last executing test programs:

1m15.985516186s ago: executing program 3 (id=1447):
syz_mount_image$ext4(&(0x7f0000000840)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@min_batch_time={'min_batch_time', 0x3d, 0xf}}, {@nogrpid}, {@bh}]}, 0xff, 0x523, &(0x7f0000000c00)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7f}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x340800, &(0x7f0000000a80)={[], [{@euid_lt}, {@euid_gt}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
r2 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(0xffffffffffffffff, &(0x7f0000000200), 0x10)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f00000000c0), 0xf00)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x105042, 0x102)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0x2f, &(0x7f0000000040)=0x2, 0x4)
bind$inet(r4, &(0x7f0000000400)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
sendto$inet(r4, 0x0, 0x0, 0x0, 0x0, 0x0)
recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
connect$inet(r4, &(0x7f00000000c0)={0x2, 0x6e20, @local}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
write$cgroup_subtree(r3, &(0x7f00000000c0)=ANY=[], 0x32600)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
memfd_create(0x0, 0x6)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff000800034000000038540000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000280003802400008004000180040002800c00044000000000000000090c0005"], 0xe8}, 0x1, 0x0, 0x0, 0xe383c033d0ad305}, 0x0)

1m15.57360289s ago: executing program 3 (id=1451):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000300000085"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
clock_getres(0x7, 0x0)

1m15.218147512s ago: executing program 3 (id=1455):
semtimedop(0x0, &(0x7f0000000000)=[{0x0, 0x7}], 0x1, 0x0)
semop(0x0, &(0x7f0000000040)=[{0x4}, {0x0, 0x7fff, 0x1000}], 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYRESOCT, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0xe7fd}, 0x100002, 0x3, 0x893}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=@newsa={0x154, 0x10, 0x1, 0x0, 0x25dfdbfc, {{@in6=@remote, @in6=@loopback}, {@in=@empty, 0x0, 0x32}, @in6=@loopback, {0x0, 0x0, 0x0, 0x0, 0x6, 0x9}, {0x0, 0x6}, {0x0, 0x0, 0x4}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xad}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}]}, 0x154}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x34}}, 0x0)
sendmsg$SMC_PNETID_DEL(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r4, 0xe27, 0x70bd28, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x4000)
r6 = syz_open_dev$MSR(0x0, 0x8000002000000, 0x0)
read$msr(r6, 0x0, 0x0)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x555)
r7 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000180), &(0x7f00000001c0)=r7}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff28, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
semtimedop(0x0, &(0x7f0000000040)=[{0x3, 0x8, 0x1800}], 0x1, 0x0)
unshare(0x2c040000)
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000780)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0002ec66711c60ac897ea9d9c000bbbcf410da00fcdbdf250200000005000400010000002ecff2f28571b2e6d0bc936b006c0f25468f7f40b028780a74100aad385ad2d59c44f414327fdc8fa78ef8cceae4fac9d8b8bc711f40088eb7023b59dfcf400c20a90485"], 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x20040000)

1m14.395438358s ago: executing program 3 (id=1463):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, &(0x7f0000000040), &(0x7f0000000200)}, 0x20)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00')
pwritev(r0, &(0x7f0000000500)=[{&(0x7f0000000000)='0', 0x1}], 0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x0, 0x5, &(0x7f00000002c0)=@raw=[@cb_func={0x18, 0x6, 0x4, 0x0, 0x7}, @ldst={0x0, 0x3, 0x6, 0x2, 0x0, 0x0, 0x10}, @map_idx], &(0x7f0000000300)='GPL\x00', 0xa1e, 0x3, &(0x7f0000000340)=""/3, 0x40f00, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000380)={0x7, 0x3}, 0x8, 0x10, &(0x7f00000003c0)={0x1, 0x4, 0x5, 0x1}, 0x10, 0x0, 0x0, 0x7, 0x0, &(0x7f00000009c0)=[{0x1, 0x4, 0x9}, {0x1, 0x1, 0xc, 0x3}, {0x1, 0x4, 0xc, 0x1}, {0x5, 0x1, 0x10, 0x2}, {0x2, 0x2, 0x4, 0x3}, {0x5, 0x3, 0xb, 0x6}, {0x3, 0x4, 0x6, 0x3}], 0x10, 0xffffffff}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f0000000780)=[{0x200000000006, 0xf, 0x6, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x67, 0x52e, &(0x7f0000000480)="$eJzs3U9vI2cZAPBnHHvZ7GabFDhAJUqhRdkVrJ00tI04lCIhOFUCyr2ExImiOHEUO+0mqtis+ABICAESJ7hwQeIDIKFKXDgipEpwBgECIdjCgQN00NjjNJv4X7tOnE1+P2ky78y8M8/zOprxvJ7RTACX1lMR8VJEvJOm6a2ImM7nF/IhDtpDVu/t+28sZ0MSafrKP5JI8nmdbSX5+Hq+2tWI+NqXI76ZnIzb2NvfWKrVqjv5dKW5uV1p7O3fXt9cWquuVbcWFuafX3xh8bnFuZG080ZEvPjFv3z/Oz/90ou//Mzrf3z1bze/laU1lS8/2o73qNhvYbvppdZncXSFnfcZ7DwqtlqYm+xWY+LEnHunnBMAAN1l5/gfjIhPRsStmI6J/qezAAAAwCMo/fxU/DeJSLu70mM+AAAA8AgptO6BTQrl/F6AqSgUyuX2PbwfjmuFWr3R/PRqfXdrpX2v7EyUCqvrtepcfq/wTJSSbHq+VX53+tlj0wsR8XhEfG96sjVdXq7XVsb94wcAAABcEteP9f//Pd3u/3fcHWdyAAAAwOjMjDsBAAAA4NQN2/+/dsp5AAAAAKfH9X8AAAC40L7y8svZkHbef73y2t7uRv212yvVxkZ5c3e5vFzf2S6v1etrrWf2bQ7aXq1e3/5sbO3eqTSrjWalsXc1Nuu7W81X1x94BTYAAABwhh7/+Ju/TyLi4HOTrSFzZbhVh6wGnFfFw1KSj7vs1n94rD3+8xklBZyJiXEnAIxNcdwJAGNTGncCwNglA5b3vHnnN/n4E6PNBwAAGL3Zj/a+/l/ou+ZB/8XAuWcnhsvL9X+4vFrX/4e9k7fgbeBwkZQGnQH07SA4HsBF8NDX/wdK0/eUEAAAMHJTrSEplIud6UKhXI640XotQClZXa9V5yLisYj43XTpA9n0fKtmMrDPAAAAAAAAAAAAAAAAAAAAAAAAAAC0pWkSKQAAAHChRRT+mvyq/Sz/2elnpo7/PnAl+c905K8Iff1Hr/zgzlKzuTOfzf/n4fzmD/P5z47jFwwAAAC4FAa8wP9BnX56px8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKP09v03ljvDWcb9+xciYqZb/GJcbY2vRikirv0rieKR9ZKImBhB/Mnsz0e6xU+ytA5Ddos/OYL4B/f6xo+D/FPoFv/6COLDZfZmdvx5qdv+V4inWuPu+18x4oHp96v38S8Oj38TPfb/G0PGeOKtn1d6xr8X8UTxRPy7WYRO/KRH/KeHjP+Nr+/v91qW/jhituv3T9Kpkh0ho9Lc3K409vZvr28urVXXqlsLC/PPL76w+NziXGV1vVbN/3aN8d2P/eKdfu2/1iP+zID2P3Nia1e6xvjfW3fuf6hdLHWLf/PpLvF//ZO8xsn4hfy771N5OVs+2ykftMtHPfmz3z7Zr/0rPdo/6P9/s9dGj7n11W//aciqAMAZaOztbyzVatWdC1vIeulDVs7Ozs5FzgpDFCYefjt3R5pYmqZptk89xHaSGPenelgY95EJAAAYtXdP+sedCQAAAAAAAAAAAAAAAAAAAFxeZ/E4seMxDw5LySgeoQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBL/DwAA//9t9tlI")
r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
write$binfmt_register(r2, &(0x7f0000000440)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)

1m14.09978431s ago: executing program 3 (id=1467):
openat(0xffffffffffffff9c, 0x0, 0xe02, 0x1c0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8d}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0x20)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x12, r2, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x4, 0x0, 0x6, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

1m13.667864483s ago: executing program 3 (id=1471):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18)
r1 = socket$unix(0x1, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x4, 0x0, 0x1, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5}, 0x50)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f00000003c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006100000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@typedef={0x10, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x2e, 0x61, 0x61]}}, &(0x7f0000000540)=""/171, 0x29, 0xab, 0x1, 0x1000, 0x10000}, 0x28)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet(0x2, 0x3, 0x9)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x4b, 0x1, 0xffffffff, 0x6, 0x0)
unshare(0x40200)
semop(0x0, &(0x7f0000000080)=[{0x1, 0x8001, 0x1000}], 0x1)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000140)=[0x6, 0x7fff])
unshare(0x40400)

1m13.667543163s ago: executing program 32 (id=1471):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18)
r1 = socket$unix(0x1, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x4, 0x0, 0x1, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5}, 0x50)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f00000003c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006100000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@typedef={0x10, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x2e, 0x61, 0x61]}}, &(0x7f0000000540)=""/171, 0x29, 0xab, 0x1, 0x1000, 0x10000}, 0x28)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet(0x2, 0x3, 0x9)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x4b, 0x1, 0xffffffff, 0x6, 0x0)
unshare(0x40200)
semop(0x0, &(0x7f0000000080)=[{0x1, 0x8001, 0x1000}], 0x1)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000140)=[0x6, 0x7fff])
unshare(0x40400)

4.233994019s ago: executing program 5 (id=2614):
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x2, 0x3, 0x801, 0x0, 0x0, 0xfffffffc)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000020000000000000002000004000000000000000002000000000000000000000002000000000000000100000000000001"], 0x0, 0x4e, 0x0, 0x1}, 0x28)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0xc0}, 0x94)
timer_create(0x1, &(0x7f0000000280)={0x0, 0x2d, 0x4, @thr={&(0x7f0000000340)="f0c3343709711771791abbfaca85b53036cd530d6bab9c8242d1c4ec1befa7b80c831ad29d93b9f8fa9ffdc2dbaa24c361f7feac36387962499343dec85065f27204b3014627271074b0e26bd78d3e50b492227d93f52d5e836039f5cbecbb3bf00c1aa6f998f7bbd67863753b", &(0x7f0000000200)="d8dbfdf1ddfe5f45bbd3c9c3c0eae280f7f09d470d52ca6979969e20dc3e88ea59c98afdffbff4216bb1b3e625"}}, &(0x7f00000003c0)=<r4=>0x0)
clock_gettime(0x0, &(0x7f0000000400)={<r5=>0x0, <r6=>0x0})
timer_settime(r4, 0x0, &(0x7f0000000440)={{0x77359400}, {r5, r6+60000000}}, &(0x7f0000000540))
recvmmsg(r3, &(0x7f0000003d40)=[{{0x0, 0x94, 0x0, 0x0, 0x0, 0x40000}, 0x5}], 0x1, 0x2, 0x0)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x1, @ANYBLOB="4ba5048000"/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0100ec0001000000ddff0000000000e6ffffff0000000000000000008c05b8c5334168ace542e9ed6cc584d304000000000001009740e4"], 0x50)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mmap(&(0x7f0000202000/0x2000)=nil, 0x2000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x55b23000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040)=[{0x1000}], 0x1, 0xe4, 0x0, 0x0, 0x50, 0x2})
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300001e880000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x24, r10, 0x201, 0x400400, 0x0, {{}, {}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x48041}, 0x0)

2.564204441s ago: executing program 4 (id=2650):
syz_mount_image$ext4(&(0x7f0000000840)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@min_batch_time={'min_batch_time', 0x3d, 0xf}}, {@nogrpid}, {@bh}]}, 0xff, 0x523, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x105042, 0x102)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x2f, 0x0, 0x0)
bind$inet(r1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_subtree(r0, &(0x7f00000000c0)=ANY=[], 0x32600)

2.539896652s ago: executing program 5 (id=2651):
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x800400, &(0x7f00000002c0)={[{@norecovery}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}]}, 0xee, 0x474, &(0x7f00000004c0)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000180)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x8, r0, &(0x7f00000003c0)="122a7f6364d90eb5f566", 0xa, 0xa00}])
io_setup(0x6, &(0x7f00000000c0))
creat(&(0x7f0000000100)='./bus\x00', 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/sync_on_suspend', 0x1a1081, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
eventfd2(0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r2, 0x10e, 0x5, &(0x7f0000000a00), 0x4)

2.410544472s ago: executing program 4 (id=2654):
r0 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r0, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r2}, &(0x7f0000000680), &(0x7f00000006c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
r4 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r4, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0xfc00)

2.319290683s ago: executing program 2 (id=2657):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x28, 0x1, 0x2, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_EXPECT_FN={0x13, 0xb, 'callforwarding\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x811}, 0x20000000)
process_madvise(r0, &(0x7f0000000180)=[{&(0x7f0000000040)="49bb27cd804c29122ba6c697cf8a138e74add2a8897072450db3214668f20e166763e8c3ee855f1803", 0x29}], 0x1, 0x65, 0x0)
write$binfmt_script(r0, &(0x7f00000004c0), 0x208e24b)

2.317900713s ago: executing program 4 (id=2659):
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x2, 0x3, 0x801, 0x0, 0x0, 0xfffffffc)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000020000000000000002000004000000000000000002000000000000000000000002000000000000000100000000000001"], 0x0, 0x4e, 0x0, 0x1}, 0x28)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"6b3bfb24a49cb307ac6500", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0xc0}, 0x94)
timer_create(0x1, &(0x7f0000000280)={0x0, 0x2d, 0x4, @thr={&(0x7f0000000340)="f0c3343709711771791abbfaca85b53036cd530d6bab9c8242d1c4ec1befa7b80c831ad29d93b9f8fa9ffdc2dbaa24c361f7feac36387962499343dec85065f27204b3014627271074b0e26bd78d3e50b492227d93f52d5e836039f5cbecbb3bf00c1aa6f998f7bbd67863753b", &(0x7f0000000200)="d8dbfdf1ddfe5f45bbd3c9c3c0eae280f7f09d470d52ca6979969e20dc3e88ea59c98afdffbff4216bb1b3e625"}}, &(0x7f00000003c0)=<r4=>0x0)
clock_gettime(0x0, &(0x7f0000000400)={<r5=>0x0, <r6=>0x0})
timer_settime(r4, 0x0, &(0x7f0000000440)={{0x77359400}, {r5, r6+60000000}}, &(0x7f0000000540))
recvmmsg(r3, &(0x7f0000003d40)=[{{0x0, 0x94, 0x0, 0x0, 0x0, 0x40000}, 0x5}], 0x1, 0x2, 0x0)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x1, @ANYBLOB="4ba5048000"/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0100ec0001000000ddff0000000000e6ffffff0000000000000000008c05b8c5334168ace542e9ed6cc584d304000000000001009740e4"], 0x50)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mmap(&(0x7f0000202000/0x2000)=nil, 0x2000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x55b23000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040)=[{0x1000}], 0x1, 0xe4, 0x0, 0x0, 0x50, 0x2})
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300001e880000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x24, r10, 0x201, 0x400400, 0x0, {{}, {}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x48041}, 0x0)

2.302021943s ago: executing program 5 (id=2660):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001ec0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
futex(&(0x7f0000000040), 0x0, 0x0, &(0x7f0000000080)={0x77359400}, &(0x7f00000001c0)=0x1, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x2}, 0x94)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sync()

1.991318105s ago: executing program 2 (id=2664):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="10000000040000000400", @ANYRES32=0x1], 0x50)
socket$kcm(0xa, 0x5, 0x0)
r0 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r0, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0x2, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000000080)='_', 0x1}], 0x11}, 0x64)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0a000000020000003f00"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000080)={r3, 0x0, 0x0}, 0x20)
setsockopt$sock_attach_bpf(r0, 0x84, 0x1e, &(0x7f0000000240), 0x4)
socket$kcm(0xa, 0x2, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x404c080)
write(r4, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)

1.787800067s ago: executing program 2 (id=2665):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, 0x0, 0x0)

