last executing test programs:

10m32.974883911s ago: executing program 4 (id=62):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x88, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x5c, 0x4, 0x0, 0x1, [{0x58, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x48, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x30, 0x3, "5fad843dc5c1efe84ced18d4422d5b0b86e8441958d3d2ea41149f1e55359af069a2a5e039ccf56f068a5a0b"}, @NFTA_TARGET_NAME={0x9, 0x1, 'SNAT\x00'}, @NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_COMPAT={0x4}]}], {0x14}}, 0xfc}, 0x1, 0x0, 0x0, 0x4}, 0x0)

10m32.938078512s ago: executing program 4 (id=64):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_9p2000}]}})

10m32.867003243s ago: executing program 4 (id=67):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r3}, &(0x7f0000001c00), &(0x7f0000001c40)=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={0x0, r5}, 0x18)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x5}, 0x18)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={0x0, r2}, 0x18)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x2)

10m32.739411925s ago: executing program 4 (id=70):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x844, &(0x7f0000000bc0)=ANY=[], 0x5, 0x267, &(0x7f0000000740)="$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")
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
r4 = syz_clone(0x2000400, 0x0, 0xfffffebf, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f00000005c0)=r4, 0x12)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_ro(r7, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)
write$cgroup_int(r8, &(0x7f0000000040)=0x1, 0x12)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r10 = openat$cgroup_ro(r9, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)
write$cgroup_int(r10, &(0x7f0000000040)=0x1, 0x12)
r11 = syz_io_uring_setup(0x1114, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x21e}, &(0x7f00000001c0)=<r12=>0x0, &(0x7f0000000040)=<r13=>0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000180)='fsi_master_gpio_cmd_abs_addr\x00', r1, 0x0, 0x3b}, 0x18)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r12, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r12, r13, &(0x7f0000000380)=@IORING_OP_WRITEV={0x2, 0x9, 0x2000, @fd_index=0x7, 0xd, &(0x7f0000000300)=[{0x0}, {0x0}], 0x2, 0x10, 0x1, {0x2}})
io_uring_enter(r11, 0x47fa, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
r14 = socket(0xa, 0x2400000001, 0x1)
setsockopt$inet6_MCAST_JOIN_GROUP(r14, 0x29, 0x2a, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
lseek(r2, 0x1, 0x1)

10m32.033425297s ago: executing program 4 (id=75):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='mm_page_alloc\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x9f, 0x0, 0x0, 0x0, 0xfffffffc, 0xfffe, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="0000000000000000b70500000800000085000000a50000001801000020206405000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setgroups(0x0, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
bpf$MAP_CREATE(0x0, 0x0, 0x50)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000000)={0x2, 0x24}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000400)='\b', 0x1}, {0x0}], 0x2, &(0x7f00000004c0)}, 0x20004000)
r2 = open(&(0x7f0000000300)='./file0\x00', 0x101000, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000200)={{0x2, 0x4e24, @multicast1}, {0x306, @random="a737146951fe"}, 0x0, {0x2, 0x4e23, @broadcast}, 'hsr0\x00'})
r3 = socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r7, r6, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r7}, &(0x7f0000000000), &(0x7f0000000080)=r4}, 0x20)
sendmsg$inet(r5, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x4c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x0)

10m31.598718824s ago: executing program 4 (id=81):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r3}, &(0x7f0000001c00), &(0x7f0000001c40)=r4}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x5}, 0x18)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={0x0, r2}, 0x18)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x2)

10m31.582121725s ago: executing program 32 (id=81):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r3}, &(0x7f0000001c00), &(0x7f0000001c40)=r4}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x5}, 0x18)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={0x0, r2}, 0x18)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x2)

8m30.296938667s ago: executing program 3 (id=2674):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x2)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\f\n5', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000280)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}]}}}}}}}}, 0x0)

8m30.278832508s ago: executing program 3 (id=2675):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, 0x0, &(0x7f0000000080))

8m30.239686058s ago: executing program 3 (id=2676):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e8d00002a72874f080000000800000004000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)={0xc8, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x44, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x2c, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @local}]}]}, 0xc8}}, 0x0)

8m30.238984118s ago: executing program 3 (id=2677):
syz_mount_image$ext4(&(0x7f0000000d40)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2, &(0x7f0000000140)={[{@nomblk_io_submit}, {@init_itable_val={'init_itable', 0x3d, 0x8}}, {@dioread_nolock}, {@sysvgroups}]}, 0x3, 0x4f5, &(0x7f0000000780)="$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")
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, &(0x7f00000001c0)='=\n\x9b\xa1Q\x83\xe9\n@\xf6\"2a\xd7\x1fch\x1a}#\xfa\xe4\n\xdc[\x03\x97\xcd\xf1\xa6b\x9a\x1f\xff\xff\xffIT\xe4\x8c&\xac\xe6:\xc5\xe8\xd9\"\x82\xd5\xeb\x90\xef1:\xba\xc3\xc3\xd3\xad\'\xc44\x17,,\x8dZz\x04\x17-#F\xc7<\xe6\xf5]%gC\x9e\xca\nS\xc3\xc8\x98\xd8\xc8\x9eZ\xa76\x9f\xc2=\xaa\xcet7\xb9\xbd\xd47\xe3\xc8@$8\v\x9f\xfd\xe1!\x11\x19Y\x06J\x8f\x80\xef9Tw8\x1b\xe2\xf3\x85\xd5}\xa5\xb7\xd5|')

8m30.10688753s ago: executing program 3 (id=2680):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000180)={[{@delalloc}, {@data_err_abort}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@acl}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x103042, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x8004587d, &(0x7f0000000340)={0x2, 0x2, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
unlink(&(0x7f0000000000)='./file1\x00')

8m29.896999034s ago: executing program 3 (id=2682):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000006000000000000000085000000070000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r1}, 0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000540)=@delpolicy={0x5c, 0x14, 0x1, 0x0, 0x0, {{@in6=@local, @in6=@mcast2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}}, [@sec_ctx={0xc, 0x8, {0x8, 0x8, 0x0, 0x0, 0x2b}}]}, 0x5c}}, 0x0)

8m29.886456394s ago: executing program 33 (id=2682):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000006000000000000000085000000070000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r1}, 0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000540)=@delpolicy={0x5c, 0x14, 0x1, 0x0, 0x0, {{@in6=@local, @in6=@mcast2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}}, [@sec_ctx={0xc, 0x8, {0x8, 0x8, 0x0, 0x0, 0x2b}}]}, 0x5c}}, 0x0)

1m28.514644082s ago: executing program 2 (id=12639):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0xffffffff}, 0x1100, 0x5dd8, 0x3a65, 0x9, 0x0, 0x8, 0x8, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10)
bind$tipc(r2, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x6}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x4}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x185000, 0x0)
r3 = perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x69, 0x0, 0x4, 0x6, 0x0, 0xbca, 0x10800, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0}, 0x10320e, 0x6, 0x840000, 0x2, 0xd, 0x1, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_clone3(&(0x7f0000000000)={0x285002400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x46)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x3, 0x0, 0x0, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000001, 0x0, @perf_config_ext={0x5, 0x8}, 0x408, 0xffffffff, 0x6, 0x4, 0x0, 0x1, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, r3, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a1ab00000000000000003200000008001781"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1m28.352551474s ago: executing program 2 (id=12642):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0xffffffff}, 0x1100, 0x5dd8, 0x3a65, 0x9, 0x0, 0x8, 0x8, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10)
bind$tipc(r2, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x6}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x4}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x185000, 0x0)
r3 = perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x69, 0x0, 0x4, 0x6, 0x0, 0xbca, 0x10800, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0}, 0x10320e, 0x6, 0x840000, 0x2, 0xd, 0x1, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_clone3(&(0x7f0000000000)={0x285002400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x46)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x3, 0x0, 0x0, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000001, 0x0, @perf_config_ext={0x5, 0x8}, 0x408, 0xffffffff, 0x6, 0x4, 0x0, 0x1, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, r3, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
socket$inet6_sctp(0xa, 0x5, 0x84)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
setreuid(0xee00, 0xee00)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a1ab00000000000000003200000008001781"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1m28.184680027s ago: executing program 2 (id=12645):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0), &(0x7f0000000040)=@v2={0x2000000, [{0x1, 0x4}, {0xe5d8e97, 0x800}]}, 0x14, 0x1)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x0)

1m28.169950787s ago: executing program 2 (id=12646):
socket$igmp(0x2, 0x3, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r2, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000200000000080001000300000005000200000000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x8000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001e000000000000000c0000000c"], 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x76, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000680)='kfree\x00', r4}, 0x18)
lsetxattr$trusted_overlay_redirect(0x0, 0x0, 0x0, 0x0, 0x2)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@lazytime}, {@nomblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@quota}, {@quota}]}, 0xff, 0x443, &(0x7f0000000940)="$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")
setresuid(0xee00, 0x0, 0x0)
syz_clone(0x2a8000, 0x0, 0x0, 0x0, 0x0, 0x0)

1m28.097314889s ago: executing program 2 (id=12647):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1m27.446865079s ago: executing program 2 (id=12657):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x40, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3f}, @NFTA_SET_EXPRESSIONS={0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x88}}, 0x20050800)

1m27.446656129s ago: executing program 34 (id=12657):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x40, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3f}, @NFTA_SET_EXPRESSIONS={0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x88}}, 0x20050800)

1m26.294213589s ago: executing program 1 (id=12676):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x40, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3f}, @NFTA_SET_EXPRESSIONS={0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x88}}, 0x20050800)

1m26.245094919s ago: executing program 1 (id=12678):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0), &(0x7f0000000040)=@v2={0x2000000, [{0x1, 0x4}, {0xe5d8e97, 0x800}]}, 0x14, 0x1)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x0)

1m26.172875601s ago: executing program 1 (id=12680):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000181100", @ANYRES32=r0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
creat(0x0, 0x80)

1m26.081002652s ago: executing program 1 (id=12681):
socket$igmp(0x2, 0x3, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r2, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000200000000080001000300000005000200000000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x8000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001e000000000000000c0000000c"], 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x76, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000680)='kfree\x00', r4}, 0x18)
lsetxattr$trusted_overlay_redirect(0x0, 0x0, 0x0, 0x0, 0x2)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@lazytime}, {@nomblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@quota}, {@quota}]}, 0xff, 0x443, &(0x7f0000000940)="$eJzs3MtvG0UYAPBv10mgLxJKefQBBMqj4pE0aYEeuIBA4gASEhzKMSRpVeo2qAkSrSoICJUjqsQdcUTiL+BELwg4IXGFAzdUqUK9tHAyWnu3cYztNsbuQv37SevM7I4182V37JmdbAIYWpPZSxKxNSJ+iYjxRnZ9gcnGj6uXz87/efnsfBK12ht/JPVyVy6fnS+KFu/bkmf2pRHpJ0nsblPv8ukzx+eq1cVTeX565cS708unzzx97MTc0cWjiydnDx06eGDmuWdnn+lLnFlcV3Z9sLRn5ytvnX9t/vD5t3/4Oinib4mjTya7HXy0VutzdeXa1pRORkpsCBtSiYjsdI3W+/94VGLt5I3Hyx+X2jhgoGq5DodXa8AtLImyWwCUo/iiz+a/xXbzRh/lu/RCYwKUxX013xpHRiLNy4y2zG/7aTIiDq/+9UW2xWDuQwAArPNtNv55qt34L417msrdka+hTETEnRGxPSLuiogdEXF3RL3svRFx3wbrb10k+ef4J73YU2A3KBv/PZ+vba0f/xWjv5io5Llt9fhHkyPHqov7G8dWs5csP9Oljgsv/fxZp2PN479sy+ovxoJ5Oy6O3Lb+PQtzK3O9xtvq0kcRu0baxZ9cWwlIImJnROzqsY5jT3y1p9Ox68ffRR/WmWpfRjzeOP+r0RJ/Iem+Pjl9e1QX9083XRUtfvzp3Oud6v9X8fdBdv43t73+r8U/kTSv1y5vvI5zv37acU7T6/U/lrxZT4/l+96fW1k5NRMxlrzaaHTz/tm19xb5onwW/7697fv/9lj7TeyOiOwivj8iHoiIB/O2PxQRD0fE3i7xf//iI+/0Hv9gZfEvbOj8ryXGonVP+0Tl+HffrKt0YiPxZ+f/YD21L99T//xLusd1I+3q7WoGAACA/580IrZGkk5dS6fp1FTjb/h3xOa0urS88uSRpfdOLjSeEZiI0bS40zXedD90Jp/WF/nZlvyB/L7x55VN9fzU/FJ1oezgYcht6dD/M79Xym4dMHCe14Lhpf/D8NL/YXjp/zC82vT/TWW0A7j52n3/fxgRFx4roTHATdXS/y37wRAx/4fhpf/D8LqB/v/brfXvqoGIWN4U139IfrCJSpRZu0SPiUj/E82QGFCi7E8mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/vg7AAD//9aZ7PU=")
setresuid(0xee00, 0x0, 0x0)
syz_clone(0x2a8000, 0x0, 0x0, 0x0, 0x0, 0x0)

1m25.913133195s ago: executing program 1 (id=12684):
r0 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, &(0x7f0000010640)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000840)=ANY=[@ANYBLOB="140000002c0001"], 0x14}], 0x1}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000feffffff850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r9, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000005c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="8b332000000000000000150000"], 0x38}}, 0x0)
r11 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r8)
sendmsg$IEEE802154_LIST_PHY(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r11, 0x30b}, 0x14}, 0x1, 0x0, 0x0, 0x14}, 0x20000004)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r4, 0x84, 0x6, &(0x7f00000006c0)={<r12=>0x0, @in6={{0xa, 0x4e21, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf8}}}, &(0x7f0000000780)=0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f00000007c0)={r12, 0xef8b, 0x20}, 0xc)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000540), r8)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000080), 0xffffffffffffffff)
r13 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r13, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffff1e00ff130012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)

1m24.886874113s ago: executing program 1 (id=12690):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x5, 0xb, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000080)=0x45d0f620, 0x4)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="3400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468"], 0x34}}, 0x0) (fail_nth: 2)

1m24.886588793s ago: executing program 35 (id=12690):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x5, 0xb, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000080)=0x45d0f620, 0x4)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="3400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468"], 0x34}}, 0x0) (fail_nth: 2)

2.36271448s ago: executing program 5 (id=14231):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/user\x00')
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x688200, 0x0)
fchdir(r1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
readlink(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

2.302274892s ago: executing program 5 (id=14233):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r1)
sendmsg$IEEE802154_LIST_PHY(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r2, 0x30b}, 0x14}}, 0x40000)

2.301378192s ago: executing program 7 (id=14234):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b036800e0ff64000200475400f6a13bb1000000080086dd4803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

2.285260302s ago: executing program 5 (id=14236):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r1}, 0x10)
r2 = socket(0x8000000010, 0x2, 0x0)
write(r2, &(0x7f00000002c0)="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", 0xfc)
syz_emit_ethernet(0xfffffffffffffdc9, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1d64, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r4)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x48, r5, 0x1, 0x70bd27, 0x25dfdbf9, {}, [@NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x48}}, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000180)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r8 = socket$inet6(0xa, 0x80002, 0x0)
ioctl$sock_inet6_SIOCADDRT(r8, 0x890b, &(0x7f0000000040)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @private1, 0x0, 0x0, 0xb, 0x100, 0x53d1, 0x4210000})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
mlockall(0x3)
r9 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
preadv(r9, &(0x7f0000000140)=[{&(0x7f0000000340)=""/193, 0xc1}], 0x1, 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r7, 0xc0185879, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0xe, 0xd, 0x8, 0xfc, 0x0, 0x1, 0x600, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xd6d, 0x2, @perf_config_ext={0x4, 0x100000001}, 0x100982, 0x8, 0x1, 0x8, 0x3, 0x2, 0x80, 0x0, 0x5, 0x0, 0x2}, r6, 0xffffffffffffffff, r7, 0x9)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r10, &(0x7f0000000480)={0x0, 0x14, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r11, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)
mq_open(&(0x7f0000001100)='u+^\x00', 0x40, 0x0, &(0x7f0000001140)={0x1, 0xf1, 0x8001, 0x7fff})

2.247162863s ago: executing program 7 (id=14237):
r0 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00'})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, 0x0, &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x40, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3f}, @NFTA_SET_EXPRESSIONS={0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x88}}, 0x20050800)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x553, &(0x7f0000001080)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r5, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r6, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
r7 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)
r8 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
r10 = dup3(r8, r9, 0x0)
ioctl$MON_IOCX_MFETCH(r10, 0xc0109207, &(0x7f0000000780)={0x0, 0x0, 0x2})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000080), &(0x7f00000000c0)=0x4)

1.76305346s ago: executing program 6 (id=14240):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'tunl0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0x6}, 0x18)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x6, 0x0, 0x0, 0xffffff81}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x40}}, 0x0)

1.760165991s ago: executing program 7 (id=14241):
r0 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00'})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x40, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3f}, @NFTA_SET_EXPRESSIONS={0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x88}}, 0x20050800)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x553, &(0x7f0000001080)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r4, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r5, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
r6 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21)
pwritev2(r6, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)
r7 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
r9 = dup3(r7, r8, 0x0)
ioctl$MON_IOCX_MFETCH(r9, 0xc0109207, &(0x7f0000000780)={0x0, 0x0, 0x2})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000080), &(0x7f00000000c0)=0x4)

