last executing test programs:

1m40.800560952s ago: executing program 3 (id=399):
socket$packet(0x11, 0xa, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'gretap0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@gettclass={0x24, 0x2a, 0x10, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0xffff, 0xe}, {0xe, 0x6}, {0xc, 0xffe0}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
socket$kcm(0x2, 0xa, 0x73)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000006c0)=ANY=[@ANYRESDEC=r0, @ANYRES8=r1, @ANYBLOB="0454a6bdaafdeccdc4569cc536133cf5ee7e3be0ea7f01d43ae35ec1492eb73eda42060b80e6287b5a097f0453beaa21221eb99bad227160a99891d2527ccdd54b2a6777da92f0b64f83a27bc691ced1feb017e3af854191533bbce947628050cadbb93dde01eb8373379fb6f7e7d75c6f503092d0ff9cdcb64191b41cbbcf37079a6cab45c92ad8461b5ff9476effcc063aa89ef13876442fdd2588a93ebee3ab8145ceeb7f0ba99dd17c712abb4c", @ANYRESHEX=r4], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xfffff}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x8}, 0x10}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000900000000000000000000000000000013000000"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1e000000e69effff000014000200000001020000", @ANYRES32=r5, @ANYBLOB="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", @ANYRES32=r3, @ANYRES32, @ANYBLOB="0300000001000000040000000b00"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdff071c16110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000000c0)='./file0\x00', 0x1000000, &(0x7f00000003c0)=ANY=[@ANYBLOB="73686f72746e616d653d77696e39352c756e695f786c6174653d312c636865636b3d7374726963742c646f733178666c6f7070792c757466383d312c757466383d312c757466383d302c696f636861727365743d6370313235de26302c696f636861727365743d69736f383835392d342c696f636861727365743d64656661756c742c73686f72746e616d653d6d69786564", @ANYRES8=0x0], 0xfe, 0x19c, &(0x7f0000000200)="$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")
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x122)

1m40.431444592s ago: executing program 3 (id=406):
socket$packet(0x11, 0xa, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'gretap0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@gettclass={0x24, 0x2a, 0x10, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0xffff, 0xe}, {0xe, 0x6}, {0xc, 0xffe0}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
socket$kcm(0x2, 0xa, 0x73)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000006c0)=ANY=[@ANYRESDEC=r0, @ANYRES8=r1, @ANYBLOB="0454a6bdaafdeccdc4569cc536133cf5ee7e3be0ea7f01d43ae35ec1492eb73eda42060b80e6287b5a097f0453beaa21221eb99bad227160a99891d2527ccdd54b2a6777da92f0b64f83a27bc691ced1feb017e3af854191533bbce947628050cadbb93dde01eb8373379fb6f7e7d75c6f503092d0ff9cdcb64191b41cbbcf37079a6cab45c92ad8461b5ff9476effcc063aa89ef13876442fdd2588a93ebee3ab8145ceeb7f0ba99dd17c712abb4c", @ANYRESHEX=r4], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xfffff}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x8}, 0x10}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000900000000000000000000000000000013000000"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1e000000e69effff000014000200000001020000", @ANYRES32=r6, @ANYBLOB="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", @ANYRES32=r3, @ANYRES32, @ANYBLOB="0300000001000000040000000b00"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdff071c16110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000000c0)='./file0\x00', 0x1000000, &(0x7f00000003c0)=ANY=[@ANYBLOB="73686f72746e616d653d77696e39352c756e695f786c6174653d312c636865636b3d7374726963742c646f733178666c6f7070792c757466383d312c757466383d312c757466383d302c696f636861727365743d6370313235de26302c696f636861727365743d69736f383835392d342c696f636861727365743d64656661756c742c73686f72746e616d653d6d69786564", @ANYRES8=0x0], 0xfe, 0x19c, &(0x7f0000000200)="$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")
truncate(&(0x7f0000000000)='./file1\x00', 0x8000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
openat$ppp(0xffffffffffffff9c, 0x0, 0xc0802, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$EVIOCGPROP(0xffffffffffffffff, 0x40047438, &(0x7f0000000180)=""/246)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2673004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
creat(&(0x7f00000000c0)='./file0\x00', 0x122)

1m39.445335112s ago: executing program 3 (id=415):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="010000050000000000b7080000000006007b8af8ff04000000bfa20000000000000702000005615391b70300003408000000b7040000000000008500000001000000be19eb6d0aea64c762f786fa611701d1feaacf4f309273b13198f2cea4b35785b4aa9d8d4adc4dfc078ddd04946199edc5cc29c2468b40d74b9e4c38ea5c519ef499476fe5bc90e121a59cf2498f16043f746ba24e4e68949ead54fd3ec3e5683bfb8ee557462dba320d0f1e164b537fc6e37a48ad408d2c4468fcf1d927b5c161a8c45073"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, 0x0)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)

1m39.382852947s ago: executing program 3 (id=417):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x99)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="00000000b7080000c7de00007b8af8ff00000000bfa200000000060007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="00000000b7080000c7de00007b8af8ff00000000bfa200000000060007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x80000}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9) (async)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000980)={0x0, 0x79a8, 0x8, 0x1, 0x29a}, &(0x7f0000000140)=<r3=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) (async)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x94) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="5fb61f8ccf", @ANYRESHEX=r5, @ANYRESHEX=r5], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="5fb61f8ccf", @ANYRESHEX=r5, @ANYRESHEX=r5], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r6}, 0x10)
socket$inet_sctp(0x2, 0x1, 0x84) (async)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
r8 = socket$inet6(0xa, 0x2, 0x0)
getsockopt$inet6_int(r8, 0x29, 0x48, 0x0, &(0x7f0000000080))
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000100)=0x8, 0x4)
r10 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r10, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r10, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r11=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r9, 0x84, 0x85, &(0x7f0000000000)={r11, @in={{0x2, 0x0, @empty}}, 0x27c0}, 0x90)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r7, 0x84, 0x79, &(0x7f0000000000)={r11, 0x7, 0xf6b9}, 0x8) (async)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r7, 0x84, 0x79, &(0x7f0000000000)={r11, 0x7, 0xf6b9}, 0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r12 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r12, 0x13)

1m39.068619733s ago: executing program 3 (id=419):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000019c40)='./file0\x00', 0x18000, &(0x7f00000015c0)=ANY=[@ANYRES32=0x0, @ANYRES64, @ANYRES16=0x0, @ANYBLOB="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", @ANYRES8=0x0, @ANYRES64, @ANYBLOB="d9dac80f79c1e0bb9745b3313cc4d3f22839c25a5bb8fd4009cea400b4e45854165d888860c736ecf5b4beac2633eb13667ccf0f638a99efa46113adcbb7a50138e3628a5f8b9073d0dedc51eddbc784f54fa2d251795eccb140df19e35c3774cf21f98ed2c7da4bd7d328cd0445403b", @ANYRESHEX, @ANYBLOB="8a57754ab1cf85fb8ad5138b0ba0e619b6d2433356a00d196c4034fd6ef843ffd82d6692ccd2ff059e10062644f5304eb2db809a251b7c3e32b696c57f81dc172b89abc824f5b4faf989dd02f35f439eb2c905fae9c4203b03f41b42fd718a3c9bda0f2e5b4449eb635ed3ffea97854f3b8701ab2db06e4da7724a794896b5ffc977adf35b7d360dbcfe1e34238293615486c44deefeaa235239bc10df444e13424774bd796126107ae9e8fa22ebd0fe6e156fa89d7eb1a0c8459e922dd897a90cfa01598db6e52ee22d0f7cea379ac638540fbd983adeea5f566f34e0acec9f9ab23191848ebade11567b45f4"], 0x8, 0x2eb, &(0x7f0000019940)="$eJzs3E1PE10UwPHTF0pbAmXx5DGaGG50o5sJVNdKYyAxNpEgNb4kJgNMtenYkpkGU2NEV26NH8IFYcmORPkCbNzpxo07NiYuZGEc0+kMhTKAlNIi/H8JmcPce6b3zgzk3AnD+r23T4t5W8vrFQnHlYRERDZEBiUsvpC3DbtxTLZ6JZf7fnw+f+f+g1uZbHZsUqnxzNSVtFJqYOjDsxcJr9tKr6wNPlr/nv629v/a2fXfU08KtirYqlSuKF1Nl79W9GnTULMFu6gpNWEaum2oQsk2rHp7ud6eN8tzc1Wll2b7k3OWYdtKL1VV0aiqSllVrKqKPNYLJaVpmupPCvaTW5yc1DMtJs+0eTA4IpaV0SMiktjRklvsyoAAAEBXNdf/YVHtrP+XLqxW+u4uD3j1/0osqP6/+qV+rG31f1xEAut///MD63/9YPX/zorodDlU/Y/jYSi2Y1eoEdYarYye9H5+Xa8fLg27AfU/AAAAAAAAAAAAAAAAAAAAAAD/gg3HSTmOk/K3/leviMRFxP8+IDUiIte7MGS00SGuP06Axot70QER8818bj5X33odVkXEFEOGJSW/3PvBU4v9N49UzaB8NBe8/IX5XMRtyeSl4OaPSKpHmvMdZ/xmdmxE1W3P75Hk1vy0pOS/4Px0YH5MLl3ckq9JSj7NSFlMmXXH0ch/OaLUjdvZpvyE2w8AAAAAgJNAU5sC1++atlt7PX9zfd38fCDSWF8PB67Po3Iu2t25AwAAAABwWtjV50XdNA1rjyAh+/dpPYge0ZH9Gf5tlv+3DEc30z0C/8O3NcW9nW0/LaEDnJZdgrC0kjVUm4067Cz8x0a79ZGJ0c5fQTc48+79z/Yd8NpyfJ+Zth5E9r4Bejr2CwgAAABAxzSKfn/PaHcHBAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAKdSJ/47W7TkCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAx8WfAAAA//+SWQVN")
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfd, 0x0, 0x7ffc9ffb}]})
fstat(0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000019240), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f00000197c0)={&(0x7f0000019200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000019780)={&(0x7f0000019280)=ANY=[@ANYBLOB="dc040000", @ANYRES16=r3, @ANYBLOB="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"], 0x4dc}, 0x1, 0x0, 0x0, 0x8004}, 0x4000001)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="300000006800010003001000fdffff7f00000000000000000c0002000100000015abd3040b0002"], 0x30}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x18)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
fdatasync(r4)
r7 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
pread64(r7, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

1m39.029423606s ago: executing program 3 (id=420):
readv(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
r2 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ff"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
recvmmsg(r3, &(0x7f0000005040)=[{{0x0, 0x0, 0x0}, 0x8}], 0x1, 0x10000, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendfile(r2, r2, &(0x7f0000000080)=0x2, 0x7f03)
unshare(0x40020480)

1m39.007151818s ago: executing program 32 (id=420):
readv(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
r2 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ff"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
recvmmsg(r3, &(0x7f0000005040)=[{{0x0, 0x0, 0x0}, 0x8}], 0x1, 0x10000, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendfile(r2, r2, &(0x7f0000000080)=0x2, 0x7f03)
unshare(0x40020480)

3.045477984s ago: executing program 0 (id=1665):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000003c0)={0x0, 0x1208000, 0x1000, 0x9, 0x1}, 0x20)

3.025128955s ago: executing program 0 (id=1666):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000008, &(0x7f0000000080), 0x0, 0x52e, &(0x7f0000000f00)="$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")
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x1, 0x65, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x286ca06bbee933dc, 0x23, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x404, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {0xf}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x3}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0xc, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1, 0x3}, {0x80, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0xfffffffc, 0x0, 0x3ff, 0x40000000}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x5}, {}, {0xb, 0x0, 0x0, 0x4000, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {0x0, 0xfffffffe}, {0xfffffff7, 0x0, 0x6, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd, 0x0, 0xffffffff}, {0x6}, {0x7f, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {0x0, 0xfffffffc, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x4, 0x4}, {0x0, 0x2e9c, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8, 0x2, 0x6}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc, 0x2}, {0x0, 0x80000000, 0x0, 0x7dff800}], [{}, {}, {0x0, 0x1}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {0x4}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {0x7}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {}, {}, {}, {0x4}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2}}}}]}]}, 0xe68}}, 0x0)
sendmsg$NFT_MSG_GETOBJ(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000150a03"], 0x34}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="3348cd842591e5ae7221c5cf665a7d6704000013220003714cf90e9de010be98b35d40734e39a4ff816ba9af195d212cf99db1b0db6f661438804b6c5cb29ad74980deb8ecdc8354fc618ebfd65473", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
r7 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000800)=@newqdisc={0x2c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000007}, 0x20004004)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000001240)={r5, r8, 0x25, 0xc, @val=@perf_event={0x1}}, 0x18)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)='cpuset.mem_hardwall\x00', 0x2, 0x0)
r9 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x40000)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r9, 0xc0145401, &(0x7f0000000240)={0x3, 0x1, 0x1, 0x0, 0xd2})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x210})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x89f1, &(0x7f0000000080))
r11 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBENT(r11, 0x4b47, &(0x7f0000000000)={0x4, 0x25, 0x2})

2.920329764s ago: executing program 0 (id=1667):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2b4, &(0x7f0000000600)="$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")
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x12, 0xffffffffffffffff, 0xfffff000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa54000085"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r4, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x7, 0x3a, ')', 0x3a, '', 0x3a, './file0', 0x3a, [0x46]}, 0x29)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000400)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r5, 0x0, r7, 0x0, 0x88000cc, 0x0)
write$eventfd(r6, &(0x7f0000000240), 0xffffff14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x18, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000001540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8, 0x0, 0xffffffffffffffff}, 0x13)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f00000031c0)={0x1, 0x0, 0x10000})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r9 = socket$nl_route(0x10, 0x3, 0x0)
fadvise64(r9, 0x0, 0x6, 0x2)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)

2.372924708s ago: executing program 2 (id=1675):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000200)={[{@noload}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@jqfmt_vfsold}, {@journal_dev={'journal_dev', 0x3d, 0x800}}, {@nobh}, {@inlinecrypt}, {@grpquota}, {@init_itable}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r0, &(0x7f00000003c0)='cgroup.stat\x00', 0x26e1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r1}, 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xa0402, 0x0)
io_setup(0x1, &(0x7f0000002500)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000400)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x5, r4, &(0x7f0000000380)="a3", 0x1}])
r6 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r7, 0x2007ff3)
copy_file_range(r7, 0x0, r6, 0x0, 0xffffffffa003e459, 0x700000000000000)

2.067761263s ago: executing program 0 (id=1677):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000200)={[{@noload}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@jqfmt_vfsold}, {@journal_dev={'journal_dev', 0x3d, 0x800}}, {@nobh}, {@inlinecrypt}, {@grpquota}, {@init_itable}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_ro(r0, 0x0, 0x26e1, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r2, 0x2007ff3)
copy_file_range(r2, 0x0, r1, 0x0, 0xffffffffa003e459, 0x700000000000000)

1.85811769s ago: executing program 1 (id=1679):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2b4, &(0x7f0000000600)="$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")
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x12, 0xffffffffffffffff, 0xfffff000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa54000085"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r4, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x7, 0x3a, ')', 0x3a, '', 0x3a, './file0', 0x3a, [0x46]}, 0x29)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000400)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r5, 0x0, r7, 0x0, 0x88000cc, 0x0)
write$eventfd(r6, &(0x7f0000000240), 0xffffff14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x18, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000001540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8, 0x0, 0xffffffffffffffff}, 0x13)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f00000031c0)={0x1, 0x0, 0x10000})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r9 = socket$nl_route(0x10, 0x3, 0x0)
fadvise64(r9, 0x0, 0x6, 0x2)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)

