last executing test programs:

7.665296333s ago: executing program 4 (id=291):
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, 0x0, 0x40000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
unshare(0x64000600)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r5 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r5, 0x0, 0x0)
r6 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000080), 0x2, 0x0)
write$cgroup_freezer_state(r6, &(0x7f00000000c0)='THAWED\x00', 0x7)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$PIO_UNIMAP(r7, 0x4b67, &(0x7f00000005c0)={0x2, &(0x7f0000000580)=[{0x5, 0x3}, {0xa1}]})
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x4f0, 0x340, 0x25, 0x148, 0x0, 0x60, 0x458, 0x2a8, 0x2a8, 0x458, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x8000, 'syz0\x00', {0x481c}}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x550)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x101000)

6.328655927s ago: executing program 4 (id=299):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
syz_open_dev$usbfs(&(0x7f0000000180), 0x2, 0x200000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x4004944)
sendmsg$NFT_BATCH(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
r3 = gettid()
r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
read$ptp(r4, 0x0, 0x0)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r5=>0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(r6, &(0x7f0000000000)='map_files\x00')
timer_settime(r5, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
pread64(r8, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)
r9 = dup(0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000019240)='macvlan0\x00', 0x10)
write$P9_RLERRORu(r9, &(0x7f00000000c0)=ANY=[@ANYBLOB='S\x00\x00\x00\a\x00', @ANYBLOB="fe4cecb210"], 0x53)
memfd_create(&(0x7f0000000ac0)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800000, &(0x7f0000019200)=ANY=[@ANYBLOB='{\x00\x00\x00\x00\x00\x00\x00,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno', @ANYBLOB])
bpf$MAP_CREATE(0x0, 0x0, 0x48)
modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0x100000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_read_part_table(0x104f, &(0x7f0000001dc0)="$eJzsz7sNwkAQBNA5/JEJ6IGm6AcHtEJACyR0RAcYnX0BDSCE9F6wq52b5MJP3fd1dkmpe0qGJY9Sr/6jdaitea1k17JlyJCpP16nrp6v7TVl3Paz1VqceZ3nfrx0pYUlp9u3/wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/+AdAAD//zvjCaY=")

5.433576333s ago: executing program 4 (id=307):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0xb1e3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r3, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000180)=[{0x28, 0x0, 0x73, 0xfffff034}, {0x6, 0x0, 0x2, 0xffffffff}]}, 0x10)
r4 = socket$inet(0x2, 0x3, 0x6)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000140)='xfrm0\x00', 0x10)
sendto$inet(r4, 0x0, 0x0, 0x24000080, &(0x7f0000000000)={0x2, 0x5e22, @rand_addr=0x64010101}, 0x10)
fallocate(r2, 0x3, 0x9, 0x10000)
r5 = socket$inet(0x2, 0x3, 0x8)
setsockopt$inet_int(r5, 0x0, 0x5, &(0x7f0000000080)=0x7, 0x4)
r6 = socket$inet(0x2, 0x3, 0x6)
r7 = dup3(r5, r6, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r8 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x30046, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r8)
setsockopt$inet_int(r7, 0x0, 0x5, &(0x7f0000000080)=0x7, 0x4)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r9, &(0x7f0000000480)={0x0, 0x4000, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, 0x0, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)
sendmsg$NL80211_CMD_SET_CQM(r7, 0x0, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="0110040004e80200040034801400030076657468315f746f5f626f6e64000000"], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

5.104808199s ago: executing program 4 (id=311):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @xfrm={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x68}}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000580)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "b80423", 0x28, 0x0, 0x0, @empty, @local, {[@dstopts={0x0, 0x4, '\x00', [@calipso={0x7, 0x18, {0x1, 0x4, 0x3, 0x9, [0x3, 0x800]}}, @padn, @ra]}]}}}}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a5"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x3a)
r4 = dup(r3)
bind$unix(r4, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e)
bind$isdn_base(r4, &(0x7f0000000780)={0x22, 0x10, 0xe0, 0x5e, 0x7}, 0x6)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r5, &(0x7f0000000240), 0xfffffecc)
ioctl$TIOCSWINSZ(r5, 0x5414, &(0x7f0000000000)={0xff80, 0x5, 0x8, 0xc})
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file1\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x2f0, &(0x7f0000000880)="$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")
r6 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
setsockopt(r6, 0x81a, 0xaa1, &(0x7f00000004c0)="60c1c99f2ce08836a799c28dd67f5b249ade07bca06c920b8cf3ff185f81b7a2812d74fde3acbb1719de27c13cfd108c1cf8b209ad7ec1fe2215b2344e7671c00cfc055e257799a4daf35a900567", 0x4e)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x0, 0x0)
setsockopt$MRT6_FLUSH(r9, 0x29, 0xd4, &(0x7f0000000680), 0x4)
preadv(r9, &(0x7f00000015c0)=[{&(0x7f0000001600)=""/4094, 0xffe}], 0x1, 0xf0, 0xd215)
sendfile(r6, r6, 0x0, 0x800000009)

3.216251302s ago: executing program 3 (id=329):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @xfrm={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x68}}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000580)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "b80423", 0x28, 0x0, 0x0, @empty, @local, {[@dstopts={0x0, 0x4, '\x00', [@calipso={0x7, 0x18, {0x1, 0x4, 0x3, 0x9, [0x3, 0x800]}}, @padn, @ra]}]}}}}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a5"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x3a)
r4 = dup(r3)
bind$unix(r4, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e)
bind$isdn_base(r4, &(0x7f0000000780)={0x22, 0x10, 0xe0, 0x5e, 0x7}, 0x6)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r5, &(0x7f0000000240), 0xfffffecc)
ioctl$TIOCSWINSZ(r5, 0x5414, &(0x7f0000000000)={0xff80, 0x5, 0x8, 0xc})
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file1\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x2f0, &(0x7f0000000880)="$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")
r6 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
setsockopt(r6, 0x81a, 0xaa1, &(0x7f00000004c0)="60c1c99f2ce08836a799c28dd67f5b249ade07bca06c920b8cf3ff185f81b7a2812d74fde3acbb1719de27c13cfd108c1cf8b209ad7ec1fe2215b2344e7671c00cfc055e257799a4daf35a900567", 0x4e)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x0, 0x0)
setsockopt$MRT6_FLUSH(r9, 0x29, 0xd4, &(0x7f0000000680), 0x4)
preadv(r9, &(0x7f00000015c0)=[{&(0x7f0000001600)=""/4094, 0xffe}], 0x1, 0xf0, 0xd215)
sendfile(r6, r6, 0x0, 0x800000009)

3.040486336s ago: executing program 4 (id=321):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xf)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x4000)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x4002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x902)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file1\x00', 0x0, &(0x7f0000000200)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@usrjquota}, {@errors_remount}, {@dioread_lock}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@mblk_io_submit}, {@minixdf}, {@barrier_val}, {@nombcache}, {}]}, 0x45, 0x7b6, &(0x7f0000001140)="$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")
r2 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000000000), 0x4)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000)=0xfffffffc, 0x4)
fspick(0xffffffffffffff9c, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xfff3}}}, 0x24}}, 0x0)

2.885820578s ago: executing program 0 (id=323):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000140)={0xc8, 0x0, 0x101, 0x70bd2c, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x100}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@remote}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@loopback}]}, @IPVS_CMD_ATTR_DAEMON={0x60, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x64010102}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'hsr0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_bridge\x00'}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x80}, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7da, &(0x7f0000000fc0)="$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")
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
sendmsg$key(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x2, 0x7, 0x2, 0x6, 0x7, 0x0, 0x70bd29, 0x25dfdbfd, [@sadb_address={0x5, 0x17, 0x33, 0x20, 0x0, @in6={0xa, 0x4e21, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xf}}]}, 0x38}}, 0x800)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000180)={'syztnl0\x00', &(0x7f0000000240)={'syztnl0\x00', <r4=>0x0, 0x4, 0x80, 0x8, 0x9eea, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @remote, 0x80, 0x17fc8, 0x3, 0x10}})
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000780)={{{@in6, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@multicast1}, 0x0, @in6=@local}}, &(0x7f00000005c0)=0xe8)
setsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000880)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@private=0xa010101, 0x4e23, 0x2, 0x4e24, 0x0, 0xa, 0xa0, 0x20, 0x6, r4, r5}, {0xa, 0x5, 0x7, 0x44, 0x5, 0x446, 0x0, 0x19}, {0x5, 0xffffffffffffffff, 0x9, 0x2}, 0xffff1bc3, 0x6e6bbe, 0x0, 0x0, 0x2}, {{@in=@rand_addr=0x64010100, 0x4d6, 0x33}, 0x4cc4898f3ccf8dbf, @in=@loopback, 0xb, 0x0, 0x0, 0x6, 0x81, 0xfffff6eb, 0x2f2}}, 0xe8)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000380), &(0x7f00000003c0)=0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB, @ANYRES32, @ANYRESOCT=0x0, @ANYBLOB="170d08c2925db236e1de576f08c6da8502a70521298a000b405947058a309a0b89162be866a16f3eaf89e62c586cf2c1"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r2}, 0x94)
gettid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f0000000300)=0x2)
ioctl$PPPIOCSACTIVE(r6, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
read(r6, 0x0, 0x0)

2.772999291s ago: executing program 2 (id=326):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
syz_open_dev$usbfs(&(0x7f0000000180), 0x2, 0x200000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x4004944)
sendmsg$NFT_BATCH(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
r3 = gettid()
r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
read$ptp(r4, 0x0, 0x0)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r5=>0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(r6, &(0x7f0000000000)='map_files\x00')
timer_settime(r5, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
pread64(r8, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)
r9 = dup(0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000019240)='macvlan0\x00', 0x10)
write$P9_RLERRORu(r9, &(0x7f00000000c0)=ANY=[@ANYBLOB='S\x00\x00\x00\a\x00', @ANYBLOB="fe4cecb210"], 0x53)
memfd_create(&(0x7f0000000ac0)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800000, &(0x7f0000019200)=ANY=[@ANYBLOB='{\x00\x00\x00\x00\x00\x00\x00,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno', @ANYBLOB])
bpf$MAP_CREATE(0x0, 0x0, 0x48)
modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0x100000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_read_part_table(0x104f, &(0x7f0000001dc0)="$eJzsz7sNwkAQBNA5/JEJ6IGm6AcHtEJACyR0RAcYnX0BDSCE9F6wq52b5MJP3fd1dkmpe0qGJY9Sr/6jdaitea1k17JlyJCpP16nrp6v7TVl3Paz1VqceZ3nfrx0pYUlp9u3/wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/+AdAAD//zvjCaY=")

2.574597344s ago: executing program 0 (id=328):
r0 = semget$private(0x0, 0x4000000009, 0x0)
semctl$SEM_STAT_ANY(r0, 0x1, 0x14, &(0x7f0000000180)=""/15)
semop(r0, &(0x7f0000000140)=[{0x0, 0xffff}], 0x1)
semop(r0, &(0x7f00000000c0)=[{0x0, 0x8, 0x1000}, {0x1, 0x3}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000980), 0x0, 0x2f, 0xe8034000, 0x0, 0x0, 0x0, 0x0, 0x5dc}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x8008, &(0x7f0000000800)=ANY=[@ANYBLOB="03000000000000000b0000006e6f3dcdbe665b58aa7c6b640ed290d2226bda4175af1928e3035f709686f3eda60481f9eabaa8e6cae9d75d5f8b3fd996f2ebb88f878e8a1827fe34bdee419cf9358bb90a36e12d17763f021e755a2050f8d72ee41720a08c403829baac5a2c99457b8838a4665db448984f0e6b79c3736b6c0c8ca0ab7d1c76e725c30c680c0100ccd0b7a13e9399a4ac7545ac5e84458be06f43015f58a5c69b70bfe74c19c9fa8bc6eb2a58761cea5afd4e0e76d56ad7a125c10ac43e33c6dd44e1121d7a44738e7e8985cb6c533215c2f2c5fb52b14beb9ef1", @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6e6f78617474722c6f626a5f747970653d2b002c736d61636b6673726f6f743d5c5c2c646f6e745f6d6561737572652c6673757569643d61313833566165f62d003932612d623230392d376662632d38326238613a64362c00"])
perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x1, @perf_bp={0x0}, 0x0, 0x101, 0x0, 0x0, 0xfffffffffff7bbfe, 0x4, 0xfffd, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f2, &(0x7f0000000080))
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002a04000000000000850000000100000095"], 0x0, 0x8000, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x8, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000007c0)=@newtfilter={0x48, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r6, {0x0, 0xd}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x14}}]}, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff)

2.410127317s ago: executing program 0 (id=331):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8000000150081054e81f782db44b9040a1d3b020a000000040000a11800020000e9400084150e1208000f0100810401a80016ea1f0006400303000803600cfab94dcf5c0461c1d67f6e94007134cf6ee08002a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad9561b4a29c828f6a3aa2fcf72baa7ea67e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a753916647f616b762439deec51", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x4000)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x1, 0x4, 0x17fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0xc08, 0x3, 0x468, 0x0, 0x5002004a, 0xb, 0x310, 0xea13, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'vcan0\x00', {}, {0xff}, 0x5c, 0x2, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}, {}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {}, {}, {0x0, 0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x40}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4c8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000140)=ANY=[@ANYRES32=r0], &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000a00)={'batadv_slave_1\x00', <r7=>0x0})
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004cc0)={0x34, r6, 0x6a98047402e98331, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x34}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_io_uring_setup(0x79c8, 0x0, 0x0, 0x0)
r10 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r10}, &(0x7f0000bbdffc)=<r11=>0x0)
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timer_getoverrun(r11)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)
sendmsg$DEVLINK_CMD_RATE_DEL(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r9, @ANYBLOB="0100cd7881a9b45dea5e54"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r5)
sendmsg$NL80211_CMD_DEL_PMKSA(r8, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x54, r12, 0x800, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x3ff, 0x61}}}}, [@NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x5}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_PMKID={0x14, 0x55, "481c1a42272721b76f5267ea7009d278"}]}, 0x54}, 0x1, 0x0, 0x0, 0x20040044}, 0x4008000)

2.332227708s ago: executing program 3 (id=333):
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x10, &(0x7f0000000040)={[{@usrjquota}]}, 0x1, 0x3e7, &(0x7f0000000480)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
futex(0x0, 0xc, 0x1, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='sched_switch\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
close(0x3)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000019000100000000000000000002"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendto$inet6(r3, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)
write(r1, &(0x7f0000000740)="cc", 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7fffeffd)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x20, 0xb, &(0x7f0000000180)=ANY=[@ANYRESHEX], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
openat(r1, &(0x7f0000000300)='./bus/file0\x00', 0xa4001, 0x0)
sync()
mount$9p_unix(&(0x7f0000000000)='\x00', &(0x7f0000000040)='.\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=unix'])
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f00000007c0), 0x4)
keyctl$read(0xb, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
flock(0xffffffffffffffff, 0x5)
sync()
lstat(0x0, &(0x7f0000000340))
bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x11, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000b8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x6)

