last executing test programs:

1m14.926400485s ago: executing program 0 (id=1064):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=@newtaction={0xa0, 0x30, 0x1, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_ife={0x5c, 0x1, 0x0, 0x0, {{0x8}, {0x34, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}, @TCA_IFE_METALST={0x14, 0x6, [@IFE_META_PRIO={0x8, 0x3, @val=0xffff}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x4)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000980)=<r2=>0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, @perf_config_ext={0x1, 0x40000000}, 0x0, 0x3, 0xffff, 0x0, 0x3, 0xfffffffe}, r2, 0xffffff8000000002, 0xffffffffffffffff, 0x2)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000002c0)=0x1)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000140)=0x2)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0x2)
readv(r3, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
symlinkat(&(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x22}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x8, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
timer_create(0x3, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
rt_sigaction(0xa, &(0x7f0000000380)={&(0x7f00000004c0)="c4c3b16d47949bf30fbda70000002166460f3a60253af1dbf59366660fd28200000080c481bd6b154b000000d8dd42d3790a2e660f79f4f264d8a964000000f3f0ff83c6c30000", 0x90000005, &(0x7f0000000300)="46fd0f5b4a0dc482650dab00000000c4e23dcf22f3afc44239ac202e0f71e4006767643e660ff6966c000000f30f5f8a85be0000f0f797d62f5c6c", {[0x100]}}, &(0x7f00000005c0)={&(0x7f0000000540)="3e65f3460f1098f0070000c42233f54800f3440f38f6ddc4a221f7c5f3430fbc612cc4c149dd6187c423f15e6b0ab4c421135a620c0f6f1c6ff2af", 0x0, &(0x7f0000000580)="67656436430f1c180f0d0366410f381c4f00f343d846f7c422ad08f1670fae32363e26440f5755cb66430fdb41c0c482053617400f462d00000081"}, 0x8, &(0x7f0000000600))
r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x151801, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(r7, 0x8008551d, &(0x7f0000000100)={0x7425, 0x9, [{0x1, 0x1}, {0xd, 0x1}, {0x8}, {0xe}, {0x8}, {}, {0x3}, {0xd}, {0xe}]})
r8 = getpgrp(r2)
syz_open_procfs(r8, &(0x7f00000009c0)='net/route\x00')

1m14.708956526s ago: executing program 0 (id=1072):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/26], 0x48)
r0 = socket$kcm(0x29, 0x2, 0x0)
close(r0)
r1 = socket$kcm(0x2b, 0x1, 0x0)
close(r1)
socket$kcm(0xa, 0x2, 0x88)
setsockopt$sock_attach_bpf(r0, 0x1, 0xd, &(0x7f0000000080), 0x2cb)
close(r1)
write$UHID_DESTROY(0xffffffffffffffff, &(0x7f0000000080), 0x4)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_GET_VERSION_NUM(r2, 0x2284, &(0x7f0000000080))

1m14.669801886s ago: executing program 0 (id=1085):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000080)="18", 0x10, 0x0, &(0x7f00000000c0)={0x11, 0xc, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f00000001c0)={@private=0xa010100, @rand_addr=0x64010102, r2}, 0xc)

1m14.644219576s ago: executing program 0 (id=1077):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000001000000000000000b000000000c001462726f5d471cf258"], 0x28}, 0x1, 0x0, 0x0, 0x8800}, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000001000000000000000b000000000c001462726f5d471cf258"], 0x28}, 0x1, 0x0, 0x0, 0x8800}, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x400000, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3b, 0x1, 0x0, 0x0, 0x0, 0x89, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3b, 0x1, 0x0, 0x0, 0x0, 0x89, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000008f1a0a1b5ff9a617000085000000070000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="2100000000000000000000000000100000040000", @ANYRES32, @ANYBLOB="0200"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000020000000000000000000000020000000000000000bda8a68d72786ee0d738b9ada44f328af713caa997b65d33116531537070a4b38aabf74d00f9e5e000dbc9be8cf342a9b3aaaf15eac50026ce4f787fa296b040f0fd0c21e6cd318d106914399183c31850a8a33288a07134263f98f6187755e3a628811978509747b658e5c0ab50e3c0fd0c630220f6261f6b5147f9d636ece841c42c3684ddea7a5442631e3236fb2a1df546641906dab5c9563be5d19445de0b28c4e2b1b2afb9407813ee69e0cc7f880039"], 0x50)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) (async)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r5 = socket$packet(0x11, 0x3, 0x300)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x1101088, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00') (async)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r6, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
write$binfmt_aout(r8, &(0x7f0000000080)=ANY=[], 0xff2e) (async)
write$binfmt_aout(r8, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r8, 0x40045431, &(0x7f0000000100)) (async)
ioctl$TCSETS(r8, 0x40045431, &(0x7f0000000100))
syz_open_pts(r8, 0x0) (async)
r9 = syz_open_pts(r8, 0x0)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000340)={0x53, 0xfffffffffffffffe, 0xbc, 0x3, @buffer={0x0, 0x18, &(0x7f0000000200)=""/24}, &(0x7f0000000440)="cef8e9c9041355cea8583944b055c4035b362e0fbc6cbfb7c985162711b4748b8706cda23bd2864ee9623262125478bc7d87907742958e469bb80de10f46532463efea8abf31cac9b4f965f0e44954d4f08df2cd98db6397547c21c222e776dea6a615d7fd87519b166ed6f964c05f5b15cc07b8998f497c8edf502bab521831b4d1c442f2e78a0f3d4e29ed5f2412f6899e128f3274b8c8e0170d52feb2b4815850194a2c04bb255b7515b757dc6ff7c4dbd6db03f42b965b12b91c", &(0x7f0000000500)=""/251, 0x3, 0x10021, 0x0, &(0x7f0000000240)})
ioctl$TCSETS(r8, 0x5402, &(0x7f0000000040)={0x8, 0x9, 0x1, 0x10001, 0xb, "f4d2a4a40637a8ef318e0555648c483d0f3904"})
dup3(r9, r8, 0x0) (async)
dup3(r9, r8, 0x0)

1m14.542741157s ago: executing program 0 (id=1079):
socket(0x1, 0x803, 0x0)
r0 = socket$inet6(0xa, 0x80002, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x80000006}]}, 0x10)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4004, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0x1000}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

1m14.336137798s ago: executing program 0 (id=1086):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1m14.320138288s ago: executing program 32 (id=1086):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

2.406092938s ago: executing program 3 (id=2767):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r2, 0x400, 0x1)
close(r2)

2.322367139s ago: executing program 3 (id=2769):
r0 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001fe, 0x802)
r1 = dup(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x12, 0x2, 0x0, 0x0, 0x0})

2.322091589s ago: executing program 3 (id=2770):
openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x602044, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x1}, 0xe)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x100100, 0x5dd8, 0x3, 0x0, 0x0, 0x8, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x3ff, &(0x7f00000000c0))
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000000000)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
creat(&(0x7f00000005c0)='./file0\x00', 0x900)

1.571951043s ago: executing program 4 (id=2781):
syz_init_net_socket$x25(0x9, 0x5, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000030c0)=@delchain={0x204, 0x65, 0x0, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x38, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0xffffff00, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_UDP_SRC_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}]}}, @filter_kind_options=@f_route={{0xa}, {0x178, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x15c, 0x6, [@m_nat={0x98, 0x0, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @rand_addr, @loopback}}, @TCA_NAT_PARMS={0x28, 0x1, {{}, @rand_addr, @broadcast}}]}, {0x1d, 0x6, "3eaed48f5023f5c36bc9d8619f3e2af20800000000000000a4"}, {0xc}, {0xc}}}, @m_bpf={0xc0, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x95, 0x6, "ca8fd735f4c425bd44291fa86781920ab90ff95c64e3d33704248d0546950f6c3113358c2551981c52f5a6dd8a3891697d8ab8d8f56d15025dc3c339c95c2c879249dbbfa3c3f7576ea41a624c8db9b4a2896e26ced3361e33c793332fc709bb25bcdfc387325cb1fac53056bf925e890e91b8fa05efaa6410eab99154e8cce5e8d896997c4e864da610dadfdc47f7afea"}, {0xc}, {0xc}}}]}]}}]}, 0x204}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCBRADDBR(r1, 0x89a0, &(0x7f0000000040)='hsr0\x00')
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0x66, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa88a800008100000086dd6076cd8a0028000020010000000000000000000000000000fe800000000000000000000000000000000400000000000007"], 0x0)
setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
inotify_init()
r3 = add_key$keyring(&(0x7f0000000300), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000280)="d2207ec8", 0x4, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000380)='asymmetric\x00', &(0x7f0000000500)=@keyring={'key_or_keyring:', r4})
r5 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000340)=@keyring={'key_or_keyring:', r3})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r2}, 0x18)
r6 = dup(0xffffffffffffffff)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x7, 0x7, 0x7f, 0x9, 0x5})
ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000100)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f00000001c0)={0x4, 0x0, 0x0, 0xffff}, 0x8, 0x7, 0x0, 0x0, 0x0, 0x7f, 0x0})
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})
chdir(0x0)
close_range(r7, 0xffffffffffffffff, 0x0)
sendto$inet(r0, &(0x7f0000000000)="220f749bd0a5c96c6991e3b1eebe2f86fc5907ca919ef1bb6ab5c934770e", 0x1e, 0x40, 0x0, 0x0)

1.326555393s ago: executing program 3 (id=2785):
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$pppl2tp_PPPOL2TP_SO_SENDSEQ(0xffffffffffffffff, 0x111, 0x3, 0x0, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0xffffffffffffcc76}, 0x0, 0x4, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmsg(r2, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000940)=[{0x0}], 0x1, &(0x7f0000002f40)=""/229, 0xe5}, 0x0)
sendmsg$tipc(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000380)="b8d3d8e48974aae5039847936746be1d81a34f9b68100dbf05177b2436f9d642df271fd6b9aa6701365ffc723899ad120c5a54b1c64080f64f103ee1de769e5e9dd8cbb6f069a662eaad499c52a16f40cb3a1f6f3d5f8df14c53b2e6b5397f7806b6ff846de37a34c8342b9ac5a51eacf8a09cede8676044eafd3d7935f90698aa2d9c57276322b82e8976f5a4d98066", 0x90}, {&(0x7f0000000440)="15d6ebec9047016968bbeee6dab32d2ebf4636b0c65f6a6b", 0x18}], 0x2}, 0x0)
close(r3)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="a00000001900010000000000000000001c140000fe"], 0xa0}}, 0x0)

1.268361964s ago: executing program 3 (id=2787):
syz_init_net_socket$x25(0x9, 0x5, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000030c0)=@delchain={0x204, 0x65, 0x0, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x38, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0xffffff00, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_UDP_SRC_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}]}}, @filter_kind_options=@f_route={{0xa}, {0x178, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x15c, 0x6, [@m_nat={0x98, 0x0, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @rand_addr, @loopback}}, @TCA_NAT_PARMS={0x28, 0x1, {{}, @rand_addr, @broadcast}}]}, {0x1d, 0x6, "3eaed48f5023f5c36bc9d8619f3e2af20800000000000000a4"}, {0xc}, {0xc}}}, @m_bpf={0xc0, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x95, 0x6, "ca8fd735f4c425bd44291fa86781920ab90ff95c64e3d33704248d0546950f6c3113358c2551981c52f5a6dd8a3891697d8ab8d8f56d15025dc3c339c95c2c879249dbbfa3c3f7576ea41a624c8db9b4a2896e26ced3361e33c793332fc709bb25bcdfc387325cb1fac53056bf925e890e91b8fa05efaa6410eab99154e8cce5e8d896997c4e864da610dadfdc47f7afea"}, {0xc}, {0xc}}}]}]}}]}, 0x204}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCBRADDBR(r1, 0x89a0, &(0x7f0000000040)='hsr0\x00')
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})
chdir(0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

1.223754194s ago: executing program 5 (id=2788):
openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x602044, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x1}, 0xe)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x100100, 0x5dd8, 0x3, 0x0, 0x0, 0x8, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x3ff, &(0x7f00000000c0))
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000000)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
creat(&(0x7f00000005c0)='./file0\x00', 0x900)
sendmsg$IEEE802154_LIST_PHY(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, 0x0, 0x30b}, 0x14}}, 0x40000)

1.151229434s ago: executing program 1 (id=2791):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r2, 0x400, 0x1)
close(r2)

1.121506364s ago: executing program 5 (id=2793):
symlink(&(0x7f0000000880)='.\x00', &(0x7f00000008c0)='./file0\x00')
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
listen(r0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvfrom$unix(r2, &(0x7f00000006c0)=""/244, 0xf4, 0x102, 0x0, 0x0)
r3 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r3, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x0, @remote}, 0x10, 0x0}, 0x3000c041)
r4 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x258, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030ec0007f03e3f70000000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
readlink(&(0x7f0000000000)='./file0\x00', &(0x7f00000004c0)=""/236, 0xec)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140), 0x800, &(0x7f0000000c80)=ANY=[])

1.064201635s ago: executing program 1 (id=2794):
r0 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001fe, 0x802)
r1 = dup(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x12, 0x2, 0x0, 0x0, 0x0})

1.034982955s ago: executing program 1 (id=2796):
ioprio_set$uid(0x3, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000040), 0x1, 0x240400)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x82)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r1}, 0xa)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10, 0x0}, 0x0)
write$binfmt_script(r0, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r3 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802)
writev(r3, &(0x7f0000000000)=[{&(0x7f00000001c0)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x20, 0x1, 0x1, 0x5, 0x0, 0x0, {}, [@CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x2}, @CTA_TUPLE_REPLY={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004090}, 0x48044)
read(r3, &(0x7f0000001540)=""/4096, 0x1000)

1.028339815s ago: executing program 5 (id=2797):
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0), 0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$pppl2tp_PPPOL2TP_SO_SENDSEQ(0xffffffffffffffff, 0x111, 0x3, 0x0, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0xffffffffffffcc76}, 0x0, 0x4, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmsg(r2, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000005c0)=""/151, 0x97}], 0x1}, 0x0)
sendmsg$tipc(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000380)="b8d3d8e48974aae5039847936746be1d81a34f9b68100dbf05177b2436f9d642df271fd6b9aa6701365ffc723899ad120c5a54b1c64080f64f103ee1de769e5e9dd8cbb6f069a662eaad499c52a16f40cb3a1f6f3d5f8df14c53b2e6b5397f7806b6ff846de37a34c8342b9ac5a51eacf8a09cede8676044eafd3d7935f90698aa2d9c57276322b82e8976f5a4d98066", 0x90}, {&(0x7f0000000440)="15d6ebec9047016968bbeee6dab32d2ebf4636b0c65f6a6b", 0x18}], 0x2}, 0x0)
close(r3)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="a00000001900010000000000000000001c140000fe"], 0xa0}}, 0x0)

916.353415ms ago: executing program 2 (id=2798):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000011c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000a50000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0x0, 0x0, 0x4e20, 0x0, 0xa, 0x0, 0x0, 0x29}, {0x0, 0x0, 0x6, 0x0, 0x0, 0x5, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0xb8}}, 0x4004)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000000"], 0xb8}}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[], 0xb8}}, 0x0)
r4 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$notify(r4, 0x402, 0x80000010)
r5 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
fcntl$notify(r5, 0x402, 0x29)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vxcan0\x00'})