1.725548667s ago: executing program 2 (id=2667):
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x2, 0x3, 0x801, 0x0, 0x0, 0xfffffffc)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000020000000000000002000004000000000000000002000000000000000000000002000000000000000100000000000001"], 0x0, 0x4e, 0x0, 0x1}, 0x28)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"6b3bfb24a49cb307ac6500", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0xc0}, 0x94)
timer_create(0x1, &(0x7f0000000280)={0x0, 0x2d, 0x4, @thr={&(0x7f0000000340)="f0c3343709711771791abbfaca85b53036cd530d6bab9c8242d1c4ec1befa7b80c831ad29d93b9f8fa9ffdc2dbaa24c361f7feac36387962499343dec85065f27204b3014627271074b0e26bd78d3e50b492227d93f52d5e836039f5cbecbb3bf00c1aa6f998f7bbd67863753b", &(0x7f0000000200)="d8dbfdf1ddfe5f45bbd3c9c3c0eae280f7f09d470d52ca6979969e20dc3e88ea59c98afdffbff4216bb1b3e625"}}, &(0x7f00000003c0)=<r3=>0x0)
clock_gettime(0x0, &(0x7f0000000400)={<r4=>0x0, <r5=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000440)={{0x77359400}, {r4, r5+60000000}}, &(0x7f0000000540))
recvmmsg(0xffffffffffffffff, &(0x7f0000003d40)=[{{0x0, 0x94, 0x0, 0x0, 0x0, 0x40000}, 0x5}], 0x1, 0x2, 0x0)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x1, @ANYBLOB="4ba5048000"/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0100ec0001000000ddff0000000000e6ffffff0000000000000000008c05b8c5334168ace542e9ed6cc584d304000000000001009740e4"], 0x50)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mmap(&(0x7f0000202000/0x2000)=nil, 0x2000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x55b23000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040)=[{0x1000}], 0x1, 0xe4, 0x0, 0x0, 0x50, 0x2})
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300001e880000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x24, r9, 0x201, 0x400400, 0x0, {{}, {}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x48041}, 0x0)

1.577452868s ago: executing program 0 (id=2673):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = mq_open(&(0x7f0000001300)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xc9=\x87\x85eT\x90]\x19\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\biTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef+B\xf4\x1f\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xe0\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\xef\xb1\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00', 0x842, 0x0, 0x0)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000440)=0xffffffffffffffff, 0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, 0x2, r2}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r3, 0x0, 0x3}, 0x18)
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r1, 0x0, 0xffffffffffffff03, 0x3, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r1)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000d40)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x10000000)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000016c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f0000000680)='./file0\x00', 0x0, &(0x7f00000006c0), 0x1, 0x62f, &(0x7f0000000700)="$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")
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000240)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="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"/319], 0x80}, 0x1, 0x7}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000b48500000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000010bc0)='kfree\x00', r4}, 0x18)
mount$9p_tcp(0x0, &(0x7f0000001040)='.\x00', &(0x7f00000006c0), 0x8010, &(0x7f0000001000)=ANY=[@ANYBLOB='trans=tcp'])

1.454322339s ago: executing program 5 (id=2675):
open$dir(&(0x7f0000000780)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40, 0x2c1)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x18)
listen(0xffffffffffffffff, 0x8000)
creat(&(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002d40)={<r2=>0xffffffffffffffff})
ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000040)=@generic={0x1, 0xffffefffffff7fff, 0x1})
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file0\x00', 0x800090, &(0x7f0000000480)=ANY=[@ANYBLOB="726f6469722c756e695f786c6174653d312c756e695f786c6174653d302c757466383d302c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c696f636861727365743d64655661756c742c6e6f6e756d7461696c3d302c726f6469722c696f636861727365743d61736369692c757466383d302c73686f77657865632c6572726f72733d636f6e74696e75652c756e695f786c6174653d302c756e695f786c6174653d302c646d61736b3d30303030303030303030303030303030303030303030312c71756965742c6e6f6e756d7461696c3d302c73686f72746e616d653d6d697865642c6572726f72733d72656d6f756e742d726f2c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c756e695f786c6174653d302c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e6e742c756e695f786c6174653d302c726f6469722c756d61736b3d30313737373737373737373737373737373737373737302c73686f72746e616d653d77696e39352c696f636861727365743d6370313235312c73686f72746e616d653d77696e39352c73686f72746e616d653d77696e6e742c6e6f6e756d7461696c3d302c002ad91130b85468a8bfd7aadeddf4c1982ee508b2fd6f20df65264a240bef04ccbf04798b125dd0d5ac204553c8"], 0x6, 0x2d1, &(0x7f0000000740)="$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")
socket(0xa, 0x5, 0x8000)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x0, @rand_addr=0x64010102}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000280)="08001efbb07d5a6e", 0x8}], 0x1, &(0x7f0000002240)=ANY=[], 0xa}, 0x4850)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8240, 0x1b)

1.417291149s ago: executing program 0 (id=2676):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
mount$bind(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000800)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1a9851, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000003c0), 0x200044, 0x0)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='kmem_cache_free\x00'}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000380)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
clock_gettime(0x1, &(0x7f0000000000))

1.259723571s ago: executing program 0 (id=2679):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, 0x0, 0x0)

1.216023751s ago: executing program 1 (id=2680):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
utimes(0x0, &(0x7f00000000c0)={{0x7, 0xa000000000}, {0x8000000000000000}})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000940)=ANY=[], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00'})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

1.172913842s ago: executing program 0 (id=2681):
r0 = bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000380)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rt_tgsigqueueinfo(0x0, 0x0, 0xb, &(0x7f00000019c0)={0x0, 0x3, 0x4})

1.172060262s ago: executing program 0 (id=2682):
gettid()
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/pm_wakeup_irq', 0x0, 0x1a2)
r3 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x0)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000001600)={r2, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x2000000000000000, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000040), &(0x7f00000004c0)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x4000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
syz_clone(0xe50c1700, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a80)={0x10, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000071100f000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe}, 0x94)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x8, 0x3, 0x488, 0x0, 0xffffffff, 0xffffffff, 0x1c8, 0xffffffff, 0x3b8, 0xffffffff, 0xffffffff, 0x3b8, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c8, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x9, 0xffff0000, 0xc11270e446e71eb1, 0x0, 'syz1\x00'}}]}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x1a, 0x1, 0x5}}}, {{@ipv6={@remote, @private2, [0xffffff00, 0xffffffff, 0x0, 0xffffff00], [0xffffffff, 0xffffff00, 0xffffffff, 0xff000000], 'netpci0\x00', 'bridge_slave_1\x00', {}, {0xff}, 0x2b, 0x2, 0x5, 0x5}, 0x0, 0x1d0, 0x1f0, 0x0, {}, [@common=@srh={{0x30}, {0x2, 0xb7, 0x4, 0xe8, 0x6, 0x1268, 0xb2a}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x6, 0x4, 0x0, 'syz0\x00'}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e8)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYRES16=r4, @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b00020000"], &(0x7f0000000c00)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb8500000043000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xa6, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0, r5, 0x0, 0xffffffffffffffff}, 0x18)
r6 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x9, 0x6f, 0xff, 0x0, 0x0, 0x40008, 0x590, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}, 0x5c58, 0x4, 0x0, 0x0, 0x7, 0x4ac, 0xffff, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r6, 0x0)
socket(0x10, 0x3, 0x0)
r7 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x89f0, &(0x7f0000000000)={'bridge0\x00', &(0x7f0000000080)=@ethtool_regs={0x12, 0x0, 0x5, "fbdbf97859"}})

571.741496ms ago: executing program 5 (id=2683):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000600), 0x2, 0x0)
write$selinux_access(r0, 0x0, 0x41)

570.963186ms ago: executing program 0 (id=2684):
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x2, 0x3, 0x801, 0x0, 0x0, 0xfffffffc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000020000000000000002000004000000000000000002000000000000000000000002000000000000000100000000000001"], 0x0, 0x4e, 0x0, 0x1}, 0x28)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"6b3bfb24a49cb307ac6500", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0xc0}, 0x94)
timer_create(0x1, &(0x7f0000000280)={0x0, 0x2d, 0x4, @thr={&(0x7f0000000340)="f0c3343709711771791abbfaca85b53036cd530d6bab9c8242d1c4ec1befa7b80c831ad29d93b9f8fa9ffdc2dbaa24c361f7feac36387962499343dec85065f27204b3014627271074b0e26bd78d3e50b492227d93f52d5e836039f5cbecbb3bf00c1aa6f998f7bbd67863753b9f", &(0x7f0000000200)="d8dbfdf1ddfe5f45bbd3c9c3c0eae280f7f09d470d52ca6979969e20dc3e88ea59c98afdffbff4216bb1b3e625"}}, &(0x7f00000003c0)=<r3=>0x0)
clock_gettime(0x0, &(0x7f0000000400)={<r4=>0x0, <r5=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000440)={{0x77359400}, {r4, r5+60000000}}, &(0x7f0000000540))
recvmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0x94, 0x0, 0x0, 0x0, 0x40000}, 0x5}], 0x1, 0x2, 0x0)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[], 0x50)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mmap(&(0x7f0000202000/0x2000)=nil, 0x2000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x55b23000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040)=[{0x1000}], 0x1, 0xe4, 0x0, 0x0, 0x50, 0x2})
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300001e880000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x24, r9, 0x201, 0x400400, 0x0, {{}, {}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x48041}, 0x0)

568.513736ms ago: executing program 4 (id=2685):
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000000000000000000690800000000000039ac1414aa00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000c00000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000000000000000000000a000000000000feffffffff7f400002000000000000080000000000000000010000000000000044000500ac1414bb000000000000000000000000000000003c00000002000000fe8000000000000000000000000000aa0600000004"], 0xfc}}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000780)={@broadcast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00 \x00', 0x18, 0x3a, 0xff, @ipv4={'\x00', '\xff\xff', @private=0xa010100}, @local, {[], @mld={0x187, 0x0, 0x0, 0x0, 0x0, @local}}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7fffffffffffffff}, 0x18)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x23, &(0x7f00000001c0)={@remote, @broadcast, @void, {@arp={0x806, @generic={0x10f, 0x805, 0x6, 0x0, 0x1e98fc76933199e3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, "", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x38}, "d3"}}}}, &(0x7f0000000200)={0x0, 0x3, [0xb01, 0xffa, 0x7ba, 0x2ac]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00')
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000040)={0x1, 0x8000}, 0x4)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'wg0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000180)="0b03feff4f12021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14)

524.179266ms ago: executing program 5 (id=2686):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001ec0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
futex(&(0x7f0000000040), 0x0, 0x0, &(0x7f0000000080)={0x77359400}, &(0x7f00000001c0)=0x1, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sync()

523.637386ms ago: executing program 4 (id=2687):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001900)=[{&(0x7f0000000040)="0e4f", 0x2}], 0x1}, 0x90)
ioctl$sock_SIOCOUTQNSD(r4, 0x894b, &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000004c0)='kfree\x00', r3}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000040), 0x200080, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',version=9p2000'])
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0xfffffffe, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)

471.092046ms ago: executing program 4 (id=2688):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='sched_switch\x00', r3}, 0x18)
clock_nanosleep(0x2, 0x0, &(0x7f0000000180)={0x0, 0x3938700}, 0x0)
syz_read_part_table(0x4097, &(0x7f00000040c0)="$eJzsz7FN61AYBeDjxE5elCdFUFAioKF1FsgWWQchWIIOiTLDsANDUNBg5FwcZ4EIhL6v8Dn2//tKN/yo17FWSZ727a0+fOhNxpqcl5gnZ0murvPYtsm/eZJ1Gd0fdpu0627VH/A/Sf0y6aer+nu6TLa7094OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4TaqxPi9Lzkt8JJkeL3RHu4skd5uL2+H9oUmzuayGf/cms+H82bR/fnZFku3udDcCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP6gqi7ZLPLe582y/mJ/jm0YhIEwjF5iWwlLULMQS7B/Q3VIiIMJ6N7r/Ptz4bpqMT1dZuZvafd5zJ8xKv3X2uOatnoT/XvmVewZa773HQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBgBw4EAAAAAID8XxuhqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqCjtwQAIAAAAg6P/rdgQKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEMBAAD//33UI0E=")
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
fadvise64(r3, 0x45, 0x80000001, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000040000000c0000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b70300000000ecff8500", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x555)
accept(r0, 0x0, 0x0)
recvfrom(r2, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

329.809598ms ago: executing program 1 (id=2689):
socket(0x10, 0x803, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, 0x0, &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x3c, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100003}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x3c1, 0x3, 0x318, 0x168, 0x6c, 0x0, 0x168, 0x0, 0x248, 0x258, 0x258, 0x248, 0x258, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @private0, [], [], 'wlan1\x00', 'ip6gre0\x00', {}, {}, 0x11, 0x0, 0x0, 0x48}, 0x0, 0x100, 0x168, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x2, 0x0, 0x5}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0xfffffffd, 'netbios-ns\x00', 'syz1\x00'}}}, {{@ipv6={@dev, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'netdevsim0\x00', 'lo\x00'}, 0x0, 0xa8, 0xe0}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0xa8, 0xd0, 0x0, {0x0, 0x2001}}, {0x28}}}}, 0x378)
r3 = socket$packet(0x11, 0x3, 0x300)
socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'veth1_vlan\x00', <r4=>0x0})
bind$packet(r3, &(0x7f0000000040)={0x11, 0x1, r4, 0x1, 0x9}, 0x14)
r5 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)=@getchain={0x24, 0x11, 0x1, 0x70bd2a, 0x2000001, {0x0, 0x0, 0x0, r4, {0x7, 0xa}, {0xd, 0xffe0}, {0x8, 0x9}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x20048054)

270.256448ms ago: executing program 1 (id=2690):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x10001}, 0x18)
setgroups(0x0, 0x0)

216.642478ms ago: executing program 1 (id=2691):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800006, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x2000)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$inet(r2, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000100)}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x2400c042)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
stat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$setregset(0x4205, r5, 0x1, &(0x7f0000000100)={&(0x7f0000000040)="dcef5837f29c1f7c93d183044aedbe283413e674c7719c33a4b17f028f68610a6c55bb2bf8282853f3e1d35d2aa4dca47a76704e578fdb41c47b476f8394a8676ff55a3507e2ad50248c6130863b0f7433c7fbc9b978a39eae88bffd05d139cedbee4b470bedced2125e0b1f38fbaa348c6d75aa1a4011e9cdae15ecb9309b0101edbf6dd6d111d6132f1821a4e4cbec", 0x90})
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000fcdbdf250401f2800c00180008ac0f0000000100140001"], 0x114}, {&(0x7f00000009c0)=ANY=[@ANYRESOCT, @ANYRES32=r4, @ANYBLOB="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"], 0x2cc}], 0x2, 0x0, 0x0, 0x20000001}, 0x0)
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000300)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@dev={0xfe, 0x80, '\x00', 0x1c}, 0x4e23, 0x0, 0x4e24, 0x0, 0x2, 0x80, 0x0, 0x11, 0x0, r4}, {0xe61, 0x0, 0x0, 0x2, 0x9, 0x1, 0xffd, 0xc}, {0xfffffffffffff5b9, 0x4, 0x7fffffffffffffff, 0x7}, 0x8000, 0x6e6bb5, 0x0, 0x1, 0x2, 0x3}, {{@in6=@local, 0x4d4, 0x3c}, 0xa, @in6=@remote, 0x43500, 0x0, 0x0, 0x4, 0xc, 0xd0, 0x1}}, 0xe8)
r6 = getgid()
lchown(&(0x7f0000000040)='./file0\x00', r4, r6)
quotactl_fd$Q_GETFMT(r2, 0xffffffff80000401, r4, &(0x7f00000001c0))
getsockname$inet(r2, &(0x7f0000000140)={0x2, 0x0, @broadcast}, &(0x7f0000000180)=0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$eJzs3U1vG1sZAODXzpeTm97kXu4CENBSCgVVdRK3jaouoKwQQpUQXYLUhsSNothxFDulCV2k/wGJSqxgyQ9g3RV7Ngh2bMoCiY8I1FRiYTTjSeomdpOSNI7i55FGM+eMM+85ieec+nXtE0DfuhQRWxExHBEPI2Iiq89lW9xtbcnjXm0/nd/Zfjqfi2bz/j9z6fmkLtp+JvFRds1CRPzoexE/zR2MW9/YXJ6rVMprWXmqUV2dqm9sXl+qzi2WF8srpdLszOz07Ru3SifW14vV4ezoyy//sPWtnyfNGs9q2vtxklpdH9qLE9nv/AcfIlgPDETEYPb8yVzoZXt4P/mI+DQiLqf3/0QMpH9NAOA8azYnojnRXgYAzrt8mgPL5YtZLmA88vlisZXD+yzG8pVavXHtUW19ZaGVK5uMofyjpUp5OssVTsZQLinPpMdvyqV95RsR8UlE/GJkNC0X52uVhV7+wwcA+thH++b//4y05n8A4Jwr9LoBAMCpM/8DQP8x/wNA/zH/A0D/Mf8DQP8x/wNA/zH/A0Bf+eG9e8nW3Mm+/3rh8cb6cu3x9YVyfblYXZ8vztfWVouLtdpi+p091cOuV6nVVmduxvqTyW+v1htT9Y3NB9Xa+krjQfq93g/KQ6fSKwDgXT65+OLPuYjYujOabtG2loO5Gs63fK8bAPTMQK8bAPSM1b6gfx3jNb70AJwTHZbofUshIkb3VzabzeaHaxLwgV39gvw/9Ku2/L//BQx9Rv4f+lfX/P+BF/vAedNs5o665n8c9YEAwNkmxw90ef//02z/2+zNgZ8s7H/E8/0VPlEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA/9hd/7eYrdwxHvl8sRhxISImYyj3aKlSno6IjyPiTyNDI0l5psdtBgCOK/+3XLb+19WJK+P7zw7nXo+k+4j42a/u//LJXKOx9sek/l979Y3nWX2pF+0HAA6zO0+n+7YX8q+2n87vbqfZnr9/NyIKrfg728Oxsxd/MAbTfSGGImLs37ms3JJry10cx9aziPh8p/7nYjzNgbRWPt0fP4l94VTj59+Kn0/PtfbJ7+JzJ9AW6DcvkvHnbqf7Lx+X0n3n+7+QjlDHl41/yaXmd9Ix8E383fFvoMv4d+moMW7+/vuto9GD555FfHEwYjf2Ttv4sxs/1yX+lYOX6+gvX/rK5W7nmr+OuBqd47fHmmpUV6fqG5vXl6pzi+XF8kqpNDszO337xq3SVJqjnuo+G/zjzrWPu51L+j/WJX7hkP5//Wjdj9/89+GPv/qO+N/8Wqf4+fjsHfGTOfEbR4w/N/a7QrdzSfyFLv0/7O9/7YjxX/5188Cy4QBA79Q3NpfnKpXymgMHZ/8gecqegWZ0PPjOacUajvf6qWbz/4rVbcQ4iawbcBbs3fQR8brXjQEAAAAAAAAAAAAAADo6jU8s9bqPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnF//CwAA//8wuNJ1")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0xfffffffffffffdbd)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(r7, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x94}, 0x8808)

