last executing test programs:

4m20.254821243s ago: executing program 1 (id=2265):
r0 = gettid()
kcmp(r0, r0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00001a1000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x2)
munmap(&(0x7f0000385000/0x4000)=nil, 0x4000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x3, &(0x7f0000000a40)=""/199)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x444, &(0x7f0000000d00)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX], 0xfe, 0x667, &(0x7f00000002c0)="$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")

4m19.55016522s ago: executing program 2 (id=2273):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000400000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000001000)='svc_xprt_create_err\x00', r0, 0x0, 0xf58}, 0x18)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r1 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x81, 0x80000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0), <r3=>0x0, 0x89, &(0x7f0000000300)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000340), &(0x7f0000000680), 0x8, 0x5a, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000600)=ANY=[@ANYRESDEC=r2, @ANYRESDEC, @ANYRES8=r2], &(0x7f0000000040)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001100)={0x11, 0xc, &(0x7f0000001040)=ANY=[@ANYRES8=r6, @ANYRESDEC=0x0, @ANYRES16=0x0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8, 0x0, 0xfffffffffffffffe}, 0x18)
r9 = memfd_create(&(0x7f00000001c0)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96', 0x5)
fsetxattr$security_selinux(r9, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000200), 0x4)
socket$netlink(0x10, 0x3, 0x7)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r4}, 0x38)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r10}, 0x10)
r11 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_user(r11, &(0x7f0000000080)=ANY=[@ANYBLOB='system_u:object_r:auth_cache_t root'], 0x27)

4m19.357783269s ago: executing program 2 (id=2274):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r0}, 0x18)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0) (fail_nth: 4)

4m19.334251919s ago: executing program 1 (id=2275):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={0x0, 0x54}}, 0x0)

4m19.333979159s ago: executing program 2 (id=2276):
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095", @ANYRESHEX=0x0, @ANYRESDEC=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6bbcac8e41cde64f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000080)='sys_enter\x00', r3}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f00000003c0)={0x2, &(0x7f00000001c0)=[{0xffff, 0x5, 0x0, 0x4}, {0x8, 0x2, 0x28, 0x2}]})
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x800000000000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000140)={{0x3, 0x0, 0x0, 0x0, 0x0, 0x1e0}, 0x0, 0x0, 0x0, 0x100000040000})

4m19.134027608s ago: executing program 2 (id=2278):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000540), 0x1, 0x236, &(0x7f0000000300)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r3 = openat$cgroup_int(r1, &(0x7f0000000040)='pids.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x40000000000000)
r4 = syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
kcmp(r4, r4, 0x1, 0xffffffffffffffff, 0xffffffffffffffff)

4m19.133552398s ago: executing program 1 (id=2279):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000100)={'sit0\x00', &(0x7f0000000080)={'gre0\x00', 0x0, 0x7800, 0x10, 0x9, 0x8, {{0x5, 0x4, 0x1, 0x1b, 0x14, 0x66, 0x0, 0xd9, 0x2f, 0x0, @remote, @local}}}})
socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20)
r2 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0040040000c10000280012800900010076657468"], 0x48}, 0x1, 0x0, 0x0, 0x84}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000009196bd"], 0x14}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x16, 0x0, 0x0, 0x8}]}, 0x10)

4m19.087258878s ago: executing program 1 (id=2281):
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000300)={0xffbffffb, 0x0, 0x0, 'queue1\x00'})
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x1000410, &(0x7f0000000040)={[{@barrier_val={'barrier', 0x3d, 0x7}}, {@i_version}]}, 0x4, 0x504, &(0x7f0000019940)="$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")
r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
write$binfmt_register(r2, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x7, 0x3a, 'M', 0x3a, 'M', 0x3a, './file2', 0x3a, [0x46]}, 0x2a)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r1, 0x408c5333, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00'})
r3 = socket(0x2, 0x3, 0x67)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000140)='bridge0\x00', 0x52c)
sendto$unix(r3, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@abs={0x0, 0x7, 0xd0000e0}, 0x6e)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, 0x0, 0x0)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000200), 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
syz_open_procfs(0x0, &(0x7f0000001380))
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000040000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000838500000071000000850000005000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$nl_route(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r7, @ANYRESOCT=r2, @ANYRES32], 0x54}}, 0x0)

4m18.962195217s ago: executing program 2 (id=2283):
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./bus\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x36c, &(0x7f00000023c0)="$eJzs3c9rK1UUwPGTNMlL8nhNFqIoSC++jW6GNroWg7wHQsBHXyO2gjBtJxoyJmUmVCNi25Vbce9KcFG6s+CioP0HunGnGxHcdSO4sAt1ZH4lk2SSpjE1vvb7gZKbe++Z3Jt7C2fSTub87c8/aNRsraa3JZlVkhARuRApSlJCieAx6ZUzErUvL939/cfnH69Xs36Felhee7mklFpc+u7DT3JBt5M7clZ89/y30q9nT589e/732vt1W9Vt1Wy1la42Wz+39U3TUNt1u6Ep9cg0dNtQ9aZtWH77N8FxzNbOTkfpze17+R3LsG2lNzuqYXRUu6XaVkfp7+n1ptI0Td3Lyzjpsa23RfVwdVUvTxm8NePB4JpYlqMviEhuqKV6OJcBAQCAuRrM/5NuSj9N/r8hi5XKg1Xldu7l/0cvnLbvvnW8GOT/J5m4/P+Vn/xj9eX/7ulEL/9v+ecHtcvz/y9lovzfN5wR3S5T5//FaxgMprOUGapK9D2zrLKeD35/PQfvHC17BfJ/AAAAAAAAAAAAAAAAAAAAAACeBBeOU3AcpxA+hj+9SwiC57iRsiPW/47b5q6+w/rfZI/XNyTrXbjnrrH52W51t+o/Bh1ORcQU4y9nkLs3wiuPlKso35t7QfzebnXBaynXpO7Gy4oUpOjtp0i84zx8o/JgRfmC+O5lSvlofEkK8lQ0/ltvd7rxpf744PUz8uL9SLwmBflhS1piyrYX2Xv9T1eUev3NykB8zusnIr/854sCAAAAAMCMaaor9vxd00a1+98yUq55HxMZsiwF+TP+/H459vw8VXguNe/ZAwAAAABwO9idjxu6JA3LK5hmXCEnI5viC7mrdE711aRFJLZzZqAmPe7IC5EZTjgMPSP+HUyuNNOYwlfhu3qVqPAfKdyBd5uCO6rIdOMJ5+/VJFLTTsc0E/vibYD9aFNSJghPDQ5+ya1QsZ3vjzzOQTCRbk34sVFmxPssj4aPkxyzE9JDNU5iug3wzBdf//Fv90+v8OpxsAM+urzzgWk4ezLJogwU3JcYbuL2OAAAAMAN1Ev6w5rXos3RG4lEb5bDX+4BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJihmXxR2SWFec8RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+L/4JwAA//94DPMO") (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001600)=ANY=[@ANYBLOB="09000000040000000300000009"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000002c0)}, 0x20) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10) (async)
fcntl$F_GET_RW_HINT(r1, 0x40b, &(0x7f0000000080)) (async, rerun: 32)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0) (rerun: 32)
sendfile(r2, r2, 0x0, 0x7a680000)

4m18.495848615s ago: executing program 2 (id=2290):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000440), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket(0x2, 0x5, 0x0)
sendmmsg$inet_sctp(r3, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000200)="f9", 0x1}], 0x1, 0x0, 0x0, 0x80020}], 0x1, 0x40c0)

4m18.495727395s ago: executing program 32 (id=2290):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000440), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket(0x2, 0x5, 0x0)
sendmmsg$inet_sctp(r3, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000200)="f9", 0x1}], 0x1, 0x0, 0x0, 0x80020}], 0x1, 0x40c0)

4m18.490317395s ago: executing program 1 (id=2292):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x41}, 0x3}}, 0x10)
listen(r1, 0x0)
accept(r1, 0x0, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0}, 0x0)

4m18.107837204s ago: executing program 1 (id=2294):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x2, 0x3, 0x260, 0x0, 0x0, 0x0, 0x108, 0x108, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x3, 0x0, {[{{@ip={@rand_addr, @dev, 0x0, 0x0, '\x00', 'veth0\x00', {}, {}, 0x21}, 0x0, 0xa0, 0x108, 0x0, {}, [@common=@inet=@dccp={{0x30}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@TCPMSS={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2c0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
add_key$fscrypt_v1(&(0x7f00000004c0), &(0x7f0000000500)={'fscrypt:', @desc3}, &(0x7f0000000540)={0x0, "e2137bda1013b5445630b8b19e1b7e08e087f5aa148472ca0abe6cb3b0aa805f4716f10d952e20c1eb0852717bca3d8f885a6dcb59ed0e258e99d223e610617c", 0x14}, 0x48, 0x0)
socket$packet(0x11, 0x3, 0x300)
unshare(0x64000600)

4m18.107681984s ago: executing program 33 (id=2294):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x2, 0x3, 0x260, 0x0, 0x0, 0x0, 0x108, 0x108, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x3, 0x0, {[{{@ip={@rand_addr, @dev, 0x0, 0x0, '\x00', 'veth0\x00', {}, {}, 0x21}, 0x0, 0xa0, 0x108, 0x0, {}, [@common=@inet=@dccp={{0x30}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@TCPMSS={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2c0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
add_key$fscrypt_v1(&(0x7f00000004c0), &(0x7f0000000500)={'fscrypt:', @desc3}, &(0x7f0000000540)={0x0, "e2137bda1013b5445630b8b19e1b7e08e087f5aa148472ca0abe6cb3b0aa805f4716f10d952e20c1eb0852717bca3d8f885a6dcb59ed0e258e99d223e610617c", 0x14}, 0x48, 0x0)
socket$packet(0x11, 0x3, 0x300)
unshare(0x64000600)

4m9.915828128s ago: executing program 5 (id=2406):
open_tree(0xffffffffffffffff, &(0x7f0000000000)='./bus\x00', 0x100)
r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=@base={0xa, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r1}, 0x10)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, 0x12, 0xa01, 0x0, 0x0, {0xf, 0x2}}, 0x14}}, 0x0)
close(r0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x43, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000008c0)='sys_enter\x00', r6}, 0x10)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
setuid(0x0)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x7, &(0x7f0000000100)=[{0x9, 0x8, 0x8, 0x40}, {0x1b, 0x6, 0x5, 0x2}, {0x4, 0x6, 0x2, 0x6}, {0x200, 0x81, 0x38, 0x82}, {0xfffc, 0x1, 0x8b, 0x5}, {0xb, 0xa, 0x6a, 0x6}, {0x6, 0x81, 0x9, 0x2}]})
mount$9p_fd(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000200), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r8, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r8, 0x84, 0x17, &(0x7f0000000380)=ANY=[@ANYRES32=0x0, @ANYBLOB="01"], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r8, 0x84, 0x17, &(0x7f00000003c0)=ANY=[], 0x9)

4m9.877394578s ago: executing program 5 (id=2407):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf090000000000005509010000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x41}, 0x3}}, 0x10)
listen(r2, 0x0)
accept(r2, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0}, 0x0)

4m9.808307348s ago: executing program 5 (id=2408):
r0 = gettid()
kcmp(r0, r0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00001a1000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x2)
remap_file_pages(&(0x7f00005fd000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x8000)
munmap(&(0x7f0000385000/0x4000)=nil, 0x4000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x3, &(0x7f0000000a40)=""/199)
r1 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x444, &(0x7f0000000d00)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX], 0xfe, 0x667, &(0x7f00000002c0)="$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")
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0xffffffff, @dev, 0x9}, 0x1c)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000100)="88", 0xfdef}], 0x1)
r5 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_LEAVE_MESH(r2, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r5, 0x400, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8, 0x61}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x810}, 0x24000800)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r6, &(0x7f0000000000)='./file0\x00', 0x5)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000a00)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="4c0000000206010200000000000000000000000613000300686173683a6e65742c696661636500000e0003006269746d61703a697000000113000300686173683a6e65742c69666163650000"], 0x4c}, 0x1, 0x0, 0x0, 0x44}, 0x20008000)

4m9.270449865s ago: executing program 5 (id=2419):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000540), 0x1, 0x236, &(0x7f0000000300)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40, 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)

4m9.198160675s ago: executing program 5 (id=2421):
r0 = gettid()
kcmp(r0, r0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00001a1000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x2)
remap_file_pages(&(0x7f00005fd000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x8000)
munmap(&(0x7f0000385000/0x4000)=nil, 0x4000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x3, &(0x7f0000000a40)=""/199)
r1 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x444, &(0x7f0000000d00)=ANY=[@ANYBLOB="75746638006d61703d6f983c756661703d6e6f726d616c2c6909000000f2ff00003dda5de4d586f0df206d65656b416d6f64653d7063303030303010303071303030303030302c73657373696f6e3d307830faffffff30303030303030f459574b50be30c8486470722677b93165cfe6f62127553b2017754598752d977369672c7063723d303030303030303030303030303030303030332c64566e745f6d6561737572652c00000000000000006bbf4d6406b59dbc529c00000000000000fada265ab14119997600a2299d2c35a2efc1bf037787a0d801e26d335ef2ba9ac2423a358ccbb776b21e1d3b5ee4e0f21a4c775145ef26c98b4af40babc3b18cc5635b6da7c4d1b0fbb8f271016ecf316158c2be5a4bef251c82b85bbc335cae0a2920ce36f206f449fbf64a47e05bd4cf8312774a4e61", @ANYRESDEC, @ANYRESHEX], 0xfe, 0x667, &(0x7f00000002c0)="$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")
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0xffffffff, @dev, 0x9}, 0x1c)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000100)="88", 0xfdef}], 0x1)
r5 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_LEAVE_MESH(r2, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r5, 0x400, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8, 0x61}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x810}, 0x24000800)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r6, &(0x7f0000000000)='./file0\x00', 0x5)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000a00)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="4c0000000206010200000000000000000000000613000300686173683a6e65742c696661636500000e0003006269746d61703a697000000113000300686173683a6e65742c69666163650000"], 0x4c}, 0x1, 0x0, 0x0, 0x44}, 0x20008000)

4m8.968158414s ago: executing program 5 (id=2424):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r0 = socket(0x2, 0x5, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000200)="f9", 0x1}], 0x1, 0x0, 0x0, 0x80020}], 0x1, 0x40c0)
sendmmsg$inet_sctp(r0, &(0x7f0000000bc0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c0000000000000000002b0388edb6556900"/51, @ANYRES32=0x0], 0x30}], 0x1, 0x0)

4m8.968018394s ago: executing program 34 (id=2424):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r0 = socket(0x2, 0x5, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000200)="f9", 0x1}], 0x1, 0x0, 0x0, 0x80020}], 0x1, 0x40c0)
sendmmsg$inet_sctp(r0, &(0x7f0000000bc0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c0000000000000000002b0388edb6556900"/51, @ANYRES32=0x0], 0x30}], 0x1, 0x0)

2.43671939s ago: executing program 0 (id=7880):
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f00000005c0)='./file2\x00', 0x100080a, &(0x7f0000000280)=ANY=[@ANYRESOCT=0x0, @ANYRES64], 0x1, 0x66b, &(0x7f0000000900)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000080000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x4}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c0000000800124000000000050005000a000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a00000105000100"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00'}, 0x10)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r4, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SET_FPEXC(0xc, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
munlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000)

2.363937129s ago: executing program 3 (id=7882):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
connect$netlink(r1, &(0x7f0000000280)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001500)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {0x0, 0x0, 0x2}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8080}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xffffffffffffff9a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000000)='./bus\x00', 0x2, &(0x7f00000007c0)=ANY=[@ANYRES16=r2], 0x97, 0x2b2, &(0x7f0000001740)="$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")
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001540)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000001480)=ANY=[@ANYBLOB="486afba300000000000000000100d4cb0e3f906ca791498818110000", @ANYRES32=<r5=>r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000300)=ANY=[@ANYRESOCT=r0, @ANYRES32=r4, @ANYRES64=r5], 0x0, 0xfffffffd, 0x5e, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}, {0x3, &(0x7f0000000040)=0x3, 0x2}, {0x40000000, 0x0, 0x82}], 0x3, 0x0, 0x0, 0x0)

2.29728334s ago: executing program 3 (id=7884):
ioperm(0x0, 0x2, 0x7e)
syz_open_dev$evdev(0x0, 0x20000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = socket$inet6(0xa, 0x3, 0x5)
read(r0, &(0x7f0000000040)=""/22, 0x16)
setsockopt$inet6_int(r0, 0x29, 0x38, &(0x7f0000000180)=0x8, 0x4)
sendmmsg(r0, &(0x7f0000002b00)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @mcast1}, 0x80, 0x0}, 0x5b4}], 0x1, 0x0)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffc01, 0x0)

2.222364119s ago: executing program 3 (id=7885):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000020000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (fail_nth: 3)

1.998404158s ago: executing program 0 (id=7890):
add_key(0x0, &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x1c)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xe, &(0x7f0000000100)=0x100, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
r3 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r3, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @rand_addr=0x64010100}, 0x10, 0x0}}], 0x1, 0x20009810)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x40d, 0x70bd26, 0xc408, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_MLD_VERSION={0x5, 0x2c, 0x1}, @IFLA_BR_AGEING_TIME={0x8}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@getneightbl={0x14, 0x42, 0x727d4c0aeeddad0d, 0x0, 0x0, {0x2}}, 0x14}}, 0x0)

1.992556018s ago: executing program 3 (id=7892):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x6db6e559)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000004c0)={0x0, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x8, 0x9, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r6=>0x0, 0x2b, &(0x7f00000001c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000200), &(0x7f0000000280), 0x8, 0xdb, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
r7 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000400)={r4}, 0x4)
r8 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
write$P9_RREAD(r8, &(0x7f0000000080)=ANY=[], 0x100b)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000300)=ANY=[@ANYRES64=r5, @ANYBLOB="de0b7055eaeee826998ac3686a368b83edd124ce154951b5a7a2c02cab7ed375c5bb85de844e294b40598fb6f7df1dc023a1a9a8829aab509904be8f31c3dab2dcf0fd3eaf", @ANYRES64=r7], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, r7, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0xd1170707f0656889, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff40, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r10, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9, 0x0, 0x10000000000000}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)