1.704870472s ago: executing program 0 (id=1681):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'sit0\x00', &(0x7f0000001000)={'syztnl2\x00', 0x0, 0x0, 0xa000, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x64, 0x0, 0x0, 0x4, 0x0, @empty, @rand_addr=0x3}}}})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f00000012c0)=ANY=[@ANYBLOB="18000000010000800000000000cb"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
syslog(0x2, &(0x7f0000000200)=""/4096, 0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
socketpair(0xf, 0x3, 0x2, &(0x7f00000001c0))
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r3, 0x8915, &(0x7f0000000040)={'netpci0\x00', {0x2, 0x0, @remote}})
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, 0xffffffffffffffff, 0x0, 0x3ffff)
sendfile(r3, 0xffffffffffffffff, 0x0, 0x7ffff000)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmsg$unix(r6, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x2000)

1.431699395s ago: executing program 5 (id=1682):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x18)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x22c41, 0x0)
flock(r6, 0x5)
r7 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r7, 0x2)
dup3(r7, r6, 0x0)
r8 = open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x2)
renameat2(r7, &(0x7f0000000040)='./file0\x00', r8, &(0x7f0000000400)='./file0\x00', 0x2)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000001000040000000000000000000300000a20000000000a05000000000000000000070000000900010073797a300000000044000000090a010400000000000000000700ffff08000a40000000030900020073797a31000000000900010073797a3000000000080005400000002105000d40930000005c0000000c0a01020000000000000000070000000900020073797a31000000000900010073797a3000000000300003802c0000800400018024000b80100001800c000100636f756e7465720010000180090001006c6173"], 0xe8}, 0x1, 0x0, 0x0, 0x10}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x200000005c832, 0xffffffffffffffff, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYRESDEC=0x0], &(0x7f0000000300)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001340)={&(0x7f0000000340)='kfree\x00', r9, 0x0, 0x6}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x24, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffff}, {0xffff, 0xffff}}}, 0x24}}, 0x20000000)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r10, &(0x7f0000000300)={0x0, 0xff03, &(0x7f0000001200)={&(0x7f00000004c0)={0x38, 0x1403, 0x1, 0x70bd2d, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)
waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x2, 0x0)

1.336480652s ago: executing program 2 (id=1683):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
open(&(0x7f0000000280)='.\x00', 0x20000, 0x0)
mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x8042, 0x1fe)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
write$binfmt_register(r1, &(0x7f00000002c0)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x2, 0x3a, '{}{*}#\x12', 0x3a, 'overlay\x00', 0x3a, './file0'}, 0x36)
splice(r1, 0x0, r0, 0x0, 0x20000000000007, 0xa)

1.258784648s ago: executing program 2 (id=1685):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007"], &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet(r2, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmmsg$inet(r2, &(0x7f0000000600)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)="a9", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000280)='9', 0x1}], 0x1}}], 0x2, 0x4008440)

1.201583093s ago: executing program 5 (id=1686):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x10}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200008, &(0x7f0000000380)={[{@nolazytime}, {@auto_da_alloc}, {@sysvgroups}, {@norecovery}, {@jqfmt_vfsv0}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@user_xattr}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='t'])
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2, <r5=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8}, 0x50)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8}, @initr0, @exit, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000040)={r7, r6}, 0xc)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000001180)={@local, @multicast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "0010a6", 0x0, 0x4, 0x0, @empty, @mcast2}}}}, 0x0)
ftruncate(r1, 0x2007ffc)
sendfile(r1, r1, 0x0, 0x800000009)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r9 = open(&(0x7f0000000340)='./file1\x00', 0x4000, 0x0)
preadv2(r9, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x100000000000000d, 0x0, 0x0, 0x0)

1.197018954s ago: executing program 2 (id=1687):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2b4, &(0x7f0000000600)="$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")
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x12, 0xffffffffffffffff, 0xfffff000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa54000085"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r4, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x7, 0x3a, ')', 0x3a, '', 0x3a, './file0', 0x3a, [0x46]}, 0x29)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000400)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r5, 0x0, r7, 0x0, 0x88000cc, 0x0)
write$eventfd(r6, &(0x7f0000000240), 0xffffff14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x18, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000001540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8, 0x0, 0xffffffffffffffff}, 0x13)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f00000031c0)={0x1, 0x0, 0x10000})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r9 = socket$nl_route(0x10, 0x3, 0x0)
fadvise64(r9, 0x0, 0x6, 0x2)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)

1.040744366s ago: executing program 4 (id=1688):
socket$packet(0x11, 0xa, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'gretap0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
socket$kcm(0x2, 0xa, 0x73)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000006c0)=ANY=[@ANYRESDEC=r0, @ANYRES8=r1, @ANYBLOB="0454a6bdaafdeccdc4569cc536133cf5ee7e3be0ea7f01d43ae35ec1492eb73eda42060b80e6287b5a097f0453beaa21221eb99bad227160a99891d2527ccdd54b2a6777da92f0b64f83a27bc691ced1feb017e3af854191533bbce947628050cadbb93dde01eb8373379fb6f7e7d75c6f503092d0ff9cdcb64191b41cbbcf37079a6cab45c92ad8461b5ff9476effcc063aa89ef13876442fdd2588a93ebee3ab8145ceeb7f0ba99dd17c712abb4c", @ANYRESHEX=r4], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xfffff}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x8}, 0x10}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000900000000000000000000000000000013000000"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1e000000e69effff000014000200000001020000", @ANYRES32=r6, @ANYBLOB="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", @ANYRES32=r3, @ANYRES32, @ANYBLOB="0300000001000000040000000b00"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdff071c16110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
openat$ppp(0xffffffffffffff9c, 0x0, 0xc0802, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x3)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r8, 0x40047438, &(0x7f0000000180)=""/246)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2673004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

840.990643ms ago: executing program 4 (id=1689):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000003c0)={0x0, 0x1208000, 0x1000, 0x9, 0x1}, 0x20)

834.823313ms ago: executing program 5 (id=1690):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff85000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xa0402, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000080))
syz_open_pts(r2, 0x2000)
io_setup(0x1, &(0x7f0000002500)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000400)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x5, r2, &(0x7f0000000380)="a3", 0x1}])
close_range(r1, 0xffffffffffffffff, 0x0)

814.930674ms ago: executing program 4 (id=1691):
timer_create(0x3, 0x0, &(0x7f0000000340)=<r0=>0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@bridge_delneigh={0x28, 0x1c, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r2, 0x80, 0xb2}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}]}, 0x28}, 0x1, 0x0, 0x0, 0x840}, 0x40800)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001380)={&(0x7f0000001180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x8, [@enum64={0x8, 0x1, 0x0, 0x13, 0x0, 0x4, [{0x6, 0x1, 0x2}]}]}, {0x0, [0x61, 0x61, 0x91efcb65a76fd2eb, 0x0, 0x5f, 0x61]}}, &(0x7f00000012c0)=""/154, 0x38, 0x9a, 0x1, 0xfe6e}, 0x28)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000740)={0x0, r3}, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f00000000c0)=ANY=[@ANYRES8=r1], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r4}, 0x10)
r5 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
getsockopt$llc_int(r5, 0x10c, 0x5, 0x0, 0x0)
timer_gettime(r0, &(0x7f00000002c0))
preadv2(r1, &(0x7f00000006c0)=[{&(0x7f0000000380)=""/200, 0xc8}, {&(0x7f0000000480)=""/220, 0xdc}, {&(0x7f0000000180)=""/15, 0xf}, {&(0x7f0000000580)=""/83, 0x53}, {&(0x7f00000013c0)=""/4096, 0x1000}, {&(0x7f00000023c0)=""/4096, 0x1000}, {&(0x7f0000000600)=""/146, 0x92}], 0x7, 0x5, 0x400, 0xe)

787.620137ms ago: executing program 4 (id=1692):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r0 = getpid()
madvise(&(0x7f0000a5e000/0x1000)=nil, 0x1000, 0x17)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

745.28751ms ago: executing program 1 (id=1693):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x4, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {0x0, 0x0, 0x0, 0x805}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {0x4}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0xd8, 0x40000000}, {}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x4309, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x1, 0x8000}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {}, {0x0, 0x0, 0x6, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x4ccc}, {0x7f}, {}, {0x2}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x7ff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x3d8, 0x0, 0x7}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x2e9c}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc}, {0x0, 0x80000000, 0x0, 0x7dff800}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {0x1, 0x1}, {}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)

720.320602ms ago: executing program 1 (id=1694):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x10}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200008, &(0x7f0000000380)={[{@nolazytime}, {@auto_da_alloc}, {@sysvgroups}, {@norecovery}, {@jqfmt_vfsv0}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@user_xattr}]}, 0x3, 0x56a, &(0x7f00000015c0)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68BKZzWy7TbL5uXW3zucD0743M5s3b998335nZ5cNoLBGsn9KEa9GxDdJxOG2bYORbxxZ2W/p8Y3JbEliefmzP5NI8nWt/ZP8/4N55ZWI+PWriJOlte3WFxZnKtVqOpfXRxuzV0frC4unLs9WptPp9Mr4xMSZdybG33/v3a719c0Lf3//6f2Pznx9fOm7nx8euZvEuTiUb2vvxy7caq+MxEj+nAzFuVU7jnWhsX6S9PoA2JGBPM6HIpsDDsdAHvXA/9/NiFgGCioR/1BQrTygdW3fpevgF8ajD1cugNb2f3DlvZHY17w2OrCUPHNllF3vDneh/ayNX/64dzdbYpP3IW52oT2Allu3I+L04ODa+S/J57+dO91883hjq9so2usP9NL9LP95a738p/Qk/4l18p+D68TuTmwe/6WHXWimoyz/+2Dd/PfJ1DU8kNdeauZ8Q8mly9X0dES8HBEnYmhvVt/ofs6ZpQfLnba153/ZkrXfygXz43g4uPfZx0xVGpXd9Lndo9sRrz3Nf5NYM//va+a6q8c/ez4ubLGNY+m91ztt27z/7bqfAS//FPHGuuP/9I5WsvH9ydHm+TDaOivW+uvOsd86tb+9/ndfNv4HNu7/cNJ+v7a+/TZ+3PdP2mnbTs//PcnnzfKefN31SqMxNxaxJ/lk7frxp49t1Vv7Z/0/cXzj+W+9839/RHyxxf7fOXqn4679MP5T2xr/7RcefPzlD53a39r4v90sncjXbGX+2+oB7ua5AwAAAAAAgH5TiohDkZTKT8qlUrm88vmOo3GgVK3VGycv1eavTEXzu7LDMVRq3ek+3PZ5iLH887Ct+viq+kREHImIbwf2N+vlyVp1qtedBwAAAAAAAAAAAAAAAAAAgD5xsMP3/zO/D/T66IDnzk9+Q3FtGv/d+KUnoC95/YfiEv9QXOIfikv8Q3GJfygu8Q/FJf6huMQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNWF8+ezZXnp8Y3JrD51bWF+pnbt1FRanynPzk+WJ2tzV8vTtdp0NS1P1mY3+3vVWu3q2HjMXx9tpPXGaH1h8eJsbf5K4+Ll2cp0ejEd+k96BQAAAAAAAAAAAAAAAAAAAC+W+sLiTKVaTecUOhbORl8cxo4LyWajfDY/GXbUxGDvO6jwHAo9npgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoM2/AQAA///fKTPH")
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r3}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8}, @initr0, @exit, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
ftruncate(r1, 0x2007ffc)
sendfile(r1, r1, 0x0, 0x800000009)

694.545214ms ago: executing program 4 (id=1695):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x10}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200008, &(0x7f0000000380)={[{@nolazytime}, {@auto_da_alloc}, {@sysvgroups}, {@norecovery}, {@jqfmt_vfsv0}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@user_xattr}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mount$9p_fd(0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='t'])
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8}, 0x50)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8}, @initr0, @exit, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000040)={r6, r5}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
ftruncate(r1, 0x2007ffc)
sendfile(r1, r1, 0x0, 0x800000009)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r7 = open(&(0x7f0000000340)='./file1\x00', 0x4000, 0x0)
preadv2(r7, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x100000000000000d, 0x0, 0x0, 0x0)

679.236755ms ago: executing program 0 (id=1696):
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = syz_open_dev$MSR(&(0x7f00000026c0), 0x1, 0x0)
ioctl$X86_IOC_RDMSR_REGS(r1, 0xc02063a0, &(0x7f0000002700)=[0x8, 0x101, 0x100, 0x6b, 0x0, 0x2, 0xcf11, 0x9])
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELSETELEM={0x14, 0xe, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x8}}], {0x14}}, 0x3c}, 0x1, 0x0, 0x0, 0x40051}, 0x1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r3, &(0x7f0000000340)=ANY=[], 0xff2e)
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@ipv6_newrule={0x24, 0x1a, 0x1, 0x0, 0x0, {0x81}, [@FIB_RULE_POLICY=@FRA_TABLE={0x8, 0xf, 0xfe}]}, 0x24}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2}, {0x10000002, 0x0, 0x0, 0xc}]}, 0x94)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r5, 0x10)

643.890038ms ago: executing program 5 (id=1697):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
open(&(0x7f0000000280)='.\x00', 0x20000, 0x0)
mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x8042, 0x1fe)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
write$binfmt_register(r1, &(0x7f00000002c0)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x2, 0x3a, '{}{*}#\x12', 0x3a, 'overlay\x00', 0x3a, './file0'}, 0x36)
splice(r1, 0x0, r0, 0x0, 0x20000000000007, 0xa)

558.963435ms ago: executing program 5 (id=1698):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')

491.742921ms ago: executing program 1 (id=1699):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r2}, 0x9)
r3 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a30000000000800410073697700140033006c6f00"], 0xffaf}, 0x1, 0x0, 0x0, 0x854}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8000000000000}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r5}, 0x10)
mq_getsetattr(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@multicast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x2e, 0x1c, 0x66, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010100}, @address_reply={0x12, 0x0, 0x0, 0x2}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000020000000000000000080822"], &(0x7f00000002c0)='GPL\x00'}, 0x94)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000740)='./file0\x00', 0x24002, 0x92)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000980), r3)
sendmsg$NL80211_CMD_LEAVE_MESH(r7, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x28, r8, 0x2, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x1}}}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x40040}, 0x10008000)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_DELTABLE={0x50, 0x2, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}], {0x14}}, 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x8044)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r3, &(0x7f0000000700)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000880)={0x88, 0x3, 0x1, 0x401, 0x0, 0x0, {0x7, 0x0, 0x7}, [@CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x1}, @CTA_TUPLE_MASTER={0x40, 0xe, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_LABELS_MASK={0x8, 0x17, [0x8]}, @CTA_LABELS={0x1c, 0x16, 0x1, 0x0, [0x8, 0x80, 0x61d1, 0x4cd0, 0x8, 0xffff]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x4}]}, 0x88}, 0x1, 0x0, 0x0, 0x10}, 0x40010)
sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=@polexpire={0xcc, 0x1b, 0x1, 0x0, 0x0, {{{@in=@local, @in=@empty, 0x0, 0x0, 0x0, 0x40}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}}, [@mark={0xc}]}, 0xcc}}, 0x4000000)

430.369476ms ago: executing program 1 (id=1700):
socket$packet(0x11, 0xa, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'gretap0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
socket$kcm(0x2, 0xa, 0x73)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000006c0)=ANY=[@ANYRESDEC=r0, @ANYRES8=r1, @ANYBLOB="0454a6bdaafdeccdc4569cc536133cf5ee7e3be0ea7f01d43ae35ec1492eb73eda42060b80e6287b5a097f0453beaa21221eb99bad227160a99891d2527ccdd54b2a6777da92f0b64f83a27bc691ced1feb017e3af854191533bbce947628050cadbb93dde01eb8373379fb6f7e7d75c6f503092d0ff9cdcb64191b41cbbcf37079a6cab45c92ad8461b5ff9476effcc063aa89ef13876442fdd2588a93ebee3ab8145ceeb7f0ba99dd17c712abb4c", @ANYRESHEX=r4], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xfffff}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x8}, 0x10}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000900000000000000000000000000000013000000"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1e000000e69effff000014000200000001020000", @ANYRES32=r6, @ANYBLOB="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", @ANYRES32=r3, @ANYRES32, @ANYBLOB="0300000001000000040000000b00"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdff071c16110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
openat$ppp(0xffffffffffffff9c, 0x0, 0xc0802, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x3)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r8, 0x40047438, &(0x7f0000000180)=""/246)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2673004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

