last executing test programs:

42m0.537600033s ago: executing program 32 (id=4652):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
pipe(&(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f00000001c0)=0x7ff, 0x4)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000008c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000fc850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6}]})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ptrace(0x10, r1)

13m2.057555804s ago: executing program 33 (id=17030):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x0, @private}, 0x4}}, 0x26)
syz_emit_ethernet(0x4c, &(0x7f00000000c0)={@broadcast, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x16, 0x11, 0x0, @remote, @local, {[], {0x0, 0xe22, 0x16, 0x0, @gue={{0x2, 0x0, 0x0, 0x2, 0x0, @val=0x40000000}, "0a790cc55a8e"}}}}}}}, 0x0)

11m44.588061487s ago: executing program 5 (id=17508):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x3, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f00000001c0), &(0x7f0000000340)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mm_page_alloc\x00', r1}, 0x10)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)

11m44.449941737s ago: executing program 5 (id=17510):
ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/packet\x00')
pread64(r0, 0x0, 0x0, 0x38)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getrlimit(0x3, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000", @ANYRES32, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/27], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
execveat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

11m44.154527816s ago: executing program 5 (id=17511):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
socket$key(0xf, 0x3, 0x2)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, 0x0, 0x0)
connect$inet6(r0, 0x0, 0x0)
io_setup(0x6, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

11m43.455210053s ago: executing program 5 (id=17512):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

11m43.453863443s ago: executing program 5 (id=17513):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r0, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x42, 0x1d)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x370, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x2c8, 0xffffffff, 0xffffffff, 0x2c8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0={0xfc, 0x0, '\x00', 0xff}, @private1={0xfc, 0x1, '\x00', 0x1}, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x1a0, 0xd0}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x1a0, 0x1d0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x9, 0x4, 0x4, 0x1, 'syz1\x00', 0x2}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x3d0)

11m43.452704933s ago: executing program 5 (id=17516):
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
lgetxattr(0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0xd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x490, 0x360, 0xa, 0x148, 0x360, 0x60, 0x3f8, 0x2a8, 0x2a8, 0x3f8, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x360, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x0, 0x0, 0x2, 0x0, 0x4, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x8601, 0x6, './file0\x00'}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x1, 0x6, 0x3, 0x81, 'snmp_trap\x00', 'syz0\x00', {0x30f6a663}}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4f0)

11m43.447814573s ago: executing program 34 (id=17516):
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
lgetxattr(0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0xd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x490, 0x360, 0xa, 0x148, 0x360, 0x60, 0x3f8, 0x2a8, 0x2a8, 0x3f8, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x360, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x0, 0x0, 0x2, 0x0, 0x4, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x8601, 0x6, './file0\x00'}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x1, 0x6, 0x3, 0x81, 'snmp_trap\x00', 'syz0\x00', {0x30f6a663}}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4f0)

11m43.399175522s ago: executing program 4 (id=17521):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000800000008"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000680)={{r0}, &(0x7f00000006c0), &(0x7f0000000600)='%-5lx  \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fstatfs(r2, &(0x7f0000000300)=""/105)

11m43.211770402s ago: executing program 4 (id=17522):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0xe, 0x0, 0xfffffffffffffffe)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
creat(&(0x7f0000000180)='./bus\x00', 0x58)

11m43.000357211s ago: executing program 4 (id=17523):
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x2, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)

11m42.988079351s ago: executing program 4 (id=17524):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

11m42.974949761s ago: executing program 4 (id=17525):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r3, 0x4b72, &(0x7f0000000400)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0})

11m42.83610971s ago: executing program 4 (id=17526):
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x802)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x17, 0x0, 0x0, &(0x7f0000000740)='syzkaller\x00', 0x80000000, 0x5e, &(0x7f00000008c0)=""/94, 0x40f00, 0x22, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, r1, 0x0, 0x0, 0x0, 0x10, 0xe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
write$evdev(r0, &(0x7f0000000000), 0x100000008)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x80004507, 0x0)