173.762339ms ago: executing program 2 (id=2692):
r0 = bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000380)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rt_tgsigqueueinfo(0x0, 0x0, 0xb, &(0x7f00000019c0)={0x0, 0x3, 0x4})

117.953369ms ago: executing program 2 (id=2693):
open$dir(&(0x7f0000000780)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40, 0x2c1)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x18)
listen(0xffffffffffffffff, 0x8000)
creat(&(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002d40)={<r2=>0xffffffffffffffff})
ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000040)=@generic={0x1, 0xffffefffffff7fff, 0x1})
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file0\x00', 0x800090, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x6, 0x2d1, &(0x7f0000000740)="$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")
socket(0xa, 0x5, 0x8000)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x0, @rand_addr=0x64010102}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000280)="08001efbb07d5a6e", 0x8}], 0x1, &(0x7f0000002240)=ANY=[], 0xa}, 0x4850)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8240, 0x1b)

57.998809ms ago: executing program 1 (id=2694):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1a, 0x7, 0x8c, 0x401, 0x1bcd9, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0xfffffffc, 0xfffffffd}, 0x50)
r2 = signalfd4(r1, &(0x7f0000000000)={[0x3]}, 0x8, 0x0)
connect$vsock_stream(r2, &(0x7f0000000180), 0x10)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r4}, 0x10)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000640)=[{0x6, 0x83, 0xfc, 0x2}]}, 0x10)
close(0xffffffffffffffff)

0s ago: executing program 1 (id=2695):
gettid()
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/pm_wakeup_irq', 0x0, 0x1a2)
r3 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x0)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000001600)={r2, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x2000000000000000, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000040), &(0x7f00000004c0)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x4000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
syz_clone(0xe50c1700, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a80)={0x10, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000071100f000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe}, 0x94)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x8, 0x3, 0x488, 0x0, 0xffffffff, 0xffffffff, 0x1c8, 0xffffffff, 0x3b8, 0xffffffff, 0xffffffff, 0x3b8, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c8, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x9, 0xffff0000, 0xc11270e446e71eb1, 0x0, 'syz1\x00'}}]}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x1a, 0x1, 0x5}}}, {{@ipv6={@remote, @private2, [0xffffff00, 0xffffffff, 0x0, 0xffffff00], [0xffffffff, 0xffffff00, 0xffffffff, 0xff000000], 'netpci0\x00', 'bridge_slave_1\x00', {}, {0xff}, 0x2b, 0x2, 0x5, 0x5}, 0x0, 0x1d0, 0x1f0, 0x0, {}, [@common=@srh={{0x30}, {0x2, 0xb7, 0x4, 0xe8, 0x6, 0x1268, 0xb2a}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x6, 0x4, 0x0, 'syz0\x00'}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e8)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYRES16=r4, @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b00020000"], &(0x7f0000000c00)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb8500000043000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xa6, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0, r5, 0x0, 0xffffffffffffffff}, 0x18)
r6 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x9, 0x6f, 0xff, 0x0, 0x0, 0x40008, 0x590, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}, 0x5c58, 0x4, 0x0, 0x0, 0x7, 0x4ac, 0xffff, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r6, 0x0)
socket(0x10, 0x3, 0x0)
r7 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x89f0, &(0x7f0000000000)={'bridge0\x00', &(0x7f0000000080)=@ethtool_regs={0x12, 0x0, 0x5, "fbdbf97859"}})

kernel console output (not intermixed with test programs):