2.331157748s ago: executing program 1 (id=346):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x800}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_procfs(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x7, 0x7ffc1ff3}]})
timer_create(0x0, 0x0, &(0x7f0000000240)=<r4=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000180)='kfree\x00', r5}, 0x18)
syz_emit_ethernet(0x4a, &(0x7f0000000340)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @local, @mcast1, {[], {{0x0, 0x4e21, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x3, 0x0, 0x6}}}}}}}, 0x0)
timer_delete(r4)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)=ANY=[])
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400), 0xff, 0x23f, &(0x7f0000000540)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000002b40), 0x24, 0x0)
eventfd2(0xce77, 0x800)
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x8000)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000004c0)='xprtrdma_cb_setup\x00', r8, 0x0, 0x59a}, 0x18)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f00000083c0)={{0x1}})

2.25044832s ago: executing program 1 (id=334):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000001000/0x3000)=nil)
r1 = syz_open_procfs(0xffffffffffffffff, 0x0)
preadv(r1, &(0x7f0000010440)=[{&(0x7f0000000040)=""/160, 0xa0}], 0x1, 0xe, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(r3, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000004c0)=ANY=[@ANYBLOB="02"], 0xfe44, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r8}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r9, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r10, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

1.740970139s ago: executing program 2 (id=335):
prctl$PR_SET_SECCOMP(0x3f, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
bind$can_raw(0xffffffffffffffff, &(0x7f00000005c0), 0x10)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x3f, &(0x7f0000001880)=0xd1, 0x4)
read(0xffffffffffffffff, &(0x7f00000027c0)=""/4073, 0xfe9)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
socket(0x11, 0x800000003, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000580)="39000000140081ae50003c00fbff008311001f9f660fcf065c05acb612f691f3bd3508abca1be6eeb89c44ebb37358582bb8b7d553b4e92155", 0x39}], 0x1}, 0x0)
recvmsg(r2, &(0x7f0000001c80)={0x0, 0x0, 0x0}, 0x2000)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r3}, 0x10)
r4 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_access(r4, &(0x7f0000000400)=ANY=[@ANYBLOB='system_u:object_r::ing_exec_t:s0 unconfined 0'], 0x41)
setsockopt$CAN_RAW_RECV_OWN_MSGS(0xffffffffffffffff, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4)
sendmsg$can_raw(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000780), 0x10, &(0x7f0000000200)={&(0x7f00000007c0)=@can={{0x2, 0x0, 0x1, 0x1}, 0x1, 0x2, 0x0, 0x0, "f97003bb750e5566"}, 0x10}}, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))
r5 = perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000180), &(0x7f00000001c0)=r5}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x12)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

1.483540853s ago: executing program 0 (id=336):
syz_emit_ethernet(0x4a, &(0x7f0000000340)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @local, @mcast1, {[], {{0x0, 0x4e21, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x3, 0x0, 0x6}}}}}}}, 0x0)

1.466439944s ago: executing program 2 (id=337):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x2000c0, &(0x7f00000005c0), 0x1, 0x54e, &(0x7f0000000600)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x0, 0xa20, 0x8000c64)
write$binfmt_elf64(r0, 0x0, 0x478)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x7, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x3ff}, 0x0, 0x10000, 0x0, 0x2, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xe, 0xffffffffffffffff, 0x2)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c010000100013070000000000000000ffffffff000000000000000000000000ff60000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000033000000ff0100000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000fdffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000006a000000000000004c001400636d61632861657329"], 0x13c}}, 0x0)
r2 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r2, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xfffffffe, 0x3ff}}, './file0\x00'})
r3 = socket(0x2a, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r4}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r6 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r6, 0x0)
write$selinux_load(r5, &(0x7f0000000000)=ANY=[], 0x44f0)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r8=>0x0})
sendto$packet(r7, &(0x7f0000000240)="f2435f0100088000000000850800", 0xe, 0x0, &(0x7f0000000200)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @link_local}, 0x14)
r9 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000440)=0x8000, 0x4)
sendmsg$nl_route(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r8, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000080)={'dummy0\x00'})
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0xe7b, 0x0, 0x2)

863.639155ms ago: executing program 2 (id=338):
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0xfff1, &(0x7f0000000240)={&(0x7f0000000800)=@newqdisc={0x60, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x6, 0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_QUANTUM={0x8}]}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x9, 0xc, 0xc89f, 0xffff5ef5, 0x0, 0x19, 0x3}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x803}, 0x20004004)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="7961000000a00bfef5007e00000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, &(0x7f0000000f40)={'filter\x00', 0x10, 0x4, 0x3f0, 0x110, 0x0, 0x0, 0x308, 0x308, 0x308, 0x4, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="e5fce0c960bc", @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x1e}, 0xf, 0xffffffff}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x2}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@remote, @broadcast, @loopback, 0x1, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x12, &(0x7f0000000700)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="000000000000000066000000020000001800000000000000000000000000000095000000000000001801000020206125000000000020f8ff00000000bfa100000000ffffb702000008000000b50a0000000000008500000006000d0095000000000000008b3b17b0e76a1fe436d3590809914d04bc2463f67e511b4e051c166ad36f29f22f82113a5a78a364ae73d84000a87a8016481bd6cabdaa2d07"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r6}, 0x18)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
creat(&(0x7f0000000580)='./file0\x00', 0x30)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000000380))
timer_settime(0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x42, 0x1ff)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r7, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r7, &(0x7f0000000200)=[{&(0x7f00000000c0)}], 0x1)
ioctl$sock_SIOCINQ(r7, 0x541b, &(0x7f0000000000))
bind$llc(r0, &(0x7f0000000140)={0x1a, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000), 0xffffff6a)
sendfile(r0, 0xffffffffffffffff, 0x0, 0xffffffff000)

863.377905ms ago: executing program 3 (id=340):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x800}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_procfs(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x7, 0x7ffc1ff3}]})
timer_create(0x0, 0x0, &(0x7f0000000240))

854.625555ms ago: executing program 0 (id=352):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
close(r0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_0\x00', <r3=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f00000001c0)=0x100, 0x4)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, 0x0, 0x0)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f0000000440)=0x400, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000400)={'batadv_slave_1\x00', <r6=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x0, r6}, 0x10)
bind$xdp(r1, &(0x7f0000000240)={0x2c, 0x1, r3, 0x1000000, r4}, 0x10)
r7 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000100), 0x800086, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r7}})

854.215835ms ago: executing program 1 (id=341):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0x6}, 0x18)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff5300000080039503230"], 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x70, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

803.844836ms ago: executing program 3 (id=343):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@known='system.posix_acl_access\x00')

757.757446ms ago: executing program 3 (id=345):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x54, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x12600, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0x9, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180100000100a706000000000030b200850000007b00000095f98e2c3677cd4a02901234192412c24039cfbedca1e8e550db01e2e3bf44dfc5f09e531dd84d451c7f09ba6acb9d3b16ee00212121172b7e13b43a37d94214cd50d28524e11cfd8b2a4ab74e9ee2f4032318ae62e0920202df97a7e490b46fddb6e059d87bdb89875fc9c51f1a499bdd51ff2bd5b2e491d542da0a1d1e5553095d8f6c9809e6d9ccfdbf946ffbc95aed6cb729c70124c360dda42148ccdbea5a34b17762cc112b26be2c2dee8b47a9c0a62c3c9de8102c5409b94d3cd2d77d937371a7b32b1705a6b2574a98ad385206e4752f3b8c075618447f"], &(0x7f0000000300)='syzkaller\x00', 0x7fffffff, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
keyctl$chown(0x4, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000160a0500000000000000000002000000300003802c00038004000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a30"], 0x84}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
r2 = socket(0x18, 0x0, 0x0)
connect$pppoe(r2, &(0x7f0000000080)={0x18, 0x0, {0x4, @random="45e3f364e554", 'sit0\x00'}}, 0x1e)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000025940000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c0002400000000000000010140001800c0001"], 0x118}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYRESHEX=0x0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
inotify_init()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18)
syz_mount_image$ext4(&(0x7f0000000680)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000740)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}], [{@dont_hash}]}, 0x3, 0x434, &(0x7f0000000d80)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f0000001400)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)

756.786626ms ago: executing program 1 (id=357):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0x6}, 0x18)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030"], 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x70, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

749.344336ms ago: executing program 2 (id=347):
r0 = semget$private(0x0, 0x4000000009, 0x0)
semctl$SEM_STAT_ANY(r0, 0x1, 0x14, &(0x7f0000000180)=""/15)
semop(r0, &(0x7f0000000140)=[{0x0, 0xffff}], 0x1)
semop(r0, &(0x7f00000000c0)=[{0x0, 0x8, 0x1000}, {0x1, 0x3}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000980), 0x0, 0x2f, 0xe8034000, 0x0, 0x0, 0x0, 0x0, 0x5dc}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x8008, &(0x7f0000000800)=ANY=[@ANYBLOB="03000000000000000b0000006e6f3dcdbe665b58aa7c6b640ed290d2226bda4175af1928e3035f709686f3eda60481f9eabaa8e6cae9d75d5f8b3fd996f2ebb88f878e8a1827fe34bdee419cf9358bb90a36e12d17763f021e755a2050f8d72ee41720a08c403829baac5a2c99457b8838a4665db448984f0e6b79c3736b6c0c8ca0ab7d1c76e725c30c680c0100ccd0b7a13e9399a4ac7545ac5e84458be06f43015f58a5c69b70bfe74c19c9fa8bc6eb2a58761cea5afd4e0e76d56ad7a125c10ac43e33c6dd44e1121d7a44738e7e8985cb6c533215c2f2c5fb52b14beb9ef1", @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6e6f78617474722c6f626a5f747970653d2b002c736d61636b6673726f6f743d5c5c2c646f6e745f6d6561737572652c6673757569643d61313833566165f62d003932612d623230392d376662632d38326238613a64362c00"])
perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x1, @perf_bp={0x0}, 0x0, 0x101, 0x0, 0x0, 0xfffffffffff7bbfe, 0x4, 0xfffd, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f2, &(0x7f0000000080))
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002a04000000000000850000000100000095"], 0x0, 0x8000, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x8, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000007c0)=@newtfilter={0x48, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r6, {0x0, 0xd}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x14}}]}, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff)

680.263038ms ago: executing program 1 (id=348):
r0 = socket$tipc(0x1e, 0x5, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x4010, r0, 0xd7ca5000)
bind$tipc(r0, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10)
bind$tipc(r1, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
unshare(0x22020400)
r4 = syz_io_uring_setup(0xcd8, &(0x7f0000000200)={0x0, 0x465e, 0x400, 0x3, 0x234}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000300)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_RENAMEAT={0x23, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='./file0\x00'})
io_uring_enter(r4, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
r7 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r7, 0x1, 0x3c, &(0x7f0000000040)={0x200000000000001}, 0x8)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r7, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0)
sendmmsg$inet6(r7, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r7, 0x29, 0x39, 0x0, 0x0)
r8 = socket$inet(0x2, 0x4000000000000001, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
setsockopt$inet_tcp_int(r9, 0x6, 0x8, &(0x7f0000000200)=0x7c, 0x4)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0xfffffffd, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r8, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

494.143781ms ago: executing program 1 (id=349):
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/18, @ANYRES64, @ANYRESDEC, @ANYBLOB='\x00\x00\x00 \x00'/24, @ANYBLOB="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"], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(0x0, &(0x7f00000001c0)='./file0\x00', 0x1809049, 0x0, 0xff, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000040)=@v3, 0x18, 0x0)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], &(0x7f00000002c0)=""/203, 0xfffffffffffffe5f)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
mbind(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4005, &(0x7f0000000c00)=0xb, 0x6, 0x2)
mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000c00)=0xc, 0x6, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = syz_usbip_server_init(0x1)
write$usbip_server(r2, &(0x7f0000000300)=@ret_unlink={{0x4, 0x6, 0x0, 0x3141456f10587752, 0x7}, {0x1}}, 0x30)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
r3 = inotify_init1(0x0)
r4 = inotify_add_watch(r3, &(0x7f0000000200)='.\x00', 0x10000a0)
r5 = dup(r3)
inotify_rm_watch(r5, r4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x3, 0x8, &(0x7f0000000700)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x11}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r6}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r8, 0x800448d2, &(0x7f0000000080)={0x2, &(0x7f0000000400)=[{}, {@fixed}]})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r7, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f0000000680)={'#! ', '', [{}, {0x20, '(\'('}], 0xa, "c236"}, 0xb)
perf_event_open(&(0x7f00000004c0)={0x8, 0x80, 0x0, 0xf, 0x0, 0x0, 0x82, 0x200000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080), 0x9}, 0x18204, 0x0, 0x3, 0x0, 0x0, 0x5338c7af, 0x0, 0x0, 0x1, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

493.738131ms ago: executing program 2 (id=350):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
gettid()
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r1, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0b00000007000000010001004900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000080a7df08f945ac85"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r5, 0x0, &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES32=r6, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
sysinfo(&(0x7f0000000340)=""/193)
sendto$inet6(r4, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000000080)='D', 0x1, 0x4014, 0x0, 0x0)
shutdown(r4, 0x0)
splice(r4, 0x0, r3, 0x0, 0x2, 0x0)
remap_file_pages(&(0x7f000051c000/0x400000)=nil, 0x400d00, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r7, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x8, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c)

493.300721ms ago: executing program 3 (id=351):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8000000150081054e81f782db44b9040a1d3b020a000000040000a11800020000e9400084150e1208000f0100810401a80016ea1f0006400303000803600cfab94dcf5c0461c1d67f6e94007134cf6ee08002a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad9561b4a29c828f6a3aa2fcf72baa7ea67e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a753916647f616b762439deec51", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x4000)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x1, 0x4, 0x17fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0xc08, 0x3, 0x468, 0x0, 0x5002004a, 0xb, 0x310, 0xea13, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'vcan0\x00', {}, {0xff}, 0x5c, 0x2, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}, {}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {}, {}, {0x0, 0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x40}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4c8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000140)=ANY=[@ANYRES32=r0], &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000a00)={'batadv_slave_1\x00', <r7=>0x0})
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004cc0)={0x34, r6, 0x6a98047402e98331, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x34}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_io_uring_setup(0x79c8, 0x0, 0x0, 0x0)
r10 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r10}, &(0x7f0000bbdffc)=<r11=>0x0)
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timer_getoverrun(r11)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)
sendmsg$DEVLINK_CMD_RATE_DEL(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r9, @ANYBLOB="0100cd7881a9b45dea5e54"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r5)
sendmsg$NL80211_CMD_DEL_PMKSA(r8, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x54, r12, 0x800, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x3ff, 0x61}}}}, [@NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x5}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_PMKID={0x14, 0x55, "481c1a42272721b76f5267ea7009d278"}]}, 0x54}, 0x1, 0x0, 0x0, 0x20040044}, 0x4008000)

