last executing test programs:

4.11472402s ago: executing program 0 (id=1532):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x30, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = memfd_create(&(0x7f0000000900)='prodM\xb0\xea\a\x06\xbe\xaen/\xce4\xb7\xc1\xef\xba!\x9d\rSt\xa24\t\x00\xae\x00\x00\x00\x00\x00\xff\xff\x10\x04\x00\x00\x1dz\xd05\xe2e,\xb1\x84\xea\x91^%\xb0#R\x04\x06\xae\xebA;Y\xeb\x8f\xec\xb4\xf9\x17\xb7\x04\xc2\xc0\xc6\xb4\v\xff\xfc\x88\x90\xabC\x02\x00\xf04\x03\x88\xae9\'>R^P{Vr!\xe2W\xc72\xea\xb7Wp\xc36\x96\xffZ\\A@\x00\x00\x00\xc9\xf3Y\xb8\x89#\xa1\xb1)Dk\xeb\xa1\t\x00{u[\xbd\x9d\xf4\xbf\\\xce\x02P\xf2MY\x05^\xffj\x9c\x14\xb7\xb6v\x1d*1>\x00 \x00\x00\x00\x00\x14C?]\x8c\xb4Y\xcf\x80\x85\xd6\x036\xc8~\xa8\f\x00\x00:s>\xd7s\xef\xb3\x9f#\x15)\xf9\xe10\xc7\xb262<k\xa8\x88\x01\x00fhD\xe7\xb6\x17\x80\x95\xa8\x1e\t\xb01KB\xcb\x00\x1e\x7fE\x7f\x02\x00\x00\x00y<nGR\x94\x99\xb8\x89\x9b\x8f\xd5\xe6\x02\xb5C\xad\"u\xf4>-\x00\x00\x00\x00\xc8X\xdaNz\x0eu\x8f\x01\x00\xdd\xff\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc3\xa7/\x88\x9b`\xa5\x98\x81a\xeev\x00\x00\x00\x00\a\x00\x00m2\xf2\xd8,\x17\xf8\x8e\xae\xc8\xad\xed<\"\x8e\n\x9d\xb13\x8d\xef\x96\xd2I\"8=tg\xdfU\xd0q\x95/f\xec\xdc\xa3\xe1[\xc0\xaa\xefz\xc9\xf4[R\xc36b\xf0~\xd9>\x13\xc0\x83E\xd27)\xd5yQ\xff}5\x94\x88\xa1\xdc\xa1g\xe0q\xc5:\xe4\xdf\x80\xb3,\xb9\xb2\xdc\x81\x9f6\x0f\x84WY\xbfSY`\xb8\a\x19\xb1\x058\xa4\xc3\xbb\xf8aB:\x84\x02?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf3o-GU\xb0\x00F\xb3o(aI[\xd6\x9fG\xaeI\x83\x93\x8cC\xc0#\xe0q\xd0Ex|\xdb\xa8\x16\xfe>:\t0\xfd\x8a\xc7\x84\xb5\xc7M-0A\xf0\x94\xf3\xcc\x8d\xbb3\\\"\x882\xb3\xa84\xac\x00\xdd}Ft\xc6\xcc\f}!X#\xe4\xe1\x94i\xce\xa1\xff\x95\x80\xb4T\x9c\x01\xf3\x1cLB\x94m(m\f\xbc\xebY\xa0\xf7\xf0\x9d\x10\xbd\x86\x1by\xe6\xdf\xc0\xc5\xb9\xb9\xbf\xdf~9\nC\xe9\xc5\x0e\xda\x9c(\x9b\"\xc7\x97\xfc\b\xd9\xc2T\xa7*}]\xc8\xb3 .\x9b\x89\x0f\xf8$\xdd>lU\x13EG\xbb1] \xda\x19\xc5\x9b\x15\x95\xc4\xfcw\xbb\x92\x91\xc4\xa6\x907XK\xfc\x17]\xfa\xff\'\xef\x92\x1c\xb8\x1fK\xb2o \xd1\xbd\xb2\x11+\xa3R\xefQ\xc2\xbdW\x05\xec\xb3=@\x03\xc6^\xa2\x15D\xb0\'D#\xb6Q\x8f\x82?S>\x00P\x9cE\x92{d\xe6\x9cj1\x87\xb3\x01\xde\xe8\x89\xc4s\xb7\x14~}\xaa\x8c\xc3\x95BAE\xf2.\x8fC\x91W\xadi\x00\xf2k\xd5v\xd3\x84d\xf4\x134\xa6XI\xe5h\xaa\x15\x9a\xf7Z\xe3%\x88\x7f\x90\xbb\x9dt\xa3\xe1\r\x8d\x94\"\x19\x8b\x17)\xea\xd5\x17\xeb\xe4\x1b\x0fBZ1\xbe\xee\xfa\x1c\xf9\xa6\x11\x94\x1a\\P:\xaf\xcex\xc2\x82\x9a\x16\xfc\xa1\xf9\xbba\b\xbb\xed\xb2\xd1W\xe2\x8b\x8d8}\xf0V\xbd\xa60A\xc3\x03\xfa\x890\x86#\bQ\xcb)\xf6]\x9e\x14\xd2\xea\x82\xa8\xb7ZG\x15r\xf1n 1\x8d \xc1\xaf\x19\\\x91\x13\x1b8\xe1\xc3\xa4\v\x94\xbfJ\xb5\xde\x95\x82\x00]B|\xe2[%\xe3\xf0\x04\xba\xed\xdb\xf5\x7f\x9d\xfe>\xf6m$M&\x7fq]\xe4\xf6\x82\xc3\x00\xb1zg}\x99E\xa4\x19\xe9\x1a4a\xd75D-k\x84\xa6\x12+\xebk\xa1\xfek\x89\xef\x18\xc1)6\xa65\xe2D\xbe\xe1\xdfq\xdd68\xf37g\xab9m\xe7\xddO\v?\xe0\xbe}\xa9U\xc7{\xd3\x16W\xbb\xe5\xd2\x93\xfe\xa4\x9d\r$\xe91c8`\x86\xbc)\xe29\xc3}\xb9P\xbbF\xc6\x12\x8c_x\xa8\xf2\xb5K\x03\x85\x92k\xe1\x8e\x1f)\".\xcc\'\v\xa6\x1bj\\\n\xe98\x1eG\x11:\x85\x80\xc4\xcbo\x99\x99\xeb)r\x1a\xce\x18(\x185LL\xbcOeO\'\xe2\x86&\xe4\xe2\xe7~\x92\xa2\xb2\x1b\xc3\x00\x85\xce\xad7\x87\xa0\xfcc\xf5\xf8\xaf\v,q\xd4\x18\xbdM\x1a\xde\xba*L\x05m6\xecH\xd0T\xb8m\xdb\b\xa6\x02\xfb\x13\xac\x91\x8a\x8d\x94\x93\x8d=\xb1\x84\x9c\x9b\xe5\xc7\xa6\xc9Q\xc1eUc\xcc\x180^\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00KT2\x1b\x16=\x10\xd3\x9a\xf0\xb7\x00\x00\x00\x00\x00\x00\x00\xc3k\xc2\xb6\x06+s^\xe3\xbf\x89\xe1\xbd\"\x81\x9f\xd4\xb1\x1b\xf4\n\x87\xf8\xc3(*\xc8\xcd\x13)\xdd$<\xeb\x8c\xa0\x88\xe6MT\x86\xaaA\xcd\x1c\xad\x8fTZ\xa8_\xda\xf9\x8b\x90\x0f\xe1\r\x1b_\"9m\xe2]B\x8exQ\x92w$\x12a\x85\x92\x82_]\xaf\t\xdc\xd8\xa5&\xd4\xd0\x98\x98\xeb\x00\x00i\x00\x00\x00\x00\x00\x00\x00^\xaeLz\xe9\xc6\f\x12\x17C\xe9\x03JmJ\xa5\x9f\x8ea=P\xdb\xa1u\x9d\xa7e\xaed=B\x8b\x8f\x92-\x93~\a\x1d\xb5y\x8b\xea\xa3\xf1\x06\x8c\xda\x01vC\xf8#\x9c\x9a\"%n\xc29\x00\xca>\b\xf1M\xe3\x14\xf7v\xe8\xf8\xc4\x85\xdaz=\x03\xc4d8\x11~\"|\xf1\xaf>\x9b\xabNR\xc5R\xa6\x91\x9d\xc6\xe1\x94\x93\x0e\xed~\x1c\xd9}\xbf\nD\xe9pf}\x15\xae\x11u(\x94x\x00}\x1dS\xb9I\x17m~\x16\x85\xc7\x87#e\x97\x86\x84\"\xa5\xd9\x12\x15\x95\xe4\xbc\x9a\xb6\xdd\x89.f\r\x85h,-\x94?\xc8\xb7h<f\x95\xcd\xc8\xb0\xa9\x94FMC\"H\xaeWq\xf4@\xfd\t\xf4\x92fY4\x8a\xda\x97\x1a\xfb/\xec\x1eg\xa1\xa1\xf9\x1c\xffF\xdf&\xc1\xf5*@q&q\xb9\x14\x9e[\xf7yW\x10g\xf2\x91\xf1\xa9z\xbf\xde\xa0\xde\x1f\xe3Y\xf1\xa4\x1b\xe5\xd4-\x97\xe3', 0x7)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800004, 0x0, 0x12, r1, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)

4.095950081s ago: executing program 0 (id=1534):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000006000000000000203730730200b103000000000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = socket$igmp(0x2, 0x3, 0x2)
bind$inet(r3, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x4}, 0x18)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r4, 0x107, 0x5, &(0x7f00000000c0)=@req={0x684bda94, 0x7, 0x2, 0x7}, 0x10)
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000100)=@req3={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x861}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x0)
semtimedop(0x0, &(0x7f0000000280)=[{0x0, 0x0, 0x1000}], 0x1, 0x0)
unshare(0x2c040000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='rpm_return_int\x00'}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x8, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r6}, &(0x7f00000000c0), &(0x7f0000000100)=r5}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r6, &(0x7f0000000280)}, 0x20)
r7 = syz_open_dev$usbfs(&(0x7f0000000480), 0xc, 0x141341)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000001bc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)

3.67690959s ago: executing program 0 (id=1543):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000970000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x10)
r1 = socket$inet(0x2, 0x4000000000000001, 0x6)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007bc, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)

3.609963086s ago: executing program 0 (id=1545):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x5, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$binfmt_misc(r0, &(0x7f0000000000)=ANY=[], 0xfffffecc)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r4=>0x0})
r5 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r5, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r5, &(0x7f0000000000)={0x28, 0x0, 0x0, @host}, 0x10)
sendmsg$NFT_BATCH(r5, &(0x7f0000000780)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000740)={&(0x7f0000000dc0)={{0x14}, [@NFT_MSG_NEWTABLE={0x2c, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELTABLE={0xd8, 0x2, 0xa, 0x801, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFTA_TABLE_USERDATA={0x9c, 0x6, "13c4d07a28174eab4271428a04849c8a64a9207d71ab741b13ec33789cef995f91bca3a3ac9381ad54a079825e1e803ee6d02ac22f30f9011a057b29c7f2a9d451cfcfc8a8bd476fb1ed94a334e44848ba9eb583587cb6e84c616c91487ed7eb87cd07f7d3abd72ec3dd12c103e1a4c5cd237812cef1dc1a764fbe473cf8334dd452544833b8d2450962430062c87e779295c2e2754f7dee"}, @NFTA_TABLE_USERDATA={0x13, 0x6, "e3306bf1a46f9e4008b4ed68153c15"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWSET={0xb0, 0x9, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_EXPRESSIONS={0x6c, 0x12, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @range={{0xa}, @void}}, {0x58, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0x13}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x16}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x23}, @NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x89}]}}}]}, @NFTA_SET_DESC={0x8, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x4}]}, @NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_EXPR={0x14, 0x11, 0x0, 0x1, @inner={{0xa}, @val={0x4}}}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x2}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_NEWCHAIN={0xb4, 0x3, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_CHAIN_COUNTERS={0x28, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xe}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x9}]}, @NFTA_CHAIN_USERDATA={0x68, 0xc, "185d4c18920adf8f6e3b31c2ee43a0494b03cf43c674c2050eafdddcddd40fe619e344bcc176bf269c7fb55c9adbe79ecf216f58625253e8c73ecba356fef6314c2e45e37812dd84e02b9f37a91b834ba76253819061d3cc7bf0007d20425cb2cc56bfdf"}, @NFTA_CHAIN_COUNTERS={0x10, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x100}]}]}, @NFT_MSG_DELSET={0x204, 0xb, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x2}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x4}, @NFTA_SET_DESC={0x1c0, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x30, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x744}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, @NFTA_SET_DESC_CONCAT={0x80, 0x2, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x24}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}]}, {0x4}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfe}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1e05}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x10c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xc81d}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7ff}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x401}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xb58}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd7}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8001}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x40}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x200}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6b}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}]}]}]}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x7}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x2}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x4b0}, 0x1, 0x0, 0x0, 0x20008040}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000d80)=@ipv4_newaddr={0x20, 0x14, 0x509, 0x0, 0x0, {0x2, 0x1, 0x0, 0xfd, r4}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
syz_clone3(&(0x7f00000004c0)={0x80, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000480)=[0xffffffffffffffff], 0x1}, 0x58)

2.668526893s ago: executing program 0 (id=1580):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3d}, 0x9}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
pwritev(r1, &(0x7f0000000440)=[{&(0x7f0000001840)="fd92", 0x2}], 0x1, 0x0, 0x0)

2.530710996s ago: executing program 0 (id=1587):
lseek(0xffffffffffffffff, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)
r2 = socket$inet6(0xa, 0x80000, 0x8e5af34)
r3 = open_tree(0xffffffffffffff9c, 0x0, 0x0)
symlinkat(&(0x7f0000000040)='./file0\x00', r3, &(0x7f0000000080)='./file0\x00')
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000003680)=ANY=[@ANYRES32=0x0, @ANYBLOB="0000000000000020000000000400"/28, @ANYBLOB="0000000000000000000000000000000000000000da6cdbb1d9387a875e5ae348d07ce429009ac651bd1a8e868c45858d5d1970bc5979410a3f9c4b71621bb0b03cfa7a7ed266d0fe92f66f1954858626063e9af9c57e3f888b91dc97fd6ad5fa9b5ac395f654fa84b8db4c8d69d3872a081ccad55132a8db7863c5388ae55711e25a35a2b4c9970b9101fc6dcd55054591091a509f5983b1a4067c81808ad24acd562d3c942e4c9e583794e3d463469c051e94f769925a9d1c113fbe03d6f8faa178e91526ae569f7b55a18a4d2d6191ccf13fcdaf789d17f36cd0230651d93d6c98376382f8d09e48b4507ccca49574b690d423de", @ANYBLOB="0b00000005000000010001000700000001000000", @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32=r1, @ANYRES64, @ANYBLOB="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", @ANYRES64], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xa, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r5}, 0x18)
sync()
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000400)=@sg0, 0x0, &(0x7f00000025c0)='./bus\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="f96a9e5837ce2b0590dc4e1003cb95b844e759d4d9dd3274bd797d22cc99d94ae36b554f18b6fb24524b4f939a16268563fd8f30a4f0234e83287be532f452b25e0efc65cb1d7b3c2c6cdb45cef9c789553f79432076b0571640f744367f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1200000025000000040000020200040000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r7, <r8=>0xffffffffffffffff}, &(0x7f0000000700), &(0x7f0000000740)=r6}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000040)={r8, &(0x7f0000000300), 0x0}, 0x20)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000100)={[{@errors_remount}, {@nodelalloc}, {@bh}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@block_validity}]}, 0x3, 0x45e, &(0x7f0000001280)="$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")
open(0x0, 0x0, 0x0)
r10 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r10, 0x7, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

