inode 15 (err -117)
[ 1587.890962][T22966] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1588.055506][T22979] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1588.116674][T22981] loop2: detected capacity change from 0 to 2048
[ 1588.146438][T22981] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1588.172881][T22979] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1588.609879][T21956] EXT4-fs (loop4): unmounting filesystem.
[ 1589.053683][T14105] EXT4-fs (loop2): unmounting filesystem.
[ 1589.130473][T22991] siw: device registration error -23
[ 1589.222291][T22979] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1589.527583][T23000] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1589.893330][T22979] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1590.340178][T23004] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5587'.
[ 1590.354802][T22979] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1590.403953][T22979] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1590.483626][T22979] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1590.530327][T22979] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1592.484063][T23027] lo speed is unknown, defaulting to 1000
[ 1593.193946][T23024] tty tty22: ldisc open failed (-12), clearing slot 21
[ 1593.988307][T23032] xt_CT: No such helper "pptp"
[ 1594.948158][T23049] syz.2.5603[23049] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1594.948274][T23049] syz.2.5603[23049] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1595.038591][T23052] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1595.076507][T23049] loop2: detected capacity change from 0 to 2048
[ 1595.098234][T23049] EXT4-fs: Ignoring removed bh option
[ 1595.150790][T23049] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1595.309402][T23052] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1595.361753][T23060] loop8: detected capacity change from 0 to 512
[ 1595.386017][T23052] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1595.389525][T23060] EXT4-fs: Ignoring removed i_version option
[ 1595.417480][T23060] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1595.426210][T23060] ext4: Unknown parameter 'seclabel'
[ 1595.460389][T23052] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1595.962420][T23063] lo speed is unknown, defaulting to 1000
[ 1596.720028][T23066] netlink: 104 bytes leftover after parsing attributes in process `syz.8.5605'.
[ 1596.751802][T15350] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1596.832020][T15350] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1596.872797][T15350] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 1596.872797][T15350] 
[ 1596.897985][T15350] EXT4-fs (loop2): Total free blocks count 0
[ 1596.904227][T15350] EXT4-fs (loop2): Free/Dirty block details
[ 1596.925328][T15350] EXT4-fs (loop2): free_blocks=2415919104
[ 1596.931338][T15350] EXT4-fs (loop2): dirty_blocks=1568
[ 1596.936743][T15350] EXT4-fs (loop2): Block reservation details
[ 1596.961249][T15350] EXT4-fs (loop2): i_reserved_data_blocks=98
[ 1596.981130][T15350] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 1540 with error 28
[ 1597.269652][T23074] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5606'.
[ 1597.280059][T23074] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5606'.
[ 1597.296440][T23072] syz.8.5609[23072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1597.296554][T23072] syz.8.5609[23072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1597.309985][T23072] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5609'.
[ 1597.373779][T23075] loop8: detected capacity change from 0 to 512
[ 1597.451383][T23075] EXT4-fs error (device loop8): ext4_orphan_get:1400: inode #15: comm syz.8.5609: casefold flag without casefold feature
[ 1597.505909][T23075] EXT4-fs error (device loop8): ext4_orphan_get:1405: comm syz.8.5609: couldn't read orphan inode 15 (err -117)
[ 1597.552399][T23075] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1597.630939][T23052] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1597.698535][T23052] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1597.733687][T23052] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1597.777000][T23052] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1598.215072][T23086] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1598.882296][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1598.991041][T23091] loop8: detected capacity change from 0 to 128
[ 1599.042665][T23095] IPv6: Can't replace route, no match found
[ 1599.062940][T23096] loop4: detected capacity change from 0 to 512
[ 1599.125379][T23096] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1599.147732][T23096] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1599.413865][T21956] EXT4-fs (loop4): unmounting filesystem.
[ 1599.571888][T23109] netlink: 'syz.2.5620': attribute type 7 has an invalid length.
[ 1599.608865][T23109] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5620'.
