last executing test programs:

1.697195471s ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)

1.649660228s ago: executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000010700000000000000f9000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = dup(0xffffffffffffffff)
mount$9p_fd(0x2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])

1.295487543s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000087b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = syz_usb_connect$hid(0x6, 0x36, &(0x7f0000001180)=ANY=[], 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r2, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000e00008500000083000000bf090000000000005509010000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
syz_usb_connect(0x0, 0x10b, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000b24b4a10e60407007501000005010902240001010000000904000002ccb8280009050b02000000000009058a02"], 0x0)

1.281097714s ago: executing program 1:
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffe00}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})

1.227200443s ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001b00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r0}, &(0x7f0000001c00), &(0x7f0000001c40)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r2}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r3}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000010c0)={<r4=>0xffffffffffffffff})
recvmsg(r4, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)

283.970497ms ago: executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000087b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = syz_usb_connect$hid(0x6, 0x36, &(0x7f0000001180)=ANY=[], 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r1, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000e00008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000895"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_usb_connect(0x0, 0x10b, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000b24b4a10e60407007501000005010902240001010000000904000002ccb8280009050b02000000000009058a02"], 0x0)

253.095231ms ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000008110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r3}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400})

221.340746ms ago: executing program 2:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='block_split\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='block_split\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r3, &(0x7f0000000000), 0x248800)

97.398655ms ago: executing program 4:
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000500))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r1}, &(0x7f0000000400), &(0x7f00000004c0)=r2}, 0x20)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES32=r0, @ANYRESDEC=r0], 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00', @ANYRES16=0x0, @ANYRES32=r5, @ANYBLOB="050033000000000005003000010000000a0009000000000000000000"], 0x48}, 0x1, 0x0, 0x0, 0x2048005}, 0x88090)

45.007393ms ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0xf)
ioctl$TCFLSH(r2, 0x400455c8, 0x40000000004)

0s ago: executing program 2:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.217' (ED25519) to the list of known hosts.
2024/06/02 00:54:02 fuzzer started
2024/06/02 00:54:02 dialing manager at 10.128.0.163:30008
[   27.460822][   T30] audit: type=1400 audit(1717289642.877:66): avc:  denied  { node_bind } for  pid=286 comm="syz-fuzzer" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   27.481548][   T30] audit: type=1400 audit(1717289642.887:67): avc:  denied  { name_bind } for  pid=286 comm="syz-fuzzer" src=6060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   27.551502][   T30] audit: type=1400 audit(1717289642.967:68): avc:  denied  { integrity } for  pid=296 comm="syz-executor" lockdown_reason="debugfs access" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[   27.584449][  T296] cgroup: Unknown subsys name 'net'
[   27.591857][   T30] audit: type=1400 audit(1717289642.977:69): avc:  denied  { setattr } for  pid=295 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   27.616239][  T296] cgroup: Unknown subsys name 'devices'
[   27.621549][   T30] audit: type=1400 audit(1717289642.987:70): avc:  denied  { mounton } for  pid=297 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   27.646356][   T30] audit: type=1400 audit(1717289642.987:71): avc:  denied  { mount } for  pid=297 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   27.671926][   T30] audit: type=1400 audit(1717289642.997:72): avc:  denied  { mounton } for  pid=296 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   27.686011][  T302] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   27.696810][   T30] audit: type=1400 audit(1717289642.997:73): avc:  denied  { mount } for  pid=296 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   27.726990][   T30] audit: type=1400 audit(1717289643.007:74): avc:  denied  { unmount } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   27.747211][   T30] audit: type=1400 audit(1717289643.127:75): avc:  denied  { relabelto } for  pid=302 comm="mkswap" name="swap-file" dev="sda1" ino=1926 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   27.791545][  T301] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   27.805034][  T296] cgroup: Unknown subsys name 'hugetlb'
[   27.810915][  T296] cgroup: Unknown subsys name 'rlimit'
2024/06/02 00:54:03 starting 5 executor processes
[   29.803545][  T313] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.810749][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.818869][  T313] device bridge_slave_0 entered promiscuous mode
[   29.829542][  T313] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.836532][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.845150][  T313] device bridge_slave_1 entered promiscuous mode
[   29.946242][  T312] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.953160][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.961083][  T312] device bridge_slave_0 entered promiscuous mode