1.144670374s ago: executing program 4 (id=1621):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008bd6000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000002c0)='neigh_create\x00', r1}, 0x10)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0xfdef)

1.116703687s ago: executing program 4 (id=1623):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc, 0x1400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)={0x38, 0x1403, 0x1, 0x70bd27, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'team0\x00'}}]}, 0x38}}, 0x0)

1.059187192s ago: executing program 4 (id=1627):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_drop_memb(r0, 0x107, 0x2, 0x0, 0x0)

1.004277507s ago: executing program 4 (id=1628):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f00000059c0)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000000100)='d', 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r0, 0x1)
sendmmsg$inet6(r0, &(0x7f0000000ac0)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x10000, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4}, 0x1c, &(0x7f0000000540)=[{&(0x7f0000000080)="9cb2", 0x2}], 0x1}}], 0x1, 0x20008003)

934.828954ms ago: executing program 4 (id=1629):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x2, &(0x7f0000001b80)=ANY=[@ANYRES32=0x0, @ANYBLOB="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", @ANYRES32], 0xff, 0x2e7, &(0x7f0000000280)="$eJzs3M9LG2kcx/Gvml9GNDksu+wuy37ZveyyMGj2XghFaWmgRU2pLRRGnbQh00QygyWlqD31WvpH9CDe6k1oe+jVS2899dKbhxZKqfTXlEwmGjX+oiZa836B5nGe5+vzTGYcPiNk1q48uFXIOUbOdKW7OyzdIguyLpKstkQq1W9dIhKTmi6JSKMF+bfv3cs/xiauXkhnMsOjqiPp8f9Tqjrw55Pbd5f+eub2XV4eWInKavL62tvU69WfV39d+zp+M+9o3tFiyVVTJ0uv3Mikbel03ikYqpc8z3QszRefT4j4/SXXrPbn7NLMTEXN4nR/fKZsOY6axYoWrIpKSKRcUfOGmS+qYRjaHxfsJ7o4Omqm/Wbs0MVTLVgQvtu5HSd+uZw2e0Skd8fY7GK7VgUAAE6OLfk/ptvzv68reK1u+eJ5XmO9n//fPxY5UP5fieyS/4N8X8//tlXL/45Vdg+W/92SutX8HyL/H0J2M//j1Krm/3jw9+u7d21p0G+Q/wEAAAAAAAAAAAAAAAAAAAAA+BGse17C87xE/bX+FQ0+El7/+bjXidbg+He2MQ0aqjER+/5sdjYrYodrGzeOuyWDkpDP/vkQqLVHzmeGB9WXlKf2fFA/P5vt8QvTOcmLLZYMSUKSzeuHavW6tT4s8cb6lCTkp+b1qab1Efnn74Z6QxLyYkpKYsu0f15v1s8NqZ69mNlW3+uPAwAAAADgNDB0Q9P7d8PYrb9Wn86J+PfX+/9/YNv9dUh+Cx3vvgMAAAAA0Cmcyp2CadtWuY2NmIi0fq7q3rV+d3r3HjP3X/vf3pPTSDRsqT9Euu3LCDVOGg1W0aK5fnn46MPR/cIzy79/atb1sS1v3QEuHuHWXZcAAAAAHL3N0L/7GO9NO1cEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDnad1TxHqCGfZ6sgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQWb4FAAD//9yVIwU=")
mkdirat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x4c37e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
truncate(&(0x7f0000000180)='./file0\x00', 0x100000001)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r5, &(0x7f0000000000), 0xe)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r6, 0x0, 0x0)
listen(r6, 0x0)
listen(r5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="180000000800"/15, @ANYRESOCT=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x27, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
fallocate(r1, 0x0, 0x0, 0x9000f4)

823.224204ms ago: executing program 2 (id=1633):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e00000085000000500000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x9)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
pwritev(r1, &(0x7f0000000440)=[{&(0x7f0000001840)="fd92", 0x2}], 0x1, 0x0, 0x0)

768.863719ms ago: executing program 2 (id=1635):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r1, &(0x7f0000000600)={&(0x7f0000000000)={0x2, 0x0, @dev}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000480)="96bc14585c62", 0x6}], 0x2, &(0x7f00000004c0)=[@ip_tos_u8={{0x11, 0x0, 0x7}}], 0x18, 0x1000000}, 0x0)

729.103523ms ago: executing program 2 (id=1638):
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, 0x0, 0x0)

686.144137ms ago: executing program 2 (id=1640):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3d}, 0x9}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x9)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
pwritev(r1, &(0x7f0000000440)=[{&(0x7f0000001840)="fd92", 0x2}], 0x1, 0x0, 0x0)

500.632804ms ago: executing program 1 (id=1642):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000004c0)={'\x00', 0x0, 0x3, 0x3})
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)

333.763259ms ago: executing program 2 (id=1644):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0xe, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000ecff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
process_vm_readv(0x0, &(0x7f0000001140)=[{&(0x7f0000000000)=""/87, 0x62}, {&(0x7f0000001200)=""/4096, 0x100a}], 0x2, &(0x7f00000011c0)=[{0xfffffffffffffffc, 0x19000}], 0x1, 0x0)

329.9162ms ago: executing program 1 (id=1645):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440), 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
write$binfmt_misc(r3, &(0x7f0000000080)=ANY=[], 0x37)
r4 = accept4$unix(r2, 0x0, 0x0, 0x0)
recvmsg(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000300)=""/83, 0x53}], 0x1}, 0x0)

308.756132ms ago: executing program 1 (id=1646):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008bd6000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000002c0)='neigh_create\x00', r1}, 0x10)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0xfdef)

292.690343ms ago: executing program 1 (id=1647):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffc, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x4ffe6, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
syz_read_part_table(0x5ed, &(0x7f0000000600)="$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")

273.335165ms ago: executing program 2 (id=1648):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xec)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802)
writev(r3, &(0x7f0000000140)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
read(r3, 0x0, 0x0)
mount(0x0, &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, 0x0)
r4 = dup(r1)
pipe2$9p(&(0x7f00000001c0)={<r5=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RLERRORu(r4, &(0x7f0000000380)=ANY=[@ANYBLOB="8b"], 0x53)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000380)={0x14, 0x0, 0x1}, 0x14}}, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}})

152.754907ms ago: executing program 3 (id=1653):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r1, &(0x7f0000000600)={&(0x7f0000000000)={0x2, 0x0, @dev}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000480)="96bc14585c62", 0x6}], 0x2, &(0x7f00000004c0)=[@ip_tos_u8={{0x11, 0x0, 0x7}}], 0x18, 0x1000000}, 0x0)

152.324947ms ago: executing program 3 (id=1654):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000005000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))

128.201559ms ago: executing program 3 (id=1655):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='\ba\xbc\r\x92')
r1 = syz_open_dev$loop(0x0, 0x0, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000004c0)={'\x00', 0x0, 0x3, 0x3})
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)

115.12953ms ago: executing program 1 (id=1656):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440), 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
write$binfmt_misc(r3, &(0x7f0000000080)=ANY=[], 0x37)
r4 = accept4$unix(r2, 0x0, 0x0, 0x0)
recvmsg(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000300)=""/83, 0x53}], 0x1}, 0x0)

48.167626ms ago: executing program 3 (id=1657):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008bd6000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000002c0)='neigh_create\x00', r1}, 0x10)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0xfdef)

40.025687ms ago: executing program 1 (id=1658):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r3, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
recvmsg$unix(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0xb3}], 0x1}, 0x0)
ioctl$MON_IOCT_RING_SIZE(0xffffffffffffffff, 0x9204, 0x80000000003d55d)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xb, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
r10 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r10, 0x6, 0xd, &(0x7f00000002c0)='cdg\x00', 0x4)
close(r10)
r11 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0)
write$selinux_context(r11, &(0x7f0000000540)='system_u:object_r:cpu_device_t:s0\x00', 0x22)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r12}, 0x10)

39.249287ms ago: executing program 4 (id=1659):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x5, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$binfmt_misc(r0, &(0x7f0000000000)=ANY=[], 0xfffffecc)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})
r3 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r3, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @host}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f0000000780)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000740)={&(0x7f0000000dc0)={{0x14}, [@NFT_MSG_NEWTABLE={0x2c, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELTABLE={0xd8, 0x2, 0xa, 0x801, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFTA_TABLE_USERDATA={0x9c, 0x6, "13c4d07a28174eab4271428a04849c8a64a9207d71ab741b13ec33789cef995f91bca3a3ac9381ad54a079825e1e803ee6d02ac22f30f9011a057b29c7f2a9d451cfcfc8a8bd476fb1ed94a334e44848ba9eb583587cb6e84c616c91487ed7eb87cd07f7d3abd72ec3dd12c103e1a4c5cd237812cef1dc1a764fbe473cf8334dd452544833b8d2450962430062c87e779295c2e2754f7dee"}, @NFTA_TABLE_USERDATA={0x13, 0x6, "e3306bf1a46f9e4008b4ed68153c15"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWSET={0xb0, 0x9, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_EXPRESSIONS={0x6c, 0x12, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @range={{0xa}, @void}}, {0x58, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0x13}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x16}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x23}, @NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x89}]}}}]}, @NFTA_SET_DESC={0x8, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x4}]}, @NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_EXPR={0x14, 0x11, 0x0, 0x1, @inner={{0xa}, @val={0x4}}}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x2}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_NEWCHAIN={0xb4, 0x3, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_CHAIN_COUNTERS={0x28, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xe}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x9}]}, @NFTA_CHAIN_USERDATA={0x68, 0xc, "185d4c18920adf8f6e3b31c2ee43a0494b03cf43c674c2050eafdddcddd40fe619e344bcc176bf269c7fb55c9adbe79ecf216f58625253e8c73ecba356fef6314c2e45e37812dd84e02b9f37a91b834ba76253819061d3cc7bf0007d20425cb2cc56bfdf"}, @NFTA_CHAIN_COUNTERS={0x10, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x100}]}]}, @NFT_MSG_DELSET={0x204, 0xb, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x2}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x4}, @NFTA_SET_DESC={0x1c0, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x30, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x744}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, @NFTA_SET_DESC_CONCAT={0x80, 0x2, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x24}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}]}, {0x4}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfe}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1e05}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x10c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xc81d}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7ff}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x401}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xb58}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd7}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8001}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x40}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x200}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6b}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}]}]}]}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x7}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x2}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x4b0}, 0x1, 0x0, 0x0, 0x20008040}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
syz_clone3(&(0x7f00000004c0)={0x80, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000480)=[0xffffffffffffffff], 0x1}, 0x58)