[ 1599.796664][T23117] loop8: detected capacity change from 0 to 2048
[ 1599.977300][T23121] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1599.986802][T23121] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1599.994705][T23121] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1600.120471][T23117] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1601.135694][T23126] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5622'.
[ 1601.843437][T23128] syz.4.5623[23128] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1601.843547][T23128] syz.4.5623[23128] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1601.848636][T18163] EXT4-fs (loop8): unmounting filesystem.
[ 1601.868985][T23128] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5623'.
[ 1601.931489][T23129] loop4: detected capacity change from 0 to 512
[ 1601.992814][T23129] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.5623: casefold flag without casefold feature
[ 1602.044727][T23129] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.5623: couldn't read orphan inode 15 (err -117)
[ 1602.117272][T23129] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1602.428052][T23140] loop2: detected capacity change from 0 to 128
[ 1602.446140][T23141] loop8: detected capacity change from 0 to 512
[ 1602.471832][T23141] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1602.540046][T21956] EXT4-fs (loop4): unmounting filesystem.
[ 1602.541987][T23141] EXT4-fs (loop8): 1 truncate cleaned up
[ 1602.583452][T23141] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[ 1602.716677][T23140] syz.2.5627: attempt to access beyond end of device
[ 1602.716677][T23140] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128
[ 1602.774624][T23146] loop4: detected capacity change from 0 to 512
[ 1602.832411][T23144] ==================================================================
[ 1602.840542][T23144] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x909/0x1fa0
[ 1602.848310][T23144] Read of size 18446744073709551572 at addr ffff8880749d7850 by task syz.8.5628/23144
[ 1602.857870][T23144] 
[ 1602.860236][T23144] CPU: 1 PID: 23144 Comm: syz.8.5628 Not tainted 6.1.131-syzkaller #0
[ 1602.868454][T23144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1602.878522][T23144] Call Trace:
[ 1602.881810][T23144]  <TASK>
[ 1602.884744][T23144]  dump_stack_lvl+0x1e3/0x2cb
[ 1602.889440][T23144]  ? nf_tcp_handle_invalid+0x647/0x647
[ 1602.894905][T23144]  ? panic+0x764/0x764
[ 1602.898981][T23144]  ? _printk+0xd1/0x111
[ 1602.903154][T23144]  ? __virt_addr_valid+0x17f/0x530
[ 1602.908277][T23144]  ? __virt_addr_valid+0x17f/0x530
[ 1602.913406][T23144]  print_report+0x15f/0x4f0
[ 1602.917922][T23144]  ? __virt_addr_valid+0x17f/0x530
[ 1602.923049][T23144]  ? __virt_addr_valid+0x17f/0x530
[ 1602.928171][T23144]  ? __virt_addr_valid+0x45b/0x530
[ 1602.933292][T23144]  ? __phys_addr+0xb6/0x170
[ 1602.937805][T23144]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1602.943266][T23144]  kasan_report+0x136/0x160
[ 1602.947772][T23144]  ? __x64_sys_unlink+0x45/0x50
[ 1602.952631][T23144]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1602.958180][T23144]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1602.963648][T23144]  kasan_check_range+0x27f/0x290