oring removed bh option
[  181.806354][T20972] EXT4-fs: inline encryption not supported
[  181.833768][T20974] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.849640][T20972] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.876496][T20974] ext4 filesystem being mounted at /396/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  181.926572][T21005] bond1: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  181.943125][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.971488][T21005] bond1 (unregistering): Released all slaves
[  182.028520][T20975] loop0: detected capacity change from 0 to 32768
[  182.049057][T21081] netlink: 'syz.5.1911': attribute type 10 has an invalid length.
[  182.057736][T21081] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1911'.
[  182.067236][T20975]  loop0: p1 p2 p3 < > p4 < p5 p6 >
[  182.072816][T20975] loop0: p1 start 460800 is beyond EOD, truncated
[  182.079422][T20975] loop0: p2 size 83886080 extends beyond EOD, truncated
[  182.088555][T20975] loop0: p5 start 460800 is beyond EOD, truncated
[  182.095723][T20975] loop0: p6 size 83886080 extends beyond EOD, truncated
[  182.130823][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.169618][T21097] loop5: detected capacity change from 0 to 512
[  182.213999][T21097] EXT4-fs (loop5): too many log groups per flexible block group
[  182.225188][T21097] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  182.232172][T21097] EXT4-fs (loop5): mount failed
[  182.243371][T21097] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1916'.
[  182.290855][T21128] loop5: detected capacity change from 0 to 128
[  182.328972][T21143] loop2: detected capacity change from 0 to 256
[  182.390045][T21147] loop4: detected capacity change from 0 to 1024
[  182.397414][T21147] EXT4-fs: inline encryption not supported
[  182.439513][T21147] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.479926][T21153] loop1: detected capacity change from 0 to 512
[  182.501802][T21153] EXT4-fs (loop1): too many log groups per flexible block group
[  182.511199][T21153] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  182.519066][T21153] EXT4-fs (loop1): mount failed
[  182.519938][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.630762][T21190] loop1: detected capacity change from 0 to 256
[  182.680081][T21197] loop0: detected capacity change from 0 to 512
[  182.687284][T21197] EXT4-fs: Ignoring removed bh option
[  182.706425][T21197] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.725313][T21197] ext4 filesystem being mounted at /336/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  182.927648][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.991270][T21236] loop0: detected capacity change from 0 to 512
[  182.998429][T21236] EXT4-fs: Ignoring removed bh option
[  183.008913][T21236] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.022870][T21236] ext4 filesystem being mounted at /338/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  183.133132][T21248] loop5: detected capacity change from 0 to 512
[  183.160259][T21248] EXT4-fs (loop5): too many log groups per flexible block group
[  183.170785][T21248] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  183.225373][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.255863][T21248] EXT4-fs (loop5): mount failed
[  183.274373][T21248] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1930'.
[  183.312016][T21259] loop0: detected capacity change from 0 to 1024
[  183.328935][T21263] loop5: detected capacity change from 0 to 1024
[  183.336948][T21263] EXT4-fs: inline encryption not supported
[  183.338760][T21259] EXT4-fs: inline encryption not supported
[  183.366927][T21263] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.761841][T21291] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1939'.
[  184.065680][T21302] loop0: detected capacity change from 0 to 128
[  184.097462][T21303] xt_CT: You must specify a L4 protocol and not use inversions on it
[  184.258614][T21304] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1940'.
[  184.471029][T21344] bond3: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  184.506504][T21372] loop5: detected capacity change from 0 to 1024
[  184.522575][T21344] bond3 (unregistering): Released all slaves
[  184.529971][T21372] EXT4-fs: inline encryption not supported
[  184.633551][T21384] netlink: 'syz.4.1949': attribute type 13 has an invalid length.
[  184.719764][T21426] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1951'.
[  184.950547][ T2817] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.012731][T21443] bond5: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  185.049692][T21443] bond5 (unregistering): Released all slaves
[  185.059074][   T29] kauditd_printk_skb: 578 callbacks suppressed
[  185.059100][   T29] audit: type=1326 audit(1762515531.272:16321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  185.089024][   T29] audit: type=1326 audit(1762515531.272:16322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  185.115135][ T2817] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.116184][   T29] audit: type=1326 audit(1762515531.283:16323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fdb8d45155c code=0x7ffc0000
[  185.148739][   T29] audit: type=1326 audit(1762515531.283:16324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fdb8d451494 code=0x7ffc0000
[  185.151232][ T2817] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.173290][   T29] audit: type=1326 audit(1762515531.283:16325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fdb8d451494 code=0x7ffc0000
[  185.205812][   T29] audit: type=1326 audit(1762515531.283:16326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  185.229546][   T29] audit: type=1326 audit(1762515531.283:16327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  185.255561][   T29] audit: type=1326 audit(1762515531.346:16328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  185.279284][   T29] audit: type=1326 audit(1762515531.346:16329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  185.303156][   T29] audit: type=1326 audit(1762515531.346:16330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.5.1956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  185.408573][ T2817] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.432135][T21547] sch_fq: defrate 0 ignored.
[  185.471025][T21551] loop1: detected capacity change from 0 to 128
[  185.569661][T21559] bond5: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  185.684294][T21559] bond5 (unregistering): Released all slaves
[  185.769266][T21600] loop5: detected capacity change from 0 to 512
[  185.809017][T21600] EXT4-fs (loop5): too many log groups per flexible block group
[  185.819298][T21600] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  185.835346][T21600] EXT4-fs (loop5): mount failed
[  185.852278][T21640] xt_CT: You must specify a L4 protocol and not use inversions on it
[  185.861794][T21640] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1970'.
[  185.885614][T21600] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1967'.
[  185.915813][T21654] loop0: detected capacity change from 0 to 128
[  185.947238][T21660] sch_fq: defrate 0 ignored.
[  185.980209][T21667] loop2: detected capacity change from 0 to 128
[  185.990132][T21667] ext4 filesystem being mounted at /406/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.190029][T21671] loop5: detected capacity change from 0 to 256
[  186.265052][T21676] loop4: detected capacity change from 0 to 512
[  186.301931][T21676] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  186.321436][T21676] EXT4-fs (loop4): invalid journal inode
[  186.327335][T21676] EXT4-fs (loop4): can't get journal size
[  186.340210][T21676] EXT4-fs (loop4): 1 truncate cleaned up
[  186.366917][T21684] loop1: detected capacity change from 0 to 512
[  186.374543][T21684] EXT4-fs: Ignoring removed bh option
[  186.400482][T21684] ext4 filesystem being mounted at /413/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  186.743767][T21696] xt_CT: You must specify a L4 protocol and not use inversions on it
[  186.768577][T21696] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1986'.
[  186.839117][T21709] sch_fq: defrate 0 ignored.
[  186.873354][T21711] loop1: detected capacity change from 0 to 512
[  186.900709][T21717] loop2: detected capacity change from 0 to 128
[  186.907366][T21711] EXT4-fs (loop1): too many log groups per flexible block group
[  186.925296][T21711] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  186.935767][T21711] EXT4-fs (loop1): mount failed
[  186.952140][T21722] loop0: detected capacity change from 0 to 512
[  186.974509][T21722] EXT4-fs: Ignoring removed bh option
[  186.983079][T21711] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1991'.
[  187.022972][T21722] ext4 filesystem being mounted at /353/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  187.086306][T21729] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1995'.
[  187.181773][T21736] bond3: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  187.194032][T21736] bond3 (unregistering): Released all slaves
[  187.557363][T21815] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2000'.
[  188.005813][T21828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2001'.
[  188.730628][T21867] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  188.753858][T21867] bond4 (unregistering): Released all slaves
[  188.803197][T21903] bond3: entered allmulticast mode
[  188.809266][T21903] 8021q: adding VLAN 0 to HW filter on device bond3
[  188.850076][T21901] vhci_hcd: default hub control req: 0000 vfffe i0000 l0
[  189.054578][T21983] loop0: detected capacity change from 0 to 512
[  189.325946][T22017] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2014'.
[  189.336137][T21983] EXT4-fs (loop0): too many log groups per flexible block group
[  189.404073][T21983] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  189.467178][T21983] EXT4-fs (loop0): mount failed
[  189.620055][T21983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2013'.
[  189.634290][T22021] loop4: detected capacity change from 0 to 512
[  189.652504][T22021] EXT4-fs: Ignoring removed bh option
[  189.674538][T22021] ext4 filesystem being mounted at /420/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  189.760978][T22035] 9pnet_fd: Insufficient options for proto=fd
[  189.770878][T22035] netlink: 'syz.2.2015': attribute type 13 has an invalid length.
[  189.790617][T22037] loop1: detected capacity change from 0 to 512
[  189.817463][T22039] loop0: detected capacity change from 0 to 512
[  189.826358][T22037] EXT4-fs: Ignoring removed bh option
[  189.832365][T22039] EXT4-fs: Ignoring removed bh option
[  189.846821][T22039] ext4 filesystem being mounted at /360/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  189.858500][T22037] ext4 filesystem being mounted at /426/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  189.998059][   T29] kauditd_printk_skb: 69 callbacks suppressed
[  189.998079][   T29] audit: type=1326 audit(1762515536.488:16400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22062 comm="syz.1.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  190.029515][   T29] audit: type=1326 audit(1762515536.488:16401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22062 comm="syz.1.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  190.053255][   T29] audit: type=1326 audit(1762515536.488:16402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22062 comm="syz.1.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  190.076986][   T29] audit: type=1326 audit(1762515536.488:16403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22062 comm="syz.1.2022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  190.117066][T22075] loop0: detected capacity change from 0 to 512
[  190.124189][T22075] EXT4-fs: Ignoring removed bh option
[  190.141935][T22075] ext4 filesystem being mounted at /361/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  190.211137][T22081] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2026'.
[  190.668648][T22153] 9pnet_fd: Insufficient options for proto=fd
[  190.675577][T22153] netlink: 'syz.2.2033': attribute type 13 has an invalid length.
[  190.706004][T22155] __nla_validate_parse: 1 callbacks suppressed
[  190.706084][T22155] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2035'.
[  190.803836][T22160] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2037'.
[  190.830956][   T29] audit: type=1326 audit(1762515537.374:16404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22168 comm="syz.5.2039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  190.867355][T22169] atomic_op ffff88810250a128 conn xmit_atomic 0000000000000000
[  190.886768][   T29] audit: type=1326 audit(1762515537.395:16405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22168 comm="syz.5.2039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  190.911118][   T29] audit: type=1326 audit(1762515537.395:16406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22168 comm="syz.5.2039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  190.936441][   T29] audit: type=1326 audit(1762515537.395:16407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22168 comm="syz.5.2039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  190.963626][   T29] audit: type=1326 audit(1762515537.395:16408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22168 comm="syz.5.2039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  190.990214][   T29] audit: type=1326 audit(1762515537.395:16409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22168 comm="syz.5.2039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  191.099861][T22176] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2042'.
[  191.221636][T22190] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2043'.
[  192.589583][T22265] sch_fq: defrate 0 ignored.
[  192.600285][T22271] FAULT_INJECTION: forcing a failure.
[  192.600285][T22271] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  192.613492][T22271] CPU: 0 UID: 0 PID: 22271 Comm: syz.5.2056 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  192.613526][T22271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  192.613539][T22271] Call Trace:
[  192.613546][T22271]  <TASK>
[  192.613556][T22271]  __dump_stack+0x1d/0x30
[  192.613633][T22271]  dump_stack_lvl+0xe8/0x140
[  192.613658][T22271]  dump_stack+0x15/0x1b
[  192.613682][T22271]  should_fail_ex+0x265/0x280
[  192.613704][T22271]  should_fail+0xb/0x20
[  192.613722][T22271]  should_fail_usercopy+0x1a/0x20
[  192.613743][T22271]  strncpy_from_user+0x25/0x230
[  192.613783][T22271]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  192.613839][T22271]  __se_sys_memfd_create+0x1ff/0x590
[  192.613866][T22271]  __x64_sys_memfd_create+0x31/0x40
[  192.613890][T22271]  x64_sys_call+0x2ac2/0x3000
[  192.613982][T22271]  do_syscall_64+0xd2/0x200
[  192.614005][T22271]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  192.614064][T22271]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  192.614106][T22271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.614128][T22271] RIP: 0033:0x7fdb8d44f6c9
[  192.614196][T22271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.614215][T22271] RSP: 002b:00007fdb8beaee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  192.614234][T22271] RAX: ffffffffffffffda RBX: 00000000000006ab RCX: 00007fdb8d44f6c9
[  192.614250][T22271] RDX: 00007fdb8beaeef0 RSI: 0000000000000000 RDI: 00007fdb8d4d2960
[  192.614265][T22271] RBP: 0000200000003040 R08: 00007fdb8beaebb7 R09: 00007fdb8beaee40
[  192.614280][T22271] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000800
[  192.614294][T22271] R13: 00007fdb8beaeef0 R14: 00007fdb8beaeeb0 R15: 0000200000000080
[  192.614405][T22271]  </TASK>
[  192.922653][T22288] loop2: detected capacity change from 0 to 256
[  193.031100][T22308] loop0: detected capacity change from 0 to 1024
[  193.046192][T22308] EXT4-fs: inline encryption not supported
[  193.253544][T22317] SELinux:  policydb magic number 0xfff70003 does not match expected magic number 0xf97cff8c
[  193.274547][T22317] SELinux: failed to load policy
[  193.308624][T22331] sch_fq: defrate 0 ignored.
[  193.336199][T22338] 9pnet_fd: Insufficient options for proto=fd
[  193.343236][T22338] netlink: 'syz.0.2066': attribute type 13 has an invalid length.
[  193.369422][T22343] atomic_op ffff88811910ad28 conn xmit_atomic 0000000000000000
[  193.384983][T22340] xt_CT: You must specify a L4 protocol and not use inversions on it
[  193.429418][T22347] atomic_op ffff88811910b128 conn xmit_atomic 0000000000000000
[  193.437824][T22340] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2068'.
[  193.522512][T22358] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  193.534059][T22358] bond4 (unregistering): Released all slaves
[  193.618014][T22432] sch_fq: defrate 0 ignored.
[  193.649341][T22434] loop4: detected capacity change from 0 to 512
[  193.664070][T22434] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  193.681200][T22434] EXT4-fs (loop4): mount failed
[  193.825295][T22430] vhci_hcd: default hub control req: 0000 vfffe i0000 l0
[  193.935099][T22468] xt_CT: You must specify a L4 protocol and not use inversions on it
[  193.960445][T22468] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2081'.
[  194.093593][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.101525][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.109438][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.117513][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.126446][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.134331][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.142295][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.150294][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.158317][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.158482][T22489] loop0: detected capacity change from 0 to 256
[  194.166800][T19323] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0
[  194.180909][T19323] hid-generic 0000:FFFFFFFF:0000.0001: item fetching failed at offset 28/32
[  194.195206][T19323] hid-generic 0000:FFFFFFFF:0000.0001: probe with driver hid-generic failed with error -22
[  194.207191][T22479] loop1: detected capacity change from 0 to 256
[  194.280422][T22498] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  194.291361][T22498] bond4 (unregistering): Released all slaves
[  194.451203][T22591] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2092'.
[  194.455253][T22595] loop2: detected capacity change from 0 to 1024
[  194.469405][T22595] EXT4-fs: inline encryption not supported
[  194.922281][   T29] kauditd_printk_skb: 460 callbacks suppressed
[  194.922300][   T29] audit: type=1400 audit(1762515541.680:16869): avc:  denied  { create } for  pid=22672 comm="syz.4.2104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  194.953103][   T29] audit: type=1400 audit(1762515541.722:16870): avc:  denied  { ioctl } for  pid=22672 comm="syz.4.2104" path="socket:[28232]" dev="sockfs" ino=28232 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  194.990724][T22699] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2105'.
[  195.030838][T22706] loop4: detected capacity change from 0 to 1024
[  195.038332][T22706] EXT4-fs: inline encryption not supported
[  195.058297][T22706] EXT4-fs mount: 25 callbacks suppressed
[  195.058320][T22706] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.103462][   T29] audit: type=1400 audit(1762515541.880:16871): avc:  denied  { create } for  pid=22712 comm="syz.0.2109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  195.126878][   T29] audit: type=1400 audit(1762515541.901:16872): avc:  denied  { write } for  pid=22712 comm="syz.0.2109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  195.130621][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.178761][   T29] audit: type=1400 audit(1762515541.954:16873): avc:  denied  { create } for  pid=22712 comm="syz.0.2109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  195.287271][T22751] loop0: detected capacity change from 0 to 256
[  195.345718][T22754] loop1: detected capacity change from 0 to 512
[  195.352686][T22754] EXT4-fs: Ignoring removed bh option
[  195.380495][T22754] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.405769][T22744] loop4: detected capacity change from 0 to 32768
[  195.408529][T22754] ext4 filesystem being mounted at /451/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  195.446776][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.463869][T22744]  loop4: p1 p2 p3 < > p4 < p5 p6 >
[  195.469549][T22744] loop4: p1 start 460800 is beyond EOD, truncated
[  195.476541][T22744] loop4: p2 size 83886080 extends beyond EOD, truncated
[  195.486176][T22744] loop4: p5 start 460800 is beyond EOD, truncated
[  195.493569][T22744] loop4: p6 size 83886080 extends beyond EOD, truncated
[  195.502672][T22774] netlink: 'syz.1.2117': attribute type 10 has an invalid length.
[  195.512563][T22774] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2117'.
[  195.540471][T22777] 9pnet_fd: Insufficient options for proto=fd
[  195.547450][T22777] netlink: 'syz.2.2115': attribute type 13 has an invalid length.
[  195.593809][T22779] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  195.604566][T22779] bond4 (unregistering): Released all slaves
[  195.712844][T22849] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2120'.
[  195.743963][T22853] loop1: detected capacity change from 0 to 1024
[  195.751315][T22853] EXT4-fs: inline encryption not supported
[  195.769039][T22853] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.809058][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.834231][T22865] loop1: detected capacity change from 0 to 512
[  195.843752][T22865] EXT4-fs (loop1): too many log groups per flexible block group
[  195.851831][T22865] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  195.858778][T22865] EXT4-fs (loop1): mount failed
[  195.901335][T22881] audit: audit_lost=3 audit_rate_limit=0 audit_backlog_limit=64
[  195.909147][T22881] audit: out of memory in audit_log_start
[  195.947604][T22886] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  195.958687][T22886] bond4 (unregistering): Released all slaves