[   29.987847][  T312] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.994784][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.002626][  T312] device bridge_slave_1 entered promiscuous mode
[   30.107023][  T315] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.113951][  T315] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.121964][  T315] device bridge_slave_0 entered promiscuous mode
[   30.128851][  T314] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.135810][  T314] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.143866][  T314] device bridge_slave_0 entered promiscuous mode
[   30.174612][  T315] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.181514][  T315] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.189668][  T315] device bridge_slave_1 entered promiscuous mode
[   30.196263][  T314] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.203152][  T314] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.211045][  T314] device bridge_slave_1 entered promiscuous mode
[   30.360347][  T316] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.367296][  T316] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.375341][  T316] device bridge_slave_0 entered promiscuous mode
[   30.418091][  T316] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.425104][  T316] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.433173][  T316] device bridge_slave_1 entered promiscuous mode
[   30.730660][  T313] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.737600][  T313] bridge0: port 2(bridge_slave_1) entered forwarding state
[   30.744813][  T313] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.751681][  T313] bridge0: port 1(bridge_slave_0) entered forwarding state
[   30.771785][  T312] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.778738][  T312] bridge0: port 2(bridge_slave_1) entered forwarding state
[   30.785939][  T312] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.792832][  T312] bridge0: port 1(bridge_slave_0) entered forwarding state
[   30.855161][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.862451][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.870583][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.878099][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[   31.007037][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   31.015009][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   31.046573][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   31.055751][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   31.064159][  T334] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.071104][  T334] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.078932][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   31.087429][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   31.095692][  T334] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.102667][  T334] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.110247][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   31.117860][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   31.125643][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   31.134434][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   31.142986][  T334] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.149983][  T334] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.157513][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   31.166205][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   31.174870][  T334] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.181756][  T334] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.255316][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   31.262928][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   31.271573][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   31.279923][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   31.288296][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   31.296816][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   31.337941][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   31.345936][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   31.353605][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   31.362340][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   31.370704][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.377835][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.385212][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   31.393728][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   31.402403][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.409294][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.416665][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   31.425148][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   31.433268][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   31.443158][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   31.452206][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   31.465660][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   31.474387][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   31.483202][  T334] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.490233][  T334] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.512182][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   31.520443][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   31.528183][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   31.536766][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   31.545419][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   31.553683][  T317] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.560611][  T317] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.591833][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   31.600106][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   31.609064][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   31.617746][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   31.627120][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   