385.161089ms ago: executing program 5 (id=1701):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x10}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200008, &(0x7f0000000380)={[{@nolazytime}, {@auto_da_alloc}, {@sysvgroups}, {@norecovery}, {@jqfmt_vfsv0}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@user_xattr}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='t'])
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2, <r5=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8}, 0x50)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8}, @initr0, @exit, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000040)={r7, r6}, 0xc)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000001180)={@local, @multicast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "0010a6", 0x0, 0x4, 0x0, @empty, @mcast2}}}}, 0x0)
ftruncate(r1, 0x2007ffc)
sendfile(r1, r1, 0x0, 0x800000009)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r9 = open(&(0x7f0000000340)='./file1\x00', 0x4000, 0x0)
preadv2(r9, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x100000000000000d, 0x0, 0x0, 0x0)

177.150586ms ago: executing program 1 (id=1702):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r3, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}}, 0x0)
read$nci(r0, &(0x7f0000000200)=""/100, 0x64)
write$nci(r0, &(0x7f0000000280)=@NCI_OP_CORE_RESET_RSP, 0x6)
read$nci(r0, &(0x7f00000002c0)=""/100, 0x64)
write$nci(r0, &(0x7f0000000900)=@NCI_OP_CORE_INIT_RSP={0x0, 0x0, 0x2, 0x1, 0x0, {{0xfd, 0xfffffffd, 0xb1, "4bdf03a471f5f569f3f8bd77df465999c34b2494c8f043a5343e7f231cf38b50b8032b018c7d80f65685037415f6005643309a13522402525e678a9229fc10f75ff0bf0a65d16f6498cc9b553cf77959f04091a31b16500bbc0bce234285ec883a11c0e44b9790c2e6af137eb25a6b2802c3e173c184550b7167a49996394c9cac19082cdb3d57bb3d51a5b0717c5627cfc54ad39f97cc12eb7c38acf28adb4a4ad505ae39eb9ef7f7d991295000000000"}}}, 0xc5)
read$nci(r0, 0x0, 0x0)
write$nci(r0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0xa000200)
semget$private(0x0, 0x4000, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x2, 0x40, 0x1800}], 0x1, 0x0)
unshare(0x20060400)
sendmsg$NFC_CMD_START_POLL(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fa347ae3", @ANYRES16=r3, @ANYBLOB="010023010000340200000600000008000100", @ANYBLOB="08000300"], 0x24}}, 0x0)
read$nci(r0, &(0x7f0000000500)=""/100, 0x64)
write$nci(r0, &(0x7f0000000a00)=ANY=[@ANYBLOB], 0x5)
write$nci(r0, &(0x7f0000000640)=@NCI_OP_CORE_SET_CONFIG_RSP, 0x5)
read$nci(r0, &(0x7f0000000840)=""/100, 0x64)

105.661122ms ago: executing program 2 (id=1703):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x6, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, 0x0)

35.615048ms ago: executing program 4 (id=1704):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x4000, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3}, 0x18)
r4 = syz_io_uring_setup(0x3e, &(0x7f0000000640)={0x0, 0xaddb, 0x10100, 0x1, 0x92}, &(0x7f00000001c0)=<r5=>0x0, &(0x7f00000003c0)=<r6=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000400)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
syz_io_uring_submit(r5, r6, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r7, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1}, 0x0, 0x80002101})
io_uring_enter(r4, 0xd81, 0x0, 0x0, 0x0, 0x0)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCMIWAIT(r9, 0x545c, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r8)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond0\x00', <r10=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x3da, 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000080)={<r11=>r0, 0xa453, 0x0, 0x80004})
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000880)=ANY=[@ANYBLOB="2c020000", @ANYRES16, @ANYBLOB="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", @ANYRES32], 0x22c}}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r11, &(0x7f0000000500)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="780000190000000091", @ANYRES16, @ANYBLOB="000128bd7000fedbdf250100000024000300b08073e8d44e91e3da922c22438244bb885c69e269c8e9d835b114293a4ddc6e24000300a0cb879a47f5bc646c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5420811d2fb000500010000001400020077673205000000210000000000000000"], 0x78}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
r12 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
openat$cgroup_devices(r12, &(0x7f0000000300)='devices.deny\x00', 0x2, 0x0)
sendto$packet(r0, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r10, 0x1, 0x0, 0x6, @multicast}, 0x14)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x100202, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x33, &(0x7f0000000000)=ANY=[@ANYBLOB="e90c610faca20180c20000000800450000250000e0"], 0x0)
r13 = socket(0x200000000000011, 0x2, 0x1)
bind$packet(r13, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)

0s ago: executing program 2 (id=1705):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'sit0\x00', &(0x7f0000001000)={'syztnl2\x00', 0x0, 0x0, 0xa000, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x64, 0x0, 0x0, 0x4, 0x0, @empty, @rand_addr=0x3}}}})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f00000012c0)=ANY=[@ANYBLOB="18000000010000800000000000cbcd290000009500000001000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syslog(0x2, &(0x7f0000000200)=""/4096, 0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socketpair(0xf, 0x3, 0x2, &(0x7f00000001c0))
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r6, 0x8915, &(0x7f0000000040)={'netpci0\x00', {0x2, 0x0, @remote}})
write(r6, &(0x7f0000004200)='t', 0x1)
sendfile(r6, r5, 0x0, 0x3ffff)
sendfile(r6, r5, 0x0, 0x7ffff000)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r7}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))

kernel console output (not intermixed with test programs):