253.852436ms ago: executing program 4 (id=353):
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x10, &(0x7f0000000040)={[{@usrjquota}]}, 0x1, 0x3e7, &(0x7f0000000480)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
futex(0x0, 0xc, 0x1, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='sched_switch\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
close(0x3)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000019000100000000000000000002"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendto$inet6(r3, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)
write(r1, &(0x7f0000000740)="cc", 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7fffeffd)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x20, 0xb, &(0x7f0000000180)=ANY=[@ANYRESHEX], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
openat(r1, &(0x7f0000000300)='./bus/file0\x00', 0xa4001, 0x0)
sync()
mount$9p_unix(&(0x7f0000000000)='\x00', &(0x7f0000000040)='.\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=unix'])
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f00000007c0), 0x4)
keyctl$read(0xb, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
flock(0xffffffffffffffff, 0x5)
sync()
lstat(0x0, &(0x7f0000000340))
bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x11, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000b8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x6)

0s ago: executing program 0 (id=354):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000001000/0x3000)=nil)
r1 = syz_open_procfs(0xffffffffffffffff, 0x0)
preadv(r1, &(0x7f0000010440)=[{&(0x7f0000000040)=""/160, 0xa0}], 0x1, 0xe, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(r3, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000004c0)=ANY=[@ANYBLOB="02"], 0xfe44, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r8}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r9, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r10, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

kernel console output (not intermixed with test programs):

tdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.856931][ T3488] Zero length message leads to an empty skb
[   39.873070][ T3486] loop2: detected capacity change from 0 to 512
[   39.892981][ T3486] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.893071][ T3486] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   39.896136][ T3486] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3: bg 0: block 328: padding at end of block bitmap is not set
[   39.899249][ T3486] program syz.2.3 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   39.955612][ T3486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.006841][ T3497] loop4: detected capacity change from 0 to 2048
[   40.057172][ T3499] loop2: detected capacity change from 0 to 512
[   40.062500][ T3497] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.102011][ T3499] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   40.102029][ T3499] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   40.102042][ T3499] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   40.108281][ T3495] loop3: detected capacity change from 0 to 8192
[   40.113242][ T3499] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[   40.114385][ T3499] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   40.114430][ T3499] System zones: 0-2, 18-18, 34-35
[   40.115211][ T3499] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.117621][ T3499] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.8: bg 0: block 353: padding at end of block bitmap is not set
[   40.213467][ T3497] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, 
[   40.228679][ T3506] loop0: detected capacity change from 0 to 512
[   40.233777][ T3497] block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   40.290482][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.306529][ T3495] sch_fq: defrate 4294967295 ignored.
[   40.329914][ T3506] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.343164][ T3506] ext4 filesystem being mounted at /0/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.401274][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.402443][ T3506] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #4: comm syz.0.1: corrupted inode contents
[   40.415857][ T3510] netlink: 256 bytes leftover after parsing attributes in process `syz.2.9'.
[   40.442597][ T3506] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #4: comm syz.0.1: mark_inode_dirty error
[   40.456165][ T3506] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #4: comm syz.0.1: corrupted inode contents
[   40.476055][ T3506] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #4: comm syz.0.1: mark_inode_dirty error
[   40.511877][ T3506] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1: Failed to acquire dquot type 1
[   40.526105][ T3518] bond1: entered promiscuous mode
[   40.531254][ T3518] bond1: entered allmulticast mode
[   40.541304][ T3506] syz.0.1 (3506) used greatest stack depth: 10344 bytes left
[   40.542425][ T3522] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(12)
[   40.549320][ T3518] 8021q: adding VLAN 0 to HW filter on device bond1
[   40.555697][ T3522] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   40.555839][ T3522] vhci_hcd vhci_hcd.0: Device attached
[   40.589564][ T3522] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(14)
[   40.596254][ T3522] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   40.604165][ T3522] vhci_hcd vhci_hcd.0: Device attached
[   40.614731][ T3522] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(16)
[   40.621487][ T3522] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   40.629268][ T3522] vhci_hcd vhci_hcd.0: Device attached
[   40.638263][ T3518] bond1 (unregistering): Released all slaves
[   40.647122][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.664181][ T3516] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.675813][ T3522] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   40.705611][ T3522] vhci_hcd vhci_hcd.0: pdev(4) rhport(4) sockfd(20)
[   40.712412][ T3522] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   40.720227][ T3522] vhci_hcd vhci_hcd.0: Device attached
[   40.779697][ T3522] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(22)
[   40.786544][ T3522] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   40.795112][ T3522] vhci_hcd vhci_hcd.0: Device attached
[   40.811787][   T23] usb 9-1: new low-speed USB device number 2 using vhci_hcd
[   40.830162][ T3544] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   40.844872][ T3542] loop2: detected capacity change from 0 to 2048
[   40.870260][ T3522] vhci_hcd vhci_hcd.0: pdev(4) rhport(6) sockfd(24)
[   40.877067][ T3522] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   40.884919][ T3522] vhci_hcd vhci_hcd.0: Device attached
[   40.897720][ T3543] loop3: detected capacity change from 0 to 1024
[   40.909552][ T3524] vhci_hcd: connection reset by peer
[   40.910529][ T3530] vhci_hcd: connection closed
[   40.914976][ T3545] vhci_hcd: connection closed
[   40.915475][ T3526] vhci_hcd: connection closed
[   40.929299][ T3539] vhci_hcd: connection closed
[   40.935874][ T3532] vhci_hcd: connection closed
[   40.941596][ T1707] vhci_hcd: stop threads
[   40.951110][ T1707] vhci_hcd: release socket
[   40.955676][ T1707] vhci_hcd: disconnect device
[   40.977695][ T3543] =======================================================
[   40.977695][ T3543] WARNING: The mand mount option has been deprecated and
[   40.977695][ T3543]          and is ignored by this kernel. Remove the mand
[   40.977695][ T3543]          option from the mount to silence this warning.
[   40.977695][ T3543] =======================================================
[   41.016439][ T1707] vhci_hcd: stop threads
[   41.018362][ T3542] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   41.020994][ T1707] vhci_hcd: release socket
[   41.038116][ T1707] vhci_hcd: disconnect device
[   41.062186][ T3543] EXT4-fs: Ignoring removed nobh option
[   41.068012][ T3543] EXT4-fs: Ignoring removed bh option
[   41.077578][ T1707] vhci_hcd: stop threads
[   41.082734][ T1707] vhci_hcd: release socket
[   41.087464][ T1707] vhci_hcd: disconnect device
[   41.102093][ T1707] vhci_hcd: stop threads
[   41.106528][ T1707] vhci_hcd: release socket
[   41.111344][ T1707] vhci_hcd: disconnect device
[   41.122254][ T1707] vhci_hcd: stop threads
[   41.127138][ T1707] vhci_hcd: release socket
[   41.128982][ T3543] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.131860][ T1707] vhci_hcd: disconnect device
[   41.152920][ T1707] vhci_hcd: stop threads
[   41.157452][ T1707] vhci_hcd: release socket
[   41.162179][ T1707] vhci_hcd: disconnect device
[   41.178038][ T3516] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.297493][ T3552] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   41.326256][ T3552] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 656 with error 28
[   41.339045][ T3552] EXT4-fs (loop2): This should not happen!! Data will be lost
[   41.339045][ T3552] 
[   41.348967][ T3552] EXT4-fs (loop2): Total free blocks count 0
[   41.355215][ T3552] EXT4-fs (loop2): Free/Dirty block details
[   41.361312][ T3552] EXT4-fs (loop2): free_blocks=2415919104
[   41.367231][ T3552] EXT4-fs (loop2): dirty_blocks=672
[   41.372531][ T3552] EXT4-fs (loop2): Block reservation details
[   41.378665][ T3552] EXT4-fs (loop2): i_reserved_data_blocks=42
[   41.457930][ T3537] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.14: Allocating blocks 497-513 which overlap fs metadata
[   41.516298][    C0] hrtimer: interrupt took 27510 ns
[   41.521794][ T3557] loop0: detected capacity change from 0 to 1024
[   41.528796][ T3557] EXT4-fs: Ignoring removed nobh option
[   41.534792][ T3557] EXT4-fs: Ignoring removed bh option
[   41.555033][ T3557] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.575384][ T3559] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   41.608435][ T3536] EXT4-fs (loop3): pa ffff8881040c5000: logic 524, phys. 273, len 15
[   41.616684][ T3536] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[   41.642706][ T3552] syz.2.15 (3552) used greatest stack depth: 10120 bytes left
[   41.661446][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.703521][ T1650] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   41.717559][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.734322][ T3565] netlink: 8 bytes leftover after parsing attributes in process `syz.4.19'.
[   41.770225][ T3516] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.788799][ T3565] netlink: 4 bytes leftover after parsing attributes in process `syz.4.19'.
[   41.810635][ T3571] loop2: detected capacity change from 0 to 512
[   41.829710][ T3571] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   41.838864][ T3571] System zones: 1-12
[   41.845192][ T3571] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.20: error while reading EA inode 32 err=-116
[   41.859196][ T3571] EXT4-fs (loop2): Remounting filesystem read-only
[   41.865789][ T3571] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   41.879039][ T3571] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   41.889691][ T3571] EXT4-fs (loop2): 1 orphan inode deleted
[   41.895962][ T3571] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.964474][ T3516] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.019443][ T3516] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.031255][ T3516] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.043983][ T3516] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.056161][ T3516] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   42.426710][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.578616][ T3591] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   42.606800][ T3593] syz.4.25 uses obsolete (PF_INET,SOCK_PACKET)
[   42.667785][ T3596] loop0: detected capacity change from 0 to 128
[   42.675823][ T3596] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   42.697344][ T3596] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   42.710012][ T3598] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[   42.787077][ T3602] loop0: detected capacity change from 0 to 512
[   42.812921][ T3602] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   42.827357][ T3602] EXT4-fs (loop0): orphan cleanup on readonly fs
[   42.837813][ T3602] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   42.859375][ T3602] EXT4-fs (loop0): Cannot turn on quotas: error -117
[   42.889380][ T3608] loop8: detected capacity change from 0 to 16384
[   42.910770][ T3607] loop3: detected capacity change from 0 to 4096
[   42.998775][ T3607] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.007979][ T3613] netlink: 12 bytes leftover after parsing attributes in process `syz.1.30'.
[   43.021156][ T3613] netlink: 20 bytes leftover after parsing attributes in process `syz.1.30'.
[   43.041451][ T3602] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.27: bg 0: block 40: padding at end of block bitmap is not set
[   43.062792][ T3607] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #15: comm syz.3.29: corrupted inode contents
[   43.076186][ T3602] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   43.085201][ T3610] loop8: detected capacity change from 16384 to 0
[   43.095581][    C0] I/O error, dev loop8, sector 5384 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[   43.122124][ T3607] EXT4-fs (loop3): Remounting filesystem read-only
[   43.139436][ T3602] EXT4-fs (loop0): 1 truncate cleaned up
[   43.163007][   T12] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   43.266618][ T3602] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   43.292432][ T3602] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   43.303551][ T3622] netlink: 8 bytes leftover after parsing attributes in process `wg1'.
[   43.468691][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.803592][ T3640] program syz.4.34 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   43.937278][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.027012][ T3661] loop3: detected capacity change from 0 to 512
[   44.067207][ T3661] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.092352][ T3661] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.125260][ T3666] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   44.125260][ T3666]    program syz.1.36 not setting count and/or reply_len properly
[   44.149903][ T3646] SELinux: ebitmap: truncated map
[   44.156106][ T3646] SELinux: failed to load policy
[   44.171831][   T29] kauditd_printk_skb: 643 callbacks suppressed
[   44.171860][   T29] audit: type=1400 audit(1753365951.514:741): avc:  denied  { write } for  pid=3665 comm="syz.1.36" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   44.201995][   T29] audit: type=1400 audit(1753365951.514:742): avc:  denied  { ioctl } for  pid=3665 comm="syz.1.36" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   44.228400][   T29] audit: type=1400 audit(1753365951.534:743): avc:  denied  { execmem } for  pid=3660 comm="syz.3.35" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   44.248389][   T29] audit: type=1400 audit(1753365951.534:744): avc:  denied  { load_policy } for  pid=3645 comm="syz.0.33" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   44.257437][ T3646] netlink: 20 bytes leftover after parsing attributes in process `syz.0.33'.
[   44.281520][ T3666] SELinux: security_context_str_to_sid () failed with errno=-22
[   44.316710][   T29] audit: type=1400 audit(1753365951.704:745): avc:  denied  { write } for  pid=3668 comm="syz.4.37" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   44.317628][ T3669] lo speed is unknown, defaulting to 1000
[   44.386360][ T3669] lo speed is unknown, defaulting to 1000
[   44.403336][ T3674] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[   44.403336][ T3674] The task syz.1.36 (3674) triggered the difference, watch for misbehavior.
[   44.432257][ T3675] netlink: 16 bytes leftover after parsing attributes in process `syz.3.35'.
[   44.494966][ T3669] lo speed is unknown, defaulting to 1000
[   44.562565][   T29] audit: type=1326 audit(1753365951.934:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3679 comm="syz.2.39" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195bd1e9a9 code=0x7ffc0000
[   44.586639][   T29] audit: type=1326 audit(1753365951.934:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3679 comm="syz.2.39" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195bd1e9a9 code=0x7ffc0000
[   44.610306][   T29] audit: type=1326 audit(1753365951.944:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3679 comm="syz.2.39" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f195bd1e9a9 code=0x7ffc0000
[   44.634212][   T29] audit: type=1326 audit(1753365951.944:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3679 comm="syz.2.39" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195bd1e9a9 code=0x7ffc0000
[   44.657671][   T29] audit: type=1326 audit(1753365951.944:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3679 comm="syz.2.39" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195bd1e9a9 code=0x7ffc0000
[   44.708103][ T3669] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   44.767426][ T3669] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   44.789499][ T3682] netlink: 14 bytes leftover after parsing attributes in process `syz.2.39'.
[   45.032170][ T3682] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   45.045875][ T3682] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   45.057900][ T3682] bond0 (unregistering): Released all slaves
[   45.071507][ T3669] lo speed is unknown, defaulting to 1000
[   45.127599][ T3669] lo speed is unknown, defaulting to 1000
[   45.134193][ T3669] lo speed is unknown, defaulting to 1000
[   45.141856][ T3669] lo speed is unknown, defaulting to 1000
[   45.157678][ T3669] lo speed is unknown, defaulting to 1000
[   45.187331][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.250373][ T3691] loop2: detected capacity change from 0 to 764
[   45.302101][ T3696] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   45.312484][ T3691] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   45.332201][ T3698] xt_CT: You must specify a L4 protocol and not use inversions on it
[   45.454016][ T3701] loop3: detected capacity change from 0 to 4096
[   45.494334][ T3701] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.516594][ T3726] netlink: 'syz.4.45': attribute type 1 has an invalid length.
[   45.545827][ T3717] lo speed is unknown, defaulting to 1000
[   45.552593][ T3724] __nla_validate_parse: 1 callbacks suppressed
[   45.552608][ T3724] netlink: 12 bytes leftover after parsing attributes in process `syz.0.46'.
[   45.552625][ T3724] netlink: 28 bytes leftover after parsing attributes in process `syz.0.46'.
[   45.552644][ T3724] netlink: 12 bytes leftover after parsing attributes in process `syz.0.46'.
[   45.552751][ T3724] netlink: 28 bytes leftover after parsing attributes in process `syz.0.46'.
[   45.552822][ T3724] netlink: 'syz.0.46': attribute type 6 has an invalid length.
[   45.553665][ T3724] netlink: 8 bytes leftover after parsing attributes in process `syz.0.46'.
[   45.692848][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.724006][ T3739] gretap1: entered promiscuous mode
[   45.766386][ T3742] macvlan2: entered promiscuous mode
[   45.771805][ T3742] macvlan2: entered allmulticast mode
[   45.821007][ T3724] lo speed is unknown, defaulting to 1000
[   45.849140][ T3749] loop3: detected capacity change from 0 to 512
[   45.856131][ T3749] EXT4-fs: Ignoring removed nomblk_io_submit option
[   45.891857][   T23] usb 9-1: enqueue for inactive port 0
[   45.904477][   T23] usb 9-1: enqueue for inactive port 0
[   45.916388][ T3749] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.933313][ T3749] ext4 filesystem being mounted at /9/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   46.024903][   T23] vhci_hcd: vhci_device speed not set
[   46.044158][ T3762] netlink: 3 bytes leftover after parsing attributes in process `syz.2.50'.
[   46.053289][ T3762] 0�X���: renamed from caif0
[   46.070841][ T3766] loop1: detected capacity change from 0 to 1024
[   46.072142][ T3766] EXT4-fs: dax option not supported
[   46.107604][ T3762] 0�X���: entered allmulticast mode
[   46.113262][ T3762] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[   46.140043][ T3769] siw: device registration error -23
[   46.243700][ T3781] loop4: detected capacity change from 0 to 1024
[   46.281167][ T3785] netlink: 256 bytes leftover after parsing attributes in process `syz.2.54'.
[   46.302623][ T3781] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.315071][ T3790] pimreg: entered allmulticast mode
[   46.329490][ T3781] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.53: Allocating blocks 385-513 which overlap fs metadata
[   46.353935][ T3790] netlink: 'syz.0.55': attribute type 10 has an invalid length.
[   46.378328][ T3790] team0: Port device dummy0 added
[   46.387919][ T3790] netlink: 'syz.0.55': attribute type 10 has an invalid length.
[   46.407109][ T3790] team0: Port device dummy0 removed
[   46.435164][ T3790] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   46.456550][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.482562][ T3795] bond0: entered promiscuous mode
[   46.487808][ T3795] bond0: entered allmulticast mode
[   46.548036][ T3795] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.561027][ T3795] bond0 (unregistering): Released all slaves
[   46.600468][ T3790] pimreg: left allmulticast mode
[   46.609758][ T1034] lo speed is unknown, defaulting to 1000
[   46.623137][ T3781] netlink: 52 bytes leftover after parsing attributes in process `syz.4.53'.
[   46.625879][ T3780] EXT4-fs (loop4): pa ffff888100557070: logic 16, phys. 129, len 24
[   46.625918][ T3780] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[   46.675890][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.753529][ T3818] netlink: 4 bytes leftover after parsing attributes in process `syz.4.58'.
[   46.762966][ T3822] loop2: detected capacity change from 0 to 128
[   46.796366][ T3818] netlink: 'syz.4.58': attribute type 10 has an invalid length.
[   46.823139][ T3818] team0: Port device dummy0 added
[   46.843298][ T3818] netlink: 'syz.4.58': attribute type 10 has an invalid length.
[   46.873750][ T3818] team0: Port device dummy0 removed
[   46.886490][ T3818] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   47.084630][ T3849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.61'.
[   47.254036][ T3862] mmap: syz.1.63 (3862) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   47.377031][ T3864] loop2: detected capacity change from 0 to 8192
[   47.408188][ T3868] loop3: detected capacity change from 0 to 1024
[   47.454119][ T3859] loop1: detected capacity change from 0 to 128
[   47.481340][ T3859] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   47.489507][ T3859] FAT-fs (loop1): Filesystem has been set read-only
[   47.490034][ T3868] loop3: detected capacity change from 0 to 2048
[   47.501914][ T3859] syz.1.63: attempt to access beyond end of device
[   47.501914][ T3859] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   47.534605][ T3859] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   47.542824][ T3859] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   47.553481][ T3859] syz.1.63: attempt to access beyond end of device