[ 1602.968678][T23144]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1602.974161][T23144]  memmove+0x25/0x60
[ 1602.978079][T23144]  ext4_xattr_set_entry+0x909/0x1fa0
[ 1602.983384][T23144]  ? ext4_xattr_inode_lookup_create+0x1ff0/0x1ff0
[ 1602.989809][T23144]  ? ext4_xattr_block_set+0x7f4/0x3820
[ 1602.995277][T23144]  ? kmemdup+0x41/0x60
[ 1602.999444][T23144]  ? memcpy+0x3c/0x60
[ 1603.003443][T23144]  ext4_xattr_block_set+0x97e/0x3820
[ 1603.008745][T23144]  ? ext4_get_inode_loc+0x190/0x190
[ 1603.013962][T23144]  ? ext4_xattr_block_find+0x2b0/0x2b0
[ 1603.019430][T23144]  ? xattr_find_entry+0x24b/0x310
[ 1603.024465][T23144]  ? ext4_xattr_block_find+0x23d/0x2b0
[ 1603.029939][T23144]  ext4_expand_extra_isize_ea+0x10eb/0x1c40
[ 1603.035854][T23144]  ? ext4_xattr_set+0x3d0/0x3d0
[ 1603.041148][T23144]  ? rwsem_write_trylock+0x166/0x210
[ 1603.046538][T23144]  ? clear_nonspinnable+0x60/0x60
[ 1603.051574][T23144]  ? ext4_reserve_inode_write+0x2b3/0x360
[ 1603.057448][T23144]  ? dquot_initialize_needed+0x128/0x320
[ 1603.063097][T23144]  __ext4_expand_extra_isize+0x302/0x400
[ 1603.068752][T23144]  __ext4_mark_inode_dirty+0x54f/0x920
[ 1603.074402][T23144]  ? ext4_blocks_for_truncate+0x270/0x270
[ 1603.080136][T23144]  ? current_time+0x1ba/0x300
[ 1603.084819][T23144]  ? atime_needs_update+0x7b0/0x7b0
[ 1603.090033][T23144]  __ext4_unlink+0x6ed/0xba0
[ 1603.094638][T23144]  ? __ext4_read_dirblock+0x890/0x890
[ 1603.100024][T23144]  ? rwsem_write_trylock+0x166/0x210
[ 1603.105322][T23144]  ? clear_nonspinnable+0x60/0x60
[ 1603.110441][T23144]  ext4_unlink+0x1d5/0x670
[ 1603.114873][T23144]  vfs_unlink+0x359/0x5f0
[ 1603.119220][T23144]  do_unlinkat+0x4a5/0x820
[ 1603.123651][T23144]  ? fsnotify_link_count+0xf0/0xf0
[ 1603.128783][T23144]  __x64_sys_unlink+0x45/0x50
[ 1603.133472][T23144]  do_syscall_64+0x3b/0xb0
[ 1603.137900][T23144]  ? clear_bhb_loop+0x45/0xa0
[ 1603.142589][T23144]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1603.148497][T23144] RIP: 0033:0x7f5350b8d169
[ 1603.153007][T23144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1603.172633][T23144] RSP: 002b:00007f5351973038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 1603.181063][T23144] RAX: ffffffffffffffda RBX: 00007f5350da6080 RCX: 00007f5350b8d169
[ 1603.189043][T23144] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000180
[ 1603.197021][T23144] RBP: 00007f5350c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1603.205005][T23144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1603.212981][T23144] R13: 0000000000000000 R14: 00007f5350da6080 R15: 00007fffdf2819a8
[ 1603.220966][T23144]  </TASK>
[ 1603.224070][T23144] 
[ 1603.226394][T23144] Allocated by task 23144:
[ 1603.230813][T23144]  kasan_set_track+0x4b/0x70
[ 1603.235409][T23144]  __kasan_kmalloc+0x97/0xb0
[ 1603.240024][T23144]  __kmalloc_node_track_caller+0xb1/0x220
[ 1603.245751][T23144]  kmemdup+0x26/0x60
[ 1603.249666][T23144]  ext4_xattr_block_set+0x7f4/0x3820
[ 1603.254960][T23144]  ext4_expand_extra_isize_ea+0x10eb/0x1c40
[ 1603.260876][T23144]  __ext4_expand_extra_isize+0x302/0x400
[ 1603.266606][T23144]  __ext4_mark_inode_dirty+0x54f/0x920
[ 1603.272070][T23144]  __ext4_unlink+0x6ed/0xba0
[ 1603.276667][T23144]  ext4_unlink+0x1d5/0x670