yz.5.720: attempt to access beyond end of device
[  102.615389][ T7055] loop5: rw=0, sector=513, nr_sectors = 8 limit=128
[  102.628759][ T7055] syz.5.720: attempt to access beyond end of device
[  102.628759][ T7055] loop5: rw=0, sector=513, nr_sectors = 8 limit=128
[  102.642797][ T7055] syz.5.720: attempt to access beyond end of device
[  102.642797][ T7055] loop5: rw=0, sector=513, nr_sectors = 8 limit=128
[  102.656281][ T7055] syz.5.720: attempt to access beyond end of device
[  102.656281][ T7055] loop5: rw=0, sector=513, nr_sectors = 8 limit=128
[  102.669757][ T7055] syz.5.720: attempt to access beyond end of device
[  102.669757][ T7055] loop5: rw=0, sector=513, nr_sectors = 8 limit=128
[  102.683075][ T7055] syz.5.720: attempt to access beyond end of device
[  102.683075][ T7055] loop5: rw=0, sector=513, nr_sectors = 8 limit=128
[  102.696547][ T7055] syz.5.720: attempt to access beyond end of device
[  102.696547][ T7055] loop5: rw=0, sector=513, nr_sectors = 8 limit=128
[  102.823505][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.892152][ T7090] loop5: detected capacity change from 0 to 128
[  102.907129][ T7090] FAT-fs (loop5): Directory bread(block 32) failed
[  102.914233][ T7090] FAT-fs (loop5): Directory bread(block 33) failed
[  102.920977][ T7090] FAT-fs (loop5): Directory bread(block 34) failed
[  102.927685][ T7090] FAT-fs (loop5): Directory bread(block 35) failed
[  102.934396][ T7090] FAT-fs (loop5): Directory bread(block 36) failed
[  102.941476][ T7090] FAT-fs (loop5): Directory bread(block 37) failed
[  102.948259][ T7090] FAT-fs (loop5): Directory bread(block 38) failed
[  102.955022][ T7090] FAT-fs (loop5): Directory bread(block 39) failed
[  102.962054][ T7090] FAT-fs (loop5): Directory bread(block 40) failed
[  102.968817][ T7090] FAT-fs (loop5): Directory bread(block 41) failed
[  102.991920][ T7090] FAT-fs (loop5): Filesystem has been set read-only
[  102.998919][ T7090] FAT-fs (loop5): error, fat_free_clusters: deleting FAT entry beyond EOF
[  103.008395][ T7090] FAT-fs (loop5): error, corrupted directory (invalid entries)
[  103.181689][ T7102] loop1: detected capacity change from 0 to 128
[  103.183531][ T7100] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  103.197786][ T7102] FAT-fs (loop1): Directory bread(block 32) failed
[  103.209618][ T7102] FAT-fs (loop1): Directory bread(block 33) failed
[  103.216153][ T7102] FAT-fs (loop1): Directory bread(block 34) failed
[  103.247260][ T7102] FAT-fs (loop1): Directory bread(block 35) failed
[  103.254162][ T7102] FAT-fs (loop1): Directory bread(block 36) failed
[  103.260884][ T7102] FAT-fs (loop1): Directory bread(block 37) failed
[  103.267622][ T7102] FAT-fs (loop1): Directory bread(block 38) failed
[  103.284030][ T7102] FAT-fs (loop1): Directory bread(block 39) failed
[  103.290764][ T7102] FAT-fs (loop1): Directory bread(block 40) failed
[  103.297290][ T7102] FAT-fs (loop1): Directory bread(block 41) failed
[  103.336254][ T7109] loop2: detected capacity change from 0 to 256
[  103.336870][ T7102] FAT-fs (loop1): Filesystem has been set read-only
[  103.350846][ T7102] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF
[  103.367955][ T7102] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  103.515712][ T7116] loop5: detected capacity change from 0 to 128
[  103.610835][ T7122] netlink: 'syz.0.743': attribute type 1 has an invalid length.
[  103.618634][ T7122] netlink: 224 bytes leftover after parsing attributes in process `syz.0.743'.
[  103.618815][ T7119] loop1: detected capacity change from 0 to 1024
[  103.649934][ T7119] EXT4-fs: Ignoring removed orlov option
[  103.761839][ T7130] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  103.840211][ T7119] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.875554][ T7139] netlink: 8 bytes leftover after parsing attributes in process `syz.4.749'.
[  103.977563][ T7144] loop2: detected capacity change from 0 to 512
[  104.026829][ T7144] EXT4-fs (loop2): too many log groups per flexible block group
[  104.034592][ T7144] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  104.057265][ T7146] FAULT_INJECTION: forcing a failure.
[  104.057265][ T7146] name failslab, interval 1, probability 0, space 0, times 0
[  104.059500][ T7144] EXT4-fs (loop2): mount failed
[  104.069991][ T7146] CPU: 0 UID: 0 PID: 7146 Comm: +}[@ Not tainted 6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(voluntary) 
[  104.070023][ T7146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  104.070049][ T7146] Call Trace:
[  104.070057][ T7146]  <TASK>
[  104.070066][ T7146]  __dump_stack+0x1d/0x30
[  104.070089][ T7146]  dump_stack_lvl+0xe8/0x140
[  104.070169][ T7146]  dump_stack+0x15/0x1b
[  104.070187][ T7146]  should_fail_ex+0x265/0x280
[  104.070223][ T7146]  should_failslab+0x8c/0xb0
[  104.070344][ T7146]  kmem_cache_alloc_node_noprof+0x57/0x320
[  104.070376][ T7146]  ? dup_task_struct+0x70/0x6a0
[  104.070406][ T7146]  dup_task_struct+0x70/0x6a0
[  104.070431][ T7146]  ? _parse_integer+0x27/0x40
[  104.070472][ T7146]  copy_process+0x399/0x2000
[  104.070502][ T7146]  ? bcmp+0x5e/0x90
[  104.070529][ T7146]  ? __htab_map_lookup_elem+0x148/0x150
[  104.070564][ T7146]  kernel_clone+0x16c/0x5c0
[  104.070597][ T7146]  __x64_sys_clone+0xe6/0x120
[  104.070635][ T7146]  x64_sys_call+0x119c/0x2ff0
[  104.070674][ T7146]  do_syscall_64+0xd2/0x200
[  104.070700][ T7146]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  104.070725][ T7146]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  104.070750][ T7146]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.070835][ T7146] RIP: 0033:0x7f02aecaebe9
[  104.070852][ T7146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.070878][ T7146] RSP: 002b:00007f02ad716fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  104.070898][ T7146] RAX: ffffffffffffffda RBX: 00007f02aeed5fa0 RCX: 00007f02aecaebe9
[  104.070912][ T7146] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000200000
[  104.070925][ T7146] RBP: 00007f02ad717090 R08: 0000000000000000 R09: 0000000000000000
[  104.070999][ T7146] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  104.071013][ T7146] R13: 00007f02aeed6038 R14: 00007f02aeed5fa0 R15: 00007ffc12b5b248
[  104.071077][ T7146]  </TASK>
[  104.409853][ T7153] netlink: 420 bytes leftover after parsing attributes in process `syz.2.750'.
[  104.623519][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.633806][ T7163] bond1: entered promiscuous mode
[  104.638853][ T7163] bond1: entered allmulticast mode
[  104.644744][ T7163] 8021q: adding VLAN 0 to HW filter on device bond1
[  104.661304][ T7163] bond1 (unregistering): Released all slaves
[  104.755983][ T7174] loop2: detected capacity change from 0 to 1024
[  104.775223][ T7172] lo speed is unknown, defaulting to 1000
[  104.791462][ T7174] EXT4-fs: Ignoring removed nobh option
[  104.797084][ T7174] EXT4-fs: inline encryption not supported
[  104.811307][ T7177] FAULT_INJECTION: forcing a failure.
[  104.811307][ T7177] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.824554][ T7177] CPU: 1 UID: 0 PID: 7177 Comm: syz.5.759 Not tainted 6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(voluntary) 
[  104.824583][ T7177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  104.824597][ T7177] Call Trace:
[  104.824604][ T7177]  <TASK>
[  104.824612][ T7177]  __dump_stack+0x1d/0x30
[  104.824633][ T7177]  dump_stack_lvl+0xe8/0x140
[  104.824703][ T7177]  dump_stack+0x15/0x1b
[  104.824722][ T7177]  should_fail_ex+0x265/0x280
[  104.824758][ T7177]  should_fail+0xb/0x20
[  104.824861][ T7177]  should_fail_usercopy+0x1a/0x20
[  104.824881][ T7177]  _copy_from_user+0x1c/0xb0
[  104.824904][ T7177]  ___sys_sendmsg+0xc1/0x1d0
[  104.824969][ T7177]  __x64_sys_sendmsg+0xd4/0x160
[  104.825102][ T7177]  x64_sys_call+0x191e/0x2ff0
[  104.825122][ T7177]  do_syscall_64+0xd2/0x200
[  104.825164][ T7177]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  104.825243][ T7177]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  104.825308][ T7177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.825329][ T7177] RIP: 0033:0x7f1fd62eebe9
[  104.825343][ T7177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.825360][ T7177] RSP: 002b:00007f1fd4d2e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  104.825445][ T7177] RAX: ffffffffffffffda RBX: 00007f1fd6516090 RCX: 00007f1fd62eebe9
[  104.825460][ T7177] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000005
[  104.825475][ T7177] RBP: 00007f1fd4d2e090 R08: 0000000000000000 R09: 0000000000000000
[  104.825489][ T7177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.825501][ T7177] R13: 00007f1fd6516128 R14: 00007f1fd6516090 R15: 00007ffc7ab6a618
[  104.825576][ T7177]  </TASK>
[  104.864882][ T7172] lo speed is unknown, defaulting to 1000
[  104.926361][ T7174] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.133184][ T7174] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.760: Allocating blocks 497-513 which overlap fs metadata
[  105.147372][ T7174] EXT4-fs (loop2): pa ffff8881071c2e00: logic 256, phys. 385, len 8
[  105.155407][ T7174] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  105.195095][ T7188] loop5: detected capacity change from 0 to 128
[  105.235703][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.369113][ T7205] loop2: detected capacity change from 0 to 128
[  105.444577][ T7210] loop5: detected capacity change from 0 to 1024
[  105.473815][ T7210] EXT4-fs: Ignoring removed orlov option
[  105.484541][ T7212] lo speed is unknown, defaulting to 1000
[  105.497818][ T7212] lo speed is unknown, defaulting to 1000
[  105.526514][ T7210] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.666605][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.705607][ T7234] loop5: detected capacity change from 0 to 1024
[  105.731834][ T7234] EXT4-fs: Ignoring removed nobh option
[  105.737467][ T7234] EXT4-fs: inline encryption not supported
[  105.749559][ T7235] netlink: 16 bytes leftover after parsing attributes in process `syz.4.775'.
[  105.775235][ T7234] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.060278][ T7251] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  106.132540][ T7258] loop2: detected capacity change from 0 to 512
[  106.149776][ T7251] Falling back ldisc for ttyS3.
[  106.183120][ T7258] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  106.242775][ T7258] EXT4-fs (loop2): 1 truncate cleaned up
[  106.256022][ T7258] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.293409][ T7258] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  106.346541][ T7283] netlink: 'syz.1.787': attribute type 13 has an invalid length.
[  106.440455][ T7287] Falling back ldisc for ttyS3.
[  106.588837][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.673691][ T7307] loop1: detected capacity change from 0 to 128
[  106.693205][ T7309] netlink: 68 bytes leftover after parsing attributes in process `syz.2.792'.
[  106.765237][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.890032][   T29] kauditd_printk_skb: 365 callbacks suppressed
[  106.890048][   T29] audit: type=1326 audit(1754647328.763:2598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7317 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  106.919631][   T29] audit: type=1326 audit(1754647328.763:2599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7317 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  106.977247][ T7323] siw: device registration error -23
[  107.008827][   T29] audit: type=1326 audit(1754647328.843:2600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7313 comm="syz.4.796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  107.032300][   T29] audit: type=1326 audit(1754647328.843:2601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7313 comm="syz.4.796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  107.055599][   T29] audit: type=1326 audit(1754647328.843:2602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7313 comm="syz.4.796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  107.078950][   T29] audit: type=1326 audit(1754647328.843:2603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7313 comm="syz.4.796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  107.417363][   T29] audit: type=1326 audit(1754647329.303:2604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7341 comm="syz.4.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  107.524194][   T29] audit: type=1326 audit(1754647329.303:2605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7341 comm="syz.4.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  107.547676][   T29] audit: type=1326 audit(1754647329.303:2606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7341 comm="syz.4.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  107.571245][   T29] audit: type=1326 audit(1754647329.303:2607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7341 comm="syz.4.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  108.104571][ T7332] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  108.175761][ T7366] loop5: detected capacity change from 0 to 256
[  108.186268][ T7366] binfmt_misc: register: failed to install interpreter file ./file0
[  108.502250][ T7376] batadv_slave_0: entered promiscuous mode
[  108.510512][ T7376] netlink: 4 bytes leftover after parsing attributes in process `syz.1.816'.
[  108.531241][ T7376] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  108.544711][ T7376] batadv_slave_0 (unregistering): left promiscuous mode
[  108.557587][ T7376] batman_adv: batadv0: Removing interface: batadv_slave_0
[  108.988471][ T7393] loop2: detected capacity change from 0 to 512
[  109.017152][ T7393] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  109.069535][ T7393] EXT4-fs (loop2): 1 truncate cleaned up
[  109.075940][ T7393] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.226744][ T7401] Falling back ldisc for ttyS3.
[  109.373902][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.463220][ T7415] loop5: detected capacity change from 0 to 128
[  109.554245][ T7415] bio_check_eod: 20848 callbacks suppressed
[  109.554262][ T7415] syz.5.832: attempt to access beyond end of device
[  109.554262][ T7415] loop5: rw=2049, sector=153, nr_sectors = 8 limit=128
[  109.574620][ T7415] syz.5.832: attempt to access beyond end of device
[  109.574620][ T7415] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  109.607067][ T7415] syz.5.832: attempt to access beyond end of device
[  109.607067][ T7415] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  109.640335][ T7415] syz.5.832: attempt to access beyond end of device
[  109.640335][ T7415] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  109.677997][ T7415] syz.5.832: attempt to access beyond end of device
[  109.677997][ T7415] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  109.691711][ T7415] syz.5.832: attempt to access beyond end of device
[  109.691711][ T7415] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  109.705681][ T7415] syz.5.832: attempt to access beyond end of device
[  109.705681][ T7415] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[  109.719497][ T7415] syz.5.832: attempt to access beyond end of device
[  109.719497][ T7415] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[  109.749583][ T7415] syz.5.832: attempt to access beyond end of device
[  109.749583][ T7415] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[  109.776572][ T7415] syz.5.832: attempt to access beyond end of device
[  109.776572][ T7415] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[  109.861499][ T7438] netlink: 8 bytes leftover after parsing attributes in process `syz.1.838'.
[  109.890293][ T7440] netlink: 8 bytes leftover after parsing attributes in process `syz.5.839'.
[  109.917606][ T7441] loop1: detected capacity change from 0 to 1024
[  109.941942][ T7441] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.954470][ T7443] loop5: detected capacity change from 0 to 1024
[  109.981599][ T7443] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.982433][ T7441] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.838: Allocating blocks 449-513 which overlap fs metadata
[  110.018734][ T7437] EXT4-fs (loop1): pa ffff8881071c2d90: logic 48, phys. 177, len 21
[  110.026844][ T7437] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  110.051595][ T7440] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.839: Allocating blocks 449-513 which overlap fs metadata
[  110.066156][ T7448] siw: device registration error -23
[  110.090747][ T7439] EXT4-fs (loop5): pa ffff8881072502a0: logic 48, phys. 177, len 21
[  110.098788][ T7439] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  110.131407][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.302492][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.368474][ T7466] loop5: detected capacity change from 0 to 1024
[  110.376051][ T7465] loop2: detected capacity change from 0 to 512
[  110.383458][ T7466] EXT4-fs: Ignoring removed nobh option
[  110.389051][ T7466] EXT4-fs: inline encryption not supported
[  110.407775][ T7466] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.446666][ T7465] EXT4-fs (loop2): too many log groups per flexible block group
[  110.454545][ T7465] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  110.479111][ T7465] EXT4-fs (loop2): mount failed
[  110.551442][ T7476] netlink: 420 bytes leftover after parsing attributes in process `syz.2.847'.
[  110.569232][ T7478] netlink: 420 bytes leftover after parsing attributes in process `syz.0.849'.
[  110.627108][ T7466] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.845: Allocating blocks 497-513 which overlap fs metadata
[  110.641319][ T7466] EXT4-fs (loop5): pa ffff8881071c2e70: logic 256, phys. 385, len 8
[  110.641384][ T7466] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  110.733163][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.758954][ T7487] netlink: 8 bytes leftover after parsing attributes in process `syz.0.853'.
[  110.836859][ T7497] loop2: detected capacity change from 0 to 512
[  110.846619][ T7500] siw: device registration error -23
[  110.871287][ T7497] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  110.900979][ T7503] netlink: 8 bytes leftover after parsing attributes in process `syz.4.857'.
[  110.910711][ T7497] EXT4-fs (loop2): 1 truncate cleaned up
[  110.916757][ T7497] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.966651][ T7507] loop1: detected capacity change from 0 to 128
[  111.109901][ T7509] Falling back ldisc for ttyS3.
[  111.361823][ T7517] netlink: 12 bytes leftover after parsing attributes in process `syz.5.861'.
[  111.370760][ T7517] netlink: 12 bytes leftover after parsing attributes in process `syz.5.861'.
[  111.444166][ T7519] syz.4.862 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  111.536152][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.561767][ T7526] siw: device registration error -23
[  111.735514][ T7538] __nla_validate_parse: 2 callbacks suppressed
[  111.735528][ T7538] netlink: 8 bytes leftover after parsing attributes in process `syz.5.871'.
[  111.898315][ T7549] loop1: detected capacity change from 0 to 512
[  111.948841][ T7549] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  111.990308][   T29] kauditd_printk_skb: 332 callbacks suppressed
[  111.990332][   T29] audit: type=1400 audit(1754647333.883:2940): avc:  denied  { mount } for  pid=7550 comm="syz.0.874" name="/" dev="ramfs" ino=25457 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  112.019789][   T29] audit: type=1400 audit(1754647333.883:2941): avc:  denied  { create } for  pid=7553 comm="syz.5.876" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  112.032716][ T7549] EXT4-fs (loop1): 1 truncate cleaned up
[  112.063660][ T7549] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.085294][   T29] audit: type=1400 audit(1754647333.973:2942): avc:  denied  { ioctl } for  pid=7553 comm="syz.5.876" path="socket:[25468]" dev="sockfs" ino=25468 ioctlcmd=0x4943 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  112.144104][   T29] audit: type=1400 audit(1754647334.003:2943): avc:  denied  { create } for  pid=7553 comm="syz.5.876" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  112.189372][ T7549] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  112.261328][ T7568] FAULT_INJECTION: forcing a failure.
[  112.261328][ T7568] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  112.274633][ T7568] CPU: 0 UID: 0 PID: 7568 Comm: wÞ£ÿ Not tainted 6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(voluntary) 
[  112.274664][ T7568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.274678][ T7568] Call Trace:
[  112.274686][ T7568]  <TASK>
[  112.274704][ T7568]  __dump_stack+0x1d/0x30
[  112.274728][ T7568]  dump_stack_lvl+0xe8/0x140
[  112.274752][ T7568]  dump_stack+0x15/0x1b
[  112.274840][ T7568]  should_fail_ex+0x265/0x280
[  112.274877][ T7568]  should_fail_alloc_page+0xf2/0x100
[  112.274955][ T7568]  __alloc_frozen_pages_noprof+0xff/0x360
[  112.275000][ T7568]  alloc_pages_mpol+0xb3/0x250
[  112.275038][ T7568]  vma_alloc_folio_noprof+0x1aa/0x300
[  112.275073][ T7568]  handle_mm_fault+0xec2/0x2c20
[  112.275110][ T7568]  do_user_addr_fault+0x636/0x1090
[  112.275151][ T7568]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  112.275228][ T7568]  exc_page_fault+0x62/0xa0
[  112.275253][ T7568]  asm_exc_page_fault+0x26/0x30
[  112.275275][ T7568] RIP: 0033:0x7f454f7ca5ab
[  112.275304][ T7568] Code: 00 00 00 48 8d 3d 3d 3a 19 00 48 89 c1 31 c0 e8 4b 3c ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d 71 3a 19 00 48 89 34 24 48 8b 14 24 48 8b
[  112.275322][ T7568] RSP: 002b:00007f454e365fb0 EFLAGS: 00010202
[  112.275338][ T7568] RAX: 0000000000000000 RBX: 00007f454fb25fa0 RCX: 0000000000000000
[  112.275359][ T7568] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 00002000000000c0