17.447289ms ago: executing program 3 (id=1660):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x30, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = memfd_create(&(0x7f0000000900)='prodM\xb0\xea\a\x06\xbe\xaen/\xce4\xb7\xc1\xef\xba!\x9d\rSt\xa24\t\x00\xae\x00\x00\x00\x00\x00\xff\xff\x10\x04\x00\x00\x1dz\xd05\xe2e,\xb1\x84\xea\x91^%\xb0#R\x04\x06\xae\xebA;Y\xeb\x8f\xec\xb4\xf9\x17\xb7\x04\xc2\xc0\xc6\xb4\v\xff\xfc\x88\x90\xabC\x02\x00\xf04\x03\x88\xae9\'>R^P{Vr!\xe2W\xc72\xea\xb7Wp\xc36\x96\xffZ\\A@\x00\x00\x00\xc9\xf3Y\xb8\x89#\xa1\xb1)Dk\xeb\xa1\t\x00{u[\xbd\x9d\xf4\xbf\\\xce\x02P\xf2MY\x05^\xffj\x9c\x14\xb7\xb6v\x1d*1>\x00 \x00\x00\x00\x00\x14C?]\x8c\xb4Y\xcf\x80\x85\xd6\x036\xc8~\xa8\f\x00\x00:s>\xd7s\xef\xb3\x9f#\x15)\xf9\xe10\xc7\xb262<k\xa8\x88\x01\x00fhD\xe7\xb6\x17\x80\x95\xa8\x1e\t\xb01KB\xcb\x00\x1e\x7fE\x7f\x02\x00\x00\x00y<nGR\x94\x99\xb8\x89\x9b\x8f\xd5\xe6\x02\xb5C\xad\"u\xf4>-\x00\x00\x00\x00\xc8X\xdaNz\x0eu\x8f\x01\x00\xdd\xff\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc3\xa7/\x88\x9b`\xa5\x98\x81a\xeev\x00\x00\x00\x00\a\x00\x00m2\xf2\xd8,\x17\xf8\x8e\xae\xc8\xad\xed<\"\x8e\n\x9d\xb13\x8d\xef\x96\xd2I\"8=tg\xdfU\xd0q\x95/f\xec\xdc\xa3\xe1[\xc0\xaa\xefz\xc9\xf4[R\xc36b\xf0~\xd9>\x13\xc0\x83E\xd27)\xd5yQ\xff}5\x94\x88\xa1\xdc\xa1g\xe0q\xc5:\xe4\xdf\x80\xb3,\xb9\xb2\xdc\x81\x9f6\x0f\x84WY\xbfSY`\xb8\a\x19\xb1\x058\xa4\xc3\xbb\xf8aB:\x84\x02?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf3o-GU\xb0\x00F\xb3o(aI[\xd6\x9fG\xaeI\x83\x93\x8cC\xc0#\xe0q\xd0Ex|\xdb\xa8\x16\xfe>:\t0\xfd\x8a\xc7\x84\xb5\xc7M-0A\xf0\x94\xf3\xcc\x8d\xbb3\\\"\x882\xb3\xa84\xac\x00\xdd}Ft\xc6\xcc\f}!X#\xe4\xe1\x94i\xce\xa1\xff\x95\x80\xb4T\x9c\x01\xf3\x1cLB\x94m(m\f\xbc\xebY\xa0\xf7\xf0\x9d\x10\xbd\x86\x1by\xe6\xdf\xc0\xc5\xb9\xb9\xbf\xdf~9\nC\xe9\xc5\x0e\xda\x9c(\x9b\"\xc7\x97\xfc\b\xd9\xc2T\xa7*}]\xc8\xb3 .\x9b\x89\x0f\xf8$\xdd>lU\x13EG\xbb1] \xda\x19\xc5\x9b\x15\x95\xc4\xfcw\xbb\x92\x91\xc4\xa6\x907XK\xfc\x17]\xfa\xff\'\xef\x92\x1c\xb8\x1fK\xb2o \xd1\xbd\xb2\x11+\xa3R\xefQ\xc2\xbdW\x05\xec\xb3=@\x03\xc6^\xa2\x15D\xb0\'D#\xb6Q\x8f\x82?S>\x00P\x9cE\x92{d\xe6\x9cj1\x87\xb3\x01\xde\xe8\x89\xc4s\xb7\x14~}\xaa\x8c\xc3\x95BAE\xf2.\x8fC\x91W\xadi\x00\xf2k\xd5v\xd3\x84d\xf4\x134\xa6XI\xe5h\xaa\x15\x9a\xf7Z\xe3%\x88\x7f\x90\xbb\x9dt\xa3\xe1\r\x8d\x94\"\x19\x8b\x17)\xea\xd5\x17\xeb\xe4\x1b\x0fBZ1\xbe\xee\xfa\x1c\xf9\xa6\x11\x94\x1a\\P:\xaf\xcex\xc2\x82\x9a\x16\xfc\xa1\xf9\xbba\b\xbb\xed\xb2\xd1W\xe2\x8b\x8d8}\xf0V\xbd\xa60A\xc3\x03\xfa\x890\x86#\bQ\xcb)\xf6]\x9e\x14\xd2\xea\x82\xa8\xb7ZG\x15r\xf1n 1\x8d \xc1\xaf\x19\\\x91\x13\x1b8\xe1\xc3\xa4\v\x94\xbfJ\xb5\xde\x95\x82\x00]B|\xe2[%\xe3\xf0\x04\xba\xed\xdb\xf5\x7f\x9d\xfe>\xf6m$M&\x7fq]\xe4\xf6\x82\xc3\x00\xb1zg}\x99E\xa4\x19\xe9\x1a4a\xd75D-k\x84\xa6\x12+\xebk\xa1\xfek\x89\xef\x18\xc1)6\xa65\xe2D\xbe\xe1\xdfq\xdd68\xf37g\xab9m\xe7\xddO\v?\xe0\xbe}\xa9U\xc7{\xd3\x16W\xbb\xe5\xd2\x93\xfe\xa4\x9d\r$\xe91c8`\x86\xbc)\xe29\xc3}\xb9P\xbbF\xc6\x12\x8c_x\xa8\xf2\xb5K\x03\x85\x92k\xe1\x8e\x1f)\".\xcc\'\v\xa6\x1bj\\\n\xe98\x1eG\x11:\x85\x80\xc4\xcbo\x99\x99\xeb)r\x1a\xce\x18(\x185LL\xbcOeO\'\xe2\x86&\xe4\xe2\xe7~\x92\xa2\xb2\x1b\xc3\x00\x85\xce\xad7\x87\xa0\xfcc\xf5\xf8\xaf\v,q\xd4\x18\xbdM\x1a\xde\xba*L\x05m6\xecH\xd0T\xb8m\xdb\b\xa6\x02\xfb\x13\xac\x91\x8a\x8d\x94\x93\x8d=\xb1\x84\x9c\x9b\xe5\xc7\xa6\xc9Q\xc1eUc\xcc\x180^\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00KT2\x1b\x16=\x10\xd3\x9a\xf0\xb7\x00\x00\x00\x00\x00\x00\x00\xc3k\xc2\xb6\x06+s^\xe3\xbf\x89\xe1\xbd\"\x81\x9f\xd4\xb1\x1b\xf4\n\x87\xf8\xc3(*\xc8\xcd\x13)\xdd$<\xeb\x8c\xa0\x88\xe6MT\x86\xaaA\xcd\x1c\xad\x8fTZ\xa8_\xda\xf9\x8b\x90\x0f\xe1\r\x1b_\"9m\xe2]B\x8exQ\x92w$\x12a\x85\x92\x82_]\xaf\t\xdc\xd8\xa5&\xd4\xd0\x98\x98\xeb\x00\x00i\x00\x00\x00\x00\x00\x00\x00^\xaeLz\xe9\xc6\f\x12\x17C\xe9\x03JmJ\xa5\x9f\x8ea=P\xdb\xa1u\x9d\xa7e\xaed=B\x8b\x8f\x92-\x93~\a\x1d\xb5y\x8b\xea\xa3\xf1\x06\x8c\xda\x01vC\xf8#\x9c\x9a\"%n\xc29\x00\xca>\b\xf1M\xe3\x14\xf7v\xe8\xf8\xc4\x85\xdaz=\x03\xc4d8\x11~\"|\xf1\xaf>\x9b\xabNR\xc5R\xa6\x91\x9d\xc6\xe1\x94\x93\x0e\xed~\x1c\xd9}\xbf\nD\xe9pf}\x15\xae\x11u(\x94x\x00}\x1dS\xb9I\x17m~\x16\x85\xc7\x87#e\x97\x86\x84\"\xa5\xd9\x12\x15\x95\xe4\xbc\x9a\xb6\xdd\x89.f\r\x85h,-\x94?\xc8\xb7h<f\x95\xcd\xc8\xb0\xa9\x94FMC\"H\xaeWq\xf4@\xfd\t\xf4\x92fY4\x8a\xda\x97\x1a\xfb/\xec\x1eg\xa1\xa1\xf9\x1c\xffF\xdf&\xc1\xf5*@q&q\xb9\x14\x9e[\xf7yW\x10g\xf2\x91\xf1\xa9z\xbf\xde\xa0\xde\x1f\xe3Y\xf1\xa4\x1b\xe5\xd4-\x97\xe3', 0x7)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800004, 0x0, 0x12, r1, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)

0s ago: executing program 3 (id=1661):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r4, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
recvmsg$unix(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0xb3}], 0x1}, 0x0)
sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000280)='>', 0x1}], 0x1}, 0x0)
ioctl$MON_IOCT_RING_SIZE(0xffffffffffffffff, 0x9204, 0x80000000003d55d)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xb, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_smc(0x2b, 0x1, 0x0)

kernel console output (not intermixed with test programs):