915.992616ms ago: executing program 2 (id=2799):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x418484, &(0x7f0000000440), 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000e8ffffff000000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$tun(0xffffffffffffff9c, 0x0, 0x200800, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0xfffffffffffffe34, &(0x7f0000000200)={&(0x7f0000000080)=@getchain={0x24, 0x65, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
setsockopt$MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f0000000200)={0x0, 0x0, 0x4, r6, 0x88a6}, 0xc)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xb, 0x4, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x5d}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x34, r8, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'wg0\x00'}]}, 0x34}}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

915.675855ms ago: executing program 5 (id=2800):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth1_to_bridge\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={@loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, 0x1, 0x0, 0x3, 0x400, 0x0, 0x66, r1})

814.434226ms ago: executing program 2 (id=2801):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000030c0)=@delchain={0x1fc, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x38, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_UDP_SRC_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}]}}, @filter_kind_options=@f_route={{0xa}, {0x170, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x154, 0x6, [@m_nat={0xb0, 0x0, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @rand_addr, @loopback}}, @TCA_NAT_PARMS={0x28, 0x1, {{}, @rand_addr, @broadcast}}]}, {0x35, 0x6, "3eaed48f5023f5c36bc9d8619f3e2af20800000000000000a40bc384135c74eb813bf1cf69dbeaddd76b564e92016d53f6"}, {0xc}, {0xc}}}, @m_bpf={0xa0, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x75, 0x6, "ca8fd735f4c425bd44291fa86781920ab90ff95c64e3d33704248d0546950f6c3113358c2551981c52f5a6dd8a3891697d8ab8d8f56d15025dc3c339c95c2c879249dbbfa3c3f7576ea41a624c8db9b4a2896e26ced3361e33c793332fc709bb25bcdfc387325cb1fac53056bf925e890e"}, {0xc}, {0xc}}}]}]}}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41, 0xa1ff}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

813.518476ms ago: executing program 5 (id=2802):
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x1, 'ipvlan0\x00', {}, 0x8000})
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @none}, &(0x7f0000000080)=0xe, 0x80000)
close_range(r0, r1, 0x0)
r2 = signalfd(r1, &(0x7f00000000c0)={[0x66e]}, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r2, 0x0, 0x45, 0x83, &(0x7f0000000100)="eed1a82bfec8481f028d1cc199539229349e2217658a25492c8b91d248f3aa9473a1be611bc2ff16abfdb68be6b2304779b5d0aff0d9eba312fac53f041522f376721a0126", &(0x7f0000000180)=""/131, 0x46a, 0x0, 0x94, 0xd, &(0x7f0000000240)="04d91b28bcfcf735f4986a9086ffb74abcb6ebb3ea9e40c2e4513bbd759c84301aeb6ef830bf943da4c4f0c80d1d4a5ccea214fb25720f059a4c31d2ecc188e2fbfa07a9d358659ad420f1bc97129266209458dc0552352000e33f3f756bc647744abb1981db703d374a390c383293c82011d2179dd9f82d36f1e8762246dd9416faaccfe5346babfad139d22cb241707e69d198", &(0x7f0000000300)="91eb7f8141f7eb3ed386f05b19", 0x1, 0x0, 0x4}, 0x50) (async)
r3 = dup3(r2, r1, 0x0) (async)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r2)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r3, &(0x7f0000000640)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000600)={&(0x7f0000000440)={0x1b8, r4, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x6c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x6, @mcast2}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x8001, @private0, 0x3}}}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}, @TIPC_NLA_BEARER={0x74, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffa}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6037}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x800}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xfffffff9}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xffff}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xe}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}, @TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe642}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_LINK={0x50, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fff}]}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8}]}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x44051}, 0x1) (async)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f0000000680)={0xa4be, 0x8, 0x7f, 0x4, 0x0, 0xa, 0x3}, 0xc)
fcntl$getownex(r3, 0x10, &(0x7f00000006c0)={0x0, <r5=>0x0})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000740)={r5, r2, 0x0, 0x1, &(0x7f0000000700)='\x00'}, 0x30) (async)
r6 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000780), 0x2, 0x0)
preadv(r6, &(0x7f00000008c0)=[{&(0x7f00000007c0)=""/193, 0xc1}], 0x1, 0x1, 0xc3f4) (async)
socket(0x1, 0x1, 0xf6) (async)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000900)={{0x1, 0x1, 0x18, <r7=>r3}, './file0\x00'}) (async, rerun: 64)
write$P9_RSTAT(r2, &(0x7f0000000940)={0x51, 0x7d, 0x2, {0x0, 0x4a, 0x3, 0x5, {0x40, 0x2, 0x1}, 0x18180000, 0x6, 0x1, 0x9, 0x8, '\\:)*+!@:', 0x5, 'syz0\x00', 0x3, ':,/', 0x7, 'TIPCv2\x00'}}, 0x51) (async, rerun: 64)
r8 = signalfd(r2, &(0x7f00000009c0)={[0x44]}, 0x8)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r8, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x20, 0x140f, 0x1, 0x70bd2d, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x20}, 0x1, 0x0, 0x0, 0xc004}, 0x4004040)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000b40), 0xffffffffffffffff) (rerun: 64)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r9, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x1c, r10, 0x800, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_NETNS_FD={0x8, 0x1d, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c004}, 0x24008010) (async)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c80)={&(0x7f0000000c40)='f2fs_truncate_data_blocks_range\x00', r3}, 0x18)
sendmsg$NFNL_MSG_CTHELPER_GET(r3, &(0x7f0000000d80)={&(0x7f0000000cc0), 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)={0x34, 0x1, 0x9, 0x102, 0x0, 0x0, {0x2}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x2}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, 0x34}, 0x1, 0x0, 0x0, 0x40080c5}, 0x40)
ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000dc0)={'bond_slave_1\x00'}) (async, rerun: 64)
dup2(r3, r2) (rerun: 64)
ioctl$SG_BLKTRACESETUP(r7, 0xc0481273, &(0x7f0000000e00)={'\x00', 0x40, 0x6, 0x3, 0x5, 0x2, r5}) (async, rerun: 64)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000e80)={<r11=>0x0}) (rerun: 64)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r7, 0x40182103, &(0x7f0000000f00)={r11, 0x1, r1, 0xa7})

722.976317ms ago: executing program 2 (id=2803):
openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x602044, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x1}, 0xe)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x100100, 0x5dd8, 0x3, 0x0, 0x0, 0x8, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x3ff, &(0x7f00000000c0))
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000000)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
creat(&(0x7f00000005c0)='./file0\x00', 0x900)
sendmsg$IEEE802154_LIST_PHY(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, 0x0, 0x30b}, 0x14}}, 0x40000)

679.589327ms ago: executing program 5 (id=2804):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x6, 0x6}, 0x0, 0x3, 0xffff, 0x0, 0x0, 0xfffffffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_procfs(0x0, &(0x7f0000006440)='attr\x00')
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x7, 0xb, &(0x7f0000000640)=ANY=[@ANYRES8=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
iopl(0x3)
finit_module(0xffffffffffffffff, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10) (fail_nth: 2)

679.109697ms ago: executing program 1 (id=2805):
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x0, @fd_index=0x8, 0x10, 0x20000000, 0x20004, 0x0, 0x0, {0x1}})
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8002)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = socket$packet(0x11, 0x2, 0x300)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r4, 0xc0481273, 0x0)
ioctl$SG_BLKTRACETEARDOWN(r4, 0x1276, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r5)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
r8 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r9=>0x0})
sendto$packet(r8, &(0x7f0000000080)="18", 0x10, 0x0, &(0x7f00000000c0)={0x11, 0xc, r9, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$inet_mreqn(r7, 0x0, 0x23, &(0x7f00000001c0)={@private=0xa010100, @rand_addr=0x64010102, r9}, 0xc)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x1c}}, 0x0)
r10 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r11}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00'})
ioctl$SCSI_IOCTL_GET_PCI(r1, 0x5393, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r13}, 0x10)
r14 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r14, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00'})

662.244017ms ago: executing program 4 (id=2806):
r0 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001fe, 0x802)
r1 = dup(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x12, 0x2, 0x0, 0x0, 0x0})

644.529267ms ago: executing program 4 (id=2807):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) (async)
r2 = socket(0xa, 0x40000000002, 0x0) (async)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3000008, 0x1010, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0}) (async)
syz_io_uring_submit(r3, r5, &(0x7f0000000080)=@IORING_OP_WRITEV={0x2, 0x44, 0x2004, @fd=r1, 0x1000, &(0x7f0000000040)=[{&(0x7f0000000000)="70be8d1359e58e33", 0x8}, {&(0x7f0000000600)="b612fedf50636799868313dfd6441a4e01a453ddde4b9606e502e50c85a566d5dbaebe935ba433a9039f8b7d558b84f5a3829d488d86f8a353a64ac399fdce2a1bfec891e131dbd0726c6de6d2c318055d354f65315b593cf012be6bab499095952cdc1d163e2593ad978f741ee90a0ecebd454bc62f4ab536d38118d42b262529203665d55f4bffde8bbb5ab91f254c9bc926552541d1", 0x97}], 0x2, 0x2, 0x0, {0x6}}) (async)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000021000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000400000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000000300000000000000ffff0000000000000000000000000000000062726983676530000000000000000000736974300000000000000000000000007465616d300000000000000000000000aaaaaaaaaaaa000000000000aaaaaaaaaabb0000000000000000d8010000d801000010020000636f6d6d656e7400000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000003f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073746174697374696300000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaa000000ffffffff000000001b0000000000000000007465616d5f736c6176655f310000000069726c616e300000000000000000000069726c616e3000e575dd73000000000073797a6b616c6c6572300000000000000180c2000000000000000000f646793b7b3900000000000000007000000070000000a8000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaa000000ffffffff00000000"]}, 0x3c0)

585.152527ms ago: executing program 2 (id=2808):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000030c0)=@delchain={0x164, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x38, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_UDP_SRC_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}]}}, @filter_kind_options=@f_route={{0xa}, {0xd8, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0xbc, 0x6, [@m_bpf={0xb8, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x8d, 0x6, "ca8fd735f4c425bd44291fa86781920ab90ff95c64e3d33704248d0546950f6c3113358c2551981c52f5a6dd8a3891697d8ab8d8f56d15025dc3c339c95c2c879249dbbfa3c3f7576ea41a624c8db9b4a2896e26ced3361e33c793332fc709bb25bcdfc387325cb1fac53056bf925e890e91b8fa05efaa6410eab99154e8cce5e8d896997c4e864da6"}, {0xc}, {0xc}}}]}]}}]}, 0x164}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='net/tcp6\x00')
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x5c, 0x2, 0x1, 0x101, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_LABELS_MASK={0x14, 0x17, [0x99, 0x80000000, 0x52c5, 0x10000]}, @CTA_NAT_SRC={0x34, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0x1c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}]}, @CTA_NAT_V6_MINIP={0x14, 0x4, @private1}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8080}, 0x402c804)
preadv(r0, &(0x7f0000001bc0)=[{&(0x7f0000000640)=""/185, 0xb9}], 0x1, 0x0, 0x0)
r2 = socket(0x10, 0x803, 0x0)
socket$key(0xf, 0x3, 0x2)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

552.989567ms ago: executing program 4 (id=2809):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'ip_vti0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x1c, r1, 0x331, 0x0, 0x0, {0x5}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
getpeername$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, &(0x7f00000000c0)=0x1c) (async)
getpeername$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, &(0x7f00000000c0)=0x1c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000031c0)={[{@errors_remount}, {@noload}, {@bh}, {@noquota}, {@noblock_validity}, {}, {@stripe={'stripe', 0x3d, 0x51}}, {@acl}, {@resgid}, {@quota}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@nojournal_checksum}], [], 0x3d}, 0x1, 0x521, &(0x7f00000007c0)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000031c0)={[{@errors_remount}, {@noload}, {@bh}, {@noquota}, {@noblock_validity}, {}, {@stripe={'stripe', 0x3d, 0x51}}, {@acl}, {@resgid}, {@quota}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@nojournal_checksum}], [], 0x3d}, 0x1, 0x521, &(0x7f00000007c0)="$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")

552.496128ms ago: executing program 1 (id=2810):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000c50000002a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000040000000160a01000000000000000000010000000900010073797a30000000000900020073797a300000000014000380080001400000000008000240000000003c000000180a0101000b000000000000010000000900020073797a30000000000900010073797a30000000001000038004002080080002"], 0xc4}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001a40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f6873720000000058000000160a0101000b000000000000010000000900020073797a32000000000900010073797a30000000002c000380180003801400010076657468305f746f5f687372000000000800024000440000080001"], 0xf8}}, 0x0)
io_setup(0x3ff, &(0x7f0000000500)=<r7=>0x0)
io_submit(r7, 0x2, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, r1, 0x0}])
r8 = eventfd(0x51)
r9 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000180)='.pending_reads\x00', 0x82b00, 0x21)
r10 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2000, 0x0)
io_submit(r7, 0x3, &(0x7f0000000640)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x4, r0, &(0x7f0000000a40)="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", 0x1000, 0xefb2, 0x0, 0x2, r8}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xc0, r0, &(0x7f0000000040)="9512746be873762e160b97e665f071076e375e0be8ec98380ccae245b121f622cac08892125543645df638d28e0e47d46069b86da42411402fd22f2e9a582bd357052aa95c265a8a7c8fefd5c41c201f9fa872b50720634a08c312af920c844c8536eaee61dcc4", 0x67, 0x800, 0x0, 0x1, r9}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x4, r0, &(0x7f0000000540)="2e37e3ae4ad33632c270468413c48a6e523687df1d4e358c3e44b2648ec66d6704c6046adb2779fb45d0a34ceb6de61bbdbda28316a522f42e1d17ef40f767733b2f1d1be3c72533b224383806e8d2c497e804e1c460405c19cf8d9d554695fb44ca60151a80841ab81c4e6f78e35d5928159b105199182713fd1b02d6b81d51725690eb7ec9abbbf906a055994a6680f351433d0333975f5371d7697d0b8e7d5ee8d8976c3a251276d076526de66a0e60964ddaa17356b5bc4fc6e405945fc4e4b8b87a6fea4ddf48936bac247194f05b94aaa2dda4ca85ca6a011dae1124e1d0fc99ab4023f317cbb527f6b760aba3798d22", 0xf3, 0x8, 0x0, 0x0, r10}])
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
write$tun(r9, &(0x7f0000000680)={@val={0x0, 0x8917}, @void, @x25={0x2, 0x3, 0x27, "e00480db56d1825cfa3779674d4362b4e3afbc9f24"}}, 0x1c)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0x8, 0x8, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r12 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r13 = openat$cgroup_devices(r12, &(0x7f0000000080)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r13, &(0x7f0000000100)=ANY=[@ANYBLOB='b *:46'], 0xa)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r11}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r14=>0xffffffffffffffff}, 0x0)
timerfd_settime(r14, 0x0, &(0x7f0000000140)={{0x77359400}}, 0x0)