1.180086694s ago: executing program 4 (id=7899):
r0 = socket(0x8, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd1, 0x0, 0x0)
getsockopt$MRT6(r0, 0x29, 0xd0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xfff2}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x200000, 0x0, 0x38e7, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x20000010)
socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001000020000000000003000085"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x2, 0x80400, 0x2008, 0x800})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}}, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x48}}, 0x0)

1.160499174s ago: executing program 6 (id=7900):
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f00000005c0)='./file2\x00', 0x100080a, &(0x7f0000000280)=ANY=[@ANYRESOCT=0x0, @ANYRES64], 0x1, 0x66b, &(0x7f0000000900)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x4}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c0000000800124000000000050005000a000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a00000105000100"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00'}, 0x10)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r4, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SET_FPEXC(0xc, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
munlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000)

1.067865864s ago: executing program 4 (id=7901):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0)
mq_timedreceive(r2, 0x0, 0xffffffffffffffe7, 0x20004000, 0x0)

1.062679914s ago: executing program 7 (id=7902):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

977.433773ms ago: executing program 0 (id=7903):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
connect$netlink(r1, &(0x7f0000000280)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001500)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {0x0, 0x0, 0x2}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8080}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xffffffffffffff9a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000000)='./bus\x00', 0x2, &(0x7f00000007c0)=ANY=[@ANYRES16=r2], 0x97, 0x2b2, &(0x7f0000001740)="$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")
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001540)=ANY=[], 0x50)
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}, {0x3, &(0x7f0000000040)=0x3, 0x2}, {0x40000000, 0x0, 0x82}], 0x3, 0x0, 0x0, 0x0)

976.907663ms ago: executing program 3 (id=7904):
ptrace(0x4206, 0x0)
ptrace(0x8, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = inotify_init1(0x0)
r1 = inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x400)
r2 = dup(r0)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1e00000000000000050000000600000000000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00%\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00'/28], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x78, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
r6 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r7, &(0x7f0000000140)='./file0\x00')
openat(r7, &(0x7f0000000700)='./file0/../file0\x00', 0x515a02, 0x52abe154ad664f64)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="540000000008010100000000000000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
msgget(0x3, 0x141)
ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f0000000400)={0x0, 0x7f, 0x700})
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x3e, 0x1, 0x4, 0x0, 0x0, 0x5, 0x800, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x1}, 0x1100, 0x5dd8, 0x100008, 0x9, 0x0, 0x4, 0xfffb, 0x0, 0xfffffffd, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
inotify_rm_watch(r2, r1)
setsockopt$RXRPC_UPGRADEABLE_SERVICE(r2, 0x110, 0x5, &(0x7f0000000040)=[0x81, 0x3], 0x2)

922.127263ms ago: executing program 7 (id=7905):
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$MAP_CREATE(0x600000000000000, &(0x7f0000000580)=ANY=[@ANYRES32=0x1, @ANYBLOB="fdffffff00000000000000000100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000400"/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), 0xffffffffffffffff)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="70000000100003042abd70009da1d2b900000004", @ANYRES32=0x0, @ANYBLOB="0000000000000000500012800b0001006272696467650000400002800800050000000000050029000100000006002700040000000c00220006000000000000000c0021"], 0x70}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5}, 0x38)
lsetxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180), &(0x7f00000005c0)=ANY=[@ANYBLOB="00fba905033a38f4e3bdbfcffd9194bb023fc8546b82dd5918e4c48b7431732d6cc2345582e84959e7b3544f8797053947864e0135896483294dd0ebb4b3c1897ecc97b2f1bbde0d3791d9394b9c0a46405b80596a859b8dd65e39c7808c55d076b2a1e972ddc6cfce062377be336d96d3307aca2db956a4b165c975bda181a9e0baa74d350a59396bc626e7db0839b9f9622a0640d537e5e90b10e5ddcfb719c256a651ab9ac30563"], 0xa9, 0x1)

896.853973ms ago: executing program 0 (id=7906):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRES16=0x0, @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000002c0)={<r1=>0x0, @broadcast, @remote}, &(0x7f0000000340)=0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0xfffffffffffffffe}, 0x18)
r3 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0xf0b, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c00)=@newtfilter={0x74, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r4, {0xfff2}, {}, {0x8, 0xd}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}, @filter_kind_options=@f_basic={{0xa}, {0x30, 0x2, [@TCA_BASIC_CLASSID={0x8, 0x1, {0x2, 0x5}}, @TCA_BASIC_CLASSID={0x8, 0x1, {0xfff2}}, @TCA_BASIC_CLASSID={0x8, 0x1, {0x9, 0xa}}, @TCA_BASIC_EMATCHES={0x14, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfff9}}]}]}}]}, 0x74}}, 0x4000)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)
ustat(0x6, &(0x7f0000000040))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYRESOCT=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kmem_cache_free\x00', r6}, 0x18)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000d00)=ANY=[@ANYRESHEX=r5, @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
r9 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x0)
write$binfmt_misc(r9, &(0x7f0000000180)="e502", 0x2)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="8c0000000001010400000000ffffff8802000000240001801400018008000100ac1414bb08000200ac1414bb0c00028005000100000000002400028014000180080001000000004008000200ac1414bb0c0002800500010000000000080007400000000028000680080002007f000001080001"], 0x8c}, 0x1, 0x600000000000000, 0x0, 0x40}, 0x0)
execveat(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
readlink(&(0x7f00000004c0)='./file0/../file0\x00', &(0x7f0000000500)=""/19, 0x13)

652.350052ms ago: executing program 0 (id=7907):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180002800c0004000100000100c28000050003"], 0x48}}, 0x40000)

649.727692ms ago: executing program 7 (id=7908):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18)
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r4}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000400)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0xfffffffffffffffd, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe(&(0x7f0000000100))
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r7, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100"], 0x64}}, 0x0)

630.419242ms ago: executing program 3 (id=7909):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000030000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a800000085000000d000000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000007"], 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000)={r3, r4}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000001000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r5, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ff03000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r5}, &(0x7f0000000880), &(0x7f0000000680)}, 0x20)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f00000004c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000e40)={0x2e0, r7, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@WGDEVICE_A_PEERS={0x2c4, 0x8, 0x0, 0x1, [{0x240, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "4a2c129afb28ff4ab0ba0bc5f54dd02c7670fa83f7204de77d86a881f83d7e83"}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ALLOWEDIPS={0x210, 0x9, 0x0, 0x1, [{0x10c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x13}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x15}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x2}}]}, {0x100, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}]}]}]}, {0x80, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x2}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "bac6dd8ad831772f35805d5ef3cd24da4bb64d61b2e5af94bb600c579c5efc0c"}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @loopback}}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x100}]}]}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}]}, 0x2e0}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
r8 = socket$inet(0x2, 0x4000000000000001, 0x0)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$KDSIGACCEPT(r9, 0x4b4e, 0x24)
setsockopt$inet_tcp_int(r8, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(r8, &(0x7f0000000000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10)
sendto$inet(r8, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000400)={&(0x7f0000000500)=ANY=[@ANYBLOB="84400000", @ANYRES16, @ANYBLOB="040026bd7000699800000f000000", @ANYRES32, @ANYBLOB="0c0099000000000080000000340017800c000400ca0cf9519d0726600c000500df38175cf3c425c40c000400ad18f11a183efbc205000300080000000000000008003500010000000c001b8005000100310000000800a500000000"], 0x84}, 0x1, 0x0, 0x0, 0x20004010}, 0x20000090)
sendto$inet(r8, &(0x7f0000000740)="b9e00b92c8ce02847c75b094e563f0dddd288c25061d9480b4283cd96b123a24e9b37e52229a7b4477d85e679631993964631fcb47e89cdb3fca6fdc2bdb26b8aaf7dcfeb7193dabecab0adeb54e385e44b902af584261f96be5bada5ded94df6682339663165b879f407bcb0f31c24cf65a056307c8066c1dae0bda70d61636e72c5d2d3acb92c919c240fc3b10fe1ccc17f6e63d784eea4a4022722db290038b73d9b295fab95b870a9c6f6b88b5fa07df3dd4b99339d53c1885c0027a75ce371591e039a16070b4fe0f254344e85cd01138023005dfda0dd3ed4be682b2951e68f3d2fca20e685989", 0xea, 0x400c005, &(0x7f0000000580)={0x2, 0x4e20, @remote}, 0x10)
setsockopt$sock_int(r8, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r8, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0x2acf, 0x11, 0x0, 0x27)
recvmsg(r8, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0xa, 0x0, 0x46, 0x407006}, 0x104)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)=ANY=[@ANYBLOB="30bee429090000065200", @ANYRES16=0x0, @ANYBLOB="01002cbd7000040000000500000006001c000a00000008000900020000000c0016000400000000000000"], 0x30}}, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)

613.462002ms ago: executing program 0 (id=7910):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x61d2, 0x4)
perf_event_open(&(0x7f00000034c0)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x3, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETSW2(r1, 0x5453, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fc0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
readahead(r4, 0x6, 0x6)
futex(&(0x7f000000cffc), 0x80, 0x0, 0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000540)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x30008845)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NODES(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)={0x1c, r8, 0x1, 0x0, 0x0, {{}, {0x0, 0x6}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r9 = socket(0x22, 0x2, 0x1)
setsockopt(r9, 0xc468, 0x1, 0x0, 0x0)
r10 = open$dir(&(0x7f0000000200)='./file0\x00', 0x400000, 0x3a)
r11 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', &(0x7f00000004c0)={0x80, 0xc7ec236057860ed9, 0x6}, 0x18)
renameat2(r10, &(0x7f0000000340)='./file0\x00', r11, &(0x7f0000000700)='./file0\x00', 0x4)
timer_gettime(0x0, &(0x7f0000000940))

554.016062ms ago: executing program 7 (id=7911):
r0 = socket(0x8, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd1, 0x0, 0x0)
getsockopt$MRT6(r0, 0x29, 0xd0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xfff2}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x200000, 0x0, 0x38e7, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x20000010)
socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001000020000000000003000085"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x2, 0x80400, 0x2008, 0x800})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}}, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x48}}, 0x0)

545.321442ms ago: executing program 6 (id=7912):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x23, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="98030000", @ANYRES16=r3, @ANYBLOB="010028057000fcdbdf25"], 0x398}}, 0x884)

506.111362ms ago: executing program 6 (id=7913):
ptrace(0x4206, 0x0)
ptrace(0x8, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = inotify_init1(0x0)
r1 = inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x400)
r2 = dup(r0)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1e00000000000000050000000600000000000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00%\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00'/28], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x78, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
r6 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r7, &(0x7f0000000140)='./file0\x00')
openat(r7, &(0x7f0000000700)='./file0/../file0\x00', 0x515a02, 0x52abe154ad664f64)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="540000000008010100000000000000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x3)
msgget(0x3, 0x141)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file1\x00', 0x3014490, &(0x7f0000000340)={[{@nombcache}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@abort}, {@nodioread_nolock}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x63b}}, {@errors_continue}, {@grpjquota}, {}]}, 0x45, 0x7ce, &(0x7f0000000500)="$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")
perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x3e, 0x1, 0x4, 0x0, 0x0, 0x5, 0x800, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x1}, 0x1100, 0x5dd8, 0x100008, 0x9, 0x0, 0x4, 0xfffb, 0x0, 0xfffffffd, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
inotify_rm_watch(r2, r1)
setsockopt$RXRPC_UPGRADEABLE_SERVICE(r2, 0x110, 0x5, &(0x7f0000000040)=[0x81, 0x3], 0x2)

505.476852ms ago: executing program 7 (id=7914):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x18)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f00005dc000/0x1000)=nil, 0x1000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0xcbbdb000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000007000000ff0f000009"], 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYRES8=r0], 0x122}, 0x1, 0x0, 0x0, 0x48000}, 0x4008090)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x4, &(0x7f0000000000)={@remote, @multicast2}, 0x14)
epoll_create1(0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f0000000040)={[{@nobh}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xc80}}]}, 0xfe, 0x4f7, &(0x7f0000000b00)="$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")
perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x83, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x8, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$inet6(0xa, 0x80002, 0x0)
r5 = dup(r4)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0xe501, 0x3, 0x310, 0x0, 0xa, 0x1000000, 0x178, 0x0, 0x278, 0x230, 0x230, 0x278, 0x223, 0x3, 0x0, {[{{@ip={@broadcast, @multicast2, 0x0, 0xffffff00, 'veth0_to_bridge\x00', 'veth1_to_hsr\x00', {}, {}, 0x67, 0x0, 0x24}, 0x0, 0x158, 0x178, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "085636820d6a60ff49677edc0f9111e7ccf795de83ae8e43a61945080891864007e5e0629b793e905f343cc4de3c1daad988422dd5c54625160c8169789570a8a1324f192aad0936f0376fbb8ef853444f8fbb2981fc44155aebbdf1ab66e929f2925cc90955436f7f220c7251f48f56f3e8c906b0424a32fc956bdb1a52c0e8", 0x1d}}]}, @unspec=@NOTRACK={0x20}}, {{@ip={@multicast2, @rand_addr, 0x0, 0x0, 'ipvlan0\x00', 'veth1_to_batadv\x00'}, 0x0, 0x98, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x589b, 0x6, 0x0, 'syz1\x00', 'syz1\x00', {0xb}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x370)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0xf, 0x7, 0x8, 0x9, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x10, &(0x7f0000000700)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@call={0x85, 0x0, 0x0, 0x6f}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNSETCARRIER(r7, 0x400454e2, &(0x7f0000000000)=0x2a1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kfree\x00', r6}, 0x10)

406.087251ms ago: executing program 6 (id=7915):
r0 = creat(0x0, 0xc9)
getsockopt$TIPC_IMPORTANCE(r0, 0x10f, 0x7f, &(0x7f0000000080), &(0x7f0000000140)=0x4)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000407, &(0x7f00000002c0)={[{@orlov}, {@norecovery}, {@orlov}, {@oldalloc}]}, 0x0, 0x5eb, &(0x7f0000000dc0)="$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")
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x248, &(0x7f0000000100), 0xfd, 0x48f, &(0x7f0000000940)="$eJzs3M1rHOUfAPDvzG6SX1+TX60vrdVGq1h8SZq0akHBFxA8KAh6qCeJSVpq00aaCLYEG6XUi6AF7yJ4EfwLPHkS9SR41bsUivTS6mllMrPrJtnNSzfJptnPB6aZJ/vMPt/vzDwzz8xkGkDH6s/+SSJ2RsTvEdEbEWl9hW35lNW7dWNm9O8bM6NJVCpv/pVki8XNGzOj1apJ8XNHXihnX5ReTuLFBu1OXbh4ZmRiYvx8UR6cPvv+4NSFi0+dPjtyavzU+Lnh48ePHR169pnhp9ckzyymm/s/mjyw79W3r74+euLquz9/l9QFXZ9Hi57rrc3O1NbJQo+uUWObxa66+aTcxkBYlZ6IyDZX11z/743S5d21z3rjlU/aGhywriqVSmW4+cezFWALS6LdEQDtUT3RZ9e/1WmDhh6bwvWX8gugLO9bxZR/Us7vg/Tk10a71qn9/og4MfvPV9kUq74P0bVOUQEAW9kP2fjnyQbjv3LEPXX1dhfPhvoi4v8RsSci7oqIvRFxd+R1742I+xo30/9Ok/b7F5QXj3/Say2kt6xs/Pd88Wxr/viv9hSsr1SUds3l35WcPD0xfqRYJ4ejqycrDzX89iRiNvv52+fN2q8f/2VT1n51LFjEca3cM3+ZsZHpkZYTL1z/OGJ/uVH+SZT/yyL2RcT+22zj9OPfHpj/m1Jtbvn8l7AGz5kqX0c8lm//2ViQf1Wy9PPJwf/FxPiRwepesdgvv155o1n7ef5pLJ3/ttYTbSLb/tsb7f8v1PLvS+qf104t+oru5dq48senTa9pbnf/707emtf4hyPT0+eHIrqT1xb/vu4Gd7VcrZ/lf/hQ4/6/p1gmy//+iMh24gci4sGIOFjE/lBEPBwRh5bI/6eXH3mvaf4HW9j/10CW/1jD41+z7b/6mdKZH79v1v7Ktv+xamEuqJUc/1YaYCvrDgAAAO4UaUTsjCQdqM2n6cBA/vfye2N7OjE5Nf3EyckPzo3l7wj0RVdavdPVW3c/dKi4N1wtDxflS0X5aHHf+MvStrnywOjkxFi7k4cOt6NJ/8/8WWp3dMC6874WdC79HzrX7fd/Rw640y3Ti9ONigPYeM7i0Lka9f9L9YUk8r+SB7Yc53/oXLX+/8UKKte97rXw5U3gzrPU+b/Su4GBABvO+B86Uivv9W+KmfgmYuk6yWYJdVUzn7WyeHkDIoy0jeunuy0bZbgU0cZdorzS/9UiLlQutdxou49MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAa+PfAAAA///67uRi")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0xffffffffffffffff, 0x0, 0x8, 0x0)

243.61616ms ago: executing program 7 (id=7916):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x6db6e559)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000004c0)={0x0, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x8, 0x9, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r6=>0x0, 0x2b, &(0x7f00000001c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000200), &(0x7f0000000280), 0x8, 0xdb, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
r7 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000400)={r4}, 0x4)
r8 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
write$P9_RREAD(r8, &(0x7f0000000080)=ANY=[], 0x100b)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000300)=ANY=[@ANYRES64=r5, @ANYBLOB="de0b7055eaeee826998ac3686a368b83edd124ce154951b5a7a2c02cab7ed375c5bb85de844e294b40598fb6f7df1dc023a1a9a8829aab509904be8f31c3dab2dcf0fd3eaf", @ANYRES64=r7], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, r7, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0xd1170707f0656889, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff40, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r10, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9, 0x0, 0x10000000000000}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)