: comm syz.1.626: bg 0: block 234: padding at end of block bitmap is not set
[   93.755861][ T5422] EXT4-fs (loop1): Remounting filesystem read-only
[   93.762855][ T5449] EXT4-fs (loop3): 1 truncate cleaned up
[   93.831953][ T5453] block device autoloading is deprecated and will be removed.
[   93.865820][ T5455] xt_TCPMSS: Only works on TCP SYN packets
[   93.992870][ T5458] EXT4-fs error (device loop3): ext4_add_entry:2437: inode #2: comm syz.3.633: Directory hole found for htree leaf block 0
[   94.054296][ T5461] FAULT_INJECTION: forcing a failure.
[   94.054296][ T5461] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.067485][ T5461] CPU: 1 UID: 0 PID: 5461 Comm: syz.0.637 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[   94.077802][ T5461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   94.087871][ T5461] Call Trace:
[   94.091156][ T5461]  <TASK>
[   94.094092][ T5461]  dump_stack_lvl+0xf2/0x150
[   94.098788][ T5461]  dump_stack+0x15/0x20
[   94.103020][ T5461]  should_fail_ex+0x223/0x230
[   94.107765][ T5461]  should_fail+0xb/0x10
[   94.112026][ T5461]  should_fail_usercopy+0x1a/0x20
[   94.117080][ T5461]  _copy_from_user+0x1e/0xd0
[   94.121796][ T5461]  copy_msghdr_from_user+0x54/0x2a0
[   94.127009][ T5461]  __sys_sendmsg+0x171/0x270
[   94.131709][ T5461]  __x64_sys_sendmsg+0x46/0x50
[   94.136489][ T5461]  x64_sys_call+0x2689/0x2d60
[   94.141190][ T5461]  do_syscall_64+0xc9/0x1c0
[   94.145779][ T5461]  ? clear_bhb_loop+0x55/0xb0
[   94.150481][ T5461]  ? clear_bhb_loop+0x55/0xb0
[   94.155173][ T5461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.161208][ T5461] RIP: 0033:0x7f74ba81df39
[   94.165637][ T5461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.185261][ T5461] RSP: 002b:00007f74b9497038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.193733][ T5461] RAX: ffffffffffffffda RBX: 00007f74ba9d5f80 RCX: 00007f74ba81df39
[   94.201717][ T5461] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[   94.209736][ T5461] RBP: 00007f74b9497090 R08: 0000000000000000 R09: 0000000000000000
[   94.217723][ T5461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.225702][ T5461] R13: 0000000000000000 R14: 00007f74ba9d5f80 R15: 00007ffe9bf3ad78
[   94.233754][ T5461]  </TASK>
[   94.310244][ T5470] netlink: 'syz.1.639': attribute type 24 has an invalid length.
[   94.408590][ T5475] loop0: detected capacity change from 0 to 2048
[   94.489917][ T5491] FAULT_INJECTION: forcing a failure.
[   94.489917][ T5491] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.503130][ T5491] CPU: 1 UID: 0 PID: 5491 Comm: syz.0.645 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[   94.513539][ T5491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   94.523702][ T5491] Call Trace:
[   94.527054][ T5491]  <TASK>
[   94.530002][ T5491]  dump_stack_lvl+0xf2/0x150
[   94.534729][ T5491]  dump_stack+0x15/0x20
[   94.538932][ T5491]  should_fail_ex+0x223/0x230
[   94.543744][ T5491]  should_fail+0xb/0x10
[   94.547985][ T5491]  should_fail_usercopy+0x1a/0x20
[   94.553061][ T5491]  _copy_from_user+0x1e/0xd0
[   94.557725][ T5491]  copy_msghdr_from_user+0x54/0x2a0
[   94.562951][ T5491]  __sys_sendmsg+0x171/0x270
[   94.567605][ T5491]  __x64_sys_sendmsg+0x46/0x50
[   94.572407][ T5491]  x64_sys_call+0x2689/0x2d60
[   94.577157][ T5491]  do_syscall_64+0xc9/0x1c0
[   94.581860][ T5491]  ? clear_bhb_loop+0x55/0xb0
[   94.586567][ T5491]  ? clear_bhb_loop+0x55/0xb0
[   94.591337][ T5491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.597279][ T5491] RIP: 0033:0x7f74ba81df39
[   94.601709][ T5491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.621508][ T5491] RSP: 002b:00007f74b9497038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.629960][ T5491] RAX: ffffffffffffffda RBX: 00007f74ba9d5f80 RCX: 00007f74ba81df39
[   94.637974][ T5491] RDX: 0000000000044854 RSI: 0000000020000200 RDI: 0000000000000003
[   94.645959][ T5491] RBP: 00007f74b9497090 R08: 0000000000000000 R09: 0000000000000000
[   94.654004][ T5491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.662059][ T5491] R13: 0000000000000000 R14: 00007f74ba9d5f80 R15: 00007ffe9bf3ad78
[   94.670093][ T5491]  </TASK>
[   94.745775][ T5504] netlink: 12 bytes leftover after parsing attributes in process `syz.3.648'.
[   94.755158][ T5504] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   94.840210][ T5515] loop3: detected capacity change from 0 to 2048
[   94.878502][ T5521] FAULT_INJECTION: forcing a failure.
[   94.878502][ T5521] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.891713][ T5521] CPU: 0 UID: 0 PID: 5521 Comm: syz.0.653 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[   94.902016][ T5521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   94.912172][ T5521] Call Trace:
[   94.915462][ T5521]  <TASK>
[   94.918410][ T5521]  dump_stack_lvl+0xf2/0x150
[   94.923032][ T5521]  dump_stack+0x15/0x20
[   94.927436][ T5521]  should_fail_ex+0x223/0x230
[   94.932187][ T5521]  should_fail+0xb/0x10
[   94.936376][ T5521]  should_fail_usercopy+0x1a/0x20
[   94.941527][ T5521]  _copy_from_user+0x1e/0xd0
[   94.946145][ T5521]  copy_msghdr_from_user+0x54/0x2a0
[   94.951423][ T5521]  __sys_sendmsg+0x171/0x270
[   94.956067][ T5521]  __x64_sys_sendmsg+0x46/0x50
[   94.960863][ T5521]  x64_sys_call+0x2689/0x2d60
[   94.965654][ T5521]  do_syscall_64+0xc9/0x1c0
[   94.970204][ T5521]  ? clear_bhb_loop+0x55/0xb0
[   94.974920][ T5521]  ? clear_bhb_loop+0x55/0xb0
[   94.979640][ T5521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.985602][ T5521] RIP: 0033:0x7f74ba81df39
[   94.990042][ T5521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.009747][ T5521] RSP: 002b:00007f74b9497038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   95.018344][ T5521] RAX: ffffffffffffffda RBX: 00007f74ba9d5f80 RCX: 00007f74ba81df39
[   95.026341][ T5521] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004
[   95.034402][ T5521] RBP: 00007f74b9497090 R08: 0000000000000000 R09: 0000000000000000
[   95.042394][ T5521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.050416][ T5521] R13: 0000000000000000 R14: 00007f74ba9d5f80 R15: 00007ffe9bf3ad78
[   95.058506][ T5521]  </TASK>
[   95.063111][ T5527] FAULT_INJECTION: forcing a failure.
[   95.063111][ T5527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.076205][ T5527] CPU: 0 UID: 0 PID: 5527 Comm: syz.4.655 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[   95.086532][ T5527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   95.096603][ T5527] Call Trace:
[   95.099905][ T5527]  <TASK>
[   95.102850][ T5527]  dump_stack_lvl+0xf2/0x150
[   95.107556][ T5527]  dump_stack+0x15/0x20
[   95.111795][ T5527]  should_fail_ex+0x223/0x230
[   95.116510][ T5527]  should_fail+0xb/0x10
[   95.120718][ T5527]  should_fail_usercopy+0x1a/0x20
[   95.125805][ T5527]  _copy_from_user+0x1e/0xd0
[   95.130420][ T5527]  __sys_bpf+0x14e/0x7a0
[   95.134764][ T5527]  __x64_sys_bpf+0x43/0x50
[   95.139220][ T5527]  x64_sys_call+0x2625/0x2d60
[   95.143953][ T5527]  do_syscall_64+0xc9/0x1c0
[   95.148493][ T5527]  ? clear_bhb_loop+0x55/0xb0
[   95.153256][ T5527]  ? clear_bhb_loop+0x55/0xb0
[   95.157959][ T5527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.163960][ T5527] RIP: 0033:0x7fa21aeadf39
[   95.168399][ T5527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.188077][ T5527] RSP: 002b:00007fa219b06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   95.196508][ T5527] RAX: ffffffffffffffda RBX: 00007fa21b066058 RCX: 00007fa21aeadf39
[   95.204578][ T5527] RDX: 0000000000000020 RSI: 0000000020000240 RDI: 0000000000000004
[   95.212568][ T5527] RBP: 00007fa219b06090 R08: 0000000000000000 R09: 0000000000000000
[   95.220636][ T5527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.228624][ T5527] R13: 0000000000000001 R14: 00007fa21b066058 R15: 00007ffce5810e28
[   95.236610][ T5527]  </TASK>
[   95.393901][ T5529] hub 2-0:1.0: USB hub found
[   95.420892][ T5529] hub 2-0:1.0: 8 ports detected
[   95.817198][ T4694] kmmpd-loop4: attempt to access beyond end of device
[   95.817198][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[   95.830687][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[   95.984645][ T4704] EXT4-fs error: 49 callbacks suppressed
[   95.984661][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[   96.017230][ T4710] kmmpd-loop2: attempt to access beyond end of device
[   96.017230][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[   96.030683][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[   96.066195][ T5538] loop0: detected capacity change from 0 to 2048
[   96.209095][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[   96.376256][ T5556] bpf_get_probe_write_proto: 14 callbacks suppressed
[   96.376290][ T5556] syz.3.664[5556] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.380244][ T5553] loop0: detected capacity change from 0 to 2048
[   96.399805][ T5556] syz.3.664[5556] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.400744][ T5556] syz.3.664[5556] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.400824][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[   96.437196][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[   96.458023][ T5553]  loop0: p1 < > p4
[   96.462641][ T5553] loop0: p4 size 8388608 extends beyond EOD, truncated
[   96.485796][ T2965]  loop0: p1 < > p4
[   96.492136][ T2965] loop0: p4 size 8388608 extends beyond EOD, truncated
[   96.563501][ T5568] siw: device registration error -23
[   96.564916][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[   96.579567][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[   96.607045][ T5569] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[   96.613623][ T5569] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   96.621463][ T5569] vhci_hcd vhci_hcd.0: Device attached
[   96.651879][ T5569] 9p: Unknown access argument 18446744073709551615: -34
[   96.671830][ T2965]  loop0: p1 < > p4
[   96.676141][ T2965] loop0: p4 size 8388608 extends beyond EOD, truncated
[   96.696420][ T2965]  loop0: p1 < > p4
[   96.702989][ T2965] loop0: p4 size 8388608 extends beyond EOD, truncated
[   96.718089][ T5577] vhci_hcd: connection closed
[   96.718334][  T220] vhci_hcd: stop threads
[   96.721901][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[   96.723082][  T220] vhci_hcd: release socket
[   96.740785][  T220] vhci_hcd: disconnect device
[   96.748449][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[   96.770242][ T3255] udevd[3255]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   96.781287][ T3604] udevd[3604]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   96.802038][ T3467] udevd[3467]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   96.813199][ T3255] udevd[3255]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   96.897372][ T4707] EXT4-fs error: 49 callbacks suppressed
[   96.897391][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[   96.917313][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[   96.936217][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[   96.941893][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[   97.104143][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[   97.125492][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[   97.394251][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[   97.506427][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[   97.640012][ T5610] loop1: detected capacity change from 0 to 512
[   97.729219][ T5611] 9pnet_fd: Insufficient options for proto=fd
[   97.777547][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[   97.786985][ T5610] EXT4-fs (loop1): 1 truncate cleaned up
[   97.930571][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[   97.973125][ T5622] xt_TCPMSS: Only works on TCP SYN packets
[   97.982229][   T29] kauditd_printk_skb: 3229 callbacks suppressed
[   97.982243][   T29] audit: type=1400 audit(1727312756.130:5777): avc:  denied  { write } for  pid=5619 comm="syz.3.684" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   98.011767][ T5626] EXT4-fs error (device loop1): ext4_add_entry:2437: inode #2: comm syz.1.679: Directory hole found for htree leaf block 0
[   98.262546][ T5631] cannot load conntrack support for proto=3
[   98.582813][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[   98.631154][   T29] audit: type=1400 audit(1727312756.460:5778): avc:  denied  { execute } for  pid=5619 comm="syz.3.684" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=11745 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   98.820503][ T3264] EXT4-fs unmount: 21 callbacks suppressed
[   98.820520][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.841990][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[   98.935757][   T29] audit: type=1326 audit(1727312757.110:5779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5642 comm="syz.4.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa21aeadf39 code=0x7ffc0000
[   98.993719][ T5641] syz.1.688[5641] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.993795][ T5641] syz.1.688[5641] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.047716][ T5641] syz.1.688[5641] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.057187][   T29] audit: type=1326 audit(1727312757.160:5780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5642 comm="syz.4.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fa21aeac7d7 code=0x7ffc0000
[   99.093660][   T29] audit: type=1326 audit(1727312757.160:5781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5642 comm="syz.4.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa21aeadf39 code=0x7ffc0000
[   99.145344][ T5652] xt_TCPMSS: Only works on TCP SYN packets
[   99.217261][ T5650] 9pnet_fd: Insufficient options for proto=fd
[  100.530504][   T29] audit: type=1326 audit(1727312758.690:5782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  100.553934][   T29] audit: type=1326 audit(1727312758.690:5783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f191966c7d7 code=0x7ffc0000
[  100.577368][   T29] audit: type=1326 audit(1727312758.690:5784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  100.686173][ T5679] syz.3.703[5679] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.686273][ T5679] syz.3.703[5679] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.706294][ T5679] syz.3.703[5679] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.882985][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  100.882985][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  100.907738][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  100.933860][ T5696] 9pnet_fd: Insufficient options for proto=fd
[  101.037047][ T5705] syz.1.710[5705] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.037938][ T5703] FAULT_INJECTION: forcing a failure.
[  101.037938][ T5703] name failslab, interval 1, probability 0, space 0, times 0
[  101.061904][ T5703] CPU: 1 UID: 0 PID: 5703 Comm: syz.3.709 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  101.072175][ T5703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  101.082237][ T5703] Call Trace:
[  101.085555][ T5703]  <TASK>
[  101.088621][ T5703]  dump_stack_lvl+0xf2/0x150
[  101.093238][ T5703]  dump_stack+0x15/0x20
[  101.097466][ T5703]  should_fail_ex+0x223/0x230
[  101.102189][ T5703]  ? getname_flags+0x81/0x3b0
[  101.106874][ T5703]  should_failslab+0x8f/0xb0
[  101.111607][ T5703]  kmem_cache_alloc_noprof+0x4c/0x290
[  101.117022][ T5703]  getname_flags+0x81/0x3b0
[  101.121586][ T5703]  __se_sys_statx+0x111/0x1e0
[  101.126287][ T5703]  ? __rcu_read_unlock+0x4e/0x70
[  101.131251][ T5703]  ? bpf_trace_run2+0x123/0x1d0
[  101.136122][ T5703]  ? __bpf_trace_sys_enter+0x9/0x10
[  101.141353][ T5703]  __x64_sys_statx+0x67/0x80
[  101.146070][ T5703]  x64_sys_call+0x298b/0x2d60
[  101.150765][ T5703]  do_syscall_64+0xc9/0x1c0
[  101.155286][ T5703]  ? clear_bhb_loop+0x55/0xb0
[  101.160020][ T5703]  ? clear_bhb_loop+0x55/0xb0
[  101.164719][ T5703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.170692][ T5703] RIP: 0033:0x7f269838df39
[  101.175112][ T5703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.194813][ T5703] RSP: 002b:00007f2697001038 EFLAGS: 00000246 ORIG_RAX: 000000000000014c
[  101.203234][ T5703] RAX: ffffffffffffffda RBX: 00007f2698545f80 RCX: 00007f269838df39
[  101.211282][ T5703] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffffffffffffffff
[  101.219311][ T5703] RBP: 00007f2697001090 R08: 0000000000000000 R09: 0000000000000000
[  101.227409][ T5703] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  101.235389][ T5703] R13: 0000000000000000 R14: 00007f2698545f80 R15: 00007ffd67e76ee8
[  101.243448][ T5703]  </TASK>
[  101.247815][ T4704] EXT4-fs error: 26 callbacks suppressed
[  101.247847][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  101.266905][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  101.266905][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  101.280762][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  101.281589][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  101.347947][ T5711] loop0: detected capacity change from 0 to 128
[  101.373624][ T5713] xt_TCPMSS: Only works on TCP SYN packets
[  101.408706][ T5711] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  101.427219][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  101.433628][ T5705] hub 2-0:1.0: USB hub found
[  101.448218][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  101.449001][ T5713] loop3: detected capacity change from 0 to 2048
[  101.466097][ T5711] ext4 filesystem being mounted at /65/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  101.466136][ T5705] hub 2-0:1.0: 8 ports detected
[  101.476192][ T5719] bpf_get_probe_write_proto: 2 callbacks suppressed
[  101.476211][ T5719] syz.4.716[5719] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.488992][ T5719] syz.4.716[5719] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.500456][   T29] audit: type=1326 audit(1727312759.670:5785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5710 comm="syz.0.712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  101.509807][ T5719] syz.4.716[5719] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.511896][   T29] audit: type=1326 audit(1727312759.670:5786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5710 comm="syz.0.712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  101.597291][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  101.605290][ T4729] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  101.614105][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  101.644155][ T5730] FAULT_INJECTION: forcing a failure.
[  101.644155][ T5730] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.657328][ T5730] CPU: 1 UID: 0 PID: 5730 Comm: syz.4.720 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  101.667627][ T5730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  101.677701][ T5730] Call Trace:
[  101.680993][ T5730]  <TASK>
[  101.683931][ T5730]  dump_stack_lvl+0xf2/0x150
[  101.688594][ T5730]  dump_stack+0x15/0x20
[  101.692847][ T5730]  should_fail_ex+0x223/0x230
[  101.697550][ T5730]  should_fail+0xb/0x10
[  101.701756][ T5730]  should_fail_usercopy+0x1a/0x20
[  101.706886][ T5730]  _copy_from_user+0x1e/0xd0
[  101.711530][ T5730]  move_addr_to_kernel+0x82/0x120
[  101.716637][ T5730]  __sys_connect+0x74/0x1b0
[  101.721170][ T5730]  __x64_sys_connect+0x41/0x50
[  101.725949][ T5730]  x64_sys_call+0x2220/0x2d60
[  101.730750][ T5730]  do_syscall_64+0xc9/0x1c0
[  101.735275][ T5730]  ? clear_bhb_loop+0x55/0xb0
[  101.739981][ T5730]  ? clear_bhb_loop+0x55/0xb0
[  101.744730][ T5730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.750689][ T5730] RIP: 0033:0x7fa21aeadf39
[  101.755107][ T5730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.774728][ T5730] RSP: 002b:00007fa219b27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  101.783213][ T5730] RAX: ffffffffffffffda RBX: 00007fa21b065f80 RCX: 00007fa21aeadf39
[  101.791240][ T5730] RDX: 000000000000001c RSI: 0000000020000080 RDI: 0000000000000004
[  101.799264][ T5730] RBP: 00007fa219b27090 R08: 0000000000000000 R09: 0000000000000000
[  101.807241][ T5730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.815290][ T5730] R13: 0000000000000000 R14: 00007fa21b065f80 R15: 00007ffce5810e28
[  101.823349][ T5730]  </TASK>
[  101.873662][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  101.915155][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  101.945267][ T5734] 9pnet_fd: Insufficient options for proto=fd
[  102.019868][ T5752] loop0: detected capacity change from 0 to 512
[  102.024886][ T4707] EXT4-fs error: 26 callbacks suppressed