414.112518ms ago: executing program 4 (id=2811):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x4, [@const={0x0, 0x0, 0x0, 0x2, 0x3}, @func_proto={0x2, 0x0, 0x0, 0x12, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x3}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x44, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="00e5ffff0700000080405fedb1d8a724b04a14f5e18c00"/33, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendto(0xffffffffffffffff, &(0x7f0000000740)="120000001200e7ef007b00000000", 0xe, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x30c}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0xbd4}, {&(0x7f00000007c0)=""/154, 0xc4}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000002c0)={&(0x7f0000000340)=""/169, 0x13000, 0x1800, 0x9, 0x2}, 0x20)
mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r7, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_config_ext={0x2b, 0x1}, 0x112, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5}, 0x0, 0x0, r7, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r4}, 0x10)
getuid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x200a7, 0x20000004})
move_pages(r9, 0x0, 0x0, 0x0, 0x0, 0x0)
fcntl$lock(r8, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r8, 0x26, &(0x7f0000000080))
fcntl$lock(r8, 0x6, &(0x7f0000000000))

413.656768ms ago: executing program 2 (id=2812):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x418484, &(0x7f0000000440), 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000e8ffffff000000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$tun(0xffffffffffffff9c, 0x0, 0x200800, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0xfffffffffffffe34, &(0x7f0000000200)={&(0x7f0000000080)=@getchain={0x24, 0x65, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
setsockopt$MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f0000000200)={0x0, 0x0, 0x4, r6, 0x88a6}, 0xc)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x34, r8, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'wg0\x00'}]}, 0x34}}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

409.652058ms ago: executing program 3 (id=2813):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="500000001000110f0300"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000200012800b00010067656e657665000010000280040006000500080001"], 0xff0e}}, 0x0) (fail_nth: 6)

164.453019ms ago: executing program 1 (id=2814):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, &(0x7f00000001c0), 0x1)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000380)=[@in={0x2, 0x4e22, @rand_addr=0x64010102}], 0x10)
sendto$inet6(r3, &(0x7f0000000080)="e9", 0x1, 0x0, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
write$binfmt_script(r3, &(0x7f0000000300), 0x19ffe)
write$cgroup_int(r2, &(0x7f0000000200), 0xf000)
sendfile(r2, r1, 0x0, 0xf03afffe)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r4)
sendmsg$NFC_CMD_DEP_LINK_UP(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001080)=ANY=[@ANYRESOCT=r3, @ANYRES16=r5, @ANYBLOB="01002abd7000fbdbdf250400000005000a000000000008000100", @ANYRES64=r3, @ANYRESOCT=r1, @ANYRES32=r1, @ANYBLOB="4a29ec5073af6596a4deef5f85d77eea9313f2b4f6b5adb8155d0c0d0feb03df898745a144bb3b02a79ec14cf02bcf271da11de16380e0c1c0ed99c0a222ad0fdff6a5be2efc775520b702090000001f02387d725f46a8a9ad61941db489a8"], 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x40)
syz_genetlink_get_family_id$netlbl_mgmt(0x0, 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_VERSION(r4, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000480)=ANY=[@ANYBLOB="14400000b23f2efb37743d5ce4d5fa0e4bbbca58d8cd25aa418d7732e8a57ce86b1c59513bb3b531af6303cf6e7226717e74536f886f5ea7c8b03ccb0cbb6e5f4adda4c5d4e5dd453ee097283b6c278093936a5e76cf0da7bded44f99084cdc8925dc2cd20bb405a32e7a9626a3202a492f5734ee04e6ed62ba2d585095e887983cc45d4453d4ec851016fcbd5308567172e8dc029cb5f20ccc3811b45c72d569c22657e76ba6c819686bfb2bb272154854c", @ANYRES16=r1, @ANYBLOB="00012abd7000ffdbdf2508000000"], 0x14}, 0x1, 0x0, 0x0, 0x20040000}, 0x44800)
r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r4, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="04002bbd7000fedbdf25080000001400060076657468315fd7746f5f7465616d0000000500010001000000000000000114000300fe8000000000000000000000000000bb14000200"/88], 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000400)=ANY=[@ANYRESHEX=r1, @ANYRESOCT=r1, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x40, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x8202, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r9)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r8, 0xf504, 0x0)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @local})
ioctl$TUNGETFEATURES(r8, 0x800454cf, &(0x7f0000000040))
write$cgroup_subtree(r8, &(0x7f00000006c0)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486dd"], 0x66)

0s ago: executing program 4 (id=2815):
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x48) (async)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004"], 0x15) (async)
execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0) (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket(0x2, 0x80805, 0x0) (async)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDSKBLED(r1, 0x4b65, 0x6)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x82, 0x0, &(0x7f0000000180)) (async, rerun: 64)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$eJzs289vFFUcAPDvzLZFKNiK+IOCWkVj44+WFlQOXjSaeNDERA94rG0hlYUaWhMhjVZj8GhIvBuPJv4FnvRi1JOJV70bEmJ6AT2tmd2ZdrvdLW3ZdtH9fJKB92be5n2/O/N238zrBtC1hrN/koj9EfF7RAzUqmsbDNf+u7m8OPX38uJUEpXKW38l1XY3lheniqbF6/rzykgakX6WxJEm/c5funxuslyeuZjXxxbOvz82f+nys7PnJ8/OnJ25MHHq1MkT4y88P/FcW/LMYrox9NHc0cOvvXP1janTV9/9+dukyL8hjzYZ3ujgE5VKm7vrrAN15aSng4GwJaWIyE5Xb3X8D0QpVk/eQLz6aUeDA3ZUpVKp9Lc+vFQB/seS6HQEQGcUX/TZ/W+x7dLU445w/aXaDVCW9818qx3piTRv09twf9tOwxFxeumfr7ItduY5BADAGt9n859nms3/0ri/rt3d+drQYETcExEHI+LeiDgUEfdFVNs+EBEPbrH/xkWS9fOf9Nq2EtukbP73Yr62tXb+V8z+YrCU1w5U8+9NzsyWZ47n78lI9O7J6uMb9PHDK7990epY/fwv27L+i7lgHse1nj1rXzM9uTB5OznXu/5JxFBPs/yTlZWAJCIOR8TQNvuYfeqbo62O3Tr/DbRhnanydcSTtfO/FA35F5KN1yfH7oryzPGx4qpY75dfr7zZqv/byr8NsvO/r+n1v5L/YFK/Xju/9T6u/PF5y3ua7V7/fcnb1XJfvu/DyYWFi+MRfcnrtaDr90+svraoF+2z/EeONR//B2P1nTgSEdlF/FBEPBwRj+SxPxoRj0XEsQ3y/+nlx9/bfv47K8t/ekvnf7XQF417mhdK5378bk2ng1vJPzv/J6ulkXzPZj7/NhPX9q5mAAAA+O9JI2J/JOnoSjlNR0drfy9/KPal5bn5hafPzH1wYbr2G4HB6E2LJ10Ddc9Dx/Pb+qI+0VA/kT83/rK0t1ofnZorT3c6eehy/S3Gf+bPUqejA3ac32tB9zL+oXsZ/9C9jH/oXk3G/95OxAHsvmbf/x93IA5g9zWMf8t+0EXc/0P3Mv6hexn/0JXm98atfySvoLCuEOkdEYbCDhU6/ckEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQHv8GAAD//5LX5s8=") (async, rerun: 64)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0xfffffffffffffe89, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x90) (async, rerun: 64)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(0xffffffffffffffff, 0x40605346, 0x0) (rerun: 64)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, &(0x7f0000000000)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001}) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0) (async)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
bind(r4, &(0x7f0000002140)=@l2tp={0x2, 0x0, @empty, 0x3}, 0x80) (async)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r3, &(0x7f0000000380)='./bus\x00') (async)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) (async)
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c) (async, rerun: 64)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000000c0), 0x4) (rerun: 64)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58"}, 0x28) (async)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, &(0x7f0000000680)=@ccm_128={{0x304}, "66c130fc2526f83f", "7756008363025fe86568a4bb1a469f1d", "e131f7f7", "a59e9e2afdbff8fa"}, 0x28)
readlinkat(r3, &(0x7f0000000400)='./bus\x00', &(0x7f0000000680)=""/206, 0xce)

kernel console output (not intermixed with test programs):