31.635826][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.642789][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.650365][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   31.659261][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   31.667795][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.674688][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.697135][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   31.723751][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   31.732328][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   31.740850][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   31.749566][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   31.758166][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   31.766563][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   31.774760][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   31.783604][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   31.791851][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   31.806833][  T313] device veth0_vlan entered promiscuous mode
[   31.835778][  T312] device veth0_vlan entered promiscuous mode
[   31.842292][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   31.851488][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   31.859363][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   31.867530][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   31.876006][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   31.898467][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   31.907288][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   31.918550][  T313] device veth1_macvtap entered promiscuous mode
[   31.936083][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   31.944035][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   31.954123][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   31.987150][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   31.995902][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   32.004204][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   32.012694][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   32.038255][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   32.047394][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   32.056311][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   32.066200][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   32.074850][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   32.083353][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   32.100648][  T315] device veth0_vlan entered promiscuous mode
[   32.111707][  T312] device veth1_macvtap entered promiscuous mode
[   32.122995][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   32.131222][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   32.139455][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   32.147450][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   32.155567][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   32.169433][  T316] device veth0_vlan entered promiscuous mode
[   32.176092][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   32.183990][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   32.191976][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   32.200766][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   32.219610][  T314] device veth0_vlan entered promiscuous mode
[   32.236349][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   32.244458][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   32.253452][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   32.262730][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   32.271494][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   32.279414][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   32.319967][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   32.330402][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   32.339300][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   32.347653][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   32.356102][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   32.364704][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   32.373176][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   32.382042][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   32.393042][  T314] device veth1_macvtap entered promiscuous mode
[   32.405117][  T316] device veth1_macvtap entered promiscuous mode
[   32.432136][  T315] device veth1_macvtap entered promiscuous mode
[   32.478713][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   32.487892][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   32.489800][   T30] kauditd_printk_skb: 18 callbacks suppressed
[   32.489833][   T30] audit: type=1400 audit(1717289647.907:94): avc:  denied  { map_create } for  pid=340 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   32.500649][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   32.524623][   T30] audit: type=1400 audit(1717289647.927:95): avc:  denied  { perfmon } for  pid=340 comm="syz-executor.3" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   32.539053][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   32.559083][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   32.569174][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   32.572058][   T30] audit: type=1400 audit(1717289647.927:96): avc:  denied  { map_read map_write } for  pid=340 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   32.578395][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   32.606439][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   32.614129][   T30] audit: type=1400 audit(1717289647.927:97): avc:  denied  { prog_load } for  pid=340 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   32.624367][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   32.649059][   T30] audit: type=1400 audit(1717289647.927:98): avc:  denied  { bpf } for  pid=340 comm="syz-executor.3" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   32.655371][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   