[   47.553481][ T3859] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   47.567823][ T3859] syz.1.63: attempt to access beyond end of device
[   47.567823][ T3859] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   47.582854][ T3859] syz.1.63: attempt to access beyond end of device
[   47.582854][ T3859] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   47.584177][ T3868] EXT4-fs (loop3): failed to initialize system zone (-117)
[   47.596917][ T3859] syz.1.63: attempt to access beyond end of device
[   47.596917][ T3859] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   47.617143][ T3859] syz.1.63: attempt to access beyond end of device
[   47.617143][ T3859] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   47.621338][ T3868] EXT4-fs (loop3): mount failed
[   47.630793][ T3859] syz.1.63: attempt to access beyond end of device
[   47.630793][ T3859] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   47.650109][ T3859] syz.1.63: attempt to access beyond end of device
[   47.650109][ T3859] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   47.677631][ T3859] syz.1.63: attempt to access beyond end of device
[   47.677631][ T3859] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   47.695092][ T3859] syz.1.63: attempt to access beyond end of device
[   47.695092][ T3859] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   47.719558][ T3868] loop3: detected capacity change from 0 to 1024
[   47.792066][ T3878] loop3: detected capacity change from 0 to 2048
[   47.920937][ T3883] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   47.947028][ T3883] lo speed is unknown, defaulting to 1000
[   48.046495][ T3878] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   48.068998][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.076786][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.084261][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.091923][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.099434][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.107065][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.114552][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.122083][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.129556][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.136965][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.144452][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.152188][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.159626][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.167245][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.174660][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.182167][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.189740][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.197317][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.204848][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.212363][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.219971][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.227517][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.235004][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.242546][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.249973][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.257511][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.264965][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.272423][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.279856][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.287473][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.287688][ T3893] loop2: detected capacity change from 0 to 512
[   48.295114][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.295143][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.316415][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.323976][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.331560][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.339075][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.346530][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.353959][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.361469][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.368930][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.376373][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.379154][ T3895] EXT4-fs error (device loop3): ext4_lookup:1787: inode #16: comm syz.3.68: iget: bad i_size value: 8796093031208
[   48.383813][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.383843][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.410880][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.418449][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.425966][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.429269][ T3894] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   48.433509][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.455662][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.463120][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.470635][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.478164][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.485892][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.493466][ T2960] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   48.501835][ T3893] EXT4-fs: Ignoring removed mblk_io_submit option
[   48.512291][ T3894] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1794 with error 28
[   48.524956][ T3894] EXT4-fs (loop3): This should not happen!! Data will be lost
[   48.524956][ T3894] 
[   48.534966][ T3894] EXT4-fs (loop3): Total free blocks count 0
[   48.541089][ T3894] EXT4-fs (loop3): Free/Dirty block details
[   48.547018][ T3894] EXT4-fs (loop3): free_blocks=2415919104
[   48.552838][ T3894] EXT4-fs (loop3): dirty_blocks=1808
[   48.558160][ T3894] EXT4-fs (loop3): Block reservation details
[   48.564330][ T3894] EXT4-fs (loop3): i_reserved_data_blocks=113
[   48.580685][ T2960] hid-generic 0008:0006:0007.0001: hidraw0: <UNKNOWN> HID v0.0b Device [syz1] on syz1
[   48.590515][ T3893] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   48.619815][ T2997] udevd[2997]: worker [3490] terminated by signal 33 (Unknown signal 33)
[   48.639148][ T2997] udevd[2997]: worker [3490] failed while handling '/devices/virtual/misc/uhid/0008:0006:0007.0001/hidraw/hidraw0'
[   48.664655][ T3893] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.679642][ T3432] usb usb10-port1: attempt power cycle
[   48.699920][ T3893] ext4 filesystem being mounted at /14/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   48.762020][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.840329][   T31] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   48.872081][ T3913] lo speed is unknown, defaulting to 1000
[   48.901013][ T3914] pim6reg: entered allmulticast mode
[   48.903783][ T2960] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   48.915624][ T3915] loop2: detected capacity change from 0 to 1024
[   48.933467][ T3915] EXT4-fs: Ignoring removed nomblk_io_submit option
[   48.934973][ T2960] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   48.948988][ T3914] pim6reg: left allmulticast mode
[   48.972464][ T3915] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   48.990477][ T3915] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.005322][ T3915] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.243338][   T29] kauditd_printk_skb: 404 callbacks suppressed
[   49.243354][   T29] audit: type=1326 audit(1753890244.585:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.274203][   T29] audit: type=1326 audit(1753890244.585:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.300044][   T29] audit: type=1326 audit(1753890244.585:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.324558][   T29] audit: type=1326 audit(1753890244.585:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.349071][   T29] audit: type=1326 audit(1753890244.585:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.373119][   T29] audit: type=1326 audit(1753890244.585:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.396780][   T29] audit: type=1326 audit(1753890244.585:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.420707][   T29] audit: type=1326 audit(1753890244.585:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.445119][   T29] audit: type=1326 audit(1753890244.585:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.468510][   T29] audit: type=1326 audit(1753890244.585:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3920 comm="syz.3.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ee0bae9a9 code=0x7ffc0000
[   49.611307][ T3926] loop1: detected capacity change from 0 to 512
[   49.619204][ T3926] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   49.629828][ T3926] EXT4-fs (loop1): orphan cleanup on readonly fs
[   49.636969][ T3926] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.79: Block bitmap for bg 0 marked uninitialized
[   49.651662][ T3926] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   49.670373][ T3926] EXT4-fs (loop1): 1 orphan inode deleted
[   49.677394][ T3926] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   49.698467][ T3926] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   49.716402][ T3926] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   49.732820][ T3929] loop2: detected capacity change from 0 to 2048
[   49.740161][ T3926] siw: device registration error -23
[   49.752752][ T3933] bridge_slave_1: left allmulticast mode
[   49.758662][ T3933] bridge_slave_1: left promiscuous mode
[   49.758851][ T3933] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.759953][ T3933] bridge_slave_0: left allmulticast mode
[   49.759978][ T3933] bridge_slave_0: left promiscuous mode
[   49.760184][ T3933] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.773494][ T3929] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.866850][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.969510][ T3946] loop4: detected capacity change from 0 to 1024
[   49.971080][ T3942] netlink: 'syz.1.84': attribute type 1 has an invalid length.
[   50.019839][ T3946] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.034135][ T3946] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.086656][ T3946] SELinux: ebitmap: truncated map
[   50.094358][ T3946] SELinux: failed to load policy
[   50.102786][ T3946] bond0: (slave dummy0): Releasing backup interface
[   50.111694][ T3946] batman_adv: batadv0: Adding interface: dummy0
[   50.118132][ T3946] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.143737][ T3946] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[   50.161944][ T3946] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[   50.174456][ T3946] EXT4-fs (loop4): This should not happen!! Data will be lost
[   50.174456][ T3946] 
[   50.184176][ T3946] EXT4-fs (loop4): Total free blocks count 0
[   50.190430][ T3946] EXT4-fs (loop4): Free/Dirty block details
[   50.196568][ T3946] EXT4-fs (loop4): free_blocks=0
[   50.201663][ T3946] EXT4-fs (loop4): dirty_blocks=0
[   50.206846][ T3946] EXT4-fs (loop4): Block reservation details
[   50.213385][ T3946] EXT4-fs (loop4): i_reserved_data_blocks=0
[   50.248461][  T153] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   50.291177][  T153] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   50.291661][ T3957] loop3: detected capacity change from 0 to 128
[   50.303887][  T153] EXT4-fs (loop2): This should not happen!! Data will be lost
[   50.303887][  T153] 
[   50.303918][  T153] EXT4-fs (loop2): Total free blocks count 0
[   50.303933][  T153] EXT4-fs (loop2): Free/Dirty block details
[   50.303945][  T153] EXT4-fs (loop2): free_blocks=2415919104
[   50.303961][  T153] EXT4-fs (loop2): dirty_blocks=8208
[   50.343653][  T153] EXT4-fs (loop2): Block reservation details
[   50.349736][  T153] EXT4-fs (loop2): i_reserved_data_blocks=513
[   50.358466][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.376587][   T31] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   50.445957][ T3962] vhci_hcd: invalid port number 23
[   50.451137][ T3962] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[   50.579300][ T3432] usb usb10-port1: unable to enumerate USB device
[   50.641423][ T3972] loop4: detected capacity change from 0 to 1024
[   50.665406][ T3972] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.846933][ T3977] __nla_validate_parse: 15 callbacks suppressed
[   50.846950][ T3977] netlink: 8 bytes leftover after parsing attributes in process `syz.1.92'.
[   50.863597][ T3977] netlink: 8 bytes leftover after parsing attributes in process `syz.1.92'.
[   50.882485][ T3977] netlink: 5 bytes leftover after parsing attributes in process `syz.1.92'.
[   51.036020][ T3977] 0��{X��: renamed from gretap0 (while UP)
[   51.063698][ T3977] 0��{X��: entered allmulticast mode
[   51.102099][ T3977] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[   51.198814][ T3984] netlink: 24 bytes leftover after parsing attributes in process `syz.0.93'.
[   51.267703][ T3986] loop3: detected capacity change from 0 to 512
[   51.366853][ T3987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.93'.
[   51.376110][ T3987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.93'.
[   51.421551][ T3991] netlink: 4 bytes leftover after parsing attributes in process `syz.1.96'.
[   51.532114][ T3989] loop3: detected capacity change from 0 to 512
[   51.540524][ T3989] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   51.575432][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.608473][ T3989] EXT4-fs (loop3): 1 truncate cleaned up
[   51.617176][ T3989] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.628664][ T3994] netlink: 'syz.1.97': attribute type 3 has an invalid length.
[   51.730597][ T3999] netlink: 'syz.2.99': attribute type 4 has an invalid length.
[   51.732615][ T3996] capability: warning: `syz.4.98' uses 32-bit capabilities (legacy support in use)
[   51.756751][ T3999] netlink: 'syz.2.99': attribute type 4 has an invalid length.
[   51.868712][ T3999] team0: Cannot enslave team device to itself
[   51.888856][ T3999] lo speed is unknown, defaulting to 1000
[   51.957862][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.019139][ T4007] lo speed is unknown, defaulting to 1000
[   52.047908][ T4013] Invalid ELF header magic: != ELF
[   52.066841][ T4007] loop4: detected capacity change from 0 to 1024
[   52.071569][ T4015] loop3: detected capacity change from 0 to 1024
[   52.073959][ T4007] EXT4-fs: Ignoring removed nobh option
[   52.086718][ T4015] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   52.086971][ T4007] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   52.106721][ T4007] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   52.117670][ T4007] JBD2: no valid journal superblock found
[   52.118631][ T4015] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   52.123822][ T4007] EXT4-fs (loop4): Could not load journal inode
[   52.171042][ T4015] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e01c, mo2=0000]
[   52.183438][ T4015] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.102: lblock 2 mapped to illegal pblock 2 (length 1)
[   52.198394][ T4015] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 48: comm syz.3.102: lblock 0 mapped to illegal pblock 48 (length 1)
[   52.213783][ T4015] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.102: Failed to acquire dquot type 0
[   52.236051][ T4015] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   52.253216][ T4015] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.102: mark_inode_dirty error
[   52.273442][ T4015] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   52.286116][ T4015] EXT4-fs (loop3): 1 orphan inode deleted
[   52.305675][ T1707] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   52.324028][ T4020] netlink: 4 bytes leftover after parsing attributes in process `syz.0.105'.
[   52.334725][ T4015] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.355200][ T1707] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[   52.367575][ T4020] veth0_macvtap: left promiscuous mode
[   52.380025][ T4015] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.389679][ T4015] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.102: Invalid inode table block 1 in block_group 0
[   52.410215][ T4015] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   52.424711][ T4015] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz.3.102: mark_inode_dirty error
[   52.696423][ T4031] loop3: detected capacity change from 0 to 128
[   52.715947][ T4030] netlink: 14 bytes leftover after parsing attributes in process `syz.2.106'.
[   52.787154][ T4034] siw: device registration error -23
[   52.824885][ T4033] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.127197][ T4039] netlink: 8 bytes leftover after parsing attributes in process `syz.1.110'.
[   53.160947][ T4040] pim6reg: entered allmulticast mode
[   53.294543][ T4033] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.361935][ T4035] pim6reg: left allmulticast mode
[   53.376800][ T4051] batman_adv: batadv0: Adding interface: dummy0
[   53.383449][ T4051] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.419774][ T4051] batman_adv: batadv0: Interface activated: dummy0
[   53.455641][ T1034] Process accounting resumed
[   53.501900][ T4063] xt_CT: You must specify a L4 protocol and not use inversions on it
[   53.556369][ T4033] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.616518][ T4064] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   53.629299][ T4051] batadv0: mtu less than device minimum
[   53.636396][ T4051] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   53.647493][ T4051] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   53.658574][ T4051] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   53.669379][ T4051] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   53.680515][ T4051] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   53.691250][ T4051] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   53.702271][ T4051] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   53.713117][ T4051] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   53.723827][ T4051] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   53.777046][ T4066] syzkaller1: tun_chr_ioctl cmd 2147767506
[   53.806993][ T4033] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.944578][ T4070] loop1: detected capacity change from 0 to 1024
[   53.962700][ T4070] EXT4-fs: Ignoring removed bh option
[   53.976429][ T4070] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.991243][ T4033] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.008854][ T4070] EXT4-fs error (device loop1): ext4_quota_enable:7124: comm syz.1.116: inode #2304: comm syz.1.116: iget: illegal inode #
[   54.026949][ T4033] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.048323][ T4033] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.126516][ T4070] EXT4-fs (loop1): Remounting filesystem read-only
[   54.133250][ T4070] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[   54.159540][ T4033] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.191065][ T4070] EXT4-fs (loop1): mount failed
[   54.379567][   T29] kauditd_printk_skb: 513 callbacks suppressed
[   54.379586][   T29] audit: type=1326 audit(1753890249.587:1675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4078 comm="syz.2.117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195bd1e9a9 code=0x7ffc0000
[   54.409447][   T29] audit: type=1326 audit(1753890249.587:1676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4078 comm="syz.2.117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195bd1e9a9 code=0x7ffc0000
[   54.502664][ T4090] lo speed is unknown, defaulting to 1000
[   54.508690][ T4090] lo speed is unknown, defaulting to 1000
[   54.515477][ T4090] lo speed is unknown, defaulting to 1000
[   54.526634][ T4090] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   54.565017][ T4091] lo speed is unknown, defaulting to 1000
[   54.571697][ T4091] lo speed is unknown, defaulting to 1000
[   54.709616][ T4090] lo speed is unknown, defaulting to 1000
[   54.715933][ T4090] lo speed is unknown, defaulting to 1000
[   54.722622][ T4090] lo speed is unknown, defaulting to 1000
[   54.729212][ T4090] lo speed is unknown, defaulting to 1000
[   54.736184][ T4090] lo speed is unknown, defaulting to 1000
[   54.986166][   T29] audit: type=1400 audit(1753890249.646:1677): avc:  denied  { name_connect } for  pid=4080 comm="syz.3.118" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   55.006641][   T29] audit: type=1326 audit(1753890249.655:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4085 comm="syz.1.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   55.030286][   T29] audit: type=1326 audit(1753890249.655:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4085 comm="syz.1.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   55.053705][   T29] audit: type=1326 audit(1753890249.900:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4085 comm="syz.1.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   55.077377][   T29] audit: type=1326 audit(1753890249.900:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4085 comm="syz.1.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   55.101132][   T29] audit: type=1326 audit(1753890249.900:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4085 comm="syz.1.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   55.125449][   T29] audit: type=1326 audit(1753890249.969:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4085 comm="syz.1.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   55.348988][   T29] audit: type=1326 audit(1753890250.537:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4078 comm="syz.2.117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f195bd1e9a9 code=0x7ffc0000