2: corrupted inode contents
[  118.543778][ T9925] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.2132: mark_inode_dirty error
[  118.604348][ T9925] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2132: corrupted inode contents
[  118.621034][ T9925] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  118.647089][ T9925] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2132: corrupted inode contents
[  118.660741][ T9925] EXT4-fs error (device loop5): ext4_truncate:4240: inode #13: comm syz.5.2132: mark_inode_dirty error
[  118.672641][ T9925] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  118.683406][ T9925] EXT4-fs (loop5): 1 truncate cleaned up
[  118.690229][ T9951] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2141'.
[  118.728334][ T9925] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2132: Failed to acquire dquot type 0
[  118.748122][ T9953] loop2: detected capacity change from 0 to 2048
[  118.766387][ T9955] blktrace: Concurrent blktraces are not allowed on sg0
[  118.794956][ T9955] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2146'.
[  118.796285][ T9953] netlink: 'syz.2.2145': attribute type 39 has an invalid length.
[  118.804696][ T9955] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  118.908664][ T9971] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2154'.
[  118.918198][ T9971] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2154'.
[  118.935016][ T9972] loop5: detected capacity change from 0 to 512
[  118.951998][ T9972] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  119.021495][ T9972] EXT4-fs (loop5): 1 orphan inode deleted
[  119.027321][ T9972] EXT4-fs (loop5): 1 truncate cleaned up
[  119.047597][ T9980] vhci_hcd: invalid port number 255
[  119.052834][ T9980] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  119.069419][ T3396] IPVS: starting estimator thread 0...
[  119.078829][ T9974] vhci_hcd: invalid port number 255
[  119.084277][ T9974] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  119.104104][ T9972] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /138/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  119.170971][ T9972] EXT4-fs (loop5): Remounting filesystem read-only
[  119.177664][ T9982] IPVS: using max 2880 ests per chain, 144000 per kthread
[  119.223851][ T9989] loop2: detected capacity change from 0 to 2048
[  119.300237][ T9996] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  119.310912][ T9989] netlink: 'syz.2.2160': attribute type 39 has an invalid length.
[  119.327044][T10000] loop5: detected capacity change from 0 to 1024
[  119.348502][T10000] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2164: Failed to acquire dquot type 0
[  119.396082][T10000] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  119.453922][T10000] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2164: corrupted inode contents
[  119.502660][T10000] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #13: comm syz.5.2164: mark_inode_dirty error
[  119.530921][T10000] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2164: corrupted inode contents
[  119.543841][T10000] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.2164: mark_inode_dirty error
[  119.555959][T10000] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2164: corrupted inode contents
[  119.568578][T10000] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  119.577650][T10000] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2164: corrupted inode contents
[  119.610044][T10000] EXT4-fs error (device loop5): ext4_truncate:4240: inode #13: comm syz.5.2164: mark_inode_dirty error
[  119.622286][T10000] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  119.631868][T10000] EXT4-fs (loop5): 1 truncate cleaned up
[  119.642995][T10000] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2164: Failed to acquire dquot type 0
[  119.769517][ T3396] IPVS: starting estimator thread 0...
[  119.775262][T10024] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  119.819973][T10027] loop4: detected capacity change from 0 to 512
[  119.858832][T10027] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  119.875104][T10029] loop2: detected capacity change from 0 to 2048
[  119.881561][T10025] IPVS: using max 2928 ests per chain, 146400 per kthread
[  119.899148][T10027] EXT4-fs (loop4): 1 orphan inode deleted
[  119.904932][T10027] EXT4-fs (loop4): 1 truncate cleaned up
[  119.939662][T10027] EXT4-fs error (device loop4): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /435/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  119.962383][T10027] EXT4-fs (loop4): Remounting filesystem read-only
[  119.972508][T10029] netlink: 'syz.2.2177': attribute type 39 has an invalid length.
[  119.988397][T10042] loop3: detected capacity change from 0 to 1024
[  120.035712][T10042] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2182: Failed to acquire dquot type 0
[  120.099120][T10042] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  120.156531][T10042] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2182: corrupted inode contents
[  120.189996][T10056] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  120.213699][T10042] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.2182: mark_inode_dirty error
[  120.229138][T10042] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2182: corrupted inode contents
[  120.241486][T10042] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.2182: mark_inode_dirty error
[  120.273321][T10042] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2182: corrupted inode contents
[  120.286063][T10055] vhci_hcd: invalid port number 255
[  120.291509][T10055] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  120.312925][T10042] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  120.340186][T10042] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2182: corrupted inode contents
[  120.393973][T10042] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.2182: mark_inode_dirty error
[  120.423705][T10042] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  120.454558][T10042] EXT4-fs (loop3): 1 truncate cleaned up
[  120.483332][T10072] loop1: detected capacity change from 0 to 2048
[  120.497615][T10070] vhci_hcd: invalid port number 255
[  120.503064][T10070] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  120.504530][T10042] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2182: Failed to acquire dquot type 0
[  120.536265][T10072] netlink: 'syz.1.2194': attribute type 39 has an invalid length.
[  120.629799][T10079] loop3: detected capacity change from 0 to 512
[  120.641321][T10079] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  120.654637][T10079] EXT4-fs (loop3): 1 orphan inode deleted
[  120.660461][T10079] EXT4-fs (loop3): 1 truncate cleaned up
[  120.675840][   T29] kauditd_printk_skb: 1146 callbacks suppressed
[  120.675861][   T29] audit: type=1400 audit(1732801244.538:18630): avc:  denied  { write } for  pid=10076 comm="syz.1.2195" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  120.733023][T10079] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /468/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  120.764472][   T29] audit: type=1326 audit(1732801244.588:18631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10082 comm="syz.1.2197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  120.788526][   T29] audit: type=1326 audit(1732801244.588:18632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10082 comm="syz.1.2197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  120.812564][   T29] audit: type=1326 audit(1732801244.588:18633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10082 comm="syz.1.2197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  120.836285][   T29] audit: type=1326 audit(1732801244.598:18634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10082 comm="syz.1.2197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  120.860095][   T29] audit: type=1326 audit(1732801244.598:18635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10082 comm="syz.1.2197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  120.884157][   T29] audit: type=1326 audit(1732801244.598:18636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10082 comm="syz.1.2197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  120.907722][   T29] audit: type=1326 audit(1732801244.598:18637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10082 comm="syz.1.2197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  120.931505][   T29] audit: type=1326 audit(1732801244.598:18638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10082 comm="syz.1.2197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  120.953462][T10079] EXT4-fs (loop3): Remounting filesystem read-only
[  120.955089][   T29] audit: type=1326 audit(1732801244.598:18639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10082 comm="syz.1.2197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  121.105084][T10096] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  121.138250][T10102] loop2: detected capacity change from 0 to 2048
[  121.164375][T10102] netlink: 'syz.2.2206': attribute type 39 has an invalid length.
[  121.217804][T10112] loop3: detected capacity change from 0 to 1024
[  121.253802][T10112] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2209: Failed to acquire dquot type 0
[  121.279325][T10112] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  121.283774][T10118] loop2: detected capacity change from 0 to 512
[  121.307009][T10112] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2209: corrupted inode contents
[  121.327288][T10112] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.2209: mark_inode_dirty error
[  121.329579][T10118] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  121.356053][T10112] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2209: corrupted inode contents
[  121.369706][T10112] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.2209: mark_inode_dirty error
[  121.374784][T10118] EXT4-fs (loop2): 1 orphan inode deleted
[  121.386976][T10118] EXT4-fs (loop2): 1 truncate cleaned up
[  121.395958][T10112] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2209: corrupted inode contents
[  121.414400][T10112] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  121.418540][T10120] vhci_hcd: invalid port number 255
[  121.428259][T10120] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  121.437066][T10118] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /464/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  121.457967][T10112] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2209: corrupted inode contents
[  121.471525][T10118] EXT4-fs (loop2): Remounting filesystem read-only
[  121.478330][T10112] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.2209: mark_inode_dirty error
[  121.489954][T10112] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  121.500221][T10112] EXT4-fs (loop3): 1 truncate cleaned up
[  121.513711][T10112] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2209: Failed to acquire dquot type 0
[  121.664105][T10136] loop3: detected capacity change from 0 to 2048
[  121.673720][T10138] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  121.708959][T10136] netlink: 'syz.3.2219': attribute type 39 has an invalid length.
[  121.928102][T10157] vhci_hcd: invalid port number 255
[  121.933333][T10157] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  121.973074][T10165] loop3: detected capacity change from 0 to 1024
[  121.985125][T10165] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2229: Failed to acquire dquot type 0
[  122.007959][T10165] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  122.023002][T10165] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2229: corrupted inode contents
[  122.035377][T10165] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.2229: mark_inode_dirty error
[  122.047425][T10165] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2229: corrupted inode contents
[  122.059649][T10165] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.2229: mark_inode_dirty error
[  122.073418][T10165] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2229: corrupted inode contents
[  122.097259][T10165] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  122.137748][T10170] __nla_validate_parse: 21 callbacks suppressed
[  122.137764][T10170] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2231'.
[  122.144365][T10172] loop1: detected capacity change from 0 to 2048
[  122.157768][T10165] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2229: corrupted inode contents
[  122.160687][T10170] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  122.187900][T10165] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.2229: mark_inode_dirty error
[  122.199378][T10165] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  122.210224][T10165] EXT4-fs (loop3): 1 truncate cleaned up
[  122.221256][T10165] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2229: Failed to acquire dquot type 0
[  122.290415][T10172] netlink: 'syz.1.2232': attribute type 39 has an invalid length.
[  122.381571][T10182] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2236'.
[  122.527822][T10199] vhci_hcd: invalid port number 255
[  122.533070][T10199] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  122.599438][T10202] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2244'.
[  122.621747][T10202] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  122.664597][T10211] loop5: detected capacity change from 0 to 1024
[  122.690814][T10211] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2248: Failed to acquire dquot type 0
[  122.713105][T10215] loop3: detected capacity change from 0 to 2048
[  122.727082][T10211] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  122.741761][T10211] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2248: corrupted inode contents
[  122.754591][T10211] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #13: comm syz.5.2248: mark_inode_dirty error
[  122.766784][T10211] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2248: corrupted inode contents
[  122.779531][T10211] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.2248: mark_inode_dirty error
[  122.823073][T10211] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2248: corrupted inode contents
[  122.847497][T10215] netlink: 'syz.3.2249': attribute type 39 has an invalid length.
[  122.856461][T10211] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  122.868456][T10211] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2248: corrupted inode contents
[  122.890822][T10211] EXT4-fs error (device loop5): ext4_truncate:4240: inode #13: comm syz.5.2248: mark_inode_dirty error
[  122.903077][T10211] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  122.913158][T10223] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2251'.
[  122.932069][T10211] EXT4-fs (loop5): 1 truncate cleaned up
[  122.953620][T10211] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2248: Failed to acquire dquot type 0
[  123.163597][T10244] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2261'.
[  123.180961][T10242] vhci_hcd: invalid port number 255
[  123.186381][T10242] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  123.196233][T10244] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2261'.
[  123.243909][T10240] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2259'.
[  123.256479][T10240] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  123.333735][T10249] loop3: detected capacity change from 0 to 2048
[  123.385599][T10258] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2264'.
[  123.400202][T10249] netlink: 'syz.3.2263': attribute type 39 has an invalid length.
[  123.460896][T10260] loop5: detected capacity change from 0 to 1024
[  123.503404][T10260] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2267: Failed to acquire dquot type 0
[  123.555552][T10273] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2272'.
[  123.556978][T10260] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  123.584731][T10273] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2272'.
[  123.606989][T10260] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2267: corrupted inode contents
[  123.623061][T10260] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #13: comm syz.5.2267: mark_inode_dirty error
[  123.634820][T10260] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2267: corrupted inode contents
[  123.661466][T10260] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.2267: mark_inode_dirty error
[  123.679457][T10277] vhci_hcd: invalid port number 255
[  123.684743][T10277] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  123.685327][T10260] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2267: corrupted inode contents
[  123.715659][T10260] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  123.741726][T10260] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2267: corrupted inode contents
[  123.765354][T10276] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  123.777499][T10260] EXT4-fs error (device loop5): ext4_truncate:4240: inode #13: comm syz.5.2267: mark_inode_dirty error
[  123.792481][T10260] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  123.832946][T10260] EXT4-fs (loop5): 1 truncate cleaned up
[  123.842554][T10285] loop4: detected capacity change from 0 to 2048
[  123.865175][T10260] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2267: Failed to acquire dquot type 0
[  123.885966][T10285] netlink: 'syz.4.2278': attribute type 39 has an invalid length.
[  124.125441][T10312] loop4: detected capacity change from 0 to 1024
[  124.149353][T10312] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2290: Failed to acquire dquot type 0
[  124.175806][T10312] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  124.192835][T10312] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2290: corrupted inode contents
[  124.214538][T10310] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  124.222501][T10318] loop5: detected capacity change from 0 to 2048
[  124.225628][T10312] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #13: comm syz.4.2290: mark_inode_dirty error
[  124.243434][T10312] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2290: corrupted inode contents
[  124.259130][T10312] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.2290: mark_inode_dirty error
[  124.279645][T10318] netlink: 'syz.5.2291': attribute type 39 has an invalid length.
[  124.293170][T10312] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2290: corrupted inode contents
[  124.317303][T10312] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  124.361030][T10312] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2290: corrupted inode contents
[  124.379607][T10312] EXT4-fs error (device loop4): ext4_truncate:4240: inode #13: comm syz.4.2290: mark_inode_dirty error
[  124.386447][T10326] loop5: detected capacity change from 0 to 512
[  124.398783][T10326] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  124.409037][T10324] vhci_hcd: invalid port number 255
[  124.414325][T10324] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  124.422362][T10312] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  124.432070][T10326] EXT4-fs (loop5): 1 orphan inode deleted
[  124.437956][T10326] EXT4-fs (loop5): 1 truncate cleaned up
[  124.452388][T10312] EXT4-fs (loop4): 1 truncate cleaned up
[  124.478274][T10312] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2290: Failed to acquire dquot type 0
[  124.561217][T10326] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /169/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  124.646439][T10326] EXT4-fs (loop5): Remounting filesystem read-only
[  124.735999][T10345] loop4: detected capacity change from 0 to 2048
[  124.777121][T10345] netlink: 'syz.4.2304': attribute type 39 has an invalid length.
[  124.864340][T10357] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  124.881357][T10358] loop1: detected capacity change from 0 to 2048
[  124.888556][T10350] vhci_hcd: invalid port number 255
[  124.893785][T10350] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  124.902167][T10354] vhci_hcd: invalid port number 255
[  124.907507][T10354] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  124.935433][T10358] netlink: 'syz.1.2317': attribute type 39 has an invalid length.
[  124.987132][T10369] loop3: detected capacity change from 0 to 1024
[  125.000728][T10369] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2310: Failed to acquire dquot type 0
[  125.078941][T10369] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  125.114719][T10369] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2310: corrupted inode contents
[  125.168557][T10369] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.2310: mark_inode_dirty error
[  125.187933][T10369] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2310: corrupted inode contents
[  125.205977][T10369] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.2310: mark_inode_dirty error
[  125.218747][T10369] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2310: corrupted inode contents
[  125.231077][T10369] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  125.246608][T10388] loop1: detected capacity change from 0 to 512