32.705292][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   32.753189][  T337] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   32.763189][  T337] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   32.785399][  T337] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   32.794415][  T337] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   32.927566][   T30] audit: type=1400 audit(1717289648.347:99): avc:  denied  { read write } for  pid=351 comm="syz-executor.0" name="raw-gadget" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   32.975021][   T30] audit: type=1400 audit(1717289648.347:100): avc:  denied  { open } for  pid=351 comm="syz-executor.0" path="/dev/raw-gadget" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   33.015786][   T30] audit: type=1400 audit(1717289648.347:101): avc:  denied  { ioctl } for  pid=351 comm="syz-executor.0" path="/dev/raw-gadget" dev="devtmpfs" ino=162 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   33.244722][   T26] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   33.494733][   T26] usb 1-1: Using ep0 maxpacket: 16
[   33.614770][   T26] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[   33.624328][   T26] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[   33.652612][   T26] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[   33.662322][   T26] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 0
[   33.774712][   T26] usb 1-1: New USB device found, idVendor=04e6, idProduct=0007, bcdDevice= 1.75
[   33.783738][   T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=5
[   33.792000][   T26] usb 1-1: SerialNumber: syz
[   33.816756][   T30] audit: type=1400 audit(1717289649.237:102): avc:  denied  { prog_run } for  pid=351 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   33.885695][   T26] usb-storage 1-1:1.0: USB Mass Storage device detected
[   33.906211][   T26] usb-storage 1-1:1.0: Quirks match for vid 04e6 pid 0007: 1
[   33.924671][   T26] scsi host1: usb-storage 1-1:1.0
[   33.958273][   T30] audit: type=1400 audit(1717289649.377:103): avc:  denied  { confidentiality } for  pid=370 comm="syz-executor.2" lockdown_reason="use of bpf to read kernel RAM" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[   34.170408][  T334] usb 1-1: USB disconnect, device number 2
[  134.174598][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  134.181216][    C1] rcu: 	1-...!: (9999 ticks this GP) idle=c75/1/0x4000000000000000 softirq=3287/3287 fqs=1 last_accelerate: 97cb/bee6 dyntick_enabled: 1
[  134.195101][    C1] 	(t=10002 jiffies g=2345 q=95)
[  134.199872][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 9999 jiffies! g2345 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  134.211861][    C1] rcu: 	Possible timer handling issue on cpu=0 timer-softirq=901
[  134.219394][    C1] rcu: rcu_preempt kthread starved for 10002 jiffies! g2345 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[  134.230657][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  134.240463][    C1] rcu: RCU grace-period kthread stack dump:
[  134.246198][    C1] task:rcu_preempt     state:I stack:28328 pid:   14 ppid:     2 flags:0x00004000
[  134.255322][    C1] Call Trace:
[  134.258433][    C1]  <TASK>
[  134.261317][    C1]  __schedule+0xccc/0x1590
[  134.265673][    C1]  ? __sched_text_start+0x8/0x8
[  134.270358][    C1]  ? del_timer_sync+0x1bc/0x230
[  134.275070][    C1]  ? __kasan_check_write+0x14/0x20
[  134.280198][    C1]  schedule+0x11f/0x1e0
[  134.284194][    C1]  schedule_timeout+0x18c/0x370
[  134.288872][    C1]  ? __kasan_check_write+0x14/0x20
[  134.293816][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  134.299125][    C1]  ? console_conditional_schedule+0x30/0x30
[  134.304884][    C1]  ? update_process_times+0x200/0x200
[  134.310093][    C1]  ? prepare_to_swait_event+0x308/0x320
[  134.315442][    C1]  rcu_gp_fqs_loop+0x2af/0xf80
[  134.320042][    C1]  ? dump_blkd_tasks+0x7e0/0x7e0
[  134.324818][    C1]  ? rcu_gp_init+0xc30/0xc30
[  134.329232][    C1]  ? _raw_spin_unlock_irq+0x4e/0x70
[  134.334269][    C1]  ? rcu_gp_init+0x9cf/0xc30
[  134.338693][    C1]  rcu_gp_kthread+0xa4/0x350
[  134.343146][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  134.347896][    C1]  ? wake_nocb_gp+0x1e0/0x1e0
[  134.352411][    C1]  ? __kasan_check_read+0x11/0x20
[  134.357394][    C1]  ? __kthread_parkme+0xb2/0x200
[  134.362170][    C1]  kthread+0x421/0x510
[  134.366077][    C1]  ? wake_nocb_gp+0x1e0/0x1e0
[  134.370703][    C1]  ? kthread_blkcg+0xd0/0xd0
[  134.375116][    C1]  ret_from_fork+0x1f/0x30
[  134.379530][    C1]  </TASK>
[  134.382393][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  134.388648][    C1] Sending NMI from CPU 1 to CPUs 0:
[  134.393764][    C0] NMI backtrace for cpu 0
[  134.393806][    C0] CPU: 0 PID: 378 Comm: syz-executor.2 Not tainted 5.15.149-syzkaller-00055-g424f92bcbe8f #0
[  134.393854][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  134.393884][    C0] RIP: 0010:kvm_wait+0x147/0x180
[  134.393943][    C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  134.393981][    C0] RSP: 0018:ffffc9000526ebe0 EFLAGS: 00000246
[  134.394018][    C0] RAX: 0000000000000003 RBX: 1ffff92000a4dd80 RCX: ffffffff8154fa7f
[  134.394051][    C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff88810dbca528
[  134.394084][    C0] RBP: ffffc9000526ec90 R08: dffffc0000000000 R09: ffffed1021b794a6
[  134.394120][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  134.394152][    C0] R13: ffff88810dbca528 R14: 0000000000000003 R15: 1ffff92000a4dd84
[  134.394186][    C0] FS:  00007f7998c606c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  134.394228][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  134.394261][    C0] CR2: 0000001b2ef26000 CR3: 000000012b964000 CR4: 00000000003506b0
[  134.394297][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  134.394325][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  134.394355][    C0] Call Trace:
[  134.394367][    C0]  <NMI>
[  134.394382][    C0]  ? show_regs+0x58/0x60