[  112.275435][ T7568] RBP: 00007f454e367090 R08: 0000000000000000 R09: 0000000000000000
[  112.275505][ T7568] R10: 00002000000000c0 R11: 0000000000000000 R12: 0000000000000001
[  112.275519][ T7568] R13: 00007f454fb26038 R14: 00007f454fb25fa0 R15: 00007ffd902d7978
[  112.275543][ T7568]  </TASK>
[  112.275566][ T7568] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  112.468869][   T29] audit: type=1400 audit(1754647334.083:2944): avc:  denied  { bind } for  pid=7561 comm="syz.5.877" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  112.488163][   T29] audit: type=1400 audit(1754647334.113:2945): avc:  denied  { write } for  pid=7560 comm="syz.0.879" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  112.510936][   T29] audit: type=1400 audit(1754647334.113:2946): avc:  denied  { open } for  pid=7560 comm="syz.0.879" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  112.526541][ T7571] lo speed is unknown, defaulting to 1000
[  112.534263][   T29] audit: type=1400 audit(1754647334.113:2947): avc:  denied  { ioctl } for  pid=7560 comm="syz.0.879" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x7438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  112.564577][   T29] audit: type=1400 audit(1754647334.213:2948): avc:  denied  { search } for  pid=3031 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  112.586006][   T29] audit: type=1400 audit(1754647334.213:2949): avc:  denied  { search } for  pid=3031 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  112.622421][ T7571] lo speed is unknown, defaulting to 1000
[  112.759761][ T7573] Falling back ldisc for ttyS3.
[  112.785483][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.815813][ T7602] loop2: detected capacity change from 0 to 1024
[  112.842631][ T7603] loop1: detected capacity change from 0 to 1024
[  112.859635][ T7602] EXT4-fs: Ignoring removed orlov option
[  112.899802][ T7603] EXT4-fs: Ignoring removed orlov option
[  112.935036][ T7603] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.957669][ T7602] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.165632][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.261528][ T7641] FAULT_INJECTION: forcing a failure.
[  113.261528][ T7641] name failslab, interval 1, probability 0, space 0, times 0
[  113.274286][ T7641] CPU: 0 UID: 0 PID: 7641 Comm: syz.2.891 Not tainted 6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(voluntary) 
[  113.274330][ T7641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  113.274342][ T7641] Call Trace:
[  113.274350][ T7641]  <TASK>
[  113.274359][ T7641]  __dump_stack+0x1d/0x30
[  113.274382][ T7641]  dump_stack_lvl+0xe8/0x140
[  113.274403][ T7641]  dump_stack+0x15/0x1b
[  113.274418][ T7641]  should_fail_ex+0x265/0x280
[  113.274529][ T7641]  ? xdp_umem_create+0x3c/0x5c0
[  113.274558][ T7641]  should_failslab+0x8c/0xb0
[  113.274584][ T7641]  __kmalloc_cache_noprof+0x4c/0x320
[  113.274692][ T7641]  xdp_umem_create+0x3c/0x5c0
[  113.274718][ T7641]  ? should_fail_ex+0xdb/0x280
[  113.274750][ T7641]  xsk_setsockopt+0x5ea/0x640
[  113.274849][ T7641]  ? __pfx_xsk_setsockopt+0x10/0x10
[  113.274878][ T7641]  __sys_setsockopt+0x181/0x200
[  113.274910][ T7641]  __x64_sys_setsockopt+0x64/0x80
[  113.275010][ T7641]  x64_sys_call+0x20ec/0x2ff0
[  113.275033][ T7641]  do_syscall_64+0xd2/0x200
[  113.275059][ T7641]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  113.275090][ T7641]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  113.275114][ T7641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.275134][ T7641] RIP: 0033:0x7f454f8febe9
[  113.275149][ T7641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.275202][ T7641] RSP: 002b:00007f454e367038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  113.275223][ T7641] RAX: ffffffffffffffda RBX: 00007f454fb25fa0 RCX: 00007f454f8febe9
[  113.275238][ T7641] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000004
[  113.275340][ T7641] RBP: 00007f454e367090 R08: 0000000000000020 R09: 0000000000000000
[  113.275416][ T7641] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001
[  113.275428][ T7641] R13: 00007f454fb26038 R14: 00007f454fb25fa0 R15: 00007ffd902d7978
[  113.275450][ T7641]  </TASK>
[  113.544346][ T7645] hub 6-0:1.0: USB hub found
[  113.549124][ T7645] hub 6-0:1.0: 8 ports detected
[  113.565154][ T7589] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  113.654682][ T7652] loop2: detected capacity change from 0 to 512
[  113.778431][ T7652] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  113.887108][ T7657] binfmt_misc: register: failed to install interpreter file ./file0
[  113.896369][ T7652] EXT4-fs (loop2): 1 truncate cleaned up
[  113.914466][ T7652] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.929939][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.952163][ T7652] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  114.113964][ T7652] Falling back ldisc for ttyS3.
[  114.261841][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.414945][ T7696] loop1: detected capacity change from 0 to 512
[  114.449443][ T7696] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  114.488089][ T7696] EXT4-fs (loop1): 1 truncate cleaned up
[  114.510119][ T7696] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.588284][ T7696] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  114.706510][ T7696] Falling back ldisc for ttyS3.
[  114.754438][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.962619][ T7736] loop5: detected capacity change from 0 to 128
[  115.116465][ T7736] bio_check_eod: 10973 callbacks suppressed
[  115.116481][ T7736] syz.5.910: attempt to access beyond end of device
[  115.116481][ T7736] loop5: rw=2049, sector=153, nr_sectors = 8 limit=128
[  115.166677][ T7744] netlink: 8 bytes leftover after parsing attributes in process `syz.1.913'.
[  115.224736][ T7747] loop1: detected capacity change from 0 to 1024
[  115.231298][ T7736] syz.5.910: attempt to access beyond end of device
[  115.231298][ T7736] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  115.258583][ T7751] loop2: detected capacity change from 0 to 512
[  115.271751][ T7747] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.320236][ T7751] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.915: Failed to acquire dquot type 1
[  115.331697][ T7736] syz.5.910: attempt to access beyond end of device
[  115.331697][ T7736] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  115.390021][ T7736] syz.5.910: attempt to access beyond end of device
[  115.390021][ T7736] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  115.404066][ T7751] EXT4-fs (loop2): 1 truncate cleaned up
[  115.438441][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.459647][ T7736] syz.5.910: attempt to access beyond end of device
[  115.459647][ T7736] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  115.481884][ T7736] syz.5.910: attempt to access beyond end of device
[  115.481884][ T7736] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  115.499847][ T7751] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.509578][ T7736] syz.5.910: attempt to access beyond end of device
[  115.509578][ T7736] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[  115.569772][ T7736] syz.5.910: attempt to access beyond end of device
[  115.569772][ T7736] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[  115.589058][ T7757] loop1: detected capacity change from 0 to 1024
[  115.595728][ T7751] ext4 filesystem being mounted at /181/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.606890][ T7757] EXT4-fs: Ignoring removed nobh option
[  115.612624][ T7757] EXT4-fs: inline encryption not supported
[  115.626855][ T7736] syz.5.910: attempt to access beyond end of device
[  115.626855][ T7736] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[  115.643577][ T7751] netlink: 32 bytes leftover after parsing attributes in process `syz.2.915'.
[  115.662270][ T7736] syz.5.910: attempt to access beyond end of device
[  115.662270][ T7736] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[  115.690699][ T7757] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.723897][ T7763] delete_channel: no stack
[  115.728759][ T7763] delete_channel: no stack
[  115.730068][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.902995][ T7774] netlink: 'syz.2.921': attribute type 1 has an invalid length.
[  115.941765][ T7757] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.916: Allocating blocks 497-513 which overlap fs metadata
[  115.970911][ T7757] EXT4-fs (loop1): pa ffff8881071c2ee0: logic 256, phys. 385, len 8
[  115.978483][ T7780] loop2: detected capacity change from 0 to 512
[  115.979062][ T7757] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  116.044912][ T7780] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.080160][ T7780] ext4 filesystem being mounted at /184/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.111841][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.126197][ T7780] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.924: corrupted inode contents
[  116.174423][ T7788] loop1: detected capacity change from 0 to 512
[  116.182610][ T7780] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.924: mark_inode_dirty error
[  116.217728][ T7793] loop5: detected capacity change from 0 to 128
[  116.231796][ T7788] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002]
[  116.240013][ T7780] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.924: corrupted inode contents
[  116.254940][ T7788] System zones: 0-7
[  116.259314][ T7788] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.280734][ T7788] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #14: comm +}[@: attempt to clear invalid blocks 1886221359 len 1
[  116.308338][ T7790] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.924: corrupted inode contents
[  116.342356][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.351801][ T7790] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.924: mark_inode_dirty error
[  116.364156][ T7790] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.924: corrupted inode contents
[  116.389475][ T7790] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.924: mark_inode_dirty error
[  116.415764][ T7797] netlink: 8 bytes leftover after parsing attributes in process `syz.1.928'.
[  116.435540][ T7790] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.924: corrupted inode contents
[  116.455891][ T7790] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.924: mark_inode_dirty error
[  116.472792][ T7799] loop1: detected capacity change from 0 to 1024
[  116.525489][ T7799] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.543168][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.600812][ T7811] loop5: detected capacity change from 0 to 512
[  116.632111][ T7816] loop2: detected capacity change from 0 to 256
[  116.638613][ T7811] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  116.666871][ T7811] EXT4-fs (loop5): 1 truncate cleaned up
[  116.674434][ T7797] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.928: Allocating blocks 449-513 which overlap fs metadata
[  116.689725][ T7816] binfmt_misc: register: failed to install interpreter file ./file0
[  116.700440][ T7811] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.739889][ T7796] EXT4-fs (loop1): pa ffff8881071c2f50: logic 48, phys. 177, len 21
[  116.747966][ T7796] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  116.750698][ T7811] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  116.821821][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.840776][ T7811] Falling back ldisc for ttyS3.
[  116.851657][ T7829] loop1: detected capacity change from 0 to 128
[  116.946582][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.423102][   T29] kauditd_printk_skb: 228 callbacks suppressed
[  117.423118][   T29] audit: type=1400 audit(1754647339.313:3176): avc:  denied  { write } for  pid=7838 comm="syz.4.939" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  117.659462][   T29] audit: type=1400 audit(1754647339.543:3177): avc:  denied  { append } for  pid=7851 comm="syz.0.943" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  117.727650][ T7856] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  117.735194][   T29] audit: type=1400 audit(1754647339.613:3178): avc:  denied  { setattr } for  pid=7855 comm="syz.0.944" name="NETLINK" dev="sockfs" ino=25979 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  117.817144][ T7862] loop2: detected capacity change from 0 to 128
[  117.843337][   T29] audit: type=1326 audit(1754647339.733:3179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.2.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  117.889737][   T29] audit: type=1326 audit(1754647339.733:3180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.2.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  117.913022][   T29] audit: type=1326 audit(1754647339.733:3181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.2.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  117.936407][   T29] audit: type=1326 audit(1754647339.733:3182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.2.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  117.959858][   T29] audit: type=1326 audit(1754647339.733:3183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.2.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  117.983389][   T29] audit: type=1326 audit(1754647339.733:3184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.2.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f454f900b07 code=0x7ffc0000
[  118.006829][   T29] audit: type=1326 audit(1754647339.733:3185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7860 comm="syz.2.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f454f900a7c code=0x7ffc0000
[  118.340748][ T7843] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  118.386693][ T7884] netlink: 'syz.0.954': attribute type 4 has an invalid length.
[  118.436566][ T7884] netlink: 'syz.0.954': attribute type 4 has an invalid length.
[  118.457366][ T7884] 9pnet_fd: Insufficient options for proto=fd
[  118.662772][ T7894] lo speed is unknown, defaulting to 1000
[  118.668983][ T7894] lo speed is unknown, defaulting to 1000
[  118.738604][ T7906] siw: device registration error -23
[  118.877092][ T7920] loop5: detected capacity change from 0 to 1024
[  118.885804][ T7920] EXT4-fs: Ignoring removed orlov option
[  118.908482][ T7920] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.134540][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.436507][ T7948] loop5: detected capacity change from 0 to 128
[  119.510179][ T7952] loop2: detected capacity change from 0 to 512
[  119.527088][ T7952] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  119.550469][ T7952] EXT4-fs (loop2): 1 truncate cleaned up
[  119.585430][ T7952] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.644159][ T7952] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  119.789659][ T7962] Falling back ldisc for ttyS3.
[  119.835179][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.119538][ T7948] bio_check_eod: 36819 callbacks suppressed
[  120.119555][ T7948] syz.5.973: attempt to access beyond end of device
[  120.119555][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.140635][ T7948] syz.5.973: attempt to access beyond end of device
[  120.140635][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.154945][ T7948] syz.5.973: attempt to access beyond end of device
[  120.154945][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.171700][ T7948] syz.5.973: attempt to access beyond end of device
[  120.171700][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.187392][ T7948] syz.5.973: attempt to access beyond end of device
[  120.187392][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.208132][ T7948] syz.5.973: attempt to access beyond end of device
[  120.208132][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.234978][ T7948] syz.5.973: attempt to access beyond end of device
[  120.234978][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.248579][ T7948] syz.5.973: attempt to access beyond end of device
[  120.248579][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.270590][ T7948] syz.5.973: attempt to access beyond end of device
[  120.270590][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.303827][ T7948] syz.5.973: attempt to access beyond end of device
[  120.303827][ T7948] loop5: rw=0, sector=153, nr_sectors = 8 limit=128
[  120.423031][ T7983] loop2: detected capacity change from 0 to 128
[  120.535255][ T7990] loop5: detected capacity change from 0 to 1024
[  120.640556][ T8002] loop2: detected capacity change from 0 to 128
[  120.707305][ T7990] EXT4-fs: Ignoring removed orlov option
[  120.820353][ T8014] netlink: 356 bytes leftover after parsing attributes in process `syz.0.996'.
[  121.353591][ T8047] loop1: detected capacity change from 0 to 1024
[  121.472930][ T8056] loop1: detected capacity change from 0 to 1024
[  121.504460][ T8056] EXT4-fs: Ignoring removed orlov option
[  121.536390][ T8054] lo speed is unknown, defaulting to 1000
[  121.543313][ T8054] lo speed is unknown, defaulting to 1000
[  121.606306][ T8066] loop1: detected capacity change from 0 to 128
[  121.620657][ T8066] msdos: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  121.755724][ T8130] binfmt_misc: register: failed to install interpreter file ./file0
[  121.808194][ T8135] loop2: detected capacity change from 0 to 512
[  121.841587][ T8135] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  121.876225][ T8135] EXT4-fs (loop2): 1 truncate cleaned up
[  122.616306][ T8152] loop1: detected capacity change from 0 to 128
[  122.630074][ T8149] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.658902][ T8149] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  122.681001][ T8155] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1023'.
[  122.693856][   T29] kauditd_printk_skb: 200 callbacks suppressed
[  122.693872][   T29] audit: type=1400 audit(1754647344.583:3386): avc:  denied  { setopt } for  pid=8146 comm="syz.0.1019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  122.729549][   T29] audit: type=1400 audit(1754647344.583:3387): avc:  denied  { bind } for  pid=8146 comm="syz.0.1019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  122.748992][   T29] audit: type=1400 audit(1754647344.583:3388): avc:  denied  { name_bind } for  pid=8146 comm="syz.0.1019" src=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[  122.770383][   T29] audit: type=1400 audit(1754647344.583:3389): avc:  denied  { node_bind } for  pid=8146 comm="syz.0.1019" saddr=47.112.116.109 src=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  122.788417][ T8162] vlan2: entered allmulticast mode
[  122.813876][ T8152] lo speed is unknown, defaulting to 1000
[  122.820710][ T8152] lo speed is unknown, defaulting to 1000
[  122.842554][ T8164] loop2: detected capacity change from 0 to 1024
[  122.860411][ T8164] EXT4-fs: Ignoring removed orlov option
[  123.111561][ T8176] loop1: detected capacity change from 0 to 128
[  123.207566][ T8181] lo speed is unknown, defaulting to 1000
[  123.215028][ T8181] lo speed is unknown, defaulting to 1000
[  123.221826][ T8183] loop2: detected capacity change from 0 to 256
[  123.238021][ T8183] binfmt_misc: register: failed to install interpreter file ./file0
[  123.335451][ T8187] loop1: detected capacity change from 0 to 512
[  123.347058][ T8187] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  123.364024][ T8187] EXT4-fs (loop1): 1 truncate cleaned up
[  123.485774][ T8201] loop5: detected capacity change from 0 to 512
[  123.489497][   T29] audit: type=1326 audit(1754647345.373:3390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.0.1037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  123.515657][   T29] audit: type=1326 audit(1754647345.373:3391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.0.1037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  123.539097][   T29] audit: type=1326 audit(1754647345.373:3392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.0.1037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  123.551111][ T8201] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  123.562614][   T29] audit: type=1326 audit(1754647345.373:3393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8198 comm="syz.0.1037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  123.573154][ T8201] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  123.605876][ T8201] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1038: Failed to acquire dquot type 1
[  123.620567][ T8201] EXT4-fs (loop5): 1 truncate cleaned up
[  123.626668][ T8201] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.701156][ T8201] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1038'.
[  123.897852][ T8223] loop1: detected capacity change from 0 to 1024
[  123.905504][ T8223] EXT4-fs: Ignoring removed orlov option
[  123.974270][ T8228] loop5: detected capacity change from 0 to 1024
[  123.986499][ T8228] EXT4-fs: Ignoring removed orlov option
[  124.245974][ T8192] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  124.598622][ T8257] loop1: detected capacity change from 0 to 256
[  124.632362][ T8257] binfmt_misc: register: failed to install interpreter file ./file0
[  124.706421][ T8262] loop5: detected capacity change from 0 to 512
[  124.741342][ T8262] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  124.780636][ T8262] EXT4-fs (loop5): 1 truncate cleaned up
[  124.821132][ T8262] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  124.999749][ T8268] Falling back ldisc for ttyS3.
[  125.119490][ T8273] siw: device registration error -23
[  126.018540][ T8345] loop1: detected capacity change from 0 to 128