[  125.264040][T10388] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  125.279365][T10369] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2310: corrupted inode contents
[  125.292095][T10369] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.2310: mark_inode_dirty error
[  125.304703][T10388] EXT4-fs (loop1): 1 orphan inode deleted
[  125.310603][T10388] EXT4-fs (loop1): 1 truncate cleaned up
[  125.316490][T10369] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  125.342781][T10388] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /465/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  125.373863][T10369] EXT4-fs (loop3): 1 truncate cleaned up
[  125.399224][T10369] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2310: Failed to acquire dquot type 0
[  125.413187][T10394] vhci_hcd: invalid port number 255
[  125.418438][T10394] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  125.426364][T10388] EXT4-fs (loop1): Remounting filesystem read-only
[  125.549174][T10401] loop2: detected capacity change from 0 to 2048
[  125.677866][   T29] kauditd_printk_skb: 1082 callbacks suppressed
[  125.677881][   T29] audit: type=1326 audit(1732801249.548:19698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10413 comm="syz.1.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  125.707940][   T29] audit: type=1326 audit(1732801249.548:19699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10413 comm="syz.1.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  125.731731][   T29] audit: type=1326 audit(1732801249.548:19700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10413 comm="syz.1.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  125.755320][   T29] audit: type=1326 audit(1732801249.548:19701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10413 comm="syz.1.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  125.779003][   T29] audit: type=1326 audit(1732801249.548:19702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10413 comm="syz.1.2329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff468ab0809 code=0x7ffc0000
[  125.802581][   T29] audit: type=1400 audit(1732801249.558:19703): avc:  denied  { create } for  pid=10397 comm="syz.4.2323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  125.829749][T10401] EXT4-fs mount: 154 callbacks suppressed
[  125.829767][T10401] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.833376][T10423] loop5: detected capacity change from 0 to 1024
[  125.862341][T10403] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  125.885345][   T29] audit: type=1400 audit(1732801249.558:19704): avc:  denied  { write } for  pid=10418 comm="syz.3.2331" name="001" dev="devtmpfs" ino=168 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  125.908661][   T29] audit: type=1400 audit(1732801249.588:19705): avc:  denied  { write } for  pid=10411 comm="syz.5.2328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  125.928342][   T29] audit: type=1400 audit(1732801249.718:19706): avc:  denied  { mount } for  pid=10396 comm="syz.2.2324" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  125.950275][   T29] audit: type=1400 audit(1732801249.728:19707): avc:  denied  { write } for  pid=10397 comm="syz.4.2323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  125.972156][T10423] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2333: Failed to acquire dquot type 0
[  125.973811][T10401] netlink: 'syz.2.2324': attribute type 39 has an invalid length.
[  125.991783][T10423] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  126.006526][T10423] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2333: corrupted inode contents
[  126.018837][T10423] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #13: comm syz.5.2333: mark_inode_dirty error
[  126.030510][T10423] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2333: corrupted inode contents
[  126.042934][T10423] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.2333: mark_inode_dirty error
[  126.056952][T10423] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2333: corrupted inode contents
[  126.069442][ T3329] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.069671][T10423] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  126.098984][T10423] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2333: corrupted inode contents
[  126.113659][T10431] loop2: detected capacity change from 0 to 512
[  126.131524][T10423] EXT4-fs error (device loop5): ext4_truncate:4240: inode #13: comm syz.5.2333: mark_inode_dirty error
[  126.144150][T10431] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  126.177226][T10423] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  126.198406][T10431] EXT4-fs (loop2): 1 orphan inode deleted
[  126.204319][T10431] EXT4-fs (loop2): 1 truncate cleaned up
[  126.213870][T10431] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.232287][T10423] EXT4-fs (loop5): 1 truncate cleaned up
[  126.245906][T10423] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.271058][T10437] sctp: [Deprecated]: syz.4.2338 (pid 10437) Use of struct sctp_assoc_value in delayed_ack socket option.
[  126.271058][T10437] Use struct sctp_sack_info instead
[  126.307242][T10431] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /488/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  126.343305][T10423] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2333: Failed to acquire dquot type 0
[  126.361460][T10443] loop4: detected capacity change from 0 to 512
[  126.384393][T10431] EXT4-fs (loop2): Remounting filesystem read-only
[  126.397699][T10442] vhci_hcd: invalid port number 255
[  126.403045][T10442] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  126.410682][T10443] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  126.420737][ T6457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.440257][T10443] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.454397][T10443] ext4 filesystem being mounted at /470/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.475089][ T3329] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.538325][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.653081][T10460] loop5: detected capacity change from 0 to 2048
[  126.681616][T10460] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.741359][T10460] netlink: 'syz.5.2346': attribute type 39 has an invalid length.
[  126.768937][ T6457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.781760][T10474] loop4: detected capacity change from 0 to 1024
[  126.816320][T10464] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  126.861016][T10474] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2352: Failed to acquire dquot type 0
[  126.875118][T10474] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  126.908820][T10481] loop1: detected capacity change from 0 to 512
[  126.917450][T10474] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2352: corrupted inode contents
[  126.947914][T10481] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  126.969250][T10474] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #13: comm syz.4.2352: mark_inode_dirty error
[  126.990208][T10481] EXT4-fs (loop1): 1 orphan inode deleted
[  126.996072][T10481] EXT4-fs (loop1): 1 truncate cleaned up
[  127.012378][T10474] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2352: corrupted inode contents
[  127.016277][T10481] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.039206][T10474] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.2352: mark_inode_dirty error
[  127.056668][T10481] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /472/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  127.083437][T10481] EXT4-fs (loop1): Remounting filesystem read-only
[  127.090311][T10474] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2352: corrupted inode contents
[  127.114549][T10474] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  127.139915][T10474] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2352: corrupted inode contents
[  127.152971][T10474] EXT4-fs error (device loop4): ext4_truncate:4240: inode #13: comm syz.4.2352: mark_inode_dirty error
[  127.181804][T10496] loop2: detected capacity change from 0 to 2048
[  127.192764][T10474] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  127.213882][T10501] __nla_validate_parse: 23 callbacks suppressed
[  127.213900][T10501] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2364'.
[  127.229912][T10501] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2364'.
[  127.239278][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.243367][T10502] sctp: [Deprecated]: syz.5.2360 (pid 10502) Use of struct sctp_assoc_value in delayed_ack socket option.
[  127.243367][T10502] Use struct sctp_sack_info instead
[  127.267452][T10474] EXT4-fs (loop4): 1 truncate cleaned up
[  127.273584][T10474] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.296243][T10474] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2352: Failed to acquire dquot type 0
[  127.310993][T10502] loop5: detected capacity change from 0 to 512
[  127.318994][T10502] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  127.328229][T10496] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.377351][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.389843][T10496] netlink: 'syz.2.2362': attribute type 39 has an invalid length.
[  127.391918][T10502] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.412118][T10512] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2365'.
[  127.423361][T10512] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  127.453169][T10502] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.467258][ T3329] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.546143][ T6457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.643874][T10530] loop5: detected capacity change from 0 to 512
[  127.654881][T10525] netlink: 116 bytes leftover after parsing attributes in process `syz.3.2371'.
[  127.691243][T10530] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  127.706938][T10535] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2375'.
[  127.725265][T10530] EXT4-fs (loop5): 1 orphan inode deleted
[  127.731152][T10530] EXT4-fs (loop5): 1 truncate cleaned up
[  127.740132][T10530] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.776112][T10530] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /181/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  127.784588][T10541] loop4: detected capacity change from 0 to 1024
[  127.814470][T10530] EXT4-fs (loop5): Remounting filesystem read-only
[  127.815151][T10542] loop2: detected capacity change from 0 to 2048
[  127.821949][T10541] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2377: Failed to acquire dquot type 0
[  127.840497][T10538] vhci_hcd: invalid port number 255
[  127.845772][T10538] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  127.858404][T10541] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  127.873613][T10541] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2377: corrupted inode contents
[  127.873958][ T6457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.886454][T10541] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #13: comm syz.4.2377: mark_inode_dirty error
[  127.898461][T10542] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.906487][T10541] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2377: corrupted inode contents
[  127.956523][T10542] netlink: 'syz.2.2378': attribute type 39 has an invalid length.
[  127.988364][T10541] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.2377: mark_inode_dirty error
[  128.003320][ T3329] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.024450][T10541] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2377: corrupted inode contents
[  128.081011][T10552] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2379'.
[  128.105915][T10541] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  128.107412][T10552] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  128.140782][T10541] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2377: corrupted inode contents
[  128.159396][T10541] EXT4-fs error (device loop4): ext4_truncate:4240: inode #13: comm syz.4.2377: mark_inode_dirty error
[  128.171948][T10541] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  128.181830][T10541] EXT4-fs (loop4): 1 truncate cleaned up
[  128.188298][T10541] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.306272][T10541] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2377: Failed to acquire dquot type 0
[  128.364774][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.391299][T10564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2395'.
[  128.404079][T10564] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  128.592649][T10575] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2387'.
[  128.630474][T10572] sctp: [Deprecated]: syz.3.2384 (pid 10572) Use of struct sctp_assoc_value in delayed_ack socket option.
[  128.630474][T10572] Use struct sctp_sack_info instead
[  128.647726][T10576] netlink: 116 bytes leftover after parsing attributes in process `syz.1.2386'.
[  128.684289][T10572] loop3: detected capacity change from 0 to 512
[  128.704440][T10586] loop1: detected capacity change from 0 to 512
[  128.732596][T10572] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  128.741491][T10577] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2398'.
[  128.749316][T10586] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  128.754345][T10588] loop4: detected capacity change from 0 to 2048
[  128.770056][T10586] EXT4-fs (loop1): 1 orphan inode deleted
[  128.775853][T10586] EXT4-fs (loop1): 1 truncate cleaned up
[  128.788180][T10577] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  128.802942][T10572] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.816807][T10588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.829995][T10572] ext4 filesystem being mounted at /512/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.837279][T10586] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.862888][T10588] netlink: 'syz.4.2391': attribute type 39 has an invalid length.
[  128.874284][T10586] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /476/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  128.896755][T10586] EXT4-fs (loop1): Remounting filesystem read-only
[  128.927467][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.939084][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.949935][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.072944][T10610] loop1: detected capacity change from 0 to 1024
[  129.113837][T10610] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2401: Failed to acquire dquot type 0
[  129.128631][T10613] vhci_hcd: invalid port number 255
[  129.133975][T10613] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  129.145341][T10610] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  129.160274][T10610] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2401: corrupted inode contents
[  129.173394][T10610] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #13: comm syz.1.2401: mark_inode_dirty error
[  129.185094][T10610] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2401: corrupted inode contents
[  129.198367][T10610] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #13: comm syz.1.2401: mark_inode_dirty error
[  129.210172][T10610] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2401: corrupted inode contents
[  129.222713][T10610] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  129.231816][T10610] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2401: corrupted inode contents
[  129.244198][T10610] EXT4-fs error (device loop1): ext4_truncate:4240: inode #13: comm syz.1.2401: mark_inode_dirty error
[  129.260535][T10622] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  129.276120][T10610] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  129.286303][T10610] EXT4-fs (loop1): 1 truncate cleaned up
[  129.295657][T10610] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.322225][T10610] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2401: Failed to acquire dquot type 0
[  129.400992][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.413154][T10628] loop2: detected capacity change from 0 to 2048
[  129.442124][T10628] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.488492][T10628] netlink: 'syz.2.2410': attribute type 39 has an invalid length.
[  129.549004][ T3329] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.564143][T10639] loop4: detected capacity change from 0 to 512
[  129.571225][T10639] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  129.611979][T10639] EXT4-fs (loop4): 1 orphan inode deleted
[  129.617810][T10639] EXT4-fs (loop4): 1 truncate cleaned up
[  129.639794][T10639] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.656683][T10639] EXT4-fs error (device loop4): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /487/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  129.680735][T10639] EXT4-fs (loop4): Remounting filesystem read-only
[  129.731606][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.777047][T10654] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  129.860650][T10657] loop5: detected capacity change from 0 to 1024
[  129.902088][T10657] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2421: Failed to acquire dquot type 0
[  129.987454][T10657] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  130.039332][T10672] loop1: detected capacity change from 0 to 2048
[  130.069869][T10657] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2421: corrupted inode contents
[  130.103122][T10681] loop2: detected capacity change from 0 to 512
[  130.110018][T10657] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #13: comm syz.5.2421: mark_inode_dirty error
[  130.126630][T10672] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.139652][T10657] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2421: corrupted inode contents
[  130.151821][T10681] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  130.164209][T10657] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.2421: mark_inode_dirty error
[  130.178376][T10657] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2421: corrupted inode contents
[  130.191323][T10681] EXT4-fs (loop2): 1 orphan inode deleted
[  130.197101][T10681] EXT4-fs (loop2): 1 truncate cleaned up
[  130.206522][T10672] netlink: 'syz.1.2426': attribute type 39 has an invalid length.
[  130.214716][T10657] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  130.241407][T10657] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2421: corrupted inode contents
[  130.254774][T10681] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.285813][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.298313][T10657] EXT4-fs error (device loop5): ext4_truncate:4240: inode #13: comm syz.5.2421: mark_inode_dirty error
[  130.321500][T10681] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /517/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  130.347173][T10657] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  130.360097][T10681] EXT4-fs (loop2): Remounting filesystem read-only
[  130.388287][T10657] EXT4-fs (loop5): 1 truncate cleaned up
[  130.396415][T10657] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.413627][T10690] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  130.430858][T10657] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2421: Failed to acquire dquot type 0
[  130.445955][ T3329] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.514952][ T6457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.655593][T10716] loop4: detected capacity change from 0 to 2048
[  130.667475][T10714] vhci_hcd: invalid port number 255
[  130.672726][T10714] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  130.697285][T10716] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.729440][   T29] kauditd_printk_skb: 713 callbacks suppressed
[  130.729456][   T29] audit: type=1400 audit(1732801254.608:20401): avc:  denied  { mount } for  pid=10715 comm="syz.4.2446" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  130.770057][T10716] netlink: 'syz.4.2446': attribute type 39 has an invalid length.
[  130.771838][T10728] loop1: detected capacity change from 0 to 512
[  130.806442][   T29] audit: type=1326 audit(1732801254.638:20402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.5.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc172470809 code=0x7ffc0000
[  130.811911][T10728] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  130.830162][   T29] audit: type=1326 audit(1732801254.638:20403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.5.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc172470809 code=0x7ffc0000
[  130.863793][   T29] audit: type=1400 audit(1732801254.638:20404): avc:  denied  { read write } for  pid=10726 comm="syz.2.2449" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  130.888135][   T29] audit: type=1400 audit(1732801254.638:20405): avc:  denied  { open } for  pid=10726 comm="syz.2.2449" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  130.912386][   T29] audit: type=1326 audit(1732801254.638:20406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.5.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc172470809 code=0x7ffc0000