1.729269161s ago: executing program 5 (id=14243):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff51, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r3}, 0x10)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
close_range(r4, r4, 0x0)
socket$rds(0x15, 0x5, 0x0)
recvmsg(r4, &(0x7f00000032c0)={0x0, 0x0, 0x0}, 0x100)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYRES16, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500190000000000050018"], 0x44}, 0x1, 0x0, 0x0, 0xc9}, 0x80)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r5, 0x84, 0x85, 0x0, 0x0)
syz_emit_ethernet(0x1c5, &(0x7f0000000280)={@random="cf702e8cf675", @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x18f, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @dev={0xfe, 0x80, '\x00', 0xfd}, @dev={0xfe, 0x80, '\x00', 0x36}, [{0x22, 0x2c, "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"}]}}}}}}, 0x0)
r6 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r6, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

1.565828354s ago: executing program 6 (id=14246):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff8}]})
syz_read_part_table(0x60d, &(0x7f0000002240)="$eJzs3D9olHcYB/DvJbmcUTAdnFxqHDoJRXE0Q5XkqlgIp1IIDvYfIs0UIXDSw5Q4tBkUM0jHLlK4DhonYwYnRaFzEQeLkMGlYBepHXLl7l6SOyjF0oRS/HyGe353PDzf94F3/V34XxtIuTi1Kp3y/qd/298a3TzP50xzYvJ4q9VqnU5KOZtyxsq7l5MMpX9q9icZ7plz8/udq9/+9mG5+fTUq/fOPVgc2JhZyTtJdvU2Z+SvHqXyzzZlO9wafzi6cGW2erX9pdpYW/84uf1yorZycnFp+UT52Oft3y8nj4r+7osxkoup51K+zCdDbxz19eax1Jc/386vj194Um2sfdd8fnB9b3Xw7vkjr/etXrt/KJlrR0yl87JvGv6Xi/fkL/Tkz41dn15qHD1wZ8+Nw/V7j2svBn9vdRWR5a3JBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABge9xqf1yZrV6tj194Um2sffPzTx/dfjlRWzm5uLR8YvjYs6LvUVGHinox9VxKOclMZvJFZt88crrUmz/+cHRhI/+Pncnzg+t7q82754+8nly9dv9Qp6uUqXYZ2IqN+/XnN9bmxq5PLzWOHriz58bh+r3HtReD3b6ZSj7rrJuksvWPAQAAAAAAAAAAAAAAAAAAwFtuYvL4vqkPaqeTUs7uSPLrV51b9q3KyI/p3Lzv2l/UZ5Vkd5KbO7r/BdB8eurV8LkHi78Ul+LnU8l8kl0/rJxJ3t3IudwfW96czH/pzwAAAP//gTiR5w==")
eventfd2(0x3, 0x0)
dup(0xffffffffffffffff)
io_submit(0x0, 0x0, 0x0)

1.409351876s ago: executing program 8 (id=14248):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
unshare(0x22020400)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
linkat(r0, &(0x7f0000000080)='./mnt\x00', r0, 0x0, 0x1400)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000360007012bbd7000fedbdf2503"], 0x18}, 0x1, 0x0, 0x0, 0x408d0}, 0x200480d0)
r2 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3}, &(0x7f00000001c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0ff5b14104fe62cc60e413905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf2364149215108333719acd97cfa107d40224edc5465a93df8513a32ec450bebc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe511195418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4929330142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da8c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000dd11e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15f2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f000010000000000000905ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400bee3dfc8fb24f67c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341b74abaa7c95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb232bbdb9dc33cbd7643866fde41f94290c2a5ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595270fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f76dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d2e959efc71f665c4d75cf2458e3322c9062ece84c99a061997a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99f0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d164118e4cbe02400000000ff0700000000cc9d8046c216c1f895778cb25122a2a998de44aeadea2a40da8daccf080842a4867217373934bbd42dcb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcd62981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba495aea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b60000000000001700d6d5210d7560eb92d6a97a27602b81f76386f1535b1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294059323e7a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd704e4214de5946932d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1fc8df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1785eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba891cea599b079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be2f5656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fd78f9743af932cd6db49a47613808bad959719c0000000000378a921c7f7f6933c2e24c7e800003c9e8095e02985f28de0bbc76d58dd92606b1ef6486c85fa3e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6968d12418a4d2a0d086d8438d415d713acebc5b014e61a543a5a391f03daca80f08f0e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e112645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c000000000000000000000000000000a1c3da144589dcaddb71cf9374843e23f992a237a9040747e0434a8a643990b4059a98411ce867d1af7e8ea89f49e6f564d4dce8a7d6939a9214a7f39e83bd247e03a09dba000000000000000000000000aaf033d47249c8444bc13844cbf1be617d82b269e5ea0c0d525603c0ec543ea581f63893ae414a6683e941fdbdff03cfc5f8744583c0aa766a65321f907927a59d75b47f06895e8471ebc2840ce5bd054df223fb09b9c739ad64cfcfd2d498b0f11056f6c40874cb977c99b6bc1a8732198a17e610082b7ce0365f271b11d4b4a3d4c7d0bb273f406ecd4b26c93151c30f5a269991402d109becb1b9bafcb2b47e940000000000e540d8b0db3774effb7469a21f96e2594b2973ebf7a1bd9ace2ed4d6eb1735f85885be5be74dc2ea5d7d499bd28271b98f187f5879b16b409a04d78175cc8d0f707c822805d7011ed4b22419186dd2b22aadf15828db2ca19d79e1bf2f7989237ee5cb2e1eb7b2bfc92d3aa95a26f060935c4fee8b2d7d0bf3c6d82d04329164bd4ee0b8060183f36762b0440d9082d7c8b06e4c2024f77e1018758d28e7ee290f32a48bfc2aa10b3dba9bff00d2410f3477a8e0df689c880dc9a677cfaa16603527c06625a3363744cea5f2d350224cc0fea76c72ca08507235c67346722f20690fde0790f040f5fd3eff75f9b291cc5e9c686ebaadbe756c6fa039ff441e427ed12578d5cb041ebf729cfaa575cc852fbdb54e60435e6d62b9d270433b220ed9ff1ff042b8d3d866231c460765"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1f)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'ipvlan0\x00'})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='cpu<\t\t')

1.240564539s ago: executing program 6 (id=14250):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
unshare(0x22020400)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
linkat(r0, &(0x7f0000000080)='./mnt\x00', r0, 0x0, 0x1400)

1.149714831s ago: executing program 6 (id=14251):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000800)='!~&\x00\xa1\x81Y0B1WiV\x12n\xdaZR\x94\x8dZJ\xb3\x13\xc7\x87\x13=2\xe8dk\xfc\xcd\xb2\xb0\xe7Nw\x92x\x8cKh\xc4Fi\xf7\xed\x96\x95?\x04\x04\xb36\xf7?\xdb\x7f_b\x1e\x04O\x19\x8a\x91{\x9e\x13\xa5\x9d23G \x8cf9\x88\xf6N\x1bb\xe2\x05\xae\xebX\xd6\xb7\xcc;\x8f\x9e w\xc8\xc8(\x87,e]rc3\x9eI\x1c\xda\xce\x8eQ\xa4\xdfyT\x1b\x04<\xec\xf3E\x80\xab\x7f{az\xb3U3!\xe5\xa6\xca\x96\xf9\b\xe7\xfc96\xc1k:\xbd\xe0f\xc2U<m\x84\xd3\xbd\'\x91\x9f\x82E\t\xe7]iT<\x81\xe9n\xb4,\xb4ah0\xdb\\\xf2\xa9\xa9Ol:\xd5\xd0\xd1\x9bip\xcbU\x99\x82Rq<\x8c\x0f\xb9h')
io_uring_setup(0x1581, &(0x7f0000000780)={0x0, 0x2000001, 0x4000, 0x0, 0x3bd})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
fstat(r1, &(0x7f00000002c0))
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000400000000000000001600"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000280), &(0x7f0000000080)=r3}, 0x20)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a90000000030a0300000000000000000002e000000c00020000000000000000010900010073797a30"], 0xb8}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8001}, 0x4)
syz_emit_ethernet(0x2e, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c200000ee43f6642531e0800450000200000e00002119078000000000000000000084e20000c907861100000"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x1, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.142572641s ago: executing program 8 (id=14252):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0x2000000000000212, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xdd)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/tcp\x00')
preadv(r0, 0x0, 0x0, 0x2000ff0f, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = syz_io_uring_setup(0x5c4, &(0x7f0000000140)={0x0, 0x9cc6, 0x10, 0x8003}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000006"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1})
io_uring_enter(r1, 0x6e2, 0x600, 0x1, 0x0, 0xfffc)

1.111754271s ago: executing program 8 (id=14254):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07447900000000000000001800", @ANYRES32, @ANYBLOB], 0x0, 0xffffffff, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unshare(0x20020000)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='devpts\x00', 0x0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r2, &(0x7f00000000c0)=ANY=[], 0xff2e)
unlinkat(r1, &(0x7f00000003c0)='./file0\x00', 0x200)

1.061249583s ago: executing program 7 (id=14255):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_read_part_table(0x60d, &(0x7f0000002200)="$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")

1.020023303s ago: executing program 5 (id=14256):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, 0x0, &(0x7f00000001c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r2, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r3 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r3, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r3, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
socket$unix(0x1, 0x2, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.bfq.dequeue\x00', 0x26e1, 0x0)
close(r4)
r5 = socket$kcm(0xa, 0x2, 0x88)
sendmsg$kcm(r5, &(0x7f0000000340)={&(0x7f00000000c0)=@in6={0xa, 0x4e22, 0x0, @dev, 0x7}, 0x80, 0x0}, 0x200ce0c0)
write$cgroup_subtree(r4, 0x0, 0xb203)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x2, 0x80805, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet_dccp(0x2, 0x6, 0x0)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

907.559245ms ago: executing program 7 (id=14259):
socket$igmp(0x2, 0x3, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001e000000000000000c0000000c"], 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x76, @void, @value}, 0x94)
lsetxattr$trusted_overlay_redirect(0x0, 0x0, 0x0, 0x0, 0x2)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@lazytime}, {@nomblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@quota}, {@quota}]}, 0xff, 0x443, &(0x7f0000000940)="$eJzs3MtvG0UYAPBv10mgLxJKefQBBMqj4pE0aYEeuIBA4gASEhzKMSRpVeo2qAkSrSoICJUjqsQdcUTiL+BELwg4IXGFAzdUqUK9tHAyWnu3cYztNsbuQv37SevM7I4182V37JmdbAIYWpPZSxKxNSJ+iYjxRnZ9gcnGj6uXz87/efnsfBK12ht/JPVyVy6fnS+KFu/bkmf2pRHpJ0nsblPv8ukzx+eq1cVTeX565cS708unzzx97MTc0cWjiydnDx06eGDmuWdnn+lLnFlcV3Z9sLRn5ytvnX9t/vD5t3/4Oinib4mjTya7HXy0VutzdeXa1pRORkpsCBtSiYjsdI3W+/94VGLt5I3Hyx+X2jhgoGq5DodXa8AtLImyWwCUo/iiz+a/xXbzRh/lu/RCYwKUxX013xpHRiLNy4y2zG/7aTIiDq/+9UW2xWDuQwAArPNtNv55qt34L417msrdka+hTETEnRGxPSLuiogdEXF3RL3svRFx3wbrb10k+ef4J73YU2A3KBv/PZ+vba0f/xWjv5io5Llt9fhHkyPHqov7G8dWs5csP9Oljgsv/fxZp2PN479sy+ovxoJ5Oy6O3Lb+PQtzK3O9xtvq0kcRu0baxZ9cWwlIImJnROzqsY5jT3y1p9Ox68ffRR/WmWpfRjzeOP+r0RJ/Iem+Pjl9e1QX9083XRUtfvzp3Oud6v9X8fdBdv43t73+r8U/kTSv1y5vvI5zv37acU7T6/U/lrxZT4/l+96fW1k5NRMxlrzaaHTz/tm19xb5onwW/7697fv/9lj7TeyOiOwivj8iHoiIB/O2PxQRD0fE3i7xf//iI+/0Hv9gZfEvbOj8ryXGonVP+0Tl+HffrKt0YiPxZ+f/YD21L99T//xLusd1I+3q7WoGAACA/580IrZGkk5dS6fp1FTjb/h3xOa0urS88uSRpfdOLjSeEZiI0bS40zXedD90Jp/WF/nZlvyB/L7x55VN9fzU/FJ1oezgYcht6dD/M79Xym4dMHCe14Lhpf/D8NL/YXjp/zC82vT/TWW0A7j52n3/fxgRFx4roTHATdXS/y37wRAx/4fhpf/D8LqB/v/brfXvqoGIWN4U139IfrCJSpRZu0SPiUj/E82QGFCi7E8mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/vg7AAD//9aZ7PU=")
setresuid(0xee00, 0x0, 0x0)
r2 = syz_clone(0x2a8000, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
prlimit64(r2, 0x6, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x3000004, 0x80010, r4, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x46, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r5, 0x0, 0x178}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)

673.020429ms ago: executing program 0 (id=14262):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
unshare(0x22020400)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
linkat(r0, &(0x7f0000000080)='./mnt\x00', r0, 0x0, 0x1400)

665.362969ms ago: executing program 0 (id=14263):
r0 = socket$inet6(0xa, 0x200000000003, 0x87)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f00000006c0)=ANY=[], 0x28)

606.94882ms ago: executing program 0 (id=14264):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
unshare(0x22020400)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
linkat(r0, &(0x7f0000000080)='./mnt\x00', r0, 0x0, 0x1400)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000360007012bbd7000fedbdf2503"], 0x18}, 0x1, 0x0, 0x0, 0x408d0}, 0x200480d0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2}, &(0x7f00000001c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1f)
syz_open_procfs(0x0, &(0x7f00000000c0)='net/tcp\x00')

554.627421ms ago: executing program 0 (id=14265):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x240, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48)
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000005304"], 0x14}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x10000002}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000feff0c43c98091f85bf887d4a6ffff00000000000000001801000020646c2500000000002020207b1af8ff00000000bf1bdcd816f8b4a94c4d5a43a100000000000007010000f8ffffffd302000008000000b70300000400000085000000060000008500000050000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r5}, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[], 0x58}}, 0x0)

534.925961ms ago: executing program 0 (id=14266):
r0 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00'})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), 0x0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x40, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3f}, @NFTA_SET_EXPRESSIONS={0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x88}}, 0x20050800)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x553, &(0x7f0000001080)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r4, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r5, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
r6 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21)
pwritev2(r6, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)
r7 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
r9 = dup3(r7, r8, 0x0)
ioctl$MON_IOCX_MFETCH(r9, 0xc0109207, &(0x7f0000000780)={0x0, 0x0, 0x2})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000080), &(0x7f00000000c0)=0x4)

502.255892ms ago: executing program 6 (id=14267):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r1}, 0x10)
r2 = socket(0x8000000010, 0x2, 0x0)
write(r2, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af000049f0d4796f0000090548de", 0xfc)
syz_emit_ethernet(0xfffffffffffffdc9, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1d64, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r4)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x48, r5, 0x1, 0x70bd27, 0x25dfdbf9, {}, [@NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x48}}, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000180)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r8 = socket$inet6(0xa, 0x80002, 0x0)
ioctl$sock_inet6_SIOCADDRT(r8, 0x890b, &(0x7f0000000040)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @private1, 0x0, 0x0, 0xb, 0x100, 0x53d1, 0x4210000})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
mlockall(0x3)
r9 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
preadv(r9, &(0x7f0000000140)=[{&(0x7f0000000340)=""/193, 0xc1}], 0x1, 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r7, 0xc0185879, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0xe, 0xd, 0x8, 0xfc, 0x0, 0x1, 0x600, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xd6d, 0x2, @perf_config_ext={0x4, 0x100000001}, 0x100982, 0x8, 0x1, 0x8, 0x3, 0x2, 0x80, 0x0, 0x5, 0x0, 0x2}, r6, 0xffffffffffffffff, r7, 0x9)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r10, &(0x7f0000000480)={0x0, 0x14, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r11, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)
mq_open(&(0x7f0000001100)='u+^\x00', 0x40, 0x0, &(0x7f0000001140)={0x1, 0xf1, 0x8001, 0x7fff})

254.501216ms ago: executing program 8 (id=14268):
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000780)="4f7f61bfe7ec271202403a540b524a03bda1e44111dd69d3924090d27ac2f6b2c654d94690a10a33d0", 0x29}], 0x1)

188.320787ms ago: executing program 8 (id=14269):
perf_event_open(0x0, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x3000000, &(0x7f0000000200)={[{@nobarrier}, {@dioread_nolock}]}, 0x1, 0x527, &(0x7f0000019580)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

186.615997ms ago: executing program 0 (id=14270):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff51, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r3}, 0x10)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
close_range(r4, r4, 0x0)
socket$rds(0x15, 0x5, 0x0)
recvmsg(r4, &(0x7f00000032c0)={0x0, 0x0, 0x0}, 0x100)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYRES16=r5, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500190000000000050018"], 0x44}, 0x1, 0x0, 0x0, 0xc9}, 0x80)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x85, 0x0, 0x0)
syz_emit_ethernet(0x1c5, &(0x7f0000000280)={@random="cf702e8cf675", @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x18f, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @dev={0xfe, 0x80, '\x00', 0xfd}, @dev={0xfe, 0x80, '\x00', 0x36}, [{0x22, 0x2c, "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"}]}}}}}}, 0x0)
r7 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r7, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