147.53543ms ago: executing program 4 (id=7917):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRES16=0x0, @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000002c0)={<r1=>0x0, @broadcast, @remote}, &(0x7f0000000340)=0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0xfffffffffffffffe}, 0x18)
r3 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0xf0b, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c00)=@newtfilter={0x74, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r4, {0xfff2}, {}, {0x8, 0xd}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}, @filter_kind_options=@f_basic={{0xa}, {0x30, 0x2, [@TCA_BASIC_CLASSID={0x8, 0x1, {0x2, 0x5}}, @TCA_BASIC_CLASSID={0x8, 0x1, {0xfff2}}, @TCA_BASIC_CLASSID={0x8, 0x1, {0x9, 0xa}}, @TCA_BASIC_EMATCHES={0x14, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfff9}}]}]}}]}, 0x74}}, 0x4000)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)
ustat(0x6, &(0x7f0000000040))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYRESOCT=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kmem_cache_free\x00', r6}, 0x18)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000d00)=ANY=[@ANYRESHEX=r5, @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
r9 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x0)
write$binfmt_misc(r9, &(0x7f0000000180)="e502", 0x2)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="8c0000000001010400000000ffffff8802000000240001801400018008000100ac1414bb08000200ac1414bb0c00028005000100000000002400028014000180080001000000004008000200ac1414bb0c0002800500010000000000080007400000000028000680080002007f000001080001"], 0x8c}, 0x1, 0x600000000000000, 0x0, 0x40}, 0x0)
execveat(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
readlink(&(0x7f00000004c0)='./file0/../file0\x00', &(0x7f0000000500)=""/19, 0x13)

106.44083ms ago: executing program 4 (id=7918):
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$MAP_CREATE(0x600000000000000, &(0x7f0000000580)=ANY=[@ANYRES32=0x1, @ANYBLOB="fdffffff00000000000000000100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000400"/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), 0xffffffffffffffff)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="70000000100003042abd70009da1d2b900000004", @ANYRES32=0x0, @ANYBLOB="0000000000000000500012800b0001006272696467650000400002800800050000000000050029000100000006002700040000000c00220006000000000000000c0021"], 0x70}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5}, 0x38)
lsetxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180), &(0x7f00000005c0)=ANY=[@ANYBLOB="00fba905033a38f4e3bdbfcffd9194bb023fc8546b82dd5918e4c48b7431732d6cc2345582e84959e7b3544f8797053947864e0135896483294dd0ebb4b3c1897ecc97b2f1bbde0d3791d9394b9c0a46405b80596a859b8dd65e39c7808c55d076b2a1e972ddc6cfce062377be336d96d3307aca2db956a4b165c975bda181a9e0baa74d350a59396bc626e7db0839b9f9622a0640d537e5e90b10e5ddcfb719c256a651ab9ac30563"], 0xa9, 0x1)

99.08927ms ago: executing program 6 (id=7919):
ptrace(0x4206, 0x0)
ptrace(0x8, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = inotify_init1(0x0)
r1 = inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x400)
r2 = dup(r0)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1e00000000000000050000000600000000000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00%\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00'/28], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x78, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
r6 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r7, &(0x7f0000000140)='./file0\x00')
openat(r7, &(0x7f0000000700)='./file0/../file0\x00', 0x515a02, 0x52abe154ad664f64)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="540000000008010100000000000000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
msgget(0x3, 0x141)
ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f0000000400)={0x0, 0x7f, 0x700})
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x3e, 0x1, 0x4, 0x0, 0x0, 0x5, 0x800, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x1}, 0x1100, 0x5dd8, 0x100008, 0x9, 0x0, 0x4, 0xfffb, 0x0, 0xfffffffd, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
inotify_rm_watch(r2, r1)
setsockopt$RXRPC_UPGRADEABLE_SERVICE(r2, 0x110, 0x5, &(0x7f0000000040)=[0x81, 0x3], 0x2)

32.535359ms ago: executing program 4 (id=7920):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180002800c0004000100000100c28000050003"], 0x48}}, 0x40000)

11.285379ms ago: executing program 4 (id=7921):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18)
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r4}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000400)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0xfffffffffffffffd, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe(&(0x7f0000000100))
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r7, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100"], 0x64}}, 0x0)

0s ago: executing program 6 (id=7922):
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f00000005c0)='./file2\x00', 0x100080a, &(0x7f0000000280)=ANY=[@ANYRESOCT=0x0, @ANYRES64], 0x1, 0x66b, &(0x7f0000000900)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x4}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c0000000800124000000000050005000a000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a00000105000100"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00'}, 0x10)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r4, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SET_FPEXC(0xc, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
munlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000)

kernel console output (not intermixed with test programs):