[  134.394429][    C0]  ? nmi_cpu_backtrace+0x29f/0x300
[  134.394486][    C0]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  134.394550][    C0]  ? kvm_wait+0x147/0x180
[  134.394592][    C0]  ? kvm_wait+0x147/0x180
[  134.394636][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  134.394686][    C0]  ? nmi_handle+0xa8/0x280
[  134.394736][    C0]  ? kvm_wait+0x147/0x180
[  134.394779][    C0]  ? default_do_nmi+0x69/0x160
[  134.394829][    C0]  ? exc_nmi+0xaf/0x120
[  134.394875][    C0]  ? end_repeat_nmi+0x16/0x31
[  134.394932][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  134.394989][    C0]  ? kvm_wait+0x147/0x180
[  134.395032][    C0]  ? kvm_wait+0x147/0x180
[  134.395076][    C0]  ? kvm_wait+0x147/0x180
[  134.395120][    C0]  </NMI>
[  134.395132][    C0]  <TASK>
[  134.395146][    C0]  ? asm_common_interrupt+0x27/0x40
[  134.395191][    C0]  ? kvm_arch_para_hints+0x30/0x30
[  134.395239][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  134.395297][    C0]  __pv_queued_spin_lock_slowpath+0x6bc/0xc40
[  134.395358][    C0]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  134.395412][    C0]  ? ext4_inode_csum+0x84e/0xc10
[  134.395466][    C0]  _raw_spin_lock_bh+0x139/0x1b0
[  134.395520][    C0]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  134.395581][    C0]  sock_map_delete_elem+0x99/0x130
[  134.395632][    C0]  ? sock_map_unref+0x352/0x4d0
[  134.395682][    C0]  bpf_prog_2c29ac5cdc6b1842+0x3a/0x884
[  134.395720][    C0]  bpf_trace_run2+0xec/0x210
[  134.395772][    C0]  ? bpf_trace_run1+0x1c0/0x1c0
[  134.395822][    C0]  ? sock_map_unref+0x352/0x4d0
[  134.395873][    C0]  ? __ext4_handle_dirty_metadata+0x2ce/0x830
[  134.395935][    C0]  ? ext4_fc_track_inode+0x200/0x200
[  134.395980][    C0]  ? sock_map_unref+0x352/0x4d0
[  134.396030][    C0]  __bpf_trace_kfree+0x6f/0x90
[  134.396075][    C0]  ? sock_map_unref+0x352/0x4d0
[  134.396124][    C0]  kfree+0x1f3/0x220
[  134.396177][    C0]  sock_map_unref+0x352/0x4d0
[  134.396233][    C0]  sock_map_delete_elem+0xc1/0x130
[  134.396283][    C0]  ? ext4_ext_remove_space+0x4546/0x4a60
[  134.396339][    C0]  bpf_prog_2c29ac5cdc6b1842+0x3a/0x884
[  134.396375][    C0]  bpf_trace_run2+0xec/0x210
[  134.396425][    C0]  ? sb_end_intwrite+0x120/0x120
[  134.396473][    C0]  ? bpf_trace_run1+0x1c0/0x1c0
[  134.396523][    C0]  ? ext4_ext_remove_space+0x4546/0x4a60
[  134.396580][    C0]  ? ext4_ext_remove_space+0x4546/0x4a60
[  134.396636][    C0]  __bpf_trace_kfree+0x6f/0x90
[  134.396681][    C0]  ? ext4_ext_remove_space+0x4546/0x4a60
[  134.396735][    C0]  kfree+0x1f3/0x220
[  134.396783][    C0]  ? __ext4_ext_dirty+0x133/0x1f0
[  134.396838][    C0]  ext4_ext_remove_space+0x4546/0x4a60
[  134.396907][    C0]  ? __kasan_check_write+0x14/0x20
[  134.396961][    C0]  ? ext4_es_insert_extent+0x2ff0/0x2ff0
[  134.397014][    C0]  ? _raw_write_lock+0xa4/0x170
[  134.397056][    C0]  ? __ext4_mark_inode_dirty+0x53c/0x7a0
[  134.397112][    C0]  ? ext4_ext_index_trans_blocks+0x120/0x120
[  134.397168][    C0]  ? ext4_es_remove_extent+0x297/0x460
[  134.397216][    C0]  ? ext4_es_lookup_extent+0x940/0x940
[  134.397267][    C0]  ext4_ext_truncate+0x19a/0x240
[  134.397323][    C0]  ext4_truncate+0x96c/0xfa0
[  134.397375][    C0]  ? __ext4_mark_inode_dirty+0x7a0/0x7a0
[  134.397432][    C0]  ext4_setattr+0xf84/0x1940
[  134.397480][    C0]  ? current_time+0x1af/0x2f0
[  134.397538][    C0]  ? ext4_write_inode+0x730/0x730
[  134.397600][    C0]  notify_change+0xc7a/0xf30
[  134.397652][    C0]  ? cap_inode_need_killpriv+0x51/0x60
[  134.397709][    C0]  do_truncate+0x21c/0x300
[  134.397760][    C0]  ? put_page_bootmem+0x190/0x190
[  134.397823][    C0]  path_openat+0x28ed/0x2f40
[  134.397880][    C0]  ? __kasan_slab_alloc+0xb1/0xe0
[  134.397935][    C0]  ? kmem_cache_alloc+0xf5/0x200
[  134.397984][    C0]  ? getname_flags+0xba/0x520
[  134.398028][    C0]  ? __x64_sys_openat+0x243/0x290
[  134.398076][    C0]  ? do_filp_open+0x460/0x460
[  134.398135][    C0]  do_filp_open+0x21c/0x460
[  134.398183][    C0]  ? vfs_tmpfile+0x2c0/0x2c0
[  134.398252][    C0]  do_sys_openat2+0x13f/0x830
[  134.398296][    C0]  ? do_sys_open+0x220/0x220
[  134.398335][    C0]  ? security_bpf+0x82/0xb0
[  134.398389][    C0]  __x64_sys_openat+0x243/0x290
[  134.398432][    C0]  ? __ia32_sys_open+0x270/0x270
[  134.398474][    C0]  ? __kasan_check_read+0x11/0x20
[  134.398525][    C0]  ? exit_to_user_mode_prepare+0x7e/0xa0
[  134.398577][    C0]  do_syscall_64+0x3d/0xb0
[  134.398624][    C0]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  134.398670][    C0] RIP: 0033:0x7f7999eebee9
[  134.398721][    C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  134.398759][    C0] RSP: 002b:00007f7998c600c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  134.398803][    C0] RAX: ffffffffffffffda RBX: 00007f799a022fa0 RCX: 00007f7999eebee9
[  134.398837][    C0] RDX: 0000000000007a05 RSI: 00000000200001c0 RDI: ffffffffffffff9c
[  134.398869][    C0] RBP: 00007f7999f3847f R08: 0000000000000000 R09: 0000000000000000
[  134.398905][    C0] R10: 0000000000001700 R11: 0000000000000246 R12: 0000000000000000
[  134.398934][    C0] R13: 000000000000000b R14: 00007f799a022fa0 R15: 00007ffe6f000418
[  134.398976][    C0]  </TASK>
[  134.399816][    C1] NMI backtrace for cpu 1
[  135.028434][    C1] CPU: 1 PID: 26 Comm: kworker/1:0 Not tainted 5.15.149-syzkaller-00055-g424f92bcbe8f #0
[  135.038063][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  135.047965][    C1] Workqueue: mld mld_dad_work
[  135.052466][    C1] Call Trace:
[  135.055603][    C1]  <IRQ>
[  135.058281][    C1]  dump_stack_lvl+0x151/0x1b7
[  135.062795][    C1]  ? io_uring_drop_tctx_refs+0x190/0x190
[  135.068267][    C1]  ? ttwu_do_wakeup+0x187/0x430
[  135.072955][    C1]  dump_stack+0x15/0x17
[  135.076942][    C1]  nmi_cpu_backtrace+0x2f7/0x300
[  135.081987][    C1]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  135.088067][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  135.093351][    C1]  ? __kasan_check_write+0x14/0x20