[   55.400567][ T4096] loop4: detected capacity change from 0 to 1024
[   55.438587][ T4096] EXT4-fs: Ignoring removed nomblk_io_submit option
[   55.478693][ T4096] ext4: Unknown parameter 'smackfsroot'
[   55.583196][ T4098] netlink: 'syz.3.123': attribute type 13 has an invalid length.
[   55.649570][ T4103] loop4: detected capacity change from 0 to 512
[   55.742647][ T4098] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.750165][ T4098] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.815157][ T4098] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   55.828754][ T4098] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   55.883970][ T4098] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   55.893145][ T4098] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   55.902221][ T4098] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   55.911556][ T4098] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   55.927367][    T9] lo speed is unknown, defaulting to 1000
[   55.933292][    T9] syz2: Port: 1 Link DOWN
[   55.951496][ T4100] lo speed is unknown, defaulting to 1000
[   55.958485][ T4100] lo speed is unknown, defaulting to 1000
[   56.078609][ T4124] __nla_validate_parse: 6 callbacks suppressed
[   56.078626][ T4124] netlink: 24 bytes leftover after parsing attributes in process `syz.3.127'.
[   56.098794][ T4086] netlink: 'syz.1.120': attribute type 13 has an invalid length.
[   56.106812][ T4086] netlink: 152 bytes leftover after parsing attributes in process `syz.1.120'.
[   56.123345][ T4124] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=4124 comm=syz.3.127
[   56.143162][ T4086] erspan0: refused to change device tx_queue_len
[   56.162780][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.173580][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.181144][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.188823][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.196556][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.204320][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.211836][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.219266][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.226740][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.234269][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.241787][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.249203][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.257095][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.264677][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.272267][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.279853][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.287309][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.295796][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.303716][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.311221][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.319020][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.326626][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.334085][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.341742][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.349528][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.356974][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   56.366802][    T9] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v8.00 Device [syz1] on syz0
[   56.400611][ T4133] fido_id[4133]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   56.531082][ T4138] netlink: 208 bytes leftover after parsing attributes in process `syz.2.131'.
[   57.499781][ T4151] ip6gre1: entered allmulticast mode
[   57.549651][ T4151] netlink: 8 bytes leftover after parsing attributes in process `syz.4.135'.
[   57.664608][ T4156] netlink: 8 bytes leftover after parsing attributes in process `syz.0.136'.
[   57.700439][ T4161] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   57.862804][ T4172] loop2: detected capacity change from 0 to 1024
[   57.895045][ T4172] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   57.906170][ T4172] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   57.994315][ T4172] JBD2: no valid journal superblock found
[   58.000371][ T4172] EXT4-fs (loop2): Could not load journal inode
[   58.014954][ T4178] netlink: 'syz.3.140': attribute type 4 has an invalid length.
[   58.041130][ T4178] netlink: 'syz.3.140': attribute type 4 has an invalid length.
[   58.098166][ T4178] SELinux:  Context system_u:object_r:zero_device_t:s0 is not valid (left unmapped).
[   58.261116][ T4187] loop4: detected capacity change from 0 to 1024
[   58.277214][ T4172] infiniband syz2: set down
[   58.282000][ T4172] infiniband syz2: added veth0_to_bond
[   58.320722][ T4187] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   58.331798][ T4187] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[   58.353824][ T4187] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   58.366231][ T4187] EXT4-fs (loop4): invalid journal inode
[   58.375719][ T4187] EXT4-fs (loop4): can't get journal size
[   58.387802][ T4172] RDS/IB: syz2: added
[   58.392202][ T4187] EXT4-fs error (device loop4): ext4_protect_reserved_inode:182: inode #3: comm syz.4.143: blocks 2-2 from inode overlap system zone
[   58.406006][ T4172] smc: adding ib device syz2 with port count 1
[   58.412357][ T4172] smc:    ib device syz2 port 1 has pnetid 
[   58.423114][ T4187] EXT4-fs (loop4): failed to initialize system zone (-117)
[   58.445173][ T4187] EXT4-fs (loop4): mount failed
[   58.513526][ T4198] netlink: 132 bytes leftover after parsing attributes in process `syz.3.145'.
[   58.552840][ T4198] netlink: 4 bytes leftover after parsing attributes in process `syz.3.145'.
[   58.639156][ T4200] loop3: detected capacity change from 0 to 128
[   58.654057][ T4200] EXT4-fs: Ignoring removed nobh option
[   58.672929][ T4200] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   58.745657][ T4193] lo speed is unknown, defaulting to 1000
[   58.790300][ T4200] netlink: 8 bytes leftover after parsing attributes in process `syz.3.146'.
[   58.833263][ T4200] IPVS: Error joining to the multicast group
[   58.889378][ T3309] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   59.200423][ T4212] xt_hashlimit: size too large, truncated to 1048576
[   59.207383][ T4212] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[   59.339937][ T4210] lo speed is unknown, defaulting to 1000
[   59.458542][   T29] kauditd_printk_skb: 353 callbacks suppressed
[   59.458560][   T29] audit: type=1400 audit(59.224:2038): avc:  denied  { map } for  pid=4215 comm="syz.2.150" path="socket:[6062]" dev="sockfs" ino=6062 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   59.487132][   T29] audit: type=1400 audit(59.224:2039): avc:  denied  { read } for  pid=4215 comm="syz.2.150" path="socket:[6062]" dev="sockfs" ino=6062 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   59.517359][   T29] audit: type=1326 audit(59.284:2040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   59.540182][   T29] audit: type=1326 audit(59.284:2041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   59.563078][   T29] audit: type=1326 audit(59.284:2042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   59.589711][   T29] audit: type=1326 audit(59.364:2043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   59.612782][   T29] audit: type=1326 audit(59.364:2044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   59.635881][   T29] audit: type=1326 audit(59.364:2045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   59.664068][   T29] audit: type=1326 audit(59.434:2046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   59.686879][   T29] audit: type=1326 audit(59.434:2047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   59.716221][ T4221] loop1: detected capacity change from 0 to 1024
[   59.723465][ T4221] EXT4-fs: Ignoring removed nobh option
[   59.729112][ T4221] EXT4-fs: Ignoring removed bh option
[   59.871467][ T4221] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.364076][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.447413][ T4241] loop1: detected capacity change from 0 to 1024
[   60.454920][ T4241] EXT4-fs: Ignoring removed i_version option
[   60.461085][ T4241] EXT4-fs: Ignoring removed oldalloc option
[   60.470500][ T4241] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   60.481720][ T4241] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[   60.501234][ T4241] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   60.512959][ T4241] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: comm syz.1.156: inode #1: comm syz.1.156: iget: illegal inode #
[   60.527384][ T4241] EXT4-fs (loop1): no journal found
[   60.532916][ T4241] EXT4-fs (loop1): can't get journal size
[   60.541705][ T4244] loop2: detected capacity change from 0 to 512
[   60.584724][ T4244] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.610700][ T4241] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a840e11c, mo2=0003]
[   60.629632][ T4241] EXT4-fs (loop1): failed to initialize system zone (-22)
[   60.650468][ T4241] EXT4-fs (loop1): mount failed
[   60.828255][ T4258] wireguard0: entered promiscuous mode
[   60.833900][ T4258] wireguard0: entered allmulticast mode
[   60.853760][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.947965][ T4264] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[   60.954620][ T4264] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   60.962422][ T4264] vhci_hcd vhci_hcd.0: Device attached
[   60.974931][ T4261] Falling back ldisc for ttyS3.
[   61.044446][ T4266] vhci_hcd: cannot find the pending unlink 6
[   61.163797][ T4266] vhci_hcd: connection closed
[   61.164106][ T1650] vhci_hcd: stop threads
[   61.173486][ T1650] vhci_hcd: release socket
[   61.178122][ T1650] vhci_hcd: disconnect device
[   61.183059][    T9] vhci_hcd: vhci_device speed not set
[   61.294878][ T4272] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   61.517762][ T4281] loop3: detected capacity change from 0 to 2048
[   61.544362][ T4283] netlink: 87 bytes leftover after parsing attributes in process `syz.0.166'.
[   61.562466][ T4281] Alternate GPT is invalid, using primary GPT.
[   61.569381][ T4281]  loop3: p1 p2 p3
[   61.653538][ T4285] SELinux:  Context � is not valid (left unmapped).
[   61.680754][ T4285] sctp: [Deprecated]: syz.0.168 (pid 4285) Use of struct sctp_assoc_value in delayed_ack socket option.
[   61.680754][ T4285] Use struct sctp_sack_info instead
[   61.728247][ T3299] udevd[3299]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   61.743735][ T3671] udevd[3671]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   61.755253][ T4287] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4287 comm=syz.3.169
[   61.769800][ T4094] udevd[4094]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   61.780494][ T4285] netlink: 132 bytes leftover after parsing attributes in process `syz.0.168'.
[   61.863376][ T4292] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=53264 sclass=netlink_audit_socket pid=4292 comm=syz.1.167
[   61.939879][ T4295] loop3: detected capacity change from 0 to 8192
[   62.022131][ T4292] netlink: 4 bytes leftover after parsing attributes in process `syz.1.167'.
[   62.040618][ T4295]  loop3: p1 p2 p3
[   62.044803][ T4295] loop3: p1 start 51379968 is beyond EOD, truncated
[   62.052312][ T4292] hsr_slave_0 (unregistering): left promiscuous mode
[   62.072873][ T4298] netlink: 16 bytes leftover after parsing attributes in process `syz.0.171'.
[   62.085025][ T4295] loop3: p3 size 100663552 extends beyond EOD, truncated
[   62.358283][ T4302] lo speed is unknown, defaulting to 1000
[   62.704414][ T4305] sd 0:0:1:0: device reset
[   62.750053][ T4305] syz.1.173 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   63.027922][ T4307] loop1: detected capacity change from 0 to 1024
[   63.042609][ T4307] EXT4-fs: Ignoring removed oldalloc option
[   63.048651][ T4307] EXT4-fs: Ignoring removed bh option
[   63.168794][ T4307] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.222254][ T4307] serio: Serial port ptm1
[   63.351414][ T4313] netlink: 132 bytes leftover after parsing attributes in process `syz.4.175'.
[   63.424757][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.446774][ T4313] xt_CT: No such helper "pptp"
[   63.605252][ T4321] loop3: detected capacity change from 0 to 128
[   63.632736][ T4322] loop1: detected capacity change from 0 to 128
[   63.711601][ T4321] SELinux: security_context_str_to_sid (���s�\^(m���`d�R��%���]�v;�h��f�e���Pi�z��׺���+8��x։?=MS�g�%אVDX�ڶ}�Y_�gW����T~����������L�f�00000000000000000000000��B��x��3�!/�ھ5;Y$��]V�1�{�ȉj�+��4b��R���}$�����P��Zh�
[   63.711601][ T4321] ���~��~���=	T��ݦ҃I���UJ3b�f�A���c�@ �u�+��I����N�T�T[�M|z�k@IQ�1>d�S�	IN'���=Y^�_G�^1M��@`�a��ȥ�qx���Y���_�u�\
[   63.711601][ T4321] ������
[   63.711601][ T4321] �y�ҟ�v��y����hB�/�� �P^��i/���ފ�
[   63.711601][ T4321] ��D�����l�ڰ��{���8��AO��I���A��:��?v��0��'��
!�Ӝ�B8kp٫]��^�6H7�6�$�+�N�J�U��#/Jm�]UG�ꦴwM`Z������^J�*Pq�Ud��P}�K����5\����a��4���4	�f�����9ݳ���~�-��V������) failed with errno=-22
[   63.829121][ T4325] netlink: 'syz.3.178': attribute type 27 has an invalid length.
[   63.940719][ T4328] netlink: 4 bytes leftover after parsing attributes in process `syz.3.180'.
[   64.060646][ T4331] lo speed is unknown, defaulting to 1000
[   64.975263][   T29] kauditd_printk_skb: 259 callbacks suppressed
[   64.975281][   T29] audit: type=1326 audit(64.744:2307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4334 comm="syz.4.182" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa949c2e9a9 code=0x0
[   65.311530][   T29] audit: type=1400 audit(65.074:2308): avc:  denied  { bind } for  pid=4327 comm="syz.3.180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   66.328448][ T4350] loop1: detected capacity change from 0 to 512
[   66.710457][ T4354] loop3: detected capacity change from 0 to 164
[   66.746165][   T29] audit: type=1400 audit(66.514:2309): avc:  denied  { ioctl } for  pid=4355 comm="syz.2.187" path="socket:[6856]" dev="sockfs" ino=6856 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   66.777739][ T4356] loop2: detected capacity change from 0 to 1024
[   66.802109][ T4350] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.839820][ T4356] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.880477][   T29] audit: type=1400 audit(66.594:2310): avc:  denied  { mount } for  pid=4346 comm="syz.3.185" name="/" dev="loop3" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   66.917521][ T4366] 9pnet_fd: Insufficient options for proto=fd
[   66.983661][ T4356] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   67.002517][   T29] audit: type=1326 audit(66.714:2311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   67.024833][   T29] audit: type=1326 audit(66.714:2312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   67.047111][   T29] audit: type=1326 audit(66.714:2313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   67.069552][   T29] audit: type=1400 audit(66.724:2314): avc:  denied  { mount } for  pid=4355 comm="syz.2.187" name="/" dev="hugetlbfs" ino=6865 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[   67.091834][   T29] audit: type=1326 audit(66.724:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4355 comm="syz.2.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195bd1e9a9 code=0x7ffc0000
[   67.114750][   T29] audit: type=1326 audit(66.724:2316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   67.150732][ T4356] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 43 with error 28
[   67.163349][ T4356] EXT4-fs (loop2): This should not happen!! Data will be lost
[   67.163349][ T4356] 
[   67.173036][ T4356] EXT4-fs (loop2): Total free blocks count 0
[   67.179051][ T4356] EXT4-fs (loop2): Free/Dirty block details
[   67.185007][ T4356] EXT4-fs (loop2): free_blocks=4293918720
[   67.190947][ T4356] EXT4-fs (loop2): dirty_blocks=48
[   67.196073][ T4356] EXT4-fs (loop2): Block reservation details
[   67.202557][ T4356] EXT4-fs (loop2): i_reserved_data_blocks=3
[   67.265140][ T4356] syz.2.187 (4356) used greatest stack depth: 9640 bytes left
[   67.502254][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.612400][ T4387] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.620828][ T4387] 8021q: adding VLAN 0 to HW filter on device team0
[   68.301260][ T4387] net_ratelimit: 11 callbacks suppressed
[   68.301275][ T4387] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   68.731622][ T4394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.190'.
[   68.740487][ T4394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.190'.
[   68.776049][ T4397] loop3: detected capacity change from 0 to 1024
[   68.793294][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.848787][ T4394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.190'.
[   68.890564][ T4397] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.913906][ T4394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.190'.
[   68.923108][ T4394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.190'.
[   68.958066][ T4394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.190'.
[   69.016836][ T4394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.190'.
[   69.026195][ T4394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.190'.
[   69.064272][ T4394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.190'.
[   69.654579][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.798331][ T4421] program syz.4.194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   69.837319][ T4421] loop4: detected capacity change from 0 to 128
[   69.863611][ T4421] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   69.992219][   T29] kauditd_printk_skb: 401 callbacks suppressed
[   69.992237][   T29] audit: type=1326 audit(69.724:2718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4420 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   70.021796][   T29] audit: type=1326 audit(69.754:2719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4420 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   70.044785][   T29] audit: type=1326 audit(69.754:2720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4420 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   70.067894][   T29] audit: type=1326 audit(69.754:2721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4420 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   70.091055][   T29] audit: type=1326 audit(69.754:2722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4420 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   70.113918][   T29] audit: type=1326 audit(69.754:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4420 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   70.136626][   T29] audit: type=1400 audit(69.754:2724): avc:  denied  { create } for  pid=4420 comm="syz.4.194" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   70.159297][   T29] audit: type=1326 audit(69.794:2725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4420 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   70.160970][ T4419] capability: warning: `syz.1.191' uses deprecated v2 capabilities in a way that may be insecure
[   70.182169][   T29] audit: type=1326 audit(69.794:2726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4420 comm="syz.4.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   70.215430][   T29] audit: type=1326 audit(69.914:2727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4418 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc03581e9a9 code=0x7ffc0000
[   70.409728][ T4439] netlink: 'syz.2.195': attribute type 27 has an invalid length.
[   70.443191][ T4439] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.450556][ T4439] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.469569][ T4439] 0�X���: left allmulticast mode
[   70.507534][ T4439] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   70.518346][ T4439] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   70.554844][ T4439] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   70.563808][ T4439] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   70.572820][ T4439] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   70.581730][ T4439] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   71.101543][ T3315] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   71.186716][ T4419] loop1: detected capacity change from 0 to 512
[   71.221787][ T4419] ext3: Unknown parameter 'subj_type'
[   71.259722][ T4445] netlink: 14 bytes leftover after parsing attributes in process `syz.3.198'.
[   71.272988][ T4445] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   71.345735][ T4445] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   71.442174][ T4445] bond0 (unregistering): Released all slaves