157.669548ms ago: executing program 5 (id=14271):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff51, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r3}, 0x10)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
close_range(r4, r4, 0x0)
socket$rds(0x15, 0x5, 0x0)
recvmsg(r4, &(0x7f00000032c0)={0x0, 0x0, 0x0}, 0x100)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYRES16=r5, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500190000000000050018"], 0x44}, 0x1, 0x0, 0x0, 0xc9}, 0x80)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x85, 0x0, 0x0)
syz_emit_ethernet(0x1c5, &(0x7f0000000280)={@random="cf702e8cf675", @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x18f, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @dev={0xfe, 0x80, '\x00', 0xfd}, @dev={0xfe, 0x80, '\x00', 0x36}, [{0x22, 0x2c, "6f9a417bfb01d0d17a8bb18379d6d4d70ac280f7767144712a1d0dc8aa40ff5329f442d13609b0d28b4d6369ed2450e54738036d6e4bab65bd74838d722efe0695a422e4491a08d5eabc6c45e22201016bd91e135fb244adbc9e2fa1b48775f3418e83f3a9a41fe3c60539924c3e083182ca756f2d753dd2e75f9c58262f49619fc640a2c3d0cd70c1ca90f5dba5a163d0ca09d872fcecc4fe4c971fcf4ab176abb3c0471c8076ac2fcbf7ef7abad627252681577302d3b816e9769e05d096272b9ca6cc4a98402a44709560ac86595802a02b83358989ddb8d385c4093a531b08d73097009865b22dfa0c08c5b1f2923694a9907f844f7cb644c2567471b6a2d9930399213677cb71da9e4f440ce99c5472eced49368551592be60552820343f67de3cfc1f30bd0755db53a370a28bb15008f1ea8a672045fe46ca821ec0a8e01fbe685661c0d7471d29b3c898403586d7a546f19a2d26856c845fa77baa46cf0397ff1ad"}]}}}}}}, 0x0)
r7 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r7, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

20.41347ms ago: executing program 6 (id=14272):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8922, &(0x7f0000000080)={'dummy0\x00'})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x3000000, &(0x7f0000000200)={[{@nobarrier}, {@dioread_nolock}]}, 0x1, 0x527, &(0x7f0000019580)="$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")

13.57562ms ago: executing program 7 (id=14273):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
unshare(0x22020400)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
linkat(r0, &(0x7f0000000080)='./mnt\x00', r0, 0x0, 0x1400)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000360007012bbd7000fedbdf2503"], 0x18}, 0x1, 0x0, 0x0, 0x408d0}, 0x200480d0)
r2 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3}, &(0x7f00000001c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'ipvlan0\x00'})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='cpu<\t\t')

0s ago: executing program 8 (id=14274):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b036800e0ff64000200475400f6a13bb1000000080086dd4803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

kernel console output (not intermixed with test programs):