[  102.024935][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  102.046696][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  102.048461][ T5756] syz.1.728[5756] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.063248][ T5756] syz.1.728[5756] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.064350][ T5752] EXT4-fs (loop0): 1 truncate cleaned up
[  102.074959][ T5756] syz.1.728[5756] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.086190][ T5752] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.116188][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  102.134191][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  102.147148][ T5751] syz.2.727[5751] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.158139][ T5751] syz.2.727[5751] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.184974][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  102.215996][ T5751] syz.2.727[5751] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.225779][ T5756] hub 2-0:1.0: USB hub found
[  102.237591][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  102.256943][ T5756] hub 2-0:1.0: 8 ports detected
[  102.272276][ T5759] EXT4-fs error (device loop0): ext4_add_entry:2437: inode #2: comm syz.0.726: Directory hole found for htree leaf block 0
[  102.356087][ T5767] syz.2.730[5767] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.367329][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  102.397360][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  102.452776][ T5777] loop1: detected capacity change from 0 to 2048
[  102.479732][ T5777] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.517205][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  102.548891][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  102.737975][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  102.801625][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  103.087428][ T5801] ip6t_srh: unknown srh invflags 7D00
[  103.101279][   T29] kauditd_printk_skb: 22 callbacks suppressed
[  103.101295][   T29] audit: type=1400 audit(1727312761.280:5809): avc:  denied  { read append } for  pid=5799 comm="syz.2.742" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  103.140742][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.172137][   T29] audit: type=1400 audit(1727312761.310:5810): avc:  denied  { open } for  pid=5799 comm="syz.2.742" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  103.196828][   T29] audit: type=1400 audit(1727312761.310:5811): avc:  denied  { ioctl } for  pid=5799 comm="syz.2.742" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  103.275049][ T5817] siw: device registration error -23
[  103.303474][ T5806] hub 2-0:1.0: USB hub found
[  103.312208][ T5806] hub 2-0:1.0: 8 ports detected
[  103.474061][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.536749][ T5831] syz.4.753: attempt to access beyond end of device
[  103.536749][ T5831] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  103.900621][ T5850] siw: device registration error -23
[  103.916358][   T29] audit: type=1400 audit(1727312762.090:5812): avc:  denied  { setopt } for  pid=5851 comm="syz.1.765" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  103.960432][   T29] audit: type=1400 audit(1727312762.120:5813): avc:  denied  { create } for  pid=5851 comm="syz.1.765" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  103.995760][   T29] audit: type=1400 audit(1727312762.170:5814): avc:  denied  { relabelfrom } for  pid=5858 comm="syz.1.767" name="" dev="pipefs" ino=12347 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  103.995876][ T5859] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  104.046898][   T29] audit: type=1400 audit(1727312762.170:5815): avc:  denied  { mac_admin } for  pid=5858 comm="syz.1.767" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  104.068024][   T29] audit: type=1400 audit(1727312762.210:5816): avc:  denied  { relabelto } for  pid=5858 comm="syz.1.767" name="" dev="pipefs" ino=12347 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 trawcon="system_u:object_r:dhcp_state_t:s0"
[  104.071830][ T5859] netlink: 'syz.1.767': attribute type 2 has an invalid length.
[  104.094631][   T29] audit: type=1326 audit(1727312762.210:5817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.2.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  104.094668][   T29] audit: type=1326 audit(1727312762.210:5818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.2.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  104.303048][ T5872] loop1: detected capacity change from 0 to 128
[  104.543774][ T5872] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  104.608091][ T5872] ext4 filesystem being mounted at /186/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  104.733654][ T3264] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  104.752260][ T5887] siw: device registration error -23
[  104.788570][ T5891] loop1: detected capacity change from 0 to 128
[  104.915441][ T5891] tipc: Enabling of bearer <eth:syzkaller1> rejected, failed to enable media
[  104.948323][ T5891] tipc: Failed to obtain node identity
[  104.953855][ T5891] tipc: Enabling of bearer <ib:caif0> rejected, failed to enable media
[  105.021722][ T5904] loop3: detected capacity change from 0 to 512
[  105.057062][ T5904] EXT4-fs (loop3): 1 truncate cleaned up
[  105.057444][ T5904] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.082658][ T5912] siw: device registration error -23
[  105.110603][   T11] kworker/u8:0: attempt to access beyond end of device
[  105.110603][   T11] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[  105.203374][ T5918] EXT4-fs error (device loop3): ext4_add_entry:2437: inode #2: comm syz.3.786: Directory hole found for htree leaf block 0
[  105.252502][ T5926] SELinux: failed to load policy
[  105.261879][ T5924] FAULT_INJECTION: forcing a failure.
[  105.261879][ T5924] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.274995][ T5924] CPU: 0 UID: 0 PID: 5924 Comm: syz.4.793 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  105.285330][ T5924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  105.295394][ T5924] Call Trace:
[  105.298686][ T5924]  <TASK>
[  105.301652][ T5924]  dump_stack_lvl+0xf2/0x150
[  105.306371][ T5924]  dump_stack+0x15/0x20
[  105.310606][ T5924]  should_fail_ex+0x223/0x230
[  105.315321][ T5924]  should_fail+0xb/0x10
[  105.319599][ T5924]  should_fail_usercopy+0x1a/0x20
[  105.324679][ T5924]  _copy_from_user+0x1e/0xd0
[  105.329299][ T5924]  perf_event_query_prog_array+0xad/0x240
[  105.335097][ T5924]  perf_ioctl+0x4d2/0x15a0
[  105.339559][ T5924]  ? get_pid_task+0x8e/0xc0
[  105.344116][ T5924]  ? ioctl_has_perm+0x2b8/0x2e0
[  105.349049][ T5924]  ? do_vfs_ioctl+0x96e/0x1530
[  105.353823][ T5924]  ? selinux_file_ioctl+0x2f7/0x380
[  105.359165][ T5924]  ? __fget_files+0x1d4/0x210
[  105.363858][ T5924]  ? __pfx_perf_ioctl+0x10/0x10
[  105.368731][ T5924]  __se_sys_ioctl+0xcd/0x140
[  105.373343][ T5924]  __x64_sys_ioctl+0x43/0x50
[  105.377954][ T5924]  x64_sys_call+0x15cc/0x2d60
[  105.382650][ T5924]  do_syscall_64+0xc9/0x1c0
[  105.387174][ T5924]  ? clear_bhb_loop+0x55/0xb0
[  105.391916][ T5924]  ? clear_bhb_loop+0x55/0xb0
[  105.396695][ T5924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.402608][ T5924] RIP: 0033:0x7fa21aeadf39
[  105.407026][ T5924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.426715][ T5924] RSP: 002b:00007fa219b27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  105.435223][ T5924] RAX: ffffffffffffffda RBX: 00007fa21b065f80 RCX: 00007fa21aeadf39
[  105.443198][ T5924] RDX: 0000000020000480 RSI: 00000000c008240a RDI: 0000000000000003
[  105.451209][ T5924] RBP: 00007fa219b27090 R08: 0000000000000000 R09: 0000000000000000
[  105.459181][ T5924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.467153][ T5924] R13: 0000000000000000 R14: 00007fa21b065f80 R15: 00007ffce5810e28
[  105.475137][ T5924]  </TASK>
[  105.673228][ T5939] 9pnet_fd: Insufficient options for proto=fd
[  105.921097][ T4730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.931213][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  105.931213][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  105.944712][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  105.986193][ T5948] siw: device registration error -23
[  106.152145][ T5958] loop3: detected capacity change from 0 to 128
[  106.175235][ T5958] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  106.196174][ T5958] ext4 filesystem being mounted at /86/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  106.212442][ T5960] netlink: 'syz.4.808': attribute type 10 has an invalid length.
[  106.223088][ T5960] batman_adv: batadv0: Adding interface: team0
[  106.229345][ T5960] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.254609][ T5960] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  106.266666][ T4730] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  106.297170][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  106.297170][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  106.310654][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  106.358546][ T4704] EXT4-fs error: 56 callbacks suppressed
[  106.358566][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  106.454852][ T5971] ieee802154 phy0 wpan0: encryption failed: -22
[  106.464300][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  106.627262][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  106.651494][ T5990] loop1: detected capacity change from 0 to 128
[  106.671765][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  106.699926][ T5990] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  106.719522][ T5990] ext4 filesystem being mounted at /199/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  106.721999][ T5993] loop3: detected capacity change from 0 to 256
[  106.733318][ T5998] ieee802154 phy0 wpan0: encryption failed: -22
[  106.770983][ T3264] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  106.804200][ T6000] sg_write: process 194 (syz.0.826) changed security contexts after opening file descriptor, this is not allowed.
[  106.846368][ T5968] Cannot find del_set index 0 as target
[  106.853045][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  106.863241][ T6000] program syz.0.826 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  106.872832][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  106.997348][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  107.062143][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  107.097429][ T4707] EXT4-fs error: 60 callbacks suppressed
[  107.097449][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  107.123107][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  107.247713][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  107.258109][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  107.280340][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  107.289544][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  107.407362][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  107.446409][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  107.463400][ T6026] loop1: detected capacity change from 0 to 2048
[  107.475704][ T6028] ieee802154 phy0 wpan0: encryption failed: -22
[  107.500263][ T6026]  loop1: p1 < > p4
[  107.504887][ T6026] loop1: p4 size 8388608 extends beyond EOD, truncated
[  107.579620][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  107.608785][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  107.649623][ T6037] loop0: detected capacity change from 0 to 256
[  107.784354][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  107.805585][ T6042] netlink: 52 bytes leftover after parsing attributes in process `syz.3.841'.
[  107.814808][ T6042] unsupported nlmsg_type 40
[  107.822225][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  108.270477][ T6062] bpf_get_probe_write_proto: 8 callbacks suppressed
[  108.270577][ T6062] syz.4.846[6062] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.276585][ T6064] loop1: detected capacity change from 0 to 256
[  108.277563][ T6062] syz.4.846[6062] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.294825][ T6062] syz.4.846[6062] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.311153][ T6060] syz.3.847[6060] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.333166][ T6060] syz.3.847[6060] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.354003][ T6060] netlink: 16 bytes leftover after parsing attributes in process `syz.3.847'.
[  108.418088][   T29] kauditd_printk_skb: 209 callbacks suppressed
[  108.418106][   T29] audit: type=1326 audit(1727312766.600:6028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6070 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa21aeadf39 code=0x7ffc0000
[  108.448047][   T29] audit: type=1326 audit(1727312766.610:6029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6070 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fa21aeac7d7 code=0x7ffc0000
[  108.471588][   T29] audit: type=1326 audit(1727312766.610:6030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6070 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa21aeadf39 code=0x7ffc0000
[  108.543200][ T6076] netlink: 'syz.2.849': attribute type 10 has an invalid length.
[  108.567738][   T29] audit: type=1326 audit(1727312766.630:6031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6070 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa21aeadf39 code=0x7ffc0000
[  108.713598][ T6083] FAULT_INJECTION: forcing a failure.
[  108.713598][ T6083] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.726772][ T6083] CPU: 1 UID: 0 PID: 6083 Comm: syz.2.852 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  108.737069][ T6083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  108.747236][ T6083] Call Trace:
[  108.750521][ T6083]  <TASK>
[  108.753463][ T6083]  dump_stack_lvl+0xf2/0x150
[  108.758145][ T6083]  dump_stack+0x15/0x20
[  108.762321][ T6083]  should_fail_ex+0x223/0x230
[  108.767147][ T6083]  should_fail+0xb/0x10
[  108.771373][ T6083]  should_fail_usercopy+0x1a/0x20
[  108.776449][ T6083]  _copy_from_user+0x1e/0xd0
[  108.781127][ T6083]  copy_msghdr_from_user+0x54/0x2a0
[  108.786361][ T6083]  __sys_sendmsg+0x171/0x270
[  108.791071][ T6083]  __x64_sys_sendmsg+0x46/0x50
[  108.795919][ T6083]  x64_sys_call+0x2689/0x2d60
[  108.800716][ T6083]  do_syscall_64+0xc9/0x1c0
[  108.805249][ T6083]  ? clear_bhb_loop+0x55/0xb0
[  108.809960][ T6083]  ? clear_bhb_loop+0x55/0xb0
[  108.814737][ T6083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.820699][ T6083] RIP: 0033:0x7f191966df39
[  108.825127][ T6083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.844824][ T6083] RSP: 002b:00007f19182e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  108.853243][ T6083] RAX: ffffffffffffffda RBX: 00007f1919825f80 RCX: 00007f191966df39
[  108.861253][ T6083] RDX: 0000000000000010 RSI: 00000000200002c0 RDI: 0000000000000003
[  108.869316][ T6083] RBP: 00007f19182e7090 R08: 0000000000000000 R09: 0000000000000000
[  108.877304][ T6083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.885352][ T6083] R13: 0000000000000000 R14: 00007f1919825f80 R15: 00007ffef9bbc708
[  108.893436][ T6083]  </TASK>
[  109.005986][   T29] audit: type=1400 audit(1727312767.180:6032): avc:  denied  { ioctl } for  pid=6090 comm="syz.2.858" path="socket:[13506]" dev="sockfs" ino=13506 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  109.032378][   T29] audit: type=1400 audit(1727312767.180:6033): avc:  denied  { ioctl } for  pid=6098 comm="syz.4.860" path="socket:[13524]" dev="sockfs" ino=13524 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  109.057065][   T29] audit: type=1400 audit(1727312767.180:6034): avc:  denied  { read } for  pid=6098 comm="syz.4.860" name="event0" dev="devtmpfs" ino=218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  109.080289][   T29] audit: type=1400 audit(1727312767.180:6035): avc:  denied  { open } for  pid=6098 comm="syz.4.860" path="/dev/input/event0" dev="devtmpfs" ino=218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  109.088045][ T6109] 9pnet_fd: Insufficient options for proto=fd
[  109.115478][   T29] audit: type=1400 audit(1727312767.300:6036): avc:  denied  { bind } for  pid=6098 comm="syz.4.860" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  109.134787][   T29] audit: type=1400 audit(1727312767.300:6037): avc:  denied  { write } for  pid=6098 comm="syz.4.860" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  109.300901][ T6127] loop0: detected capacity change from 0 to 512
[  109.301985][ T6129] loop3: detected capacity change from 0 to 512
[  109.314653][ T6127] EXT4-fs (loop0): 1 truncate cleaned up
[  109.321032][ T6127] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.358017][ T6129] EXT4-fs (loop3): 1 truncate cleaned up
[  109.364246][ T6129] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.487625][ T6139] loop1: detected capacity change from 0 to 256
[  109.905233][ T6144] EXT4-fs error (device loop3): ext4_add_entry:2437: inode #2: comm syz.3.874: Directory hole found for htree leaf block 0
[  110.047406][ T6140] EXT4-fs error (device loop0): ext4_add_entry:2437: inode #2: comm syz.0.873: Directory hole found for htree leaf block 0
[  110.499585][ T4730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.587842][ T6154] FAULT_INJECTION: forcing a failure.
[  110.587842][ T6154] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.600955][ T6154] CPU: 0 UID: 0 PID: 6154 Comm: syz.4.881 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  110.611226][ T6154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  110.621431][ T6154] Call Trace:
[  110.624761][ T6154]  <TASK>
[  110.627703][ T6154]  dump_stack_lvl+0xf2/0x150
[  110.632396][ T6154]  dump_stack+0x15/0x20
[  110.636676][ T6154]  should_fail_ex+0x223/0x230
[  110.641427][ T6154]  should_fail+0xb/0x10
[  110.645702][ T6154]  should_fail_usercopy+0x1a/0x20
[  110.650766][ T6154]  _copy_to_user+0x1e/0xa0
[  110.655206][ T6154]  simple_read_from_buffer+0xa0/0x110
[  110.660600][ T6154]  proc_fail_nth_read+0xf9/0x140
[  110.665564][ T6154]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  110.671190][ T6154]  vfs_read+0x195/0x720
[  110.675371][ T6154]  ? kmem_cache_free+0x1e8/0x2d0
[  110.680343][ T6154]  ? __rcu_read_unlock+0x4e/0x70
[  110.685364][ T6154]  ? __fget_files+0x1d4/0x210
[  110.690115][ T6154]  ksys_read+0xeb/0x1b0
[  110.694288][ T6154]  __x64_sys_read+0x42/0x50
[  110.698812][ T6154]  x64_sys_call+0x27d3/0x2d60
[  110.703516][ T6154]  do_syscall_64+0xc9/0x1c0
[  110.708120][ T6154]  ? clear_bhb_loop+0x55/0xb0
[  110.712867][ T6154]  ? clear_bhb_loop+0x55/0xb0
[  110.717644][ T6154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.723665][ T6154] RIP: 0033:0x7fa21aeac97c
[  110.728094][ T6154] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  110.747820][ T6154] RSP: 002b:00007fa219b27030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  110.756290][ T6154] RAX: ffffffffffffffda RBX: 00007fa21b065f80 RCX: 00007fa21aeac97c
[  110.764270][ T6154] RDX: 000000000000000f RSI: 00007fa219b270a0 RDI: 0000000000000005
[  110.772301][ T6154] RBP: 00007fa219b27090 R08: 0000000000000000 R09: 0000000000000000
[  110.780292][ T6154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.788273][ T6154] R13: 0000000000000000 R14: 00007fa21b065f80 R15: 00007ffce5810e28
[  110.796271][ T6154]  </TASK>
[  110.807637][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.881246][ T6164] FAULT_INJECTION: forcing a failure.
[  110.881246][ T6164] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.894401][ T6164] CPU: 1 UID: 0 PID: 6164 Comm: syz.3.888 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  110.904715][ T6164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  110.914857][ T6164] Call Trace:
[  110.918141][ T6164]  <TASK>
[  110.921078][ T6164]  dump_stack_lvl+0xf2/0x150
[  110.925794][ T6164]  dump_stack+0x15/0x20
[  110.929971][ T6164]  should_fail_ex+0x223/0x230
[  110.934665][ T6164]  should_fail+0xb/0x10
[  110.938838][ T6164]  should_fail_usercopy+0x1a/0x20
[  110.943956][ T6164]  _copy_from_user+0x1e/0xd0
[  110.948594][ T6164]  copy_msghdr_from_user+0x54/0x2a0
[  110.953830][ T6164]  __sys_sendmsg+0x171/0x270
[  110.958484][ T6164]  __x64_sys_sendmsg+0x46/0x50
[  110.963308][ T6164]  x64_sys_call+0x2689/0x2d60
[  110.968003][ T6164]  do_syscall_64+0xc9/0x1c0
[  110.972593][ T6164]  ? clear_bhb_loop+0x55/0xb0
[  110.977282][ T6164]  ? clear_bhb_loop+0x55/0xb0
[  110.981973][ T6164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.987906][ T6164] RIP: 0033:0x7f269838df39
[  110.992331][ T6164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.011989][ T6164] RSP: 002b:00007f2697001038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  111.020481][ T6164] RAX: ffffffffffffffda RBX: 00007f2698545f80 RCX: 00007f269838df39