[   71.533632][ T4448] loop1: detected capacity change from 0 to 1024
[   71.567865][ T4448] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   71.594431][    T9] IPVS: starting estimator thread 0...
[   71.605996][ T4448] EXT4-fs (loop1): orphan cleanup on readonly fs
[   71.696300][ T4448] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.199: Invalid block bitmap block 0 in block_group 0
[   71.709839][ T4451] IPVS: using max 2400 ests per chain, 120000 per kthread
[   71.730779][ T4460] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[   71.741863][ T4448] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.199: Failed to acquire dquot type 0
[   71.759651][ T4463] loop2: detected capacity change from 0 to 512
[   71.769492][ T4463] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   71.779883][ T4448] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.199: Freeing blocks not in datazone - block = 0, count = 4096
[   71.801828][ T4463] EXT4-fs (loop2): orphan cleanup on readonly fs
[   71.812340][ T4463] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.204: Block bitmap for bg 0 marked uninitialized
[   71.833619][ T4467] loop4: detected capacity change from 0 to 512
[   71.854484][ T4463] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   71.864273][ T4448] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.199: Invalid inode bitmap blk 0 in block_group 0
[   71.864311][ T4463] EXT4-fs (loop2): 1 orphan inode deleted
[   71.884577][   T37] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0
[   71.898017][ T4463] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   71.899803][ T4467] EXT4-fs (loop4): orphan cleanup on readonly fs
[   71.922967][ T4467] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.206: bg 0: block 248: padding at end of block bitmap is not set
[   71.937537][ T4448] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   71.948102][ T4467] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.206: Failed to acquire dquot type 1
[   71.959658][ T4448] EXT4-fs (loop1): 1 orphan inode deleted
[   71.960512][ T4467] EXT4-fs (loop4): 1 truncate cleaned up
[   71.975133][ T4448] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   71.975406][ T4467] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   72.019499][ T4467] random: crng reseeded on system resumption
[   72.064093][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.113710][ T4448] syz.1.199 (4448) used greatest stack depth: 9512 bytes left
[   72.129173][ T4479] loop3: detected capacity change from 0 to 512
[   72.138502][ T4467] syz.4.206 (4467) used greatest stack depth: 9304 bytes left
[   72.139600][ T4479] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   72.155461][ T4479] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   72.157300][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.174012][ T4479] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[   72.185998][ T4479] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   72.195213][ T4479] System zones: 0-2, 18-18, 34-35
[   72.197074][ T4480] lo speed is unknown, defaulting to 1000
[   72.203347][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.217015][ T4479] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.231994][ T4485] netlink: 'syz.0.219': attribute type 1 has an invalid length.
[   72.248415][ T4479] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.210: bg 0: block 353: padding at end of block bitmap is not set
[   72.261809][ T4485] 8021q: adding VLAN 0 to HW filter on device bond1
[   72.289602][ T4485] 8021q: adding VLAN 0 to HW filter on device bond1
[   72.299485][ T4485] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[   72.311852][ T4485] bond1: (slave vxcan3): Error -95 calling set_mac_address
[   72.347311][ T4491] bond1: entered promiscuous mode
[   72.352765][ T4491] bond1: entered allmulticast mode
[   72.358469][ T4491] 8021q: adding VLAN 0 to HW filter on device bond1
[   72.369810][ T4491] bond1 (unregistering): Released all slaves
[   72.383738][ T4494] loop1: detected capacity change from 0 to 1024
[   72.391752][ T4494] EXT4-fs: Ignoring removed nobh option
[   72.397440][ T4494] EXT4-fs: Ignoring removed bh option
[   72.407823][ T4492] gretap1: entered promiscuous mode
[   72.415334][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.422712][ T4492] bond1: (slave gretap1): making interface the new active one
[   72.444575][ T4492] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   72.465338][ T4485] macvlan0: entered promiscuous mode
[   72.470816][ T4485] macvlan0: entered allmulticast mode
[   72.477211][ T4485] bond1: entered promiscuous mode
[   72.477257][ T4494] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.484067][ T4485] 8021q: adding VLAN 0 to HW filter on device macvlan0
[   72.520373][ T4485] bond1: (slave macvlan0): the slave hw address is in use by the bond; giving it the hw address of gretap1
[   72.533472][ T4490] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.212: Allocating blocks 497-513 which overlap fs metadata
[   72.533530][ T4485] bond1: left promiscuous mode
[   72.605152][ T4490] EXT4-fs (loop1): pa ffff888100557690: logic 0, phys. 113, len 25
[   72.613264][ T4490] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 23, pa_free 24
[   72.758783][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.764980][ T4502] loop3: detected capacity change from 0 to 1024
[   72.775592][ T4502] EXT4-fs: Ignoring removed oldalloc option
[   72.782273][ T4502] EXT4-fs: Ignoring removed bh option
[   72.821002][ T4502] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.840953][ T4502] serio: Serial port ptm0
[   72.954787][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.041654][ T4512] lo speed is unknown, defaulting to 1000
[   73.482177][ T4516] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   73.851326][ T4516] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   73.863462][ T4522] __nla_validate_parse: 3 callbacks suppressed
[   73.863483][ T4522] netlink: 16 bytes leftover after parsing attributes in process `syz.1.221'.
[   73.946867][ T4516] bond0 (unregistering): (slave dummy0): Releasing backup interface
[   73.962776][ T4516] bond0 (unregistering): Released all slaves
[   74.221983][ T4530] loop3: detected capacity change from 0 to 512
[   74.251415][ T4532] loop4: detected capacity change from 0 to 764
[   74.261047][ T4532] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   74.275834][ T4530] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   74.338916][ T4530] EXT4-fs (loop3): mount failed
[   74.474645][ T4530] loop3: detected capacity change from 0 to 1024
[   74.486880][ T4543] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   74.515189][ T4530] EXT4-fs: Ignoring removed nobh option
[   74.542273][ T4530] EXT4-fs: Ignoring removed bh option
[   74.559611][ T4530] EXT4-fs (loop3): stripe (32769) is not aligned with cluster size (16), stripe is disabled
[   74.576263][ T4543] lo speed is unknown, defaulting to 1000
[   74.606365][ T4530] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.654620][ T4553] loop4: detected capacity change from 0 to 512
[   74.662932][ T4553] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   74.672357][ T4553] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   74.682334][ T4547] netlink: 'syz.0.226': attribute type 10 has an invalid length.
[   74.683399][ T4553] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[   74.690131][ T4547] netlink: 40 bytes leftover after parsing attributes in process `syz.0.226'.
[   74.699486][ T4553] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   74.712796][ T4530] lo: entered promiscuous mode
[   74.718943][ T4553] System zones: 0-2, 18-18, 34-35
[   74.722189][ T4530] tunl0: entered promiscuous mode
[   74.727110][ T4553] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.732567][ T4530] gre0: entered promiscuous mode
[   74.767074][ T4530] gretap0: entered promiscuous mode
[   74.774698][ T4553] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.228: bg 0: block 353: padding at end of block bitmap is not set
[   74.789308][ T4558] xt_HMARK: proto mask must be zero with L3 mode
[   74.795955][ T4530] erspan0: entered promiscuous mode
[   74.806794][ T4530] ip_vti0: entered promiscuous mode
[   74.817432][ T4530] ip6_vti0: entered promiscuous mode
[   74.825568][ T4530] sit0: entered promiscuous mode
[   74.833378][ T4559] loop2: detected capacity change from 0 to 1024
[   74.833480][ T4530] ip6tnl0: entered promiscuous mode
[   74.840845][ T4559] EXT4-fs: Ignoring removed nobh option
[   74.851885][ T4559] EXT4-fs: Ignoring removed bh option
[   74.862598][ T3529] kernel write not supported for file /166/attr/exec (pid: 3529 comm: kworker/1:4)
[   74.881376][ T4530] ip6gre0: entered promiscuous mode
[   74.888373][ T4530] syz_tun: entered promiscuous mode
[   74.896419][ T4559] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.909798][ T4530] ip6gretap0: entered promiscuous mode
[   74.916907][ T4530] bridge0: entered promiscuous mode
[   74.923433][ T4530] vcan0: entered promiscuous mode
[   74.929373][ T4530] team0: entered promiscuous mode
[   74.934706][ T4530] team_slave_0: entered promiscuous mode
[   74.940540][ T4530] team_slave_1: entered promiscuous mode
[   74.948102][ T4530] dummy0: entered promiscuous mode
[   74.972537][ T4530] nlmon0: entered promiscuous mode
[   74.986347][ T4530] caif0: entered promiscuous mode
[   74.992753][ T4530] batadv0: entered promiscuous mode
[   74.998253][ T4530] vxcan0: entered promiscuous mode
[   75.003614][ T4530] vxcan1: entered promiscuous mode
[   75.009281][ T4530] veth0: entered promiscuous mode
[   75.014619][ T4530] veth1: entered promiscuous mode
[   75.019947][ T4530] wg0: entered promiscuous mode
[   75.025002][ T4530] wg1: entered promiscuous mode
[   75.030054][ T4530] wg2: entered promiscuous mode
[   75.035210][ T4530] veth0_to_bridge: entered promiscuous mode
[   75.041570][ T4530] veth1_to_bridge: entered promiscuous mode
[   75.047819][ T4530] veth0_to_bond: entered promiscuous mode
[   75.053762][ T4530] bond_slave_0: entered promiscuous mode
[   75.059695][ T4530] veth1_to_bond: entered promiscuous mode
[   75.065743][ T4530] bond_slave_1: entered promiscuous mode
[   75.071659][ T4530] veth0_to_team: entered promiscuous mode
[   75.077788][ T4530] veth1_to_team: entered promiscuous mode
[   75.083866][ T4530] veth0_to_batadv: entered promiscuous mode
[   75.090273][ T4530] batadv_slave_0: entered promiscuous mode
[   75.096292][ T4530] veth1_to_batadv: entered promiscuous mode
[   75.102844][ T4530] batadv_slave_1: entered promiscuous mode
[   75.108846][ T4530] xfrm0: entered promiscuous mode
[   75.114040][ T4530] veth0_to_hsr: entered promiscuous mode
[   75.120144][ T4530] veth1_to_hsr: entered promiscuous mode
[   75.126151][ T4530] hsr0: entered promiscuous mode
[   75.131263][ T4530] veth1_virt_wifi: entered promiscuous mode
[   75.137431][ T4530] veth0_virt_wifi: entered promiscuous mode
[   75.143955][ T4530] vlan0: entered promiscuous mode
[   75.149335][ T4530] vlan1: entered promiscuous mode
[   75.154651][ T4530] macvlan0: entered promiscuous mode
[   75.160372][ T4530] macvlan1: entered promiscuous mode
[   75.165877][ T4530] ipvlan0: entered promiscuous mode
[   75.171337][ T4530] ipvlan1: entered promiscuous mode
[   75.177030][ T4530] macvtap0: entered promiscuous mode
[   75.182500][ T4530] macsec0: entered promiscuous mode
[   75.187848][ T4530] geneve0: entered promiscuous mode
[   75.193339][ T4530] geneve1: entered promiscuous mode
[   75.198892][ T4530] syzkaller0: entered promiscuous mode
[   75.204739][ T4530] veth2: entered promiscuous mode
[   75.210067][ T4530] veth3: entered promiscuous mode
[   75.215650][ T4530] netdevsim netdevsim3 eth0: entered promiscuous mode
[   75.222702][ T4530] netdevsim netdevsim3 eth1: entered promiscuous mode
[   75.229763][ T4530] netdevsim netdevsim3 eth2: entered promiscuous mode
[   75.236903][ T4530] netdevsim netdevsim3 eth3: entered promiscuous mode
[   75.246138][ T4547] dummy0: entered promiscuous mode
[   75.254329][ T4547] bridge0: port 3(dummy0) entered blocking state
[   75.261069][ T4547] bridge0: port 3(dummy0) entered disabled state
[   75.280718][ T4547] dummy0: entered allmulticast mode
[   75.281388][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.287917][ T4547] bridge0: port 3(dummy0) entered blocking state
[   75.301704][ T4547] bridge0: port 3(dummy0) entered forwarding state
[   75.326510][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.363090][   T29] kauditd_printk_skb: 1060 callbacks suppressed
[   75.363123][   T29] audit: type=1326 audit(75.134:3782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   75.396130][ T4557] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.229: Allocating blocks 497-513 which overlap fs metadata
[   75.424075][   T29] audit: type=1326 audit(75.134:3783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   75.434938][ T4569] lo speed is unknown, defaulting to 1000
[   75.447280][   T29] audit: type=1326 audit(75.134:3784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   75.475752][   T29] audit: type=1326 audit(75.134:3785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   75.477351][ T4571] netlink: 'syz.3.230': attribute type 1 has an invalid length.
[   75.498678][   T29] audit: type=1326 audit(75.134:3786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   75.529196][   T29] audit: type=1326 audit(75.134:3787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa949c25967 code=0x7ffc0000
[   75.552032][   T29] audit: type=1326 audit(75.134:3788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa949bcab89 code=0x7ffc0000
[   75.574994][   T29] audit: type=1326 audit(75.134:3789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa949c25967 code=0x7ffc0000
[   75.597694][   T29] audit: type=1326 audit(75.144:3790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa949bcab89 code=0x7ffc0000
[   75.620627][   T29] audit: type=1326 audit(75.144:3791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.4.231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa949c25967 code=0x7ffc0000
[   75.672278][ T4574] gretap1: entered promiscuous mode
[   75.703970][ T4571] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.718103][ T4581] netlink: 40 bytes leftover after parsing attributes in process `syz.4.234'.
[   75.757178][ T4581] loop4: detected capacity change from 0 to 2048
[   75.770530][ T4571] macvlan2: entered promiscuous mode
[   75.776025][ T4571] macvlan2: entered allmulticast mode
[   75.786756][ T4571] bond0: entered promiscuous mode
[   75.792571][ T4571] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   75.805188][ T4581] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.823510][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.858068][ T4589] loop1: detected capacity change from 0 to 1024
[   75.865740][   T10] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   75.873517][ T4571] bond0: left promiscuous mode
[   75.879016][   T10] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   75.890066][ T4590] netlink: 4 bytes leftover after parsing attributes in process `syz.4.234'.
[   75.900892][ T4589] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.927644][ T4589] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   75.932960][ T4590] netlink: 4 bytes leftover after parsing attributes in process `syz.4.234'.
[   75.992722][ T4589] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.012618][ T4589] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.057213][ T4590] netlink: 4 bytes leftover after parsing attributes in process `syz.4.234'.
[   76.080305][ T4590] netlink: 4 bytes leftover after parsing attributes in process `syz.4.234'.
[   76.161592][ T4601] loop2: detected capacity change from 0 to 1024
[   76.183585][ T4601] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.204439][ T4590] netlink: 4 bytes leftover after parsing attributes in process `syz.4.234'.
[   76.248894][ T4601] pim6reg: entered allmulticast mode
[   76.256537][ T4590] netlink: 4 bytes leftover after parsing attributes in process `syz.4.234'.
[   76.278619][ T4601] pim6reg: left allmulticast mode
[   76.355756][   T31] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   76.357538][ T4608] netlink: 132 bytes leftover after parsing attributes in process `syz.3.238'.
[   76.370948][   T31] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   76.392563][   T31] EXT4-fs (loop4): This should not happen!! Data will be lost
[   76.392563][   T31] 
[   76.402404][   T31] EXT4-fs (loop4): Total free blocks count 0
[   76.408417][   T31] EXT4-fs (loop4): Free/Dirty block details
[   76.414589][   T31] EXT4-fs (loop4): free_blocks=2415919104
[   76.420369][   T31] EXT4-fs (loop4): dirty_blocks=8208
[   76.425691][   T31] EXT4-fs (loop4): Block reservation details
[   76.431800][   T31] EXT4-fs (loop4): i_reserved_data_blocks=513
[   76.453845][   T31] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   76.582663][ T4612] loop1: detected capacity change from 0 to 764
[   76.590978][ T4612] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   76.628532][ T4610] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   76.643229][ T4610] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   76.654728][ T4610] bond0 (unregistering): Released all slaves
[   76.748070][ T4615] loop1: detected capacity change from 0 to 8192
[   76.837758][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.875765][ T4620] loop2: detected capacity change from 0 to 1024
[   76.894589][ T4620] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.926567][ T4620] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.242: Allocating blocks 385-513 which overlap fs metadata
[   76.977325][ T4628] loop1: detected capacity change from 0 to 512
[   76.999123][ T4628] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   77.008502][ T4628] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   77.017534][ T4619] EXT4-fs (loop2): pa ffff8881040c50e0: logic 16, phys. 129, len 24
[   77.025090][ T4628] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[   77.025601][ T4619] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[   77.036736][ T4628] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   77.053932][ T4628] System zones: 0-2, 18-18, 34-35
[   77.059830][ T4628] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.079691][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.081073][ T4628] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.244: bg 0: block 353: padding at end of block bitmap is not set
[   77.103638][ T4633] loop4: detected capacity change from 0 to 1024
[   77.120410][ T4633] EXT4-fs: Ignoring removed nobh option
[   77.126205][ T4633] EXT4-fs: Ignoring removed bh option
[   77.143118][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.175565][ T4633] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.183872][ T4637] lo speed is unknown, defaulting to 1000
[   77.211391][ T4641] loop1: detected capacity change from 0 to 4096
[   77.250341][ T4641] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.275314][ T4641] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #15: comm syz.1.249: corrupted inode contents
[   77.289288][ T4641] EXT4-fs (loop1): Remounting filesystem read-only
[   77.312787][ T1767] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   77.535095][ T4631] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.247: Allocating blocks 497-513 which overlap fs metadata
[   77.685932][ T4644] EXT4-fs (loop4): pa ffff888100557770: logic 560, phys. 433, len 5
[   77.694015][ T4644] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[   77.714391][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.756537][ T4656] bond0: entered promiscuous mode
[   77.761720][ T4656] bond0: entered allmulticast mode
[   77.767208][ T4656] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.778206][ T4656] bond0 (unregistering): Released all slaves
[   77.824720][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.865484][ T4661] loop1: detected capacity change from 0 to 2048
[   77.877753][ T4661] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.173454][  T153] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   78.189004][  T153] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   78.201907][  T153] EXT4-fs (loop1): This should not happen!! Data will be lost
[   78.201907][  T153] 
[   78.211760][  T153] EXT4-fs (loop1): Total free blocks count 0
[   78.217814][  T153] EXT4-fs (loop1): Free/Dirty block details
[   78.223765][  T153] EXT4-fs (loop1): free_blocks=2415919104
[   78.229491][  T153] EXT4-fs (loop1): dirty_blocks=8208
[   78.234871][  T153] EXT4-fs (loop1): Block reservation details
[   78.240959][  T153] EXT4-fs (loop1): i_reserved_data_blocks=513
[   78.262958][  T153] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   78.468099][ T4696] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.518273][ T4700] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   78.529832][ T4700] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.547189][ T4700] bond0 (unregistering): Released all slaves
[   78.707418][ T4696] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.803260][ T4703] loop3: detected capacity change from 0 to 2048
[   78.826686][ T4703] EXT4-fs: Ignoring removed mblk_io_submit option