[  195.982529][T22887] dvmrp0: entered allmulticast mode
[  196.043137][   T29] audit: type=1400 audit(1762515542.872:16874): avc:  denied  { map } for  pid=22963 comm="syz.1.2131" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=27599 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  196.069666][T22964] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=26 sclass=netlink_tcpdiag_socket pid=22964 comm=syz.1.2131
[  196.084759][   T29] audit: type=1400 audit(1762515542.872:16875): avc:  denied  { read write } for  pid=22963 comm="syz.1.2131" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=27599 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  196.109823][   T29] audit: type=1400 audit(1762515542.893:16876): avc:  denied  { ioctl } for  pid=22963 comm="syz.1.2131" path="socket:[27600]" dev="sockfs" ino=27600 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  196.165756][T22967] xt_CT: You must specify a L4 protocol and not use inversions on it
[  196.220003][T22967] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2130'.
[  196.232993][T22982] loop1: detected capacity change from 0 to 128
[  196.324407][T22995] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  196.334970][T22995] bond4 (unregistering): Released all slaves
[  196.385811][T23063] loop2: detected capacity change from 0 to 128
[  196.400990][T23066] loop4: detected capacity change from 0 to 1024
[  196.414348][T23063] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  196.440383][T23063] ext4 filesystem being mounted at /439/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  196.471405][T23076] loop0: detected capacity change from 0 to 512
[  196.491929][T23076] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  196.502155][T23079] capability: warning: `syz.4.2146' uses 32-bit capabilities (legacy support in use)
[  196.524638][T23076] EXT4-fs (loop0): invalid journal inode
[  196.537626][T23076] EXT4-fs (loop0): can't get journal size
[  196.547832][T23081] loop4: detected capacity change from 0 to 512
[  196.556128][T23076] EXT4-fs (loop0): 1 truncate cleaned up
[  196.562479][T23076] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.577755][T23081] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.598715][T23062] loop5: detected capacity change from 0 to 32768
[  196.639389][T23062]  loop5: p1 p2 p3 < > p4 < p5 p6 >
[  196.645858][T23062] loop5: p1 start 460800 is beyond EOD, truncated
[  196.652386][T23062] loop5: p2 size 83886080 extends beyond EOD, truncated
[  196.672690][T23062] loop5: p5 start 460800 is beyond EOD, truncated
[  196.679847][T23062] loop5: p6 size 83886080 extends beyond EOD, truncated
[  196.687780][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.740421][T23100] xt_CT: You must specify a L4 protocol and not use inversions on it
[  196.776144][T23100] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2148'.
[  196.845734][T23108] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  196.856939][T23108] bond4 (unregistering): Released all slaves
[  197.118780][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  197.169136][T23221] loop2: detected capacity change from 0 to 512
[  197.217784][T23221] EXT4-fs: Ignoring removed bh option
[  197.224202][T23224] xt_CT: You must specify a L4 protocol and not use inversions on it
[  197.268955][T23224] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2159'.
[  197.275043][T23221] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.304669][T23232] loop4: detected capacity change from 0 to 512
[  197.312039][T23238] loop5: detected capacity change from 0 to 512
[  197.321606][T23221] ext4 filesystem being mounted at /440/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  197.340485][T23238] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  197.371745][T23232] EXT4-fs (loop4): too many log groups per flexible block group
[  197.390529][T23238] EXT4-fs (loop5): invalid journal inode
[  197.404182][T23244] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  197.417164][T23232] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  197.424069][T23232] EXT4-fs (loop4): mount failed
[  197.429350][T23238] EXT4-fs (loop5): can't get journal size
[  197.438504][T23244] bond4 (unregistering): Released all slaves
[  197.444924][T23238] EXT4-fs (loop5): 1 truncate cleaned up
[  197.451284][T23238] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.467756][T23232] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2161'.
[  197.547493][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.662406][T23328] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  197.732485][T23333] loop2: detected capacity change from 0 to 512
[  197.791507][T19324] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  197.833594][T23333] EXT4-fs (loop2): too many log groups per flexible block group
[  197.871378][T23333] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  197.878217][T23333] EXT4-fs (loop2): mount failed
[  197.951797][T23333] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2169'.
[  198.112611][T23356] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2173'.
[  198.181549][T23334] loop4: detected capacity change from 0 to 32768
[  198.203955][T23365] loop1: detected capacity change from 0 to 512
[  198.219836][T23362] loop2: detected capacity change from 0 to 512
[  198.226709][T23365] EXT4-fs: Ignoring removed bh option
[  198.235927][T23334]  loop4: p1 p2 p3 < > p4 < p5 p6 >
[  198.241438][T23334] loop4: p1 start 460800 is beyond EOD, truncated
[  198.247878][T23334] loop4: p2 size 83886080 extends beyond EOD, truncated
[  198.258010][T23362] EXT4-fs (loop2): too many log groups per flexible block group
[  198.266201][T23365] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.280982][T23334] loop4: p5 start 460800 is beyond EOD, truncated
[  198.287765][T23334] loop4: p6 size 83886080 extends beyond EOD, truncated
[  198.289900][T23362] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  198.309883][T23365] ext4 filesystem being mounted at /471/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  198.326738][T23362] EXT4-fs (loop2): mount failed
[  198.334988][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.355220][T23362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2174'.
[  198.387420][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.474287][T23417] loop2: detected capacity change from 0 to 512
[  198.506031][T23417] EXT4-fs: Ignoring removed bh option
[  198.537449][T23417] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.568242][T23417] ext4 filesystem being mounted at /448/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  198.635050][T23432] loop4: detected capacity change from 0 to 1024
[  198.666802][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.705242][T23432] EXT4-fs: inline encryption not supported
[  198.714841][T23440] loop0: detected capacity change from 0 to 512
[  198.747452][T23432] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.763496][T23440] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  198.772203][T23444] loop1: detected capacity change from 0 to 512
[  198.778994][T23444] EXT4-fs: Ignoring removed bh option
[  198.785115][T23440] EXT4-fs (loop0): invalid journal inode
[  198.819472][T23440] EXT4-fs (loop0): can't get journal size
[  198.836750][T23444] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.852051][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.867635][T23440] EXT4-fs (loop0): 1 truncate cleaned up
[  198.874371][T23440] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.896601][T23444] ext4 filesystem being mounted at /474/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  198.919773][T23454] loop4: detected capacity change from 0 to 512
[  198.977650][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.988588][T23454] EXT4-fs: Ignoring removed bh option
[  199.048515][T23454] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.066797][T23454] ext4 filesystem being mounted at /469/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  199.281341][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.436312][T23506] loop4: detected capacity change from 0 to 1024
[  199.464851][T23506] EXT4-fs: inline encryption not supported
[  199.509425][T23506] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.642536][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.694291][   T29] kauditd_printk_skb: 165 callbacks suppressed
[  199.694368][   T29] audit: type=1326 audit(1762515546.722:17042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23507 comm="syz.2.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdc50df6c9 code=0x7ffc0000
[  199.726337][   T29] audit: type=1326 audit(1762515546.722:17043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23507 comm="syz.2.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdc50df6c9 code=0x7ffc0000
[  199.772127][T23503] loop1: detected capacity change from 0 to 32768
[  199.783110][   T29] audit: type=1326 audit(1762515546.806:17044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23519 comm="syz.4.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  199.806829][   T29] audit: type=1326 audit(1762515546.806:17045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23519 comm="syz.4.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  199.830673][   T29] audit: type=1326 audit(1762515546.806:17046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23519 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  199.853697][   T29] audit: type=1326 audit(1762515546.806:17047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23519 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  199.877119][   T29] audit: type=1326 audit(1762515546.806:17048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23519 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  199.900279][   T29] audit: type=1326 audit(1762515546.806:17049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23519 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  199.923293][   T29] audit: type=1326 audit(1762515546.806:17050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23519 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  199.946365][   T29] audit: type=1326 audit(1762515546.806:17051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23519 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  199.990912][T23524] loop4: detected capacity change from 0 to 512
[  199.997825][T23503]  loop1: p1 p2 p3 < > p4 < p5 p6 >
[  199.998255][T23524] EXT4-fs: Ignoring removed bh option
[  200.003788][T23503] loop1: p1 start 460800 is beyond EOD, truncated
[  200.015968][T23503] loop1: p2 size 83886080 extends beyond EOD, truncated
[  200.037044][T23524] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.044343][T23503] loop1: p5 start 460800 is beyond EOD, truncated
[  200.053264][T23524] ext4 filesystem being mounted at /473/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  200.056223][T23503] loop1: p6 size 83886080 extends beyond EOD, truncated
[  200.118236][T17332] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.157847][T23543] FAULT_INJECTION: forcing a failure.
[  200.157847][T23543] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  200.171054][T23543] CPU: 1 UID: 0 PID: 23543 Comm: syz.5.2198 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  200.171091][T23543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  200.171108][T23543] Call Trace:
[  200.171117][T23543]  <TASK>
[  200.171126][T23543]  __dump_stack+0x1d/0x30
[  200.171155][T23543]  dump_stack_lvl+0xe8/0x140
[  200.171178][T23543]  dump_stack+0x15/0x1b
[  200.171245][T23543]  should_fail_ex+0x265/0x280
[  200.171288][T23543]  should_fail+0xb/0x20
[  200.171311][T23543]  should_fail_usercopy+0x1a/0x20
[  200.171340][T23543]  _copy_from_user+0x1c/0xb0
[  200.171376][T23543]  ___sys_sendmsg+0xc1/0x1d0
[  200.171460][T23543]  __x64_sys_sendmsg+0xd4/0x160
[  200.171488][T23543]  x64_sys_call+0x191e/0x3000
[  200.171511][T23543]  do_syscall_64+0xd2/0x200
[  200.171531][T23543]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  200.171632][T23543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.171661][T23543] RIP: 0033:0x7fdb8d44f6c9
[  200.171683][T23543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.171704][T23543] RSP: 002b:00007fdb8beaf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  200.171724][T23543] RAX: ffffffffffffffda RBX: 00007fdb8d6a5fa0 RCX: 00007fdb8d44f6c9
[  200.171738][T23543] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000004
[  200.171830][T23543] RBP: 00007fdb8beaf090 R08: 0000000000000000 R09: 0000000000000000
[  200.171843][T23543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  200.171859][T23543] R13: 00007fdb8d6a6038 R14: 00007fdb8d6a5fa0 R15: 00007ffe593cd848
[  200.171893][T23543]  </TASK>
[  200.390212][T23546] loop1: detected capacity change from 0 to 512
[  200.397489][T23546] EXT4-fs: Ignoring removed bh option
[  200.430289][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.524885][T23546] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.550331][T23546] ext4 filesystem being mounted at /479/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  200.647955][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.711926][T23611] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  200.732502][T23611] bond4 (unregistering): Released all slaves
[  200.750421][T23593] vhci_hcd: default hub control req: 0000 vfffe i0000 l0
[  200.764337][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.836565][T23690] netlink: 'syz.4.2208': attribute type 10 has an invalid length.
[  200.855312][T23690] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2208'.
[  200.930949][T23716] loop1: detected capacity change from 0 to 512
[  200.960812][T23719] FAULT_INJECTION: forcing a failure.
[  200.960812][T23719] name failslab, interval 1, probability 0, space 0, times 0
[  200.972591][T23716] EXT4-fs: Ignoring removed bh option
[  200.973584][T23719] CPU: 0 UID: 0 PID: 23719 Comm: wޣ� Not tainted syzkaller #0 PREEMPT(voluntary) 
[  200.973623][T23719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  200.973641][T23719] Call Trace:
[  200.973650][T23719]  <TASK>
[  200.973662][T23719]  __dump_stack+0x1d/0x30
[  200.973696][T23719]  dump_stack_lvl+0xe8/0x140
[  200.973740][T23719]  dump_stack+0x15/0x1b
[  200.973766][T23719]  should_fail_ex+0x265/0x280
[  200.973839][T23719]  should_failslab+0x8c/0xb0
[  200.973881][T23719]  kmem_cache_alloc_noprof+0x50/0x480
[  200.973924][T23719]  ? audit_log_start+0x342/0x720
[  200.974015][T23719]  audit_log_start+0x342/0x720
[  200.974045][T23719]  ? kstrtouint+0x76/0xc0
[  200.974099][T23719]  audit_seccomp+0x48/0x100
[  200.974153][T23719]  ? __seccomp_filter+0x82d/0x1250
[  200.974195][T23719]  __seccomp_filter+0x83e/0x1250
[  200.974290][T23719]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  200.974336][T23719]  ? vfs_write+0x7e8/0x960
[  200.974371][T23719]  ? __rcu_read_unlock+0x4f/0x70
[  200.974477][T23719]  ? __fget_files+0x184/0x1c0
[  200.974521][T23719]  __secure_computing+0x82/0x150
[  200.974561][T23719]  syscall_trace_enter+0xcf/0x1e0
[  200.974602][T23719]  do_syscall_64+0xac/0x200
[  200.974747][T23719]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  200.974786][T23719]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  200.974931][T23719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.975010][T23719] RIP: 0033:0x7fa9579cf6c9
[  200.975034][T23719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.975059][T23719] RSP: 002b:00007fa956437038 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[  200.975082][T23719] RAX: ffffffffffffffda RBX: 00007fa957c25fa0 RCX: 00007fa9579cf6c9
[  200.975101][T23719] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000004ce
[  200.975120][T23719] RBP: 00007fa956437090 R08: 0000000000000000 R09: 0000000000000000
[  200.975138][T23719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  200.975214][T23719] R13: 00007fa957c26038 R14: 00007fa957c25fa0 R15: 00007ffea0868748
[  200.975243][T23719]  </TASK>
[  201.234499][T23729] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2212'.
[  201.277386][T23716] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.292029][T23726] xt_CT: You must specify a L4 protocol and not use inversions on it
[  201.310404][T23716] ext4 filesystem being mounted at /482/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  201.324743][T23737] loop2: detected capacity change from 0 to 512
[  201.332425][T23737] EXT4-fs: Ignoring removed bh option
[  201.353551][T23717] loop0: detected capacity change from 0 to 32768
[  201.370650][T23747] loop5: detected capacity change from 0 to 512
[  201.378531][T23747] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  201.382134][T23737] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.387569][T23717]  loop0: p1 p2 p3 < > p4 < p5 p6 >
[  201.405599][T23737] ext4 filesystem being mounted at /454/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  201.420360][T23726] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2214'.
[  201.446538][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.457606][T23717] loop0: p1 start 460800 is beyond EOD, truncated
[  201.464641][T23717] loop0: p2 size 83886080 extends beyond EOD, truncated
[  201.473604][T23747] EXT4-fs (loop5): invalid journal inode
[  201.479506][T23747] EXT4-fs (loop5): can't get journal size
[  201.499943][T23717] loop0: p5 start 460800 is beyond EOD, truncated
[  201.508901][T23717] loop0: p6 size 83886080 extends beyond EOD, truncated
[  201.517101][T23747] EXT4-fs (loop5): 1 truncate cleaned up
[  201.541517][T23747] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.564413][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.623641][T23796] loop2: detected capacity change from 0 to 512
[  201.669811][T23800] loop1: detected capacity change from 0 to 256
[  201.686240][T23796] EXT4-fs (loop2): too many log groups per flexible block group
[  201.768448][T23796] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  201.775413][T23796] EXT4-fs (loop2): mount failed
[  201.835166][T23811] loop0: detected capacity change from 0 to 512
[  201.848341][T23822] loop1: detected capacity change from 0 to 128
[  201.855998][T23811] EXT4-fs (loop0): too many log groups per flexible block group
[  201.864302][T23811] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  201.871252][T23811] EXT4-fs (loop0): mount failed
[  201.887142][T23826] bond3: entered allmulticast mode
[  201.892567][T23826] 8021q: adding VLAN 0 to HW filter on device bond3
[  201.911083][T23811] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2225'.
[  201.933450][T23863] netlink: 'syz.4.2228': attribute type 10 has an invalid length.
[  201.942036][T23863] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2228'.
[  201.953963][T23865] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2229'.
[  202.002450][T23867] loop0: detected capacity change from 0 to 512
[  202.035455][T23867] EXT4-fs (loop0): too many log groups per flexible block group
[  202.048684][T23874] atomic_op ffff888118585928 conn xmit_atomic 0000000000000000
[  202.050436][T23870] loop4: detected capacity change from 0 to 1024
[  202.064095][T23870] EXT4-fs: inline encryption not supported
[  202.074544][T23867] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  202.084536][T23870] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.088941][T23867] EXT4-fs (loop0): mount failed
[  202.142727][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.226991][T23910] 9pnet_fd: Insufficient options for proto=fd
[  202.322673][T23913] xt_CT: You must specify a L4 protocol and not use inversions on it
[  202.417107][T23913] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2236'.
[  202.509295][T23911] loop0: detected capacity change from 0 to 32768
[  202.546494][T23911]  loop0: p1 p2 p3 < > p4 < p5 p6 >
[  202.553250][T23911] loop0: p1 start 460800 is beyond EOD, truncated
[  202.559926][T23911] loop0: p2 size 83886080 extends beyond EOD, truncated
[  202.582233][T23911] loop0: p5 start 460800 is beyond EOD, truncated
[  202.589185][T23911] loop0: p6 size 83886080 extends beyond EOD, truncated
[  202.603004][T23926] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  202.617139][T23926] bond4 (unregistering): Released all slaves
[  202.727826][T24005] loop4: detected capacity change from 0 to 512
[  202.758013][T24005] EXT4-fs (loop4): too many log groups per flexible block group
[  202.772193][T24005] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  202.790560][T24005] EXT4-fs (loop4): mount failed
[  202.809887][T24005] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2241'.
[  202.874152][T24040] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  202.888715][T24040] bond4 (unregistering): Released all slaves
[  202.959157][T24111] netlink: 'syz.1.2246': attribute type 10 has an invalid length.
[  202.992037][T24111] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2246'.
[  203.015682][T24113] 9pnet_fd: Insufficient options for proto=fd
[  203.022699][T24113] netlink: 'syz.4.2247': attribute type 13 has an invalid length.
[  203.069587][T24123] loop1: detected capacity change from 0 to 256
[  203.145168][T17332] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.164951][T24133] loop1: detected capacity change from 0 to 512
[  203.174821][T24133] EXT4-fs: Ignoring removed bh option
[  203.183853][T24136] loop0: detected capacity change from 0 to 512
[  203.190643][T24136] EXT4-fs: Ignoring removed bh option
[  203.208192][T24133] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.230001][T24133] ext4 filesystem being mounted at /493/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  203.254723][T24136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.288812][T24151] loop4: detected capacity change from 0 to 1024
[  203.296108][T24151] EXT4-fs: inline encryption not supported
[  203.302177][T24136] ext4 filesystem being mounted at /385/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  203.319429][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.329424][T24151] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.352074][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.366367][T24161] loop5: detected capacity change from 0 to 128