[  135.098411][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  135.103104][    C1]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  135.108995][    C1]  nmi_trigger_cpumask_backtrace+0x15d/0x270
[  135.114903][    C1]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  135.121004][    C1]  arch_trigger_cpumask_backtrace+0x10/0x20
[  135.126728][    C1]  rcu_dump_cpu_stacks+0x1d8/0x330
[  135.131694][    C1]  print_cpu_stall+0x315/0x5f0
[  135.136281][    C1]  rcu_sched_clock_irq+0x989/0x12f0
[  135.141310][    C1]  ? rcu_boost_kthread_setaffinity+0x340/0x340
[  135.147299][    C1]  ? hrtimer_run_queues+0x15f/0x440
[  135.152346][    C1]  update_process_times+0x198/0x200
[  135.157388][    C1]  tick_sched_timer+0x188/0x240
[  135.162083][    C1]  ? tick_setup_sched_timer+0x480/0x480
[  135.167715][    C1]  __hrtimer_run_queues+0x41a/0xad0
[  135.172884][    C1]  ? hrtimer_interrupt+0xaa0/0xaa0
[  135.177872][    C1]  ? clockevents_program_event+0x22f/0x300
[  135.183462][    C1]  ? ktime_get_update_offsets_now+0x2ba/0x2d0
[  135.189459][    C1]  hrtimer_interrupt+0x40c/0xaa0
[  135.194241][    C1]  __sysvec_apic_timer_interrupt+0xfd/0x3c0
[  135.199956][    C1]  sysvec_apic_timer_interrupt+0x44/0xc0
[  135.205417][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  135.211322][    C1] RIP: 0010:kvm_wait+0x147/0x180
[  135.216096][    C1] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  135.235537][    C1] RSP: 0018:ffffc900001d0560 EFLAGS: 00000246
[  135.241436][    C1] RAX: 0000000000000001 RBX: 1ffff9200003a0b0 RCX: 1ffffffff0d1aa9c
[  135.249249][    C1] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff8881f7137ed4
[  135.257067][    C1] RBP: ffffc900001d0610 R08: dffffc0000000000 R09: ffffed103ee26fdb
[  135.264961][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  135.272789][    C1] R13: ffff8881f7137ed4 R14: 0000000000000001 R15: 1ffff9200003a0b4
[  135.281024][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  135.287080][    C1]  ? kvm_arch_para_hints+0x30/0x30
[  135.292001][    C1]  ? __pv_queued_spin_lock_slowpath+0x1ef/0xc40
[  135.298074][    C1]  __pv_queued_spin_lock_slowpath+0x41b/0xc40
[  135.304062][    C1]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  135.310309][    C1]  ? get_stack_info+0x3b/0x100
[  135.314952][    C1]  _raw_spin_lock_bh+0x139/0x1b0
[  135.319794][    C1]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  135.324838][    C1]  ? fib6_rule_lookup+0x3be/0x620
[  135.329918][    C1]  ? ip6_route_input_lookup+0xd0/0xd0
[  135.335113][    C1]  sock_map_delete_elem+0x99/0x130
[  135.340144][    C1]  ? skb_release_data+0x8a9/0xa80
[  135.344998][    C1]  bpf_prog_2c29ac5cdc6b1842+0x3a/0x884
[  135.350384][    C1]  bpf_trace_run2+0xec/0x210
[  135.354828][    C1]  ? ip6_route_input+0x245/0xb60
[  135.359581][    C1]  ? bpf_trace_run1+0x1c0/0x1c0
[  135.364269][    C1]  ? skb_release_data+0x8a9/0xa80
[  135.369132][    C1]  ? ip6_route_input+0x724/0xb60
[  135.373925][    C1]  ? skb_release_data+0x8a9/0xa80
[  135.378770][    C1]  __bpf_trace_kfree+0x6f/0x90
[  135.383376][    C1]  ? skb_release_data+0x8a9/0xa80
[  135.388318][    C1]  kfree+0x1f3/0x220
[  135.392057][    C1]  skb_release_data+0x8a9/0xa80
[  135.396862][    C1]  ? ip6_mc_input+0x233/0x2a0
[  135.401450][    C1]  kfree_skb+0xba/0x360
[  135.405441][    C1]  ip6_mc_input+0x233/0x2a0
[  135.409776][    C1]  ip6_rcv_finish+0x186/0x350
[  135.414291][    C1]  ipv6_rcv+0xeb/0x270
[  135.418369][    C1]  ? ip6_rcv_finish+0x350/0x350
[  135.423185][    C1]  ? refcount_add+0x80/0x80
[  135.427487][    C1]  ? ip6_rcv_finish+0x350/0x350
[  135.432197][    C1]  __netif_receive_skb+0x1c6/0x530
[  135.437273][    C1]  ? _nohz_idle_balance+0x4f0/0x4f0
[  135.442428][    C1]  ? deliver_ptype_list_skb+0x3b0/0x3b0
[  135.448015][    C1]  ? __kasan_check_write+0x14/0x20
[  135.453028][    C1]  ? _raw_spin_lock+0xa4/0x1b0
[  135.457655][    C1]  ? _raw_spin_trylock_bh+0x190/0x190
[  135.462866][    C1]  process_backlog+0x31c/0x650
[  135.467478][    C1]  __napi_poll+0xc4/0x5a0
[  135.471632][    C1]  net_rx_action+0x47d/0xc50
[  135.476065][    C1]  ? net_tx_action+0x550/0x550
[  135.480652][    C1]  ? kvm_sched_clock_read+0x18/0x40
[  135.485688][    C1]  ? sched_clock+0x9/0x10
[  135.489881][    C1]  ? irqtime_account_irq+0x79/0x3c0
[  135.494923][    C1]  __do_softirq+0x26d/0x5bf
[  135.499322][    C1]  do_softirq+0xf6/0x150
[  135.503397][    C1]  </IRQ>
[  135.506173][    C1]  <TASK>
[  135.508949][    C1]  ? __local_bh_enable_ip+0x80/0x80
[  135.513986][    C1]  ? ip6_finish_output2+0xd90/0x16e0
[  135.519115][    C1]  __local_bh_enable_ip+0x75/0x80
[  135.523968][    C1]  local_bh_enable+0x1f/0x30
[  135.528480][    C1]  ip6_finish_output2+0xf9c/0x16e0
[  135.533465][    C1]  ? __ip6_finish_output+0x7c0/0x7c0
[  135.538552][    C1]  ? ip6t_do_table+0x1662/0x1850
[  135.543332][    C1]  __ip6_finish_output+0x60f/0x7c0
[  135.548280][    C1]  ip6_finish_output+0x31/0x210
[  135.552958][    C1]  ? ip6_output+0x486/0x4d0
[  135.557304][    C1]  ip6_output+0x1f7/0x4d0
[  135.561477][    C1]  ? ac6_seq_show+0xf0/0xf0
[  135.565935][    C1]  ? ip6_output+0x4d0/0x4d0
[  135.570243][    C1]  mld_sendpack+0x662/0xbb0
[  135.574599][    C1]  ? add_grec+0x13a0/0x13a0
[  135.579099][    C1]  ? igmp6_send+0x10a0/0x10a0
[  135.583611][    C1]  ? __kasan_check_write+0x14/0x20
[  135.588550][    C1]  mld_dad_work+0x236/0x620
[  135.592896][    C1]  process_one_work+0x6bb/0xc10
[  135.597759][    C1]  worker_thread+0xad5/0x12a0
[  135.602266][    C1]  kthread+0x421/0x510
[  135.606158][    C1]  ? worker_clr_flags+0x180/0x180
[  135.611026][    C1]  ? kthread_blkcg+0xd0/0xd0
[  135.615448][    C1]  ret_from_fork+0x1f/0x30
[  135.619723][    C1]  </TASK>
[  287.151631][    C1] watchdog: BUG: soft lockup - CPU#1 stuck for 246s! [kworker/1:0:26]
[  287.159801][    C1] Modules linked in:
[  287.163676][    C1] CPU: 1 PID: 26 Comm: kworker/1:0 Not tainted 5.15.149-syzkaller-00055-g424f92bcbe8f #0
[  287.173515][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  287.183453][    C1] Workqueue: mld mld_dad_work
[  287.187989][    C1] RIP: 0010:kvm_wait+0x147/0x180