[  111.028471][ T6164] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  111.036447][ T6164] RBP: 00007f2697001090 R08: 0000000000000000 R09: 0000000000000000
[  111.044493][ T6164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.052472][ T6164] R13: 0000000000000000 R14: 00007f2698545f80 R15: 00007ffd67e76ee8
[  111.060567][ T6164]  </TASK>
[  111.073345][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  111.073345][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  111.086950][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  111.168805][ T6178] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.892' sets config #16777216
[  111.189683][ T6177] netlink: 'syz.4.894': attribute type 10 has an invalid length.
[  111.197513][ T6177] syz_tun: entered promiscuous mode
[  111.204006][ T6182] syz.3.895[6182] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.204089][ T6182] syz.3.895[6182] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.237190][ T6182] syz.3.895[6182] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.263625][ T6185] FAULT_INJECTION: forcing a failure.
[  111.263625][ T6185] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.275719][ T6178] loop1: detected capacity change from 0 to 512
[  111.288306][ T6185] CPU: 1 UID: 0 PID: 6185 Comm: syz.0.896 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  111.304655][ T6185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  111.314740][ T6185] Call Trace:
[  111.318025][ T6185]  <TASK>
[  111.320971][ T6185]  dump_stack_lvl+0xf2/0x150
[  111.325587][ T6185]  dump_stack+0x15/0x20
[  111.329766][ T6185]  should_fail_ex+0x223/0x230
[  111.334465][ T6185]  should_fail+0xb/0x10
[  111.338756][ T6185]  should_fail_usercopy+0x1a/0x20
[  111.343812][ T6185]  _copy_to_user+0x1e/0xa0
[  111.348305][ T6185]  simple_read_from_buffer+0xa0/0x110
[  111.353780][ T6185]  proc_fail_nth_read+0xf9/0x140
[  111.358740][ T6185]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  111.364313][ T6185]  vfs_read+0x195/0x720
[  111.368493][ T6185]  ? __rcu_read_unlock+0x4e/0x70
[  111.373484][ T6185]  ? __fget_files+0x1d4/0x210
[  111.378188][ T6185]  ksys_read+0xeb/0x1b0
[  111.382422][ T6185]  __x64_sys_read+0x42/0x50
[  111.386941][ T6185]  x64_sys_call+0x27d3/0x2d60
[  111.391632][ T6185]  do_syscall_64+0xc9/0x1c0
[  111.396159][ T6185]  ? clear_bhb_loop+0x55/0xb0
[  111.400872][ T6185]  ? clear_bhb_loop+0x55/0xb0
[  111.405614][ T6185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.411611][ T6185] RIP: 0033:0x7f74ba81c97c
[  111.416072][ T6185] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  111.435687][ T6185] RSP: 002b:00007f74b9497030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  111.444230][ T6185] RAX: ffffffffffffffda RBX: 00007f74ba9d5f80 RCX: 00007f74ba81c97c
[  111.452207][ T6185] RDX: 000000000000000f RSI: 00007f74b94970a0 RDI: 0000000000000004
[  111.460191][ T6185] RBP: 00007f74b9497090 R08: 0000000000000000 R09: 0000000000000000
[  111.468167][ T6185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.476241][ T6185] R13: 0000000000000000 R14: 00007f74ba9d5f80 R15: 00007ffe9bf3ad78
[  111.484223][ T6185]  </TASK>
[  111.567214][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  111.567214][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  111.580688][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  111.590336][ T4704] EXT4-fs error: 46 callbacks suppressed
[  111.590351][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  111.636406][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  111.676111][ T6178] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.706146][ T6182] hub 2-0:1.0: USB hub found
[  111.714811][ T6178] ext4 filesystem being mounted at /213/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.741362][ T6182] hub 2-0:1.0: 8 ports detected
[  111.765675][ T6178] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.858605][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  111.868827][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  112.004374][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  112.014856][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  112.128261][ T4707] EXT4-fs error: 36 callbacks suppressed
[  112.128278][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  112.143629][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  112.155698][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  112.168869][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  112.189429][ T6178] loop1: detected capacity change from 0 to 136
[  112.196552][ T6178] iso9660: Unknown parameter 'overriderockper|norock'
[  112.239197][ T6178] netlink: 76 bytes leftover after parsing attributes in process `syz.1.892'.
[  112.279140][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  112.289862][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  112.316309][ T6206] siw: device registration error -23
[  112.342010][ T6214] loop0: detected capacity change from 0 to 128
[  112.364268][ T6219] FAULT_INJECTION: forcing a failure.
[  112.364268][ T6219] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.371624][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  112.377588][ T6219] CPU: 0 UID: 0 PID: 6219 Comm: syz.4.909 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  112.396682][ T6219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  112.398655][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  112.406775][ T6219] Call Trace:
[  112.406785][ T6219]  <TASK>
[  112.406795][ T6219]  dump_stack_lvl+0xf2/0x150
[  112.406836][ T6219]  dump_stack+0x15/0x20
[  112.406865][ T6219]  should_fail_ex+0x223/0x230
[  112.437736][ T6219]  should_fail+0xb/0x10
[  112.441954][ T6219]  should_fail_usercopy+0x1a/0x20
[  112.447045][ T6219]  _copy_from_user+0x1e/0xd0
[  112.451682][ T6219]  ucma_write+0xd4/0x240
[  112.456027][ T6219]  vfs_writev+0x3fb/0x880
[  112.460441][ T6219]  ? __pfx_ucma_write+0x10/0x10
[  112.465351][ T6219]  do_writev+0xf8/0x220
[  112.469534][ T6219]  __x64_sys_writev+0x45/0x50
[  112.474277][ T6219]  x64_sys_call+0x1f18/0x2d60
[  112.479014][ T6219]  do_syscall_64+0xc9/0x1c0
[  112.483619][ T6219]  ? clear_bhb_loop+0x55/0xb0
[  112.488336][ T6219]  ? clear_bhb_loop+0x55/0xb0
[  112.493067][ T6219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.499071][ T6219] RIP: 0033:0x7fa21aeadf39
[  112.503590][ T6219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.523294][ T6219] RSP: 002b:00007fa219b27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  112.531862][ T6219] RAX: ffffffffffffffda RBX: 00007fa21b065f80 RCX: 00007fa21aeadf39
[  112.539830][ T6219] RDX: 0000000000000003 RSI: 0000000020000000 RDI: 0000000000000003
[  112.547239][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  112.547790][ T6219] RBP: 00007fa219b27090 R08: 0000000000000000 R09: 0000000000000000
[  112.547810][ T6219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.559500][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  112.564681][ T6219] R13: 0000000000000000 R14: 00007fa21b065f80 R15: 00007ffce5810e28
[  112.564766][ T6219]  </TASK>
[  112.577625][ T6224] loop3: detected capacity change from 0 to 128
[  112.665507][ T6226] syz.4.911[6226] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.665621][ T6226] syz.4.911[6226] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.684703][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  112.729693][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  112.782809][ T6226] hub 2-0:1.0: USB hub found
[  112.823011][ T6226] hub 2-0:1.0: 8 ports detected
[  113.235735][ T6249] netlink: 4 bytes leftover after parsing attributes in process `syz.1.920'.
[  113.245899][ T6249] bridge_slave_1: left allmulticast mode
[  113.251703][ T6249] bridge_slave_1: left promiscuous mode
[  113.257496][ T6249] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.273967][ T6249] bridge_slave_0: left allmulticast mode
[  113.279724][ T6249] bridge_slave_0: left promiscuous mode
[  113.285433][ T6249] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.297306][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  113.309269][ T6255] loop1: detected capacity change from 0 to 164
[  113.323802][ T6255] bpf_get_probe_write_proto: 1 callbacks suppressed
[  113.323821][ T6255] syz.1.920[6255] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  113.331157][ T6255] syz.1.920[6255] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  113.342949][ T6255] syz.1.920[6255] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  113.355591][ T6255] SELinux:  policydb string SE Linu does not match my string SE Linux
[  113.392986][ T6255] SELinux: failed to load policy
[  113.399472][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  113.418120][ T6255] sctp: [Deprecated]: syz.1.920 (pid 6255) Use of int in max_burst socket option deprecated.
[  113.418120][ T6255] Use struct sctp_assoc_value instead
[  113.433605][   T29] kauditd_printk_skb: 139 callbacks suppressed
[  113.433622][   T29] audit: type=1326 audit(1727312771.600:6177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  113.465358][   T29] audit: type=1400 audit(1727312771.630:6178): avc:  denied  { name_connect } for  pid=6248 comm="syz.1.920" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  113.487436][   T29] audit: type=1326 audit(1727312771.640:6179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  113.510348][   T29] audit: type=1326 audit(1727312771.680:6180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  113.533380][   T29] audit: type=1326 audit(1727312771.690:6181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  113.556333][   T29] audit: type=1326 audit(1727312771.690:6182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  113.579390][   T29] audit: type=1326 audit(1727312771.690:6183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  113.602370][   T29] audit: type=1326 audit(1727312771.690:6184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  113.625378][   T29] audit: type=1326 audit(1727312771.690:6185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  113.648398][   T29] audit: type=1326 audit(1727312771.690:6186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  113.666688][ T6277] loop0: detected capacity change from 0 to 4096
[  113.679422][ T6277] EXT4-fs: Ignoring removed nobh option
[  113.685044][ T6277] EXT4-fs: Ignoring removed i_version option
[  113.705038][ T6277] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.713674][ T6280] FAULT_INJECTION: forcing a failure.
[  113.713674][ T6280] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.730936][ T6280] CPU: 1 UID: 0 PID: 6280 Comm: syz.4.931 Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  113.741248][ T6280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  113.751309][ T6280] Call Trace:
[  113.754590][ T6280]  <TASK>
[  113.757526][ T6280]  dump_stack_lvl+0xf2/0x150
[  113.762234][ T6280]  dump_stack+0x15/0x20
[  113.766402][ T6280]  should_fail_ex+0x223/0x230
[  113.771134][ T6280]  should_fail+0xb/0x10
[  113.775306][ T6280]  should_fail_usercopy+0x1a/0x20
[  113.780369][ T6280]  _copy_from_user+0x1e/0xd0
[  113.785049][ T6280]  copy_msghdr_from_user+0x54/0x2a0
[  113.790277][ T6280]  __sys_sendmmsg+0x21a/0x500
[  113.795017][ T6280]  __x64_sys_sendmmsg+0x57/0x70
[  113.799983][ T6280]  x64_sys_call+0xa49/0x2d60
[  113.804694][ T6280]  do_syscall_64+0xc9/0x1c0
[  113.809241][ T6280]  ? clear_bhb_loop+0x55/0xb0
[  113.813947][ T6280]  ? clear_bhb_loop+0x55/0xb0
[  113.818699][ T6280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.824664][ T6280] RIP: 0033:0x7fa21aeadf39
[  113.829100][ T6280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.848761][ T6280] RSP: 002b:00007fa219b27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  113.857235][ T6280] RAX: ffffffffffffffda RBX: 00007fa21b065f80 RCX: 00007fa21aeadf39
[  113.865212][ T6280] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000003
[  113.873186][ T6280] RBP: 00007fa219b27090 R08: 0000000000000000 R09: 0000000000000000
[  113.881163][ T6280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.889138][ T6280] R13: 0000000000000000 R14: 00007fa21b065f80 R15: 00007ffce5810e28
[  113.897158][ T6280]  </TASK>
[  113.913601][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.955405][ T6284] netlink: 'syz.4.934': attribute type 24 has an invalid length.
[  114.070861][ T6305] siw: device registration error -23
[  114.111634][ T6293] netlink: 'syz.1.936': attribute type 5 has an invalid length.
[  114.401683][ T6337] netlink: 'syz.1.956': attribute type 24 has an invalid length.
[  114.526274][ T6329] 9pnet: Could not find request transport: fd0x0000000000000003
[  114.951971][ T6362] loop0: detected capacity change from 0 to 512
[  114.964497][ T6362] EXT4-fs (loop0): 1 truncate cleaned up
[  114.970534][ T6362] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.991126][ T6367] netlink: 'syz.3.968': attribute type 24 has an invalid length.
[  115.082612][ T6362] EXT4-fs error (device loop0): ext4_add_entry:2437: inode #2: comm syz.0.966: Directory hole found for htree leaf block 0
[  115.102680][ T6369] loop3: detected capacity change from 0 to 2048
[  115.215114][ T6374] loop1: detected capacity change from 0 to 128
[  115.307788][ T6369]  loop3: p1 < > p4
[  115.312917][ T6369] loop3: p4 size 8388608 extends beyond EOD, truncated
[  115.339222][ T2965]  loop3: p1 < > p4
[  115.344248][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.361644][ T2965] loop3: p4 size 8388608 extends beyond EOD, truncated
[  115.399719][ T3255] udevd[3255]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  115.413969][ T3604] udevd[3604]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  115.496556][ T3255] udevd[3255]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  115.511772][ T3604] udevd[3604]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  115.667464][ T6389] syz.3.984[6389] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  115.667565][ T6389] syz.3.984[6389] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  115.684362][ T6389] syz.3.984[6389] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  115.695796][ T6386] 9pnet: Could not find request transport: fd0x0000000000000003
[  115.771226][ T6389] hub 2-0:1.0: USB hub found
[  115.776564][ T6389] hub 2-0:1.0: 8 ports detected
[  115.840603][ T6398] process 'syz.0.976' launched '/dev/fd/12' with NULL argv: empty string added
[  115.873225][ T6404] loop3: detected capacity change from 0 to 2048
[  115.907571][ T6404]  loop3: p1 < > p4
[  115.912226][ T6404] loop3: p4 size 8388608 extends beyond EOD, truncated
[  116.000329][ T6419] loop3: detected capacity change from 0 to 2048
[  116.113254][ T6421] 9pnet_fd: Insufficient options for proto=fd
[  116.120014][ T3255]  loop3: p1 < > p4
[  116.126387][ T3255] loop3: p4 size 8388608 extends beyond EOD, truncated
[  116.162050][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  116.162050][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  116.175495][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  116.318080][ T6419]  loop3: p1 < > p4
[  116.338915][ T6419] loop3: p4 size 8388608 extends beyond EOD, truncated
[  116.410341][ T6432] siw: device registration error -23
[  116.568317][ T3604] udevd[3604]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  116.579266][ T3255] udevd[3255]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  116.607448][ T3604] udevd[3604]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  116.617522][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  116.617522][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  116.620910][ T3255] udevd[3255]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  116.630934][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  116.673789][ T4704] EXT4-fs error: 62 callbacks suppressed
[  116.673804][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  116.675316][ T6447] syz.1.998[6447] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.680187][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  116.688805][ T6447] syz.1.998[6447] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.711859][ T6447] syz.1.998[6447] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.738138][ T6447] veth0_vlan: entered allmulticast mode
[  116.776418][ T6447] veth0_vlan: left promiscuous mode
[  116.782631][ T6447] veth0_vlan: entered promiscuous mode
[  116.804414][ T6449] 9pnet_fd: Insufficient options for proto=fd
[  116.841444][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  116.853106][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  116.950768][ T6462] syz.3.1005[6462] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.961002][ T6466] loop0: detected capacity change from 0 to 512
[  116.979535][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  117.005459][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  117.017100][ T6466] EXT4-fs (loop0): 1 truncate cleaned up
[  117.023392][ T6466] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.137228][ T4707] EXT4-fs error: 51 callbacks suppressed
[  117.137243][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  117.157453][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  117.166737][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  117.239005][ T6491] EXT4-fs error (device loop0): ext4_add_entry:2437: inode #2: comm syz.0.1007: Directory hole found for htree leaf block 0
[  117.257241][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  117.272432][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  117.313130][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  117.322899][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  117.407243][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  117.446051][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  117.549488][ T6495] siw: device registration error -23
[  117.604604][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  117.738133][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  117.870019][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.886511][ T6510] loop3: detected capacity change from 0 to 512
[  117.910236][ T6510] EXT4-fs (loop3): 1 truncate cleaned up
[  117.916418][ T6510] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.947031][ T6516] hub 2-0:1.0: USB hub found
[  117.951808][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  117.965002][ T6516] hub 2-0:1.0: 8 ports detected
[  117.970034][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  118.149799][ T6534] EXT4-fs error (device loop3): ext4_add_entry:2437: inode #2: comm syz.3.1026: Directory hole found for htree leaf block 0
[  118.166690][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  118.579691][ T6556] loop0: detected capacity change from 0 to 128
[  118.659113][ T6561] siw: device registration error -23
[  118.867204][   T29] kauditd_printk_skb: 171 callbacks suppressed
[  118.867236][   T29] audit: type=1326 audit(1727312776.950:6358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="syz.2.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  118.897004][   T29] audit: type=1326 audit(1727312776.950:6359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="syz.2.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  118.920488][   T29] audit: type=1326 audit(1727312776.950:6360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="syz.2.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  118.943909][   T29] audit: type=1326 audit(1727312776.950:6361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  118.966972][   T29] audit: type=1326 audit(1727312776.950:6362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  118.990011][   T29] audit: type=1326 audit(1727312776.950:6363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  119.012900][   T29] audit: type=1326 audit(1727312776.950:6364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  119.036149][   T29] audit: type=1326 audit(1727312776.950:6365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  119.059126][   T29] audit: type=1326 audit(1727312776.950:6366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  119.081995][   T29] audit: type=1326 audit(1727312776.950:6367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6567 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  119.155258][ T4730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.194231][ T6585] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1055'.
[  119.291615][ T6593] siw: device registration error -23
[  119.316527][ T6595] siw: device registration error -23
[  119.408888][ T6604] loop3: detected capacity change from 0 to 2048
[  119.467747][ T6604]  loop3: p1 < > p4
[  119.484530][ T6604] loop3: p4 size 8388608 extends beyond EOD, truncated
[  119.509409][ T2965]  loop3: p1 < > p4
[  119.524252][ T2965] loop3: p4 size 8388608 extends beyond EOD, truncated