[  203.379448][T24161] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  203.392784][T24171] 9pnet_fd: Insufficient options for proto=fd
[  203.399628][T24161] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.410368][T24169] xt_CT: You must specify a L4 protocol and not use inversions on it
[  203.424216][T24169] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2259'.
[  203.435763][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.446615][T24174] loop1: detected capacity change from 0 to 128
[  203.456078][T24174] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  203.471478][T24174] ext4 filesystem being mounted at /494/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.495382][T24188] loop4: detected capacity change from 0 to 256
[  203.516056][T24188] FAT-fs (loop4): Directory bread(block 64) failed
[  203.528877][T24188] FAT-fs (loop4): Directory bread(block 65) failed
[  203.535808][T24188] FAT-fs (loop4): Directory bread(block 66) failed
[  203.542493][T24188] FAT-fs (loop4): Directory bread(block 67) failed
[  203.549809][T24188] FAT-fs (loop4): Directory bread(block 68) failed
[  203.556945][T24188] FAT-fs (loop4): Directory bread(block 69) failed
[  203.564399][T24188] FAT-fs (loop4): Directory bread(block 70) failed
[  203.571042][T24188] FAT-fs (loop4): Directory bread(block 71) failed
[  203.577852][T24188] FAT-fs (loop4): Directory bread(block 72) failed
[  203.586006][T24188] FAT-fs (loop4): Directory bread(block 73) failed
[  203.619265][T24188] syz.4.2260: attempt to access beyond end of device
[  203.619265][T24188] loop4: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  203.725872][T24234] loop0: detected capacity change from 0 to 256
[  204.161782][T17332] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  204.226356][ T3326] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  204.288219][T24267] FAULT_INJECTION: forcing a failure.
[  204.288219][T24267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  204.301537][T24267] CPU: 1 UID: 0 PID: 24267 Comm: syz.5.2265 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  204.301628][T24267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  204.301642][T24267] Call Trace:
[  204.301651][T24267]  <TASK>
[  204.301661][T24267]  __dump_stack+0x1d/0x30
[  204.301692][T24267]  dump_stack_lvl+0xe8/0x140
[  204.301719][T24267]  dump_stack+0x15/0x1b
[  204.301743][T24267]  should_fail_ex+0x265/0x280
[  204.301765][T24267]  should_fail+0xb/0x20
[  204.301787][T24267]  should_fail_usercopy+0x1a/0x20
[  204.301816][T24267]  strncpy_from_user+0x25/0x230
[  204.301895][T24267]  ? 0xffffffff81000000
[  204.301915][T24267]  strncpy_from_user_nofault+0x68/0xf0
[  204.301964][T24267]  bpf_probe_read_user_str+0x2a/0x70
[  204.301991][T24267]  bpf_prog_7f11bb5dfa26a882+0x43/0x49
[  204.302007][T24267]  bpf_trace_run2+0x107/0x1c0
[  204.302097][T24267]  __bpf_trace_sys_enter+0x10/0x30
[  204.302126][T24267]  trace_sys_enter+0x86/0xf0
[  204.302162][T24267]  syscall_trace_enter+0x13e/0x1e0
[  204.302215][T24267]  do_syscall_64+0xac/0x200
[  204.302244][T24267]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  204.302274][T24267]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  204.302382][T24267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.302412][T24267] RIP: 0033:0x7fdb8d44f6c9
[  204.302455][T24267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.302473][T24267] RSP: 002b:00007fdb8beaf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e3
[  204.302498][T24267] RAX: ffffffffffffffda RBX: 00007fdb8d6a5fa0 RCX: 00007fdb8d44f6c9
[  204.302524][T24267] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000000
[  204.302538][T24267] RBP: 00007fdb8beaf090 R08: 0000000000000000 R09: 0000000000000000
[  204.302550][T24267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.302562][T24267] R13: 00007fdb8d6a6038 R14: 00007fdb8d6a5fa0 R15: 00007ffe593cd848
[  204.302581][T24267]  </TASK>
[  204.511569][T24268] loop1: detected capacity change from 0 to 1024
[  204.535561][T24268] EXT4-fs: inline encryption not supported
[  204.580223][T24268] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.602666][   T29] kauditd_printk_skb: 135 callbacks suppressed
[  204.602685][   T29] audit: type=1326 audit(1762515551.889:17185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24280 comm="syz.0.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.634415][   T29] audit: type=1326 audit(1762515551.889:17186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24280 comm="syz.0.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.641596][T24260] vhci_hcd: default hub control req: 0000 vfffe i0000 l0
[  204.659148][   T29] audit: type=1326 audit(1762515551.889:17187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24280 comm="syz.0.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.690720][   T29] audit: type=1326 audit(1762515551.889:17188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24280 comm="syz.0.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.697086][T24268] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 16: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  204.714697][   T29] audit: type=1326 audit(1762515551.899:17189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24280 comm="syz.0.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.753012][   T29] audit: type=1326 audit(1762515551.899:17190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24280 comm="syz.0.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.763707][T24268] EXT4-fs (loop1): Remounting filesystem read-only
[  204.776681][   T29] audit: type=1326 audit(1762515551.899:17191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24280 comm="syz.0.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.776727][   T29] audit: type=1326 audit(1762515551.899:17192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24280 comm="syz.0.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.822986][   T29] audit: type=1326 audit(1762515552.057:17193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24284 comm="syz.0.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.855327][   T29] audit: type=1326 audit(1762515552.057:17194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24284 comm="syz.0.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fedef49f6c9 code=0x7ffc0000
[  204.925681][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.948740][T24314] FAULT_INJECTION: forcing a failure.
[  204.948740][T24314] name failslab, interval 1, probability 0, space 0, times 0
[  204.961439][T24314] CPU: 1 UID: 0 PID: 24314 Comm: syz.2.2274 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  204.961479][T24314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  204.961495][T24314] Call Trace:
[  204.961504][T24314]  <TASK>
[  204.961513][T24314]  __dump_stack+0x1d/0x30
[  204.961603][T24314]  dump_stack_lvl+0xe8/0x140
[  204.961625][T24314]  dump_stack+0x15/0x1b
[  204.961642][T24314]  should_fail_ex+0x265/0x280
[  204.961741][T24314]  ? __pfx_sock_alloc_inode+0x10/0x10
[  204.961771][T24314]  should_failslab+0x8c/0xb0
[  204.961807][T24314]  kmem_cache_alloc_lru_noprof+0x55/0x490
[  204.961869][T24314]  ? sock_alloc_inode+0x34/0xa0
[  204.961896][T24314]  ? __pfx_sock_alloc_inode+0x10/0x10
[  204.961922][T24314]  sock_alloc_inode+0x34/0xa0
[  204.962021][T24314]  alloc_inode+0x40/0x170
[  204.962048][T24314]  do_accept+0xa0/0x3a0
[  204.962077][T24314]  ? vfs_write+0x7e8/0x960
[  204.962302][T24314]  __sys_accept4+0xbf/0x140
[  204.962378][T24314]  __x64_sys_accept+0x42/0x50
[  204.962408][T24314]  x64_sys_call+0x212c/0x3000
[  204.962433][T24314]  do_syscall_64+0xd2/0x200
[  204.962455][T24314]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  204.962552][T24314]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  204.962587][T24314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.962610][T24314] RIP: 0033:0x7fcdc50df6c9
[  204.962626][T24314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.962644][T24314] RSP: 002b:00007fcdc3b47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  204.962672][T24314] RAX: ffffffffffffffda RBX: 00007fcdc5335fa0 RCX: 00007fcdc50df6c9
[  204.962685][T24314] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  204.962698][T24314] RBP: 00007fcdc3b47090 R08: 0000000000000000 R09: 0000000000000000
[  204.962710][T24314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.962724][T24314] R13: 00007fcdc5336038 R14: 00007fcdc5335fa0 R15: 00007ffc7545a368
[  204.962766][T24314]  </TASK>
[  205.177797][T24323] xt_CT: You must specify a L4 protocol and not use inversions on it
[  205.243559][T24328] netlink: 'syz.2.2277': attribute type 10 has an invalid length.
[  205.303738][T24337] loop4: detected capacity change from 0 to 128
[  205.313892][T24337] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  205.337596][T24341] loop1: detected capacity change from 0 to 256
[  205.377951][T24346] 9pnet_fd: Insufficient options for proto=fd
[  205.421329][T24346] netlink: 'syz.5.2282': attribute type 13 has an invalid length.
[  205.797410][T24377] netlink: 'syz.5.2286': attribute type 66 has an invalid length.
[  205.846351][T24381] 9pnet_fd: Insufficient options for proto=fd
[  205.931873][T24386] xt_CT: You must specify a L4 protocol and not use inversions on it
[  205.958311][T24386] __nla_validate_parse: 5 callbacks suppressed
[  205.958327][T24386] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2288'.
[  206.008332][T24390] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2289'.
[  206.052220][T24394] loop5: detected capacity change from 0 to 512
[  206.061716][ T3320] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  206.085168][T24394] EXT4-fs (loop5): too many log groups per flexible block group
[  206.112893][T24394] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  206.120440][T24394] EXT4-fs (loop5): mount failed
[  206.127013][T24404] FAULT_INJECTION: forcing a failure.
[  206.127013][T24404] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.141750][T24404] CPU: 1 UID: 0 PID: 24404 Comm: syz.4.2290 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  206.141779][T24404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  206.141792][T24404] Call Trace:
[  206.141799][T24404]  <TASK>
[  206.141806][T24404]  __dump_stack+0x1d/0x30
[  206.141864][T24404]  dump_stack_lvl+0xe8/0x140
[  206.141888][T24404]  dump_stack+0x15/0x1b
[  206.141909][T24404]  should_fail_ex+0x265/0x280
[  206.141936][T24404]  should_fail+0xb/0x20
[  206.142015][T24404]  should_fail_usercopy+0x1a/0x20
[  206.142043][T24404]  _copy_from_user+0x1c/0xb0
[  206.142072][T24404]  ___sys_sendmsg+0xc1/0x1d0
[  206.142172][T24404]  __x64_sys_sendmsg+0xd4/0x160
[  206.142196][T24404]  x64_sys_call+0x191e/0x3000
[  206.142283][T24404]  do_syscall_64+0xd2/0x200
[  206.142309][T24404]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  206.142345][T24404]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  206.142469][T24404]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.142493][T24404] RIP: 0033:0x7fa9579cf6c9
[  206.142544][T24404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.142567][T24404] RSP: 002b:00007fa956437038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  206.142592][T24404] RAX: ffffffffffffffda RBX: 00007fa957c25fa0 RCX: 00007fa9579cf6c9
[  206.142610][T24404] RDX: 0000000006048004 RSI: 0000200000000040 RDI: 0000000000000003
[  206.142626][T24404] RBP: 00007fa956437090 R08: 0000000000000000 R09: 0000000000000000
[  206.142725][T24404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.142741][T24404] R13: 00007fa957c26038 R14: 00007fa957c25fa0 R15: 00007ffea0868748
[  206.142766][T24404]  </TASK>
[  206.321446][T24394] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2291'.
[  206.378104][T24413] atomic_op ffff88810301ad28 conn xmit_atomic 0000000000000000
[  206.418678][T24402] SELinux:  Context system_u:object_r:pam_console_exec_t:s0 is not valid (left unmapped).
[  206.447664][T24418] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  206.471200][T24462] 9pnet_fd: Insufficient options for proto=fd
[  206.479914][T24462] netlink: 'syz.1.2297': attribute type 13 has an invalid length.
[  206.490059][T24418] bond4 (unregistering): Released all slaves
[  206.627202][T24515] loop2: detected capacity change from 0 to 128
[  206.636454][T24515] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  206.664126][T24462] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  206.674471][T24462] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  206.734303][T24517] bond4: entered allmulticast mode
[  206.740320][T24517] 8021q: adding VLAN 0 to HW filter on device bond4
[  206.748841][   T37] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.760641][   T37] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.773418][   T37] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.810742][T24565] loop0: detected capacity change from 0 to 512
[  206.820879][   T37] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.825339][T24569] loop4: detected capacity change from 0 to 512
[  206.840753][T24565] EXT4-fs: Ignoring removed bh option
[  206.851424][T24565] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.872210][T24569] EXT4-fs (loop4): too many log groups per flexible block group
[  206.891869][T24569] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  206.899302][T24569] EXT4-fs (loop4): mount failed
[  206.907811][T24569] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2306'.
[  207.042445][T24568] loop1: detected capacity change from 0 to 32768
[  207.054499][T24593] FAULT_INJECTION: forcing a failure.
[  207.054499][T24593] name failslab, interval 1, probability 0, space 0, times 0
[  207.067798][T24593] CPU: 0 UID: 0 PID: 24593 Comm: syz.4.2311 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  207.067828][T24593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  207.067840][T24593] Call Trace:
[  207.067916][T24593]  <TASK>
[  207.067927][T24593]  __dump_stack+0x1d/0x30
[  207.067955][T24593]  dump_stack_lvl+0xe8/0x140
[  207.067978][T24593]  dump_stack+0x15/0x1b
[  207.068015][T24593]  should_fail_ex+0x265/0x280
[  207.068035][T24593]  ? alloc_pipe_info+0xae/0x350
[  207.068064][T24593]  should_failslab+0x8c/0xb0
[  207.068115][T24593]  __kmalloc_cache_noprof+0x4c/0x4a0
[  207.068155][T24593]  alloc_pipe_info+0xae/0x350
[  207.068181][T24593]  splice_direct_to_actor+0x592/0x680
[  207.068241][T24593]  ? kstrtouint_from_user+0x9f/0xf0
[  207.068265][T24593]  ? __pfx_direct_splice_actor+0x10/0x10
[  207.068364][T24593]  ? __rcu_read_unlock+0x4f/0x70
[  207.068399][T24593]  ? get_pid_task+0x96/0xd0
[  207.068429][T24593]  ? avc_policy_seqno+0x15/0x30
[  207.068447][T24593]  ? selinux_file_permission+0x1e4/0x320
[  207.068478][T24593]  do_splice_direct+0xda/0x150
[  207.068534][T24593]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  207.068621][T24593]  do_sendfile+0x380/0x650
[  207.068666][T24593]  __x64_sys_sendfile64+0x105/0x150
[  207.068778][T24593]  x64_sys_call+0x2bb4/0x3000
[  207.068805][T24593]  do_syscall_64+0xd2/0x200
[  207.068829][T24593]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  207.068947][T24593]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  207.069015][T24593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.069043][T24593] RIP: 0033:0x7fa9579cf6c9
[  207.069062][T24593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.069145][T24593] RSP: 002b:00007fa956437038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  207.069166][T24593] RAX: ffffffffffffffda RBX: 00007fa957c25fa0 RCX: 00007fa9579cf6c9
[  207.069178][T24593] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008
[  207.069324][T24593] RBP: 00007fa956437090 R08: 0000000000000000 R09: 0000000000000000
[  207.069341][T24593] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  207.069357][T24593] R13: 00007fa957c26038 R14: 00007fa957c25fa0 R15: 00007ffea0868748
[  207.069380][T24593]  </TASK>
[  207.078537][T24597] 9pnet_fd: Insufficient options for proto=fd
[  207.171518][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.207901][T24568]  loop1: p1 p2 p3 < > p4 < p5 p6 >
[  207.315691][T24568] loop1: p1 start 460800 is beyond EOD, truncated
[  207.322277][T24568] loop1: p2 size 83886080 extends beyond EOD, truncated
[  207.333653][T24568] loop1: p5 start 460800 is beyond EOD, truncated
[  207.340160][T24568] loop1: p6 size 83886080 extends beyond EOD, truncated
[  207.371207][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  207.415476][T24638] netlink: 'syz.2.2314': attribute type 10 has an invalid length.
[  207.426714][T24638] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2314'.
[  207.490933][T24644] loop2: detected capacity change from 0 to 1024
[  207.498997][T24644] EXT4-fs: inline encryption not supported
[  207.512432][T24644] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.557067][T24651] bond5: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  207.569284][T24692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2315'.
[  207.600746][T24651] bond5 (unregistering): Released all slaves
[  207.645522][T24695] loop1: detected capacity change from 0 to 512
[  207.654107][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.670742][T24695] EXT4-fs (loop1): too many log groups per flexible block group
[  207.681246][T24695] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  207.700751][T24695] EXT4-fs (loop1): mount failed
[  207.721353][T24695] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2318'.
[  207.791933][T24746] FAULT_INJECTION: forcing a failure.
[  207.791933][T24746] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.805583][T24746] CPU: 0 UID: 0 PID: 24746 Comm: syz.5.2322 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  207.805611][T24746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  207.805759][T24746] Call Trace:
[  207.805766][T24746]  <TASK>
[  207.805776][T24746]  __dump_stack+0x1d/0x30
[  207.805805][T24746]  dump_stack_lvl+0xe8/0x140
[  207.805826][T24746]  dump_stack+0x15/0x1b
[  207.805844][T24746]  should_fail_ex+0x265/0x280
[  207.805932][T24746]  should_fail+0xb/0x20
[  207.805951][T24746]  should_fail_usercopy+0x1a/0x20
[  207.805979][T24746]  _copy_to_user+0x20/0xa0
[  207.806087][T24746]  simple_read_from_buffer+0xb5/0x130
[  207.806113][T24746]  proc_fail_nth_read+0x10e/0x150
[  207.806155][T24746]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  207.806217][T24746]  vfs_read+0x1a8/0x770
[  207.806264][T24746]  ? __rcu_read_unlock+0x4f/0x70
[  207.806352][T24746]  ? __fget_files+0x184/0x1c0
[  207.806392][T24746]  ksys_read+0xda/0x1a0
[  207.806447][T24746]  __x64_sys_read+0x40/0x50
[  207.806496][T24746]  x64_sys_call+0x27c0/0x3000
[  207.806519][T24746]  do_syscall_64+0xd2/0x200
[  207.806541][T24746]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  207.806670][T24746]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  207.806708][T24746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.806736][T24746] RIP: 0033:0x7fdb8d44e0dc
[  207.806756][T24746] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  207.806808][T24746] RSP: 002b:00007fdb8beaf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  207.806832][T24746] RAX: ffffffffffffffda RBX: 00007fdb8d6a5fa0 RCX: 00007fdb8d44e0dc
[  207.806849][T24746] RDX: 000000000000000f RSI: 00007fdb8beaf0a0 RDI: 0000000000000003
[  207.806862][T24746] RBP: 00007fdb8beaf090 R08: 0000000000000000 R09: 0000000000000000
[  207.806949][T24746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.806961][T24746] R13: 00007fdb8d6a6038 R14: 00007fdb8d6a5fa0 R15: 00007ffe593cd848
[  207.806979][T24746]  </TASK>
[  208.203398][T24777] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2326'.
[  208.410013][T24815] loop2: detected capacity change from 0 to 512
[  208.424661][T24815] EXT4-fs: Ignoring removed bh option
[  209.357419][T24815] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.508984][T24850] loop5: detected capacity change from 0 to 512
[  209.524200][T24876] loop1: detected capacity change from 0 to 512
[  209.532561][T24876] EXT4-fs: Ignoring removed bh option
[  209.538522][   T29] kauditd_printk_skb: 342 callbacks suppressed
[  209.538539][   T29] audit: type=1400 audit(211.669:17537): avc:  denied  { setopt } for  pid=24814 comm="syz.2.2331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  209.541680][T24850] EXT4-fs (loop5): too many log groups per flexible block group
[  209.571422][T24876] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.578245][T24850] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  209.600930][T24850] EXT4-fs (loop5): mount failed
[  209.612174][   T29] audit: type=1400 audit(211.743:17538): avc:  denied  { write } for  pid=24874 comm="syz.1.2333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  209.667159][T24850] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2332'.
[  209.865045][   T29] audit: type=1400 audit(211.984:17539): avc:  denied  { create } for  pid=24899 comm="syz.5.2339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  209.884825][   T29] audit: type=1400 audit(212.005:17540): avc:  denied  { write } for  pid=24899 comm="syz.5.2339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  209.910600][T24905] loop2: detected capacity change from 0 to 512
[  209.932817][T24905] EXT4-fs: Ignoring removed bh option
[  209.960478][T24908] loop5: detected capacity change from 0 to 512
[  209.983396][T24908] EXT4-fs: Ignoring removed bh option
[  209.989145][   T29] audit: type=1400 audit(212.047:17541): avc:  denied  { ioctl } for  pid=24899 comm="syz.5.2339" path="socket:[30785]" dev="sockfs" ino=30785 ioctlcmd=0xf509 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  210.014402][   T29] audit: type=1400 audit(212.100:17542): avc:  denied  { create } for  pid=24907 comm="syz.5.2340" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  210.049882][T24908] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  210.059078][T24908] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  210.124895][T24908] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  210.142749][T24908] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e002e01c, mo2=0006]
[  210.159414][T24908] System zones: 0-2, 18-18, 34-35