ld be set to 0 or 1.
[  383.164089][T32151] bridge8: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  383.198579][T32154] loop3: detected capacity change from 0 to 1024
[  383.205253][T32154] EXT4-fs: Ignoring removed orlov option
[  383.210961][T32154] EXT4-fs: Ignoring removed orlov option
[  383.216659][T32154] EXT4-fs: Ignoring removed oldalloc option
[  383.223145][T32154] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  383.234246][T32154] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  383.245452][T32154] EXT4-fs (loop3): invalid journal inode
[  383.251177][T32154] EXT4-fs (loop3): can't get journal size
[  383.275411][T32154] loop3: detected capacity change from 0 to 512
[  383.299970][T32154] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.3.7199: corrupted xattr block 95: invalid header
[  383.303197][T32160] netlink: 'syz.4.7201': attribute type 1 has an invalid length.
[  383.338771][T32154] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.7199: bg 0: block 7: invalid block bitmap
[  383.370211][T32154] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  383.379293][T32154] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2977: inode #11: comm syz.3.7199: corrupted xattr block 95: invalid header
[  383.393319][T32154] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[  383.402518][T32154] EXT4-fs (loop3): 1 orphan inode deleted
[  383.527064][T32193] loop4: detected capacity change from 0 to 128
[  383.657229][T32199] loop7: detected capacity change from 0 to 512
[  383.665832][T32199] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  383.844483][T32199] ext4 filesystem being mounted at /307/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  384.127670][T32208] loop6: detected capacity change from 0 to 1024
[  384.147453][T32208] EXT4-fs: Ignoring removed nobh option
[  384.441763][T32220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  384.615318][T32220] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  384.657093][T32245] bridge5: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  384.734508][T32255] netlink: 'syz.3.7211': attribute type 1 has an invalid length.
[  384.812304][T32255] loop3: detected capacity change from 0 to 2048
[  384.833884][T32255] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  385.001898][T32273] loop4: detected capacity change from 0 to 1024
[  385.019644][T32273] EXT4-fs: Ignoring removed orlov option
[  385.025345][T32273] EXT4-fs: Ignoring removed orlov option
[  385.031208][T32273] EXT4-fs: Ignoring removed oldalloc option
[  385.050612][T32273] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  385.061636][T32273] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  385.096883][T32273] EXT4-fs (loop4): invalid journal inode
[  385.102628][T32273] EXT4-fs (loop4): can't get journal size
[  385.120575][T32273] EXT4-fs mount: 8 callbacks suppressed
[  385.120590][T32273] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  385.162076][T32273] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.174676][T26140] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.194363][T32273] loop4: detected capacity change from 0 to 512
[  385.201434][T25786] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.213555][T32273] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.4.7218: corrupted xattr block 95: invalid header
[  385.233461][T32283] bridge9: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  385.250344][T32288] syz_tun: entered promiscuous mode
[  385.255917][T32273] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.7218: bg 0: block 7: invalid block bitmap
[  385.268345][T32273] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  385.270063][T32288] vlan2: entered promiscuous mode
[  385.278027][T32273] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2977: inode #11: comm syz.4.7218: corrupted xattr block 95: invalid header
[  385.296112][T32288] syz_tun: left promiscuous mode
[  385.298166][T32273] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[  385.312384][T32273] EXT4-fs (loop4): 1 orphan inode deleted
[  385.318918][T32273] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.330912][T32292] netlink: 'syz.6.7225': attribute type 1 has an invalid length.
[  385.340023][T32273] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.352290][T32292] loop6: detected capacity change from 0 to 2048
[  385.352843][T32294] netlink: 'syz.0.7226': attribute type 1 has an invalid length.
[  385.359734][T32292] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  385.458401][T32305] netlink: 'syz.6.7230': attribute type 1 has an invalid length.
[  385.489703][T32305] loop6: detected capacity change from 0 to 2048
[  385.496805][T32305] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  385.665960][T32321] bridge6: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  385.852950][T32327] loop6: detected capacity change from 0 to 512
[  386.188281][T32338] netlink: 'syz.3.7243': attribute type 1 has an invalid length.
[  386.296850][T32338] loop3: detected capacity change from 0 to 2048
[  386.321788][T32338] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  386.349490][T32342] vcan0: entered promiscuous mode
[  386.367383][T32342] vlan2: entered promiscuous mode
[  386.392646][T32342] vcan0: left promiscuous mode
[  386.717365][T32327] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  386.740756][T32327] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.753543][T32327] ext4 filesystem being mounted at /406/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  386.844775][T32356] __nla_validate_parse: 15 callbacks suppressed
[  386.844792][T32356] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7248'.
[  386.847638][T32359] syz_tun: entered promiscuous mode
[  386.865452][T32359] vlan2: entered promiscuous mode
[  386.867666][T32359] syz_tun: left promiscuous mode
[  386.900833][T32356] bridge9: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  387.153778][T32362] loop7: detected capacity change from 0 to 1024
[  387.153944][T32362] EXT4-fs: Ignoring removed orlov option
[  387.154121][T32362] EXT4-fs: Ignoring removed orlov option
[  387.154137][T32362] EXT4-fs: Ignoring removed oldalloc option
[  387.301447][T32377] loop3: detected capacity change from 0 to 164
[  387.308490][T32377] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  387.586355][T32362] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  387.597315][T32362] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  387.607632][T25786] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.608925][T32362] EXT4-fs (loop7): invalid journal inode
[  387.618546][   T29] kauditd_printk_skb: 967 callbacks suppressed
[  387.618562][   T29] audit: type=1400 audit(1737796256.348:48141): avc:  denied  { watch watch_reads } for  pid=32381 comm="syz.3.7260" path="/317/bus" dev="tmpfs" ino=1706 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  387.622448][T32362] EXT4-fs (loop7): can't get journal size
[  387.677999][T32362] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  387.691031][T32362] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.691460][T32386] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7262'.
[  387.722560][   T29] audit: type=1326 audit(1737796256.442:48142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32383 comm="syz.6.7261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6feb97cd29 code=0x7ffc0000
[  387.751936][T32389] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7263'.
[  387.764089][T32389] bridge7: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  387.775557][T32362] loop7: detected capacity change from 0 to 512
[  387.780695][   T29] audit: type=1326 audit(1737796256.442:48143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32383 comm="syz.6.7261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f6feb97cd29 code=0x7ffc0000
[  387.805448][   T29] audit: type=1326 audit(1737796256.442:48144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32383 comm="syz.6.7261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6feb97cd29 code=0x7ffc0000
[  387.829158][   T29] audit: type=1326 audit(1737796256.442:48145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32383 comm="syz.6.7261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6feb97cd29 code=0x7ffc0000
[  387.855387][   T29] audit: type=1326 audit(1737796256.498:48146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32388 comm="syz.4.7263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  387.871569][T32362] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.7.7251: corrupted xattr block 95: invalid header
[  387.879067][   T29] audit: type=1326 audit(1737796256.498:48147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32388 comm="syz.4.7263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  387.893787][T32362] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.7251: bg 0: block 7: invalid block bitmap
[  387.916619][   T29] audit: type=1326 audit(1737796256.498:48148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32388 comm="syz.4.7263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  387.952624][   T29] audit: type=1326 audit(1737796256.498:48149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32388 comm="syz.4.7263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  387.976321][   T29] audit: type=1326 audit(1737796256.498:48150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32388 comm="syz.4.7263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  388.002573][T32362] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  388.011806][T32362] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2977: inode #11: comm syz.7.7251: corrupted xattr block 95: invalid header
[  388.033033][T32398] loop6: detected capacity change from 0 to 164
[  388.039634][T32398] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  388.049925][T32362] EXT4-fs warning (device loop7): ext4_evict_inode:276: xattr delete (err -117)
[  388.094259][T32362] EXT4-fs (loop7): 1 orphan inode deleted
[  388.113072][T32362] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  388.133252][T32362] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.160203][T32410] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7272'.
[  388.172804][T32406] ref_ctr increment failed for inode: 0x425 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465f9500
[  388.184379][T32405] uprobe: syz.4.7271:32405 failed to unregister, leaking uprobe
[  388.310559][T32413] netlink: 32 bytes leftover after parsing attributes in process `syz.3.7273'.
[  388.410413][T32426] netlink: 'syz.0.7276': attribute type 1 has an invalid length.
[  388.484384][T32430] netlink: 900 bytes leftover after parsing attributes in process `syz.0.7277'.
[  388.558439][T32435] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7278'.
[  388.562641][T32433] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  388.585671][T32433] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  388.766716][T32447] syz_tun: entered promiscuous mode
[  388.772580][T32447] vlan2: entered promiscuous mode
[  388.778820][T32447] syz_tun: left promiscuous mode
[  388.851922][T32450] loop3: detected capacity change from 0 to 1024
[  388.858625][T32450] EXT4-fs: Ignoring removed orlov option
[  388.864583][T32450] EXT4-fs: Ignoring removed orlov option
[  388.870255][T32450] EXT4-fs: Ignoring removed oldalloc option
[  388.876654][T32450] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  388.887694][T32450] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  388.898391][T32450] EXT4-fs (loop3): invalid journal inode
[  388.904148][T32450] EXT4-fs (loop3): can't get journal size
[  388.911427][T32450] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  388.924744][T32450] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.939001][T32450] loop3: detected capacity change from 0 to 512
[  388.946972][T32450] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.3.7286: corrupted xattr block 95: invalid header
[  388.961944][T32450] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.7286: bg 0: block 7: invalid block bitmap
[  388.974439][T32450] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  388.983391][T32450] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2977: inode #11: comm syz.3.7286: corrupted xattr block 95: invalid header
[  388.997014][T32450] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[  389.006221][T32450] EXT4-fs (loop3): 1 orphan inode deleted
[  389.012455][T32450] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.025393][T32450] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.159837][T32455] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7287'.
[  389.171621][T32455] bridge10: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  389.222647][T32459] netlink: 900 bytes leftover after parsing attributes in process `syz.0.7289'.
[  389.326496][T32476] netlink: 60 bytes leftover after parsing attributes in process `syz.4.7297'.
[  389.368909][T32476] vlan2: entered allmulticast mode
[  389.374768][T32476] bond0: entered allmulticast mode
[  389.380064][T32476] bond_slave_0: entered allmulticast mode
[  389.385895][T32476] bond_slave_1: entered allmulticast mode
[  389.393369][T32476] bond0: left allmulticast mode
[  389.398400][T32476] bond_slave_0: left allmulticast mode
[  389.403945][T32476] bond_slave_1: left allmulticast mode
[  389.548604][T32487] netlink: 'syz.4.7301': attribute type 1 has an invalid length.
[  389.548841][T32485] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  389.564989][T32485] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  389.622893][T32491] ref_ctr increment failed for inode: 0x8b2 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881033a3480
[  389.635372][T32490] uprobe: syz.6.7303:32490 failed to unregister, leaking uprobe
[  389.861709][T32508] vcan0: entered promiscuous mode
[  389.866947][T32508] vlan2: entered promiscuous mode
[  389.873516][T32508] vcan0: left promiscuous mode
[  389.948435][T32510] loop6: detected capacity change from 0 to 164
[  389.954974][T32510] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  390.224263][T32517] loop7: detected capacity change from 0 to 1024
[  390.233842][T32517] EXT4-fs: Ignoring removed orlov option
[  390.239642][T32517] EXT4-fs: Ignoring removed orlov option
[  390.245494][T32517] EXT4-fs: Ignoring removed oldalloc option
[  390.253974][T32517] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  390.264964][T32517] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  390.276461][T32517] EXT4-fs (loop7): invalid journal inode
[  390.282173][T32517] EXT4-fs (loop7): can't get journal size
[  390.290502][T32517] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  390.303476][T32517] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.324334][T32517] loop7: detected capacity change from 0 to 512
[  390.344650][T32517] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.7.7314: corrupted xattr block 95: invalid header
[  390.363756][T32517] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.7314: bg 0: block 7: invalid block bitmap
[  390.380611][T32517] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  390.390591][T32517] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2977: inode #11: comm syz.7.7314: corrupted xattr block 95: invalid header
[  390.412414][T32517] EXT4-fs warning (device loop7): ext4_evict_inode:276: xattr delete (err -117)
[  390.421615][T32517] EXT4-fs (loop7): 1 orphan inode deleted
[  390.428521][T32517] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  390.441762][T32517] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.575289][T32581] ref_ctr increment failed for inode: 0x45e offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465f8fc0
[  390.590544][T32580] uprobe: syz.4.7321:32580 failed to unregister, leaking uprobe
[  390.611518][T32586] loop3: detected capacity change from 0 to 1024
[  390.618759][T32586] EXT4-fs: Ignoring removed nobh option
[  390.638657][T32586] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  390.655588][T32586] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  390.664228][T32586] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  390.697598][T32605] loop4: detected capacity change from 0 to 164
[  390.704478][T32605] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  391.006805][T32657] netlink: 'syz.6.7326': attribute type 1 has an invalid length.
[  391.068293][T32667] FAULT_INJECTION: forcing a failure.
[  391.068293][T32667] name failslab, interval 1, probability 0, space 0, times 0
[  391.081101][T32667] CPU: 1 UID: 0 PID: 32667 Comm: syz.6.7327 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  391.081133][T32667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  391.081149][T32667] Call Trace:
[  391.081197][T32667]  <TASK>
[  391.081237][T32667]  dump_stack_lvl+0xf2/0x150
[  391.081271][T32667]  dump_stack+0x15/0x1a
[  391.081297][T32667]  should_fail_ex+0x223/0x230
[  391.081370][T32667]  should_failslab+0x8f/0xb0
[  391.081424][T32667]  kmem_cache_alloc_noprof+0x52/0x320
[  391.081480][T32667]  ? security_inode_alloc+0x37/0x100
[  391.081589][T32667]  security_inode_alloc+0x37/0x100
[  391.081635][T32667]  inode_init_always_gfp+0x4a2/0x4f0
[  391.081702][T32667]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  391.081745][T32667]  alloc_inode+0x82/0x160
[  391.081778][T32667]  new_inode+0x1e/0x100
[  391.081808][T32667]  shmem_get_inode+0x24e/0x730
[  391.081873][T32667]  __shmem_file_setup+0x127/0x1f0
[  391.081911][T32667]  shmem_file_setup+0x3b/0x50
[  391.081947][T32667]  __se_sys_memfd_create+0x31d/0x5c0
[  391.082034][T32667]  __x64_sys_memfd_create+0x31/0x40
[  391.082058][T32667]  x64_sys_call+0x2d4c/0x2dc0
[  391.082138][T32667]  do_syscall_64+0xc9/0x1c0
[  391.082288][T32667]  ? clear_bhb_loop+0x55/0xb0
[  391.082324][T32667]  ? clear_bhb_loop+0x55/0xb0
[  391.082427][T32667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.082460][T32667] RIP: 0033:0x7f6feb97cd29
[  391.082477][T32667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  391.082499][T32667] RSP: 002b:00007f6fe9fe6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  391.082517][T32667] RAX: ffffffffffffffda RBX: 00000000000002d1 RCX: 00007f6feb97cd29
[  391.082529][T32667] RDX: 00007f6fe9fe6ef0 RSI: 0000000000000000 RDI: 00007f6feb9fec01
[  391.082549][T32667] RBP: 0000000020000740 R08: 00007f6fe9fe6bb7 R09: 00007f6fe9fe6e40
[  391.082575][T32667] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000000
[  391.082589][T32667] R13: 00007f6fe9fe6ef0 R14: 00007f6fe9fe6eb0 R15: 0000000020000500
[  391.082610][T32667]  </TASK>
[  391.326155][T26552] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.383192][T32692] loop6: detected capacity change from 0 to 164
[  391.390004][T32692] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  391.884887][T32705] loop4: detected capacity change from 0 to 1024
[  391.892329][T32705] EXT4-fs: Ignoring removed nobh option
[  391.908989][T32705] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  391.928114][T32705] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  391.936690][T32705] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  392.008096][T32713] loop6: detected capacity change from 0 to 1024
[  392.014635][T32713] EXT4-fs: Ignoring removed orlov option
[  392.020393][T32713] EXT4-fs: Ignoring removed orlov option
[  392.026091][T32713] EXT4-fs: Ignoring removed oldalloc option
[  392.032367][T32713] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  392.043338][T32713] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  392.054180][T32713] EXT4-fs (loop6): invalid journal inode
[  392.059951][T32713] EXT4-fs (loop6): can't get journal size
[  392.067085][T32713] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  392.080127][T32713] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.097188][T32713] loop6: detected capacity change from 0 to 512
[  392.105466][T32713] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.6.7340: corrupted xattr block 95: invalid header
[  392.119563][T32713] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.7340: bg 0: block 7: invalid block bitmap
[  392.132752][T32713] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  392.141716][T32713] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2977: inode #11: comm syz.6.7340: corrupted xattr block 95: invalid header
[  392.155722][T32713] EXT4-fs warning (device loop6): ext4_evict_inode:276: xattr delete (err -117)
[  392.164942][T32713] EXT4-fs (loop6): 1 orphan inode deleted
[  392.171249][T32713] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  392.184415][T32713] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.295007][T32718] loop3: detected capacity change from 0 to 1024
[  392.301679][T32718] EXT4-fs: Ignoring removed orlov option
[  392.307403][T32718] EXT4-fs: Ignoring removed orlov option
[  392.313611][T32718] EXT4-fs: Ignoring removed oldalloc option
[  392.319438][T32720] __nla_validate_parse: 4 callbacks suppressed
[  392.319493][T32720] netlink: 60 bytes leftover after parsing attributes in process `syz.7.7342'.
[  392.336061][T32718] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  392.347318][T32718] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  392.357487][T32720] vlan2: entered allmulticast mode
[  392.358616][T32718] EXT4-fs (loop3): invalid journal inode
[  392.363108][T32720] bond0: entered allmulticast mode
[  392.370123][T32718] EXT4-fs (loop3): can't get journal size
[  392.373587][T32720] bond_slave_0: entered allmulticast mode
[  392.385073][T32720] bond_slave_1: entered allmulticast mode
[  392.392686][T32720] bond0: left allmulticast mode
[  392.397576][T32720] bond_slave_0: left allmulticast mode
[  392.400486][T32718] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  392.403311][T32720] bond_slave_1: left allmulticast mode
[  392.417485][T32718] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.449913][T32727] netlink: 900 bytes leftover after parsing attributes in process `syz.6.7345'.
[  392.454242][T32718] loop3: detected capacity change from 0 to 512
[  392.478125][T32718] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.3.7341: corrupted xattr block 95: invalid header
[  392.481118][T32730] netlink: 'syz.6.7346': attribute type 1 has an invalid length.