000 r/w without journal. Quota mode: none.
[  636.055643][ T9505] program syz.7.13578 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  636.292726][ T9506] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  636.395872][ T9525] pimreg: entered allmulticast mode
[  636.406686][ T9525] pimreg: left allmulticast mode
[  636.481521][ T7870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.527554][ T9530] loop6: detected capacity change from 0 to 512
[  636.536225][ T9530] journal_path: Non-blockdev passed as './bus'
[  636.542460][ T9530] EXT4-fs: error: could not find journal device path
[  636.728512][ T9546] loop7: detected capacity change from 0 to 512
[  636.752776][ T9546] EXT4-fs error (device loop7): ext4_iget_extra_inode:4693: inode #15: comm syz.7.13593: corrupted in-inode xattr: invalid ea_ino
[  636.770427][ T9546] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.13593: couldn't read orphan inode 15 (err -117)
[  636.785929][ T9546] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  636.816286][ T9542] wireguard0: entered promiscuous mode
[  636.821815][ T9542] wireguard0: entered allmulticast mode
[  636.835966][ T9546] netlink: 36 bytes leftover after parsing attributes in process `syz.7.13593'.
[  636.857898][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.879388][ T9557] netlink: 68 bytes leftover after parsing attributes in process `syz.7.13594'.
[  636.956202][ T9559] loop7: detected capacity change from 0 to 1024
[  636.991141][ T9559] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  637.162003][ T9576] netlink: 'syz.8.13600': attribute type 3 has an invalid length.
[  637.184964][ T9559] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  637.270985][ T9590] loop5: detected capacity change from 0 to 512
[  637.277742][ T9590] EXT4-fs: Ignoring removed nomblk_io_submit option
[  637.280758][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.284653][ T9590] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  637.317461][ T9590] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  637.342922][ T9590] EXT4-fs (loop5): 1 truncate cleaned up
[  637.349305][ T9590] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  637.382461][ T9601] netlink: 'syz.6.13609': attribute type 3 has an invalid length.
[  637.383607][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.414764][ T9604] loop6: detected capacity change from 0 to 128
[  637.421270][ T9604] vfat: Unknown parameter ''
[  637.449486][ T9610] loop5: detected capacity change from 0 to 1024
[  637.464754][ T9610] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  637.516823][ T9610] SELinux: failed to load policy
[  637.537127][ T9621] syzkaller0: entered allmulticast mode
[  637.543177][ T9621] syzkaller0: entered promiscuous mode
[  637.558018][ T9623] batadv1: entered allmulticast mode
[  637.565971][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.623976][ T9630] syzkaller0: entered allmulticast mode
[  637.629785][ T9630] syzkaller0: entered promiscuous mode
[  637.635992][ T9620] syzkaller0: left promiscuous mode
[  637.641367][ T9620] syzkaller0: left allmulticast mode
[  637.671502][ T9630] syzkaller0 (unregistering): left promiscuous mode
[  637.678393][ T9630] syzkaller0 (unregistering): left allmulticast mode
[  637.877521][ T9650] loop5: detected capacity change from 0 to 256
[  637.981134][ T9657] syzkaller0: entered allmulticast mode
[  637.986951][ T9657] syzkaller0: entered promiscuous mode
[  638.035698][ T9638] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9638 comm=syz.0.13625
[  638.083707][ T9659] batadv1: entered promiscuous mode
[  638.091470][ T9656] syzkaller0: left promiscuous mode
[  638.096979][ T9656] syzkaller0: left allmulticast mode
[  638.111186][ T9661] batadv1: entered allmulticast mode
[  638.180534][ T9663] loop5: detected capacity change from 0 to 1024
[  638.220051][ T9663] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  638.280150][ T9672] loop8: detected capacity change from 0 to 2048
[  638.336441][ T9672] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  638.336639][ T9677] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  638.350661][ T9684] syz.7.13642: attempt to access beyond end of device
[  638.350661][ T9684] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  638.400539][ T9672] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  638.424333][ T9672] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 1 with error 28
[  638.436826][ T9672] EXT4-fs (loop8): This should not happen!! Data will be lost
[  638.436826][ T9672] 
[  638.447698][ T9672] EXT4-fs (loop8): Total free blocks count 0
[  638.453819][ T9672] EXT4-fs (loop8): Free/Dirty block details
[  638.459777][ T9672] EXT4-fs (loop8): free_blocks=2415919104
[  638.465556][ T9672] EXT4-fs (loop8): dirty_blocks=32
[  638.465674][ T9687] loop0: detected capacity change from 0 to 512
[  638.470819][ T9672] EXT4-fs (loop8): Block reservation details
[  638.470834][ T9672] EXT4-fs (loop8): i_reserved_data_blocks=2
[  638.488783][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.503231][ T9687] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.13643: corrupted in-inode xattr: invalid ea_ino
[  638.517550][ T1924] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  638.532741][ T9687] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.13643: couldn't read orphan inode 15 (err -117)
[  638.549609][ T9701] loop7: detected capacity change from 0 to 1024
[  638.550882][ T9687] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  638.574610][ T9701] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  638.590389][ T9687] __nla_validate_parse: 5 callbacks suppressed
[  638.590406][ T9687] netlink: 36 bytes leftover after parsing attributes in process `syz.0.13643'.
[  638.598439][ T9700] netlink: 4 bytes leftover after parsing attributes in process `syz.5.13645'.
[  638.622742][ T9709] loop8: detected capacity change from 0 to 1024
[  638.642093][ T9701] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.13646: bg 0: block 88: padding at end of block bitmap is not set
[  638.642903][ T7870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.681744][ T9709] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  638.696620][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.727174][ T9709] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.13647: bg 0: block 88: padding at end of block bitmap is not set
[  638.747786][ T9716] netlink: 36 bytes leftover after parsing attributes in process `syz.0.13650'.
[  638.779792][ T9714] netlink: 3 bytes leftover after parsing attributes in process `syz.0.13650'.
[  638.793891][ T9714] batadv1: entered allmulticast mode
[  638.796096][ T9711] loop6: detected capacity change from 0 to 512
[  638.825315][ T6772] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.961022][ T9711] EXT4-fs (loop6): 1 orphan inode deleted
[  638.974077][ T9711] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  638.987186][   T37] __quota_error: 248 callbacks suppressed
[  638.987204][   T37] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  638.987233][   T37] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  639.019626][ T9711] ext4 filesystem being mounted at /479/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  639.063659][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  639.079724][ T9742] loop8: detected capacity change from 0 to 512
[  639.088129][ T9742] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.13660: corrupted in-inode xattr: invalid ea_ino
[  639.108826][ T9742] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.13660: couldn't read orphan inode 15 (err -117)
[  639.131780][ T9742] netlink: 36 bytes leftover after parsing attributes in process `syz.8.13660'.
[  639.161407][ T9759] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  639.168030][ T9759] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  639.176042][ T9759] vhci_hcd vhci_hcd.0: Device attached
[  639.181635][   T29] audit: type=1326 audit(1744944085.186:32974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9749 comm="syz.0.13663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  639.205295][   T29] audit: type=1326 audit(1744944085.186:32975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9749 comm="syz.0.13663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  639.218162][ T9760] vhci_hcd: connection closed
[  639.228992][   T29] audit: type=1326 audit(1744944085.186:32976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9749 comm="syz.0.13663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  639.231299][  T794] vhci_hcd: stop threads
[  639.233855][   T29] audit: type=1326 audit(1744944085.186:32977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9749 comm="syz.0.13663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  639.257415][  T794] vhci_hcd: release socket
[  639.261693][   T29] audit: type=1326 audit(1744944085.186:32978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9749 comm="syz.0.13663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  639.285254][  T794] vhci_hcd: disconnect device
[  639.288032][ T9766] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  639.289768][   T29] audit: type=1326 audit(1744944085.186:32979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9749 comm="syz.0.13663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  639.313372][ T9766] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  639.313489][ T9766] vhci_hcd vhci_hcd.0: Device attached
[  639.318152][   T29] audit: type=1326 audit(1744944085.186:32980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9749 comm="syz.0.13663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  639.331249][ T9767] vhci_hcd: connection closed
[  639.386346][  T794] vhci_hcd: stop threads
[  639.395419][  T794] vhci_hcd: release socket
[  639.399855][  T794] vhci_hcd: disconnect device
[  639.470199][ T9778] syz.8.13672: attempt to access beyond end of device
[  639.470199][ T9778] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  639.626201][ T9784] loop8: detected capacity change from 0 to 512
[  639.644612][ T9784] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.13675: corrupted in-inode xattr: invalid ea_ino
[  639.659067][ T9784] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.13675: couldn't read orphan inode 15 (err -117)
[  639.675243][ T9784] netlink: 36 bytes leftover after parsing attributes in process `syz.8.13675'.
[  639.786993][ T9792] loop8: detected capacity change from 0 to 1024
[  639.824175][ T9799] netlink: 4 bytes leftover after parsing attributes in process `syz.5.13679'.
[  639.948320][ T9792] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  639.971429][ T9806] loop0: detected capacity change from 0 to 1024
[  640.005039][ T9808] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  640.013994][ T9804] loop7: detected capacity change from 0 to 1024
[  640.038417][ T9808] loop6: detected capacity change from 0 to 512
[  640.041371][ T9806] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.13682: bg 0: block 88: padding at end of block bitmap is not set
[  640.072704][ T9808] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  640.093975][ T9808] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.13683: Invalid block bitmap block 0 in block_group 0
[  640.124797][ T9808] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  640.146156][ T9808] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #11: comm syz.6.13683: attempt to clear invalid blocks 983261 len 1
[  640.165310][ T9808] EXT4-fs error (device loop6): __ext4_get_inode_loc:4450: comm syz.6.13683: Invalid inode table block 0 in block_group 0
[  640.186285][ T9808] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  640.201916][ T9808] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  640.214921][ T9808] EXT4-fs error (device loop6): __ext4_get_inode_loc:4450: comm syz.6.13683: Invalid inode table block 0 in block_group 0
[  640.229624][ T9808] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  640.255727][ T9819] FAULT_INJECTION: forcing a failure.
[  640.255727][ T9819] name failslab, interval 1, probability 0, space 0, times 0
[  640.262618][ T9808] EXT4-fs error (device loop6): ext4_truncate:4255: inode #11: comm syz.6.13683: mark_inode_dirty error
[  640.268519][ T9819] CPU: 0 UID: 0 PID: 9819 Comm: syz.8.13685 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  640.268597][ T9819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  640.268613][ T9819] Call Trace:
[  640.268621][ T9819]  <TASK>
[  640.268629][ T9819]  dump_stack_lvl+0xf6/0x150
[  640.268660][ T9819]  dump_stack+0x15/0x1a
[  640.268748][ T9819]  should_fail_ex+0x261/0x270
[  640.268778][ T9819]  should_failslab+0x8f/0xb0
[  640.268806][ T9819]  __kmalloc_cache_node_noprof+0x58/0x340
[  640.268901][ T9819]  ? __get_vm_area_node+0xfb/0x1c0
[  640.268944][ T9819]  __get_vm_area_node+0xfb/0x1c0
[  640.269034][ T9819]  __vmalloc_node_range_noprof+0x285/0xe80
[  640.269080][ T9819]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  640.269121][ T9819]  ? avc_has_perm_noaudit+0x1cc/0x210
[  640.269157][ T9819]  ? selinux_capable+0x1f9/0x260
[  640.269273][ T9819]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  640.269308][ T9819]  __vmalloc_noprof+0x5e/0x70
[  640.269331][ T9819]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  640.269372][ T9819]  bpf_prog_alloc_no_stats+0x49/0x390
[  640.269456][ T9819]  ? bpf_prog_alloc+0x28/0x150
[  640.269496][ T9819]  bpf_prog_alloc+0x3a/0x150
[  640.269533][ T9819]  bpf_prog_load+0x532/0x10e0
[  640.269627][ T9819]  __sys_bpf+0x533/0x800
[  640.269670][ T9819]  __x64_sys_bpf+0x43/0x50
[  640.269701][ T9819]  x64_sys_call+0x23da/0x2e10
[  640.269765][ T9819]  do_syscall_64+0xc9/0x1a0
[  640.269797][ T9819]  ? clear_bhb_loop+0x25/0x80
[  640.269827][ T9819]  ? clear_bhb_loop+0x25/0x80
[  640.269855][ T9819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  640.269884][ T9819] RIP: 0033:0x7f42e60ee169
[  640.269904][ T9819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  640.270000][ T9819] RSP: 002b:00007f42e4757038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  640.270024][ T9819] RAX: ffffffffffffffda RBX: 00007f42e6315fa0 RCX: 00007f42e60ee169
[  640.270039][ T9819] RDX: 0000000000000094 RSI: 0000200000000580 RDI: 0000000000000005
[  640.270056][ T9819] RBP: 00007f42e4757090 R08: 0000000000000000 R09: 0000000000000000
[  640.270071][ T9819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  640.270117][ T9819] R13: 0000000000000001 R14: 00007f42e6315fa0 R15: 00007fff7098d848
[  640.270142][ T9819]  </TASK>
[  640.270151][ T9819] syz.8.13685: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[  640.281457][ T9808] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  640.292010][ T9819] ,cpuset=/,mems_allowed=0
[  640.304092][ T9808] EXT4-fs error (device loop6): __ext4_get_inode_loc:4450: comm syz.6.13683: Invalid inode table block 0 in block_group 0
[  640.305365][ T9819] 
[  640.308441][ T9808] EXT4-fs (loop6): 1 truncate cleaned up
[  640.312927][ T9819] CPU: 0 UID: 0 PID: 9819 Comm: syz.8.13685 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  640.312957][ T9819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  640.312973][ T9819] Call Trace:
[  640.312981][ T9819]  <TASK>
[  640.313035][ T9819]  dump_stack_lvl+0xf6/0x150
[  640.313067][ T9819]  dump_stack+0x15/0x1a
[  640.313091][ T9819]  warn_alloc+0x145/0x1b0
[  640.313171][ T9819]  __vmalloc_node_range_noprof+0x2aa/0xe80
[  640.313223][ T9819]  ? avc_has_perm_noaudit+0x1cc/0x210
[  640.313259][ T9819]  ? selinux_capable+0x1f9/0x260
[  640.313388][ T9819]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  640.313423][ T9819]  __vmalloc_noprof+0x5e/0x70
[  640.313447][ T9819]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  640.313482][ T9819]  bpf_prog_alloc_no_stats+0x49/0x390
[  640.313546][ T9819]  ? bpf_prog_alloc+0x28/0x150
[  640.313633][ T9819]  bpf_prog_alloc+0x3a/0x150
[  640.313666][ T9819]  bpf_prog_load+0x532/0x10e0
[  640.313717][ T9819]  __sys_bpf+0x533/0x800
[  640.313832][ T9819]  __x64_sys_bpf+0x43/0x50
[  640.313864][ T9819]  x64_sys_call+0x23da/0x2e10
[  640.313961][ T9819]  do_syscall_64+0xc9/0x1a0
[  640.314069][ T9819]  ? clear_bhb_loop+0x25/0x80
[  640.314097][ T9819]  ? clear_bhb_loop+0x25/0x80
[  640.314126][ T9819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  640.314152][ T9819] RIP: 0033:0x7f42e60ee169
[  640.314172][ T9819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  640.314195][ T9819] RSP: 002b:00007f42e4757038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  640.314291][ T9819] RAX: ffffffffffffffda RBX: 00007f42e6315fa0 RCX: 00007f42e60ee169
[  640.314306][ T9819] RDX: 0000000000000094 RSI: 0000200000000580 RDI: 0000000000000005
[  640.314322][ T9819] RBP: 00007f42e4757090 R08: 0000000000000000 R09: 0000000000000000
[  640.314338][ T9819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  640.314360][ T9819] R13: 0000000000000001 R14: 00007f42e6315fa0 R15: 00007fff7098d848
[  640.314446][ T9819]  </TASK>
[  640.314455][ T9819] Mem-Info:
[  640.344931][ T9816] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, 
[  640.348078][ T9819] active_anon:4447 inactive_anon:4 isolated_anon:0
[  640.348078][ T9819]  active_file:18920 inactive_file:2567 isolated_file:0
[  640.348078][ T9819]  unevictable:0 dirty:928 writeback:0
[  640.348078][ T9819]  slab_reclaimable:3231 slab_unreclaimable:28885
[  640.348078][ T9819]  mapped:29162 shmem:706 pagetables:1597
[  640.348078][ T9819]  sec_pagetables:0 bounce:0
[  640.348078][ T9819]  kernel_misc_reclaimable:0
[  640.348078][ T9819]  free:1838933 free_pcp:19426 free_cma:0
[  640.353827][ T9816] inode 15: 
[  640.359155][ T9819] Node 0 active_anon:17788kB inactive_anon:16kB active_file:75680kB inactive_file:10268kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:116648kB dirty:3712kB writeback:0kB shmem:2824kB writeback_tmp:0kB kernel_stack:3648kB pagetables:6388kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  640.364232][ T9816] block 369:
[  640.369727][ T9819] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  640.374411][ T9816] freeing already freed block (bit 23); block bitmap corrupt.
[  640.406373][ T9821] loop0: detected capacity change from 0 to 4096
[  640.408268][ T9819] lowmem_reserve[]: 0 2882 7860 7860
[  640.895989][ T9819] Node 0 DMA32 free:2947684kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951312kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:100kB free_cma:0kB
[  640.924517][ T9819] lowmem_reserve[]: 0 0 4978 4978
[  640.929605][ T9819] Node 0 Normal free:4393616kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB active_anon:19660kB inactive_anon:16kB active_file:75732kB inactive_file:10440kB unevictable:0kB writepending:3524kB present:5242880kB managed:5098244kB mlocked:0kB bounce:0kB free_pcp:71360kB local_pcp:40500kB free_cma:0kB
[  640.960017][ T9819] lowmem_reserve[]: 0 0 0 0
[  640.964723][ T9819] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  640.977585][ T9819] Node 0 DMA32: 3*4kB (M) 1*8kB (M) 3*16kB (M) 3*32kB (M) 3*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947684kB
[  640.994055][ T9819] Node 0 Normal: 773*4kB (UME) 338*8kB (UME) 171*16kB (UME) 373*32kB (UME) 227*64kB (UME) 75*128kB (UME) 46*256kB (UME) 41*512kB (UME) 101*1024kB (UME) 67*2048kB (UME) 995*4096kB (UME) = 4393524kB
[  641.013748][ T9819] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  641.023133][ T9819] 22550 total pagecache pages
[  641.027822][ T9819] 2 pages in swap cache
[  641.031982][ T9819] Free swap  = 124988kB
[  641.036152][ T9819] Total swap = 124996kB
[  641.040414][ T9819] 2097051 pages RAM
[  641.044241][ T9819] 0 pages HighMem/MovableOnly
[  641.049090][ T9819] 80822 pages reserved
[  641.100025][   T29] audit: type=1326 audit(1744944087.126:32981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9823 comm="syz.7.13687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b3725e169 code=0x7ffc0000
[  641.154649][   T29] audit: type=1326 audit(1744944087.126:32982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9823 comm="syz.7.13687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f6b3725e169 code=0x7ffc0000
[  641.216196][ T9836] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(4)
[  641.222754][ T9836] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  641.230425][ T9836] vhci_hcd vhci_hcd.0: Device attached
[  641.248440][ T9837] vhci_hcd: connection closed
[  641.248556][   T31] vhci_hcd: stop threads
[  641.257817][   T31] vhci_hcd: release socket
[  641.262319][   T31] vhci_hcd: disconnect device
[  641.281589][ T9847] netlink: 'syz.0.13695': attribute type 3 has an invalid length.
[  641.306691][ T9849] 9pnet: Could not find request transport: fd0x0000000000000004
[  641.400469][ T9863] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13699'.
[  641.422830][ T9861] loop7: detected capacity change from 0 to 1024
[  641.553094][ T9861] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  641.685535][ T9869] loop7: detected capacity change from 0 to 2048
[  641.714945][ T9869] netlink: 20 bytes leftover after parsing attributes in process `syz.7.13701'.
[  641.724431][ T9869] netlink: 'syz.7.13701': attribute type 1 has an invalid length.
[  641.805493][ T9876] loop6: detected capacity change from 0 to 1024
[  641.813724][ T9876] EXT4-fs: Ignoring removed nobh option
[  641.819548][ T9876] EXT4-fs: Ignoring removed bh option
[  641.908516][ T9890] loop7: detected capacity change from 0 to 1024
[  642.070930][ T9895] loop5: detected capacity change from 0 to 1024
[  642.140818][ T9900] 9pnet: Could not find request transport: fd0x0000000000000004
[  642.206308][ T9890] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  642.227192][ T9905] netlink: 'syz.6.13710': attribute type 3 has an invalid length.
[  642.269742][ T9903] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  642.300986][ T9913] syz_tun: entered allmulticast mode
[  642.315560][ T9915] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(4)