11m42.78005918s ago: executing program 35 (id=17526):
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x802)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x17, 0x0, 0x0, &(0x7f0000000740)='syzkaller\x00', 0x80000000, 0x5e, &(0x7f00000008c0)=""/94, 0x40f00, 0x22, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, r1, 0x0, 0x0, 0x0, 0x10, 0xe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
write$evdev(r0, &(0x7f0000000000), 0x100000008)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x80004507, 0x0)

11m39.293296025s ago: executing program 6 (id=17548):
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x7, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r2}, 0x10)
r3 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})

11m39.281687226s ago: executing program 6 (id=17549):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x1cd02, &(0x7f0000001b80)=ANY=[], 0x1, 0x11f3, &(0x7f0000000980)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000ac0)='mm_page_free_batched\x00', r1}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000100)={'sit0\x00', &(0x7f00000002c0)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x8, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x29, 0x0, @broadcast, @remote, {[@timestamp_addr={0x44, 0xc, 0x38, 0x1, 0x4, [{@rand_addr=0x64010102, 0xf}]}]}}}}})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r4, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r4, 0x0, 0x0, 0x2}, 0x20)
r5 = dup(r3)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000040)={'ip_vti0\x00', 0x0})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r6, 0xae9a)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

11m39.132311095s ago: executing program 6 (id=17550):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x6f2, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000b98cad95850000000300000018110000", @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r3, 0x4)
sendmsg$unix(r2, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

11m39.097628135s ago: executing program 6 (id=17551):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

11m39.096853715s ago: executing program 6 (id=17552):
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001280)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)={0x28, 0x2d, 0x1, 0xfffffffc, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @nested={0xa, 0x0, 0x0, 0x1, [@generic="976b64086860"]}, @nested={0x4, 0x1}]}, 0x28}], 0x1, 0x0, 0x0, 0x4}, 0x0)

11m39.015978844s ago: executing program 6 (id=17553):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x800, 0x0, 0x103, 0x8, 0x0, 0x4000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r4, 0x11, 0x66, &(0x7f0000000100)=0xc6, 0x4)
setsockopt$inet6_udp_encap(r4, 0x11, 0x64, &(0x7f0000000780)=0x2, 0x4)
bind$inet6(r4, &(0x7f0000000280)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0xd2, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffbfff00000000000086dd600489f1009c1100fc010000000000000025030000000000ff02000000000000000000000000000100000e22"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
sendmsg$nl_route(r3, 0x0, 0x0)

11m39.015665674s ago: executing program 36 (id=17553):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x800, 0x0, 0x103, 0x8, 0x0, 0x4000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r4, 0x11, 0x66, &(0x7f0000000100)=0xc6, 0x4)
setsockopt$inet6_udp_encap(r4, 0x11, 0x64, &(0x7f0000000780)=0x2, 0x4)
bind$inet6(r4, &(0x7f0000000280)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0xd2, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffbfff00000000000086dd600489f1009c1100fc010000000000000025030000000000ff02000000000000000000000000000100000e22"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
sendmsg$nl_route(r3, 0x0, 0x0)

5m15.211064201s ago: executing program 1 (id=19862):
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000002, 0x6031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, &(0x7f0000000080)={0x0, 0x6})
ioctl$MON_IOCX_GETX(0xffffffffffffffff, 0x80089203, 0x0)
accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x40800)