[  126.029811][ T8289] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  126.042367][ T8345] ext4 filesystem being mounted at /220/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  126.066001][ T8345] geneve2: entered promiscuous mode
[  126.071337][ T8345] geneve2: entered allmulticast mode
[  126.845294][ T8364] loop5: detected capacity change from 0 to 1024
[  126.867230][ T8364] EXT4-fs: Ignoring removed orlov option
[  126.891336][ T8364] EXT4-fs mount: 21 callbacks suppressed
[  126.891355][ T8364] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.158468][ T8348] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  127.365780][ T8377] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1077'.
[  127.436608][ T3302] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  127.469620][ T8378] Falling back ldisc for ttyS3.
[  127.505195][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.533109][ T8384] loop1: detected capacity change from 0 to 1024
[  127.579526][ T8384] EXT4-fs: Ignoring removed nobh option
[  127.585023][ T8391] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1079'.
[  127.585131][ T8384] EXT4-fs: inline encryption not supported
[  127.681854][ T8384] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.008967][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.035832][ T8436] loop2: detected capacity change from 0 to 1024
[  128.051590][ T8436] EXT4-fs: Ignoring removed orlov option
[  128.062701][ T8436] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.269337][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.296549][ T8444] loop2: detected capacity change from 0 to 1024
[  128.305372][ T8444] EXT4-fs: Ignoring removed orlov option
[  128.339571][ T8444] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.466091][ T8450] binfmt_misc: register: failed to install interpreter file ./file0
[  128.490567][ T8452] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1089'.
[  128.574336][ T8456] loop1: detected capacity change from 0 to 1024
[  128.591117][ T8456] EXT4-fs: Ignoring removed orlov option
[  128.605777][ T8459] loop5: detected capacity change from 0 to 1024
[  128.619615][ T8459] EXT4-fs: Ignoring removed orlov option
[  128.624604][   T29] kauditd_printk_skb: 103 callbacks suppressed
[  128.624619][   T29] audit: type=1326 audit(1754647350.513:3497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  128.656183][   T29] audit: type=1326 audit(1754647350.543:3498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  128.679759][   T29] audit: type=1326 audit(1754647350.543:3499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4ddc20d550 code=0x7ffc0000
[  128.707510][   T29] audit: type=1326 audit(1754647350.593:3500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  128.732024][   T29] audit: type=1326 audit(1754647350.593:3501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  128.732773][ T8456] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.755580][   T29] audit: type=1326 audit(1754647350.593:3502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  128.755609][   T29] audit: type=1326 audit(1754647350.593:3503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  128.814509][   T29] audit: type=1326 audit(1754647350.593:3504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  128.837993][   T29] audit: type=1326 audit(1754647350.593:3505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  128.861544][   T29] audit: type=1326 audit(1754647350.593:3506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8460 comm="syz.0.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  128.863249][ T8459] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.120283][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.229113][ T8471] siw: device registration error -23
[  129.296585][ T8476] loop2: detected capacity change from 0 to 1024
[  129.319943][ T8476] EXT4-fs: Ignoring removed nobh option
[  129.325563][ T8476] EXT4-fs: inline encryption not supported
[  129.371504][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.409321][ T8476] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.421322][ T8487] netlink: 356 bytes leftover after parsing attributes in process `syz.4.1098'.
[  129.485893][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.518317][ T8476] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.1095: Allocating blocks 497-513 which overlap fs metadata
[  129.568063][ T8476] EXT4-fs (loop2): pa ffff888107250380: logic 256, phys. 385, len 8
[  129.576292][ T8476] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  129.580674][ T8495] loop5: detected capacity change from 0 to 128
[  129.686031][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.744986][ T8495] bio_check_eod: 196 callbacks suppressed
[  129.745004][ T8495] syz.5.1104: attempt to access beyond end of device
[  129.745004][ T8495] loop5: rw=2049, sector=153, nr_sectors = 8 limit=128
[  129.768340][ T8504] loop2: detected capacity change from 0 to 1024
[  129.785472][ T8495] syz.5.1104: attempt to access beyond end of device
[  129.785472][ T8495] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  129.822324][ T8495] syz.5.1104: attempt to access beyond end of device
[  129.822324][ T8495] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  129.852731][ T8504] EXT4-fs: Ignoring removed orlov option
[  129.878036][ T8495] syz.5.1104: attempt to access beyond end of device
[  129.878036][ T8495] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  129.902196][ T8504] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.906660][ T8495] syz.5.1104: attempt to access beyond end of device
[  129.906660][ T8495] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  129.929610][ T8495] syz.5.1104: attempt to access beyond end of device
[  129.929610][ T8495] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  129.981322][ T8509] vlan2: entered allmulticast mode
[  129.989258][ T8495] syz.5.1104: attempt to access beyond end of device
[  129.989258][ T8495] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[  130.003023][ T8495] syz.5.1104: attempt to access beyond end of device
[  130.003023][ T8495] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[  130.017077][ T8495] syz.5.1104: attempt to access beyond end of device
[  130.017077][ T8495] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[  130.031082][ T8495] syz.5.1104: attempt to access beyond end of device
[  130.031082][ T8495] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[  130.122740][ T8513] loop5: detected capacity change from 0 to 512
[  130.135028][ T8513] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  130.171582][ T8513] EXT4-fs (loop5): 1 truncate cleaned up
[  130.184044][ T8513] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.201870][ T8513] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  130.340397][ T8521] Falling back ldisc for ttyS3.
[  130.439579][ T8532] Falling back ldisc for ttyS3.
[  130.451899][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.468442][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.515943][ T8541] loop1: detected capacity change from 0 to 128
[  130.530354][ T8538] loop5: detected capacity change from 0 to 1024
[  130.561262][ T8538] EXT4-fs: Ignoring removed nobh option
[  130.566919][ T8538] EXT4-fs: inline encryption not supported
[  130.658229][ T8538] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.902192][ T8556] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1119: Allocating blocks 497-513 which overlap fs metadata
[  130.920740][ T8556] EXT4-fs (loop5): pa ffff8881072503f0: logic 256, phys. 385, len 8
[  130.928800][ T8556] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  131.421044][ T8568] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1130'.
[  131.464498][ T8570] siw: device registration error -23
[  131.505097][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.624774][ T8585] loop5: detected capacity change from 0 to 512
[  131.638511][ T8585] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  131.667806][ T8585] EXT4-fs (loop5): 1 truncate cleaned up
[  131.694717][ T8591] loop1: detected capacity change from 0 to 1024
[  131.710585][ T8585] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.727318][ T8591] EXT4-fs: Ignoring removed nomblk_io_submit option
[  131.751646][ T8585] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  131.771073][ T8591] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.825555][ T8600] netlink: 356 bytes leftover after parsing attributes in process `syz.4.1139'.
[  131.919670][ T8603] Falling back ldisc for ttyS3.
[  132.011155][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.066248][ T8613] loop5: detected capacity change from 0 to 1024
[  132.087659][ T8613] EXT4-fs: Ignoring removed nobh option
[  132.093303][ T8613] EXT4-fs: inline encryption not supported
[  132.132147][ T8613] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.318105][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.506165][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.164200][ T8658] loop1: detected capacity change from 0 to 1024
[  133.180201][ T8658] EXT4-fs: Ignoring removed nobh option
[  133.185795][ T8658] EXT4-fs: inline encryption not supported
[  133.202188][ T8658] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.326091][ T8658] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.1156: Allocating blocks 497-513 which overlap fs metadata
[  133.350255][ T8658] EXT4-fs (loop1): pa ffff8881072503f0: logic 256, phys. 385, len 8
[  133.358304][ T8658] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  133.462260][ T8668] loop2: detected capacity change from 0 to 1024
[  133.482579][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.493547][ T8668] EXT4-fs: Ignoring removed nomblk_io_submit option
[  133.565701][ T8668] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.631661][ T8680] loop1: detected capacity change from 0 to 128
[  133.654900][   T29] kauditd_printk_skb: 137 callbacks suppressed
[  133.654916][   T29] audit: type=1326 audit(1754647355.543:3644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8679 comm="syz.1.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7eb0ebe9 code=0x7ffc0000
[  133.700121][   T29] audit: type=1326 audit(1754647355.543:3645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8679 comm="syz.1.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7fac7eb0ebe9 code=0x7ffc0000
[  133.700151][   T29] audit: type=1326 audit(1754647355.543:3646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8679 comm="syz.1.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7eb0ebe9 code=0x7ffc0000
[  133.746943][   T29] audit: type=1326 audit(1754647355.543:3647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8679 comm="syz.1.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fac7eb0ebe9 code=0x7ffc0000
[  133.747088][   T29] audit: type=1326 audit(1754647355.543:3648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8679 comm="syz.1.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7eb0ebe9 code=0x7ffc0000
[  133.793889][   T29] audit: type=1326 audit(1754647355.543:3649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8679 comm="syz.1.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fac7eb10b07 code=0x7ffc0000
[  133.817457][   T29] audit: type=1326 audit(1754647355.543:3650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8679 comm="syz.1.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fac7eb10a7c code=0x7ffc0000
[  133.840963][   T29] audit: type=1326 audit(1754647355.583:3651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8681 comm="syz.4.1158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  133.864430][   T29] audit: type=1326 audit(1754647355.583:3652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8681 comm="syz.4.1158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  133.888176][   T29] audit: type=1326 audit(1754647355.583:3653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8681 comm="syz.4.1158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7f02aecaebe9 code=0x7ffc0000
[  134.102698][ T8662] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  134.290929][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.453221][ T8712] loop2: detected capacity change from 0 to 512
[  134.475192][ T8712] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  134.513292][ T8712] EXT4-fs (loop2): 1 truncate cleaned up
[  134.519723][ T8712] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.896799][ T8720] loop1: detected capacity change from 0 to 512
[  134.921787][ T8720] EXT4-fs (loop1): too many log groups per flexible block group
[  134.929558][ T8720] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  134.937940][ T8720] EXT4-fs (loop1): mount failed
[  135.007921][ T8724] netlink: 412 bytes leftover after parsing attributes in process `syz.1.1170'.
[  135.235797][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.256191][ T8739] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1175'.
[  135.265336][ T8739] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1175'.
[  135.291129][ T8739] siw: device registration error -23
[  135.336810][ T8756] loop2: detected capacity change from 0 to 512
[  135.349288][ T8756] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  135.371211][ T8756] EXT4-fs (loop2): 1 truncate cleaned up
[  135.380331][ T8756] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.422356][ T8756] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  135.702785][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.748360][ T8773] loop2: detected capacity change from 0 to 1024
[  135.766784][ T8773] EXT4-fs: Ignoring removed orlov option
[  135.796798][ T8773] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.992610][ T8733] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  136.100705][ T8788] loop1: detected capacity change from 0 to 1024
[  136.112271][ T8788] EXT4-fs: Ignoring removed orlov option
[  136.154675][ T8788] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.253832][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.305067][ T8803] loop5: detected capacity change from 0 to 512
[  136.320863][ T8803] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  136.358038][ T8805] loop2: detected capacity change from 0 to 1024
[  136.383328][ T8803] EXT4-fs (loop5): 1 truncate cleaned up
[  136.401136][ T8803] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.414326][ T8805] EXT4-fs: Ignoring removed nobh option
[  136.419907][ T8805] EXT4-fs: inline encryption not supported
[  136.461942][ T8803] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  136.479240][ T8805] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.767810][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.789517][ T8817] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.1193: Allocating blocks 497-513 which overlap fs metadata
[  136.825939][ T8817] EXT4-fs (loop2): pa ffff888107250380: logic 256, phys. 385, len 8
[  136.834006][ T8817] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  136.858288][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.916925][ T8825] loop1: detected capacity change from 0 to 1024
[  136.931778][ T8825] EXT4-fs: Ignoring removed nobh option
[  136.937471][ T8825] EXT4-fs: inline encryption not supported
[  136.961628][ T8825] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.056112][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.353211][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.584442][ T8854] loop1: detected capacity change from 0 to 512
[  137.608308][ T8854] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  137.695404][ T8854] EXT4-fs (loop1): 1 truncate cleaned up
[  137.715572][ T8861] loop2: detected capacity change from 0 to 1024
[  137.719908][ T8854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.731001][ T8861] EXT4-fs: Ignoring removed nobh option
[  137.740166][ T8861] EXT4-fs: inline encryption not supported
[  137.741608][ T8826] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  137.763705][ T8861] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.795380][ T8854] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  137.881237][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.917357][ T8865] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1208'.
[  137.981305][ T8870] Falling back ldisc for ttyS3.
[  137.992668][ T8873] loop2: detected capacity change from 0 to 1024
[  138.015963][ T8873] EXT4-fs: Ignoring removed nobh option
[  138.021661][ T8873] EXT4-fs: inline encryption not supported
[  138.071442][ T8873] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.221784][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.302171][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.333800][ T8889] loop5: detected capacity change from 0 to 1024
[  138.378437][ T8889] EXT4-fs: Ignoring removed nobh option
[  138.384187][ T8889] EXT4-fs: inline encryption not supported
[  138.431834][ T8889] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.476026][ T8905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  138.499604][ T8905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  138.646780][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.694098][ T8912] loop5: detected capacity change from 0 to 128
[  138.795053][ T8912] msdos: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  138.809658][ T8914] Falling back ldisc for ttyS3.
[  139.273068][ T8933] siw: device registration error -23
[  139.366147][ T8937] loop2: detected capacity change from 0 to 1024
[  139.400168][ T8937] EXT4-fs: Ignoring removed orlov option
[  139.434183][ T8937] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.863147][ T8953] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.885194][ T8955] loop1: detected capacity change from 0 to 1024
[  139.887001][ T8953] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.910731][ T8955] EXT4-fs: Ignoring removed orlov option
[  139.972008][ T8955] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.019029][ T8953] vlan2: entered allmulticast mode
[  140.038626][ T8961] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1239'.
[  140.078600][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.118108][ T8964] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  140.260231][ T8964] Falling back ldisc for ttyS3.
[  140.277440][ T8975] siw: device registration error -23
[  140.297629][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.358695][ T8983] loop2: detected capacity change from 0 to 512
[  140.391759][ T8983] __quota_error: 198 callbacks suppressed
[  140.391776][ T8983] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  140.407942][ T8983] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  140.417524][ T8983] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1244: Failed to acquire dquot type 1
[  140.509067][ T8983] EXT4-fs (loop2): 1 truncate cleaned up
[  140.516172][ T8983] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.596062][ T8983] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.675998][ T8983] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1244'.
[  140.753618][   T29] audit: type=1326 audit(1754647362.643:3852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8996 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  140.777967][   T29] audit: type=1326 audit(1754647362.663:3853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8996 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4ddc20d550 code=0x7ffc0000
[  140.807814][   T29] audit: type=1326 audit(1754647362.693:3854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8996 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  140.831332][   T29] audit: type=1326 audit(1754647362.693:3855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8996 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  140.854664][   T29] audit: type=1326 audit(1754647362.693:3856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8996 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  140.878110][   T29] audit: type=1326 audit(1754647362.693:3857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8996 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  140.901821][   T29] audit: type=1326 audit(1754647362.693:3858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8996 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  140.925631][   T29] audit: type=1326 audit(1754647362.693:3859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8996 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  140.952680][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.983330][ T9005] loop2: detected capacity change from 0 to 512
[  141.094170][ T9005] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1251: Failed to acquire dquot type 1
[  141.140650][ T9005] EXT4-fs (loop2): 1 truncate cleaned up
[  141.146658][ T9005] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.186920][ T9005] ext4 filesystem being mounted at /242/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.233930][ T9005] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1251'.
[  141.315590][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.366079][ T9021] loop2: detected capacity change from 0 to 1024
[  141.427387][ T9021] EXT4-fs: Ignoring removed nomblk_io_submit option
[  141.495550][ T9021] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.509694][ T9036] loop1: detected capacity change from 0 to 128
[  141.619716][ T9042] loop5: detected capacity change from 0 to 512
[  141.671674][ T9042] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1264: Failed to acquire dquot type 1
[  141.700686][ T9036] bio_check_eod: 18609 callbacks suppressed
[  141.700701][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.700701][ T9036] loop1: rw=2049, sector=153, nr_sectors = 8 limit=128