[  130.921187][T10732] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  130.935993][   T29] audit: type=1400 audit(1732801254.638:20407): avc:  denied  { create } for  pid=10726 comm="syz.2.2449" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  130.965399][   T29] audit: type=1400 audit(1732801254.638:20408): avc:  denied  { create } for  pid=10715 comm="syz.4.2446" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  130.986129][   T29] audit: type=1326 audit(1732801254.638:20409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.5.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc172470809 code=0x7ffc0000
[  131.009804][   T29] audit: type=1326 audit(1732801254.638:20410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10724 comm="syz.5.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc172470809 code=0x7ffc0000
[  131.055038][T10728] EXT4-fs (loop1): 1 orphan inode deleted
[  131.055549][T10733] loop5: detected capacity change from 0 to 1024
[  131.060830][T10728] EXT4-fs (loop1): 1 truncate cleaned up
[  131.073640][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.085772][T10733] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2451: Failed to acquire dquot type 0
[  131.097860][T10728] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.111193][T10733] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  131.131279][T10733] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2451: corrupted inode contents
[  131.153034][T10733] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #13: comm syz.5.2451: mark_inode_dirty error
[  131.167447][T10733] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2451: corrupted inode contents
[  131.193422][T10733] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.2451: mark_inode_dirty error
[  131.205113][T10733] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2451: corrupted inode contents
[  131.218784][T10733] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  131.228060][T10733] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2451: corrupted inode contents
[  131.248382][T10728] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm +}[@: path /489/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  131.269754][T10733] EXT4-fs error (device loop5): ext4_truncate:4240: inode #13: comm syz.5.2451: mark_inode_dirty error
[  131.306864][T10733] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  131.322647][T10728] EXT4-fs (loop1): Remounting filesystem read-only
[  131.329628][T10733] EXT4-fs (loop5): 1 truncate cleaned up
[  131.343306][T10733] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.375104][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.383414][T10733] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2451: Failed to acquire dquot type 0
[  131.428974][T10755] loop4: detected capacity change from 0 to 2048
[  131.461135][ T6457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.485051][T10755] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.570992][T10755] netlink: 'syz.4.2462': attribute type 39 has an invalid length.
[  131.628204][T10770] vhci_hcd: invalid port number 255
[  131.633461][T10770] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  131.652428][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.734529][T10768] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  131.757061][T10781] loop5: detected capacity change from 0 to 512
[  131.784656][T10781] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  131.815609][T10781] EXT4-fs (loop5): 1 orphan inode deleted
[  131.821442][T10781] EXT4-fs (loop5): 1 truncate cleaned up
[  131.827762][T10781] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.878157][ T6457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.880083][T10793] loop1: detected capacity change from 0 to 1024
[  131.928408][T10793] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2476: Failed to acquire dquot type 0
[  131.975792][T10793] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  132.010115][T10793] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2476: corrupted inode contents
[  132.052851][T10803] loop4: detected capacity change from 0 to 2048
[  132.087163][T10793] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #13: comm syz.1.2476: mark_inode_dirty error
[  132.110037][T10803] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.146772][T10793] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2476: corrupted inode contents
[  132.174936][T10803] netlink: 'syz.4.2480': attribute type 39 has an invalid length.
[  132.196072][T10793] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #13: comm syz.1.2476: mark_inode_dirty error
[  132.219079][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.229398][T10793] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2476: corrupted inode contents
[  132.291968][T10793] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  132.315434][T10793] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2476: corrupted inode contents
[  132.352175][T10825] loop2: detected capacity change from 0 to 512
[  132.359967][T10793] EXT4-fs error (device loop1): ext4_truncate:4240: inode #13: comm syz.1.2476: mark_inode_dirty error
[  132.374983][T10825] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  132.378336][T10814] __nla_validate_parse: 18 callbacks suppressed
[  132.378351][T10814] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2485'.
[  132.402658][T10793] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  132.412942][T10825] EXT4-fs (loop2): 1 orphan inode deleted
[  132.413141][T10814] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  132.418772][T10825] EXT4-fs (loop2): 1 truncate cleaned up
[  132.437491][T10825] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.455307][T10829] netlink: 116 bytes leftover after parsing attributes in process `syz.4.2490'.
[  132.466777][T10793] EXT4-fs (loop1): 1 truncate cleaned up
[  132.467616][T10819] vhci_hcd: invalid port number 255
[  132.472996][T10793] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.477702][T10819] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  132.512832][T10793] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2476: Failed to acquire dquot type 0
[  132.564315][ T3329] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.596989][ T3326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.655454][T10842] loop3: detected capacity change from 0 to 2048
[  132.728750][T10842] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.788708][T10842] netlink: 'syz.3.2497': attribute type 39 has an invalid length.
[  132.873907][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.936672][T10869] netlink: 116 bytes leftover after parsing attributes in process `syz.2.2503'.
[  132.962679][T10863] loop4: detected capacity change from 0 to 128
[  132.974906][T10863] EXT4-fs: Ignoring removed nobh option
[  133.007774][T10863] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  133.030327][T10863] ext4 filesystem being mounted at /509/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  133.042775][T10876] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2506'.
[  133.071598][T10878] loop2: detected capacity change from 0 to 1024
[  133.078330][T10876] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  133.107904][T10878] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2508: Failed to acquire dquot type 0
[  133.123136][T10878] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  133.146651][T10878] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2508: corrupted inode contents
[  133.159464][T10878] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #13: comm syz.2.2508: mark_inode_dirty error
[  133.172353][T10878] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2508: corrupted inode contents
[  133.184652][T10878] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #13: comm syz.2.2508: mark_inode_dirty error
[  133.196906][T10878] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2508: corrupted inode contents
[  133.209570][T10878] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  133.218806][T10878] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2508: corrupted inode contents
[  133.231474][T10878] EXT4-fs error (device loop2): ext4_truncate:4240: inode #13: comm syz.2.2508: mark_inode_dirty error
[  133.244352][T10878] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  133.261576][T10878] EXT4-fs (loop2): 1 truncate cleaned up
[  133.276736][T10878] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.298470][T10882] loop1: detected capacity change from 0 to 512
[  133.309091][T10878] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2508: Failed to acquire dquot type 0
[  133.325353][T10882] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  133.351908][T10882] EXT4-fs (loop1): 1 orphan inode deleted
[  133.357797][T10882] EXT4-fs (loop1): 1 truncate cleaned up
[  133.367720][T10882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.387869][ T3329] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.528593][T10893] loop2: detected capacity change from 0 to 2048
[  133.553251][T10893] netlink: 'syz.2.2515': attribute type 39 has an invalid length.
[  133.693523][T10902] netlink: 116 bytes leftover after parsing attributes in process `syz.2.2518'.
[  133.766330][T10913] loop2: detected capacity change from 0 to 1024
[  133.805154][T10913] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2522: Failed to acquire dquot type 0
[  133.835366][T10913] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  133.851883][T10908] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2521'.
[  133.861128][T10908] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  133.875214][T10913] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2522: corrupted inode contents
[  133.878777][T10922] loop3: detected capacity change from 0 to 2048
[  133.898812][T10913] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #13: comm syz.2.2522: mark_inode_dirty error
[  133.915177][T10913] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2522: corrupted inode contents
[  133.932251][T10913] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #13: comm syz.2.2522: mark_inode_dirty error
[  133.945137][T10913] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2522: corrupted inode contents
[  133.957953][T10913] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  133.968024][T10913] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2522: corrupted inode contents
[  133.980774][T10913] EXT4-fs error (device loop2): ext4_truncate:4240: inode #13: comm syz.2.2522: mark_inode_dirty error
[  133.992376][T10930] loop5: detected capacity change from 0 to 512
[  133.994010][T10913] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  134.004519][T10922] netlink: 'syz.3.2526': attribute type 39 has an invalid length.
[  134.008596][T10913] EXT4-fs (loop2): 1 truncate cleaned up
[  134.018785][T10930] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  134.037092][T10913] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2522: Failed to acquire dquot type 0
[  134.055226][T10930] EXT4-fs (loop5): 1 orphan inode deleted
[  134.061151][T10930] EXT4-fs (loop5): 1 truncate cleaned up
[  134.269671][T10951] netlink: 116 bytes leftover after parsing attributes in process `syz.5.2533'.
[  134.281754][T10945] loop2: detected capacity change from 0 to 128
[  134.288835][T10945] EXT4-fs: Ignoring removed nobh option
[  134.312877][T10945] ext4 filesystem being mounted at /540/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  134.469335][T10959] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2539'.
[  134.479574][T10959] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  134.510138][T10966] loop1: detected capacity change from 0 to 2048
[  134.529325][T10968] loop3: detected capacity change from 0 to 1024
[  134.553934][T10968] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2543: Failed to acquire dquot type 0
[  134.566875][T10968] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  134.582474][T10968] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2543: corrupted inode contents
[  134.594863][T10968] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.2543: mark_inode_dirty error
[  134.597590][T10966] netlink: 'syz.1.2542': attribute type 39 has an invalid length.
[  134.607498][T10968] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2543: corrupted inode contents
[  134.626619][T10968] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.2543: mark_inode_dirty error
[  134.646956][T10968] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2543: corrupted inode contents
[  134.659277][T10968] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  134.668192][T10968] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2543: corrupted inode contents
[  134.680671][T10968] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.2543: mark_inode_dirty error
[  134.707603][T10968] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  134.719605][T10968] EXT4-fs (loop3): 1 truncate cleaned up
[  134.732570][T10968] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2543: Failed to acquire dquot type 0
[  134.805369][T10975] loop1: detected capacity change from 0 to 512
[  134.824312][T10975] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  134.852676][T10975] EXT4-fs (loop1): 1 orphan inode deleted
[  134.858492][T10975] EXT4-fs (loop1): 1 truncate cleaned up
[  134.925135][T10980] netlink: 116 bytes leftover after parsing attributes in process `syz.3.2547'.
[  135.091257][T11000] loop2: detected capacity change from 0 to 2048
[  135.139371][T11004] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2553'.
[  135.174539][T11007] loop5: detected capacity change from 0 to 1024
[  135.188428][T11004] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  135.222040][T11000] netlink: 'syz.2.2555': attribute type 39 has an invalid length.
[  135.233427][T11007] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2558: Failed to acquire dquot type 0
[  135.266681][T11007] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  135.284278][T11015] loop1: detected capacity change from 0 to 512
[  135.327267][T11015] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  135.347355][T11007] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2558: corrupted inode contents
[  135.368045][T11015] EXT4-fs (loop1): 1 orphan inode deleted
[  135.373850][T11015] EXT4-fs (loop1): 1 truncate cleaned up
[  135.392064][T11007] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #13: comm syz.5.2558: mark_inode_dirty error
[  135.417228][T11007] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2558: corrupted inode contents
[  135.431608][T11007] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.2558: mark_inode_dirty error
[  135.486320][T11007] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2558: corrupted inode contents
[  135.520226][T11007] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  135.553062][T11007] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2558: corrupted inode contents
[  135.581027][T11007] EXT4-fs error (device loop5): ext4_truncate:4240: inode #13: comm syz.5.2558: mark_inode_dirty error
[  135.593257][T11007] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  135.604517][T11007] EXT4-fs (loop5): 1 truncate cleaned up
[  135.614087][T11007] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2558: Failed to acquire dquot type 0
[  135.746092][T11043] loop3: detected capacity change from 0 to 2048
[  135.761193][T11045] loop5: detected capacity change from 0 to 128
[  135.775340][T11045] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  135.789095][T11045] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  135.793154][T11043] netlink: 'syz.3.2572': attribute type 39 has an invalid length.
[  135.806942][   T29] kauditd_printk_skb: 722 callbacks suppressed
[  135.806967][   T29] audit: type=1400 audit(1732801259.678:21109): avc:  denied  { mount } for  pid=11044 comm="syz.5.2571" name="/" dev="loop5" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  135.835294][   T29] audit: type=1400 audit(1732801259.678:21110): avc:  denied  { connect } for  pid=11044 comm="syz.5.2571" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  135.866484][   T29] audit: type=1400 audit(1732801259.738:21111): avc:  denied  { unmount } for  pid=6457 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  135.939008][   T29] audit: type=1400 audit(1732801259.818:21112): avc:  denied  { setopt } for  pid=11050 comm="syz.3.2574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  135.983470][T11054] loop4: detected capacity change from 0 to 512
[  136.013696][T11054] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  136.076462][T11049] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  136.076591][T11054] EXT4-fs (loop4): 1 orphan inode deleted
[  136.093901][T11054] EXT4-fs (loop4): 1 truncate cleaned up
[  136.145820][   T29] audit: type=1400 audit(1732801260.008:21113): avc:  denied  { unmount } for  pid=3323 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  136.151054][T11065] loop3: detected capacity change from 0 to 1024
[  136.166143][   T29] audit: type=1400 audit(1732801260.018:21114): avc:  denied  { read write } for  pid=3319 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  136.196957][   T29] audit: type=1400 audit(1732801260.018:21115): avc:  denied  { open } for  pid=3319 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  136.221394][   T29] audit: type=1400 audit(1732801260.018:21116): avc:  denied  { ioctl } for  pid=3319 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  136.224326][T11065] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5
[  136.247115][   T29] audit: type=1400 audit(1732801260.048:21117): avc:  denied  { mounton } for  pid=11064 comm="syz.3.2580" path="/553/file0" dev="tmpfs" ino=2922 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  136.279087][T11065] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2580: Failed to acquire dquot type 0
[  136.317164][T11065] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  136.344222][T11065] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2580: corrupted inode contents
[  136.352837][T11077] loop5: detected capacity change from 0 to 2048
[  136.382488][T11065] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.2580: mark_inode_dirty error
[  136.404393][T11065] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2580: corrupted inode contents
[  136.448790][T11077] netlink: 'syz.5.2585': attribute type 39 has an invalid length.
[  136.455659][T11065] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.2580: mark_inode_dirty error
[  136.472886][T11065] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2580: corrupted inode contents
[  136.501628][T11065] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  136.538280][T11065] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2580: corrupted inode contents
[  136.565082][T11079] loop4: detected capacity change from 0 to 1764
[  136.585652][T11065] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.2580: mark_inode_dirty error
[  136.607879][T11079] ISOFS: unable to read i-node block
[  136.613395][T11079] isofs_fill_super: get root inode failed
[  136.632877][T11065] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  136.654993][T11091] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  136.658585][T11065] EXT4-fs (loop3): 1 truncate cleaned up
[  136.701776][T11065] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2580: Failed to acquire dquot type 0
[  136.803179][T11102] loop5: detected capacity change from 0 to 512
[  136.845230][T11102] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  136.881427][T11102] EXT4-fs (loop5): 1 orphan inode deleted
[  136.887222][T11102] EXT4-fs (loop5): 1 truncate cleaned up
[  136.961320][T11119] loop4: detected capacity change from 0 to 2048
[  136.998501][T11117] vhci_hcd: invalid port number 255
[  137.003816][T11117] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  137.024958][T11119] netlink: 'syz.4.2601': attribute type 39 has an invalid length.
[  137.072154][T11128] FAULT_INJECTION: forcing a failure.
[  137.072154][T11128] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.085466][T11128] CPU: 0 UID: 0 PID: 11128 Comm: syz.4.2603 Not tainted 6.12.0-syzkaller-10553-gb86545e02e8c #0
[  137.096049][T11128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  137.106194][T11128] Call Trace:
[  137.109472][T11128]  <TASK>
[  137.112479][T11128]  dump_stack_lvl+0xf2/0x150
[  137.117166][T11128]  dump_stack+0x15/0x20
[  137.121450][T11128]  should_fail_ex+0x223/0x230
[  137.126168][T11128]  should_fail+0xb/0x10
[  137.130389][T11128]  should_fail_usercopy+0x1a/0x20
[  137.136114][T11128]  strncpy_from_user+0x25/0x210
[  137.141049][T11128]  strncpy_from_user_nofault+0x66/0xe0
[  137.146682][T11128]  bpf_probe_read_user_str+0x2a/0x70
[  137.152186][T11128]  bpf_prog_02a70dbeb5f742df+0x43/0x45
[  137.157755][T11128]  bpf_trace_run2+0x104/0x1d0
[  137.162432][T11128]  ? proc_cpuset_show+0x127/0x140
[  137.167563][T11128]  ? proc_cpuset_show+0x127/0x140
[  137.172614][T11128]  __traceiter_kfree+0x2b/0x50
[  137.177415][T11128]  ? proc_cpuset_show+0x127/0x140
[  137.182706][T11128]  kfree+0x247/0x2f0
[  137.186608][T11128]  ? __seq_puts+0x98/0xb0
[  137.191047][T11128]  proc_cpuset_show+0x127/0x140
[  137.195912][T11128]  proc_single_show+0x89/0x100
[  137.200764][T11128]  seq_read_iter+0x2d1/0x930
[  137.205374][T11128]  seq_read+0x1ed/0x230