[   78.864975][ T4703] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.884554][ T4696] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.978682][ T4696] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.999637][ T4709] __nla_validate_parse: 14 callbacks suppressed
[   78.999658][ T4709] netlink: 4 bytes leftover after parsing attributes in process `syz.3.263'.
[   79.157484][ T4711] loop1: detected capacity change from 0 to 2048
[   79.363867][ T4711] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.382149][ T4696] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.417477][ T4696] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.442431][ T4696] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.464937][ T4711] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   79.493174][ T4696] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.523052][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.586009][ T4718] netlink: 4 bytes leftover after parsing attributes in process `syz.4.269'.
[   79.699568][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.875180][ T4731] loop2: detected capacity change from 0 to 128
[   79.886267][ T4731] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   79.894207][ T4731] FAT-fs (loop2): Filesystem has been set read-only
[   79.901354][ T4731] bio_check_eod: 16387 callbacks suppressed
[   79.901371][ T4731] syz.2.271: attempt to access beyond end of device
[   79.901371][ T4731] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   79.927405][ T4731] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   79.935378][ T4731] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   79.945573][ T4731] syz.2.271: attempt to access beyond end of device
[   79.945573][ T4731] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   79.975301][ T4733] lo speed is unknown, defaulting to 1000
[   80.306939][ T4731] syz.2.271: attempt to access beyond end of device
[   80.306939][ T4731] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   80.372756][   T29] kauditd_printk_skb: 1281 callbacks suppressed
[   80.372774][   T29] audit: type=1326 audit(80.144:5072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4734 comm="syz.0.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   80.428732][ T4731] syz.2.271: attempt to access beyond end of device
[   80.428732][ T4731] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   80.490093][ T4731] syz.2.271: attempt to access beyond end of device
[   80.490093][ T4731] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   80.513543][ T4738] loop4: detected capacity change from 0 to 128
[   80.525708][   T29] audit: type=1326 audit(80.174:5073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4734 comm="syz.0.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe7f5335967 code=0x7ffc0000
[   80.548731][   T29] audit: type=1326 audit(80.134:5065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4732 comm="syz.4.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa949c25967 code=0x7ffc0000
[   80.571505][   T29] audit: type=1326 audit(80.174:5075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4732 comm="syz.4.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa949bcab89 code=0x7ffc0000
[   80.594515][   T29] audit: type=1326 audit(80.174:5076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4732 comm="syz.4.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   80.617299][   T29] audit: type=1326 audit(80.174:5077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4732 comm="syz.4.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa949c25967 code=0x7ffc0000
[   80.640484][   T29] audit: type=1326 audit(80.174:5078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4732 comm="syz.4.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa949bcab89 code=0x7ffc0000
[   80.663600][   T29] audit: type=1326 audit(80.174:5079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4732 comm="syz.4.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa949c25967 code=0x7ffc0000
[   80.687062][   T29] audit: type=1326 audit(80.174:5080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4732 comm="syz.4.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa949bcab89 code=0x7ffc0000
[   80.709995][   T29] audit: type=1326 audit(80.174:5081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4732 comm="syz.4.273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7fa949c2e9a9 code=0x7ffc0000
[   80.909566][ T4738] ext4: Unknown parameter 'noacl'
[   80.921057][ T4731] syz.2.271: attempt to access beyond end of device
[   80.921057][ T4731] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   80.921270][ T4738] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   80.976517][ T4731] syz.2.271: attempt to access beyond end of device
[   80.976517][ T4731] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   80.991531][ T4731] syz.2.271: attempt to access beyond end of device
[   80.991531][ T4731] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   81.005332][ T4731] syz.2.271: attempt to access beyond end of device
[   81.005332][ T4731] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   81.018913][ T4731] syz.2.271: attempt to access beyond end of device
[   81.018913][ T4731] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   81.077495][ T4745] loop4: detected capacity change from 0 to 128
[   81.096735][ T4745] ext4: Unknown parameter 'noacl'
[   81.115610][ T4748] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   81.220588][ T4745] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   81.265213][ T4748] lo speed is unknown, defaulting to 1000
[   81.306691][ T4751] netlink: 'syz.3.276': attribute type 10 has an invalid length.
[   81.314617][ T4751] netlink: 40 bytes leftover after parsing attributes in process `syz.3.276'.
[   81.325867][ T4751] bridge0: port 3(dummy0) entered blocking state
[   81.332995][ T4751] bridge0: port 3(dummy0) entered disabled state
[   81.347063][ T4751] dummy0: entered allmulticast mode
[   81.364273][ T4755] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.382529][ T4760] loop2: detected capacity change from 0 to 2048
[   81.389571][ T4760] EXT4-fs: Ignoring removed mblk_io_submit option
[   81.424465][ T4760] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.426414][ T4767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.281'.
[   81.445782][ T4767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.281'.
[   81.456819][ T4767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.281'.
[   81.467679][ T4755] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.537249][ T4767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.281'.
[   81.546298][ T4767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.281'.
[   81.568709][ T4767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.281'.
[   81.596588][ T4774] netlink: 4 bytes leftover after parsing attributes in process `syz.2.279'.
[   81.643913][ T4755] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.869900][ T4755] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.033853][ T4755] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.158550][ T4755] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.475137][ T4755] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.492650][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.519325][ T4755] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.568448][ T4785] loop1: detected capacity change from 0 to 512
[   82.592747][ T4785] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   82.605307][ T4785] EXT4-fs (loop1): orphan cleanup on readonly fs
[   82.623277][ T4785] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   82.642392][ T4785] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   82.649785][ T4785] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.285: bg 0: block 40: padding at end of block bitmap is not set
[   82.665433][ T4785] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   82.675540][ T4785] EXT4-fs (loop1): 1 truncate cleaned up
[   82.683058][ T4785] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   82.700060][ T4785] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   82.835647][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.959533][ T4802] loop1: detected capacity change from 0 to 512
[   82.969258][ T4802] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.038271][ T4806] lo speed is unknown, defaulting to 1000
[   83.800120][ T4805] loop3: detected capacity change from 0 to 128
[   83.826119][ T4805] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   83.834097][ T4805] FAT-fs (loop3): Filesystem has been set read-only
[   83.853367][ T4805] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   83.861606][ T4805] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   84.006114][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.146180][ T4822] __nla_validate_parse: 5 callbacks suppressed
[   84.146194][ T4822] netlink: 4 bytes leftover after parsing attributes in process `syz.4.299'.
[   84.210418][ T4818] netlink: 16 bytes leftover after parsing attributes in process `syz.1.297'.
[   84.301547][ T4832] loop1: detected capacity change from 0 to 2048
[   84.310023][ T4835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.304'.
[   84.318820][ T4832] EXT4-fs: Ignoring removed mblk_io_submit option
[   84.319337][ T4835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.304'.
[   84.350471][ T4832] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.352706][ T4835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.304'.
[   84.445182][ T4835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.304'.
[   84.454138][ T4835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.304'.
[   84.478917][ T4846] netlink: 4 bytes leftover after parsing attributes in process `syz.1.302'.
[   84.585560][ T4835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.304'.
[   84.630532][ T4828] loop4: detected capacity change from 0 to 8192
[   84.753481][ T4835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.304'.
[   84.834075][ T4852] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[   84.840650][ T4852] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   84.848307][ T4852] vhci_hcd vhci_hcd.0: Device attached
[   84.857092][ T4853] vhci_hcd: cannot find the pending unlink 6
[   84.937996][ T4828]  loop4: p1 p4 < >
[   84.942160][ T4828] loop4: p1 start 4261412864 is beyond EOD, truncated
[   84.953478][ T4840] Set syz1 is full, maxelem 65536 reached
[   85.017141][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.033207][ T4853] vhci_hcd: connection closed
[   85.036426][ T1767] vhci_hcd: stop threads
[   85.045618][ T1767] vhci_hcd: release socket
[   85.050106][ T1767] vhci_hcd: disconnect device
[   85.091014][ T2960] usb 7-1: new low-speed USB device number 2 using vhci_hcd
[   85.098566][ T2960] usb 7-1: enqueue for inactive port 0
[   85.104904][ T2960] usb 7-1: enqueue for inactive port 0
[   85.110583][ T2960] usb 7-1: enqueue for inactive port 0
[   85.142435][ T4863] loop2: detected capacity change from 0 to 512
[   85.151615][ T4866] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26368 sclass=netlink_route_socket pid=4866 comm=syz.4.307
[   85.166585][ T4863] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.182591][ T2960] vhci_hcd: vhci_device speed not set
[   85.399117][ T4871] loop1: detected capacity change from 0 to 8192
[   85.428956][ T4882] loop4: detected capacity change from 0 to 128
[   85.435688][ T4871]  loop1: p1 p4 < >
[   85.435752][ T4871] loop1: p1 start 4261412864 is beyond EOD, truncated
[   86.010280][   T29] kauditd_printk_skb: 356 callbacks suppressed
[   86.010298][   T29] audit: type=1400 audit(85.774:5436): avc:  denied  { bind } for  pid=4883 comm="syz.3.312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   86.822071][   T29] audit: type=1326 audit(86.594:5437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.0.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   86.822415][   T29] audit: type=1326 audit(86.594:5438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.0.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   86.822760][   T29] audit: type=1326 audit(86.594:5439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.0.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   86.825591][ T4892] xt_CT: No such helper "pptp"
[   86.826334][   T29] audit: type=1326 audit(86.594:5440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.0.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   86.826529][   T29] audit: type=1326 audit(86.594:5441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.0.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   86.827250][   T29] audit: type=1326 audit(86.594:5442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.0.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   86.827507][   T29] audit: type=1326 audit(86.594:5443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.0.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   86.828026][   T29] audit: type=1326 audit(86.594:5444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.0.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   86.828240][   T29] audit: type=1326 audit(86.594:5445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.0.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7f533e9a9 code=0x7ffc0000
[   87.056811][ T4897] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.158854][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.179264][ T4897] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.224258][ T4897] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.274429][ T4897] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.302437][ T4908] loop3: detected capacity change from 0 to 128
[   87.324492][ T4897] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.337979][ T4897] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.342517][ T4897] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.363865][ T4897] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.483386][ T4912] loop4: detected capacity change from 0 to 2048
[   87.484029][ T4912] EXT4-fs: Ignoring removed mblk_io_submit option
[   87.526224][ T4912] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.587865][ T4921] program syz.2.324 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   87.589654][ T4921] loop2: detected capacity change from 0 to 128
[   87.592603][ T4921] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   87.631054][ T3316] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   87.914350][ T4940] program syz.1.342 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   87.925275][ T4935] loop2: detected capacity change from 0 to 8192
[   87.933710][ T4940] loop1: detected capacity change from 0 to 128
[   87.939331][ T4940] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   87.971855][ T4935]  loop2: p1 p4 < >
[   87.971919][ T4935] loop2: p1 start 4261412864 is beyond EOD, truncated
[   87.986126][ T3307] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   88.073044][ T4950] xt_CT: No such helper "pptp"
[   88.130801][ T4955] loop3: detected capacity change from 0 to 512
[   88.135494][ T4954] program syz.1.346 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   88.144182][ T4955] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.158930][ T4954] loop1: detected capacity change from 0 to 128
[   88.168112][ T4954] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   88.202945][ T3307] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   89.250776][ T4972] loop2: detected capacity change from 0 to 1024
[   89.273546][ T4972] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.354068][ T4972] SELinux: ebitmap: truncated map
[   89.390565][ T4972] SELinux: failed to load policy
[   89.407387][ T4972] batman_adv: batadv0: Adding interface: dummy0
[   89.413998][ T4972] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.439580][ T4972] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[   89.473761][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.484624][ T4868] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[   89.500511][ T4868] EXT4-fs (loop4): Remounting filesystem read-only
[   89.516443][ T4972] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[   89.528808][ T4972] EXT4-fs (loop2): This should not happen!! Data will be lost
[   89.528808][ T4972] 
[   89.538875][ T4972] EXT4-fs (loop2): Total free blocks count 0
[   89.545029][ T4972] EXT4-fs (loop2): Free/Dirty block details
[   89.551034][ T4972] EXT4-fs (loop2): free_blocks=0
[   89.556016][ T4972] EXT4-fs (loop2): dirty_blocks=0
[   89.561574][ T4972] EXT4-fs (loop2): Block reservation details
[   89.567820][ T4972] EXT4-fs (loop2): i_reserved_data_blocks=0
[   89.586752][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.631013][ T4982] __nla_validate_parse: 12 callbacks suppressed
[   89.631078][ T4982] netlink: 4 bytes leftover after parsing attributes in process `syz.2.338'.
[   89.722818][ T4988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.345'.
[   89.731737][ T4988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.345'.
[   89.741516][ T4988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.345'.
[   89.760570][ T4988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.345'.
[   89.769481][ T4988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.345'.
[   89.779152][ T4988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.345'.
[   89.813933][ T4988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.345'.
[   89.822818][ T4988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.345'.
[   89.839722][ T4990] netlink: 16 bytes leftover after parsing attributes in process `syz.2.347'.
[   89.974792][ T5004] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[   89.975697][ T5000] xt_CT: No such helper "pptp"
[   89.981720][ T5004] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   89.981941][ T5004] vhci_hcd vhci_hcd.0: Device attached
[   90.004449][ T5005] vhci_hcd: cannot find the pending unlink 6
[   90.104611][ T5005] vhci_hcd: connection closed
[   90.104976][ T4148] vhci_hcd: stop threads
[   90.114125][ T4148] vhci_hcd: release socket
[   90.118629][ T4148] vhci_hcd: disconnect device
[   90.180988][ T3529] vhci_hcd: vhci_device speed not set
[   90.196162][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.219912][ T5011] loop4: detected capacity change from 0 to 512
[   90.229194][ T5011] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.622446][ T5013] ==================================================================
[   90.630608][ T5013] BUG: KCSAN: data-race in __filemap_remove_folio / folio_mapping
[   90.638636][ T5013] 
[   90.640997][ T5013] write to 0xffffea0004807798 of 8 bytes by task 5011 on cpu 1:
[   90.648670][ T5013]  __filemap_remove_folio+0x1a5/0x2a0
[   90.654183][ T5013]  folio_unmap_invalidate+0x1dd/0x360
[   90.659784][ T5013]  invalidate_inode_pages2_range+0x27c/0x3d0
[   90.665813][ T5013]  filemap_invalidate_pages+0x16d/0x1a0
[   90.671499][ T5013]  kiocb_invalidate_pages+0x6e/0x80
[   90.676765][ T5013]  __iomap_dio_rw+0x5d4/0x1250
[   90.681660][ T5013]  iomap_dio_rw+0x40/0x90
[   90.686092][ T5013]  ext4_file_write_iter+0xad9/0xf00
[   90.691349][ T5013]  iter_file_splice_write+0x5f2/0x970
[   90.696776][ T5013]  direct_splice_actor+0x156/0x2a0
[   90.701929][ T5013]  splice_direct_to_actor+0x312/0x680
[   90.707361][ T5013]  do_splice_direct+0xda/0x150
[   90.712372][ T5013]  do_sendfile+0x380/0x650
[   90.716874][ T5013]  __x64_sys_sendfile64+0x105/0x150
[   90.722204][ T5013]  x64_sys_call+0xb39/0x2fb0
[   90.726855][ T5013]  do_syscall_64+0xd2/0x200
[   90.731401][ T5013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.737390][ T5013] 
[   90.739735][ T5013] read to 0xffffea0004807798 of 8 bytes by task 5013 on cpu 0:
[   90.747315][ T5013]  folio_mapping+0xa1/0x120
[   90.751857][ T5013]  folio_wait_writeback+0x43/0x140
[   90.757132][ T5013]  file_write_and_wait_range+0x20b/0x2c0
[   90.762817][ T5013]  generic_buffers_fsync_noflush+0x45/0x120
[   90.768941][ T5013]  ext4_sync_file+0x1ab/0x690
[   90.773669][ T5013]  vfs_fsync_range+0x10d/0x130
[   90.778572][ T5013]  ext4_buffered_write_iter+0x34f/0x3c0
[   90.784350][ T5013]  ext4_file_write_iter+0xdbf/0xf00
[   90.789597][ T5013]  iter_file_splice_write+0x5f2/0x970
[   90.795025][ T5013]  direct_splice_actor+0x156/0x2a0
[   90.800196][ T5013]  splice_direct_to_actor+0x312/0x680
[   90.805627][ T5013]  do_splice_direct+0xda/0x150
[   90.810449][ T5013]  do_sendfile+0x380/0x650
[   90.814906][ T5013]  __x64_sys_sendfile64+0x105/0x150
[   90.820163][ T5013]  x64_sys_call+0xb39/0x2fb0
[   90.824800][ T5013]  do_syscall_64+0xd2/0x200
[   90.829346][ T5013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.835290][ T5013] 
[   90.837644][ T5013] value changed: 0xffff8881006186d8 -> 0x0000000000000000
[   90.844782][ T5013] 
[   90.847171][ T5013] Reported by Kernel Concurrency Sanitizer on:
[   90.853362][ T5013] CPU: 0 UID: 0 PID: 5013 Comm: syz.4.353 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(voluntary) 
[   90.865729][ T5013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   90.875815][ T5013] ==================================================================
[   91.711619][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.