[ 1603.281176][T23144]  vfs_unlink+0x359/0x5f0
[ 1603.285544][T23144]  do_unlinkat+0x4a5/0x820
[ 1603.290065][T23144]  __x64_sys_unlink+0x45/0x50
[ 1603.294938][T23144]  do_syscall_64+0x3b/0xb0
[ 1603.299444][T23144]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1603.305350][T23144] 
[ 1603.307684][T23144] Last potentially related work creation:
[ 1603.313396][T23144]  kasan_save_stack+0x3b/0x60
[ 1603.318601][T23144]  __kasan_record_aux_stack+0xb0/0xc0
[ 1603.323981][T23144]  call_rcu+0x163/0xa10
[ 1603.328137][T23144]  sctp_association_free+0x664/0x7b0
[ 1603.333425][T23144]  sctp_do_sm+0x3c58/0x5c80
[ 1603.337929][T23144]  sctp_primitive_SHUTDOWN+0x94/0xc0
[ 1603.343232][T23144]  sctp_close+0x3c9/0x910
[ 1603.347580][T23144]  inet_release+0x174/0x1f0
[ 1603.352087][T23144]  sock_close+0xcd/0x230
[ 1603.356332][T23144]  __fput+0x3f6/0x8d0
[ 1603.360318][T23144]  task_work_run+0x246/0x300
[ 1603.364915][T23144]  exit_to_user_mode_loop+0xde/0x100
[ 1603.370199][T23144]  exit_to_user_mode_prepare+0xb1/0x140
[ 1603.375746][T23144]  syscall_exit_to_user_mode+0x60/0x270
[ 1603.381294][T23144]  do_syscall_64+0x47/0xb0
[ 1603.385710][T23144]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1603.391626][T23144] 
[ 1603.393945][T23144] Second to last potentially related work creation:
[ 1603.400609][T23144]  kasan_save_stack+0x3b/0x60
[ 1603.405288][T23144]  __kasan_record_aux_stack+0xb0/0xc0
[ 1603.410663][T23144]  kvfree_call_rcu+0x116/0x8c0
[ 1603.415428][T23144]  batadv_hard_if_event+0x77c/0x1550
[ 1603.420718][T23144]  raw_notifier_call_chain+0xd0/0x170
[ 1603.426114][T23144]  unregister_netdevice_many+0xe48/0x1710
[ 1603.431836][T23144]  ip_tunnel_delete_nets+0x318/0x360
[ 1603.437131][T23144]  cleanup_net+0x886/0xd20
[ 1603.441548][T23144]  process_one_work+0x917/0x1260
[ 1603.446491][T23144]  worker_thread+0xa47/0x1200
[ 1603.451178][T23144]  kthread+0x28d/0x320
[ 1603.455242][T23144]  ret_from_fork+0x1f/0x30
[ 1603.459667][T23144] 
[ 1603.461988][T23144] The buggy address belongs to the object at ffff8880749d7800
[ 1603.461988][T23144]  which belongs to the cache kmalloc-1k of size 1024
[ 1603.476046][T23144] The buggy address is located 80 bytes inside of
[ 1603.476046][T23144]  1024-byte region [ffff8880749d7800, ffff8880749d7c00)
[ 1603.489319][T23144] 
[ 1603.491641][T23144] The buggy address belongs to the physical page:
[ 1603.498062][T23144] page:ffffea0001d27400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x749d0
[ 1603.508214][T23144] head:ffffea0001d27400 order:3 compound_mapcount:0 compound_pincount:0
[ 1603.516547][T23144] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1603.524542][T23144] raw: 00fff00000010200 dead000000000100 dead000000000122 ffff888017c41dc0
[ 1603.533141][T23144] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 1603.541721][T23144] page dumped because: kasan: bad access detected
[ 1603.548133][T23144] page_owner tracks the page as allocated
[ 1603.553953][T23144] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3611, tgid 3611 (klogd), ts 74720206256, free_ts 74717789658
[ 1603.574885][T23144]  post_alloc_hook+0x18d/0x1b0
[ 1603.579664][T23144]  get_page_from_freelist+0x3731/0x38d0
[ 1603.585224][T23144]  __alloc_pages+0x28d/0x770