[  392.494584][T32718] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.7341: bg 0: block 7: invalid block bitmap
[  392.512704][T28355] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.513585][T32718] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  392.541120][T32730] loop6: detected capacity change from 0 to 2048
[  392.548093][T32730] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  392.548677][T32718] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2977: inode #11: comm syz.3.7341: corrupted xattr block 95: invalid header
[  392.570381][T32718] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[  392.579709][T32718] EXT4-fs (loop3): 1 orphan inode deleted
[  392.585858][T32718] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  392.593016][T32732] netlink: 40 bytes leftover after parsing attributes in process `syz.4.7347'.
[  392.615973][T32718] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.713272][T32757] loop7: detected capacity change from 0 to 512
[  392.720292][T32757] EXT4-fs: Ignoring removed i_version option
[  392.726483][T32757] EXT4-fs: Ignoring removed mblk_io_submit option
[  392.738142][T32757] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  392.756822][T32757] EXT4-fs (loop7): 1 truncate cleaned up
[  392.769502][T32757] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  392.941652][  T321] vcan0: entered promiscuous mode
[  392.949621][  T321] vlan2: entered promiscuous mode
[  392.956680][  T321] vcan0: left promiscuous mode
[  392.999316][  T335] netlink: 60 bytes leftover after parsing attributes in process `syz.4.7359'.
[  393.030050][   T29] kauditd_printk_skb: 701 callbacks suppressed
[  393.030066][   T29] audit: type=1326 audit(1737796261.413:48852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.068060][   T29] audit: type=1326 audit(1737796261.413:48853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.091700][   T29] audit: type=1326 audit(1737796261.413:48854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.115199][   T29] audit: type=1326 audit(1737796261.413:48855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.138673][   T29] audit: type=1326 audit(1737796261.413:48856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.162158][   T29] audit: type=1326 audit(1737796261.413:48857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.183774][  T360] vlan2: entered allmulticast mode
[  393.185584][   T29] audit: type=1326 audit(1737796261.413:48858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.191574][  T360] bond0: entered allmulticast mode
[  393.214015][   T29] audit: type=1326 audit(1737796261.413:48859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.214054][   T29] audit: type=1326 audit(1737796261.413:48860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.214101][   T29] audit: type=1326 audit(1737796261.413:48861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=334 comm="syz.4.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  393.219214][  T360] bond_slave_0: entered allmulticast mode
[  393.246298][  T359] netlink: 'syz.0.7360': attribute type 1 has an invalid length.
[  393.265984][  T360] bond_slave_1: entered allmulticast mode
[  393.313416][  T360] bond0: left allmulticast mode
[  393.318363][  T360] bond_slave_0: left allmulticast mode
[  393.323869][  T360] bond_slave_1: left allmulticast mode
[  393.370015][  T377] netlink: 40 bytes leftover after parsing attributes in process `syz.0.7361'.
[  393.574983][  T418] syz_tun: entered promiscuous mode
[  393.585203][  T418] vlan2: entered promiscuous mode
[  393.598780][T26140] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.609982][  T418] syz_tun: left promiscuous mode
[  393.632207][  T428] netlink: 'syz.4.7369': attribute type 1 has an invalid length.
[  393.688126][  T443] netlink: 40 bytes leftover after parsing attributes in process `syz.6.7372'.
[  393.749665][  T451] loop6: detected capacity change from 0 to 2048
[  393.759957][  T451] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  393.821120][  T471] ref_ctr increment failed for inode: 0x4b3 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881033a1500
[  393.834398][  T469] uprobe: syz.4.7376:469 failed to unregister, leaking uprobe
[  393.932408][  T491] loop4: detected capacity change from 0 to 2048
[  393.939733][  T491] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  394.043651][  T518] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7378'.
[  394.057007][  T518] bridge8: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  394.160620][  T546] netlink: 'syz.4.7382': attribute type 1 has an invalid length.
[  394.259621][  T554] loop4: detected capacity change from 0 to 8192
[  394.405715][  T588] netlink: 40 bytes leftover after parsing attributes in process `syz.3.7384'.
[  394.456440][  T591] loop3: detected capacity change from 0 to 2048
[  394.463762][  T591] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  394.494867][  T595] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.7383'.
[  394.504954][  T592] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.7383'.
[  394.583684][  T605] vlan2: entered allmulticast mode
[  394.618465][  T605] bond0: entered allmulticast mode
[  394.623751][  T605] bond_slave_0: entered allmulticast mode
[  394.629510][  T605] bond_slave_1: entered allmulticast mode
[  394.641420][  T605] bond0: left allmulticast mode
[  394.646514][  T605] bond_slave_0: left allmulticast mode
[  394.652032][  T605] bond_slave_1: left allmulticast mode
[  394.683090][  T603] bridge11: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  394.950853][  T633] loop3: detected capacity change from 0 to 512
[  394.960288][  T633] EXT4-fs: Ignoring removed i_version option
[  394.966440][  T633] EXT4-fs: Ignoring removed mblk_io_submit option
[  394.973958][  T633] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  394.992661][  T633] EXT4-fs (loop3): 1 truncate cleaned up
[  394.999404][  T633] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.061818][  T628] loop6: detected capacity change from 0 to 2048
[  395.068928][  T628] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  395.215248][  T654] netlink: 'syz.6.7403': attribute type 1 has an invalid length.
[  395.376686][  T666] bridge12: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  395.478385][  T687] loop4: detected capacity change from 0 to 1024
[  395.483261][  T691] loop6: detected capacity change from 0 to 164
[  395.485192][  T687] EXT4-fs: Ignoring removed nobh option
[  395.496767][  T691] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  395.509367][  T687] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.530751][  T687] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  395.545620][  T687] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  395.740779][T26552] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.793663][  T742] vlan2: entered allmulticast mode
[  395.799475][  T742] bond0: entered allmulticast mode
[  395.804648][  T742] bond_slave_0: entered allmulticast mode
[  395.810486][  T742] bond_slave_1: entered allmulticast mode
[  395.821532][  T742] bond0: left allmulticast mode
[  395.826444][  T742] bond_slave_0: left allmulticast mode
[  395.832181][  T742] bond_slave_1: left allmulticast mode
[  395.853087][  T749] syz_tun: entered promiscuous mode
[  395.858421][  T749] vlan2: entered promiscuous mode
[  395.864931][  T749] syz_tun: left promiscuous mode
[  395.984154][  T760] vlan2: entered allmulticast mode
[  395.990391][  T760] bond0: entered allmulticast mode
[  395.995652][  T760] bond_slave_0: entered allmulticast mode
[  396.001507][  T760] bond_slave_1: entered allmulticast mode
[  396.008166][  T760] bond0: left allmulticast mode
[  396.013147][  T760] bond_slave_0: left allmulticast mode
[  396.018624][  T760] bond_slave_1: left allmulticast mode
[  396.030229][  T762] bridge10: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  396.113300][T28355] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.128316][  T773] loop3: detected capacity change from 0 to 128
[  396.160766][  T775] ref_ctr increment failed for inode: 0x6a8 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465fb480
[  396.172692][  T774] uprobe: syz.0.7423:774 failed to unregister, leaking uprobe
[  396.215804][  T783] vlan2: entered allmulticast mode
[  396.225226][  T783] bond0: entered allmulticast mode
[  396.230547][  T783] bond_slave_0: entered allmulticast mode
[  396.236472][  T783] bond_slave_1: entered allmulticast mode
[  396.260282][  T783] bond0: left allmulticast mode
[  396.265207][  T783] bond_slave_0: left allmulticast mode
[  396.270746][  T783] bond_slave_1: left allmulticast mode
[  396.287931][  T788] syz_tun: entered promiscuous mode
[  396.293280][  T788] vlan2: entered promiscuous mode
[  396.299585][  T788] syz_tun: left promiscuous mode
[  396.376293][  T798] bridge6: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  396.392216][  T800] loop6: detected capacity change from 0 to 1024
[  396.399426][  T800] EXT4-fs: Ignoring removed nobh option
[  396.417291][  T800] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  396.434694][  T800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  396.444805][  T800] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  396.584665][  T812] loop4: detected capacity change from 0 to 1024
[  396.591470][  T812] EXT4-fs: Ignoring removed orlov option
[  396.597208][  T812] EXT4-fs: Ignoring removed orlov option
[  396.602890][  T812] EXT4-fs: Ignoring removed oldalloc option
[  396.609354][  T812] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  396.620286][  T812] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  396.630828][  T812] EXT4-fs (loop4): invalid journal inode
[  396.636501][  T812] EXT4-fs (loop4): can't get journal size
[  396.643716][  T812] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  396.656643][  T812] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.670636][  T812] loop4: detected capacity change from 0 to 512
[  396.679025][  T812] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.4.7435: corrupted xattr block 95: invalid header
[  396.693903][  T812] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.7435: bg 0: block 7: invalid block bitmap
[  396.706512][  T812] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  396.718386][  T812] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2977: inode #11: comm syz.4.7435: corrupted xattr block 95: invalid header
[  396.732335][  T812] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[  396.741569][  T812] EXT4-fs (loop4): 1 orphan inode deleted
[  396.747674][  T812] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  396.760770][  T812] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.009127][T25786] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.053383][  T836] syz_tun: entered promiscuous mode
[  397.059060][  T836] vlan2: entered promiscuous mode
[  397.065552][  T836] syz_tun: left promiscuous mode
[  397.155788][  T844] loop6: detected capacity change from 0 to 1024
[  397.163562][  T844] EXT4-fs: Ignoring removed orlov option
[  397.169346][  T844] EXT4-fs: Ignoring removed orlov option
[  397.175105][  T844] EXT4-fs: Ignoring removed oldalloc option
[  397.181619][  T844] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  397.186409][  T848] loop3: detected capacity change from 0 to 2048
[  397.192648][  T844] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  397.209781][  T848] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  397.210169][  T844] EXT4-fs (loop6): invalid journal inode
[  397.224297][  T844] EXT4-fs (loop6): can't get journal size
[  397.233185][  T844] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  397.246500][  T844] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.262215][  T844] loop6: detected capacity change from 0 to 512
[  397.270737][  T844] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.6.7446: corrupted xattr block 95: invalid header
[  397.284916][  T844] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.7446: bg 0: block 7: invalid block bitmap
[  397.298170][  T844] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  397.315603][  T844] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2977: inode #11: comm syz.6.7446: corrupted xattr block 95: invalid header
[  397.329814][  T844] EXT4-fs warning (device loop6): ext4_evict_inode:276: xattr delete (err -117)
[  397.340445][  T844] EXT4-fs (loop6): 1 orphan inode deleted
[  397.347531][  T844] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  397.360853][  T844] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.365534][  T858] loop7: detected capacity change from 0 to 1024
[  397.376962][  T858] EXT4-fs: Ignoring removed nobh option
[  397.399709][  T858] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  397.416416][  T858] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  397.424983][  T858] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  397.631031][  T875] loop6: detected capacity change from 0 to 1024
[  397.637779][  T875] EXT4-fs: Ignoring removed orlov option
[  397.643556][  T875] EXT4-fs: Ignoring removed orlov option
[  397.649296][  T875] EXT4-fs: Ignoring removed oldalloc option
[  397.655967][  T875] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  397.667051][  T875] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  397.678349][  T875] EXT4-fs (loop6): invalid journal inode
[  397.684098][  T875] EXT4-fs (loop6): can't get journal size
[  397.691112][  T875] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  397.704052][  T875] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.721925][  T875] loop6: detected capacity change from 0 to 512
[  397.729702][  T875] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.6.7455: corrupted xattr block 95: invalid header
[  397.743780][  T875] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.7455: bg 0: block 7: invalid block bitmap
[  397.756476][  T875] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  397.765612][  T875] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2977: inode #11: comm syz.6.7455: corrupted xattr block 95: invalid header
[  397.779462][  T875] EXT4-fs warning (device loop6): ext4_evict_inode:276: xattr delete (err -117)
[  397.788594][  T875] EXT4-fs (loop6): 1 orphan inode deleted
[  397.794803][  T875] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  397.807878][  T875] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.978579][T26140] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.005354][  T882] syz_tun: entered promiscuous mode
[  398.010899][  T882] vlan2: entered promiscuous mode
[  398.018246][  T885] __nla_validate_parse: 19 callbacks suppressed
[  398.018261][  T885] netlink: 900 bytes leftover after parsing attributes in process `syz.6.7458'.
[  398.034175][  T882] syz_tun: left promiscuous mode
[  398.117519][  T895] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7463'.
[  398.120955][  T899] loop7: detected capacity change from 0 to 1024
[  398.133864][  T899] EXT4-fs: Ignoring removed orlov option
[  398.139614][  T899] EXT4-fs: Ignoring removed orlov option
[  398.145315][  T899] EXT4-fs: Ignoring removed oldalloc option
[  398.152627][  T899] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  398.163601][  T899] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  398.175188][  T899] EXT4-fs (loop7): invalid journal inode
[  398.181104][  T899] EXT4-fs (loop7): can't get journal size
[  398.201493][  T899] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  398.256134][  T899] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.305485][  T911] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7468'.
[  398.328342][  T899] loop7: detected capacity change from 0 to 512
[  398.336571][  T899] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.7.7464: corrupted xattr block 95: invalid header
[  398.350935][  T899] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.7464: bg 0: block 7: invalid block bitmap
[  398.363466][  T899] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  398.372697][  T899] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2977: inode #11: comm syz.7.7464: corrupted xattr block 95: invalid header
[  398.386452][  T899] EXT4-fs warning (device loop7): ext4_evict_inode:276: xattr delete (err -117)
[  398.397414][  T899] EXT4-fs (loop7): 1 orphan inode deleted
[  398.403847][  T899] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  398.417772][  T899] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.418516][  T916] netlink: 900 bytes leftover after parsing attributes in process `syz.3.7470'.
[  398.439553][   T29] kauditd_printk_skb: 909 callbacks suppressed
[  398.439570][   T29] audit: type=1326 audit(1737796266.478:49771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.469912][   T29] audit: type=1326 audit(1737796266.478:49772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.493676][   T29] audit: type=1326 audit(1737796266.478:49773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.517285][   T29] audit: type=1326 audit(1737796266.478:49774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.541012][   T29] audit: type=1326 audit(1737796266.478:49775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.564808][   T29] audit: type=1326 audit(1737796266.478:49776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.588301][   T29] audit: type=1326 audit(1737796266.478:49777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.611803][   T29] audit: type=1326 audit(1737796266.478:49778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.635217][   T29] audit: type=1326 audit(1737796266.478:49779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.658911][   T29] audit: type=1326 audit(1737796266.478:49780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=898 comm="syz.7.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982e68cd29 code=0x7ffc0000
[  398.746504][  T929] syz_tun: entered promiscuous mode
[  398.751917][  T929] vlan2: entered promiscuous mode
[  398.758310][  T929] syz_tun: left promiscuous mode
[  398.787628][  T931] loop7: detected capacity change from 0 to 128
[  398.882894][  T938] FAULT_INJECTION: forcing a failure.
[  398.882894][  T938] name failslab, interval 1, probability 0, space 0, times 0
[  398.895621][  T938] CPU: 1 UID: 0 PID: 938 Comm: syz.3.7472 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  398.895651][  T938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  398.895667][  T938] Call Trace:
[  398.895677][  T938]  <TASK>
[  398.895686][  T938]  dump_stack_lvl+0xf2/0x150
[  398.895719][  T938]  dump_stack+0x15/0x1a
[  398.895740][  T938]  should_fail_ex+0x223/0x230
[  398.895802][  T938]  should_failslab+0x8f/0xb0
[  398.895829][  T938]  kmem_cache_alloc_noprof+0x52/0x320
[  398.895869][  T938]  ? security_file_alloc+0x32/0x100
[  398.896047][  T938]  security_file_alloc+0x32/0x100
[  398.896092][  T938]  init_file+0x5b/0x1a0
[  398.896126][  T938]  alloc_empty_file+0xea/0x200
[  398.896260][  T938]  path_openat+0x6a/0x1fb0
[  398.896281][  T938]  ? _parse_integer_limit+0x167/0x180
[  398.896312][  T938]  ? _parse_integer+0x27/0x30
[  398.896339][  T938]  ? _raw_spin_lock_irqsave+0x3c/0xb0
[  398.896407][  T938]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  398.896441][  T938]  ? __bpf_ringbuf_reserve+0x2c0/0x320
[  398.896474][  T938]  do_filp_open+0x107/0x230
[  398.896509][  T938]  do_sys_openat2+0xab/0x120
[  398.896616][  T938]  __x64_sys_openat+0xf3/0x120
[  398.896654][  T938]  x64_sys_call+0x2b30/0x2dc0
[  398.896698][  T938]  do_syscall_64+0xc9/0x1c0
[  398.896722][  T938]  ? clear_bhb_loop+0x55/0xb0
[  398.896787][  T938]  ? clear_bhb_loop+0x55/0xb0
[  398.896821][  T938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.896856][  T938] RIP: 0033:0x7f44710acd29
[  398.896872][  T938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.896975][  T938] RSP: 002b:00007f446f6cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  398.896998][  T938] RAX: ffffffffffffffda RBX: 00007f44712c6160 RCX: 00007f44710acd29
[  398.897013][  T938] RDX: 0000000000022402 RSI: 0000000020001440 RDI: ffffffffffffff9c
[  398.897026][  T938] RBP: 00007f446f6cf090 R08: 0000000000000000 R09: 0000000000000000
[  398.897038][  T938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.897052][  T938] R13: 0000000000000000 R14: 00007f44712c6160 R15: 00007ffd97c98478
[  398.897108][  T938]  </TASK>
[  399.146256][  T937] loop6: detected capacity change from 0 to 512
[  399.156308][  T937] EXT4-fs: Ignoring removed i_version option
[  399.162463][  T937] EXT4-fs: Ignoring removed mblk_io_submit option
[  399.191344][  T937] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  399.195754][  T941] netlink: 'syz.0.7477': attribute type 1 has an invalid length.
[  399.223437][  T937] EXT4-fs (loop6): 1 truncate cleaned up
[  399.235783][  T950] loop4: detected capacity change from 0 to 1024
[  399.243581][  T950] EXT4-fs: Ignoring removed orlov option
[  399.243929][  T937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  399.249341][  T950] EXT4-fs: Ignoring removed orlov option
[  399.267002][  T950] EXT4-fs: Ignoring removed oldalloc option
[  399.268034][  T950] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  399.268064][  T950] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  399.270756][  T950] EXT4-fs (loop4): invalid journal inode
[  399.301776][  T950] EXT4-fs (loop4): can't get journal size
[  399.309265][  T950] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  399.320534][  T959] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7480'.
[  399.324427][  T950] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.357884][  T950] loop4: detected capacity change from 0 to 512
[  399.377849][  T950] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.4.7479: corrupted xattr block 95: invalid header
[  399.396924][  T950] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.7479: bg 0: block 7: invalid block bitmap
[  399.414735][  T950] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  399.423781][  T950] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2977: inode #11: comm syz.4.7479: corrupted xattr block 95: invalid header