[  119.526576][ T6613] loop0: detected capacity change from 0 to 2048
[  119.595463][ T3467] udevd[3467]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  119.614124][ T3604] udevd[3604]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  119.668513][ T6621] loop0: detected capacity change from 0 to 2048
[  119.727728][ T6621]  loop0: p1 < > p4
[  119.732080][ T6621] loop0: p4 size 8388608 extends beyond EOD, truncated
[  119.759223][ T6634] loop1: detected capacity change from 0 to 2048
[  119.803871][ T2965]  loop0: p1 < > p4
[  119.810395][ T2965] loop0: p4 size 8388608 extends beyond EOD, truncated
[  119.810529][ T6634] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.881924][ T6650] siw: device registration error -23
[  119.940342][ T6658] netlink: 'syz.3.1084': attribute type 2 has an invalid length.
[  120.189656][ T6680] bpf_get_probe_write_proto: 11 callbacks suppressed
[  120.189676][ T6680] syz.2.1092[6680] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  120.196478][ T6680] syz.2.1092[6680] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  120.282178][ T6687] loop0: detected capacity change from 0 to 2048
[  120.337271][ T6680] syz.2.1092[6680] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  120.562988][ T6695] syz.0.1099[6695] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  120.604450][ T6695] syz.0.1099[6695] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  120.629354][ T6695] syz.0.1099[6695] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  120.729716][ T6702] loop0: detected capacity change from 0 to 2048
[  120.753771][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.773637][ T6702] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.842150][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.901168][ T6715] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1106'.
[  120.910739][ T6712] loop3: detected capacity change from 0 to 2048
[  121.005750][ T6723] syz.1.1112[6723] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  121.005833][ T6723] syz.1.1112[6723] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  121.017501][ T6723] syz.1.1112[6723] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  121.103324][ T6730] loop1: detected capacity change from 0 to 2048
[  121.129327][ T6730] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.177314][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  121.177314][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  121.190884][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  121.376674][ T6745] loop3: detected capacity change from 0 to 2048
[  121.668025][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  121.668025][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  121.681940][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  121.696943][  T220] EXT4-fs error: 6385 callbacks suppressed
[  121.696960][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  121.741822][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  121.759033][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  121.785692][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  121.795942][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  121.815949][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  121.833714][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  121.868164][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  121.885158][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  121.899445][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  121.964038][ T6774] loop0: detected capacity change from 0 to 2048
[  121.992010][ T6774] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.070746][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.109524][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.151339][ T4707] EXT4-fs error: 64 callbacks suppressed
[  122.151358][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  122.182574][ T6800] syz.3.1143[6800] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  122.307826][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  122.329364][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  122.349376][ T6812] siw: device registration error -23
[  122.379423][ T6813] loop0: detected capacity change from 0 to 2048
[  122.424847][ T6813] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.447231][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  122.506993][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  122.581907][ T6825] loop1: detected capacity change from 0 to 2048
[  122.670025][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  122.691561][ T6826] loop3: detected capacity change from 0 to 2048
[  122.698987][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  122.867188][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  122.884629][ T6826] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.025454][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  123.101562][ T4730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.203021][ T6842] loop1: detected capacity change from 0 to 2048
[  123.248327][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  123.263373][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.273282][ T6842]  loop1: p1 < > p4
[  123.284985][ T6842] loop1: p4 size 8388608 extends beyond EOD, truncated
[  123.462200][ T6864] loop3: detected capacity change from 0 to 2048
[  123.626199][ T6881] loop0: detected capacity change from 0 to 2048
[  123.661110][ T6881] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.739129][ T6896] loop1: detected capacity change from 0 to 2048
[  123.808043][ T3255]  loop1: p1 < > p4
[  123.819702][ T3255] loop1: p4 size 8388608 extends beyond EOD, truncated
[  123.858503][ T6896]  loop1: p1 < > p4
[  123.886629][   T29] kauditd_printk_skb: 217 callbacks suppressed
[  123.886704][   T29] audit: type=1326 audit(1727312782.060:6585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="syz.3.1186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  123.918342][ T6896] loop1: p4 size 8388608 extends beyond EOD, truncated
[  123.937240][ T2965]  loop1: p1 < > p4
[  123.948924][ T2965] loop1: p4 size 8388608 extends beyond EOD, truncated
[  123.982014][   T29] audit: type=1326 audit(1727312782.100:6586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="syz.3.1186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  124.005535][   T29] audit: type=1326 audit(1727312782.100:6587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="syz.3.1186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  124.028991][   T29] audit: type=1326 audit(1727312782.100:6588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  124.051957][   T29] audit: type=1326 audit(1727312782.100:6589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  124.075064][   T29] audit: type=1326 audit(1727312782.100:6590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  124.098063][   T29] audit: type=1326 audit(1727312782.100:6591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  124.120938][   T29] audit: type=1326 audit(1727312782.100:6592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  124.143843][   T29] audit: type=1326 audit(1727312782.100:6593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  124.166719][   T29] audit: type=1326 audit(1727312782.110:6594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6906 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f269838df39 code=0x7ffc0000
[  124.353161][ T6936] loop1: detected capacity change from 0 to 128
[  124.523398][ T6943] loop3: detected capacity change from 0 to 2048
[  124.579220][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.589918][ T6943] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.631056][ T4730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.669123][ T6955] loop3: detected capacity change from 0 to 512
[  124.686756][ T6955] EXT4-fs (loop3): 1 truncate cleaned up
[  124.692946][ T6955] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.941696][ T6955] EXT4-fs error (device loop3): ext4_add_entry:2437: inode #2: comm syz.3.1202: Directory hole found for htree leaf block 0
[  125.008809][ T4730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.166399][ T6971] hub 2-0:1.0: USB hub found
[  125.179369][ T6971] hub 2-0:1.0: 8 ports detected
[  125.212044][ T6977] loop3: detected capacity change from 0 to 2048
[  125.273821][ T6977] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.305293][ T6985] loop0: detected capacity change from 0 to 256
[  125.315298][ T6987] bpf_get_probe_write_proto: 14 callbacks suppressed
[  125.315319][ T6987] syz.1.1215[6987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  125.322494][ T6987] syz.1.1215[6987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  125.335207][ T6987] syz.1.1215[6987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.267988][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  126.267988][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  126.292868][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  126.352273][ T6472] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  126.498414][ T4730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.718220][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  126.718220][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  126.731681][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  126.751695][ T7027] loop3: detected capacity change from 0 to 256
[  126.882011][ T4704] EXT4-fs error: 8040 callbacks suppressed
[  126.882026][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  126.909174][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  126.918669][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  126.988238][ T7036] loop0: detected capacity change from 0 to 512
[  127.000924][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  127.028389][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  127.043453][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  127.054073][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  127.095394][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  127.105638][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  127.119733][ T7036] EXT4-fs (loop0): 1 truncate cleaned up
[  127.125805][ T7036] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.272497][ T7040] loop1: detected capacity change from 0 to 2048
[  127.425512][ T4707] EXT4-fs error: 49 callbacks suppressed
[  127.425530][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  127.442121][ T7043] EXT4-fs error (device loop0): ext4_add_entry:2437: inode #2: comm syz.0.1236: Directory hole found for htree leaf block 0
[  127.458189][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  127.470985][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  127.488761][ T7040] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.643699][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  127.667154][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  127.876451][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.890189][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  127.981996][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  128.125163][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.148068][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  128.196827][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  128.329615][ T7087] loop3: detected capacity change from 0 to 2048
[  128.370146][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  128.381084][ T7082] syz.0.1252[7082] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  128.381192][ T7082] syz.0.1252[7082] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  128.384978][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  128.411906][ T7082] syz.0.1252[7082] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  128.416774][ T7087] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.084761][ T7115] loop1: detected capacity change from 0 to 2048
[  129.120484][ T7115] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.163174][   T29] kauditd_printk_skb: 209 callbacks suppressed
[  129.163193][   T29] audit: type=1326 audit(1727312787.340:6804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.209742][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.220443][   T29] audit: type=1326 audit(1727312787.340:6805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.243963][   T29] audit: type=1326 audit(1727312787.340:6806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.267396][   T29] audit: type=1326 audit(1727312787.340:6807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.290828][   T29] audit: type=1326 audit(1727312787.340:6808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.314266][   T29] audit: type=1326 audit(1727312787.340:6809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.331229][ T7136] loop0: detected capacity change from 0 to 2048
[  129.337863][   T29] audit: type=1326 audit(1727312787.340:6810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.367671][   T29] audit: type=1326 audit(1727312787.340:6811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.391163][   T29] audit: type=1326 audit(1727312787.340:6812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.414634][   T29] audit: type=1326 audit(1727312787.340:6813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7128 comm="syz.0.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  129.440458][ T4730] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.566037][ T7160] netlink: 'syz.3.1283': attribute type 24 has an invalid length.
[  129.641285][ T7166] loop0: detected capacity change from 0 to 512
[  129.662770][ T7166] EXT4-fs (loop0): 1 truncate cleaned up
[  129.668892][ T7166] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.723595][ T7171] syz.2.1288[7171] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.723725][ T7171] syz.2.1288[7171] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.768577][ T7177] syz.1.1290[7177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.784538][ T7171] syz.2.1288[7171] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.820132][ T7139] chnl_net:caif_netlink_parms(): no params data found
[  129.857093][ T7177] hub 2-0:1.0: USB hub found
[  129.862268][ T7177] hub 2-0:1.0: 8 ports detected
[  129.867265][ T7179] EXT4-fs error (device loop0): ext4_add_entry:2437: inode #2: comm syz.0.1286: Directory hole found for htree leaf block 0
[  129.906609][ T7186] siw: device registration error -23
[  129.930935][ T7139] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.938134][ T7139] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.961330][ T7139] bridge_slave_0: entered allmulticast mode
[  129.971755][ T7139] bridge_slave_0: entered promiscuous mode
[  129.998384][ T7139] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.005489][ T7139] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.014278][ T7139] bridge_slave_1: entered allmulticast mode
[  130.021272][ T7139] bridge_slave_1: entered promiscuous mode
[  130.050455][ T7139] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  130.080658][ T7139] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  130.137454][ T7139] team0: Port device team_slave_0 added
[  130.158079][ T7139] team0: Port device team_slave_1 added
[  130.189972][ T7139] batman_adv: batadv0: Adding interface: batadv_slave_0
[  130.196955][ T7139] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.223080][ T7139] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  130.234811][ T7139] batman_adv: batadv0: Adding interface: batadv_slave_1
[  130.241923][ T7139] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.267861][ T7139] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  130.340373][ T7213] hub 2-0:1.0: USB hub found
[  130.342789][ T7139] hsr_slave_0: entered promiscuous mode
[  130.345492][ T7213] hub 2-0:1.0: 8 ports detected
[  130.355963][ T7139] hsr_slave_1: entered promiscuous mode
[  130.362346][ T7139] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  130.370206][ T7139] Cannot create hsr debugfs directory
[  130.487789][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.499205][ T7224] bpf_get_probe_write_proto: 5 callbacks suppressed
[  130.499220][ T7224] syz.2.1310[7224] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  130.506020][ T7224] syz.2.1310[7224] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  130.517764][ T7224] syz.2.1310[7224] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  130.518932][ T7139] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.621491][ T7139] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.672012][ T7139] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.742381][ T7139] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.811050][ T7139] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  130.827780][ T7139] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  130.842078][ T7139] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  130.852634][ T7139] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  131.014269][ T7280] syz.3.1338[7280] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.014382][ T7280] syz.3.1338[7280] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.028402][ T7139] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.051467][ T7280] syz.3.1338[7280] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.054703][ T7139] 8021q: adding VLAN 0 to HW filter on device team0
[  131.094289][ T7280] veth0_vlan: entered allmulticast mode
[  131.126624][ T3366] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.133796][ T3366] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.218537][ T7280] veth0_vlan: left promiscuous mode
[  131.224193][ T7280] veth0_vlan: entered promiscuous mode
[  131.255860][ T3366] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.262999][ T3366] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.339695][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  131.339695][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  131.353445][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  131.470425][ T7139] 8021q: adding VLAN 0 to HW filter on device batadv0
[  131.530352][ T7311] loop1: detected capacity change from 0 to 2048
[  131.700063][ T7139] veth0_vlan: entered promiscuous mode
[  131.709899][ T7139] veth1_vlan: entered promiscuous mode
[  131.732409][ T7139] veth0_macvtap: entered promiscuous mode
[  131.738670][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  131.738670][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  131.752592][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  131.765470][ T7139] veth1_macvtap: entered promiscuous mode
[  131.780301][ T7139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.790904][ T7139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.800815][ T7139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.811251][ T7139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.821195][ T7139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.831705][ T7139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.841532][ T7139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.851982][ T7139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.866980][ T7139] batman_adv: batadv0: Interface activated: batadv_slave_0
[  131.893923][  T220] EXT4-fs error: 7683 callbacks suppressed
[  131.893937][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  131.894789][ T7139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.904228][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  131.908806][ T7139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.908819][ T7139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.908836][ T7139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.908851][ T7139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.908878][ T7139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.908887][ T7139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.951176][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  131.961037][ T7139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.987062][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  132.028310][ T7139] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.049415][ T7139] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.058264][ T7139] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.066978][ T7139] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.075793][ T7139] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.095932][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  132.120530][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  132.133667][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  132.151394][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  132.158303][ T7335] loop0: detected capacity change from 0 to 512