[  137.209569][T11128]  vfs_readv+0x3e2/0x660
[  137.213831][T11128]  ? __pfx_seq_read+0x10/0x10
[  137.218984][T11128]  __x64_sys_preadv+0xf4/0x1c0
[  137.223920][T11128]  x64_sys_call+0x2680/0x2dc0
[  137.228764][T11128]  do_syscall_64+0xc9/0x1c0
[  137.233442][T11128]  ? clear_bhb_loop+0x55/0xb0
[  137.238270][T11128]  ? clear_bhb_loop+0x55/0xb0
[  137.243106][T11128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.249036][T11128] RIP: 0033:0x7f1dcf0e0809
[  137.253473][T11128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.273349][T11128] RSP: 002b:00007f1dcd757058 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  137.281790][T11128] RAX: ffffffffffffffda RBX: 00007f1dcf2a5fa0 RCX: 00007f1dcf0e0809
[  137.289768][T11128] RDX: 0000000000000001 RSI: 0000000020000840 RDI: 0000000000000005
[  137.297799][T11128] RBP: 00007f1dcd7570a0 R08: 0000000000000000 R09: 0000000000000000
[  137.305787][T11128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.313800][T11128] R13: 0000000000000000 R14: 00007f1dcf2a5fa0 R15: 00007fffff1d34f8
[  137.321812][T11128]  </TASK>
[  137.413846][T11131] __nla_validate_parse: 6 callbacks suppressed
[  137.413919][T11131] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2604'.
[  137.433718][T11131] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  137.464249][T11139] loop1: detected capacity change from 0 to 1024
[  137.476685][T11139] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2607: Failed to acquire dquot type 0
[  137.495731][T11139] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  137.511721][T11139] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2607: corrupted inode contents
[  137.527465][T11139] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #13: comm syz.1.2607: mark_inode_dirty error
[  137.556253][T11139] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2607: corrupted inode contents
[  137.589173][T11139] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #13: comm syz.1.2607: mark_inode_dirty error
[  137.606182][T11139] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2607: corrupted inode contents
[  137.614464][T11150] loop4: detected capacity change from 0 to 512
[  137.633534][T11139] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  137.654803][T11150] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  137.666156][T11139] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2607: corrupted inode contents
[  137.694988][T11158] loop5: detected capacity change from 0 to 2048
[  137.699321][T11139] EXT4-fs error (device loop1): ext4_truncate:4240: inode #13: comm syz.1.2607: mark_inode_dirty error
[  137.716369][T11150] EXT4-fs (loop4): 1 orphan inode deleted
[  137.716566][T11139] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  137.722197][T11150] EXT4-fs (loop4): 1 truncate cleaned up
[  137.731886][T11139] EXT4-fs (loop1): 1 truncate cleaned up
[  137.765716][T11139] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2607: Failed to acquire dquot type 0
[  137.780868][T11164] netlink: 116 bytes leftover after parsing attributes in process `syz.2.2615'.
[  137.806352][T11158] netlink: 'syz.5.2614': attribute type 39 has an invalid length.
[  137.980486][T11186] loop2: detected capacity change from 0 to 512
[  138.000561][T11186] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  138.017711][T11186] EXT4-fs (loop2): 1 truncate cleaned up
[  138.043623][T11186] EXT4-fs error (device loop2): ext4_xattr_inode_iget:440: comm syz.2.2625: inode #1073372648: comm syz.2.2625: iget: illegal inode #
[  138.060409][T11186] EXT4-fs error (device loop2): ext4_xattr_inode_iget:445: comm syz.2.2625: error while reading EA inode 1073372648 err=-117
[  138.061116][T11191] loop4: detected capacity change from 0 to 1024
[  138.080331][T11191] EXT4-fs: Ignoring removed orlov option
[  138.085992][T11191] EXT4-fs: Ignoring removed orlov option
[  138.096702][T11177] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2621'.
[  138.106095][T11177] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  138.131153][T11186] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2977: inode #15: comm syz.2.2625: corrupted xattr block 33: invalid header
[  138.146653][T11195] 9pnet_fd: Insufficient options for proto=fd
[  138.153939][T11197] netlink: 116 bytes leftover after parsing attributes in process `syz.5.2627'.
[  138.165839][T11191] 9pnet_fd: Insufficient options for proto=fd
[  138.182947][T11186] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -117)
[  138.245942][T11200] loop4: detected capacity change from 0 to 1024
[  138.273553][T11200] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2629: Failed to acquire dquot type 0
[  138.298465][T11200] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  138.314228][T11200] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2629: corrupted inode contents
[  138.327346][T11200] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #13: comm syz.4.2629: mark_inode_dirty error
[  138.339495][T11200] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2629: corrupted inode contents
[  138.344260][T11206] loop2: detected capacity change from 0 to 512
[  138.351702][T11200] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.2629: mark_inode_dirty error
[  138.372282][T11200] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2629: corrupted inode contents
[  138.384537][T11200] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  138.393605][T11200] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2629: corrupted inode contents
[  138.405885][T11200] EXT4-fs error (device loop4): ext4_truncate:4240: inode #13: comm syz.4.2629: mark_inode_dirty error
[  138.417249][T11206] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  138.425560][T11200] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  138.436772][T11200] EXT4-fs (loop4): 1 truncate cleaned up
[  138.449256][T11200] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2629: Failed to acquire dquot type 0
[  138.461563][T11206] EXT4-fs (loop2): 1 orphan inode deleted
[  138.467710][T11206] EXT4-fs (loop2): 1 truncate cleaned up
[  138.478081][T11203] vhci_hcd: invalid port number 255
[  138.483332][T11203] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  138.588831][T11211] loop2: detected capacity change from 0 to 2048
[  138.622450][T11211] netlink: 'syz.2.2632': attribute type 39 has an invalid length.
[  138.738641][T11226] netlink: 116 bytes leftover after parsing attributes in process `syz.2.2638'.
[  138.759770][T11227] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2637'.
[  138.796577][T11227] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  138.809588][T11231] FAULT_INJECTION: forcing a failure.
[  138.809588][T11231] name failslab, interval 1, probability 0, space 0, times 0
[  138.822588][T11231] CPU: 1 UID: 0 PID: 11231 Comm: syz.1.2640 Not tainted 6.12.0-syzkaller-10553-gb86545e02e8c #0
[  138.833355][T11231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  138.843409][T11231] Call Trace:
[  138.846802][T11231]  <TASK>
[  138.849748][T11231]  dump_stack_lvl+0xf2/0x150
[  138.854424][T11231]  dump_stack+0x15/0x20
[  138.858573][T11231]  should_fail_ex+0x223/0x230
[  138.863267][T11231]  should_failslab+0x8f/0xb0
[  138.867949][T11231]  kmem_cache_alloc_node_noprof+0x59/0x320
[  138.873854][T11231]  ? __alloc_skb+0x10b/0x310
[  138.878476][T11231]  __alloc_skb+0x10b/0x310
[  138.883322][T11231]  netlink_alloc_large_skb+0xad/0xe0
[  138.888764][T11231]  netlink_sendmsg+0x3b4/0x6e0
[  138.893606][T11231]  ? __pfx_netlink_sendmsg+0x10/0x10
[  138.898907][T11231]  __sock_sendmsg+0x140/0x180
[  138.903580][T11231]  ____sys_sendmsg+0x312/0x410
[  138.908339][T11231]  __sys_sendmsg+0x19d/0x230
[  138.912943][T11231]  __x64_sys_sendmsg+0x46/0x50
[  138.917801][T11231]  x64_sys_call+0x2734/0x2dc0
[  138.923062][T11231]  do_syscall_64+0xc9/0x1c0
[  138.928061][T11231]  ? clear_bhb_loop+0x55/0xb0
[  138.933225][T11231]  ? clear_bhb_loop+0x55/0xb0
[  138.938602][T11231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.944690][T11231] RIP: 0033:0x7ff468ab0809
[  138.949196][T11231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.968976][T11231] RSP: 002b:00007ff467127058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.977905][T11231] RAX: ffffffffffffffda RBX: 00007ff468c75fa0 RCX: 00007ff468ab0809
[  138.985876][T11231] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000004
[  138.993837][T11231] RBP: 00007ff4671270a0 R08: 0000000000000000 R09: 0000000000000000
[  139.002079][T11231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.010733][T11231] R13: 0000000000000000 R14: 00007ff468c75fa0 R15: 00007fff9bfbe768
[  139.018929][T11231]  </TASK>
[  139.072815][T11237] loop3: detected capacity change from 0 to 1024
[  139.089685][T11237] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2643: Failed to acquire dquot type 0
[  139.134335][T11240] loop1: detected capacity change from 0 to 512
[  139.146914][T11240] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  139.161114][T11237] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  139.175568][T11248] loop5: detected capacity change from 0 to 2048
[  139.184086][T11237] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2643: corrupted inode contents
[  139.196790][T11237] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.2643: mark_inode_dirty error
[  139.222022][T11240] EXT4-fs (loop1): 1 orphan inode deleted
[  139.227877][T11240] EXT4-fs (loop1): 1 truncate cleaned up
[  139.237219][T11237] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2643: corrupted inode contents
[  139.250835][T11237] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.2643: mark_inode_dirty error
[  139.264478][T11237] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2643: corrupted inode contents
[  139.276766][T11237] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  139.286089][T11237] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2643: corrupted inode contents
[  139.298457][T11237] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.2643: mark_inode_dirty error
[  139.310072][T11237] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  139.319371][T11237] EXT4-fs (loop3): 1 truncate cleaned up
[  139.332909][T11248] netlink: 'syz.5.2647': attribute type 39 has an invalid length.
[  139.345683][T11264] netlink: 116 bytes leftover after parsing attributes in process `syz.1.2650'.
[  139.360272][T11237] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2643: Failed to acquire dquot type 0
[  139.469159][T11280] serio: Serial port ptm0
[  139.531387][T11270] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2654'.
[  139.541672][T11285] vhci_hcd: invalid port number 255
[  139.546958][T11285] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  139.564816][T11270] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  139.579624][T11292] FAULT_INJECTION: forcing a failure.
[  139.579624][T11292] name failslab, interval 1, probability 0, space 0, times 0
[  139.592464][T11292] CPU: 0 UID: 0 PID: 11292 Comm: syz.4.2657 Not tainted 6.12.0-syzkaller-10553-gb86545e02e8c #0
[  139.602891][T11292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  139.612954][T11292] Call Trace:
[  139.616242][T11292]  <TASK>
[  139.619187][T11292]  dump_stack_lvl+0xf2/0x150
[  139.623840][T11292]  dump_stack+0x15/0x20
[  139.628009][T11292]  should_fail_ex+0x223/0x230
[  139.632705][T11292]  ? audit_log_d_path+0x96/0x250
[  139.637704][T11292]  should_failslab+0x8f/0xb0
[  139.642365][T11292]  __kmalloc_cache_noprof+0x4e/0x320
[  139.647715][T11292]  audit_log_d_path+0x96/0x250
[  139.652540][T11292]  ? __rcu_read_unlock+0x4e/0x70
[  139.657482][T11292]  audit_log_d_path_exe+0x42/0x70
[  139.662552][T11292]  audit_log_task+0x192/0x1c0
[  139.667310][T11292]  audit_seccomp+0x68/0x130
[  139.671810][T11292]  __seccomp_filter+0x6fa/0x1180
[  139.676758][T11292]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  139.682463][T11292]  ? vfs_write+0x596/0x920
[  139.686960][T11292]  ? putname+0xcf/0xf0
[  139.691075][T11292]  __secure_computing+0x9f/0x1c0
[  139.696062][T11292]  syscall_trace_enter+0xd1/0x1f0
[  139.701156][T11292]  ? fpregs_assert_state_consistent+0x83/0xa0
[  139.707273][T11292]  do_syscall_64+0xaa/0x1c0
[  139.711853][T11292]  ? clear_bhb_loop+0x55/0xb0
[  139.716582][T11292]  ? clear_bhb_loop+0x55/0xb0
[  139.721362][T11292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.727271][T11292] RIP: 0033:0x7f1dcf0e0809
[  139.731712][T11292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.751399][T11292] RSP: 002b:00007f1dcd757058 EFLAGS: 00000246 ORIG_RAX: 000000000000000e
[  139.759922][T11292] RAX: ffffffffffffffda RBX: 00007f1dcf2a5fa0 RCX: 00007f1dcf0e0809
[  139.767897][T11292] RDX: 0000000000000000 RSI: 000000002078b000 RDI: 0000000000000000
[  139.775948][T11292] RBP: 00007f1dcd7570a0 R08: 0000000000000000 R09: 0000000000000000
[  139.783923][T11292] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  139.791975][T11292] R13: 0000000000000000 R14: 00007f1dcf2a5fa0 R15: 00007fffff1d34f8
[  139.800013][T11292]  </TASK>
[  139.861948][T11302] loop4: detected capacity change from 0 to 512
[  139.868916][T11302] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  139.882246][T11304] FAULT_INJECTION: forcing a failure.
[  139.882246][T11304] name failslab, interval 1, probability 0, space 0, times 0
[  139.895087][T11304] CPU: 0 UID: 0 PID: 11304 Comm: syz.5.2660 Not tainted 6.12.0-syzkaller-10553-gb86545e02e8c #0
[  139.905604][T11304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  139.915896][T11304] Call Trace:
[  139.919171][T11304]  <TASK>
[  139.922100][T11304]  dump_stack_lvl+0xf2/0x150
[  139.926698][T11304]  dump_stack+0x15/0x20
[  139.930855][T11304]  should_fail_ex+0x223/0x230
[  139.935595][T11304]  ? alloc_fs_context+0x44/0x4e0
[  139.940562][T11304]  should_failslab+0x8f/0xb0
[  139.945251][T11304]  __kmalloc_cache_noprof+0x4e/0x320
[  139.950561][T11304]  alloc_fs_context+0x44/0x4e0
[  139.955411][T11304]  ? strncmp+0x34/0x70
[  139.959513][T11304]  fs_context_for_mount+0x21/0x30
[  139.964576][T11304]  do_new_mount+0xf3/0x690
[  139.969051][T11304]  path_mount+0x49b/0xb30
[  139.973468][T11304]  __se_sys_mount+0x27c/0x2d0
[  139.978249][T11304]  __x64_sys_mount+0x67/0x80
[  139.982909][T11304]  x64_sys_call+0x2c84/0x2dc0
[  139.987647][T11304]  do_syscall_64+0xc9/0x1c0
[  139.992239][T11304]  ? clear_bhb_loop+0x55/0xb0
[  139.996918][T11304]  ? clear_bhb_loop+0x55/0xb0
[  140.001921][T11304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.007877][T11304] RIP: 0033:0x7fc172470809
[  140.012282][T11304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.031921][T11304] RSP: 002b:00007fc170ae7058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  140.040701][T11304] RAX: ffffffffffffffda RBX: 00007fc172635fa0 RCX: 00007fc172470809
[  140.048664][T11304] RDX: 0000000020000140 RSI: 0000000020000180 RDI: 0000000000000000
[  140.056732][T11304] RBP: 00007fc170ae70a0 R08: 0000000020000c80 R09: 0000000000000000
[  140.064694][T11304] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  140.072657][T11304] R13: 0000000000000000 R14: 00007fc172635fa0 R15: 00007ffd80a2ce28
[  140.080627][T11304]  </TASK>
[  140.094019][T11302] EXT4-fs (loop4): 1 orphan inode deleted
[  140.100084][T11302] EXT4-fs (loop4): 1 truncate cleaned up
[  140.107658][T11306] netlink: 116 bytes leftover after parsing attributes in process `syz.3.2662'.
[  140.176428][T11319] loop3: detected capacity change from 0 to 2048
[  140.215819][T11323] loop2: detected capacity change from 0 to 1024
[  140.246280][T11323] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2667: Failed to acquire dquot type 0
[  140.295744][T11319] netlink: 'syz.3.2664': attribute type 39 has an invalid length.
[  140.328987][T11323] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  140.432224][T11323] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2667: corrupted inode contents
[  140.445747][T11337] serio: Serial port ptm0
[  140.479040][T11323] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #13: comm syz.2.2667: mark_inode_dirty error
[  140.541654][T11323] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2667: corrupted inode contents
[  140.578350][T11323] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #13: comm syz.2.2667: mark_inode_dirty error
[  140.591342][T11362] netlink: 116 bytes leftover after parsing attributes in process `syz.5.2674'.
[  140.606664][T11342] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  140.621929][T11323] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2667: corrupted inode contents
[  140.661105][T11323] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  140.670534][T11367] loop3: detected capacity change from 0 to 512
[  140.683757][T11369] sd 0:0:1:0: device reset
[  140.694003][T11367] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  140.704321][T11323] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #13: comm syz.2.2667: corrupted inode contents
[  140.723376][T11323] EXT4-fs error (device loop2): ext4_truncate:4240: inode #13: comm syz.2.2667: mark_inode_dirty error
[  140.735703][T11367] EXT4-fs (loop3): 1 orphan inode deleted
[  140.741550][T11367] EXT4-fs (loop3): 1 truncate cleaned up
[  140.747709][T11323] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  140.788146][T11323] EXT4-fs (loop2): 1 truncate cleaned up
[  140.810199][T11323] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2667: Failed to acquire dquot type 0
[  140.849427][   T29] kauditd_printk_skb: 437 callbacks suppressed
[  140.849441][   T29] audit: type=1326 audit(1732801264.728:21536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb509b0809 code=0x7ffc0000
[  140.962634][T11400] loop3: detected capacity change from 0 to 2048
[  140.965703][   T29] audit: type=1326 audit(1732801264.758:21537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7feb509b0809 code=0x7ffc0000
[  140.992700][   T29] audit: type=1326 audit(1732801264.758:21538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb509b0809 code=0x7ffc0000
[  141.016753][   T29] audit: type=1326 audit(1732801264.758:21539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7feb509b0809 code=0x7ffc0000
[  141.040872][   T29] audit: type=1326 audit(1732801264.758:21540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb509b0809 code=0x7ffc0000
[  141.064820][   T29] audit: type=1326 audit(1732801264.758:21541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7feb509b0809 code=0x7ffc0000
[  141.071664][T11400] netlink: 'syz.3.2683': attribute type 39 has an invalid length.
[  141.088518][   T29] audit: type=1326 audit(1732801264.758:21542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb509b0809 code=0x7ffc0000
[  141.120157][   T29] audit: type=1326 audit(1732801264.758:21543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7feb509af170 code=0x7ffc0000
[  141.143858][   T29] audit: type=1326 audit(1732801264.758:21544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb509b0809 code=0x7ffc0000
[  141.167516][   T29] audit: type=1326 audit(1732801264.758:21545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11322 comm="syz.2.2667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7feb509b0809 code=0x7ffc0000
[  141.304650][T11417] loop2: detected capacity change from 0 to 128
[  141.325011][T11417] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  141.349922][T11418] loop3: detected capacity change from 0 to 2048
[  141.375507][T11417] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  141.391509][T11418] netlink: 'syz.3.2698': attribute type 39 has an invalid length.
[  141.399045][T11414] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  141.508658][T11430] loop3: detected capacity change from 0 to 1024
[  141.528537][T11430] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2692: Failed to acquire dquot type 0
[  141.540890][T11430] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  141.555697][T11430] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2692: corrupted inode contents
[  141.574131][T11430] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.2692: mark_inode_dirty error
[  141.581982][T11436] loop4: detected capacity change from 0 to 512
[  141.585962][T11430] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2692: corrupted inode contents
[  141.604119][T11430] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.2692: mark_inode_dirty error
[  141.617607][T11436] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  141.625056][T11430] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2692: corrupted inode contents
[  141.640367][T11430] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  141.651802][T11436] EXT4-fs (loop4): 1 orphan inode deleted
[  141.657628][T11436] EXT4-fs (loop4): 1 truncate cleaned up
[  141.680323][T11430] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.2692: corrupted inode contents
[  141.693108][T11430] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.2692: mark_inode_dirty error
[  141.708572][T11430] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  141.729152][T11430] EXT4-fs (loop3): 1 truncate cleaned up
[  141.742319][T11430] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2692: Failed to acquire dquot type 0
[  141.785147][T11452] loop4: detected capacity change from 0 to 2048
[  141.802813][T11452] netlink: 'syz.4.2701': attribute type 39 has an invalid length.