[  399.432062][  T975] netlink: 900 bytes leftover after parsing attributes in process `syz.0.7481'.
[  399.437798][  T950] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[  399.455742][  T950] EXT4-fs (loop4): 1 orphan inode deleted
[  399.462165][  T950] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  399.475495][  T950] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.497076][  T984] ref_ctr increment failed for inode: 0x6cc offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465f9f80
[  399.508930][  T983] uprobe: syz.0.7482:983 failed to unregister, leaking uprobe
[  399.605793][ T1005] netlink: 60 bytes leftover after parsing attributes in process `syz.0.7483'.
[  399.631064][ T1005] vlan2: entered allmulticast mode
[  399.636601][ T1005] bond0: entered allmulticast mode
[  399.641797][ T1005] bond_slave_0: entered allmulticast mode
[  399.647539][ T1005] bond_slave_1: entered allmulticast mode
[  399.656064][ T1005] bond0: left allmulticast mode
[  399.660974][ T1005] bond_slave_0: left allmulticast mode
[  399.666561][ T1005] bond_slave_1: left allmulticast mode
[  399.777012][T25786] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.827327][ T1042] loop6: detected capacity change from 0 to 2048
[  399.888384][ T1042]  loop6: p1 p2 p3
[  399.913290][ T1052] netlink: 'syz.4.7490': attribute type 1 has an invalid length.
[  399.931860][ T1052] loop4: detected capacity change from 0 to 2048
[  399.941012][ T1052] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  400.796557][ T1088] loop6: detected capacity change from 0 to 512
[  400.803354][ T1088] EXT4-fs: Ignoring removed i_version option
[  400.809575][ T1088] EXT4-fs: Ignoring removed mblk_io_submit option
[  400.816858][ T1088] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  400.828303][ T1088] EXT4-fs (loop6): 1 truncate cleaned up
[  401.006860][ T1132] loop7: detected capacity change from 0 to 164
[  401.013869][ T1132] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  401.177003][ T1158] netlink: 'syz.0.7503': attribute type 1 has an invalid length.
[  401.416793][ T1192] ªªªªªª: renamed from vlan0 (while UP)
[  401.426986][ T1192] FAULT_INJECTION: forcing a failure.
[  401.426986][ T1192] name failslab, interval 1, probability 0, space 0, times 0
[  401.439682][ T1192] CPU: 1 UID: 0 PID: 1192 Comm: syz.7.7506 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  401.439714][ T1192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  401.439730][ T1192] Call Trace:
[  401.439738][ T1192]  <TASK>
[  401.439746][ T1192]  dump_stack_lvl+0xf2/0x150
[  401.439846][ T1192]  dump_stack+0x15/0x1a
[  401.439930][ T1192]  should_fail_ex+0x223/0x230
[  401.440001][ T1192]  should_failslab+0x8f/0xb0
[  401.440102][ T1192]  __kmalloc_noprof+0xab/0x3f0
[  401.440139][ T1192]  ? kobject_get_path+0x85/0x160
[  401.440178][ T1192]  kobject_get_path+0x85/0x160
[  401.440341][ T1192]  kobject_rename+0x103/0x350
[  401.440375][ T1192]  ? sysfs_rename_link_ns+0x105/0x120
[  401.440485][ T1192]  device_rename+0x12a/0x1a0
[  401.440514][ T1192]  dev_change_name+0x1e2/0x670
[  401.440555][ T1192]  ? selinux_capable+0x1f2/0x260
[  401.440638][ T1192]  ? full_name_hash+0x93/0xe0
[  401.440677][ T1192]  dev_ifsioc+0x5d2/0xa10
[  401.440707][ T1192]  dev_ioctl+0x774/0xab0
[  401.440754][ T1192]  sock_do_ioctl+0x11c/0x260
[  401.440790][ T1192]  sock_ioctl+0x40f/0x600
[  401.440847][ T1192]  ? __pfx_sock_ioctl+0x10/0x10
[  401.440884][ T1192]  __se_sys_ioctl+0xc9/0x140
[  401.440908][ T1192]  __x64_sys_ioctl+0x43/0x50
[  401.440993][ T1192]  x64_sys_call+0x1690/0x2dc0
[  401.441020][ T1192]  do_syscall_64+0xc9/0x1c0
[  401.441050][ T1192]  ? clear_bhb_loop+0x55/0xb0
[  401.441153][ T1192]  ? clear_bhb_loop+0x55/0xb0
[  401.441187][ T1192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.441215][ T1192] RIP: 0033:0x7f982e68cd29
[  401.441357][ T1192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.441379][ T1192] RSP: 002b:00007f982ccf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  401.441399][ T1192] RAX: ffffffffffffffda RBX: 00007f982e8a5fa0 RCX: 00007f982e68cd29
[  401.441411][ T1192] RDX: 0000000020000000 RSI: 0000000000008923 RDI: 0000000000000004
[  401.441464][ T1192] RBP: 00007f982ccf7090 R08: 0000000000000000 R09: 0000000000000000
[  401.441493][ T1192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  401.441507][ T1192] R13: 0000000000000000 R14: 00007f982e8a5fa0 R15: 00007fff46261208
[  401.441529][ T1192]  </TASK>
[  401.563057][ T1202] loop4: detected capacity change from 0 to 128
[  401.720713][ T1206] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7509'.
[  401.776954][ T1227] loop3: detected capacity change from 0 to 512
[  401.804341][ T1227] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 18)!
[  401.814685][ T1227] EXT4-fs (loop3): group descriptors corrupted!
[  401.827168][ T1236] netlink: 'syz.6.7514': attribute type 1 has an invalid length.
[  401.862333][ T1242] loop7: detected capacity change from 0 to 164
[  401.864220][ T1236] loop6: detected capacity change from 0 to 2048
[  401.869665][ T1242] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  401.878578][ T1236] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  401.895579][ T1244] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7517'.
[  401.948690][ T1244] bridge11: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  401.994815][ T1250] ref_ctr increment failed for inode: 0xa1d offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465f8a80
[  402.014452][ T1248] uprobe: syz.6.7519:1248 failed to unregister, leaking uprobe
[  402.185039][ T1282] loop7: detected capacity change from 0 to 1024
[  402.187448][ T1283] ªªªªªª: renamed from vlan0 (while UP)
[  402.191846][ T1282] EXT4-fs: Ignoring removed orlov option
[  402.203088][ T1282] EXT4-fs: Ignoring removed orlov option
[  402.208810][ T1282] EXT4-fs: Ignoring removed oldalloc option
[  402.216068][ T1282] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  402.227106][ T1282] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  402.239579][ T1282] EXT4-fs (loop7): invalid journal inode
[  402.245312][ T1282] EXT4-fs (loop7): can't get journal size
[  402.265731][ T1282] loop7: detected capacity change from 0 to 512
[  402.274264][ T1282] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.7.7525: corrupted xattr block 95: invalid header
[  402.289116][ T1282] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.7525: bg 0: block 7: invalid block bitmap
[  402.303830][ T1282] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  402.313232][ T1282] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2977: inode #11: comm syz.7.7525: corrupted xattr block 95: invalid header
[  402.327186][ T1282] EXT4-fs warning (device loop7): ext4_evict_inode:276: xattr delete (err -117)
[  402.336482][ T1282] EXT4-fs (loop7): 1 orphan inode deleted
[  402.404048][ T1296] bond1: entered promiscuous mode
[  402.408536][ T1304] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7533'.
[  402.409232][ T1296] bond1: entered allmulticast mode
[  402.423872][ T1296] 8021q: adding VLAN 0 to HW filter on device bond1
[  402.431708][ T1307] ref_ctr increment failed for inode: 0x55e offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465f9500
[  402.443506][ T1306] uprobe: syz.4.7534:1306 failed to unregister, leaking uprobe
[  402.452196][ T1296] bond1 (unregistering): Released all slaves
[  402.464362][ T1304] bridge12: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  402.499880][ T1312] loop3: detected capacity change from 0 to 164
[  402.509328][ T1312] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  402.613627][ T1319] vlan2: entered allmulticast mode
[  402.632241][ T1319] bond0: entered allmulticast mode
[  402.637416][ T1319] bond_slave_0: entered allmulticast mode
[  402.643193][ T1319] bond_slave_1: entered allmulticast mode
[  402.654627][ T1319] bond0: left allmulticast mode
[  402.659593][ T1319] bond_slave_0: left allmulticast mode
[  402.665138][ T1319] bond_slave_1: left allmulticast mode
[  402.810923][ T1329] loop3: detected capacity change from 0 to 1024
[  402.825750][ T1329] EXT4-fs: Ignoring removed nobh option
[  402.853825][ T1329] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  402.867209][ T1329] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  403.219948][ T1341] loop6: detected capacity change from 0 to 1024
[  403.226946][ T1341] EXT4-fs: Ignoring removed nobh option
[  403.232624][ T1341] EXT4-fs: Ignoring removed bh option
[  403.243911][ T1341] FAULT_INJECTION: forcing a failure.
[  403.243911][ T1341] name failslab, interval 1, probability 0, space 0, times 0
[  403.256631][ T1341] CPU: 1 UID: 0 PID: 1341 Comm: syz.6.7543 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  403.256669][ T1341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  403.256734][ T1341] Call Trace:
[  403.256742][ T1341]  <TASK>
[  403.256750][ T1341]  dump_stack_lvl+0xf2/0x150
[  403.256782][ T1341]  dump_stack+0x15/0x1a
[  403.256809][ T1341]  should_fail_ex+0x223/0x230
[  403.256848][ T1341]  should_failslab+0x8f/0xb0
[  403.256919][ T1341]  __kmalloc_noprof+0xab/0x3f0
[  403.256976][ T1341]  ? sock_kmalloc+0x83/0xc0
[  403.257014][ T1341]  sock_kmalloc+0x83/0xc0
[  403.257048][ T1341]  ____sys_sendmsg+0x127/0x410
[  403.257102][ T1341]  __sys_sendmsg+0x19d/0x230
[  403.257152][ T1341]  __x64_sys_sendmsg+0x46/0x50
[  403.257184][ T1341]  x64_sys_call+0x2734/0x2dc0
[  403.257259][ T1341]  do_syscall_64+0xc9/0x1c0
[  403.257283][ T1341]  ? clear_bhb_loop+0x55/0xb0
[  403.257309][ T1341]  ? clear_bhb_loop+0x55/0xb0
[  403.257340][ T1341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.257445][ T1341] RIP: 0033:0x7f6feb97cd29
[  403.257461][ T1341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  403.257483][ T1341] RSP: 002b:00007f6fe9fe7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  403.257501][ T1341] RAX: ffffffffffffffda RBX: 00007f6febb95fa0 RCX: 00007f6feb97cd29
[  403.257513][ T1341] RDX: 0000000000000041 RSI: 0000000020000600 RDI: 0000000000000004
[  403.257529][ T1341] RBP: 00007f6fe9fe7090 R08: 0000000000000000 R09: 0000000000000000
[  403.257544][ T1341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  403.257558][ T1341] R13: 0000000000000000 R14: 00007f6febb95fa0 R15: 00007fff85655238
[  403.257650][ T1341]  </TASK>
[  403.449736][ T1345] __nla_validate_parse: 1 callbacks suppressed
[  403.449756][ T1345] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7544'.
[  403.464986][ T1345] netlink: 'syz.3.7544': attribute type 7 has an invalid length.
[  403.472780][ T1345] netlink: 'syz.3.7544': attribute type 8 has an invalid length.
[  403.480585][ T1345] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7544'.
[  403.507297][ T1345] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7544'.
[  403.516353][ T1345] netlink: 'syz.3.7544': attribute type 7 has an invalid length.
[  403.524170][ T1345] netlink: 'syz.3.7544': attribute type 8 has an invalid length.
[  403.532040][ T1345] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7544'.
[  403.574931][ T1350] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7546'.
[  403.590445][ T1350] bridge13: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  403.623539][ T1354] ip6gretap0: entered promiscuous mode
[  403.629196][ T1354] vlan2: entered promiscuous mode
[  403.650596][ T1354] ip6gretap0: left promiscuous mode
[  403.700074][ T1359] ref_ctr increment failed for inode: 0x7bf offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881042d8fc0
[  403.735495][ T1365] loop6: detected capacity change from 0 to 164
[  403.742035][ T1356] uprobe: syz.3.7548:1356 failed to unregister, leaking uprobe
[  403.750276][ T1365] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  403.757742][ T1361] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7550'.
[  403.793428][   T29] kauditd_printk_skb: 667 callbacks suppressed
[  403.793445][   T29] audit: type=1326 audit(1737796271.486:50448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  403.823159][   T29] audit: type=1326 audit(1737796271.486:50449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  403.846848][   T29] audit: type=1326 audit(1737796271.486:50450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  403.870427][   T29] audit: type=1326 audit(1737796271.486:50451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  403.893960][   T29] audit: type=1326 audit(1737796271.486:50452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  403.917562][   T29] audit: type=1326 audit(1737796271.486:50453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  403.941067][   T29] audit: type=1326 audit(1737796271.486:50454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  403.964745][   T29] audit: type=1326 audit(1737796271.486:50455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  403.988286][   T29] audit: type=1326 audit(1737796271.486:50456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  404.011757][   T29] audit: type=1326 audit(1737796271.486:50457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1367 comm="syz.4.7552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effbe27cd29 code=0x7ffc0000
[  404.132777][ T1388] loop3: detected capacity change from 0 to 512
[  404.161172][ T1388] EXT4-fs: Ignoring removed i_version option
[  404.167422][ T1388] EXT4-fs: Ignoring removed mblk_io_submit option
[  404.170072][ T1395] ªªªªªª: renamed from vlan0 (while UP)
[  404.188273][ T1388] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  404.217239][ T1388] EXT4-fs (loop3): 1 truncate cleaned up
[  404.244260][ T1406] netlink: 104 bytes leftover after parsing attributes in process `syz.0.7557'.
[  404.253476][ T1406] netlink: 104 bytes leftover after parsing attributes in process `syz.0.7557'.
[  404.262660][ T1406] netlink: 104 bytes leftover after parsing attributes in process `syz.0.7557'.
[  404.301066][ T1413] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7558'.
[  404.313644][ T1413] bridge12: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  404.577049][ T1451] Â: renamed from pim6reg1
[  404.671583][ T1475] loop6: detected capacity change from 0 to 128
[  405.012210][ T1539] loop3: detected capacity change from 0 to 256
[  405.019109][ T1539] vfat: Unknown parameter 'ÿÿ'
[  405.047995][ T1541] bridge9: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  405.320094][ T1576] vlan2: entered allmulticast mode
[  405.325798][ T1576] bond0: entered allmulticast mode
[  405.330932][ T1576] bond_slave_0: entered allmulticast mode
[  405.336807][ T1576] bond_slave_1: entered allmulticast mode
[  405.343344][ T1576] bond0: left allmulticast mode
[  405.348351][ T1576] bond_slave_0: left allmulticast mode
[  405.353931][ T1576] bond_slave_1: left allmulticast mode
[  405.420347][ T1579] loop4: detected capacity change from 0 to 1024
[  405.426845][ T1579] EXT4-fs: Ignoring removed orlov option
[  405.432531][ T1579] EXT4-fs: Ignoring removed orlov option
[  405.438219][ T1579] EXT4-fs: Ignoring removed oldalloc option
[  405.444525][ T1579] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  405.455658][ T1579] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  405.466826][ T1579] EXT4-fs (loop4): invalid journal inode
[  405.472509][ T1579] EXT4-fs (loop4): can't get journal size
[  405.484504][ T1579] loop4: detected capacity change from 0 to 512
[  405.492507][ T1579] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.4.7579: corrupted xattr block 95: invalid header
[  405.506987][ T1579] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.7579: bg 0: block 7: invalid block bitmap
[  405.519768][ T1579] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  405.529352][ T1579] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2977: inode #11: comm syz.4.7579: corrupted xattr block 95: invalid header
[  405.544221][ T1579] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[  405.554420][ T1579] EXT4-fs (loop4): 1 orphan inode deleted
[  405.574957][ T1585] ip6gretap0: entered promiscuous mode
[  405.581097][ T1585] vlan2: entered promiscuous mode
[  405.597354][ T1585] ip6gretap0: left promiscuous mode
[  405.859982][ T1610] loop4: detected capacity change from 0 to 128
[  406.102100][ T1622] loop3: detected capacity change from 0 to 1024
[  406.108690][ T1622] EXT4-fs: Ignoring removed orlov option
[  406.114379][ T1622] EXT4-fs: Ignoring removed orlov option
[  406.120022][ T1622] EXT4-fs: Ignoring removed oldalloc option
[  406.126393][ T1622] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  406.137396][ T1622] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  406.148156][ T1622] EXT4-fs (loop3): invalid journal inode
[  406.153872][ T1622] EXT4-fs (loop3): can't get journal size
[  406.167751][ T1622] loop3: detected capacity change from 0 to 512
[  406.176376][ T1622] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.3.7596: corrupted xattr block 95: invalid header
[  406.192776][ T1622] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.7596: bg 0: block 7: invalid block bitmap
[  406.205434][ T1622] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  406.214474][ T1622] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2977: inode #11: comm syz.3.7596: corrupted xattr block 95: invalid header
[  406.228484][ T1622] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[  406.237668][ T1622] EXT4-fs (loop3): 1 orphan inode deleted
[  406.252957][ T1630] ip6gretap0: entered promiscuous mode
[  406.259407][ T1630] vlan0: entered promiscuous mode
[  406.266099][ T1630] ip6gretap0: left promiscuous mode
[  406.354002][ T1637] loop3: detected capacity change from 0 to 2048
[  406.361460][ T1637] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  406.426328][ T1641] netlink: 'syz.0.7603': attribute type 1 has an invalid length.
[  406.446668][ T1644] loop3: detected capacity change from 0 to 128
[  406.512652][ T1652] loop6: detected capacity change from 0 to 164
[  406.519239][ T1652] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  406.715658][ T1660] loop4: detected capacity change from 0 to 164
[  406.722261][ T1660] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  407.449350][ T1680] loop4: detected capacity change from 0 to 2048
[  407.456672][ T1680] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  407.491070][ T1682] netlink: 'syz.3.7615': attribute type 1 has an invalid length.
[  407.599967][ T1695] vlan2: entered allmulticast mode
[  407.605620][ T1695] bond0: entered allmulticast mode
[  407.610826][ T1695] bond_slave_0: entered allmulticast mode
[  407.616615][ T1695] bond_slave_1: entered allmulticast mode
[  407.623711][ T1695] bond0: left allmulticast mode
[  407.628603][ T1695] bond_slave_0: left allmulticast mode
[  407.634190][ T1695] bond_slave_1: left allmulticast mode
[  407.709145][ T1705] ref_ctr increment failed for inode: 0x7b0 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881042daf40
[  407.723893][ T1704] uprobe: syz.7.7626:1704 failed to unregister, leaking uprobe
[  407.737834][ T1709] netlink: 'syz.4.7628': attribute type 1 has an invalid length.
[  407.769033][ T1715] loop6: detected capacity change from 0 to 1024
[  407.773860][ T1716] loop4: detected capacity change from 0 to 2048
[  407.775626][ T1715] EXT4-fs: Ignoring removed orlov option
[  407.787460][ T1715] EXT4-fs: Ignoring removed orlov option
[  407.787641][ T1716] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  407.793144][ T1715] EXT4-fs: Ignoring removed oldalloc option
[  407.812619][ T1715] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  407.823599][ T1715] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  407.834421][ T1715] EXT4-fs (loop6): invalid journal inode
[  407.840142][ T1715] EXT4-fs (loop6): can't get journal size
[  407.850917][ T1721] loop4: detected capacity change from 0 to 1024
[  407.857791][ T1721] EXT4-fs: Ignoring removed orlov option
[  407.863514][ T1721] EXT4-fs: Ignoring removed orlov option
[  407.869243][ T1721] EXT4-fs: Ignoring removed oldalloc option
[  407.875685][ T1721] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  407.877715][ T1715] loop6: detected capacity change from 0 to 512
[  407.886747][ T1721] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  407.903844][ T1721] EXT4-fs (loop4): invalid journal inode
[  407.904173][ T1715] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.6.7630: corrupted xattr block 95: invalid header
[  407.909712][ T1721] EXT4-fs (loop4): can't get journal size
[  407.925056][ T1715] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.7630: bg 0: block 7: invalid block bitmap
[  407.943005][ T1715] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  407.951948][ T1715] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2977: inode #11: comm syz.6.7630: corrupted xattr block 95: invalid header
[  407.965876][ T1715] EXT4-fs warning (device loop6): ext4_evict_inode:276: xattr delete (err -117)
[  407.975757][ T1715] EXT4-fs (loop6): 1 orphan inode deleted
[  407.976068][ T1721] loop4: detected capacity change from 0 to 512
[  408.000372][ T1721] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.4.7633: corrupted xattr block 95: invalid header
[  408.014690][ T1721] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.7633: bg 0: block 7: invalid block bitmap
[  408.027560][ T1721] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  408.036515][ T1721] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2977: inode #11: comm syz.4.7633: corrupted xattr block 95: invalid header
[  408.050586][ T1721] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[  408.059797][ T1721] EXT4-fs (loop4): 1 orphan inode deleted
[  408.124199][ T1737] vlan2: entered allmulticast mode
[  408.129902][ T1737] bond0: entered allmulticast mode
[  408.135113][ T1737] bond_slave_0: entered allmulticast mode
[  408.140973][ T1737] bond_slave_1: entered allmulticast mode
[  408.147845][ T1737] bond0: left allmulticast mode
[  408.152765][ T1737] bond_slave_0: left allmulticast mode
[  408.158354][ T1737] bond_slave_1: left allmulticast mode
[  408.193052][ T1744] netlink: 'syz.6.7642': attribute type 1 has an invalid length.
[  408.231203][ T1748] loop6: detected capacity change from 0 to 2048
[  408.238286][ T1748] EXT4-fs (loop6): couldn't mount as ext3 due to feature incompatibilities