[  210.224322][T24918] loop1: detected capacity change from 0 to 256
[  210.233765][T24919] loop0: detected capacity change from 0 to 256
[  210.273474][T24927] loop2: detected capacity change from 0 to 512
[  210.283775][   T29] audit: type=1400 audit(212.446:17543): avc:  denied  { mount } for  pid=24895 comm="syz.1.2335" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  210.336528][T24927] EXT4-fs: Ignoring removed bh option
[  210.347984][T24929] loop5: detected capacity change from 0 to 512
[  210.354746][T24927] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  210.363798][T24927] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  210.378567][T24929] EXT4-fs: Ignoring removed bh option
[  210.480287][T24927] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  210.521064][T24927] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e002e01c, mo2=0006]
[  210.535912][T24927] System zones: 0-2, 18-18, 34-35
[  210.561541][T24927] FAULT_INJECTION: forcing a failure.
[  210.561541][T24927] name failslab, interval 1, probability 0, space 0, times 0
[  210.575013][T24927] CPU: 1 UID: 0 PID: 24927 Comm: syz.2.2341 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  210.575043][T24927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  210.575061][T24927] Call Trace:
[  210.575070][T24927]  <TASK>
[  210.575081][T24927]  __dump_stack+0x1d/0x30
[  210.575113][T24927]  dump_stack_lvl+0xe8/0x140
[  210.575151][T24927]  dump_stack+0x15/0x1b
[  210.575174][T24927]  should_fail_ex+0x265/0x280
[  210.575264][T24927]  should_failslab+0x8c/0xb0
[  210.575300][T24927]  kmem_cache_alloc_noprof+0x50/0x480
[  210.575332][T24927]  ? getname_flags+0x80/0x3b0
[  210.575369][T24927]  getname_flags+0x80/0x3b0
[  210.575408][T24927]  user_path_at+0x28/0x130
[  210.575431][T24927]  __x64_sys_umount+0x85/0xe0
[  210.575464][T24927]  x64_sys_call+0xdd2/0x3000
[  210.575573][T24927]  do_syscall_64+0xd2/0x200
[  210.575603][T24927]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  210.575637][T24927]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  210.575796][T24927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.575914][T24927] RIP: 0033:0x7fcdc50df6c9
[  210.575929][T24927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.575948][T24927] RSP: 002b:00007fcdc3b47038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  210.575974][T24927] RAX: ffffffffffffffda RBX: 00007fcdc5335fa0 RCX: 00007fcdc50df6c9
[  210.575990][T24927] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000200000000000
[  210.576012][T24927] RBP: 00007fcdc3b47090 R08: 0000000000000000 R09: 0000000000000000
[  210.576066][T24927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  210.576096][T24927] R13: 00007fcdc5336038 R14: 00007fcdc5335fa0 R15: 00007ffc7545a368
[  210.576123][T24927]  </TASK>
[  210.827887][   T29] audit: type=1326 audit(213.013:17544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="syz.5.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  210.851096][   T29] audit: type=1326 audit(213.013:17545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="syz.5.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  210.885297][T24943] SELinux:  Context system_u:object_r:mouse_device_t:s0 is not valid (left unmapped).
[  210.940370][   T29] audit: type=1326 audit(213.066:17546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24941 comm="syz.5.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  211.003699][T24952] atomic_op ffff8881037f9d28 conn xmit_atomic 0000000000000000
[  211.196485][T24982] loop4: detected capacity change from 0 to 128
[  211.815125][T24990] loop5: detected capacity change from 0 to 128
[  212.089390][T24998] loop4: detected capacity change from 0 to 256
[  212.623540][T25003] loop2: detected capacity change from 0 to 512
[  212.641585][T25003] EXT4-fs: Ignoring removed bh option
[  212.956272][T25021] loop4: detected capacity change from 0 to 1024
[  213.049199][T25014] batman_adv: batadv0: Adding interface: macsec1
[  213.055617][T25014] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  213.081096][T25014] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  213.091559][T25014] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.117232][T25014] batman_adv: batadv0: Interface activated: macsec1
[  213.191828][T25040] loop1: detected capacity change from 0 to 128
[  213.239032][T25046] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  213.246188][T25050] loop4: detected capacity change from 0 to 128
[  213.247911][T25046] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  213.281519][T25056] loop0: detected capacity change from 0 to 128
[  213.830522][T25087] loop5: detected capacity change from 0 to 1024
[  213.837503][T25087] EXT4-fs: inline encryption not supported
[  213.933102][T25101] loop9: detected capacity change from 0 to 7
[  213.939494][T25099] loop2: detected capacity change from 0 to 512
[  213.939868][T25101] Buffer I/O error on dev loop9, logical block 0, async page read
[  213.953998][T25101] Buffer I/O error on dev loop9, logical block 0, async page read
[  213.956974][T25099] EXT4-fs (loop2): too many log groups per flexible block group
[  213.962127][T25101]  loop9: unable to read partition table
[  213.969882][T25099] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  213.976189][T25101] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  213.976189][T25101] 
) failed (rc=-5)
[  213.982728][T25099] EXT4-fs (loop2): mount failed
[  214.011293][T25099] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2376'.
[  214.098154][T25107] xt_recent: Unsupported userspace flags (000000b1)
[  214.111148][T25136] loop0: detected capacity change from 0 to 512
[  214.221056][T25136] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  214.251376][T25136] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.2382: bg 0: block 104: invalid block bitmap
[  214.270010][T25144] loop1: detected capacity change from 0 to 256
[  214.289247][T25136] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  214.305978][T25136] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2382: invalid indirect mapped block 1 (level 1)
[  214.321771][T25136] EXT4-fs (loop0): 1 truncate cleaned up
[  214.350358][   T29] kauditd_printk_skb: 356 callbacks suppressed
[  214.350378][   T29] audit: type=1326 audit(216.718:17903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25167 comm="syz.5.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  214.375224][T25170] loop5: detected capacity change from 0 to 512
[  214.410364][T25174] netlink: 332 bytes leftover after parsing attributes in process `syz.2.2389'.
[  214.420931][T25170] EXT4-fs: Ignoring removed bh option
[  214.427503][   T29] audit: type=1326 audit(216.718:17904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25167 comm="syz.5.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  214.450686][   T29] audit: type=1326 audit(216.718:17905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25167 comm="syz.5.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  214.474657][   T29] audit: type=1326 audit(216.718:17906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25167 comm="syz.5.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  214.497816][   T29] audit: type=1326 audit(216.718:17907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25167 comm="syz.5.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  214.499233][T25178] loop4: detected capacity change from 0 to 256
[  214.521965][   T29] audit: type=1326 audit(216.718:17908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25167 comm="syz.5.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  214.552414][   T29] audit: type=1326 audit(216.718:17909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25167 comm="syz.5.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  214.576293][   T29] audit: type=1326 audit(216.718:17910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25167 comm="syz.5.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  214.600174][   T29] audit: type=1326 audit(216.718:17911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25167 comm="syz.5.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  214.623840][   T29] audit: type=1400 audit(216.770:17912): avc:  denied  { map } for  pid=25173 comm="syz.2.2389" path="socket:[31086]" dev="sockfs" ino=31086 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  214.708038][T25192] loop5: detected capacity change from 0 to 128
[  215.291997][T25230] 9pnet_fd: Insufficient options for proto=fd
[  215.303065][T25230] netlink: 'syz.0.2393': attribute type 13 has an invalid length.
[  215.564233][T19323] page_pool_release_retry() stalled pool shutdown: id 96, 1 inflight 60 sec
[  215.581587][T25234] netlink: 68 bytes leftover after parsing attributes in process `syz.5.2394'.
[  215.727005][T25238] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2395'.
[  216.076729][T25248] loop1: detected capacity change from 0 to 2048
[  216.153298][T25253] 9pnet_fd: Insufficient options for proto=fd
[  216.200661][T25253] netlink: 'syz.0.2397': attribute type 13 has an invalid length.
[  216.460477][T25264] bond1: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  216.472369][T25264] bond1 (unregistering): Released all slaves
[  216.933420][T25341] netlink: 324 bytes leftover after parsing attributes in process `syz.2.2404'.
[  216.964894][T25339] loop5: detected capacity change from 0 to 256
[  217.480058][T25377] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2407'.
[  217.728964][ T3425] page_pool_release_retry() stalled pool shutdown: id 99, 1 inflight 60 sec
[  218.074494][T25383] loop5: detected capacity change from 0 to 512
[  218.111338][T25383] EXT4-fs: Ignoring removed bh option
[  218.242523][T25391] loop2: detected capacity change from 0 to 512
[  218.281439][T25391] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  218.320318][T25391] EXT4-fs (loop2): invalid journal inode
[  218.352764][T25391] EXT4-fs (loop2): can't get journal size
[  218.363641][T25391] EXT4-fs (loop2): 1 truncate cleaned up
[  218.387202][T25404] netlink: 'syz.5.2415': attribute type 10 has an invalid length.
[  218.433199][T25404] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2415'.
[  218.519402][T25408] netlink: 68 bytes leftover after parsing attributes in process `syz.5.2416'.
[  218.790418][T25442] loop1: detected capacity change from 0 to 512
[  218.856671][T25442] EXT4-fs (loop1): too many log groups per flexible block group
[  218.866250][T25442] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  218.883466][T25442] EXT4-fs (loop1): mount failed
[  218.929003][T25442] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2420'.
[  219.026823][T25450] xt_CT: You must specify a L4 protocol and not use inversions on it
[  219.079304][T25450] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2421'.
[  219.281709][T25461] loop4: detected capacity change from 0 to 1024
[  219.298780][T25461] EXT4-fs: inline encryption not supported
[  219.852988][T25516] loop4: detected capacity change from 0 to 512
[  219.910765][T25516] EXT4-fs: Ignoring removed bh option
[  220.020591][T25524] loop1: detected capacity change from 0 to 128
[  220.175052][T25533] loop0: detected capacity change from 0 to 512
[  220.182178][T25533] EXT4-fs: Ignoring removed bh option
[  220.236957][T25544] 9pnet_fd: Insufficient options for proto=fd
[  220.244278][T25544] netlink: 'syz.0.2432': attribute type 13 has an invalid length.
[  220.254235][T25546] netlink: 'syz.4.2431': attribute type 13 has an invalid length.
[  220.286055][T25548] netlink: 'syz.0.2433': attribute type 10 has an invalid length.
[  220.294547][T25548] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2433'.
[  220.311776][   T29] kauditd_printk_skb: 94 callbacks suppressed
[  220.311790][   T29] audit: type=1326 audit(222.975:18007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.355918][T25550] atomic_op ffff88812b100128 conn xmit_atomic 0000000000000000
[  220.366145][   T29] audit: type=1326 audit(222.996:18008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.390012][   T29] audit: type=1326 audit(222.996:18009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.413779][   T29] audit: type=1326 audit(222.996:18010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.437200][   T29] audit: type=1326 audit(222.996:18011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.460632][   T29] audit: type=1326 audit(222.996:18012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.484070][   T29] audit: type=1326 audit(222.996:18013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.507592][   T29] audit: type=1326 audit(222.996:18014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.530931][   T29] audit: type=1326 audit(222.996:18015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.555046][   T29] audit: type=1326 audit(222.996:18016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25549 comm="syz.4.2434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9579cf6c9 code=0x7ffc0000
[  220.626979][T25562] loop0: detected capacity change from 0 to 512
[  220.638293][T25568] loop4: detected capacity change from 0 to 512
[  220.647810][T25562] EXT4-fs (loop0): orphan cleanup on readonly fs
[  220.649182][T25570] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  220.654228][T25562] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[  220.658503][T25568] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  220.665498][T25562] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, 
[  220.673901][T25568] EXT4-fs (loop4): invalid journal inode
[  220.681316][T25562] block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  220.689726][T25568] EXT4-fs (loop4): can't get journal size
[  220.698258][T25570] bond4 (unregistering): Released all slaves
[  220.704645][T25562] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.2438: attempt to clear invalid blocks 2 len 1
[  220.723325][T25568] EXT4-fs (loop4): 1 truncate cleaned up
[  220.729218][T25562] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.2438: invalid indirect mapped block 1819239214 (level 0)
[  220.748850][T25562] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.2438: invalid indirect mapped block 1819239214 (level 1)
[  220.763354][T25562] EXT4-fs (loop0): 1 truncate cleaned up
[  220.793734][T25641] loop5: detected capacity change from 0 to 512
[  220.801072][T25641] EXT4-fs: Ignoring removed bh option
[  220.802403][T25562] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  220.825226][T25562] EXT4-fs error (device loop0): __ext4_remount:6748: comm syz.0.2438: Abort forced by user
[  220.835862][T25562] EXT4-fs (loop0): Remounting filesystem read-only
[  220.842449][T25562] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  220.884623][T25652] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2446'.
[  221.033481][T25670] netlink: 68 bytes leftover after parsing attributes in process `syz.5.2450'.
[  221.110761][T25674] netlink: 76 bytes leftover after parsing attributes in process `wg1'.
[  221.118890][T25679] bond4: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  221.149441][T25679] bond4 (unregistering): Released all slaves
[  221.169010][T25686] loop0: detected capacity change from 0 to 128
[  221.188592][T25777] 9pnet_fd: Insufficient options for proto=fd
[  221.195555][T25777] netlink: 'syz.5.2459': attribute type 13 has an invalid length.
[  221.204091][T25777] batman_adv: batadv0: Interface deactivated: macsec1
[  221.215999][T25779] loop4: detected capacity change from 0 to 512
[  221.223001][T25779] EXT4-fs: Ignoring removed bh option
[  221.237158][T25674] syzkaller0: entered allmulticast mode
[  221.243382][T25674] syzkaller0: entered promiscuous mode
[  221.272850][T25674] syzkaller0 (unregistering): left allmulticast mode
[  221.280027][T25674] syzkaller0 (unregistering): left promiscuous mode
[  221.339104][T25793] bond1: entered allmulticast mode
[  221.344697][T25793] 8021q: adding VLAN 0 to HW filter on device bond1
[  221.353770][T25788] loop2: detected capacity change from 0 to 256
[  221.403740][T25836] loop5: detected capacity change from 0 to 512
[  221.421164][T25836] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  221.434291][T25836] EXT4-fs (loop5): invalid journal inode
[  221.440034][T25836] EXT4-fs (loop5): can't get journal size
[  221.447668][T25836] EXT4-fs (loop5): 1 truncate cleaned up
[  221.566416][T25885] loop4: detected capacity change from 0 to 128
[  221.645305][T25892] loop5: detected capacity change from 0 to 128
[  221.673331][T25896] bond5: entered allmulticast mode
[  221.678712][T25896] 8021q: adding VLAN 0 to HW filter on device bond5
[  221.749308][T25933] netlink: 324 bytes leftover after parsing attributes in process `syz.0.2477'.
[  221.805467][T25938] loop0: detected capacity change from 0 to 1024
[  222.004505][T25969] loop0: detected capacity change from 0 to 512
[  222.013541][T25969] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  222.023631][T25969] EXT4-fs (loop0): invalid journal inode
[  222.029680][T25969] EXT4-fs (loop0): can't get journal size
[  222.039438][T25969] EXT4-fs (loop0): 1 truncate cleaned up
[  222.614847][T25990] bond5: entered allmulticast mode
[  222.627673][T25990] 8021q: adding VLAN 0 to HW filter on device bond5
[  222.634513][T25995] loop5: detected capacity change from 0 to 1024
[  222.654315][T26033] batman_adv: batadv0: Adding interface: macsec0
[  222.660753][T26033] batman_adv: batadv0: The MTU of interface macsec0 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  222.687222][T26033] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  222.697850][T26033] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.708344][T26033] batman_adv: batadv0: Interface activated: macsec0
[  222.795530][T26051] loop4: detected capacity change from 0 to 2048
[  222.824564][T26055] loop5: detected capacity change from 0 to 128
[  222.866235][T26064] netlink: 'syz.2.2495': attribute type 1 has an invalid length.
[  222.874466][T26064] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2495'.
[  222.886388][T26066] loop4: detected capacity change from 0 to 128
[  222.972625][T26077] loop1: detected capacity change from 0 to 512
[  222.986508][T26077] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  222.995826][T26077] EXT4-fs (loop1): invalid journal inode
[  223.001669][T26077] EXT4-fs (loop1): can't get journal size
[  223.008629][T26077] EXT4-fs (loop1): 1 truncate cleaned up
[  223.657049][T26096] netlink: 'syz.5.2500': attribute type 10 has an invalid length.
[  223.671881][ T3425] page_pool_release_retry() stalled pool shutdown: id 111, 1 inflight 60 sec
[  223.689993][T26096] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2500'.
[  223.746730][T26102] loop4: detected capacity change from 0 to 2048
[  223.879555][T26115] loop5: detected capacity change from 0 to 512
[  224.117945][T26115] EXT4-fs: Ignoring removed bh option
[  224.990526][T26115] EXT4-fs mount: 50 callbacks suppressed
[  224.990545][T26115] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.117453][T26152] xt_CT: You must specify a L4 protocol and not use inversions on it
[  225.136216][T17332] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.209648][T26156] loop0: detected capacity change from 0 to 512
[  225.262224][T26152] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2509'.
[  225.273870][T26167] loop5: detected capacity change from 0 to 128
[  225.286309][T26156] EXT4-fs (loop0): too many log groups per flexible block group
[  225.300702][T26156] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  225.307663][T26156] EXT4-fs (loop0): mount failed
[  225.327295][T26174] netlink: 'syz.4.2514': attribute type 10 has an invalid length.
[  225.341230][T26156] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2511'.
[  225.354100][T26174] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2514'.
[  225.479668][   T29] kauditd_printk_skb: 213 callbacks suppressed
[  225.479687][   T29] audit: type=1326 audit(228.392:18230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.509277][   T29] audit: type=1326 audit(228.403:18231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.532939][   T29] audit: type=1326 audit(228.403:18232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.556721][   T29] audit: type=1326 audit(228.403:18233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.580122][   T29] audit: type=1326 audit(228.403:18234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.603576][   T29] audit: type=1326 audit(228.403:18235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.627483][   T29] audit: type=1326 audit(228.403:18236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.640918][T26199] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2523'.
[  225.650786][   T29] audit: type=1326 audit(228.403:18237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.684200][   T29] audit: type=1326 audit(228.403:18238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.707992][   T29] audit: type=1326 audit(228.403:18239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26195 comm="syz.1.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd1f6df6c9 code=0x7ffc0000
[  225.864285][T26211] loop1: detected capacity change from 0 to 512
[  225.889059][T26211] EXT4-fs: Ignoring removed bh option
[  225.936009][T26211] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.972180][T26218] netlink: 'syz.0.2530': attribute type 10 has an invalid length.
[  225.985793][T26218] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2530'.
[  226.008734][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.045826][T26220] 9pnet_fd: Insufficient options for proto=fd
[  226.053557][T26220] netlink: 'syz.0.2532': attribute type 13 has an invalid length.
[  226.065629][T26220] batman_adv: batadv0: Interface deactivated: macsec0
[  226.117383][T26232] netlink: 'syz.5.2534': attribute type 13 has an invalid length.
[  226.158382][T26243] bond6: entered allmulticast mode
[  226.164722][T26243] 8021q: adding VLAN 0 to HW filter on device bond6
[  226.176053][T26247] netlink: 68 bytes leftover after parsing attributes in process `syz.5.2536'.
[  226.252808][T26296] loop2: detected capacity change from 0 to 512
[  226.301569][T26296] EXT4-fs: Ignoring removed bh option