[  141.943961][T11461] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  142.005123][T11474] loop5: detected capacity change from 0 to 512
[  142.021166][T11478] loop4: detected capacity change from 0 to 1024
[  142.031271][T11474] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  142.043125][T11474] EXT4-fs (loop5): 1 orphan inode deleted
[  142.048930][T11474] EXT4-fs (loop5): 1 truncate cleaned up
[  142.059258][T11478] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2712: Failed to acquire dquot type 0
[  142.087924][T11478] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  142.131187][T11478] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2712: corrupted inode contents
[  142.166706][T11478] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #13: comm syz.4.2712: mark_inode_dirty error
[  142.191619][T11478] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2712: corrupted inode contents
[  142.206683][T11478] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.2712: mark_inode_dirty error
[  142.226209][T11490] loop5: detected capacity change from 0 to 2048
[  142.233792][T11478] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2712: corrupted inode contents
[  142.251704][T11490] netlink: 'syz.5.2716': attribute type 39 has an invalid length.
[  142.253261][T11478] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  142.271887][T11478] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2712: corrupted inode contents
[  142.284148][T11478] EXT4-fs error (device loop4): ext4_truncate:4240: inode #13: comm syz.4.2712: mark_inode_dirty error
[  142.295711][T11478] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  142.305175][T11478] EXT4-fs (loop4): 1 truncate cleaned up
[  142.322855][T11478] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2712: Failed to acquire dquot type 0
[  142.475033][T11500] __nla_validate_parse: 7 callbacks suppressed
[  142.475047][T11500] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2719'.
[  142.540092][T11499] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2720'.
[  142.557769][T11499] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  142.648718][T11511] netlink: 116 bytes leftover after parsing attributes in process `syz.5.2723'.
[  142.785969][T11520] loop2: detected capacity change from 0 to 512
[  142.807177][T11522] loop5: detected capacity change from 0 to 2048
[  142.813880][T11507] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2721'.
[  142.822999][T11520] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  142.841486][T11507] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  142.863897][T11522] netlink: 'syz.5.2727': attribute type 39 has an invalid length.
[  142.872606][T11520] EXT4-fs (loop2): 1 orphan inode deleted
[  142.878426][T11520] EXT4-fs (loop2): 1 truncate cleaned up
[  142.925856][T11528] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2728'.
[  142.974184][T11528] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  143.132094][T11548] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2732'.
[  143.148441][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x1
[  143.156026][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.163495][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.170949][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.178383][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.185788][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.193210][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.200822][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.208284][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.215696][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.224446][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.232075][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.239586][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.247013][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.251378][T11550] netlink: 116 bytes leftover after parsing attributes in process `syz.3.2736'.
[  143.254422][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.271106][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.278701][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.282110][T11541] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2729'.
[  143.286098][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.295484][T11551] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2733'.
[  143.302361][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.318860][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.326248][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.333455][T11551] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  143.333655][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.350889][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.358344][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.365790][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.373345][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.380772][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.388196][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.395591][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.403045][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.410491][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.418052][ T3400] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  143.427008][T11541] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  143.459031][ T3400] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  143.586787][T11557] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2738'.
[  143.711061][T11570] loop2: detected capacity change from 0 to 2048
[  143.793407][T11570] netlink: 'syz.2.2741': attribute type 39 has an invalid length.
[  143.866148][T11588] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  143.975642][T11602] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  144.121140][T11616] loop1: detected capacity change from 0 to 1024
[  144.168815][T11616] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2750: Failed to acquire dquot type 0
[  144.170416][T11618] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  144.221003][T11616] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  144.237712][T11616] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2750: corrupted inode contents
[  144.255934][T11616] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #13: comm syz.1.2750: mark_inode_dirty error
[  144.273145][T11616] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2750: corrupted inode contents
[  144.297583][T11616] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #13: comm syz.1.2750: mark_inode_dirty error
[  144.335587][T11616] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2750: corrupted inode contents
[  144.373485][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x1
[  144.381079][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.388511][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.395910][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.403351][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.410807][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.418317][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.425706][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.433266][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.441168][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.476882][T11616] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  144.492206][T11616] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #13: comm syz.1.2750: corrupted inode contents
[  144.504899][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.512518][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.520011][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.527618][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.535154][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.542591][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.550093][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.557733][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.565298][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.565776][T11616] EXT4-fs error (device loop1): ext4_truncate:4240: inode #13: comm syz.1.2750: mark_inode_dirty error
[  144.572783][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.591406][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.598849][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.606308][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.613859][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.621463][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.623735][T11628] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  144.628921][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.628947][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.628968][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.628989][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.650271][T11616] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  144.653362][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.653392][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.684641][T11616] EXT4-fs (loop1): 1 truncate cleaned up
[  144.684848][ T3395] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  144.712714][ T3395] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  144.755517][T11616] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2750: Failed to acquire dquot type 0
[  144.873125][T11650] loop3: detected capacity change from 0 to 2048
[  144.937771][T11643] vhci_hcd: invalid port number 255
[  144.943053][T11643] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  144.957331][T11656] loop4: detected capacity change from 0 to 512
[  144.988095][T11656] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  145.023190][T11650] netlink: 'syz.3.2756': attribute type 39 has an invalid length.
[  145.047860][T11656] EXT4-fs (loop4): 1 orphan inode deleted
[  145.053833][T11656] EXT4-fs (loop4): 1 truncate cleaned up
[  145.181196][T11682] loop3: detected capacity change from 0 to 512
[  145.197800][T11682] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  145.241845][T11682] EXT4-fs (loop3): 1 orphan inode deleted
[  145.247852][T11682] EXT4-fs (loop3): 1 truncate cleaned up
[  145.271525][T11689] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  145.358693][T11691] vhci_hcd: invalid port number 255
[  145.363932][T11691] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  145.427008][T11694] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  145.447575][T11701] loop1: detected capacity change from 0 to 2048
[  145.477301][T11701] netlink: 'syz.1.2771': attribute type 39 has an invalid length.
[  145.505944][T11705] loop4: detected capacity change from 0 to 1024
[  145.517613][T11705] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2773: Failed to acquire dquot type 0
[  145.529739][T11705] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  145.545138][T11705] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2773: corrupted inode contents
[  145.557596][T11705] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #13: comm syz.4.2773: mark_inode_dirty error
[  145.579822][T11705] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2773: corrupted inode contents
[  145.592113][T11705] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.2773: mark_inode_dirty error
[  145.603944][T11705] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2773: corrupted inode contents
[  145.617528][T11708] vhci_hcd: invalid port number 255
[  145.617599][T11705] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  145.622791][T11708] vhci_hcd: default hub control req: 0400 v0000 i00ff l0
[  145.631768][T11705] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #13: comm syz.4.2773: corrupted inode contents
[  145.667145][T11705] EXT4-fs error (device loop4): ext4_truncate:4240: inode #13: comm syz.4.2773: mark_inode_dirty error
[  145.692338][T11705] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  145.711293][T11705] EXT4-fs (loop4): 1 truncate cleaned up
[  145.778847][T11712] loop5: detected capacity change from 0 to 1024
[  145.802615][T11712] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2776: Failed to acquire dquot type 0
[  145.815242][T11705] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2773: Failed to acquire dquot type 0
[  145.844014][T11712] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  145.866943][T11712] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2776: corrupted inode contents
[  145.880619][   T29] kauditd_printk_skb: 551 callbacks suppressed
[  145.880630][   T29] audit: type=1326 audit(1732801269.758:22079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1dcf0e0809 code=0x7ffc0000
[  145.924763][T11712] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #13: comm syz.5.2776: mark_inode_dirty error
[  145.964703][T11712] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2776: corrupted inode contents
[  145.995031][   T29] audit: type=1326 audit(1732801269.788:22080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f1dcf0e0809 code=0x7ffc0000
[  146.018789][   T29] audit: type=1326 audit(1732801269.788:22081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1dcf0e0809 code=0x7ffc0000
[  146.042464][   T29] audit: type=1326 audit(1732801269.788:22082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1dcf0e0809 code=0x7ffc0000
[  146.066080][   T29] audit: type=1326 audit(1732801269.788:22083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7f1dcf0e0809 code=0x7ffc0000
[  146.089776][   T29] audit: type=1326 audit(1732801269.788:22084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1dcf0e0809 code=0x7ffc0000
[  146.113444][   T29] audit: type=1326 audit(1732801269.788:22085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1dcf0e0809 code=0x7ffc0000
[  146.137245][   T29] audit: type=1326 audit(1732801269.788:22086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1dcf0df170 code=0x7ffc0000
[  146.161105][   T29] audit: type=1326 audit(1732801269.788:22087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1dcf0e0809 code=0x7ffc0000
[  146.185061][   T29] audit: type=1326 audit(1732801269.788:22088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11704 comm="syz.4.2773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1dcf0e0809 code=0x7ffc0000
[  146.212456][T11712] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.2776: mark_inode_dirty error
[  146.234815][T11712] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2776: corrupted inode contents
[  146.250673][T11712] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  146.263156][T11712] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #13: comm syz.5.2776: corrupted inode contents
[  146.275295][T11712] EXT4-fs error (device loop5): ext4_truncate:4240: inode #13: comm syz.5.2776: mark_inode_dirty error
[  146.286643][T11712] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  146.296363][T11712] EXT4-fs (loop5): 1 truncate cleaned up
[  146.306518][T11712] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2776: Failed to acquire dquot type 0
[  146.425461][T11731] loop2: detected capacity change from 0 to 2048
[  146.440522][T11737] loop1: detected capacity change from 0 to 512
[  146.447285][T11737] ext4: Unknown parameter 'fsuuid'
[  146.475392][T11731] netlink: 'syz.2.2784': attribute type 39 has an invalid length.
[  146.634964][T11755] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  146.700481][T11759] loop2: detected capacity change from 0 to 512
[  146.719635][T11759] ext3: Unknown parameter 'fsuuid'
[  146.837057][T11770] loop2: detected capacity change from 0 to 2048
[  146.867142][T11770] netlink: 'syz.2.2799': attribute type 39 has an invalid length.
[  147.089407][T11785] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  147.174829][T11796] loop4: detected capacity change from 0 to 512
[  147.194850][T11796] EXT4-fs: Ignoring removed bh option
[  147.211847][T11796] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  147.225376][T11796] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  147.233911][T11796] EXT4-fs (loop4): orphan cleanup on readonly fs
[  147.240766][T11796] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2809: Failed to acquire dquot type 1
[  147.252676][T11796] EXT4-fs (loop4): Remounting filesystem read-only
[  147.259434][T11796] EXT4-fs (loop4): 1 orphan inode deleted
[  147.265990][T11796] SELinux: (dev loop4, type ext4) getxattr errno 5
[  147.342836][T11806] FAULT_INJECTION: forcing a failure.
[  147.342836][T11806] name failslab, interval 1, probability 0, space 0, times 0
[  147.355492][T11806] CPU: 1 UID: 0 PID: 11806 Comm: syz.3.2813 Not tainted 6.12.0-syzkaller-10553-gb86545e02e8c #0
[  147.365912][T11806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  147.376725][T11806] Call Trace:
[  147.380143][T11806]  <TASK>
[  147.383096][T11806]  dump_stack_lvl+0xf2/0x150
[  147.387853][T11806]  dump_stack+0x15/0x20
[  147.392029][T11806]  should_fail_ex+0x223/0x230
[  147.396748][T11806]  ? rtnl_newlink+0x5d/0x1200
[  147.401424][T11806]  should_failslab+0x8f/0xb0
[  147.406006][T11806]  __kmalloc_cache_noprof+0x4e/0x320
[  147.411640][T11806]  ? __pfx_rtnl_newlink+0x10/0x10
[  147.416717][T11806]  rtnl_newlink+0x5d/0x1200
[  147.421214][T11806]  ? xas_load+0x3ae/0x3d0
[  147.425566][T11806]  ? xas_load+0x3ae/0x3d0
[  147.429979][T11806]  ? __rcu_read_unlock+0x4e/0x70
[  147.434982][T11806]  ? __memcg_slab_free_hook+0xc9/0x1e0
[  147.440442][T11806]  ? __rcu_read_unlock+0x4e/0x70
[  147.445422][T11806]  ? avc_has_perm_noaudit+0x1cc/0x210
[  147.450831][T11806]  ? selinux_capable+0x1f2/0x260
[  147.455838][T11806]  ? security_capable+0x81/0x90
[  147.460747][T11806]  ? ns_capable+0x7d/0xb0
[  147.465094][T11806]  ? __pfx_rtnl_newlink+0x10/0x10
[  147.470230][T11806]  rtnetlink_rcv_msg+0x651/0x710
[  147.475170][T11806]  ? ref_tracker_free+0x3a5/0x410
[  147.480323][T11806]  ? __dev_queue_xmit+0x186/0x2090
[  147.485469][T11806]  netlink_rcv_skb+0x12c/0x230
[  147.490256][T11806]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  147.495760][T11806]  rtnetlink_rcv+0x1c/0x30
[  147.500175][T11806]  netlink_unicast+0x599/0x670
[  147.504981][T11806]  netlink_sendmsg+0x5cc/0x6e0
[  147.509860][T11806]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.515162][T11806]  __sock_sendmsg+0x140/0x180
[  147.519967][T11806]  ____sys_sendmsg+0x312/0x410
[  147.524727][T11806]  __sys_sendmsg+0x19d/0x230
[  147.529377][T11806]  __x64_sys_sendmsg+0x46/0x50
[  147.534202][T11806]  x64_sys_call+0x2734/0x2dc0
[  147.538879][T11806]  do_syscall_64+0xc9/0x1c0
[  147.543373][T11806]  ? clear_bhb_loop+0x55/0xb0
[  147.548041][T11806]  ? clear_bhb_loop+0x55/0xb0
[  147.552819][T11806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.558895][T11806] RIP: 0033:0x7fdae1b60809
[  147.563459][T11806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.583071][T11806] RSP: 002b:00007fdae01d7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  147.591485][T11806] RAX: ffffffffffffffda RBX: 00007fdae1d25fa0 RCX: 00007fdae1b60809
[  147.599516][T11806] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  147.607478][T11806] RBP: 00007fdae01d70a0 R08: 0000000000000000 R09: 0000000000000000
[  147.615501][T11806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.623465][T11806] R13: 0000000000000000 R14: 00007fdae1d25fa0 R15: 00007ffef823e238
[  147.631528][T11806]  </TASK>
[  147.648622][T11803] loop2: detected capacity change from 0 to 2048
[  147.711966][T11803] netlink: 'syz.2.2812': attribute type 39 has an invalid length.
[  147.738960][T11816] ==================================================================
[  147.747075][T11816] BUG: KCSAN: data-race in mas_replace_node / mtree_range_walk
[  147.754622][T11816] 
[  147.756934][T11816] write to 0xffff888103492600 of 8 bytes by task 11815 on cpu 0:
[  147.764666][T11816]  mas_replace_node+0x1b8/0x430
[  147.769512][T11816]  mas_wr_store_entry+0x1fbf/0x2d10
[  147.774706][T11816]  mas_store_prealloc+0x6bf/0x960
[  147.779912][T11816]  vma_complete+0x3a7/0x760
[  147.784410][T11816]  __split_vma+0x5d6/0x6a0
[  147.788821][T11816]  vma_modify+0xd3/0x1e0
[  147.793059][T11816]  vma_modify_flags+0xf1/0x120
[  147.797826][T11816]  mprotect_fixup+0x31a/0x5e0
[  147.802587][T11816]  do_mprotect_pkey+0x653/0x960
[  147.807436][T11816]  __x64_sys_mprotect+0x48/0x60
[  147.812285][T11816]  x64_sys_call+0x2770/0x2dc0
[  147.816959][T11816]  do_syscall_64+0xc9/0x1c0
[  147.821536][T11816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.827426][T11816] 
[  147.829740][T11816] read to 0xffff888103492600 of 8 bytes by task 11816 on cpu 1:
[  147.837443][T11816]  mtree_range_walk+0x33d/0x460
[  147.842372][T11816]  mas_walk+0x16e/0x320
[  147.846515][T11816]  lock_vma_under_rcu+0x95/0x260
[  147.851449][T11816]  exc_page_fault+0x150/0x650
[  147.856129][T11816]  asm_exc_page_fault+0x26/0x30
[  147.860981][T11816] 
[  147.863288][T11816] value changed: 0xffff88810446ff0e -> 0xffff888103492600
[  147.870388][T11816] 
[  147.872703][T11816] Reported by Kernel Concurrency Sanitizer on:
[  147.878835][T11816] CPU: 1 UID: 0 PID: 11816 Comm: syz.4.2815 Not tainted 6.12.0-syzkaller-10553-gb86545e02e8c #0
[  147.889500][T11816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  147.899717][T11816] ==================================================================