[  287.192754][    C1] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  287.212753][    C1] RSP: 0018:ffffc900001d0560 EFLAGS: 00000246
[  287.218652][    C1] RAX: 0000000000000001 RBX: 1ffff9200003a0b0 RCX: 1ffffffff0d1aa9c
[  287.226461][    C1] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff8881f7137ed4
[  287.234391][    C1] RBP: ffffc900001d0610 R08: dffffc0000000000 R09: ffffed103ee26fdb
[  287.242319][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  287.250129][    C1] R13: ffff8881f7137ed4 R14: 0000000000000001 R15: 1ffff9200003a0b4
[  287.257939][    C1] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  287.266713][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.273433][    C1] CR2: 0000000000000000 CR3: 000000012ce60000 CR4: 00000000003506a0
[  287.281259][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  287.289056][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  287.296987][    C1] Call Trace:
[  287.300135][    C1]  <IRQ>
[  287.302883][    C1]  ? show_regs+0x58/0x60
[  287.307307][    C1]  ? watchdog_timer_fn+0x4b1/0x5f0
[  287.312265][    C1]  ? proc_watchdog_cpumask+0xd0/0xd0
[  287.317390][    C1]  ? __hrtimer_run_queues+0x41a/0xad0
[  287.322685][    C1]  ? hrtimer_interrupt+0xaa0/0xaa0
[  287.327625][    C1]  ? clockevents_program_event+0x22f/0x300
[  287.333270][    C1]  ? ktime_get_update_offsets_now+0x2ba/0x2d0
[  287.339174][    C1]  ? hrtimer_interrupt+0x40c/0xaa0
[  287.344127][    C1]  ? __sysvec_apic_timer_interrupt+0xfd/0x3c0
[  287.350112][    C1]  ? sysvec_apic_timer_interrupt+0x44/0xc0
[  287.355750][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  287.361809][    C1]  ? kvm_wait+0x147/0x180
[  287.365903][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  287.371904][    C1]  ? kvm_arch_para_hints+0x30/0x30
[  287.376852][    C1]  ? __pv_queued_spin_lock_slowpath+0x1ef/0xc40
[  287.383005][    C1]  __pv_queued_spin_lock_slowpath+0x41b/0xc40
[  287.389024][    C1]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  287.395271][    C1]  ? get_stack_info+0x3b/0x100
[  287.399975][    C1]  _raw_spin_lock_bh+0x139/0x1b0
[  287.404746][    C1]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  287.409865][    C1]  ? fib6_rule_lookup+0x3be/0x620
[  287.414728][    C1]  ? ip6_route_input_lookup+0xd0/0xd0
[  287.420021][    C1]  sock_map_delete_elem+0x99/0x130
[  287.424966][    C1]  ? skb_release_data+0x8a9/0xa80
[  287.430002][    C1]  bpf_prog_2c29ac5cdc6b1842+0x3a/0x884
[  287.435377][    C1]  bpf_trace_run2+0xec/0x210
[  287.439810][    C1]  ? ip6_route_input+0x245/0xb60
[  287.444690][    C1]  ? bpf_trace_run1+0x1c0/0x1c0
[  287.449443][    C1]  ? skb_release_data+0x8a9/0xa80
[  287.454297][    C1]  ? ip6_route_input+0x724/0xb60
[  287.459072][    C1]  ? skb_release_data+0x8a9/0xa80
[  287.463935][    C1]  __bpf_trace_kfree+0x6f/0x90
[  287.468539][    C1]  ? skb_release_data+0x8a9/0xa80
[  287.473408][    C1]  kfree+0x1f3/0x220
[  287.477129][    C1]  skb_release_data+0x8a9/0xa80
[  287.481870][    C1]  ? ip6_mc_input+0x233/0x2a0
[  287.486349][    C1]  kfree_skb+0xba/0x360
[  287.490377][    C1]  ip6_mc_input+0x233/0x2a0
[  287.494677][    C1]  ip6_rcv_finish+0x186/0x350
[  287.499180][    C1]  ipv6_rcv+0xeb/0x270
[  287.503083][    C1]  ? ip6_rcv_finish+0x350/0x350
[  287.507771][    C1]  ? refcount_add+0x80/0x80
[  287.512219][    C1]  ? ip6_rcv_finish+0x350/0x350
[  287.516899][    C1]  __netif_receive_skb+0x1c6/0x530
[  287.521865][    C1]  ? _nohz_idle_balance+0x4f0/0x4f0
[  287.526977][    C1]  ? deliver_ptype_list_skb+0x3b0/0x3b0
[  287.532350][    C1]  ? __kasan_check_write+0x14/0x20
[  287.537304][    C1]  ? _raw_spin_lock+0xa4/0x1b0
[  287.541909][    C1]  ? _raw_spin_trylock_bh+0x190/0x190
[  287.547106][    C1]  process_backlog+0x31c/0x650
[  287.551718][    C1]  __napi_poll+0xc4/0x5a0
[  287.555875][    C1]  net_rx_action+0x47d/0xc50
[  287.560394][    C1]  ? net_tx_action+0x550/0x550
[  287.565618][    C1]  ? kvm_sched_clock_read+0x18/0x40
[  287.570655][    C1]  ? sched_clock+0x9/0x10
[  287.574846][    C1]  ? irqtime_account_irq+0x79/0x3c0
[  287.579888][    C1]  __do_softirq+0x26d/0x5bf
[  287.584205][    C1]  do_softirq+0xf6/0x150
[  287.588490][    C1]  </IRQ>
[  287.591269][    C1]  <TASK>
[  287.594044][    C1]  ? __local_bh_enable_ip+0x80/0x80
[  287.599085][    C1]  ? ip6_finish_output2+0xd90/0x16e0
[  287.604400][    C1]  __local_bh_enable_ip+0x75/0x80
[  287.609322][    C1]  local_bh_enable+0x1f/0x30
[  287.613751][    C1]  ip6_finish_output2+0xf9c/0x16e0
[  287.618703][    C1]  ? __ip6_finish_output+0x7c0/0x7c0
[  287.623811][    C1]  ? ip6t_do_table+0x1662/0x1850
[  287.628683][    C1]  __ip6_finish_output+0x60f/0x7c0
[  287.633625][    C1]  ip6_finish_output+0x31/0x210
[  287.638441][    C1]  ? ip6_output+0x486/0x4d0
[  287.642783][    C1]  ip6_output+0x1f7/0x4d0
[  287.647217][    C1]  ? ac6_seq_show+0xf0/0xf0
[  287.651558][    C1]  ? ip6_output+0x4d0/0x4d0
[  287.656020][    C1]  mld_sendpack+0x662/0xbb0
[  287.660360][    C1]  ? add_grec+0x13a0/0x13a0
[  287.664700][    C1]  ? igmp6_send+0x10a0/0x10a0
[  287.669207][    C1]  ? __kasan_check_write+0x14/0x20
[  287.674154][    C1]  mld_dad_work+0x236/0x620
[  287.678493][    C1]  process_one_work+0x6bb/0xc10
[  287.683181][    C1]  worker_thread+0xad5/0x12a0
[  287.687703][    C1]  kthread+0x421/0x510
[  287.691917][    C1]  ? worker_clr_flags+0x180/0x180
[  287.696768][    C1]  ? kthread_blkcg+0xd0/0xd0
[  287.701716][    C1]  ret_from_fork+0x1f/0x30
[  287.705983][    C1]  </TASK>
[  287.708843][    C1] Sending NMI from CPU 1 to CPUs 0:
[  287.714051][    C0] NMI backtrace for cpu 0
[  287.714075][    C0] CPU: 0 PID: 378 Comm: syz-executor.2 Not tainted 5.15.149-syzkaller-00055-g424f92bcbe8f #0
[  287.714125][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  287.714149][    C0] RIP: 0010:kvm_wait+0x147/0x180
[  287.714201][    C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  287.714238][    C0] RSP: 0018:ffffc9000526ebe0 EFLAGS: 00000246
[  287.714276][    C0] RAX: 0000000000000003 RBX: 1ffff92000a4dd80 RCX: ffffffff8154fa7f