[ 1603.589833][T23144]  alloc_slab_page+0x6a/0x150
[ 1603.594520][T23144]  new_slab+0x84/0x2d0
[ 1603.598602][T23144]  ___slab_alloc+0xc20/0x1270
[ 1603.603303][T23144]  __kmem_cache_alloc_node+0x19f/0x260
[ 1603.608788][T23144]  kmalloc_trace+0x26/0xe0
[ 1603.613210][T23144]  syslog_print+0x10c/0x620
[ 1603.617726][T23144]  do_syslog+0x819/0x910
[ 1603.621976][T23144]  __x64_sys_syslog+0x78/0x90
[ 1603.626661][T23144]  do_syscall_64+0x3b/0xb0
[ 1603.631080][T23144]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1603.636976][T23144] page last free stack trace:
[ 1603.641643][T23144]  free_unref_page_prepare+0x12a6/0x15b0
[ 1603.647279][T23144]  free_unref_page+0x33/0x3e0
[ 1603.651978][T23144]  __unfreeze_partials+0x1b7/0x210
[ 1603.657101][T23144]  put_cpu_partial+0x17b/0x250
[ 1603.661875][T23144]  qlist_free_all+0x76/0xe0
[ 1603.666384][T23144]  kasan_quarantine_reduce+0x156/0x170
[ 1603.671848][T23144]  __kasan_slab_alloc+0x1f/0x70
[ 1603.676698][T23144]  slab_post_alloc_hook+0x52/0x3a0
[ 1603.681821][T23144]  __kmem_cache_alloc_node+0x137/0x260
[ 1603.687291][T23144]  __kmalloc+0xa1/0x230
[ 1603.691451][T23144]  fib6_info_alloc+0x2c/0xd0
[ 1603.696055][T23144]  ip6_route_info_create+0x446/0x12c0
[ 1603.701429][T23144]  ip6_route_add+0x22/0x120
[ 1603.705930][T23144]  addrconf_add_dev+0x35f/0x510
[ 1603.710804][T23144]  addrconf_init_auto_addrs+0x898/0xe90
[ 1603.716360][T23144]  addrconf_notify+0xb06/0xf70
[ 1603.721135][T23144] 
[ 1603.723457][T23144] Memory state around the buggy address:
[ 1603.729091][T23144]  ffff8880749d7700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1603.737150][T23144]  ffff8880749d7780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1603.745208][T23144] >ffff8880749d7800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1603.753264][T23144]                                                  ^
[ 1603.759930][T23144]  ffff8880749d7880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1603.767990][T23144]  ffff8880749d7900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1603.776063][T23144] ==================================================================
[ 1603.816904][T23146] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1603.826226][T23146] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1603.829021][T23143] syz.2.5627: attempt to access beyond end of device
[ 1603.829021][T23143] loop2: rw=524288, sector=145, nr_sectors = 896 limit=128
[ 1603.874329][T23144] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1603.881674][T23144] CPU: 0 PID: 23144 Comm: syz.8.5628 Not tainted 6.1.131-syzkaller #0
[ 1603.889854][T23144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1603.899928][T23144] Call Trace:
[ 1603.903213][T23144]  <TASK>
[ 1603.906152][T23144]  dump_stack_lvl+0x1e3/0x2cb
[ 1603.910837][T23144]  ? nf_tcp_handle_invalid+0x647/0x647
[ 1603.916301][T23144]  ? panic+0x764/0x764
[ 1603.920375][T23144]  ? preempt_schedule_common+0xa6/0xd0
[ 1603.925843][T23144]  ? vscnprintf+0x59/0x80
[ 1603.930182][T23144]  panic+0x318/0x764
[ 1603.934201][T23144]  ? check_panic_on_warn+0x1d/0xa0
[ 1603.939425][T23144]  ? memcpy_page_flushcache+0xfc/0xfc
[ 1603.944815][T23144]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[ 1603.950800][T23144]  ? _raw_spin_unlock+0x40/0x40