[  642.322117][ T9915] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  642.329803][ T9915] vhci_hcd vhci_hcd.0: Device attached
[  642.346116][ T9917] vhci_hcd: connection closed
[  642.347950][   T37] vhci_hcd: stop threads
[  642.357077][   T37] vhci_hcd: release socket
[  642.361547][   T37] vhci_hcd: disconnect device
[  642.429903][ T9921] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:00:00:85
[  642.491424][ T9921] loop5: detected capacity change from 0 to 512
[  642.519937][ T9921] EXT4-fs (loop5): 1 orphan inode deleted
[  642.527797][ T9921] ext4 filesystem being mounted at /390/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  642.538644][  T794] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  642.596154][ T9934] syz.7.13721: attempt to access beyond end of device
[  642.596154][ T9934] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  642.597190][ T9935] 9pnet_fd: Insufficient options for proto=fd
[  642.638190][ T9939] netlink: 'syz.5.13723': attribute type 3 has an invalid length.
[  642.686273][ T9944] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13722'.
[  642.725811][ T9943] loop5: detected capacity change from 0 to 1024
[  642.865503][ T9948] netlink: 'syz.5.13726': attribute type 3 has an invalid length.
[  643.014993][ T9950] wireguard0: entered promiscuous mode
[  643.020513][ T9950] wireguard0: entered allmulticast mode
[  643.172604][ T9912] syz_tun: left allmulticast mode
[  643.233372][ T9968] wireguard0: entered promiscuous mode
[  643.238901][ T9968] wireguard0: entered allmulticast mode
[  643.267138][ T9970] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:00:00:85
[  643.408688][ T9970] loop0: detected capacity change from 0 to 512
[  643.422843][ T9977] loop8: detected capacity change from 0 to 512
[  643.488752][ T9977] EXT4-fs (loop8): 1 orphan inode deleted
[  643.488974][ T9985] loop5: detected capacity change from 0 to 1024
[  643.503153][   T37] EXT4-fs error (device loop8): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  643.524077][ T9977] ext4 filesystem being mounted at /200/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  643.540112][ T9985] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13738: bg 0: block 88: padding at end of block bitmap is not set
[  643.541058][ T9970] EXT4-fs (loop0): 1 orphan inode deleted
[  643.562503][  T794] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  643.579353][ T9970] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  643.609607][ T9993] loop8: detected capacity change from 0 to 1024
[  643.654931][ T9993] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  643.664881][ T9993] SELinux: failed to load policy
[  643.670891][ T9999] loop0: detected capacity change from 0 to 1024
[  643.671609][ T9993] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.13740: bg 0: block 88: padding at end of block bitmap is not set
[  643.717080][T10003] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13743'.
[  643.729242][T10003] netlink: 3 bytes leftover after parsing attributes in process `syz.5.13743'.
[  643.741473][T10003] batadv1: entered allmulticast mode
[  643.756876][ T9999] SELinux: failed to load policy
[  643.764651][ T9999] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.13742: bg 0: block 88: padding at end of block bitmap is not set
[  643.809837][T10007] loop8: detected capacity change from 0 to 1024
[  643.839004][T10007] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.13745: bg 0: block 88: padding at end of block bitmap is not set
[  643.839586][T10013] syz_tun: entered allmulticast mode
[  643.868021][T10015] FAULT_INJECTION: forcing a failure.
[  643.868021][T10015] name failslab, interval 1, probability 0, space 0, times 0
[  643.880854][T10015] CPU: 1 UID: 0 PID: 10015 Comm: syz.5.13748 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  643.880885][T10015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  643.880899][T10015] Call Trace:
[  643.880906][T10015]  <TASK>
[  643.880914][T10015]  dump_stack_lvl+0xf6/0x150
[  643.880958][T10015]  dump_stack+0x15/0x1a
[  643.880978][T10015]  should_fail_ex+0x261/0x270
[  643.881060][T10015]  should_failslab+0x8f/0xb0
[  643.881137][T10015]  __kmalloc_noprof+0xad/0x410
[  643.881187][T10015]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  643.881226][T10015]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  643.881314][T10015]  ? ns_capable+0x7d/0xb0
[  643.881369][T10015]  genl_rcv_msg+0x486/0x6f0
[  643.881402][T10015]  ? __pfx_ip_vs_genl_set_daemon+0x10/0x10
[  643.881438][T10015]  ? __dev_queue_xmit+0xb76/0x20b0
[  643.881493][T10015]  ? should_fail_ex+0xd7/0x270
[  643.881602][T10015]  ? ref_tracker_free+0x3b8/0x420
[  643.881634][T10015]  netlink_rcv_skb+0x12f/0x230
[  643.881675][T10015]  ? __pfx_genl_rcv_msg+0x10/0x10
[  643.881783][T10015]  genl_rcv+0x28/0x40
[  643.881814][T10015]  netlink_unicast+0x605/0x6c0
[  643.881874][T10015]  netlink_sendmsg+0x609/0x720
[  643.881904][T10015]  ? __pfx_netlink_sendmsg+0x10/0x10
[  643.881925][T10015]  __sock_sendmsg+0x140/0x180
[  643.881956][T10015]  ____sys_sendmsg+0x350/0x4e0
[  643.881987][T10015]  __sys_sendmsg+0x1a0/0x240
[  643.882074][T10015]  __x64_sys_sendmsg+0x46/0x50
[  643.882099][T10015]  x64_sys_call+0x26f3/0x2e10
[  643.882139][T10015]  do_syscall_64+0xc9/0x1a0
[  643.882190][T10015]  ? clear_bhb_loop+0x25/0x80
[  643.882212][T10015]  ? clear_bhb_loop+0x25/0x80
[  643.882235][T10015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  643.882260][T10015] RIP: 0033:0x7fe91bcfe169
[  643.882278][T10015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  643.882369][T10015] RSP: 002b:00007fe91a367038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  643.882390][T10015] RAX: ffffffffffffffda RBX: 00007fe91bf25fa0 RCX: 00007fe91bcfe169
[  643.882402][T10015] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000004
[  643.882416][T10015] RBP: 00007fe91a367090 R08: 0000000000000000 R09: 0000000000000000
[  643.882431][T10015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  643.882468][T10015] R13: 0000000000000000 R14: 00007fe91bf25fa0 R15: 00007ffe298483e8
[  643.882491][T10015]  </TASK>
[  644.147794][   T29] kauditd_printk_skb: 138 callbacks suppressed
[  644.147813][   T29] audit: type=1107 audit(1744944090.176:33118): pid=10019 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  644.173499][T10020] netlink: 68 bytes leftover after parsing attributes in process `syz.6.13751'.
[  644.211895][T10018] loop5: detected capacity change from 0 to 512
[  644.223768][T10030] syz.6.13753: attempt to access beyond end of device
[  644.223768][T10030] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  644.238632][T10018] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.13750: corrupted in-inode xattr: invalid ea_ino
[  644.252637][T10018] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.13750: couldn't read orphan inode 15 (err -117)
[  644.272457][T10018] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13750'.
[  644.314668][T10035] loop5: detected capacity change from 0 to 512
[  644.321251][T10035] EXT4-fs: Ignoring removed nomblk_io_submit option
[  644.329081][T10035] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  644.347154][T10035] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  644.379926][T10035] EXT4-fs (loop5): 1 truncate cleaned up
[  644.380346][T10033] loop6: detected capacity change from 0 to 512
[  644.458487][T10033] EXT4-fs (loop6): 1 orphan inode deleted
[  644.473168][   T37] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  644.483093][   T37] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  644.494749][T10045] loop7: detected capacity change from 0 to 2048
[  644.499562][T10033] ext4 filesystem being mounted at /491/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  644.532519][T10045]  loop7: p1 < > p4
[  644.537044][T10045] loop7: p4 size 8388608 extends beyond EOD, truncated
[  644.645278][T10051] loop7: detected capacity change from 0 to 1024
[  644.645700][T10048] loop6: detected capacity change from 0 to 512
[  644.670731][T10012] syz_tun: left allmulticast mode
[  644.743234][T10048] EXT4-fs (loop6): 1 orphan inode deleted
[  644.764551][  T794] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  644.774496][  T794] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  644.804896][T10048] ext4 filesystem being mounted at /492/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  644.811190][T10058] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  644.852743][T10057] loop0: detected capacity change from 0 to 1024
[  644.876779][   T29] audit: type=1107 audit(1744944090.906:33119): pid=10060 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  644.896393][T10061] netlink: 68 bytes leftover after parsing attributes in process `syz.6.13762'.
[  644.925427][T10065] netlink: 'syz.6.13764': attribute type 3 has an invalid length.
[  644.967003][T10071] loop6: detected capacity change from 0 to 1024
[  645.017974][T10071] SELinux: failed to load policy
[  645.024695][T10071] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.13766: bg 0: block 88: padding at end of block bitmap is not set
[  645.095350][T10081] netlink: 36 bytes leftover after parsing attributes in process `syz.8.13769'.
[  645.108723][T10081] netlink: 3 bytes leftover after parsing attributes in process `syz.8.13769'.
[  645.122023][T10057] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  645.147816][T10081] batadv1: entered allmulticast mode
[  645.241063][T10086] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:00:00:85
[  645.408201][T10092] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:00:00:85
[  645.425848][T10090] loop6: detected capacity change from 0 to 1024
[  645.488858][T10086] loop5: detected capacity change from 0 to 512
[  645.583355][T10086] EXT4-fs (loop5): 1 orphan inode deleted
[  645.615449][   T51] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  645.625293][   T51] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  645.639281][T10086] ext4 filesystem being mounted at /408/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  645.660955][T10102] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  645.676563][T10092] loop8: detected capacity change from 0 to 512
[  645.793344][T10114] loop5: detected capacity change from 0 to 512
[  645.799994][T10114] EXT4-fs: Ignoring removed nomblk_io_submit option
[  645.807369][T10114] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  645.816194][T10092] EXT4-fs (loop8): 1 orphan inode deleted
[  645.821211][T10114] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  645.840671][T10114] EXT4-fs (loop5): 1 truncate cleaned up
[  645.846409][   T51] Quota error (device loop8): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  645.856214][   T51] EXT4-fs error (device loop8): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  645.877685][T10092] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  645.924688][T10110] loop6: detected capacity change from 0 to 1024
[  646.005559][T10121] loop7: detected capacity change from 0 to 1024
[  646.129855][T10131] loop8: detected capacity change from 0 to 512
[  646.146537][   T29] audit: type=1326 audit(1744944092.176:33120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10137 comm="syz.6.13786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  646.170743][   T29] audit: type=1326 audit(1744944092.176:33121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10137 comm="syz.6.13786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  646.173303][T10131] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.13785: corrupted in-inode xattr: invalid ea_ino
[  646.194596][   T29] audit: type=1326 audit(1744944092.176:33122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10137 comm="syz.6.13786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  646.211575][T10131] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.13785: couldn't read orphan inode 15 (err -117)
[  646.245287][   T29] audit: type=1326 audit(1744944092.236:33123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10137 comm="syz.6.13786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  646.285682][T10131] netlink: 36 bytes leftover after parsing attributes in process `syz.8.13785'.
[  646.310946][T10140] netlink: 'syz.0.13788': attribute type 3 has an invalid length.
[  646.456283][T10145] loop8: detected capacity change from 0 to 1024
[  646.624300][T10158] loop6: detected capacity change from 0 to 512
[  646.639857][T10168] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  646.677237][T10170] veth1_macvtap: left promiscuous mode
[  646.791736][T10165] loop7: detected capacity change from 0 to 512
[  646.821681][T10170] FAULT_INJECTION: forcing a failure.
[  646.821681][T10170] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  646.836572][T10170] CPU: 1 UID: 0 PID: 10170 Comm: syz.0.13799 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  646.836649][T10170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  646.836665][T10170] Call Trace:
[  646.836672][T10170]  <TASK>
[  646.836681][T10170]  dump_stack_lvl+0xf6/0x150
[  646.836711][T10170]  dump_stack+0x15/0x1a
[  646.836750][T10170]  should_fail_ex+0x261/0x270
[  646.836781][T10170]  should_fail+0xb/0x10
[  646.836807][T10170]  should_fail_usercopy+0x1a/0x20
[  646.836846][T10170]  _copy_from_user+0x1c/0xa0
[  646.836960][T10170]  kvmemdup_bpfptr_noprof+0x82/0x110
[  646.837005][T10170]  map_delete_elem+0x131/0x300
[  646.837079][T10170]  __sys_bpf+0x496/0x800
[  646.837121][T10170]  __x64_sys_bpf+0x43/0x50
[  646.837226][T10170]  x64_sys_call+0x23da/0x2e10
[  646.837285][T10170]  do_syscall_64+0xc9/0x1a0
[  646.837315][T10170]  ? clear_bhb_loop+0x25/0x80
[  646.837340][T10170]  ? clear_bhb_loop+0x25/0x80
[  646.837364][T10170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  646.837390][T10170] RIP: 0033:0x7f09fc2ee169
[  646.837405][T10170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  646.837422][T10170] RSP: 002b:00007f09fa957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  646.837441][T10170] RAX: ffffffffffffffda RBX: 00007f09fc515fa0 RCX: 00007f09fc2ee169
[  646.837481][T10170] RDX: 0000000000000020 RSI: 00002000000007c0 RDI: 0000000000000003
[  646.837495][T10170] RBP: 00007f09fa957090 R08: 0000000000000000 R09: 0000000000000000
[  646.837576][T10170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  646.837590][T10170] R13: 0000000000000000 R14: 00007f09fc515fa0 R15: 00007fff7c8a5978
[  646.837613][T10170]  </TASK>
[  647.036817][T10158] EXT4-fs (loop6): 1 orphan inode deleted
[  647.046184][   T37] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  647.086726][T10158] ext4 filesystem being mounted at /503/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  647.137892][T10189] loop0: detected capacity change from 0 to 1024
[  647.180810][T10165] EXT4-fs (loop7): 1 orphan inode deleted
[  647.199749][  T794] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  647.220062][T10180] loop5: detected capacity change from 0 to 512
[  647.261290][T10189] SELinux: failed to load policy
[  647.268480][T10189] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.13804: bg 0: block 88: padding at end of block bitmap is not set
[  647.287956][T10165] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  647.346831][T10206] loop8: detected capacity change from 0 to 512
[  647.355282][T10206] EXT4-fs: Ignoring removed nomblk_io_submit option
[  647.372208][T10206] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  647.390393][T10180] EXT4-fs (loop5): 1 orphan inode deleted
[  647.400632][T10206] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  647.416910][ T1924] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  647.430158][T10206] EXT4-fs (loop8): 1 truncate cleaned up
[  647.438645][T10180] ext4 filesystem being mounted at /413/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  647.518338][T10216] FAULT_INJECTION: forcing a failure.
[  647.518338][T10216] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  647.531470][T10216] CPU: 1 UID: 0 PID: 10216 Comm: syz.0.13812 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  647.531523][T10216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  647.531578][T10216] Call Trace:
[  647.531586][T10216]  <TASK>
[  647.531595][T10216]  dump_stack_lvl+0xf6/0x150
[  647.531618][T10216]  dump_stack+0x15/0x1a
[  647.531634][T10216]  should_fail_ex+0x261/0x270
[  647.531659][T10216]  should_fail+0xb/0x10
[  647.531681][T10216]  should_fail_usercopy+0x1a/0x20
[  647.531759][T10216]  _copy_to_user+0x20/0xa0
[  647.531802][T10216]  simple_read_from_buffer+0xb2/0x130
[  647.531859][T10216]  proc_fail_nth_read+0x103/0x140
[  647.531895][T10216]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  647.531963][T10216]  vfs_read+0x1b2/0x710
[  647.531983][T10216]  ? __rcu_read_unlock+0x4e/0x70
[  647.532008][T10216]  ? __fget_files+0x186/0x1c0
[  647.532039][T10216]  ksys_read+0xeb/0x1b0
[  647.532153][T10216]  __x64_sys_read+0x42/0x50
[  647.532171][T10216]  x64_sys_call+0x2a3b/0x2e10
[  647.532194][T10216]  do_syscall_64+0xc9/0x1a0
[  647.532224][T10216]  ? clear_bhb_loop+0x25/0x80
[  647.532295][T10216]  ? clear_bhb_loop+0x25/0x80
[  647.532322][T10216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  647.532346][T10216] RIP: 0033:0x7f09fc2ecb7c
[  647.532360][T10216] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  647.532378][T10216] RSP: 002b:00007f09fa936030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  647.532451][T10216] RAX: ffffffffffffffda RBX: 00007f09fc516080 RCX: 00007f09fc2ecb7c
[  647.532466][T10216] RDX: 000000000000000f RSI: 00007f09fa9360a0 RDI: 0000000000000005
[  647.532481][T10216] RBP: 00007f09fa936090 R08: 0000000000000000 R09: 0000000000000000
[  647.532553][T10216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  647.532567][T10216] R13: 0000000000000000 R14: 00007f09fc516080 R15: 00007fff7c8a5978
[  647.532635][T10216]  </TASK>
[  647.747709][T10226] loop5: detected capacity change from 0 to 4096
[  647.758328][T10226] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #15: comm syz.5.13814: corrupted inode contents
[  647.772854][T10226] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #15: comm syz.5.13814: mark_inode_dirty error
[  647.786141][T10226] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #15: comm syz.5.13814: corrupted inode contents
[  647.799525][T10226] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #15: comm syz.5.13814: mark_inode_dirty error
[  647.813192][T10226] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #15: comm syz.5.13814: corrupted inode contents
[  647.825998][T10226] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #15: comm syz.5.13814: mark_inode_dirty error
[  647.838349][T10226] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #15: comm syz.5.13814: corrupted inode contents
[  647.840992][T10231] loop0: detected capacity change from 0 to 2048
[  647.850443][T10226] EXT4-fs error (device loop5): ext4_truncate:4255: inode #15: comm syz.5.13814: mark_inode_dirty error
[  647.868197][T10226] EXT4-fs error (device loop5) in ext4_setattr:5628: Corrupt filesystem
[  647.882527][T10231]  loop0: p1 < > p4
[  647.886864][T10231] loop0: p4 size 8388608 extends beyond EOD, truncated
[  648.186236][T10237] netlink: 36 bytes leftover after parsing attributes in process `syz.8.13819'.
[  648.197338][T10237] netlink: 3 bytes leftover after parsing attributes in process `syz.8.13819'.
[  648.208996][T10237] batadv1: entered allmulticast mode
[  648.257313][T10241] netlink: 'syz.6.13821': attribute type 3 has an invalid length.
[  648.571796][T10252] loop7: detected capacity change from 0 to 1024
[  648.623461][T10258] loop5: detected capacity change from 0 to 1024
[  648.640166][T10259] bond1: entered promiscuous mode
[  648.645256][T10259] bond1: entered allmulticast mode
[  648.650566][T10259] 8021q: adding VLAN 0 to HW filter on device bond1
[  648.661474][T10259] bond1 (unregistering): Released all slaves
[  648.735794][T10264] FAULT_INJECTION: forcing a failure.
[  648.735794][T10264] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  648.749125][T10264] CPU: 0 UID: 0 PID: 10264 Comm: syz.8.13828 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  648.749191][T10264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  648.749204][T10264] Call Trace:
[  648.749210][T10264]  <TASK>
[  648.749217][T10264]  dump_stack_lvl+0xf6/0x150
[  648.749242][T10264]  dump_stack+0x15/0x1a
[  648.749259][T10264]  should_fail_ex+0x261/0x270
[  648.749283][T10264]  should_fail+0xb/0x10
[  648.749332][T10264]  should_fail_usercopy+0x1a/0x20
[  648.749396][T10264]  _copy_to_user+0x20/0xa0
[  648.749426][T10264]  simple_read_from_buffer+0xb2/0x130
[  648.749465][T10264]  proc_fail_nth_read+0x103/0x140
[  648.749557][T10264]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  648.749599][T10264]  vfs_read+0x1b2/0x710
[  648.749620][T10264]  ? __rcu_read_unlock+0x4e/0x70
[  648.749705][T10264]  ? __fget_files+0x186/0x1c0
[  648.749730][T10264]  ksys_read+0xeb/0x1b0
[  648.749755][T10264]  __x64_sys_read+0x42/0x50
[  648.749774][T10264]  x64_sys_call+0x2a3b/0x2e10
[  648.749796][T10264]  do_syscall_64+0xc9/0x1a0
[  648.749934][T10264]  ? clear_bhb_loop+0x25/0x80
[  648.749956][T10264]  ? clear_bhb_loop+0x25/0x80
[  648.750039][T10264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  648.750062][T10264] RIP: 0033:0x7f42e60ecb7c
[  648.750077][T10264] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  648.750094][T10264] RSP: 002b:00007f42e4715030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  648.750114][T10264] RAX: ffffffffffffffda RBX: 00007f42e6316160 RCX: 00007f42e60ecb7c
[  648.750148][T10264] RDX: 000000000000000f RSI: 00007f42e47150a0 RDI: 0000000000000005
[  648.750164][T10264] RBP: 00007f42e4715090 R08: 0000000000000000 R09: 0000000000000000
[  648.750179][T10264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  648.750194][T10264] R13: 0000000000000001 R14: 00007f42e6316160 R15: 00007fff7098d848
[  648.750286][T10264]  </TASK>