[  408.247686][ T1750] ref_ctr increment failed for inode: 0x61f offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465fb480
[  408.259158][ T1749] uprobe: syz.4.7645:1749 failed to unregister, leaking uprobe
[  408.325453][ T1753] loop6: detected capacity change from 0 to 1024
[  408.332140][ T1753] EXT4-fs: Ignoring removed orlov option
[  408.337861][ T1753] EXT4-fs: Ignoring removed orlov option
[  408.343528][ T1753] EXT4-fs: Ignoring removed oldalloc option
[  408.350192][ T1753] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  408.361191][ T1753] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  408.371845][ T1753] EXT4-fs (loop6): invalid journal inode
[  408.377535][ T1753] EXT4-fs (loop6): can't get journal size
[  408.402707][ T1753] loop6: detected capacity change from 0 to 512
[  408.413869][ T1753] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.6.7646: corrupted xattr block 95: invalid header
[  408.443610][ T1753] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.7646: bg 0: block 7: invalid block bitmap
[  408.457187][ T1765] ref_ctr increment failed for inode: 0x630 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465f8fc0
[  408.462730][ T1753] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  408.477856][ T1753] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2977: inode #11: comm syz.6.7646: corrupted xattr block 95: invalid header
[  408.491769][ T1764] uprobe: syz.4.7651:1764 failed to unregister, leaking uprobe
[  408.499926][ T1753] EXT4-fs warning (device loop6): ext4_evict_inode:276: xattr delete (err -117)
[  408.509178][ T1753] EXT4-fs (loop6): 1 orphan inode deleted
[  408.519150][ T1767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  408.527660][ T1767] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  408.586456][ T1772] vlan0: entered allmulticast mode
[  408.592197][ T1772] bond0: entered allmulticast mode
[  408.597430][ T1772] bond_slave_0: entered allmulticast mode
[  408.601221][ T1775] netlink: 'syz.4.7656': attribute type 1 has an invalid length.
[  408.603260][ T1772] bond_slave_1: entered allmulticast mode
[  408.618124][ T1772] bond0: left allmulticast mode
[  408.623054][ T1772] bond_slave_0: left allmulticast mode
[  408.628835][ T1772] bond_slave_1: left allmulticast mode
[  408.869531][ T1793] loop7: detected capacity change from 0 to 8192
[  409.102965][ T1801] __nla_validate_parse: 19 callbacks suppressed
[  409.102986][ T1801] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.7663'.
[  409.122167][ T1800] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.7663'.
[  409.164981][   T29] kauditd_printk_skb: 923 callbacks suppressed
[  409.165000][   T29] audit: type=1326 audit(1737796276.513:51381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.194817][   T29] audit: type=1326 audit(1737796276.513:51382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.218328][   T29] audit: type=1326 audit(1737796276.513:51383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.241938][   T29] audit: type=1326 audit(1737796276.513:51384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.265526][   T29] audit: type=1326 audit(1737796276.513:51385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.289123][   T29] audit: type=1326 audit(1737796276.513:51386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.312630][   T29] audit: type=1326 audit(1737796276.513:51387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.336201][   T29] audit: type=1326 audit(1737796276.513:51388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.345721][ T1807] netlink: 'syz.0.7667': attribute type 1 has an invalid length.
[  409.372367][   T29] audit: type=1326 audit(1737796276.682:51389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.395889][   T29] audit: type=1326 audit(1737796276.682:51390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1806 comm="syz.0.7667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  409.526583][ T1809] tipc: Started in network mode
[  409.531582][ T1809] tipc: Node identity 7, cluster identity 4711
[  409.537803][ T1809] tipc: Node number set to 7
[  409.557295][ T1809] tipc: Cannot configure node identity twice
[  409.886538][ T1826] loop7: detected capacity change from 0 to 1024
[  409.893138][ T1826] EXT4-fs: Ignoring removed nobh option
[  409.930798][ T1826] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.947358][ T1826] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  410.014497][ T1836] loop6: detected capacity change from 0 to 128
[  410.274395][ T1844] FAULT_INJECTION: forcing a failure.
[  410.274395][ T1844] name failslab, interval 1, probability 0, space 0, times 0
[  410.287090][ T1844] CPU: 1 UID: 0 PID: 1844 Comm: syz.4.7679 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  410.287116][ T1844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  410.287130][ T1844] Call Trace:
[  410.287139][ T1844]  <TASK>
[  410.287155][ T1844]  dump_stack_lvl+0xf2/0x150
[  410.287188][ T1844]  dump_stack+0x15/0x1a
[  410.287214][ T1844]  should_fail_ex+0x223/0x230
[  410.287248][ T1844]  should_failslab+0x8f/0xb0
[  410.287279][ T1844]  kmem_cache_alloc_noprof+0x52/0x320
[  410.287312][ T1844]  ? vm_area_dup+0x2c/0x130
[  410.287335][ T1844]  vm_area_dup+0x2c/0x130
[  410.287356][ T1844]  __split_vma+0xf7/0x6a0
[  410.287395][ T1844]  vms_gather_munmap_vmas+0x2a5/0x7a0
[  410.287430][ T1844]  do_vmi_align_munmap+0x1a4/0x390
[  410.287476][ T1844]  do_vmi_munmap+0x1eb/0x230
[  410.287513][ T1844]  do_munmap+0x8b/0xc0
[  410.287543][ T1844]  __se_sys_mremap+0xa72/0xf10
[  410.287565][ T1844]  ? fput+0x1c4/0x200
[  410.287601][ T1844]  __x64_sys_mremap+0x67/0x80
[  410.287625][ T1844]  x64_sys_call+0x27e8/0x2dc0
[  410.287651][ T1844]  do_syscall_64+0xc9/0x1c0
[  410.287681][ T1844]  ? clear_bhb_loop+0x55/0xb0
[  410.287713][ T1844]  ? clear_bhb_loop+0x55/0xb0
[  410.287746][ T1844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.287773][ T1844] RIP: 0033:0x7effbe27cd29
[  410.287788][ T1844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  410.287805][ T1844] RSP: 002b:00007effbc8a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  410.287823][ T1844] RAX: ffffffffffffffda RBX: 00007effbe496160 RCX: 00007effbe27cd29
[  410.287835][ T1844] RDX: 0000000000004000 RSI: 0000000000004000 RDI: 00000000207ff000
[  410.287850][ T1844] RBP: 00007effbc8a5090 R08: 0000000020580000 R09: 0000000000000000
[  410.287865][ T1844] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  410.287879][ T1844] R13: 0000000000000000 R14: 00007effbe496160 R15: 00007ffeb93c0108
[  410.287900][ T1844]  </TASK>
[  410.766965][ T1863] loop7: detected capacity change from 0 to 2048
[  410.774249][ T1863] EXT4-fs (loop7): couldn't mount as ext3 due to feature incompatibilities
[  410.872982][ T1870] FAULT_INJECTION: forcing a failure.
[  410.872982][ T1870] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  410.886176][ T1870] CPU: 0 UID: 0 PID: 1870 Comm: syz.6.7688 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  410.886202][ T1870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  410.886218][ T1870] Call Trace:
[  410.886226][ T1870]  <TASK>
[  410.886234][ T1870]  dump_stack_lvl+0xf2/0x150
[  410.886310][ T1870]  dump_stack+0x15/0x1a
[  410.886331][ T1870]  should_fail_ex+0x223/0x230
[  410.886369][ T1870]  should_fail+0xb/0x10
[  410.886472][ T1870]  should_fail_usercopy+0x1a/0x20
[  410.886511][ T1870]  _copy_to_user+0x20/0xa0
[  410.886533][ T1870]  simple_read_from_buffer+0xa0/0x110
[  410.886561][ T1870]  proc_fail_nth_read+0xf9/0x140
[  410.886630][ T1870]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  410.886658][ T1870]  vfs_read+0x19b/0x6f0
[  410.886676][ T1870]  ? __rcu_read_unlock+0x4e/0x70
[  410.886717][ T1870]  ? __fget_files+0x17c/0x1c0
[  410.886750][ T1870]  ksys_read+0xe8/0x1b0
[  410.886772][ T1870]  __x64_sys_read+0x42/0x50
[  410.886791][ T1870]  x64_sys_call+0x2874/0x2dc0
[  410.886816][ T1870]  do_syscall_64+0xc9/0x1c0
[  410.886863][ T1870]  ? clear_bhb_loop+0x55/0xb0
[  410.886900][ T1870]  ? clear_bhb_loop+0x55/0xb0
[  410.886942][ T1870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.887051][ T1870] RIP: 0033:0x7f6feb97b73c
[  410.887066][ T1870] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  410.887176][ T1870] RSP: 002b:00007f6fe9fe7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  410.887200][ T1870] RAX: ffffffffffffffda RBX: 00007f6febb95fa0 RCX: 00007f6feb97b73c
[  410.887213][ T1870] RDX: 000000000000000f RSI: 00007f6fe9fe70a0 RDI: 0000000000000004
[  410.887225][ T1870] RBP: 00007f6fe9fe7090 R08: 0000000000000000 R09: 0000000000000000
[  410.887296][ T1870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  410.887380][ T1870] R13: 0000000000000000 R14: 00007f6febb95fa0 R15: 00007fff85655238
[  410.887435][ T1870]  </TASK>
[  410.932606][ T1874] loop7: detected capacity change from 0 to 512
[  411.018956][ T1879] loop6: detected capacity change from 0 to 164
[  411.038914][ T1874] EXT4-fs: Ignoring removed i_version option
[  411.038941][ T1874] EXT4-fs: Ignoring removed mblk_io_submit option
[  411.039363][ T1874] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  411.120745][ T1874] EXT4-fs (loop7): 1 truncate cleaned up
[  411.159923][ T1879] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  411.212696][ T1875] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.7684'.
[  411.222597][ T1876] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.7684'.
[  411.675443][ T1933] loop6: detected capacity change from 0 to 1024
[  411.682139][ T1933] EXT4-fs: Ignoring removed orlov option
[  411.687829][ T1933] EXT4-fs: Ignoring removed orlov option
[  411.693560][ T1933] EXT4-fs: Ignoring removed oldalloc option
[  411.700177][ T1933] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  411.711406][ T1933] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  411.747354][ T1938] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  411.755936][ T1938] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  411.799760][ T1933] EXT4-fs (loop6): invalid journal inode
[  411.805497][ T1933] EXT4-fs (loop6): can't get journal size
[  411.846093][ T1933] loop6: detected capacity change from 0 to 512
[  411.857207][ T1933] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.6.7693: corrupted xattr block 95: invalid header
[  411.876738][ T1933] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.7693: bg 0: block 7: invalid block bitmap
[  411.891119][ T1933] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  411.904144][ T1933] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2977: inode #11: comm syz.6.7693: corrupted xattr block 95: invalid header
[  411.918328][ T1933] EXT4-fs warning (device loop6): ext4_evict_inode:276: xattr delete (err -117)
[  411.929339][ T1933] EXT4-fs (loop6): 1 orphan inode deleted
[  412.092899][ T1987] loop4: detected capacity change from 0 to 164
[  412.099564][ T1987] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  412.420738][ T2001] FAULT_INJECTION: forcing a failure.
[  412.420738][ T2001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  412.433986][ T2001] CPU: 0 UID: 0 PID: 2001 Comm: syz.4.7708 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  412.434022][ T2001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  412.434035][ T2001] Call Trace:
[  412.434041][ T2001]  <TASK>
[  412.434047][ T2001]  dump_stack_lvl+0xf2/0x150
[  412.434075][ T2001]  dump_stack+0x15/0x1a
[  412.434129][ T2001]  should_fail_ex+0x223/0x230
[  412.434168][ T2001]  should_fail+0xb/0x10
[  412.434203][ T2001]  should_fail_usercopy+0x1a/0x20
[  412.434237][ T2001]  _copy_from_iter+0xd5/0xd00
[  412.434326][ T2001]  ? kmalloc_reserve+0x16e/0x190
[  412.434356][ T2001]  ? __build_skb_around+0x196/0x1f0
[  412.434386][ T2001]  ? __alloc_skb+0x21f/0x310
[  412.434414][ T2001]  ? __virt_addr_valid+0x1ed/0x250
[  412.434444][ T2001]  ? __check_object_size+0x364/0x520
[  412.434524][ T2001]  netlink_sendmsg+0x460/0x6e0
[  412.434561][ T2001]  ? __pfx_netlink_sendmsg+0x10/0x10
[  412.434601][ T2001]  __sock_sendmsg+0x140/0x180
[  412.434625][ T2001]  ____sys_sendmsg+0x312/0x410
[  412.434726][ T2001]  __sys_sendmsg+0x19d/0x230
[  412.434810][ T2001]  __x64_sys_sendmsg+0x46/0x50
[  412.434844][ T2001]  x64_sys_call+0x2734/0x2dc0
[  412.434877][ T2001]  do_syscall_64+0xc9/0x1c0
[  412.434907][ T2001]  ? clear_bhb_loop+0x55/0xb0
[  412.434995][ T2001]  ? clear_bhb_loop+0x55/0xb0
[  412.435108][ T2001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.435134][ T2001] RIP: 0033:0x7effbe27cd29
[  412.435150][ T2001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.435173][ T2001] RSP: 002b:00007effbc8e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  412.435196][ T2001] RAX: ffffffffffffffda RBX: 00007effbe495fa0 RCX: 00007effbe27cd29
[  412.435211][ T2001] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[  412.435246][ T2001] RBP: 00007effbc8e7090 R08: 0000000000000000 R09: 0000000000000000
[  412.435260][ T2001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  412.435275][ T2001] R13: 0000000000000000 R14: 00007effbe495fa0 R15: 00007ffeb93c0108
[  412.435297][ T2001]  </TASK>
[  412.788028][ T2011] loop4: detected capacity change from 0 to 8192
[  412.898326][ T2015] netlink: 60 bytes leftover after parsing attributes in process `syz.6.7712'.
[  412.921269][ T2018] loop7: detected capacity change from 0 to 512
[  412.951996][ T2015] vlan2: entered allmulticast mode
[  412.958007][ T2015] bond0: entered allmulticast mode
[  412.963196][ T2015] bond_slave_0: entered allmulticast mode
[  412.969040][ T2015] bond_slave_1: entered allmulticast mode
[  412.978189][ T2018] EXT4-fs: Ignoring removed orlov option
[  412.987554][ T2018] EXT4-fs warning (device loop7): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop7.
[  413.000105][ T2015] bond0: left allmulticast mode
[  413.005051][ T2015] bond_slave_0: left allmulticast mode
[  413.010697][ T2015] bond_slave_1: left allmulticast mode
[  413.078639][ T2029] loop7: detected capacity change from 0 to 1024
[  413.085321][ T2029] EXT4-fs: Ignoring removed nobh option
[  413.121218][ T2029] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  413.149541][ T2029] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  413.863674][ T2058] loop4: detected capacity change from 0 to 512
[  413.870714][ T2058] EXT4-fs: Ignoring removed i_version option
[  413.876846][ T2058] EXT4-fs: Ignoring removed mblk_io_submit option
[  413.883853][ T2058] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  413.895330][ T2058] EXT4-fs (loop4): 1 truncate cleaned up
[  414.475368][ T2074] loop6: detected capacity change from 0 to 164
[  414.495454][ T2074] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  414.639973][   T29] kauditd_printk_skb: 262 callbacks suppressed
[  414.639990][   T29] audit: type=1400 audit(1737796281.643:51653): avc:  denied  { mount } for  pid=2077 comm="syz.3.7734" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  414.804948][   T29] audit: type=1326 audit(1737796281.681:51654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2080 comm="syz.0.7735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  414.828523][   T29] audit: type=1326 audit(1737796281.681:51655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2080 comm="syz.0.7735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  414.852229][   T29] audit: type=1326 audit(1737796281.681:51656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2080 comm="syz.0.7735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  414.875921][   T29] audit: type=1326 audit(1737796281.681:51657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2080 comm="syz.0.7735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  414.899798][   T29] audit: type=1326 audit(1737796281.681:51658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2080 comm="syz.0.7735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  414.923459][   T29] audit: type=1326 audit(1737796281.681:51659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2080 comm="syz.0.7735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  414.947068][   T29] audit: type=1326 audit(1737796281.681:51660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2080 comm="syz.0.7735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  414.970498][   T29] audit: type=1326 audit(1737796281.681:51661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2080 comm="syz.0.7735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  414.994023][   T29] audit: type=1326 audit(1737796281.681:51662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2080 comm="syz.0.7735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  415.071990][ T2092] loop6: detected capacity change from 0 to 8192
[  415.437893][ T2118] loop7: detected capacity change from 0 to 1024
[  415.444645][ T2118] EXT4-fs: Ignoring removed orlov option
[  415.450414][ T2118] EXT4-fs: Ignoring removed orlov option
[  415.456172][ T2118] EXT4-fs: Ignoring removed oldalloc option
[  415.463796][ T2118] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  415.474728][ T2118] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  415.485200][ T2118] EXT4-fs (loop7): invalid journal inode
[  415.490877][ T2118] EXT4-fs (loop7): can't get journal size
[  415.574418][ T2118] loop7: detected capacity change from 0 to 512
[  415.602579][ T2118] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.7.7747: corrupted xattr block 95: invalid header
[  415.634018][ T2118] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.7747: bg 0: block 7: invalid block bitmap
[  415.653767][ T2118] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  415.675878][ T2118] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2977: inode #11: comm syz.7.7747: corrupted xattr block 95: invalid header
[  415.705993][ T2118] EXT4-fs warning (device loop7): ext4_evict_inode:276: xattr delete (err -117)
[  415.715900][ T2118] EXT4-fs (loop7): 1 orphan inode deleted
[  415.943622][ T2126] loop7: detected capacity change from 0 to 128
[  416.007449][ T2133] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7749'.
[  416.013855][ T2134] netlink: 'syz.6.7752': attribute type 1 has an invalid length.
[  416.244504][ T2161] loop4: detected capacity change from 0 to 164
[  416.268467][ T2161] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  416.389316][ T2167] netlink: 'syz.6.7763': attribute type 1 has an invalid length.
[  416.417724][ T2168] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.7751'.
[  416.444901][ T2165] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.7751'.
[  416.669652][ T2180] loop4: detected capacity change from 0 to 128
[  416.676864][ T2180] FAT-fs (loop4): invalid media value (0x00)
[  416.682936][ T2180] FAT-fs (loop4): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  416.692280][ T2180] FAT-fs (loop4): Can't find a valid FAT filesystem
[  417.109141][ T2207] FAULT_INJECTION: forcing a failure.
[  417.109141][ T2207] name failslab, interval 1, probability 0, space 0, times 0
[  417.126545][ T2207] CPU: 0 UID: 0 PID: 2207 Comm: syz.7.7778 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  417.126577][ T2207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  417.126591][ T2207] Call Trace:
[  417.126598][ T2207]  <TASK>
[  417.126605][ T2207]  dump_stack_lvl+0xf2/0x150
[  417.126639][ T2207]  dump_stack+0x15/0x1a
[  417.126663][ T2207]  should_fail_ex+0x223/0x230
[  417.126728][ T2207]  should_failslab+0x8f/0xb0
[  417.126752][ T2207]  __kmalloc_node_noprof+0xad/0x410
[  417.126818][ T2207]  ? __vmalloc_node_range_noprof+0x3dc/0xe80
[  417.126851][ T2207]  __vmalloc_node_range_noprof+0x3dc/0xe80
[  417.126881][ T2207]  ? __rcu_read_unlock+0x4e/0x70
[  417.126985][ T2207]  ? bpf_prog_alloc_no_stats+0x2c/0x380
[  417.127013][ T2207]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  417.127102][ T2207]  __vmalloc_noprof+0x5e/0x70
[  417.127199][ T2207]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  417.127225][ T2207]  bpf_prog_alloc_no_stats+0x49/0x380
[  417.127251][ T2207]  ? bpf_prog_alloc+0x28/0x150
[  417.127277][ T2207]  bpf_prog_alloc+0x3a/0x150
[  417.127304][ T2207]  bpf_prog_load+0x4d0/0x1070
[  417.127382][ T2207]  ? __rcu_read_unlock+0x4e/0x70
[  417.127479][ T2207]  ? sysvec_apic_timer_interrupt+0x44/0x80
[  417.127526][ T2207]  __sys_bpf+0x463/0x7a0
[  417.127563][ T2207]  __x64_sys_bpf+0x43/0x50
[  417.127637][ T2207]  x64_sys_call+0x2914/0x2dc0
[  417.127664][ T2207]  do_syscall_64+0xc9/0x1c0
[  417.127709][ T2207]  ? clear_bhb_loop+0x55/0xb0
[  417.127772][ T2207]  ? clear_bhb_loop+0x55/0xb0
[  417.127807][ T2207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.127880][ T2207] RIP: 0033:0x7f982e68cd29
[  417.127952][ T2207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.127974][ T2207] RSP: 002b:00007f982ccf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  417.127998][ T2207] RAX: ffffffffffffffda RBX: 00007f982e8a5fa0 RCX: 00007f982e68cd29
[  417.128014][ T2207] RDX: 0000000000000020 RSI: 00000000200000c0 RDI: 0000000000000005
[  417.128030][ T2207] RBP: 00007f982ccf7090 R08: 0000000000000000 R09: 0000000000000000
[  417.128050][ T2207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.128065][ T2207] R13: 0000000000000000 R14: 00007f982e8a5fa0 R15: 00007fff46261208
[  417.128088][ T2207]  </TASK>
[  417.368110][ T2207] syz.7.7778: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0
[  417.394264][ T2207] CPU: 0 UID: 0 PID: 2207 Comm: syz.7.7778 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  417.394350][ T2207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  417.394365][ T2207] Call Trace:
[  417.394372][ T2207]  <TASK>
[  417.394381][ T2207]  dump_stack_lvl+0xf2/0x150
[  417.394415][ T2207]  dump_stack+0x15/0x1a
[  417.394447][ T2207]  warn_alloc+0x145/0x1b0
[  417.394514][ T2207]  __vmalloc_node_range_noprof+0x473/0xe80
[  417.394562][ T2207]  ? __rcu_read_unlock+0x4e/0x70
[  417.394598][ T2207]  ? bpf_prog_alloc_no_stats+0x2c/0x380
[  417.394633][ T2207]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  417.394727][ T2207]  __vmalloc_noprof+0x5e/0x70
[  417.394756][ T2207]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  417.394789][ T2207]  bpf_prog_alloc_no_stats+0x49/0x380
[  417.394821][ T2207]  ? bpf_prog_alloc+0x28/0x150