[  141.700839][ T9042] EXT4-fs (loop5): 1 truncate cleaned up
[  141.719453][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.719453][ T9036] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[  141.722893][ T9042] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.725973][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.725973][ T9036] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[  141.742745][ T9042] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.798806][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.798806][ T9036] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[  141.817027][ T9042] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1264'.
[  141.854176][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.854176][ T9036] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[  141.869767][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.869767][ T9036] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[  141.884092][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.884092][ T9036] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[  141.899106][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.899106][ T9036] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[  141.914489][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.914489][ T9036] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[  141.930116][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.940629][ T9036] syz.1.1262: attempt to access beyond end of device
[  141.940629][ T9036] loop1: rw=2049, sector=297, nr_sectors = 8 limit=128
[  142.025897][ T9061] loop5: detected capacity change from 0 to 1024
[  142.039793][ T9061] EXT4-fs: Ignoring removed orlov option
[  142.258713][ T9071] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1271'.
[  142.358721][ T9078] loop5: detected capacity change from 0 to 1024
[  142.372786][ T9078] EXT4-fs: Ignoring removed orlov option
[  142.788043][ T9099] loop1: detected capacity change from 0 to 1024
[  142.798796][ T9099] EXT4-fs: Ignoring removed nobh option
[  142.804642][ T9099] EXT4-fs: inline encryption not supported
[  142.870744][ T9101] loop2: detected capacity change from 0 to 512
[  142.914397][ T9101] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1282: Failed to acquire dquot type 1
[  142.933863][ T9101] EXT4-fs (loop2): 1 truncate cleaned up
[  142.942322][ T9101] ext4 filesystem being mounted at /247/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.052820][ T9110] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1284'.
[  143.062601][ T9101] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1282'.
[  143.399535][ T9129] loop2: detected capacity change from 0 to 512
[  143.406785][ T9129] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  143.423716][ T9129] EXT4-fs (loop2): 1 truncate cleaned up
[  143.441889][ T9129] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  143.704097][ T9139] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1292'.
[  143.775730][ T9143] loop2: detected capacity change from 0 to 1024
[  143.786051][ T9147] loop5: detected capacity change from 0 to 1024
[  143.792159][ T9143] EXT4-fs: Ignoring removed nomblk_io_submit option
[  143.800812][ T9147] EXT4-fs: Ignoring removed orlov option
[  143.840869][ T9150] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1297'.
[  143.977891][ T9116] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  144.173261][ T9169] siw: device registration error -23
[  144.417126][ T9181] loop5: detected capacity change from 0 to 1024
[  144.426186][ T9181] EXT4-fs: Ignoring removed nobh option
[  144.431878][ T9181] EXT4-fs: inline encryption not supported
[  144.501555][ T9181] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1306: Allocating blocks 497-513 which overlap fs metadata
[  144.520798][ T9188] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1307'.
[  144.522881][ T9181] EXT4-fs (loop5): pa ffff8881071c2f50: logic 256, phys. 385, len 8
[  144.537940][ T9181] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  144.655654][ T9197] loop2: detected capacity change from 0 to 128
[  145.363131][ T9221] netlink: 364 bytes leftover after parsing attributes in process `syz.4.1316'.
[  145.610485][ T9223] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1319'.
[  145.637650][ T9223] loop2: detected capacity change from 0 to 512
[  145.672166][ T9223] EXT4-fs (loop2): 1 orphan inode deleted
[  145.695894][ T9223] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.697983][ T6771] __quota_error: 270 callbacks suppressed
[  145.697996][ T6771] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  145.722060][ T6771] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[  145.725596][   T29] audit: type=1400 audit(1754647367.613:4124): avc:  denied  { remount } for  pid=9222 comm="syz.2.1319" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  145.780444][ T9223] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  145.864792][ T9241] loop2: detected capacity change from 0 to 512
[  145.874971][ T9241] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  145.886383][ T9240] loop5: detected capacity change from 0 to 1024
[  145.896249][ T9240] EXT4-fs: Ignoring removed orlov option
[  145.962151][ T9241] EXT4-fs (loop2): 1 truncate cleaned up
[  145.996108][ T9241] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  146.119639][ T9253] Falling back ldisc for ttyS3.
[  146.268300][ T9262] loop2: detected capacity change from 0 to 512
[  146.285621][ T9262] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  146.330193][ T9262] EXT4-fs (loop2): 1 truncate cleaned up
[  146.364426][   T29] audit: type=1326 audit(1754647368.253:4125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9268 comm="syz.5.1331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fd62eebe9 code=0x7ffc0000
[  146.376586][ T9262] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  146.390108][   T29] audit: type=1326 audit(1754647368.253:4126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9268 comm="syz.5.1331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1fd62ed550 code=0x7ffc0000
[  146.455151][   T29] audit: type=1326 audit(1754647368.283:4127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9268 comm="syz.5.1331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fd62eebe9 code=0x7ffc0000
[  146.478711][   T29] audit: type=1326 audit(1754647368.283:4128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9268 comm="syz.5.1331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1fd62eebe9 code=0x7ffc0000
[  146.502306][   T29] audit: type=1326 audit(1754647368.283:4129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9268 comm="syz.5.1331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fd62eebe9 code=0x7ffc0000
[  146.525705][   T29] audit: type=1326 audit(1754647368.283:4130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9268 comm="syz.5.1331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fd62eebe9 code=0x7ffc0000
[  146.549292][   T29] audit: type=1326 audit(1754647368.283:4131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9268 comm="syz.5.1331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fd62eebe9 code=0x7ffc0000
[  146.572739][   T29] audit: type=1326 audit(1754647368.283:4132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9268 comm="syz.5.1331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fd62eebe9 code=0x7ffc0000
[  146.619516][ T9264] Falling back ldisc for ttyS3.
[  146.639601][ T9232] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  146.934349][ T9283] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1335'.
[  147.004621][ T9285] loop5: detected capacity change from 0 to 1024
[  147.027521][ T9285] EXT4-fs: Ignoring removed nomblk_io_submit option
[  147.332029][ T9306] loop1: detected capacity change from 0 to 1024
[  147.341846][ T9306] EXT4-fs: Ignoring removed orlov option
[  147.375559][ T9311] siw: device registration error -23
[  147.417061][ T9313] loop2: detected capacity change from 0 to 512
[  147.434269][ T9313] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1346: Failed to acquire dquot type 1
[  147.448078][ T9313] EXT4-fs (loop2): 1 truncate cleaned up
[  147.455314][ T9313] ext4 filesystem being mounted at /257/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.473153][ T9313] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1346'.
[  147.589324][ T9322] loop2: detected capacity change from 0 to 512
[  147.596883][ T9322] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  147.612700][ T9322] EXT4-fs (loop2): 1 truncate cleaned up
[  147.626967][ T9322] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  147.722190][ T9326] loop1: detected capacity change from 0 to 1024
[  147.730222][ T9326] EXT4-fs: Ignoring removed orlov option
[  148.048632][ T9347] loop2: detected capacity change from 0 to 1024
[  148.056965][ T9347] EXT4-fs: Ignoring removed nomblk_io_submit option
[  148.105359][ T9359] loop1: detected capacity change from 0 to 1024
[  148.112557][ T9359] EXT4-fs: Ignoring removed orlov option
[  148.245771][ T9368] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  148.301329][ T9372] loop1: detected capacity change from 0 to 1024
[  148.309813][ T9372] EXT4-fs: Ignoring removed nomblk_io_submit option
[  148.439689][ T9383] loop5: detected capacity change from 0 to 1024
[  148.452461][ T9383] EXT4-fs: Ignoring removed nobh option
[  148.458174][ T9383] EXT4-fs: inline encryption not supported
[  148.512264][ T9383] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1366: Allocating blocks 497-513 which overlap fs metadata
[  148.527427][ T9383] EXT4-fs (loop5): pa ffff8881071c2ee0: logic 256, phys. 385, len 8
[  148.535506][ T9383] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  148.634259][ T9402] loop5: detected capacity change from 0 to 1024
[  148.641517][ T9402] EXT4-fs: Ignoring removed nobh option
[  148.647144][ T9402] EXT4-fs: inline encryption not supported
[  148.854976][ T9405] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1374: Allocating blocks 497-513 which overlap fs metadata
[  148.871416][ T9405] EXT4-fs (loop5): pa ffff888107250460: logic 256, phys. 385, len 8
[  148.879476][ T9405] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  148.913630][ T9352] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  149.157030][ T9417] loop1: detected capacity change from 0 to 1024
[  149.175200][ T9417] EXT4-fs: Ignoring removed orlov option
[  149.205085][ T9419] siw: device registration error -23
[  149.318000][ T9429] loop1: detected capacity change from 0 to 512
[  149.343846][ T9431] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  149.353487][ T9429] EXT4-fs (loop1): too many log groups per flexible block group
[  149.361260][ T9429] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  149.368606][ T9431] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.384129][ T9429] EXT4-fs (loop1): mount failed
[  149.397690][ T9431] vlan2: entered allmulticast mode
[  149.606332][ T9448] loop1: detected capacity change from 0 to 256
[  149.641696][ T9448] binfmt_misc: register: failed to install interpreter file ./file0
[  149.645460][ T9450] loop5: detected capacity change from 0 to 1024
[  149.663073][ T9450] EXT4-fs: Ignoring removed orlov option
[  149.912419][ T9466] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1397'.
[  149.958052][ T9470] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1399'.
[  149.984547][ T9472] loop2: detected capacity change from 0 to 128
[  150.066474][ T9472] bio_check_eod: 8668 callbacks suppressed
[  150.066560][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.066560][ T9472] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[  150.086428][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.086428][ T9472] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[  150.102488][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.102488][ T9472] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[  150.118832][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.118832][ T9472] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[  150.138193][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.138193][ T9472] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[  150.153908][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.153908][ T9472] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[  150.168158][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.168158][ T9472] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[  150.183795][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.183795][ T9472] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[  150.199118][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.199118][ T9472] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[  150.214881][ T9472] syz.2.1400: attempt to access beyond end of device
[  150.214881][ T9472] loop2: rw=2049, sector=297, nr_sectors = 8 limit=128
[  150.329452][ T9483] loop2: detected capacity change from 0 to 128
[  150.800683][ T9496] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1409'.
[  150.928931][ T9500] vlan2: entered allmulticast mode
[  150.958198][ T9504] loop1: detected capacity change from 0 to 128
[  151.079031][ T9506] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1415'.
[  151.134614][ T9509] binfmt_misc: register: failed to install interpreter file ./file0
[  151.143916][ T9511] loop5: detected capacity change from 0 to 1024
[  151.164099][ T9511] EXT4-fs: Ignoring removed orlov option
[  151.430363][ T9523] loop2: detected capacity change from 0 to 512
[  151.460507][ T9523] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  151.493480][ T9523] EXT4-fs (loop2): 1 truncate cleaned up
[  151.521619][ T9523] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  151.720697][ T9523] Falling back ldisc for ttyS3.
[  152.104603][ T9549] siw: device registration error -23
[  152.156797][   T29] kauditd_printk_skb: 71 callbacks suppressed
[  152.156812][   T29] audit: type=1326 audit(1754647374.043:4202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.188388][ T9561] loop1: detected capacity change from 0 to 512
[  152.196135][ T9564] loop5: detected capacity change from 0 to 512
[  152.209102][ T9563] binfmt_misc: register: failed to install interpreter file ./file0
[  152.218407][ T9564] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  152.220648][   T29] audit: type=1326 audit(1754647374.043:4203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.251885][   T29] audit: type=1326 audit(1754647374.043:4204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.275404][   T29] audit: type=1326 audit(1754647374.053:4205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.298910][   T29] audit: type=1326 audit(1754647374.053:4206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.323050][   T29] audit: type=1326 audit(1754647374.053:4207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.346419][   T29] audit: type=1326 audit(1754647374.053:4208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.347313][ T9561] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  152.370261][   T29] audit: type=1326 audit(1754647374.053:4209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.403546][   T29] audit: type=1326 audit(1754647374.053:4210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.427080][   T29] audit: type=1326 audit(1754647374.053:4211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9555 comm="syz.2.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  152.455337][ T9564] EXT4-fs (loop5): 1 truncate cleaned up
[  152.478361][ T9561] EXT4-fs (loop1): 1 truncate cleaned up
[  152.492037][ T9564] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  152.539590][ T9561] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  152.669816][ T9564] Falling back ldisc for ttyS3.
[  152.739710][ T9579] Falling back ldisc for ttyS3.
[  153.118286][ T9607] siw: device registration error -23
[  153.152827][ T9614] loop2: detected capacity change from 0 to 1024
[  153.160319][ T9614] EXT4-fs: Ignoring removed nomblk_io_submit option
[  153.859772][ T9641] loop1: detected capacity change from 0 to 512
[  153.904452][ T9645] loop5: detected capacity change from 0 to 512
[  153.920311][ T9641] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1453: Failed to acquire dquot type 1
[  153.922150][ T9645] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1455: Failed to acquire dquot type 1
[  153.953904][ T9645] EXT4-fs (loop5): 1 truncate cleaned up
[  153.953929][ T9641] EXT4-fs (loop1): 1 truncate cleaned up
[  153.960117][ T9645] ext4 filesystem being mounted at /191/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.973148][ T9641] ext4 filesystem being mounted at /306/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.991407][ T9645] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1455'.
[  154.360962][ T9667] siw: device registration error -23
[  154.575577][ T9695] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  154.592216][ T9698] loop5: detected capacity change from 0 to 1024
[  154.611301][ T9698] EXT4-fs: Ignoring removed orlov option
[  154.710422][ T9707] Falling back ldisc for ttyS3.
[  154.755184][ T9714] vlan2: entered allmulticast mode
[  154.821052][ T9720] loop5: detected capacity change from 0 to 128
[  154.825474][ T9715] siw: device registration error -23
[  154.869570][ T9720] msdos: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  154.981778][ T9734] loop2: detected capacity change from 0 to 1024
[  154.988759][ T9734] EXT4-fs: Ignoring removed nomblk_io_submit option
[  155.718380][ T9726] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  155.837703][ T9754] loop1: detected capacity change from 0 to 1024
[  155.846631][ T9756] loop5: detected capacity change from 0 to 1024
[  155.848833][ T9759] vlan2: entered allmulticast mode
[  155.875819][ T9756] EXT4-fs: Ignoring removed orlov option
[  155.986888][ T9770] loop1: detected capacity change from 0 to 256
[  156.022684][ T9777] loop2: detected capacity change from 0 to 128
[  156.055089][ T9770] binfmt_misc: register: failed to install interpreter file ./file0
[  156.171185][ T9788] bio_check_eod: 16907 callbacks suppressed
[  156.171263][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.171263][ T9788] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[  156.236716][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.236716][ T9788] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[  156.291186][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.291186][ T9788] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[  156.329520][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.329520][ T9788] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[  156.385466][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.385466][ T9788] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[  156.399277][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.399277][ T9788] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[  156.413122][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.413122][ T9788] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[  156.435701][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.435701][ T9788] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[  156.456833][ T9796] siw: device registration error -23
[  156.477719][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.477719][ T9788] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[  156.491411][ T9788] syz.2.1492: attempt to access beyond end of device
[  156.491411][ T9788] loop2: rw=2049, sector=297, nr_sectors = 8 limit=128
[  156.568468][ T9800] vlan2: entered allmulticast mode
[  156.658185][ T9807] loop2: detected capacity change from 0 to 1024
[  156.668530][ T9807] EXT4-fs: Ignoring removed orlov option
[  156.920452][ T3307] EXT4-fs unmount: 72 callbacks suppressed
[  156.920469][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.975160][ T9820] loop2: detected capacity change from 0 to 512
[  157.001847][ T9820] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1510: Failed to acquire dquot type 1
[  157.014617][ T9820] EXT4-fs (loop2): 1 truncate cleaned up
[  157.054416][ T9820] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.077650][ T9829] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  157.081234][ T9820] ext4 filesystem being mounted at /287/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.115257][ T9820] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1510'.
[  157.201514][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.240031][ T9834] Falling back ldisc for ttyS3.
[  157.260253][ T9839] loop2: detected capacity change from 0 to 128
[  157.407574][ T9846] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1515'.
[  157.887683][ T9825] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  158.183149][ T9875] loop2: detected capacity change from 0 to 512
[  158.236278][ T9875] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  158.279192][ T9875] EXT4-fs (loop2): 1 truncate cleaned up
[  158.286102][ T9875] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.391103][ T9886] loop5: detected capacity change from 0 to 512
[  158.443202][ T9886] __quota_error: 34 callbacks suppressed
[  158.443270][ T9886] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  158.459504][ T9886] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  158.468908][ T9886] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1528: Failed to acquire dquot type 1
[  158.500915][ T9886] EXT4-fs (loop5): 1 truncate cleaned up
[  158.506936][ T9886] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.519710][ T9875] Falling back ldisc for ttyS3.
[  158.559485][ T9886] ext4 filesystem being mounted at /206/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.608489][ T9886] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1528'.