[  648.912988][T10258] EXT4-fs: Ignoring removed nobh option
[  648.951587][T10258] EXT4-fs: Ignoring removed bh option
[  648.981323][T10271] syz.0.13830: attempt to access beyond end of device
[  648.981323][T10271] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  649.013512][T10275] loop0: detected capacity change from 0 to 1024
[  649.058948][T10283] netlink: 'syz.8.13833': attribute type 3 has an invalid length.
[  649.126367][T10286] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  649.191105][T10275] SELinux: failed to load policy
[  649.193240][   T29] kauditd_printk_skb: 57 callbacks suppressed
[  649.193259][   T29] audit: type=1326 audit(1744944095.216:33178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.226002][   T29] audit: type=1326 audit(1744944095.216:33179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.233230][T10275] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.13831: bg 0: block 88: padding at end of block bitmap is not set
[  649.284766][T10285] loop8: detected capacity change from 0 to 1024
[  649.309457][   T29] audit: type=1326 audit(1744944095.336:33180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.333362][   T29] audit: type=1326 audit(1744944095.336:33181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.357132][   T29] audit: type=1326 audit(1744944095.336:33182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.380874][   T29] audit: type=1326 audit(1744944095.346:33183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.404690][   T29] audit: type=1326 audit(1744944095.346:33184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.428421][   T29] audit: type=1326 audit(1744944095.346:33185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.452216][   T29] audit: type=1326 audit(1744944095.346:33186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.477671][   T29] audit: type=1326 audit(1744944095.416:33187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10254 comm="syz.5.13826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91bcfe169 code=0x7ffc0000
[  649.613630][T10295] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  649.617008][T10298] loop0: detected capacity change from 0 to 1024
[  649.668491][T10304] loop5: detected capacity change from 0 to 2048
[  649.722592][T10304]  loop5: p1 < > p4
[  649.726977][T10304] loop5: p4 size 8388608 extends beyond EOD, truncated
[  649.769172][T10317] loop5: detected capacity change from 0 to 1024
[  649.788523][T10319] netlink: 'syz.8.13844': attribute type 12 has an invalid length.
[  649.789557][T10315] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  649.857958][T10317] SELinux: failed to load policy
[  649.864482][T10317] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13843: bg 0: block 88: padding at end of block bitmap is not set
[  650.014573][T10329] loop5: detected capacity change from 0 to 2048
[  650.052513][T10329]  loop5: p1 < > p4
[  650.057133][T10329] loop5: p4 size 8388608 extends beyond EOD, truncated
[  650.097504][T10333] loop5: detected capacity change from 0 to 2048
[  650.120437][T10319] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13844'.
[  650.129781][T10319] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  650.152654][T10333]  loop5: p1 < > p4
[  650.157035][T10333] loop5: p4 size 8388608 extends beyond EOD, truncated
[  650.364300][T10349] loop6: detected capacity change from 0 to 4096
[  650.386686][T10345] loop8: detected capacity change from 0 to 1024
[  650.422721][T10355] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13857'.
[  650.449762][T10355] netlink: 3 bytes leftover after parsing attributes in process `syz.6.13857'.
[  650.463698][T10355] batadv2: entered allmulticast mode
[  650.497842][T10363] loop7: detected capacity change from 0 to 512
[  650.516024][T10363] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  650.524329][T10363] EXT4-fs (loop7): orphan cleanup on readonly fs
[  650.530945][T10363] EXT4-fs warning (device loop7): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  650.546815][T10363] EXT4-fs (loop7): Cannot turn on quotas: error -22
[  650.554428][T10363] EXT4-fs error (device loop7): ext4_orphan_get:1390: inode #16: comm syz.7.13859: iget: immutable or append flags not allowed on symlinks
[  650.569196][T10363] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.13859: couldn't read orphan inode 16 (err -117)
[  650.609377][T10367] syz_tun: entered allmulticast mode
[  650.620756][T10366] syz_tun: left allmulticast mode
[  650.646311][T10345] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  650.703990][T10371] loop7: detected capacity change from 0 to 2048
[  650.732455][T10375] netlink: 68 bytes leftover after parsing attributes in process `syz.8.13864'.
[  650.746943][T10371]  loop7: p1 < > p4
[  650.751279][T10371] loop7: p4 size 8388608 extends beyond EOD, truncated
[  650.817420][T10383] loop7: detected capacity change from 0 to 4096
[  650.866233][T10390] SELinux:  Context system_u:object_r:fixed_disk_device_t:s0 is not valid (left unmapped).
[  650.914462][T10392] syz_tun: entered allmulticast mode
[  650.930327][T10391] syz_tun: left allmulticast mode
[  651.402620][T10409] wireguard0: entered promiscuous mode
[  651.408136][T10409] wireguard0: entered allmulticast mode
[  651.446278][T10407] loop7: detected capacity change from 0 to 1024
[  651.587004][T10420] loop5: detected capacity change from 0 to 2048
[  651.627726][T10407] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  651.662680][T10420]  loop5: p1 < > p4
[  651.668762][T10420] loop5: p4 size 8388608 extends beyond EOD, truncated
[  651.708892][T10426] SELinux:  Context system_u:object_r: is not valid (left unmapped).
[  651.822968][T10432] netlink: 100 bytes leftover after parsing attributes in process `syz.5.13887'.
[  651.838489][T10435] netlink: 'syz.7.13885': attribute type 3 has an invalid length.
[  652.138307][T10444] loop6: detected capacity change from 0 to 512
[  652.190614][T10452] loop7: detected capacity change from 0 to 2048
[  652.200054][T10450] loop8: detected capacity change from 0 to 1024
[  652.241346][T10444] EXT4-fs (loop6): 1 orphan inode deleted
[  652.257189][T10452]  loop7: p1 < > p4
[  652.266025][   T51] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  652.271724][T10452] loop7: p4 size 8388608 extends beyond EOD, truncated
[  652.316814][T10444] ext4 filesystem being mounted at /525/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  652.440045][T10461] FAULT_INJECTION: forcing a failure.
[  652.440045][T10461] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  652.453224][T10461] CPU: 1 UID: 0 PID: 10461 Comm: syz.8.13897 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  652.453259][T10461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  652.453274][T10461] Call Trace:
[  652.453336][T10461]  <TASK>
[  652.453345][T10461]  dump_stack_lvl+0xf6/0x150
[  652.453375][T10461]  dump_stack+0x15/0x1a
[  652.453396][T10461]  should_fail_ex+0x261/0x270
[  652.453426][T10461]  should_fail+0xb/0x10
[  652.453451][T10461]  should_fail_usercopy+0x1a/0x20
[  652.453551][T10461]  _copy_from_user+0x1c/0xa0
[  652.453588][T10461]  copy_from_bpfptr+0x60/0xa0
[  652.453619][T10461]  bpf_prog_load+0x773/0x10e0
[  652.453731][T10461]  __sys_bpf+0x533/0x800
[  652.453767][T10461]  __x64_sys_bpf+0x43/0x50
[  652.453872][T10461]  x64_sys_call+0x23da/0x2e10
[  652.453964][T10461]  do_syscall_64+0xc9/0x1a0
[  652.454017][T10461]  ? clear_bhb_loop+0x25/0x80
[  652.454044][T10461]  ? clear_bhb_loop+0x25/0x80
[  652.454071][T10461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  652.454097][T10461] RIP: 0033:0x7f42e60ee169
[  652.454190][T10461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  652.454214][T10461] RSP: 002b:00007f42e4757038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  652.454235][T10461] RAX: ffffffffffffffda RBX: 00007f42e6315fa0 RCX: 00007f42e60ee169
[  652.454251][T10461] RDX: 0000000000000094 RSI: 00002000000005c0 RDI: 0000000000000005
[  652.454266][T10461] RBP: 00007f42e4757090 R08: 0000000000000000 R09: 0000000000000000
[  652.454281][T10461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  652.454293][T10461] R13: 0000000000000000 R14: 00007f42e6315fa0 R15: 00007fff7098d848
[  652.454313][T10461]  </TASK>
[  652.657110][T10459] loop7: detected capacity change from 0 to 1024
[  652.670934][T10465] loop0: detected capacity change from 0 to 2048
[  652.690526][T10467] loop5: detected capacity change from 0 to 1024
[  652.712671][T10465]  loop0: p1 < > p4
[  652.717092][T10465] loop0: p4 size 8388608 extends beyond EOD, truncated
[  652.801370][T10467] SELinux: failed to load policy
[  652.807272][T10482] loop0: detected capacity change from 0 to 2048
[  652.824129][T10467] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13900: bg 0: block 88: padding at end of block bitmap is not set
[  652.849372][T10480] loop8: detected capacity change from 0 to 512
[  652.859788][T10482]  loop0: p1 < > p4
[  652.863269][T10480] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.13904: corrupted in-inode xattr: invalid ea_ino
[  652.877462][T10480] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.13904: couldn't read orphan inode 15 (err -117)
[  652.878911][T10482] loop0: p4 size 8388608 extends beyond EOD, truncated
[  652.898955][T10480] netlink: 36 bytes leftover after parsing attributes in process `syz.8.13904'.
[  652.931650][T10491] loop7: detected capacity change from 0 to 512
[  652.941652][T10489] loop5: detected capacity change from 0 to 1024
[  652.955093][T10491] EXT4-fs (loop7): 1 orphan inode deleted
[  652.972149][ T1924] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  652.987147][T10491] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  652.991390][T10498] loop0: detected capacity change from 0 to 2048
[  653.005593][T10489] SELinux: failed to load policy
[  653.011799][T10489] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13906: bg 0: block 88: padding at end of block bitmap is not set
[  653.043651][T10502] loop7: detected capacity change from 0 to 512
[  653.050263][T10502] EXT4-fs: Ignoring removed nomblk_io_submit option
[  653.056156][T10504] loop8: detected capacity change from 0 to 512
[  653.063370][T10502] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  653.065381][T10504] EXT4-fs: inline encryption not supported
[  653.075159][T10498]  loop0: p1 < > p4
[  653.080490][T10504] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  653.083691][T10498] loop0: p4 size 8388608 extends beyond EOD, truncated
[  653.098803][T10502] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  653.116235][T10502] EXT4-fs (loop7): 1 truncate cleaned up
[  653.122249][T10504] EXT4-fs (loop8): 1 truncate cleaned up
[  653.244493][T10518] FAULT_INJECTION: forcing a failure.
[  653.244493][T10518] name failslab, interval 1, probability 0, space 0, times 0
[  653.257164][T10518] CPU: 1 UID: 0 PID: 10518 Comm: syz.8.13915 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  653.257198][T10518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  653.257219][T10518] Call Trace:
[  653.257226][T10518]  <TASK>
[  653.257233][T10518]  dump_stack_lvl+0xf6/0x150
[  653.257259][T10518]  dump_stack+0x15/0x1a
[  653.257278][T10518]  should_fail_ex+0x261/0x270
[  653.257306][T10518]  should_failslab+0x8f/0xb0
[  653.257334][T10518]  kmem_cache_alloc_noprof+0x59/0x340
[  653.257364][T10518]  ? __mpol_dup+0x48/0x1b0
[  653.257394][T10518]  __mpol_dup+0x48/0x1b0
[  653.257428][T10518]  __se_sys_set_mempolicy_home_node+0x2b1/0x530
[  653.257472][T10518]  __x64_sys_set_mempolicy_home_node+0x55/0x70
[  653.257510][T10518]  x64_sys_call+0x108f/0x2e10
[  653.257537][T10518]  do_syscall_64+0xc9/0x1a0
[  653.257565][T10518]  ? clear_bhb_loop+0x25/0x80
[  653.257590][T10518]  ? clear_bhb_loop+0x25/0x80
[  653.257616][T10518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.257641][T10518] RIP: 0033:0x7f42e60ee169
[  653.257659][T10518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  653.257681][T10518] RSP: 002b:00007f42e4757038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c2
[  653.257703][T10518] RAX: ffffffffffffffda RBX: 00007f42e6315fa0 RCX: 00007f42e60ee169
[  653.257715][T10518] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000200000fff000
[  653.257727][T10518] RBP: 00007f42e4757090 R08: 0000000000000000 R09: 0000000000000000
[  653.257739][T10518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  653.257750][T10518] R13: 0000000000000000 R14: 00007f42e6315fa0 R15: 00007fff7098d848
[  653.257770][T10518]  </TASK>
[  653.619339][T10532] loop8: detected capacity change from 0 to 512
[  653.655145][T10532] EXT4-fs (loop8): 1 orphan inode deleted
[  653.671728][T10532] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  653.679804][T10526] loop6: detected capacity change from 0 to 1024
[  653.690697][   T31] EXT4-fs error (device loop8): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  653.813990][T10543] loop5: detected capacity change from 0 to 2048
[  653.853092][T10543]  loop5: p1 < > p4
[  653.858157][T10543] loop5: p4 size 8388608 extends beyond EOD, truncated
[  653.920148][T10554] loop6: detected capacity change from 0 to 512
[  653.927692][T10548] loop0: detected capacity change from 0 to 1024
[  653.945137][T10548] EXT4-fs: Ignoring removed nobh option
[  653.950749][T10548] EXT4-fs: Ignoring removed bh option
[  653.968218][T10554] EXT4-fs error (device loop6): ext4_iget_extra_inode:4693: inode #15: comm syz.6.13926: corrupted in-inode xattr: invalid ea_ino
[  653.985337][T10554] EXT4-fs error (device loop6): ext4_orphan_get:1395: comm syz.6.13926: couldn't read orphan inode 15 (err -117)
[  654.017389][T10568] openvswitch: netlink: Message has 6 unknown bytes.
[  654.029199][T10554] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13926'.
[  654.132913][T10584] loop7: detected capacity change from 0 to 2048
[  654.167934][T10586] loop6: detected capacity change from 0 to 1024
[  654.182823][T10584]  loop7: p1 < > p4
[  654.187273][T10584] loop7: p4 size 8388608 extends beyond EOD, truncated
[  654.230527][T10583] loop5: detected capacity change from 0 to 1024
[  654.242349][   T29] kauditd_printk_skb: 220 callbacks suppressed
[  654.242367][   T29] audit: type=1326 audit(1744944100.276:33405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.272402][   T29] audit: type=1326 audit(1744944100.276:33406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.296159][   T29] audit: type=1326 audit(1744944100.286:33407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.320058][   T29] audit: type=1326 audit(1744944100.286:33408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.343890][   T29] audit: type=1326 audit(1744944100.286:33409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.374351][   T29] audit: type=1326 audit(1744944100.346:33410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.398176][   T29] audit: type=1326 audit(1744944100.376:33411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.421976][   T29] audit: type=1326 audit(1744944100.386:33412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.445987][   T29] audit: type=1326 audit(1744944100.386:33413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.469695][   T29] audit: type=1326 audit(1744944100.396:33414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10547 comm="syz.0.13925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  654.502566][T10593] loop7: detected capacity change from 0 to 512
[  654.519330][T10593] EXT4-fs: Ignoring removed nomblk_io_submit option
[  654.531849][T10595] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  654.552737][T10593] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  654.583501][T10593] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  654.608633][T10593] EXT4-fs (loop7): 1 truncate cleaned up
[  654.741121][T10609] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13944'.
[  654.761353][T10605] loop0: detected capacity change from 0 to 1024
[  654.780964][T10609] netlink: 3 bytes leftover after parsing attributes in process `syz.6.13944'.
[  654.794852][T10609] batadv2: entered allmulticast mode
[  654.886950][T10607] FAULT_INJECTION: forcing a failure.
[  654.886950][T10607] name failslab, interval 1, probability 0, space 0, times 0
[  654.899654][T10607] CPU: 1 UID: 0 PID: 10607 Comm: syz.5.13943 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  654.899687][T10607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  654.899703][T10607] Call Trace:
[  654.899710][T10607]  <TASK>
[  654.899781][T10607]  dump_stack_lvl+0xf6/0x150
[  654.899809][T10607]  dump_stack+0x15/0x1a
[  654.899856][T10607]  should_fail_ex+0x261/0x270
[  654.899913][T10607]  should_failslab+0x8f/0xb0
[  654.899997][T10607]  kmem_cache_alloc_noprof+0x59/0x340
[  654.900028][T10607]  ? skb_clone+0x154/0x1f0
[  654.900055][T10607]  ? mod_objcg_state+0x3f6/0x530
[  654.900093][T10607]  skb_clone+0x154/0x1f0
[  654.900160][T10607]  dev_queue_xmit_nit+0x15d/0x6a0
[  654.900206][T10607]  dev_hard_start_xmit+0xe1/0x400
[  654.900255][T10607]  ? validate_xmit_skb+0x68f/0x880
[  654.900285][T10607]  __dev_queue_xmit+0x101a/0x20b0
[  654.900323][T10607]  ? should_fail_ex+0xd7/0x270
[  654.900362][T10607]  ? __dev_queue_xmit+0x18b/0x20b0
[  654.900388][T10607]  ? __skb_clone+0x2d0/0x2f0
[  654.900430][T10607]  __netlink_deliver_tap+0x3be/0x4f0
[  654.900457][T10607]  netlink_unicast+0x69e/0x6c0
[  654.900492][T10607]  netlink_sendmsg+0x609/0x720
[  654.900517][T10607]  ? __pfx_netlink_sendmsg+0x10/0x10
[  654.900584][T10607]  __sock_sendmsg+0x140/0x180
[  654.900643][T10607]  ____sys_sendmsg+0x350/0x4e0
[  654.900671][T10607]  __sys_sendmsg+0x1a0/0x240
[  654.900710][T10607]  __x64_sys_sendmsg+0x46/0x50
[  654.900807][T10607]  x64_sys_call+0x26f3/0x2e10
[  654.900829][T10607]  do_syscall_64+0xc9/0x1a0
[  654.900854][T10607]  ? clear_bhb_loop+0x25/0x80
[  654.900876][T10607]  ? clear_bhb_loop+0x25/0x80
[  654.900897][T10607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  654.900958][T10607] RIP: 0033:0x7fe91bcfe169
[  654.900973][T10607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  654.900990][T10607] RSP: 002b:00007fe91a367038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  654.901009][T10607] RAX: ffffffffffffffda RBX: 00007fe91bf25fa0 RCX: 00007fe91bcfe169
[  654.901021][T10607] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  654.901032][T10607] RBP: 00007fe91a367090 R08: 0000000000000000 R09: 0000000000000000
[  654.901044][T10607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  654.901110][T10607] R13: 0000000000000000 R14: 00007fe91bf25fa0 R15: 00007ffe298483e8
[  654.901129][T10607]  </TASK>
[  655.158125][T10618] loop6: detected capacity change from 0 to 512
[  655.160497][T10615] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  655.168881][T10618] /dev/loop6: Can't open blockdev
[  655.207228][T10614] batman_adv: batadv0: Interface deactivated: dummy0
[  655.216309][T10614] batman_adv: batadv0: Removing interface: dummy0
[  655.258310][T10624] FAULT_INJECTION: forcing a failure.
[  655.258310][T10624] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  655.271460][T10624] CPU: 0 UID: 0 PID: 10624 Comm: syz.5.13947 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  655.271494][T10624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  655.271510][T10624] Call Trace:
[  655.271518][T10624]  <TASK>
[  655.271526][T10624]  dump_stack_lvl+0xf6/0x150
[  655.271636][T10624]  dump_stack+0x15/0x1a
[  655.271658][T10624]  should_fail_ex+0x261/0x270
[  655.271688][T10624]  should_fail+0xb/0x10
[  655.271714][T10624]  should_fail_usercopy+0x1a/0x20
[  655.271814][T10624]  _copy_to_user+0x20/0xa0
[  655.271852][T10624]  simple_read_from_buffer+0xb2/0x130
[  655.271937][T10624]  proc_fail_nth_read+0x103/0x140
[  655.271980][T10624]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  655.272018][T10624]  vfs_read+0x1b2/0x710
[  655.272058][T10624]  ? bpf_trace_run2+0x12c/0x1d0
[  655.272082][T10624]  ? __sys_bpf+0x6ef/0x800
[  655.272145][T10624]  ksys_read+0xeb/0x1b0
[  655.272170][T10624]  __x64_sys_read+0x42/0x50
[  655.272193][T10624]  x64_sys_call+0x2a3b/0x2e10
[  655.272226][T10624]  do_syscall_64+0xc9/0x1a0
[  655.272253][T10624]  ? clear_bhb_loop+0x25/0x80
[  655.272354][T10624]  ? clear_bhb_loop+0x25/0x80
[  655.272381][T10624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  655.272408][T10624] RIP: 0033:0x7fe91bcfcb7c
[  655.272425][T10624] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  655.272442][T10624] RSP: 002b:00007fe91a367030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  655.272470][T10624] RAX: ffffffffffffffda RBX: 00007fe91bf25fa0 RCX: 00007fe91bcfcb7c
[  655.272482][T10624] RDX: 000000000000000f RSI: 00007fe91a3670a0 RDI: 0000000000000004
[  655.272574][T10624] RBP: 00007fe91a367090 R08: 0000000000000000 R09: 0000000000000000
[  655.272586][T10624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  655.272599][T10624] R13: 0000000000000000 R14: 00007fe91bf25fa0 R15: 00007ffe298483e8
[  655.272645][T10624]  </TASK>
[  655.551150][T10614] loop8: detected capacity change from 0 to 512
[  655.611412][T10620] netlink: 4 bytes leftover after parsing attributes in process `syz.6.13946'.
[  655.687606][T10633] loop5: detected capacity change from 0 to 2048
[  655.774725][T10633]  loop5: p1 < > p4
[  655.795604][T10633] loop5: p4 size 8388608 extends beyond EOD, truncated
[  655.817098][T10614] EXT4-fs (loop8): 1 orphan inode deleted
[  655.824733][T10641] loop6: detected capacity change from 0 to 1024
[  655.834224][   T51] EXT4-fs error (device loop8): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  655.856713][T10614] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  655.908671][T10637] loop0: detected capacity change from 0 to 1024
[  655.942147][T10645] wireguard0: entered promiscuous mode
[  655.947675][T10645] wireguard0: entered allmulticast mode
[  656.027051][T32215] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  656.038905][T32215] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  656.054972][T10649] loop8: detected capacity change from 0 to 1024