[  287.714309][    C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff88810dbca528
[  287.714342][    C0] RBP: ffffc9000526ec90 R08: dffffc0000000000 R09: ffffed1021b794a6
[  287.714378][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  287.714411][    C0] R13: ffff88810dbca528 R14: 0000000000000003 R15: 1ffff92000a4dd84
[  287.714448][    C0] FS:  00007f7998c606c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  287.714490][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.714523][    C0] CR2: 0000001b2ef26000 CR3: 000000012b964000 CR4: 00000000003506b0
[  287.714561][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  287.714589][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  287.714618][    C0] Call Trace:
[  287.714631][    C0]  <NMI>
[  287.714647][    C0]  ? show_regs+0x58/0x60
[  287.714693][    C0]  ? nmi_cpu_backtrace+0x29f/0x300
[  287.714750][    C0]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  287.714811][    C0]  ? kvm_wait+0x147/0x180
[  287.714853][    C0]  ? kvm_wait+0x147/0x180
[  287.714897][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  287.714948][    C0]  ? nmi_handle+0xa8/0x280
[  287.714998][    C0]  ? kvm_wait+0x147/0x180
[  287.715047][    C0]  ? kvm_wait+0x147/0x180
[  287.715091][    C0]  ? default_do_nmi+0x69/0x160
[  287.715141][    C0]  ? exc_nmi+0xaf/0x120
[  287.715187][    C0]  ? end_repeat_nmi+0x16/0x31
[  287.715236][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  287.715294][    C0]  ? kvm_wait+0x147/0x180
[  287.715337][    C0]  ? kvm_wait+0x147/0x180
[  287.715382][    C0]  ? kvm_wait+0x147/0x180
[  287.715425][    C0]  </NMI>
[  287.715438][    C0]  <TASK>
[  287.715452][    C0]  ? asm_common_interrupt+0x27/0x40
[  287.715497][    C0]  ? kvm_arch_para_hints+0x30/0x30
[  287.715545][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  287.715603][    C0]  __pv_queued_spin_lock_slowpath+0x6bc/0xc40
[  287.715665][    C0]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  287.715720][    C0]  ? ext4_inode_csum+0x84e/0xc10
[  287.715774][    C0]  _raw_spin_lock_bh+0x139/0x1b0
[  287.715830][    C0]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  287.715891][    C0]  sock_map_delete_elem+0x99/0x130
[  287.715942][    C0]  ? sock_map_unref+0x352/0x4d0
[  287.715992][    C0]  bpf_prog_2c29ac5cdc6b1842+0x3a/0x884
[  287.716030][    C0]  bpf_trace_run2+0xec/0x210
[  287.716090][    C0]  ? bpf_trace_run1+0x1c0/0x1c0
[  287.716140][    C0]  ? sock_map_unref+0x352/0x4d0
[  287.716190][    C0]  ? __ext4_handle_dirty_metadata+0x2ce/0x830
[  287.716245][    C0]  ? ext4_fc_track_inode+0x200/0x200
[  287.716290][    C0]  ? sock_map_unref+0x352/0x4d0
[  287.716341][    C0]  __bpf_trace_kfree+0x6f/0x90
[  287.716386][    C0]  ? sock_map_unref+0x352/0x4d0
[  287.716435][    C0]  kfree+0x1f3/0x220
[  287.716488][    C0]  sock_map_unref+0x352/0x4d0
[  287.716544][    C0]  sock_map_delete_elem+0xc1/0x130
[  287.716594][    C0]  ? ext4_ext_remove_space+0x4546/0x4a60
[  287.716650][    C0]  bpf_prog_2c29ac5cdc6b1842+0x3a/0x884
[  287.716687][    C0]  bpf_trace_run2+0xec/0x210
[  287.716737][    C0]  ? sb_end_intwrite+0x120/0x120
[  287.716785][    C0]  ? bpf_trace_run1+0x1c0/0x1c0
[  287.716836][    C0]  ? ext4_ext_remove_space+0x4546/0x4a60
[  287.716893][    C0]  ? ext4_ext_remove_space+0x4546/0x4a60
[  287.716950][    C0]  __bpf_trace_kfree+0x6f/0x90
[  287.716995][    C0]  ? ext4_ext_remove_space+0x4546/0x4a60
[  287.717058][    C0]  kfree+0x1f3/0x220
[  287.717105][    C0]  ? __ext4_ext_dirty+0x133/0x1f0
[  287.717161][    C0]  ext4_ext_remove_space+0x4546/0x4a60
[  287.717222][    C0]  ? __kasan_check_write+0x14/0x20
[  287.717276][    C0]  ? ext4_es_insert_extent+0x2ff0/0x2ff0
[  287.717330][    C0]  ? _raw_write_lock+0xa4/0x170
[  287.717371][    C0]  ? __ext4_mark_inode_dirty+0x53c/0x7a0
[  287.717428][    C0]  ? ext4_ext_index_trans_blocks+0x120/0x120
[  287.717483][    C0]  ? ext4_es_remove_extent+0x297/0x460
[  287.717531][    C0]  ? ext4_es_lookup_extent+0x940/0x940
[  287.717582][    C0]  ext4_ext_truncate+0x19a/0x240
[  287.717638][    C0]  ext4_truncate+0x96c/0xfa0
[  287.717691][    C0]  ? __ext4_mark_inode_dirty+0x7a0/0x7a0
[  287.717749][    C0]  ext4_setattr+0xf84/0x1940
[  287.717797][    C0]  ? current_time+0x1af/0x2f0
[  287.717856][    C0]  ? ext4_write_inode+0x730/0x730
[  287.717908][    C0]  notify_change+0xc7a/0xf30
[  287.717960][    C0]  ? cap_inode_need_killpriv+0x51/0x60
[  287.718017][    C0]  do_truncate+0x21c/0x300
[  287.718075][    C0]  ? put_page_bootmem+0x190/0x190
[  287.718139][    C0]  path_openat+0x28ed/0x2f40
[  287.718197][    C0]  ? __kasan_slab_alloc+0xb1/0xe0
[  287.718241][    C0]  ? kmem_cache_alloc+0xf5/0x200
[  287.718291][    C0]  ? getname_flags+0xba/0x520
[  287.718335][    C0]  ? __x64_sys_openat+0x243/0x290
[  287.718383][    C0]  ? do_filp_open+0x460/0x460
[  287.718442][    C0]  do_filp_open+0x21c/0x460
[  287.718491][    C0]  ? vfs_tmpfile+0x2c0/0x2c0
[  287.718560][    C0]  do_sys_openat2+0x13f/0x830
[  287.718605][    C0]  ? do_sys_open+0x220/0x220
[  287.718643][    C0]  ? security_bpf+0x82/0xb0
[  287.718698][    C0]  __x64_sys_openat+0x243/0x290
[  287.718741][    C0]  ? __ia32_sys_open+0x270/0x270
[  287.718783][    C0]  ? __kasan_check_read+0x11/0x20
[  287.718836][    C0]  ? exit_to_user_mode_prepare+0x7e/0xa0
[  287.718888][    C0]  do_syscall_64+0x3d/0xb0
[  287.718934][    C0]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  287.718981][    C0] RIP: 0033:0x7f7999eebee9
[  287.719042][    C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  287.719080][    C0] RSP: 002b:00007f7998c600c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  287.719124][    C0] RAX: ffffffffffffffda RBX: 00007f799a022fa0 RCX: 00007f7999eebee9
[  287.719159][    C0] RDX: 0000000000007a05 RSI: 00000000200001c0 RDI: ffffffffffffff9c
[  287.719191][    C0] RBP: 00007f7999f3847f R08: 0000000000000000 R09: 0000000000000000
[  287.719221][    C0] R10: 0000000000001700 R11: 0000000000000246 R12: 0000000000000000
[  287.719250][    C0] R13: 000000000000000b R14: 00007f799a022fa0 R15: 00007ffe6f000418
[  287.719292][    C0]  </TASK>