[  158.635528][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.703998][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.021939][ T9926] loop5: detected capacity change from 0 to 128
[  159.933506][ T9965] loop5: detected capacity change from 0 to 512
[  159.943870][ T9965] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  159.966969][ T9965] EXT4-fs (loop5): 1 truncate cleaned up
[  159.978359][ T9965] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.068091][ T9969] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1544'.
[  160.150620][ T9970] Falling back ldisc for ttyS3.
[  160.302327][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.438195][ T9992] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  160.560435][ T9992] Falling back ldisc for ttyS3.
[  160.679078][T10004] loop1: detected capacity change from 0 to 128
[  161.045602][T10012] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1556'.
[  161.150912][   T29] audit: type=1326 audit(1754647383.043:4240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10017 comm="syz.0.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  161.191172][T10004] bio_check_eod: 36612 callbacks suppressed
[  161.191190][T10004] syz.1.1553: attempt to access beyond end of device
[  161.191190][T10004] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  161.201365][   T29] audit: type=1326 audit(1754647383.063:4241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10017 comm="syz.0.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  161.211607][T10004] syz.1.1553: attempt to access beyond end of device
[  161.211607][T10004] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  161.233960][   T29] audit: type=1326 audit(1754647383.063:4242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10017 comm="syz.0.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  161.270816][   T29] audit: type=1326 audit(1754647383.063:4243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10017 comm="syz.0.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  161.290696][T10004] syz.1.1553: attempt to access beyond end of device
[  161.290696][T10004] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  161.294558][   T29] audit: type=1326 audit(1754647383.063:4244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10017 comm="syz.0.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  161.331047][   T29] audit: type=1326 audit(1754647383.063:4245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10017 comm="syz.0.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  161.332905][T10004] syz.1.1553: attempt to access beyond end of device
[  161.332905][T10004] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  161.354521][   T29] audit: type=1326 audit(1754647383.063:4246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10017 comm="syz.0.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  161.354550][   T29] audit: type=1326 audit(1754647383.063:4247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10017 comm="syz.0.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4ddc20ebe9 code=0x7ffc0000
[  161.355759][ T9987] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  161.422038][T10004] syz.1.1553: attempt to access beyond end of device
[  161.422038][T10004] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  161.464868][T10023] loop5: detected capacity change from 0 to 512
[  161.479815][T10004] syz.1.1553: attempt to access beyond end of device
[  161.479815][T10004] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  161.513524][T10023] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  161.574787][T10023] EXT4-fs (loop5): 1 truncate cleaned up
[  161.617361][T10023] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.666605][T10036] loop2: detected capacity change from 0 to 128
[  161.673750][T10036] msdos: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  161.711751][T10039] loop1: detected capacity change from 0 to 128
[  161.747842][T10039] msdos: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  161.779227][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.880981][T10046] siw: device registration error -23
[  162.662719][T10075] loop5: detected capacity change from 0 to 1024
[  162.693230][T10075] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.780918][T10082] loop2: detected capacity change from 0 to 512
[  162.806506][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.827920][T10084] loop1: detected capacity change from 0 to 1024
[  162.837912][T10082] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1577: Failed to acquire dquot type 1
[  162.862680][T10084] EXT4-fs: Ignoring removed orlov option
[  162.870748][T10082] EXT4-fs (loop2): 1 truncate cleaned up
[  162.879058][T10084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.925665][T10082] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.010002][T10082] ext4 filesystem being mounted at /301/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.031838][T10082] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1577'.
[  163.052658][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.098586][T10093] binfmt_misc: register: failed to install interpreter file ./file0
[  163.498397][T10113] loop5: detected capacity change from 0 to 1024
[  163.610575][T10113] EXT4-fs: Ignoring removed nomblk_io_submit option
[  163.635564][T10113] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.681141][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.711314][T10122] loop2: detected capacity change from 0 to 512
[  163.748326][T10122] __quota_error: 18 callbacks suppressed
[  163.748346][T10122] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  163.759743][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.764552][T10122] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  163.781254][T10124] loop1: detected capacity change from 0 to 128
[  163.782991][T10122] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1592: Failed to acquire dquot type 1
[  163.819164][T10122] EXT4-fs (loop2): 1 truncate cleaned up
[  163.860770][T10122] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.927465][T10122] ext4 filesystem being mounted at /305/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.964017][T10122] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1592'.
[  163.981801][T10124] syz.1.1591: attempt to access beyond end of device
[  163.981801][T10124] loop1: rw=2049, sector=153, nr_sectors = 8 limit=128
[  163.995705][T10124] syz.1.1591: attempt to access beyond end of device
[  163.995705][T10124] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[  164.009975][T10124] syz.1.1591: attempt to access beyond end of device
[  164.009975][T10124] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[  164.024210][T10124] syz.1.1591: attempt to access beyond end of device
[  164.024210][T10124] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[  164.096169][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.604759][T10154] loop2: detected capacity change from 0 to 512
[  164.614615][T10153] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  164.622826][T10154] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  164.644677][T10154] EXT4-fs (loop2): 1 truncate cleaned up
[  164.660607][T10154] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.747192][T10130] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  164.791922][T10161] loop1: detected capacity change from 0 to 128
[  164.800314][T10159] Falling back ldisc for ttyS3.
[  164.906812][T10167] vlan2: entered allmulticast mode
[  165.392148][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.679886][T10195] loop1: detected capacity change from 0 to 1024
[  165.690308][T10195] EXT4-fs: Ignoring removed orlov option
[  165.719206][   T29] audit: type=1326 audit(1754647387.603:4264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10198 comm="syz.2.1611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  165.762141][T10195] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.774572][   T29] audit: type=1326 audit(1754647387.603:4265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10198 comm="syz.2.1611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  165.798274][   T29] audit: type=1326 audit(1754647387.613:4266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10198 comm="syz.2.1611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  165.821959][   T29] audit: type=1326 audit(1754647387.613:4267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10198 comm="syz.2.1611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  165.845486][   T29] audit: type=1326 audit(1754647387.623:4268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10198 comm="syz.2.1611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  165.869040][   T29] audit: type=1326 audit(1754647387.623:4269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10198 comm="syz.2.1611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  165.892766][   T29] audit: type=1326 audit(1754647387.623:4270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10198 comm="syz.2.1611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  165.916266][   T29] audit: type=1326 audit(1754647387.623:4271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10198 comm="syz.2.1611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454f8febe9 code=0x7ffc0000
[  165.940793][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.962310][T10212] loop1: detected capacity change from 0 to 128
[  166.025432][T10181] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  166.108872][T10219] loop5: detected capacity change from 0 to 1024
[  166.146090][T10219] EXT4-fs: Ignoring removed nobh option
[  166.152194][T10219] EXT4-fs: inline encryption not supported
[  166.199452][T10212] bio_check_eod: 30966 callbacks suppressed
[  166.199469][T10212] syz.1.1613: attempt to access beyond end of device
[  166.199469][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.222170][T10212] syz.1.1613: attempt to access beyond end of device
[  166.222170][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.236691][T10212] syz.1.1613: attempt to access beyond end of device
[  166.236691][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.250158][T10212] syz.1.1613: attempt to access beyond end of device
[  166.250158][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.253639][T10219] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.294449][T10212] syz.1.1613: attempt to access beyond end of device
[  166.294449][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.310794][T10230] loop2: detected capacity change from 0 to 1024
[  166.313529][T10212] syz.1.1613: attempt to access beyond end of device
[  166.313529][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.330513][T10212] syz.1.1613: attempt to access beyond end of device
[  166.330513][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.341887][T10230] EXT4-fs: Ignoring removed orlov option
[  166.343783][T10212] syz.1.1613: attempt to access beyond end of device
[  166.343783][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.363023][T10212] syz.1.1613: attempt to access beyond end of device
[  166.363023][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.376470][T10212] syz.1.1613: attempt to access beyond end of device
[  166.376470][T10212] loop1: rw=0, sector=153, nr_sectors = 8 limit=128
[  166.377405][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.413194][T10230] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.510783][T10236] loop5: detected capacity change from 0 to 512
[  166.649635][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.661344][T10236] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  166.698083][T10236] EXT4-fs (loop5): 1 truncate cleaned up
[  166.720822][T10236] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.821878][T10236] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  166.883074][T10250] loop2: detected capacity change from 0 to 1024
[  166.922977][T10250] EXT4-fs: Ignoring removed orlov option
[  166.930857][T10253] siw: device registration error -23
[  166.961431][T10250] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.031946][T10236] Falling back ldisc for ttyS3.
[  167.067784][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.172357][T10261] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1624'.
[  167.210404][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.307002][T10277] loop5: detected capacity change from 0 to 1024
[  167.350238][T10277] EXT4-fs: Ignoring removed orlov option
[  167.387750][T10277] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.683010][T10300] loop2: detected capacity change from 0 to 1024
[  167.713918][T10300] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.790974][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.853498][T10309] loop1: detected capacity change from 0 to 1024
[  167.880365][T10309] EXT4-fs: Ignoring removed orlov option
[  167.935709][T10309] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.027399][T10320] siw: device registration error -23
[  168.061458][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.201553][T10338] siw: device registration error -23
[  168.362186][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.407650][T10348] loop5: detected capacity change from 0 to 1024
[  168.425887][T10348] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.496949][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.572142][T10354] loop5: detected capacity change from 0 to 128
[  168.604057][T10354] msdos: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  168.858051][T10361] loop1: detected capacity change from 0 to 512
[  168.879894][T10361] __quota_error: 67 callbacks suppressed
[  168.879909][T10361] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  168.896444][T10361] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  168.905992][T10361] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1650: Failed to acquire dquot type 1
[  169.088038][T10361] EXT4-fs (loop1): 1 truncate cleaned up
[  169.104243][T10361] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.119250][T10361] ext4 filesystem being mounted at /336/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  169.146738][T10361] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1650'.
[  169.173102][T10374] binfmt_misc: register: failed to install interpreter file ./file0
[  169.240964][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.304233][T10379] loop1: detected capacity change from 0 to 1024
[  169.337262][T10379] EXT4-fs: Ignoring removed nobh option
[  169.342953][T10379] EXT4-fs: inline encryption not supported
[  169.362295][T10379] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.722760][T10396] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.1657: Allocating blocks 497-513 which overlap fs metadata
[  169.737963][T10396] EXT4-fs (loop1): pa ffff8881071c2e70: logic 256, phys. 385, len 8
[  169.746091][T10396] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  170.055834][T10403] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1666'.
[  170.148855][T10405] binfmt_misc: register: failed to install interpreter file ./file0
[  170.276885][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.324741][T10408] loop1: detected capacity change from 0 to 1024
[  170.332674][T10408] EXT4-fs: Ignoring removed nomblk_io_submit option
[  170.361833][T10408] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.495807][T10420] loop2: detected capacity change from 0 to 512
[  170.528175][T10420] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  170.538623][T10420] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  170.548116][T10420] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1672: Failed to acquire dquot type 1
[  170.560600][T10420] EXT4-fs (loop2): 1 truncate cleaned up
[  170.566630][T10420] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.580799][T10420] ext4 filesystem being mounted at /327/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  170.609113][T10420] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1672'.
[  170.682811][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.714709][T10430] loop2: detected capacity change from 0 to 1024
[  170.740249][T10430] EXT4-fs: Ignoring removed nobh option
[  170.745866][T10430] EXT4-fs: inline encryption not supported
[  170.770974][T10430] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.096326][T10438] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.1675: Allocating blocks 497-513 which overlap fs metadata
[  171.122168][T10438] EXT4-fs (loop2): pa ffff888107250540: logic 256, phys. 385, len 8
[  171.130361][T10438] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  171.197603][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.266728][T10442] loop1: detected capacity change from 0 to 256
[  171.326992][T10442] binfmt_misc: register: failed to install interpreter file ./file0
[  171.363918][T10444] loop5: detected capacity change from 0 to 512
[  171.429002][T10444] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  171.440087][T10444] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  171.449708][T10444] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1680: Failed to acquire dquot type 1
[  171.476072][T10444] EXT4-fs (loop5): 1 truncate cleaned up
[  171.496902][T10444] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.512241][T10444] ext4 filesystem being mounted at /234/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.557674][T10444] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1680'.
[  171.624256][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.724505][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.880336][T10464] loop5: detected capacity change from 0 to 1024
[  171.885092][T10466] loop2: detected capacity change from 0 to 256
[  171.887252][T10464] EXT4-fs: Ignoring removed orlov option
[  171.904753][T10466] binfmt_misc: register: failed to install interpreter file ./file0
[  171.934066][T10464] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.222917][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.361182][T10487] loop1: detected capacity change from 0 to 1024
[  172.369347][T10487] EXT4-fs: Ignoring removed orlov option
[  172.398763][T10487] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.545765][T10498] loop5: detected capacity change from 0 to 1024
[  172.572826][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.591703][T10498] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.672986][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.766692][T10508] loop5: detected capacity change from 0 to 1024
[  172.783691][T10508] EXT4-fs: Ignoring removed orlov option
[  172.807823][T10508] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.073717][T10522] loop2: detected capacity change from 0 to 1024
[  173.088164][T10522] EXT4-fs: Ignoring removed orlov option
[  173.108499][T10522] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.178581][ T5579] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.205628][T10528] ==================================================================
[  173.213736][T10528] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / writeback_single_inode
[  173.223481][T10528] 
[  173.225883][T10528] write to 0xffff88811dd73a18 of 4 bytes by task 10522 on cpu 0:
[  173.233598][T10528]  writeback_single_inode+0x14a/0x3e0
[  173.238987][T10528]  sync_inode_metadata+0x5b/0x90
[  173.243935][T10528]  generic_buffers_fsync_noflush+0xd9/0x120
[  173.249834][T10528]  ext4_sync_file+0x1ab/0x690
[  173.254516][T10528]  vfs_fsync_range+0x10d/0x130
[  173.259272][T10528]  ext4_buffered_write_iter+0x34f/0x3c0
[  173.264820][T10528]  ext4_file_write_iter+0x383/0xf00
[  173.270016][T10528]  iter_file_splice_write+0x5f2/0x970
[  173.275379][T10528]  direct_splice_actor+0x153/0x2a0
[  173.280491][T10528]  splice_direct_to_actor+0x30f/0x680
[  173.286243][T10528]  do_splice_direct+0xda/0x150
[  173.291023][T10528]  do_sendfile+0x380/0x650
[  173.295449][T10528]  __x64_sys_sendfile64+0x105/0x150
[  173.300665][T10528]  x64_sys_call+0x2bb0/0x2ff0
[  173.305351][T10528]  do_syscall_64+0xd2/0x200
[  173.309865][T10528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.315765][T10528] 
[  173.318083][T10528] read to 0xffff88811dd73a18 of 4 bytes by task 10528 on cpu 1:
[  173.325874][T10528]  generic_buffers_fsync_noflush+0x80/0x120
[  173.331770][T10528]  ext4_sync_file+0x1ab/0x690
[  173.336448][T10528]  vfs_fsync_range+0x10d/0x130
[  173.341290][T10528]  ext4_buffered_write_iter+0x34f/0x3c0
[  173.346847][T10528]  ext4_file_write_iter+0x383/0xf00
[  173.352055][T10528]  iter_file_splice_write+0x5f2/0x970
[  173.357526][T10528]  direct_splice_actor+0x153/0x2a0
[  173.362650][T10528]  splice_direct_to_actor+0x30f/0x680
[  173.368026][T10528]  do_splice_direct+0xda/0x150
[  173.372794][T10528]  do_sendfile+0x380/0x650
[  173.377223][T10528]  __x64_sys_sendfile64+0x105/0x150
[  173.382458][T10528]  x64_sys_call+0x2bb0/0x2ff0
[  173.387141][T10528]  do_syscall_64+0xd2/0x200
[  173.391647][T10528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.397623][T10528] 
[  173.399945][T10528] value changed: 0x00000038 -> 0x00000002
[  173.405658][T10528] 
[  173.407966][T10528] Reported by Kernel Concurrency Sanitizer on:
[  173.414117][T10528] CPU: 1 UID: 0 PID: 10528 Comm: syz.2.1705 Not tainted 6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(voluntary) 
[  173.426260][T10528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  173.436399][T10528] ==================================================================
[  173.620365][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.720225][T10512] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512