[  656.127148][T10649] netlink: 'syz.8.13956': attribute type 12 has an invalid length.
[  656.135171][T10649] netlink: 132 bytes leftover after parsing attributes in process `syz.8.13956'.
[  656.197493][T10653] loop5: detected capacity change from 0 to 2048
[  656.214528][T10655] loop6: detected capacity change from 0 to 8192
[  656.224274][T10658] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  656.242465][T10653]  loop5: p1 < > p4
[  656.246962][T10653] loop5: p4 size 8388608 extends beyond EOD, truncated
[  656.277425][T10660] loop8: detected capacity change from 0 to 1024
[  656.284190][T10655]  loop6: p1 p3 p4
[  656.287958][T10655] loop6: p1 size 8390912 extends beyond EOD, truncated
[  656.302757][T10655] loop6: p3 size 589824 extends beyond EOD, truncated
[  656.306793][T10660] EXT4-fs: Ignoring removed nobh option
[  656.315277][T10660] EXT4-fs: Ignoring removed bh option
[  656.377707][T10667] netlink: 'syz.5.13960': attribute type 3 has an invalid length.
[  656.594571][T10674] netlink: 'syz.0.13963': attribute type 3 has an invalid length.
[  656.684002][T10678] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13965'.
[  656.734788][T10681] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13967'.
[  656.736989][T10678] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  656.767383][T10681] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  656.773165][T10676] loop0: detected capacity change from 0 to 512
[  656.799300][T10672] loop7: detected capacity change from 0 to 512
[  656.910176][T10672] EXT4-fs (loop7): 1 orphan inode deleted
[  656.926363][T10676] EXT4-fs (loop0): 1 orphan inode deleted
[  656.945745][   T51] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  656.947888][T10672] ext4 filesystem being mounted at /238/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  656.969962][T10703] wireguard0: entered promiscuous mode
[  656.975541][T10703] wireguard0: entered allmulticast mode
[  657.001959][T10676] ext4 filesystem being mounted at /166/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  657.019270][   T51] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  657.055727][T10707] loop8: detected capacity change from 0 to 2048
[  657.112566][T10707]  loop8: p1 < > p4
[  657.139983][T10707] loop8: p4 size 8388608 extends beyond EOD, truncated
[  657.165485][T10716] loop7: detected capacity change from 0 to 2048
[  657.206590][T10716]  loop7: p1 < > p4
[  657.210207][T10726] loop5: detected capacity change from 0 to 1024
[  657.219105][T10716] loop7: p4 size 8388608 extends beyond EOD, truncated
[  657.316765][T10733] netlink: 'syz.8.13986': attribute type 3 has an invalid length.
[  657.327574][T10735] wireguard0: entered promiscuous mode
[  657.333167][T10735] wireguard0: entered allmulticast mode
[  657.335167][T10726] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13984: bg 0: block 88: padding at end of block bitmap is not set
[  657.362652][T10738] netlink: 'syz.7.13987': attribute type 12 has an invalid length.
[  657.385446][T10699] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10699 comm=syz.6.13973
[  657.443385][T10742] loop8: detected capacity change from 0 to 2048
[  657.451064][T10741] loop0: detected capacity change from 0 to 2048
[  657.478176][T10742]  loop8: p1 < > p4
[  657.483274][T10742] loop8: p4 size 8388608 extends beyond EOD, truncated
[  657.518065][T10750] netlink: 100 bytes leftover after parsing attributes in process `syz.5.13992'.
[  657.566675][T10754] loop8: detected capacity change from 0 to 1024
[  657.627941][T10743] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13987'.
[  657.653743][T10743] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  657.823414][T10774] loop8: detected capacity change from 0 to 1024
[  657.845477][T10778] netlink: 'syz.7.14000': attribute type 3 has an invalid length.
[  657.864337][T10774] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.13999: bg 0: block 88: padding at end of block bitmap is not set
[  657.892273][T10780] wireguard0: entered promiscuous mode
[  657.897794][T10780] wireguard0: entered allmulticast mode
[  657.933152][T10783] loop7: detected capacity change from 0 to 2048
[  657.950882][T10785] loop8: detected capacity change from 0 to 512
[  657.959438][T10785] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.14003: corrupted in-inode xattr: invalid ea_ino
[  657.963205][T10783]  loop7: p1 < > p4
[  657.976717][T10785] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.14003: couldn't read orphan inode 15 (err -117)
[  657.989304][T10783] loop7: p4 size 8388608 extends beyond EOD, truncated
[  657.999909][T10785] netlink: 36 bytes leftover after parsing attributes in process `syz.8.14003'.
[  658.070448][T10800] loop7: detected capacity change from 0 to 1024
[  658.134661][T10806] netlink: 'syz.7.14010': attribute type 12 has an invalid length.
[  658.153522][T10804] loop8: detected capacity change from 0 to 1024
[  658.321828][T10811] netlink: 'syz.0.14011': attribute type 3 has an invalid length.
[  658.363946][T10804] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  658.432992][T10806] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14010'.
[  658.442383][T10806] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  658.461535][T10816] wireguard1: entered promiscuous mode
[  658.467074][T10816] wireguard1: entered allmulticast mode
[  658.692903][T10839] netlink: 100 bytes leftover after parsing attributes in process `syz.0.14022'.
[  658.723536][T10833] loop5: detected capacity change from 0 to 1024
[  658.738994][T10841] loop8: detected capacity change from 0 to 2048
[  658.747335][T10833] EXT4-fs: Ignoring removed nobh option
[  658.752969][T10833] EXT4-fs: Ignoring removed bh option
[  658.802405][T10841]  loop8: p1 < > p4
[  658.812194][T10841] loop8: p4 size 8388608 extends beyond EOD, truncated
[  659.059897][T10853] loop8: detected capacity change from 0 to 1024
[  659.113859][T10853] EXT4-fs mount: 165 callbacks suppressed
[  659.113963][T10853] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  659.149549][T10827] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10827 comm=syz.6.14018
[  659.324377][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  659.354963][T10853] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  659.381169][T10864] netlink: 'syz.5.14028': attribute type 12 has an invalid length.
[  659.481080][T10850] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10850 comm=syz.0.14025
[  659.681295][T10879] loop6: detected capacity change from 0 to 2048
[  659.701289][ T6772] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  659.724418][T10879]  loop6: p1 < > p4
[  659.741511][   T29] kauditd_printk_skb: 275 callbacks suppressed
[  659.741527][   T29] audit: type=1326 audit(1744944105.766:33687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10882 comm="syz.0.14035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  659.794671][T10885] loop7: detected capacity change from 0 to 512
[  659.801727][T10879] loop6: p4 size 8388608 extends beyond EOD, truncated
[  659.807640][   T29] audit: type=1326 audit(1744944105.806:33688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10882 comm="syz.0.14035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  659.813337][T10885] EXT4-fs error (device loop7): ext4_iget_extra_inode:4693: inode #15: comm syz.7.14032: corrupted in-inode xattr: invalid ea_ino
[  659.832273][   T29] audit: type=1326 audit(1744944105.806:33689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10882 comm="syz.0.14035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  659.869415][   T29] audit: type=1326 audit(1744944105.806:33690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10882 comm="syz.0.14035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  659.893147][   T29] audit: type=1326 audit(1744944105.806:33691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10882 comm="syz.0.14035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  659.896528][T10885] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.14032: couldn't read orphan inode 15 (err -117)
[  659.916801][   T29] audit: type=1326 audit(1744944105.806:33692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10882 comm="syz.0.14035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  659.916837][   T29] audit: type=1326 audit(1744944105.806:33693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10882 comm="syz.0.14035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09fc2ee169 code=0x7ffc0000
[  659.931932][T10885] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  659.998320][T10889] netlink: 'syz.8.14036': attribute type 3 has an invalid length.
[  660.023757][T10892] loop0: detected capacity change from 0 to 512
[  660.051952][T10892] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.14037: corrupted in-inode xattr: invalid ea_ino
[  660.073997][T10898] netlink: 'syz.6.14038': attribute type 12 has an invalid length.
[  660.085366][T10892] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.14037: couldn't read orphan inode 15 (err -117)
[  660.140895][T10874] netlink: 36 bytes leftover after parsing attributes in process `syz.7.14032'.
[  660.156123][T10900] loop8: detected capacity change from 0 to 512
[  660.164412][T10892] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  660.206025][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  660.235706][T10900] EXT4-fs (loop8): 1 orphan inode deleted
[  660.243286][  T794] Quota error (device loop8): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  660.253116][  T794] EXT4-fs error (device loop8): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  660.267622][T10900] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  660.330821][ T7870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  660.401415][T10915] loop5: detected capacity change from 0 to 1024
[  660.409284][T10900] ext4 filesystem being mounted at /273/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  660.434346][ T6772] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  660.503199][T10915] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  660.617608][T10929] netlink: 'syz.8.14050': attribute type 3 has an invalid length.
[  660.643350][T10927] loop7: detected capacity change from 0 to 1024
[  660.659180][T10898] __nla_validate_parse: 1 callbacks suppressed
[  660.659199][T10898] netlink: 8 bytes leftover after parsing attributes in process `syz.6.14038'.
[  660.707698][T10927] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  660.720317][T10898] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  660.736300][T10931] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  660.752579][T10936] netlink: 'syz.8.14051': attribute type 12 has an invalid length.
[  660.903549][T10925] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10925 comm=syz.0.14048
[  660.935979][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.007139][T10927] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  661.044383][T10941] netlink: 100 bytes leftover after parsing attributes in process `syz.5.14052'.
[  661.240003][T10943] loop0: detected capacity change from 0 to 512
[  661.252509][T10947] loop6: detected capacity change from 0 to 1024
[  661.294103][T10947] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  661.336246][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.367810][T10943] EXT4-fs (loop0): 1 orphan inode deleted
[  661.380341][T10943] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  661.382398][  T794] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  661.403272][  T794] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  661.420411][T10943] ext4 filesystem being mounted at /184/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  661.469907][ T7870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.552880][T10977] netlink: 36 bytes leftover after parsing attributes in process `syz.0.14063'.
[  661.574657][T10977] netlink: 3 bytes leftover after parsing attributes in process `syz.0.14063'.
[  661.594498][T10977] batadv1: entered allmulticast mode
[  661.613219][T10983] batman_adv: batadv0: Interface deactivated: dummy0
[  661.617197][T10979] loop8: detected capacity change from 0 to 512
[  661.619968][T10983] batman_adv: batadv0: Removing interface: dummy0
[  661.630075][T10979] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.14068: corrupted in-inode xattr: invalid ea_ino
[  661.664291][T10947] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: 
[  661.664981][T10979] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.14068: couldn't read orphan inode 15 (err -117)
[  661.665652][T10979] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  661.674005][T10947] block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  661.734697][T10979] netlink: 36 bytes leftover after parsing attributes in process `syz.8.14068'.
[  661.757649][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.795910][ T6772] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.815895][T10971] loop5: detected capacity change from 0 to 512
[  661.842977][T10996] FAULT_INJECTION: forcing a failure.
[  661.842977][T10996] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  661.856150][T10996] CPU: 0 UID: 0 PID: 10996 Comm: syz.8.14070 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  661.856184][T10996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  661.856246][T10996] Call Trace:
[  661.856253][T10996]  <TASK>
[  661.856262][T10996]  dump_stack_lvl+0xf6/0x150
[  661.856293][T10996]  dump_stack+0x15/0x1a
[  661.856314][T10996]  should_fail_ex+0x261/0x270
[  661.856422][T10996]  should_fail+0xb/0x10
[  661.856448][T10996]  should_fail_usercopy+0x1a/0x20
[  661.856515][T10996]  _copy_from_user+0x1c/0xa0
[  661.856553][T10996]  copy_msghdr_from_user+0x54/0x2b0
[  661.856591][T10996]  ? __fget_files+0x186/0x1c0
[  661.856660][T10996]  __sys_sendmsg+0x141/0x240
[  661.856707][T10996]  __x64_sys_sendmsg+0x46/0x50
[  661.856736][T10996]  x64_sys_call+0x26f3/0x2e10
[  661.856764][T10996]  do_syscall_64+0xc9/0x1a0
[  661.856818][T10996]  ? clear_bhb_loop+0x25/0x80
[  661.856844][T10996]  ? clear_bhb_loop+0x25/0x80
[  661.856870][T10996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.856896][T10996] RIP: 0033:0x7f42e60ee169
[  661.856912][T10996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  661.856930][T10996] RSP: 002b:00007f42e4757038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  661.856964][T10996] RAX: ffffffffffffffda RBX: 00007f42e6315fa0 RCX: 00007f42e60ee169
[  661.856979][T10996] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000005
[  661.856995][T10996] RBP: 00007f42e4757090 R08: 0000000000000000 R09: 0000000000000000
[  661.857009][T10996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  661.857024][T10996] R13: 0000000000000000 R14: 00007f42e6315fa0 R15: 00007fff7098d848
[  661.857050][T10996]  </TASK>
[  662.089871][T10995] loop6: detected capacity change from 0 to 1024
[  662.145082][T10995] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  662.160049][T10971] EXT4-fs (loop5): 1 orphan inode deleted
[  662.176372][   T51] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  662.186438][   T51] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  662.201512][T10971] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  662.244217][T10971] ext4 filesystem being mounted at /466/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  662.351145][T11009] loop8: detected capacity change from 0 to 2048
[  662.359941][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  662.364642][T11007] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  662.449468][T11009]  loop8: p1 < > p4
[  662.454086][T11009] loop8: p4 size 8388608 extends beyond EOD, truncated
[  662.486644][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  662.521479][T11018] loop7: detected capacity change from 0 to 512
[  662.578631][T11018] EXT4-fs error (device loop7): ext4_iget_extra_inode:4693: inode #15: comm syz.7.14080: corrupted in-inode xattr: invalid ea_ino
[  662.603208][T11018] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.14080: couldn't read orphan inode 15 (err -117)
[  662.644129][T11018] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  662.673969][T11023] loop6: detected capacity change from 0 to 1024
[  662.695080][T11016] loop5: detected capacity change from 0 to 512
[  662.719755][T10994] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14072'.
[  662.731190][T11018] netlink: 36 bytes leftover after parsing attributes in process `syz.7.14080'.
[  662.779440][T11016] EXT4-fs (loop5): 1 orphan inode deleted
[  662.792744][   T31] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  662.808107][T11023] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  662.824313][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  662.861606][T11016] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  662.889489][T11016] ext4 filesystem being mounted at /468/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  662.959170][T11042] validate_nla: 3 callbacks suppressed
[  662.959185][T11042] netlink: 'syz.0.14085': attribute type 3 has an invalid length.
[  663.008044][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.112485][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.121583][T11054] loop5: detected capacity change from 0 to 512
[  663.138304][T11054] EXT4-fs (loop5): 1 orphan inode deleted
[  663.152781][T11054] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  663.154695][   T51] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  663.179176][T11048] loop0: detected capacity change from 0 to 1024
[  663.190413][T11059] loop6: detected capacity change from 0 to 512
[  663.190862][T11054] ext4 filesystem being mounted at /471/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  663.220139][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.223023][T11059] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.14092: bg 0: block 248: padding at end of block bitmap is not set
[  663.246275][T11048] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  663.262958][T11059] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.14092: Failed to acquire dquot type 1
[  663.275545][T11059] EXT4-fs (loop6): 1 truncate cleaned up
[  663.281793][T11059] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  663.295703][T11059] ext4 filesystem being mounted at /554/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  663.321795][T11067] netlink: 36 bytes leftover after parsing attributes in process `syz.5.14094'.
[  663.333063][T11067] netlink: 3 bytes leftover after parsing attributes in process `syz.5.14094'.
[  663.350332][T11067] batadv1: entered allmulticast mode
[  663.367060][T11068] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  663.384710][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.395264][   T31] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  663.434755][ T7870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.460172][T11076] netlink: 'syz.0.14097': attribute type 3 has an invalid length.
[  663.615392][T11085] loop5: detected capacity change from 0 to 1024
[  663.621445][T11083] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:00:00:85
[  663.687157][T11085] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  663.748934][T11083] loop6: detected capacity change from 0 to 512
[  663.834694][T11092] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  663.864573][T11083] EXT4-fs (loop6): 1 orphan inode deleted
[  663.880936][T11083] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  663.894527][   T31] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  663.910667][T11083] ext4 filesystem being mounted at /557/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  663.924444][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.948295][T11098] FAULT_INJECTION: forcing a failure.
[  663.948295][T11098] name failslab, interval 1, probability 0, space 0, times 0
[  663.961107][T11098] CPU: 0 UID: 0 PID: 11098 Comm: syz.7.14107 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  663.961136][T11098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  663.961206][T11098] Call Trace:
[  663.961213][T11098]  <TASK>
[  663.961222][T11098]  dump_stack_lvl+0xf6/0x150
[  663.961249][T11098]  dump_stack+0x15/0x1a
[  663.961265][T11098]  should_fail_ex+0x261/0x270
[  663.961290][T11098]  should_failslab+0x8f/0xb0
[  663.961313][T11098]  kmem_cache_alloc_noprof+0x59/0x340
[  663.961414][T11098]  ? security_inode_alloc+0x37/0x100
[  663.961445][T11098]  security_inode_alloc+0x37/0x100
[  663.961471][T11098]  inode_init_always_gfp+0x4a2/0x4f0
[  663.961494][T11098]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  663.961572][T11098]  alloc_inode+0x86/0x170
[  663.961657][T11098]  new_inode+0x1e/0xe0
[  663.961682][T11098]  shmem_get_inode+0x24e/0x730
[  663.961737][T11098]  shmem_mknod+0x44/0x180
[  663.961770][T11098]  vfs_mknod+0x2d4/0x310
[  663.961810][T11098]  do_mknodat+0x272/0x430
[  663.961922][T11098]  __x64_sys_mknod+0x51/0x60
[  663.961965][T11098]  x64_sys_call+0x1713/0x2e10
[  663.961987][T11098]  do_syscall_64+0xc9/0x1a0
[  663.962014][T11098]  ? clear_bhb_loop+0x25/0x80
[  663.962041][T11098]  ? clear_bhb_loop+0x25/0x80
[  663.962089][T11098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  663.962116][T11098] RIP: 0033:0x7f6b3725e169
[  663.962223][T11098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  663.962245][T11098] RSP: 002b:00007f6b358c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  663.962268][T11098] RAX: ffffffffffffffda RBX: 00007f6b37485fa0 RCX: 00007f6b3725e169
[  663.962295][T11098] RDX: 000000000000070e RSI: 0000000000001000 RDI: 0000200000000140
[  663.962307][T11098] RBP: 00007f6b358c7090 R08: 0000000000000000 R09: 0000000000000000
[  663.962319][T11098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  663.962331][T11098] R13: 0000000000000000 R14: 00007f6b37485fa0 R15: 00007fffac0df108
[  663.962352][T11098]  </TASK>