[  132.173684][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  132.188529][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  132.210736][ T7335] EXT4-fs (loop0): 1 truncate cleaned up
[  132.216969][ T7335] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.443881][ T7352] EXT4-fs error (device loop0): ext4_add_entry:2437: inode #2: comm syz.0.1353: Directory hole found for htree leaf block 0
[  132.469793][ T7353] syz.1.1356[7353] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  132.469975][ T7353] syz.1.1356[7353] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  132.482660][ T4707] EXT4-fs error: 64 callbacks suppressed
[  132.482678][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  132.511179][ T7353] syz.1.1356[7353] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  132.648209][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  132.833590][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  132.867928][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  132.903732][ T7371] syz.2.1366[7371] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.058937][ T4729] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.100722][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  133.115963][ T7381] loop3: detected capacity change from 0 to 2048
[  133.229760][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  133.247508][ T7381]  loop3: p1 < > p4
[  133.252566][ T7381] loop3: p4 size 8388608 extends beyond EOD, truncated
[  133.395778][ T3255] udevd[3255]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  133.405764][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  133.408913][ T3604] udevd[3604]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  133.430088][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  133.448787][ T3255] udevd[3255]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  133.451603][ T3604] udevd[3604]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  133.570518][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  133.727138][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  133.754326][ T7434] loop3: detected capacity change from 0 to 2048
[  133.841529][ T7445] loop1: detected capacity change from 0 to 128
[  134.059926][ T7474] siw: device registration error -23
[  134.208977][   T29] kauditd_printk_skb: 181 callbacks suppressed
[  134.209064][   T29] audit: type=1326 audit(1727312792.390:6995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7479 comm="syz.0.1412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  134.358591][   T29] audit: type=1326 audit(1727312792.420:6996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7479 comm="syz.0.1412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f74ba81c7d7 code=0x7ffc0000
[  134.382184][   T29] audit: type=1326 audit(1727312792.420:6997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7479 comm="syz.0.1412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  134.405761][   T29] audit: type=1326 audit(1727312792.420:6998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7479 comm="syz.0.1412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74ba81df39 code=0x7ffc0000
[  134.476242][ T7496] loop0: detected capacity change from 0 to 2048
[  134.487259][ T7492] hub 2-0:1.0: USB hub found
[  134.494493][ T7492] hub 2-0:1.0: 8 ports detected
[  134.504880][ T7500] veth0_vlan: entered allmulticast mode
[  134.549090][ T7500] veth0_vlan: left promiscuous mode
[  134.560028][ T7500] veth0_vlan: entered promiscuous mode
[  134.579997][ T7506] siw: device registration error -23
[  134.632331][ T7505] hub 2-0:1.0: USB hub found
[  134.678477][ T7505] hub 2-0:1.0: 8 ports detected
[  134.756924][ T7515] hub 2-0:1.0: USB hub found
[  134.764735][ T7515] hub 2-0:1.0: 8 ports detected
[  135.094213][ T7547] hub 2-0:1.0: USB hub found
[  135.099188][ T7547] hub 2-0:1.0: 8 ports detected
[  135.471822][ T7568] hub 2-0:1.0: USB hub found
[  135.507011][ T7568] hub 2-0:1.0: 8 ports detected
[  135.515258][ T7575] siw: device registration error -23
[  135.573765][   T29] audit: type=1326 audit(1727312793.750:6999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7577 comm="syz.1.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc80cf1df39 code=0x7ffc0000
[  135.699010][   T29] audit: type=1326 audit(1727312793.780:7000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7577 comm="syz.1.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc80cf1df39 code=0x7ffc0000
[  135.722521][   T29] audit: type=1326 audit(1727312793.780:7001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7577 comm="syz.1.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fc80cf1c7d7 code=0x7ffc0000
[  135.746118][   T29] audit: type=1326 audit(1727312793.780:7002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7577 comm="syz.1.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc80cf1df39 code=0x7ffc0000
[  135.770011][   T29] audit: type=1326 audit(1727312793.780:7003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7577 comm="syz.1.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc80cf1df39 code=0x7ffc0000
[  135.935307][ T7603] siw: device registration error -23
[  135.964617][ T7611] bpf_get_probe_write_proto: 29 callbacks suppressed
[  135.964631][ T7611] syz.1.1470[7611] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.982155][ T7611] syz.1.1470[7611] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.983512][ T7609] syz.0.1469[7609] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.993810][ T7611] syz.1.1470[7611] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  136.047213][ T7609] syz.0.1469[7609] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  136.061456][   T29] audit: type=1326 audit(1727312794.250:7004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7615 comm="syz.2.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  136.098110][ T7609] syz.0.1469[7609] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  136.156105][ T7609] hub 2-0:1.0: USB hub found
[  136.173580][ T7609] hub 2-0:1.0: 8 ports detected
[  136.336319][ T7652] syz.0.1488[7652] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  136.336389][ T7652] syz.0.1488[7652] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  136.348136][ T7652] syz.0.1488[7652] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  136.397666][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  136.397666][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  136.422505][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  136.441491][ T7652] hub 2-0:1.0: USB hub found
[  136.446462][ T7652] hub 2-0:1.0: 8 ports detected
[  136.827635][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  136.827635][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  136.841122][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  136.880771][ T7682] loop1: detected capacity change from 0 to 512
[  136.894987][ T7682] EXT4-fs (loop1): 1 truncate cleaned up
[  136.901207][ T7682] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.047208][  T220] EXT4-fs error: 7053 callbacks suppressed
[  137.047255][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  137.087569][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  137.118965][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  137.132947][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  137.145919][ T7688] EXT4-fs error (device loop1): ext4_add_entry:2437: inode #2: comm syz.1.1502: Directory hole found for htree leaf block 0
[  137.165032][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  137.186983][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  137.200948][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  137.218631][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  137.378025][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  137.402706][ T7693] syz.2.1505[7693] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  137.432332][ T7693] veth0_vlan: entered allmulticast mode
[  137.506597][ T4707] EXT4-fs error: 56 callbacks suppressed
[  137.506613][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  137.507086][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  137.534937][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  137.551240][ T7700] loop3: detected capacity change from 0 to 256
[  137.587669][ T7693] veth0_vlan: left promiscuous mode
[  137.593364][ T7693] veth0_vlan: entered promiscuous mode
[  137.677241][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  137.692774][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  137.877263][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  137.887767][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  137.979126][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.007383][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  138.062194][ T7712] siw: device registration error -23
[  138.094037][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  138.650147][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  138.739831][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  138.839833][ T7741] siw: device registration error -23
[  138.912059][ T7745] hub 2-0:1.0: USB hub found
[  138.916823][ T7745] hub 2-0:1.0: 8 ports detected
[  139.152977][ T7763] hub 2-0:1.0: USB hub found
[  139.157895][ T7763] hub 2-0:1.0: 8 ports detected
[  139.386919][ T7779] siw: device registration error -23
[  139.408936][ T7776] loop3: detected capacity change from 0 to 2048
[  139.561436][   T29] kauditd_printk_skb: 113 callbacks suppressed
[  139.561453][   T29] audit: type=1326 audit(1727312797.740:7118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="syz.2.1547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.591337][   T29] audit: type=1326 audit(1727312797.740:7119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="syz.2.1547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.614855][   T29] audit: type=1326 audit(1727312797.740:7120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.637899][   T29] audit: type=1326 audit(1727312797.750:7121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.660933][   T29] audit: type=1326 audit(1727312797.750:7122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.683997][   T29] audit: type=1326 audit(1727312797.750:7123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.706915][   T29] audit: type=1326 audit(1727312797.750:7124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.758345][   T29] audit: type=1326 audit(1727312797.910:7125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.781594][   T29] audit: type=1326 audit(1727312797.910:7126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.804719][   T29] audit: type=1326 audit(1727312797.910:7127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7788 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f191966df39 code=0x7ffc0000
[  139.900727][ T7798] loop1: detected capacity change from 0 to 2048
[  140.156710][ T7831] 9pnet_fd: Insufficient options for proto=fd
[  140.247699][ T7845] hub 2-0:1.0: USB hub found
[  140.252518][ T7845] hub 2-0:1.0: 8 ports detected
[  140.631785][ T7871] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1587'.
[  140.702680][ T7873] hub 2-0:1.0: USB hub found
[  140.747460][ T7873] hub 2-0:1.0: 8 ports detected
[  140.784207][ T7878] loop0: detected capacity change from 0 to 512
[  140.797527][ T7878] EXT4-fs: Ignoring removed bh option
[  140.804142][ T7878] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  140.826543][ T7878] EXT4-fs error (device loop0): ext4_orphan_get:1414: comm syz.0.1587: bad orphan inode 17
[  140.838828][ T7878] EXT4-fs (loop0): Remounting filesystem read-only
[  140.845378][ T7878] ext4_test_bit(bit=16, block=4) = 1
[  140.850756][ T7878] is_bad_inode(inode)=0
[  140.854987][ T7878] NEXT_ORPHAN(inode)=1048336
[  140.859689][ T7878] max_ino=32
[  140.862894][ T7878] i_nlink=0
[  140.866413][ T7878] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.878573][ T7878] SELinux: (dev loop0, type ext4) getxattr errno 5
[  140.885884][ T7878] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.054879][ T7896] loop1: detected capacity change from 0 to 2048
[  141.210811][ T7903] bpf_get_probe_write_proto: 17 callbacks suppressed
[  141.210831][ T7903] syz.4.1600[7903] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.219393][ T7903] syz.4.1600[7903] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.241192][ T7903] syz.4.1600[7903] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.286183][ T7903] veth0_vlan: left promiscuous mode
[  141.304500][ T7903] veth0_vlan: entered promiscuous mode
[  141.305766][ T7907] hub 2-0:1.0: USB hub found
[  141.315834][ T7907] hub 2-0:1.0: 8 ports detected
[  141.427330][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  141.427330][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  141.440813][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  141.522012][ T7923] syz.1.1608[7923] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.522150][ T7923] syz.1.1608[7923] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.534562][ T7923] syz.1.1608[7923] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.583125][ T7923] veth0_vlan: left promiscuous mode
[  141.618272][ T7923] veth0_vlan: entered promiscuous mode
[  141.835498][ T7941] syz.3.1616[7941] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.835641][ T7941] syz.3.1616[7941] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.849269][ T7941] syz.3.1616[7941] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  141.895543][ T7941] veth0_vlan: left promiscuous mode
[  141.907822][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  141.907822][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  141.918047][ T7941] veth0_vlan: entered promiscuous mode
[  141.925567][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  142.012039][ T7954] siw: device registration error -23
[  142.057269][  T220] EXT4-fs error: 12635 callbacks suppressed
[  142.057289][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  142.074471][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  142.087250][ T7960] 9pnet_fd: Insufficient options for proto=fd
[  142.093446][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  142.093593][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  142.115714][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  142.125009][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  142.140561][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  142.149894][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  142.162997][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  142.173566][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  142.232895][ T7971] hub 2-0:1.0: USB hub found
[  142.238052][ T7971] hub 2-0:1.0: 8 ports detected
[  142.610962][ T4707] EXT4-fs error: 70 callbacks suppressed
[  142.610980][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  142.685588][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  142.838001][ T8010] syz.2.1648[8010] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  142.847654][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  142.851693][ T8008] loop1: detected capacity change from 0 to 2048
[  142.877729][ T8014] siw: device registration error -23
[  142.889946][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  143.027208][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  143.037959][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  143.148658][   T46] ==================================================================
[  143.156762][   T46] BUG: KCSAN: assert: race in dequeue_entities+0x6df/0x760
[  143.163980][   T46] 
[  143.166299][   T46] race at unknown origin, with assert no writes to 0xffff8881021bb1e8 of 4 bytes by task 46 on cpu 0:
[  143.177225][   T46]  dequeue_entities+0x6df/0x760
[  143.182104][   T46]  pick_next_task_fair+0x7d/0x410
[  143.187125][   T46]  __schedule+0x284/0x940
[  143.191469][   T46]  schedule+0x55/0xc0
[  143.195464][   T46]  worker_thread+0x5f4/0x6f0
[  143.200056][   T46]  kthread+0x1d1/0x210
[  143.204120][   T46]  ret_from_fork+0x4b/0x60
[  143.208537][   T46]  ret_from_fork_asm+0x1a/0x30
[  143.213316][   T46] 
[  143.215629][   T46] value changed: 0x00000000 -> 0x00000001
[  143.221338][   T46] 
[  143.223650][   T46] Reported by Kernel Concurrency Sanitizer on:
[  143.229786][   T46] CPU: 0 UID: 0 PID: 46 Comm: kworker/0:1H Not tainted 6.11.0-syzkaller-10622-gaa486552a110 #0
[  143.240102][   T46] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  143.250160][   T46] Workqueue:  0x0 (kblockd)
[  143.254684][   T46] ==================================================================
[  143.269416][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  143.281220][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  143.397723][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  143.407303][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  146.458818][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  146.458818][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  146.472328][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  146.937219][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  146.937219][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  146.950665][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  147.067157][  T220] EXT4-fs error: 25244 callbacks suppressed
[  147.067177][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  147.082566][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  147.094337][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  147.103624][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  147.115218][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  147.124470][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  147.136204][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  147.145610][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  147.157954][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  147.167251][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  147.717175][ T4707] EXT4-fs error: 76 callbacks suppressed
[  147.717192][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  147.732254][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  147.847736][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  147.856960][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  147.977215][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  147.986498][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  148.107223][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  148.116370][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  148.238424][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  148.247704][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  151.497141][ T4694] kmmpd-loop4: attempt to access beyond end of device
[  151.497141][ T4694] loop4: rw=14337, sector=48, nr_sectors = 4 limit=11
[  151.510771][ T4694] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  151.978767][ T4710] kmmpd-loop2: attempt to access beyond end of device
[  151.978767][ T4710] loop2: rw=14337, sector=48, nr_sectors = 4 limit=11
[  151.992289][ T4710] Buffer I/O error on dev loop2, logical block 12, lost sync page write
[  152.077151][  T220] EXT4-fs error: 29186 callbacks suppressed
[  152.077233][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  152.092376][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  152.104116][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  152.113437][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  152.125058][ T4704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  152.134246][ T4704] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm syz.4.441: mark_inode_dirty error
[  152.146268][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  152.155395][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  152.167337][  T220] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Out of memory
[  152.176473][  T220] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #19: comm kworker/u8:5: mark_inode_dirty error
[  152.728459][ T4707] EXT4-fs error: 80 callbacks suppressed
[  152.728480][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  152.743428][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  152.857319][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  152.866634][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  152.987167][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  152.996326][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error
[  153.127177][ T4707] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5780: Out of memory
[  153.136410][ T4707] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #19: comm syz.2.443: mark_inode_dirty error