[ 1603.955655][T23144]  check_panic_on_warn+0x7e/0xa0
[ 1603.960600][T23144]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1603.966153][T23144]  end_report+0x66/0x110
[ 1603.970403][T23144]  kasan_report+0x143/0x160
[ 1603.974907][T23144]  ? __x64_sys_unlink+0x45/0x50
[ 1603.979766][T23144]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1603.985225][T23144]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1603.990771][T23144]  kasan_check_range+0x27f/0x290
[ 1603.995723][T23144]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1604.001202][T23144]  memmove+0x25/0x60
[ 1604.005117][T23144]  ext4_xattr_set_entry+0x909/0x1fa0
[ 1604.010425][T23144]  ? ext4_xattr_inode_lookup_create+0x1ff0/0x1ff0
[ 1604.016856][T23144]  ? ext4_xattr_block_set+0x7f4/0x3820
[ 1604.022320][T23144]  ? kmemdup+0x41/0x60
[ 1604.026397][T23144]  ? memcpy+0x3c/0x60
[ 1604.030386][T23144]  ext4_xattr_block_set+0x97e/0x3820
[ 1604.035681][T23144]  ? ext4_get_inode_loc+0x190/0x190
[ 1604.040891][T23144]  ? ext4_xattr_block_find+0x2b0/0x2b0
[ 1604.046444][T23144]  ? xattr_find_entry+0x24b/0x310
[ 1604.051483][T23144]  ? ext4_xattr_block_find+0x23d/0x2b0
[ 1604.057033][T23144]  ext4_expand_extra_isize_ea+0x10eb/0x1c40
[ 1604.063029][T23144]  ? ext4_xattr_set+0x3d0/0x3d0
[ 1604.067884][T23144]  ? rwsem_write_trylock+0x166/0x210
[ 1604.073202][T23144]  ? clear_nonspinnable+0x60/0x60
[ 1604.078238][T23144]  ? ext4_reserve_inode_write+0x2b3/0x360
[ 1604.084056][T23144]  ? dquot_initialize_needed+0x128/0x320
[ 1604.089703][T23144]  __ext4_expand_extra_isize+0x302/0x400
[ 1604.095377][T23144]  __ext4_mark_inode_dirty+0x54f/0x920
[ 1604.100938][T23144]  ? ext4_blocks_for_truncate+0x270/0x270
[ 1604.106674][T23144]  ? current_time+0x1ba/0x300
[ 1604.111355][T23144]  ? atime_needs_update+0x7b0/0x7b0
[ 1604.116555][T23144]  __ext4_unlink+0x6ed/0xba0
[ 1604.121159][T23144]  ? __ext4_read_dirblock+0x890/0x890
[ 1604.126567][T23144]  ? rwsem_write_trylock+0x166/0x210
[ 1604.131873][T23144]  ? clear_nonspinnable+0x60/0x60
[ 1604.136916][T23144]  ext4_unlink+0x1d5/0x670
[ 1604.141362][T23144]  vfs_unlink+0x359/0x5f0
[ 1604.145715][T23144]  do_unlinkat+0x4a5/0x820
[ 1604.150147][T23144]  ? fsnotify_link_count+0xf0/0xf0
[ 1604.155290][T23144]  __x64_sys_unlink+0x45/0x50
[ 1604.159983][T23144]  do_syscall_64+0x3b/0xb0
[ 1604.164401][T23144]  ? clear_bhb_loop+0x45/0xa0
[ 1604.169086][T23144]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1604.174999][T23144] RIP: 0033:0x7f5350b8d169
[ 1604.179419][T23144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1604.199025][T23144] RSP: 002b:00007f5351973038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 1604.207525][T23144] RAX: ffffffffffffffda RBX: 00007f5350da6080 RCX: 00007f5350b8d169
[ 1604.215529][T23144] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000180
[ 1604.223503][T23144] RBP: 00007f5350c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1604.231478][T23144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1604.239538][T23144] R13: 0000000000000000 R14: 00007f5350da6080 R15: 00007fffdf2819a8
[ 1604.247513][T23144]  </TASK>
[ 1604.250855][T23144] Kernel Offset: disabled
[ 1604.255191][T23144] Rebooting in 86400 seconds..