[  226.345636][T26304] loop5: detected capacity change from 0 to 512
[  226.368250][T26296] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.382580][T26304] EXT4-fs: Ignoring removed bh option
[  226.396626][T26308] netlink: 'syz.1.2542': attribute type 10 has an invalid length.
[  226.414751][T26308] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2542'.
[  226.432068][T26304] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.469851][T17332] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.539336][T26321] FAULT_INJECTION: forcing a failure.
[  226.539336][T26321] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  226.552874][T26321] CPU: 1 UID: 0 PID: 26321 Comm: syz.1.2545 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  226.552909][T26321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  226.552923][T26321] Call Trace:
[  226.552930][T26321]  <TASK>
[  226.552938][T26321]  __dump_stack+0x1d/0x30
[  226.552964][T26321]  dump_stack_lvl+0xe8/0x140
[  226.553067][T26321]  dump_stack+0x15/0x1b
[  226.553086][T26321]  should_fail_ex+0x265/0x280
[  226.553106][T26321]  should_fail+0xb/0x20
[  226.553143][T26321]  should_fail_usercopy+0x1a/0x20
[  226.553243][T26321]  _copy_from_user+0x1c/0xb0
[  226.553271][T26321]  __sys_sendto+0x19e/0x330
[  226.553369][T26321]  __x64_sys_sendto+0x76/0x90
[  226.553408][T26321]  x64_sys_call+0x2d14/0x3000
[  226.553442][T26321]  do_syscall_64+0xd2/0x200
[  226.553472][T26321]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  226.553567][T26321]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  226.553639][T26321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.553672][T26321] RIP: 0033:0x7efd1f6df6c9
[  226.553768][T26321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.553787][T26321] RSP: 002b:00007efd1e13f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  226.553810][T26321] RAX: ffffffffffffffda RBX: 00007efd1f935fa0 RCX: 00007efd1f6df6c9
[  226.553824][T26321] RDX: 0000000000000048 RSI: 0000200000000080 RDI: 0000000000000003
[  226.553837][T26321] RBP: 00007efd1e13f090 R08: 00002000000000c0 R09: 0000000000000014
[  226.553862][T26321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  226.553878][T26321] R13: 00007efd1f936038 R14: 00007efd1f935fa0 R15: 00007ffd8bb69c48
[  226.553907][T26321]  </TASK>
[  226.795159][T26325] loop5: detected capacity change from 0 to 256
[  226.824693][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.837810][T26330] loop1: detected capacity change from 0 to 2048
[  226.902055][T26341] bond4: entered allmulticast mode
[  226.907644][T26341] 8021q: adding VLAN 0 to HW filter on device bond4
[  226.942165][T26378] loop1: detected capacity change from 0 to 1024
[  226.951948][T26378] EXT4-fs: inline encryption not supported
[  226.978900][T26378] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.989034][T26381] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2551'.
[  227.024717][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.050706][T26391] loop1: detected capacity change from 0 to 1024
[  227.074438][T26391] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.105297][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.110062][T26398] netlink: 'syz.4.2555': attribute type 10 has an invalid length.
[  227.127468][T26398] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2555'.
[  227.146029][T26402] bond5: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4)
[  227.157244][T26402] bond5 (unregistering): Released all slaves
[  227.218453][T26472] netlink: 'syz.1.2558': attribute type 1 has an invalid length.
[  227.226790][T26472] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2558'.
[  227.266702][T26480] loop1: detected capacity change from 0 to 2048
[  227.299050][T26483] bond6: entered allmulticast mode
[  227.305382][T26483] 8021q: adding VLAN 0 to HW filter on device bond6
[  227.363467][T26522] loop5: detected capacity change from 0 to 2048
[  227.381915][T26527] loop4: detected capacity change from 0 to 512
[  227.388893][T26527] EXT4-fs: Ignoring removed bh option
[  227.393100][T26529] loop1: detected capacity change from 0 to 1024
[  227.408459][T26529] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.408677][T26527] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.452096][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.466128][T26539] netlink: 'syz.5.2566': attribute type 13 has an invalid length.
[  227.494524][T26545] netlink: 'syz.5.2567': attribute type 1 has an invalid length.
[  227.516740][T26553] netlink: 'syz.1.2568': attribute type 10 has an invalid length.
[  227.590951][T26563] xt_socket: unknown flags 0x50
[  227.642170][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.766534][T26571] loop1: detected capacity change from 0 to 256
[  227.789079][T26589] loop5: detected capacity change from 0 to 128
[  227.902924][T26607] loop4: detected capacity change from 0 to 2048
[  227.931497][T26609] loop2: detected capacity change from 0 to 256
[  227.980422][T26615] loop4: detected capacity change from 0 to 128
[  228.929810][T19323] page_pool_release_retry() stalled pool shutdown: id 113, 1 inflight 60 sec
[  229.012233][T26700] loop4: detected capacity change from 0 to 1024
[  229.020607][T26700] EXT4-fs: inline encryption not supported
[  229.082419][T26700] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.343090][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.569118][T26718] atomic_op ffff888102fe0d28 conn xmit_atomic 0000000000000000
[  229.589228][T26720] loop1: detected capacity change from 0 to 512
[  229.599516][T26716] loop4: detected capacity change from 0 to 512
[  229.626866][T26720] EXT4-fs (loop1): too many log groups per flexible block group
[  229.635731][T26716] EXT4-fs (loop4): too many log groups per flexible block group
[  229.643530][T26716] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  229.650610][T26720] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  229.650789][T26716] EXT4-fs (loop4): mount failed
[  229.662926][T26720] EXT4-fs (loop1): mount failed
[  229.727173][T26736] loop9: detected capacity change from 0 to 7
[  229.733697][T26736] Buffer I/O error on dev loop9, logical block 0, async page read
[  229.741702][T26736] Buffer I/O error on dev loop9, logical block 0, async page read
[  229.749888][T26736]  loop9: unable to read partition table
[  229.763542][T26738] loop4: detected capacity change from 0 to 1024
[  229.787530][T26736] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  229.787530][T26736] 
) failed (rc=-5)
[  229.788330][T26738] EXT4-fs: inline encryption not supported
[  229.817052][T26743] xt_CT: You must specify a L4 protocol and not use inversions on it
[  229.846235][T26738] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.925487][T26736] xt_recent: Unsupported userspace flags (000000b1)
[  229.944352][T26778] atomic_op ffff88811910b528 conn xmit_atomic 0000000000000000
[  230.014541][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.040521][T26791] loop9: detected capacity change from 0 to 7
[  230.052964][T26791] Buffer I/O error on dev loop9, logical block 0, async page read
[  230.064115][T26789] loop5: detected capacity change from 0 to 128
[  230.076562][T26789] syz.5.2601: attempt to access beyond end of device
[  230.076562][T26789] loop5: rw=2049, sector=138, nr_sectors = 32 limit=128
[  230.091254][T26789] syz.5.2601: attempt to access beyond end of device
[  230.091254][T26789] loop5: rw=2049, sector=186, nr_sectors = 6 limit=128
[  230.106707][T26791] Buffer I/O error on dev loop9, logical block 0, async page read
[  230.114718][T26791]  loop9: unable to read partition table
[  230.115235][T26789] syz.5.2601: attempt to access beyond end of device
[  230.115235][T26789] loop5: rw=2049, sector=190, nr_sectors = 2 limit=128
[  230.121181][T26791] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  230.121181][T26791] 
) failed (rc=-5)
[  230.134066][T26789] Buffer I/O error on dev loop5, logical block 95, lost async page write
[  230.182794][T26789] syz.5.2601: attempt to access beyond end of device
[  230.182794][T26789] loop5: rw=2049, sector=192, nr_sectors = 2 limit=128
[  230.197465][T26789] Buffer I/O error on dev loop5, logical block 96, lost async page write
[  230.224088][T26789] syz.5.2601: attempt to access beyond end of device
[  230.224088][T26789] loop5: rw=2049, sector=194, nr_sectors = 6 limit=128
[  230.264239][T26789] syz.5.2601: attempt to access beyond end of device
[  230.264239][T26789] loop5: rw=2049, sector=198, nr_sectors = 2 limit=128
[  230.265515][T26800] xt_recent: Unsupported userspace flags (000000b1)
[  230.277842][T26789] Buffer I/O error on dev loop5, logical block 99, lost async page write
[  230.292541][T26789] syz.5.2601: attempt to access beyond end of device
[  230.292541][T26789] loop5: rw=2049, sector=200, nr_sectors = 2 limit=128
[  230.306739][T26789] Buffer I/O error on dev loop5, logical block 100, lost async page write
[  230.317246][T26823] xt_recent: Unsupported userspace flags (000000b1)
[  230.349867][T26789] syz.5.2601: attempt to access beyond end of device
[  230.349867][T26789] loop5: rw=2049, sector=218, nr_sectors = 6 limit=128
[  230.383791][T26789] syz.5.2601: attempt to access beyond end of device
[  230.383791][T26789] loop5: rw=2049, sector=222, nr_sectors = 2 limit=128
[  230.397368][T26789] Buffer I/O error on dev loop5, logical block 111, lost async page write
[  230.406183][T26789] syz.5.2601: attempt to access beyond end of device
[  230.406183][T26789] loop5: rw=2049, sector=224, nr_sectors = 2 limit=128
[  230.419756][T26789] Buffer I/O error on dev loop5, logical block 112, lost async page write
[  230.500649][   T29] kauditd_printk_skb: 248 callbacks suppressed
[  230.500669][   T29] audit: type=1326 audit(233.668:18488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26805 comm="syz.1.2606" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x0
[  230.539983][T26861] validate_nla: 4 callbacks suppressed
[  230.540003][T26861] netlink: 'syz.4.2608': attribute type 10 has an invalid length.
[  230.554805][T26861] __nla_validate_parse: 9 callbacks suppressed
[  230.554824][T26861] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2608'.
[  230.579979][   T29] audit: type=1326 audit(233.668:18489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26805 comm="syz.1.2606" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd1f6df6c9 code=0x0
[  230.645908][T26871] loop4: detected capacity change from 0 to 128
[  230.670693][   T29] audit: type=1326 audit(233.846:18490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26805 comm="syz.1.2606" exe="/root/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7efd1f6df6c9 code=0x0
[  230.753021][   T29] audit: type=1326 audit(233.930:18491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26895 comm="syz.5.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  230.816415][   T29] audit: type=1326 audit(233.930:18492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26895 comm="syz.5.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  230.827676][T26900] xt_CT: You must specify a L4 protocol and not use inversions on it
[  230.839573][   T29] audit: type=1326 audit(233.930:18493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26895 comm="syz.5.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  230.872119][   T29] audit: type=1326 audit(233.972:18494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26895 comm="syz.5.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb8d44f6c9 code=0x7ffc0000
[  230.943688][T26900] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2612'.
[  230.987283][   T29] audit: type=1326 audit(234.171:18495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26912 comm="syz.2.2617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdc50df6c9 code=0x7ffc0000
[  230.992295][T26915] loop0: detected capacity change from 0 to 2048
[  231.013185][   T29] audit: type=1326 audit(234.213:18496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26912 comm="syz.2.2617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fcdc50df6c9 code=0x7ffc0000
[  231.041899][   T29] audit: type=1326 audit(234.213:18497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26912 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdc50df6c9 code=0x7ffc0000
[  231.138155][T26923] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2619'.
[  231.193702][T26932] loop2: detected capacity change from 0 to 512
[  231.207770][T26932] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  231.235993][T26932] EXT4-fs (loop2): invalid journal inode
[  231.251943][T26932] EXT4-fs (loop2): can't get journal size
[  231.268463][T26932] EXT4-fs (loop2): 1 truncate cleaned up
[  231.283044][T26932] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.332359][T26939] netlink: 'syz.0.2623': attribute type 1 has an invalid length.
[  231.340190][T26939] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2623'.
[  231.397535][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.470418][T26949] loop0: detected capacity change from 0 to 1024
[  231.509690][T26953] xt_CT: You must specify a L4 protocol and not use inversions on it
[  231.519959][T26957] loop2: detected capacity change from 0 to 1024
[  231.520440][T26957] EXT4-fs: inline encryption not supported
[  231.537920][T26949] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.573917][T26957] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.588056][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.625097][T26962] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2627'.
[  231.658357][T26970] loop9: detected capacity change from 0 to 7
[  231.676552][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.686322][T26970]  loop9: unable to read partition table
[  231.700779][T26970] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  231.700779][T26970] 
) failed (rc=-5)
[  231.768110][T26980] loop2: detected capacity change from 0 to 2048
[  231.786761][T26975] xt_recent: Unsupported userspace flags (000000b1)
[  231.802555][T26989] atomic_op ffff88810301b928 conn xmit_atomic 0000000000000000
[  231.940289][T27013] netlink: 'syz.4.2634': attribute type 10 has an invalid length.
[  231.949764][T27013] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2634'.
[  231.974007][T27019] loop2: detected capacity change from 0 to 512
[  231.997419][T27026] netlink: 'syz.0.2637': attribute type 1 has an invalid length.
[  232.005348][T27026] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2637'.
[  232.046629][T27030] loop4: detected capacity change from 0 to 1024
[  232.062136][T27019] EXT4-fs (loop2): too many log groups per flexible block group
[  232.075060][T27030] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  232.096201][T27019] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  232.120574][T27019] EXT4-fs (loop2): mount failed
[  232.145235][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.205552][T27047] bond4: entered allmulticast mode
[  232.211413][T27047] 8021q: adding VLAN 0 to HW filter on device bond4
[  232.310506][T27090] loop0: detected capacity change from 0 to 512
[  232.366607][T27090] EXT4-fs: Ignoring removed bh option
[  232.374655][T27097] loop2: detected capacity change from 0 to 512
[  232.402385][T27090] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.419067][T27097] EXT4-fs: Ignoring removed bh option
[  232.449088][T27097] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.466545][T27125] xt_CT: You must specify a L4 protocol and not use inversions on it
[  232.498759][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.509405][T27125] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2641'.
[  232.581256][T27136] loop4: detected capacity change from 0 to 512
[  232.589351][T27136] EXT4-fs: Ignoring removed bh option
[  232.601002][T27142] loop5: detected capacity change from 0 to 512
[  232.608598][T27142] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  232.618902][T27142] EXT4-fs (loop5): invalid journal inode
[  232.629861][T27136] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.644546][T27142] EXT4-fs (loop5): can't get journal size
[  232.652457][T27161] netlink: 'syz.2.2652': attribute type 1 has an invalid length.
[  232.660480][T27161] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2652'.
[  232.694359][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.712519][T27142] EXT4-fs (loop5): 1 truncate cleaned up
[  232.713457][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.718903][T27142] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  232.821311][T17332] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.925000][T27213] loop9: detected capacity change from 0 to 7
[  232.932670][T27213]  loop9: unable to read partition table
[  232.938934][T27213] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  232.938934][T27213] 
) failed (rc=-5)
[  233.013607][T27238] xt_recent: Unsupported userspace flags (000000b1)
[  233.134879][T27246] loop0: detected capacity change from 0 to 512
[  233.162381][T27246] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  233.177761][T27246] EXT4-fs (loop0): invalid journal inode
[  233.198708][T27246] EXT4-fs (loop0): can't get journal size
[  233.214904][T27246] EXT4-fs (loop0): 1 truncate cleaned up
[  233.221572][T27250] netlink: 'syz.2.2664': attribute type 10 has an invalid length.
[  233.221959][T27246] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.253294][T27250] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2664'.
[  233.348507][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.576654][T27277] loop0: detected capacity change from 0 to 1024
[  233.620709][T27277] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.706364][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.736034][T27286] loop5: detected capacity change from 0 to 256
[  233.773228][T27288] netlink: 'syz.1.2677': attribute type 1 has an invalid length.
[  233.954810][T27309] loop9: detected capacity change from 0 to 7
[  233.961810][T27309]  loop9: unable to read partition table
[  233.967798][T27309] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  233.967798][T27309] 
) failed (rc=-5)
[  234.039553][T27313] xt_recent: Unsupported userspace flags (000000b1)
[  234.596576][T27357] netlink: 'syz.4.2687': attribute type 13 has an invalid length.
[  234.759965][T27366] xt_CT: You must specify a L4 protocol and not use inversions on it
[  234.883237][T19323] page_pool_release_retry() stalled pool shutdown: id 122, 1 inflight 60 sec
[  234.964651][T27374] loop1: detected capacity change from 0 to 512
[  234.995242][T27374] EXT4-fs (loop1): too many log groups per flexible block group
[  235.004062][T27374] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  235.011315][T27374] EXT4-fs (loop1): mount failed
[  235.048979][T27363] loop4: detected capacity change from 0 to 32768
[  235.074605][T27386] loop2: detected capacity change from 0 to 256
[  235.097535][T27392] loop9: detected capacity change from 0 to 7
[  235.104668][T27363]  loop4: p1 p2 p3 < > p4 < p5 p6 >
[  235.109987][T27363] loop4: p1 start 460800 is beyond EOD, truncated
[  235.116576][T27363] loop4: p2 size 83886080 extends beyond EOD, truncated
[  235.131254][T27392] buffer_io_error: 20 callbacks suppressed
[  235.131273][T27392] Buffer I/O error on dev loop9, logical block 0, async page read
[  235.147268][T27392] Buffer I/O error on dev loop9, logical block 0, async page read
[  235.156304][T27392]  loop9: unable to read partition table
[  235.162805][T27392] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  235.162805][T27392] 
) failed (rc=-5)
[  235.162834][T27363] loop4: p5 start 460800 is beyond EOD, truncated
[  235.162856][T27363] loop4: p6 size 83886080 extends beyond EOD, truncated
[  235.162947][T27392] ==================================================================
[  235.162979][T27392] BUG: KCSAN: data-race in data_alloc / data_push_tail
[  235.163009][T27392] 
[  235.163018][T27392] write to 0xffffffff88e8baa0 of 8 bytes by task 27363 on cpu 0:
[  235.163040][T27392]  data_alloc+0x1d5/0x2e0
[  235.163058][T27392]  prb_reserve+0x807/0xaf0
[  235.163078][T27392]  vprintk_store+0x56d/0x860
[  235.163109][T27392]  vprintk_emit+0x10d/0x580
[  235.163151][T27392]  vprintk_default+0x26/0x30
[  235.163188][T27392]  vprintk+0x1d/0x30
[  235.163224][T27392]  _printk+0x79/0xa0
[  235.163254][T27392]  bdev_disk_changed+0x874/0xcb0
[  235.163287][T27392]  loop_set_status+0x5d2/0x6a0
[  235.163327][T27392]  lo_ioctl+0x671/0x12b0
[  235.163363][T27392]  blkdev_ioctl+0x356/0x440
[  235.163389][T27392]  __se_sys_ioctl+0xce/0x140
[  235.163417][T27392]  __x64_sys_ioctl+0x43/0x50
[  235.163444][T27392]  x64_sys_call+0x1816/0x3000
[  235.163478][T27392]  do_syscall_64+0xd2/0x200
[  235.163502][T27392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.163524][T27392] 
[  235.163533][T27392] read to 0xffffffff88e8baa0 of 8 bytes by task 27392 on cpu 1:
[  235.163557][T27392]  data_push_tail+0xfd/0x420
[  235.163586][T27392]  data_alloc+0xfb/0x2e0
[  235.163605][T27392]  prb_reserve+0x807/0xaf0
[  235.163627][T27392]  vprintk_store+0x56d/0x860
[  235.163656][T27392]  vprintk_emit+0x10d/0x580
[  235.163687][T27392]  vprintk_default+0x26/0x30
[  235.163719][T27392]  vprintk+0x1d/0x30
[  235.163750][T27392]  _printk+0x79/0xa0
[  235.163779][T27392]  loop_reread_partitions+0xab/0xb0
[  235.163818][T27392]  loop_configure+0x981/0x9c0
[  235.163859][T27392]  lo_ioctl+0x5aa/0x12b0
[  235.163896][T27392]  blkdev_ioctl+0x356/0x440
[  235.163921][T27392]  __se_sys_ioctl+0xce/0x140
[  235.163949][T27392]  __x64_sys_ioctl+0x43/0x50
[  235.163971][T27392]  x64_sys_call+0x1816/0x3000
[  235.163994][T27392]  do_syscall_64+0xd2/0x200
[  235.164016][T27392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.164045][T27392] 
[  235.164052][T27392] value changed: 0x00000000ffffecc8 -> 0x00000000fffff8ae
[  235.164069][T27392] 
[  235.164076][T27392] Reported by Kernel Concurrency Sanitizer on:
[  235.164092][T27392] CPU: 1 UID: 0 PID: 27392 Comm: syz.1.2695 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  235.164137][T27392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  235.164173][T27392] ==================================================================
[  235.459842][T27392] xt_recent: Unsupported userspace flags (000000b1)