[  664.180458][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  664.229835][T11107] netlink: 36 bytes leftover after parsing attributes in process `syz.7.14110'.
[  664.246776][T11107] batadv2: entered allmulticast mode
[  664.265085][T11105] loop6: detected capacity change from 0 to 1024
[  664.303860][T11105] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  664.418141][T11119] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  664.440581][T11123] IPv6: sit1: Disabled Multicast RS
[  664.447202][T11123] sit1: entered allmulticast mode
[  664.448911][T11116] loop7: detected capacity change from 0 to 1024
[  664.491500][T11116] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  664.533833][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  664.671555][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  664.735024][T11133] loop6: detected capacity change from 0 to 1024
[  664.769646][T11143] FAULT_INJECTION: forcing a failure.
[  664.769646][T11143] name failslab, interval 1, probability 0, space 0, times 0
[  664.783903][T11143] CPU: 0 UID: 0 PID: 11143 Comm: syz.7.14124 Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  664.783937][T11143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  664.784025][T11143] Call Trace:
[  664.784033][T11143]  <TASK>
[  664.784041][T11143]  dump_stack_lvl+0xf6/0x150
[  664.784070][T11143]  dump_stack+0x15/0x1a
[  664.784091][T11143]  should_fail_ex+0x261/0x270
[  664.784122][T11143]  should_failslab+0x8f/0xb0
[  664.784214][T11143]  __kmalloc_noprof+0xad/0x410
[  664.784249][T11143]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  664.784319][T11143]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  664.784401][T11143]  ? ns_capable+0x7d/0xb0
[  664.784487][T11143]  genl_rcv_msg+0x486/0x6f0
[  664.784520][T11143]  ? __pfx_ip_vs_genl_set_daemon+0x10/0x10
[  664.784660][T11143]  ? __dev_queue_xmit+0xb76/0x20b0
[  664.784692][T11143]  ? ref_tracker_free+0x3b8/0x420
[  664.784719][T11143]  ? sysvec_apic_timer_interrupt+0x44/0x80
[  664.784749][T11143]  netlink_rcv_skb+0x12f/0x230
[  664.784776][T11143]  ? __pfx_genl_rcv_msg+0x10/0x10
[  664.784817][T11143]  genl_rcv+0x28/0x40
[  664.784847][T11143]  netlink_unicast+0x605/0x6c0
[  664.784955][T11143]  netlink_sendmsg+0x609/0x720
[  664.784985][T11143]  ? __pfx_netlink_sendmsg+0x10/0x10
[  664.785006][T11143]  __sock_sendmsg+0x140/0x180
[  664.785038][T11143]  ____sys_sendmsg+0x350/0x4e0
[  664.785090][T11143]  __sys_sendmsg+0x1a0/0x240
[  664.785186][T11143]  __x64_sys_sendmsg+0x46/0x50
[  664.785212][T11143]  x64_sys_call+0x26f3/0x2e10
[  664.785234][T11143]  do_syscall_64+0xc9/0x1a0
[  664.785260][T11143]  ? clear_bhb_loop+0x25/0x80
[  664.785286][T11143]  ? clear_bhb_loop+0x25/0x80
[  664.785326][T11143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  664.785360][T11143] RIP: 0033:0x7f6b3725e169
[  664.785377][T11143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  664.785400][T11143] RSP: 002b:00007f6b358c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  664.785420][T11143] RAX: ffffffffffffffda RBX: 00007f6b37485fa0 RCX: 00007f6b3725e169
[  664.785432][T11143] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000007
[  664.785459][T11143] RBP: 00007f6b358c7090 R08: 0000000000000000 R09: 0000000000000000
[  664.785533][T11143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  664.785545][T11143] R13: 0000000000000000 R14: 00007f6b37485fa0 R15: 00007fffac0df108
[  664.785564][T11143]  </TASK>
[  664.810326][T11133] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  664.960832][T11151] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:00:00:85
[  665.045205][T11153] loop7: detected capacity change from 0 to 512
[  665.136304][T11153] EXT4-fs (loop7): 1 orphan inode deleted
[  665.143028][T11153] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  665.156895][ T1924] __quota_error: 83 callbacks suppressed
[  665.156912][ T1924] Quota error (device loop7): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  665.162815][T11153] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  665.172510][ T1924] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  665.199556][T11159] loop5: detected capacity change from 0 to 2048
[  665.215963][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  665.250737][T11159]  loop5: p1 < > p4
[  665.255275][T11159] loop5: p4 size 8388608 extends beyond EOD, truncated
[  665.264026][T11163] wireguard0: entered promiscuous mode
[  665.269671][T11163] wireguard0: entered allmulticast mode
[  665.301512][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  665.404008][T11188] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  665.435242][T11192] loop8: detected capacity change from 0 to 2048
[  665.435332][   T29] audit: type=1326 audit(1744944111.466:33771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11186 comm="syz.7.14142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b3725e169 code=0x7ffc0000
[  665.475617][   T29] audit: type=1326 audit(1744944111.496:33772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11186 comm="syz.7.14142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f6b3725e169 code=0x7ffc0000
[  665.499361][   T29] audit: type=1326 audit(1744944111.496:33773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11186 comm="syz.7.14142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b3725e169 code=0x7ffc0000
[  665.506714][T11185] loop6: detected capacity change from 0 to 1024
[  665.523070][   T29] audit: type=1326 audit(1744944111.496:33774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11186 comm="syz.7.14142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f6b3725e169 code=0x7ffc0000
[  665.523133][   T29] audit: type=1326 audit(1744944111.496:33775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11186 comm="syz.7.14142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b3725e169 code=0x7ffc0000
[  665.523165][   T29] audit: type=1326 audit(1744944111.496:33776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11186 comm="syz.7.14142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f6b3725e169 code=0x7ffc0000
[  665.523260][   T29] audit: type=1326 audit(1744944111.496:33777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11186 comm="syz.7.14142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b3725e169 code=0x7ffc0000
[  665.561397][T11192]  loop8: p1 < > p4
[  665.636863][T11192] loop8: p4 size 8388608 extends beyond EOD, truncated
[  665.650393][T11185] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  665.793818][   T29] audit: type=1326 audit(1744944111.806:33778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11207 comm="syz.8.14148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42e60ee169 code=0x7ffc0000
[  665.817615][   T29] audit: type=1326 audit(1744944111.806:33779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11207 comm="syz.8.14148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f42e60ee169 code=0x7ffc0000
[  665.844906][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  665.975686][T11221] netlink: 'syz.8.14153': attribute type 3 has an invalid length.
[  666.052739][T11227] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:00:00:85
[  666.158016][T11227] loop6: detected capacity change from 0 to 512
[  666.224799][T11230] loop0: detected capacity change from 0 to 512
[  666.284255][T11230] EXT4-fs (loop0): 1 orphan inode deleted
[  666.325598][T11230] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  666.340106][T11228] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11228 comm=syz.8.14155
[  666.353075][   T31] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  666.364798][T11237] loop5: detected capacity change from 0 to 1024
[  666.373374][T11230] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  666.384712][T11227] EXT4-fs (loop6): 1 orphan inode deleted
[  666.400842][T11227] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  666.418944][  T794] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  666.436428][T11227] ext4 filesystem being mounted at /567/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  666.450039][T11237] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  666.450614][ T7870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  666.511754][T11244] loop8: detected capacity change from 0 to 2048
[  666.519031][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  666.552545][T11244]  loop8: p1 < > p4
[  666.564213][T11244] loop8: p4 size 8388608 extends beyond EOD, truncated
[  666.585765][T11253] loop6: detected capacity change from 0 to 512
[  666.631580][T11253] EXT4-fs (loop6): 1 orphan inode deleted
[  666.643468][T11260] loop8: detected capacity change from 0 to 512
[  666.650203][  T794] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  666.697392][T11253] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  666.726704][T11260] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  666.741468][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  666.750115][T11273] netlink: 'syz.0.14170': attribute type 3 has an invalid length.
[  666.758501][T11260] ext4 filesystem being mounted at /305/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  666.771701][T11253] ext4 filesystem being mounted at /568/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  666.782396][T11274] loop7: detected capacity change from 0 to 512
[  666.796413][T11274] EXT4-fs error (device loop7): ext4_iget_extra_inode:4693: inode #15: comm syz.7.14167: corrupted in-inode xattr: invalid ea_ino
[  666.811713][T11274] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.14167: couldn't read orphan inode 15 (err -117)
[  666.826224][ T3605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  666.838948][T11278] loop0: detected capacity change from 0 to 512
[  666.849415][T11274] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  666.871144][T11278] EXT4-fs (loop0): 1 orphan inode deleted
[  666.880146][T11264] __nla_validate_parse: 1 callbacks suppressed
[  666.880166][T11264] netlink: 36 bytes leftover after parsing attributes in process `syz.7.14167'.
[  666.882906][T11278] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  666.908543][ T1924] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  666.935324][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  666.951874][T11278] ext4 filesystem being mounted at /205/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  667.004577][T11295] loop7: detected capacity change from 0 to 512
[  667.023113][ T7870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  667.043119][T11295] EXT4-fs (loop7): 1 orphan inode deleted
[  667.049453][T11295] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  667.062373][   T37] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  667.080990][T11295] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  667.118366][T11301] batman_adv: batadv0: Interface deactivated: dummy0
[  667.132446][T11301] batman_adv: batadv0: Removing interface: dummy0
[  667.144784][ T6648] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  667.167824][T11309] netlink: 100 bytes leftover after parsing attributes in process `syz.0.14182'.
[  667.236516][T11312] loop6: detected capacity change from 0 to 512
[  667.245349][T11312] EXT4-fs error (device loop6): ext4_iget_extra_inode:4693: inode #15: comm syz.6.14186: corrupted in-inode xattr: invalid ea_ino
[  667.259193][T11312] EXT4-fs error (device loop6): ext4_orphan_get:1395: comm syz.6.14186: couldn't read orphan inode 15 (err -117)
[  667.287160][T11312] netlink: 36 bytes leftover after parsing attributes in process `syz.6.14186'.
[  667.485349][T11328] IPv6: sit1: Disabled Multicast RS
[  667.508287][T11328] sit1: entered allmulticast mode
[  667.521851][T11330] loop8: detected capacity change from 0 to 512
[  667.559719][T11330] EXT4-fs (loop8): 1 orphan inode deleted
[  667.567140][T11330] ext4 filesystem being mounted at /306/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  667.582112][ T1924] EXT4-fs error (device loop8): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  667.655524][T11341] netlink: 'syz.6.14196': attribute type 3 has an invalid length.
[  667.732227][T11346] loop8: detected capacity change from 0 to 512
[  667.748826][T11346] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.14198: corrupted in-inode xattr: invalid ea_ino
[  667.787229][T11346] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.14198: couldn't read orphan inode 15 (err -117)
[  667.809930][T11359] loop6: detected capacity change from 0 to 2048
[  667.824592][T11346] netlink: 36 bytes leftover after parsing attributes in process `syz.8.14198'.
[  667.854408][T11359]  loop6: p1 < > p4
[  667.858804][T11359] loop6: p4 size 8388608 extends beyond EOD, truncated
[  667.888729][T11363] loop0: detected capacity change from 0 to 1024
[  667.948748][T11314] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=11314 comm=syz.7.14185
[  667.961949][T11370] loop6: detected capacity change from 0 to 512
[  667.968640][T11370] EXT4-fs: Ignoring removed nomblk_io_submit option
[  667.975703][T11370] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  667.987385][T11370] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  668.005212][T11370] EXT4-fs (loop6): 1 truncate cleaned up
[  668.125831][T11383] netlink: 100 bytes leftover after parsing attributes in process `syz.7.14209'.
[  668.214911][T11392] IPv6: sit1: Disabled Multicast RS
[  668.233333][T11392] sit1: entered allmulticast mode
[  668.334615][T11363] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  668.443429][T11394] loop7: detected capacity change from 0 to 2048
[  668.475668][T11398] loop8: detected capacity change from 0 to 128
[  668.483242][T11394]  loop7: p1 < > p4
[  668.488551][T11398] ext4 filesystem being mounted at /313/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  668.501508][T11394] loop7: p4 size 8388608 extends beyond EOD, truncated
[  668.526866][T11401] netlink: 100 bytes leftover after parsing attributes in process `syz.0.14216'.
[  668.585797][T11403] netlink: 100 bytes leftover after parsing attributes in process `syz.7.14217'.
[  668.604559][T11409] netlink: 36 bytes leftover after parsing attributes in process `syz.5.14220'.
[  668.628097][T11409] netlink: 3 bytes leftover after parsing attributes in process `syz.5.14220'.
[  668.655803][T11409] batadv1: entered allmulticast mode
[  668.772924][T11416] wireguard0: entered promiscuous mode
[  668.778512][T11416] wireguard0: entered allmulticast mode
[  668.854815][T11420] netlink: 100 bytes leftover after parsing attributes in process `syz.6.14225'.
[  669.033359][T11418] loop5: detected capacity change from 0 to 512
[  669.128531][T11418] EXT4-fs (loop5): 1 orphan inode deleted
[  669.149382][   T37] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  669.205693][T11418] ext4 filesystem being mounted at /495/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  669.356170][T11444] netlink: 'syz.5.14236': attribute type 12 has an invalid length.
[  669.400526][T11445] loop0: detected capacity change from 0 to 512
[  669.407222][T11445] EXT4-fs: Ignoring removed nomblk_io_submit option
[  669.420819][T11445] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  669.483100][T11445] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  669.503795][T11445] EXT4-fs (loop0): 1 truncate cleaned up
[  669.526506][T11447] loop7: detected capacity change from 0 to 1024
[  669.657062][T11444] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  669.760073][T11447] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  669.898319][T11463] wireguard1: entered promiscuous mode
[  669.903931][T11463] wireguard1: entered allmulticast mode
[  669.925644][T11470] loop8: detected capacity change from 0 to 1024
[  669.959004][T11470] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.14244: bg 0: block 88: padding at end of block bitmap is not set
[  670.006657][T11462] loop7: detected capacity change from 0 to 1024
[  670.046298][T11474] batadv1: entered allmulticast mode
[  670.094018][T11479] loop6: detected capacity change from 0 to 2048
[  670.132889][T11479]  loop6: p1 < > p4
[  670.137341][T11479] loop6: p4 size 8388608 extends beyond EOD, truncated
[  670.166280][   T29] kauditd_printk_skb: 148 callbacks suppressed
[  670.166297][   T29] audit: type=1326 audit(1744944116.196:33921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.208427][   T29] audit: type=1326 audit(1744944116.206:33922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.232180][   T29] audit: type=1326 audit(1744944116.206:33923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.255921][   T29] audit: type=1326 audit(1744944116.206:33924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.279713][   T29] audit: type=1326 audit(1744944116.206:33925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.303579][   T29] audit: type=1326 audit(1744944116.206:33926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.327319][   T29] audit: type=1326 audit(1744944116.206:33927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.351196][   T29] audit: type=1326 audit(1744944116.206:33928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.374945][   T29] audit: type=1326 audit(1744944116.206:33929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.398874][   T29] audit: type=1326 audit(1744944116.206:33930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11478 comm="syz.6.14246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7884d2e169 code=0x7ffc0000
[  670.425188][T11481] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  670.495153][T11468] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11468 comm=syz.5.14243
[  670.556275][T11499] netlink: 'ext4Õm¯lìâ=': attribute type 4 has an invalid length.
[  670.618662][T11504] loop7: detected capacity change from 0 to 2048
[  670.658642][T11504]  loop7: p1 < > p4
[  670.670108][T11504] loop7: p4 size 8388608 extends beyond EOD, truncated
[  670.692735][T11511] batadv0: entered promiscuous mode
[  670.698059][T11511] vlan0: entered promiscuous mode
[  670.732355][T11513] loop7: detected capacity change from 0 to 512
[  670.739011][T11513] EXT4-fs: Ignoring removed nomblk_io_submit option
[  670.746352][T11513] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  670.765226][T11513] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  670.784747][T11513] EXT4-fs (loop7): 1 truncate cleaned up
[  671.126606][T11532] netlink: 'syz.6.14267': attribute type 12 has an invalid length.
[  671.158019][T11530] loop0: detected capacity change from 0 to 1024
[  671.327700][T11530] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  671.437680][T11532] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  671.471033][T11540] loop8: detected capacity change from 0 to 512
[  671.491997][T11540] EXT4-fs (loop8): 1 orphan inode deleted
[  671.512217][  T794] EXT4-fs error (device loop8): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  671.525946][T11540] ext4 filesystem being mounted at /329/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  671.609455][T11548] loop6: detected capacity change from 0 to 512
[  671.617896][ T6772] ==================================================================
[  671.626021][ T6772] BUG: KCSAN: data-race in __find_get_block / has_bh_in_lru
[  671.633344][ T6772] 
[  671.635697][ T6772] read-write to 0xffff888237d26b30 of 8 bytes by task 11548 on cpu 1:
[  671.643862][ T6772]  __find_get_block+0x430/0x8a0
[  671.648733][ T6772]  bdev_getblk+0x139/0x3b0
[  671.653170][ T6772]  __ext4_sb_bread_gfp+0x46/0x180
[  671.658202][ T6772]  ext4_fill_super+0x13c7/0x3580
[  671.663147][ T6772]  get_tree_bdev_flags+0x2b4/0x330
[  671.668264][ T6772]  get_tree_bdev+0x1f/0x30
[  671.672687][ T6772]  ext4_get_tree+0x1c/0x30
[  671.677113][ T6772]  vfs_get_tree+0x56/0x1e0
[  671.681535][ T6772]  do_new_mount+0x246/0x6b0
[  671.686053][ T6772]  path_mount+0x49b/0xb30
[  671.690401][ T6772]  __se_sys_mount+0x28f/0x2e0
[  671.695085][ T6772]  __x64_sys_mount+0x67/0x80
[  671.699779][ T6772]  x64_sys_call+0xd11/0x2e10
[  671.704380][ T6772]  do_syscall_64+0xc9/0x1a0
[  671.709085][ T6772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  671.714985][ T6772] 
[  671.717314][ T6772] read to 0xffff888237d26b30 of 8 bytes by task 6772 on cpu 0:
[  671.724879][ T6772]  has_bh_in_lru+0x35/0x1f0
[  671.729400][ T6772]  __lru_add_drain_all+0x23f/0x3f0
[  671.734528][ T6772]  lru_add_drain_all+0x10/0x20
[  671.739302][ T6772]  invalidate_bdev+0x47/0x70
[  671.743907][ T6772]  ext4_put_super+0x65b/0x910
[  671.748601][ T6772]  generic_shutdown_super+0xe5/0x220
[  671.753904][ T6772]  kill_block_super+0x2a/0x70
[  671.758596][ T6772]  ext4_kill_sb+0x44/0x80
[  671.762940][ T6772]  deactivate_locked_super+0x7d/0x1c0
[  671.768331][ T6772]  deactivate_super+0x9f/0xb0
[  671.773047][ T6772]  cleanup_mnt+0x26e/0x2e0
[  671.777475][ T6772]  __cleanup_mnt+0x19/0x20
[  671.781903][ T6772]  task_work_run+0x13c/0x1b0
[  671.786502][ T6772]  syscall_exit_to_user_mode+0xa8/0x120
[  671.792059][ T6772]  do_syscall_64+0xd6/0x1a0
[  671.796596][ T6772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  671.802500][ T6772] 
[  671.804825][ T6772] value changed: 0x0000000000000000 -> 0xffff88812c041af8
[  671.811949][ T6772] 
[  671.814275][ T6772] Reported by Kernel Concurrency Sanitizer on:
[  671.820437][ T6772] CPU: 0 UID: 0 PID: 6772 Comm: syz-executor Not tainted 6.15.0-rc2-syzkaller-00257-gb5c6891b2c5b #0 PREEMPT(voluntary) 
[  671.833034][ T6772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  671.843096][ T6772] ==================================================================
[  671.923356][T11548] EXT4-fs (loop6): 1 orphan inode deleted
[  671.930331][T11548] ext4 filesystem being mounted at /589/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  671.952977][   T31] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  672.148230][T11544] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11544 comm=syz.0.14270
[  672.228264][T11554] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11554 comm=syz.5.14271