[  417.394930][ T2207]  bpf_prog_alloc+0x3a/0x150
[  417.394960][ T2207]  bpf_prog_load+0x4d0/0x1070
[  417.394994][ T2207]  ? __rcu_read_unlock+0x4e/0x70
[  417.395066][ T2207]  ? sysvec_apic_timer_interrupt+0x44/0x80
[  417.395117][ T2207]  __sys_bpf+0x463/0x7a0
[  417.395168][ T2207]  __x64_sys_bpf+0x43/0x50
[  417.395194][ T2207]  x64_sys_call+0x2914/0x2dc0
[  417.395232][ T2207]  do_syscall_64+0xc9/0x1c0
[  417.395258][ T2207]  ? clear_bhb_loop+0x55/0xb0
[  417.395290][ T2207]  ? clear_bhb_loop+0x55/0xb0
[  417.395328][ T2207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.395453][ T2207] RIP: 0033:0x7f982e68cd29
[  417.395473][ T2207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.395618][ T2207] RSP: 002b:00007f982ccf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  417.395641][ T2207] RAX: ffffffffffffffda RBX: 00007f982e8a5fa0 RCX: 00007f982e68cd29
[  417.395657][ T2207] RDX: 0000000000000020 RSI: 00000000200000c0 RDI: 0000000000000005
[  417.395671][ T2207] RBP: 00007f982ccf7090 R08: 0000000000000000 R09: 0000000000000000
[  417.395758][ T2207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.395770][ T2207] R13: 0000000000000000 R14: 00007f982e8a5fa0 R15: 00007fff46261208
[  417.395817][ T2207]  </TASK>
[  417.612611][ T2207] Mem-Info:
[  417.616136][ T2207] active_anon:3561 inactive_anon:4 isolated_anon:25
[  417.616136][ T2207]  active_file:6671 inactive_file:15054 isolated_file:0
[  417.616136][ T2207]  unevictable:0 dirty:233 writeback:0
[  417.616136][ T2207]  slab_reclaimable:3034 slab_unreclaimable:18134
[  417.616136][ T2207]  mapped:28866 shmem:421 pagetables:659
[  417.616136][ T2207]  sec_pagetables:0 bounce:0
[  417.616136][ T2207]  kernel_misc_reclaimable:0
[  417.616136][ T2207]  free:1885430 free_pcp:10759 free_cma:0
[  417.663289][ T2207] Node 0 active_anon:14360kB inactive_anon:16kB active_file:26684kB inactive_file:60216kB unevictable:0kB isolated(anon):100kB isolated(file):0kB mapped:115580kB dirty:932kB writeback:0kB shmem:1684kB writeback_tmp:0kB kernel_stack:3632kB pagetables:2752kB sec_pagetables:0kB all_unreclaimable? no
[  417.692009][ T2207] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  417.719450][ T2207] lowmem_reserve[]: 0 2885 7863 0
[  417.724792][ T2207] Node 0 DMA32 free:2950872kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954504kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:100kB free_cma:0kB
[  417.753840][ T2207] lowmem_reserve[]: 0 0 4978 0
[  417.758956][ T2207] Node 0 Normal free:4575488kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:14360kB inactive_anon:16kB active_file:26684kB inactive_file:60216kB unevictable:0kB writepending:932kB present:5242880kB managed:5098208kB mlocked:8kB bounce:0kB free_pcp:39412kB local_pcp:7064kB free_cma:0kB
[  417.790020][ T2207] lowmem_reserve[]: 0 0 0 0
[  417.795179][ T2207] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  417.808960][ T2207] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 2*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950872kB
[  417.826542][ T2207] Node 0 Normal: 1148*4kB (UM) 491*8kB (UME) 223*16kB (UME) 88*32kB (UME) 77*64kB (UM) 71*128kB (UME) 84*256kB (UME) 234*512kB (UME) 210*1024kB (UM) 124*2048kB (UME) 961*4096kB (UM) = 4575480kB
[  417.846900][ T2207] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  417.856372][ T2207] 22113 total pagecache pages
[  417.861184][ T2207] 24 pages in swap cache
[  417.865607][ T2207] Free swap  = 124496kB
[  417.870015][ T2207] Total swap = 124996kB
[  417.874461][ T2207] 2097051 pages RAM
[  417.878574][ T2207] 0 pages HighMem/MovableOnly
[  417.883508][ T2207] 80033 pages reserved
[  418.146139][ T2245] netlink: 'syz.0.7790': attribute type 4 has an invalid length.
[  418.154755][ T2244] netlink: 'syz.0.7790': attribute type 4 has an invalid length.
[  418.268345][ T2254] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7792'.
[  418.280803][ T2254] bridge10: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  418.401084][ T2256] loop4: detected capacity change from 0 to 8192
[  418.668174][ T2269] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.7794'.
[  418.746228][ T2267] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.7794'.
[  419.004514][ T2271] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7797'.
[  419.371257][ T2285] netlink: 60 bytes leftover after parsing attributes in process `syz.7.7800'.
[  419.585008][ T2285] vlan2: entered allmulticast mode
[  419.635291][ T2285] bond0: entered allmulticast mode
[  419.640527][ T2285] bond_slave_0: entered allmulticast mode
[  419.646301][ T2285] bond_slave_1: entered allmulticast mode
[  419.663360][ T2285] bond0: left allmulticast mode
[  419.668297][ T2285] bond_slave_0: left allmulticast mode
[  419.673882][ T2285] bond_slave_1: left allmulticast mode
[  419.910907][ T2298] loop7: detected capacity change from 0 to 164
[  419.956299][ T2298] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  420.070565][ T2307] loop6: detected capacity change from 0 to 2048
[  420.082793][ T2311] FAULT_INJECTION: forcing a failure.
[  420.082793][ T2311] name failslab, interval 1, probability 0, space 0, times 0
[  420.095524][ T2311] CPU: 0 UID: 0 PID: 2311 Comm: syz.0.7811 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  420.095636][ T2311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  420.095648][ T2311] Call Trace:
[  420.095656][ T2311]  <TASK>
[  420.095666][ T2311]  dump_stack_lvl+0xf2/0x150
[  420.095699][ T2311]  dump_stack+0x15/0x1a
[  420.095724][ T2311]  should_fail_ex+0x223/0x230
[  420.095778][ T2311]  should_failslab+0x8f/0xb0
[  420.095809][ T2311]  kmem_cache_alloc_noprof+0x52/0x320
[  420.095844][ T2311]  ? fcntl_getlk+0x3d/0x6c0
[  420.095873][ T2311]  fcntl_getlk+0x3d/0x6c0
[  420.095903][ T2311]  ? file_has_perm+0x329/0x370
[  420.095945][ T2311]  ? should_fail_ex+0xd7/0x230
[  420.096043][ T2311]  do_fcntl+0x6de/0xe10
[  420.096114][ T2311]  __se_sys_fcntl+0xbd/0x1b0
[  420.096153][ T2311]  __x64_sys_fcntl+0x43/0x50
[  420.096230][ T2311]  x64_sys_call+0x2129/0x2dc0
[  420.096271][ T2311]  do_syscall_64+0xc9/0x1c0
[  420.096300][ T2311]  ? clear_bhb_loop+0x55/0xb0
[  420.096329][ T2311]  ? clear_bhb_loop+0x55/0xb0
[  420.096361][ T2311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.096389][ T2311] RIP: 0033:0x7f7f2472cd29
[  420.096407][ T2311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.096429][ T2311] RSP: 002b:00007f7f22d97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  420.096451][ T2311] RAX: ffffffffffffffda RBX: 00007f7f24945fa0 RCX: 00007f7f2472cd29
[  420.096466][ T2311] RDX: 0000000020000040 RSI: 0000000000000005 RDI: 0000000000000005
[  420.096481][ T2311] RBP: 00007f7f22d97090 R08: 0000000000000000 R09: 0000000000000000
[  420.096514][ T2311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  420.096526][ T2311] R13: 0000000000000000 R14: 00007f7f24945fa0 R15: 00007ffc03c6e878
[  420.096547][ T2311]  </TASK>
[  420.102501][ T2307] EXT4-fs: Ignoring removed bh option
[  420.173364][   T29] kauditd_printk_skb: 659 callbacks suppressed
[  420.173382][   T29] audit: type=1400 audit(1737796286.774:52322): avc:  denied  { read } for  pid=2310 comm="syz.0.7811" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  420.356198][ T2307] EXT4-fs mount: 48 callbacks suppressed
[  420.356216][ T2307] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  420.393488][   T29] audit: type=1326 audit(1737796287.026:52323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2306 comm="syz.6.7809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6feb973ce7 code=0x7ffc0000
[  420.417002][   T29] audit: type=1326 audit(1737796287.026:52324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2306 comm="syz.6.7809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6feb918f29 code=0x7ffc0000
[  420.440518][   T29] audit: type=1326 audit(1737796287.026:52325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2306 comm="syz.6.7809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6feb973ce7 code=0x7ffc0000
[  420.464078][   T29] audit: type=1326 audit(1737796287.026:52326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2306 comm="syz.6.7809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6feb918f29 code=0x7ffc0000
[  420.487597][   T29] audit: type=1326 audit(1737796287.026:52327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2306 comm="syz.6.7809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6feb97cd29 code=0x7ffc0000
[  420.511143][   T29] audit: type=1326 audit(1737796287.026:52328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2306 comm="syz.6.7809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6feb97cd29 code=0x7ffc0000
[  420.534767][   T29] audit: type=1326 audit(1737796287.026:52329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2306 comm="syz.6.7809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6feb973ce7 code=0x7ffc0000
[  420.558363][   T29] audit: type=1326 audit(1737796287.026:52330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2306 comm="syz.6.7809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6feb918f29 code=0x7ffc0000
[  420.581820][   T29] audit: type=1326 audit(1737796287.026:52331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2306 comm="syz.6.7809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6feb973ce7 code=0x7ffc0000
[  420.671731][ T2339] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7813'.
[  420.685558][ T2339] bridge14: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  420.720548][ T2343] loop7: detected capacity change from 0 to 256
[  420.720782][ T2345] ref_ctr increment failed for inode: 0x8ab offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465f9a40
[  420.743914][ T2344] uprobe: syz.3.7816:2344 failed to unregister, leaking uprobe
[  420.751697][ T2343] vfat: Unknown parameter 'ÿÿ'
[  420.888581][ T2351] loop7: detected capacity change from 0 to 512
[  420.908047][ T2351] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.7.7819: corrupted xattr block 95: invalid header
[  420.944147][ T2351] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.7819: bg 0: block 7: invalid block bitmap
[  420.960137][ T2351] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  420.969514][ T2351] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2977: inode #11: comm syz.7.7819: corrupted xattr block 95: invalid header
[  420.970534][T25786] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.994003][ T2351] EXT4-fs warning (device loop7): ext4_evict_inode:276: xattr delete (err -117)
[  421.010197][ T2351] EXT4-fs (loop7): 1 orphan inode deleted
[  421.017297][ T2351] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.038125][ T2351] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.063797][ T2363] loop6: detected capacity change from 0 to 164
[  421.075345][ T2363] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  421.296223][ T2372] netlink: 12 bytes leftover after parsing attributes in process `syz.7.7826'.
[  421.309300][ T2372] bridge7: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  421.363009][ T2378] loop6: detected capacity change from 0 to 128
[  421.387915][ T2376] loop7: detected capacity change from 0 to 8192
[  421.793718][ T2384] xt_CT: You must specify a L4 protocol and not use inversions on it
[  421.898958][ T2390] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7831'.
[  421.981790][ T2394] loop4: detected capacity change from 0 to 512
[  421.988800][ T2394] EXT4-fs: Ignoring removed mblk_io_submit option
[  421.995602][ T2394] EXT4-fs (loop4): blocks per group (255) and clusters per group (8192) inconsistent
[  422.066028][ T2402] loop4: detected capacity change from 0 to 164
[  422.072752][ T2402] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  422.365847][ T2412] netlink: 'syz.0.7839': attribute type 1 has an invalid length.
[  422.473953][ T2422] ref_ctr increment failed for inode: 0x883 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881042da4c0
[  422.485859][ T2421] uprobe: syz.0.7844:2421 failed to unregister, leaking uprobe
[  422.532668][ T2426] loop4: detected capacity change from 0 to 1024
[  422.539428][ T2426] EXT4-fs: Ignoring removed orlov option
[  422.545185][ T2426] EXT4-fs: Ignoring removed orlov option
[  422.550848][ T2426] EXT4-fs: Ignoring removed oldalloc option
[  422.557342][ T2426] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  422.568395][ T2426] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  422.579272][ T2426] EXT4-fs (loop4): invalid journal inode
[  422.585116][ T2426] EXT4-fs (loop4): can't get journal size
[  422.603487][ T2426] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  422.808603][T28355] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.856597][ T2442] loop4: detected capacity change from 0 to 164
[  422.889754][ T2445] netlink: 'syz.3.7853': attribute type 1 has an invalid length.
[  422.963461][ T2446] usb usb7: usbfs: process 2446 (syz.0.7851) did not claim interface 0 before use
[  423.457094][ T2464] ref_ctr increment failed for inode: 0xb7a offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465f8fc0
[  423.469021][ T2462] uprobe: syz.6.7859:2462 failed to unregister, leaking uprobe
[  423.503424][ T2471] netlink: 60 bytes leftover after parsing attributes in process `syz.4.7864'.
[  423.522845][ T2471] vlan2: entered allmulticast mode
[  423.528402][ T2471] bond0: entered allmulticast mode
[  423.533646][ T2471] bond_slave_0: entered allmulticast mode
[  423.539522][ T2471] bond_slave_1: entered allmulticast mode
[  423.546238][ T2471] bond0: left allmulticast mode
[  423.549311][ T2472] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7861'.
[  423.551165][ T2471] bond_slave_0: left allmulticast mode
[  423.565808][ T2471] bond_slave_1: left allmulticast mode
[  423.594646][ T2475] loop6: detected capacity change from 0 to 164
[  423.601471][ T2475] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  423.701952][ T2484] loop4: detected capacity change from 0 to 512
[  423.717751][ T2484] EXT4-fs: Ignoring removed i_version option
[  423.723971][ T2484] EXT4-fs: Ignoring removed mblk_io_submit option
[  423.747426][ T2484] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  423.781758][ T2494] netlink: 'syz.0.7868': attribute type 1 has an invalid length.
[  423.799553][ T2484] EXT4-fs (loop4): 1 truncate cleaned up
[  423.816209][ T2484] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  424.207925][ T2587] ref_ctr increment failed for inode: 0x8cc offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881465f9a40
[  424.221190][ T2585] uprobe: syz.0.7875:2585 failed to unregister, leaking uprobe
[  424.302856][ T2603] netlink: 60 bytes leftover after parsing attributes in process `syz.0.7876'.
[  424.324931][ T2603] vlan0: entered allmulticast mode
[  424.330680][ T2603] bond0: entered allmulticast mode
[  424.335983][ T2603] bond_slave_0: entered allmulticast mode
[  424.341779][ T2603] bond_slave_1: entered allmulticast mode
[  424.361567][ T2603] bond0: left allmulticast mode
[  424.366578][ T2603] bond_slave_0: left allmulticast mode
[  424.372149][ T2603] bond_slave_1: left allmulticast mode
[  424.465900][ T2628] netlink: 'syz.3.7879': attribute type 1 has an invalid length.
[  424.466371][T28355] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  424.544588][ T2623] loop7: detected capacity change from 0 to 8192
[  424.829058][ T2651] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.7877'.
[  424.842089][ T2649] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.7877'.
[  424.986309][ T2666] netlink: 'syz.6.7893': attribute type 1 has an invalid length.
[  425.447873][ T2679] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.7892'.
[  425.545397][ T2675] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.7892'.
[  425.743872][ T2686] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7899'.
[  425.763590][ T2690] loop6: detected capacity change from 0 to 164
[  425.771929][ T2690] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  425.909297][   T29] kauditd_printk_skb: 1046 callbacks suppressed
[  425.909314][   T29] audit: type=1326 audit(1737796292.194:53378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  425.939419][   T29] audit: type=1326 audit(1737796292.194:53379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  425.994401][   T29] audit: type=1326 audit(1737796292.194:53380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  426.017997][   T29] audit: type=1326 audit(1737796292.194:53381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  426.044036][   T29] audit: type=1326 audit(1737796292.194:53382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  426.067633][   T29] audit: type=1326 audit(1737796292.250:53383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  426.091168][   T29] audit: type=1326 audit(1737796292.250:53384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  426.114798][   T29] audit: type=1326 audit(1737796292.250:53385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  426.138374][   T29] audit: type=1326 audit(1737796292.250:53386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  426.161787][   T29] audit: type=1326 audit(1737796292.250:53387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2693 comm="syz.0.7903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2472cd29 code=0x7ffc0000
[  426.187667][ T2698] netlink: 12 bytes leftover after parsing attributes in process `syz.7.7905'.
[  426.200674][ T2702] netlink: 'syz.3.7904': attribute type 1 has an invalid length.
[  426.208938][ T2698] bridge8: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  426.392508][ T2727] loop7: detected capacity change from 0 to 512
[  426.392601][ T2726] netlink: 'syz.6.7913': attribute type 1 has an invalid length.
[  426.399246][ T2727] EXT4-fs: Ignoring removed nobh option
[  426.413121][ T2727] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  426.421245][ T2727] EXT4-fs (loop7): orphan cleanup on readonly fs
[  426.424969][ T2726] loop6: detected capacity change from 0 to 2048
[  426.428120][ T2727] EXT4-fs error (device loop7): ext4_acquire_dquot:6927: comm syz.7.7914: Failed to acquire dquot type 1
[  426.434895][ T2726] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  426.446161][ T2727] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.7914: bg 0: block 40: padding at end of block bitmap is not set
[  426.466381][ T2727] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  426.475623][ T2727] EXT4-fs (loop7): 1 truncate cleaned up
[  426.481656][ T2727] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  426.492879][ T2731] loop6: detected capacity change from 0 to 1024
[  426.500941][ T2731] EXT4-fs: Ignoring removed orlov option
[  426.501393][ T2727] xt_CT: You must specify a L4 protocol and not use inversions on it
[  426.506676][ T2731] EXT4-fs: Ignoring removed orlov option
[  426.520626][ T2731] EXT4-fs: Ignoring removed oldalloc option
[  426.527043][ T2731] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  426.538104][ T2731] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  426.548893][ T2731] EXT4-fs (loop6): invalid journal inode
[  426.554623][ T2731] EXT4-fs (loop6): can't get journal size
[  426.561854][ T2731] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  426.601185][T26140] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.657223][ T2735] loop7: detected capacity change from 0 to 8192
[  426.791261][T25786] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.804346][ T2742] bridge11: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  426.840560][ T2744] netlink: 'syz.6.7919': attribute type 1 has an invalid length.
[  426.902918][ T2752] loop6: detected capacity change from 0 to 164
[  426.909914][ T2752] iso9660: Unknown parameter '00000000000000000000000ÿÿÿÿÿÿÿÿ'
[  426.953234][ T2740] ==================================================================
[  426.961368][ T2740] BUG: KCSAN: data-race in mark_buffer_dirty_inode / sync_mapping_buffers
[  426.969908][ T2740] 
[  426.972247][ T2740] write to 0xffff888116f9ec20 of 8 bytes by task 2737 on cpu 0:
[  426.979917][ T2740]  sync_mapping_buffers+0x159/0x7c0
[  426.985150][ T2740]  fat_file_fsync+0xa7/0x100
[  426.989773][ T2740]  vfs_fsync_range+0x116/0x130
[  426.994563][ T2740]  generic_file_write_iter+0x185/0x1c0
[  427.000044][ T2740]  iter_file_splice_write+0x5f1/0x980
[  427.005433][ T2740]  direct_splice_actor+0x160/0x2c0
[  427.010579][ T2740]  splice_direct_to_actor+0x302/0x670
[  427.015985][ T2740]  do_splice_direct+0xd7/0x150
[  427.020781][ T2740]  do_sendfile+0x398/0x660
[  427.025233][ T2740]  __x64_sys_sendfile64+0x110/0x150
[  427.030472][ T2740]  x64_sys_call+0xfbd/0x2dc0
[  427.035191][ T2740]  do_syscall_64+0xc9/0x1c0
[  427.039731][ T2740]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.045666][ T2740] 
[  427.048017][ T2740] read to 0xffff888116f9ec20 of 8 bytes by task 2740 on cpu 1:
[  427.055582][ T2740]  mark_buffer_dirty_inode+0x96/0x1c0
[  427.060999][ T2740]  fat16_ent_put+0x4f/0x60
[  427.065447][ T2740]  fat_ent_write+0x66/0xe0
[  427.069896][ T2740]  fat_chain_add+0x15f/0x400
[  427.074528][ T2740]  fat_get_block+0x46b/0x5e0
[  427.079157][ T2740]  __block_write_begin_int+0x417/0xfa0
[  427.084650][ T2740]  cont_write_begin+0x546/0x860
[  427.089529][ T2740]  fat_write_begin+0x51/0xe0
[  427.094242][ T2740]  generic_perform_write+0x1a8/0x4a0
[  427.099559][ T2740]  __generic_file_write_iter+0xa1/0x120
[  427.105125][ T2740]  generic_file_write_iter+0x77/0x1c0
[  427.110518][ T2740]  vfs_write+0x77b/0x920
[  427.114779][ T2740]  ksys_write+0xe8/0x1b0
[  427.119055][ T2740]  __x64_sys_write+0x42/0x50
[  427.123759][ T2740]  x64_sys_call+0x287e/0x2dc0
[  427.128588][ T2740]  do_syscall_64+0xc9/0x1c0
[  427.133122][ T2740]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.139053][ T2740] 
[  427.141386][ T2740] value changed: 0xffff88811983ec08 -> 0x0000000000000000
[  427.148505][ T2740] 
[  427.150839][ T2740] Reported by Kernel Concurrency Sanitizer on:
[  427.157015][ T2740] CPU: 1 UID: 0 PID: 2740 Comm: syz.7.7916 Not tainted 6.13.0-syzkaller-07078-gb46c89c08f41 #0
[  427.167369][ T2740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  427.177446][ T2740] ==================================================================