5m14.631821949s ago: executing program 1 (id=19866):
syz_mount_image$exfat(&(0x7f0000000380), &(0x7f0000000180)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x1, 0x14fe, &(0x7f0000002ac0)="$eJzs3QuYjtX6MPB1r7UexjTxNslhWPe6H940WCZJckiSQ5IkSZJTQtIkSUJiyCkJSchxkhyGkBwmJo3z+ZBz0mRLkiSnnML6rqndtve//b/s/e39//y/Pffvutb1rvtaz72etd6beZ/nuebwQ9fhtZrUrt6IiMS/BH57SRFCxAghBgkh8gkhAiFE+fjy8dnjeRSk/GsnYf9ej6Zd6xWwa4nrn7Nx/XM2rn/OxvXP2bj+ORvXP2fj+udsXH/GcrKtMwvfwC3ntn/9+X/Mby/8/P//Q/z5n7Nx/f/TnM7zzxzN9f9Pctl7/89lcP1zNq5/zsb1z9m4/jkb1z9n4/ozlpNd6+fP3K5tu9b//hhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOM5Qzn/BVaCPF7/1qvizHGGGOMMcYYY/8+Pve1XgFjjDHGGGOMMcb+54GQQgktApFL5BYxIo+IFdeJOHG9yCvyiYi4QcSLG0V+cZMoIAqKQqKwSBBFRFFhBAorSISimCguouJmUULcIhJFSVFKlBZOlBFJ4lZRVtwmyonbRXlxh6gg7hQVRSVRWVQRd4mq4m5RTdwjqot7RQ1RU9QStcV9oo64X9QVD4h64kFRXzwkGoiHRUPxiGgkHhWNxWOiiXhcNBVPiGaiuWghWopW/1f5r4ie4lXRS/QWKaKP6CteE/1EfzFADBSDxOtisHhDDBFviqFimBgu3hIjxNtipHhHjBKjxRjxrhgrxonxYoKYKCaJVPGemCzeF1PEB2KqmCamixkiTcwUs8SHYraYI+aKj8Q88bGYLxaIhWKRSBefiMViicgQn4ql4jORKZaJ5WKFWClWidVijVgr1on1YoPYKDaJzWKL2Co+F9vEdrFD7BS7xG6xR3wh9oovxT7xlcgSX/+T+Wf/S343ECBAggQNGnJBLoiBGIiFWIiDOMgLeSECEYiHeMgP+aEAFIBCUAgSIAGKQlFAQCAgKAbFIApRKAElIBESoRSUAgcOkiAJysJtUA7KQXkoDxWgAlSESlAJqkAVqApVoRpUg+pQHWpADagFteA+uA/uh7pQF+pBPagP9aEBNICG0BAaQSNoDI2hCTSBptAUmkEzaAEtoBW0gtbQGtpAG2gH7aA9tIcO0AGSIRk6QkfoBJ2gM3SGLtAFukJX6AbdoTu8Aq/Aq/Aq9IYasg/0hb7QD/rBABgIA+F1GAxvwBvwJgyFYTAc3oK34G0YCWdgFIyGMTAGqspxMB4mAMlJkAqpMBkmwxSYAlNhGkyDGZAGM2EWzILZMAfmwEcwDz6Gj2EBLIBFkA7psBiWQAZkwFI4C5mwDJbDClgJq2AlrIG1sAbWwwZYD5tgE2yBLfA5fA7bYTvshJ2wG3bDF/AFfAlfwlDIgizYD/vhAByAg3AQDsEhOAyH4QgcgaNwFI7BMTgOJ+AknIDTcBrOwFk4B+fgAlyAi3ARLsPl7P/8MpuWWuaSuWSMjJGxMlbGyTiZV+aVERmR8TJe5pf5ZQFZQBaShWSCTJBFZVGJEiXJUBaTxWRURmUJWUImykRZSpaSTjqZJJNkWVlWlpPlZHl5h6wg75QVZSXZ1lWRVWRV2c5Vk/fI6rK6rCFrylqytqwt68g6sq6sK+vJerK+rC8byIdlQ9kHBsCjMrsyTeQwaCqHQzPZXLaQLeXb8KRsLUdCG9lWtpNPy9EwCjrI1i5ZPic7yvHQSb4gJ8CLsoucBF3ly7Kb7C57yFdkT9nG9ZK95VToI/vKGdBP9pcD5EA5G2rK7IrVkm/KoXKYHC7fkovgbTlSviNHydFyjHxXjpXj5Hg5QU6Uk2SqfE9Olu/LKfIDOVVOk9PlDJkmZ8pZ8kM5W86Rc+VHcp78WM6XC+RCuUimy0/kYrlEZshP5VL5mcyUy+RyuUKulKvkarlGrpXr5Hq5QW6Um+RmuUVulZ/LbXK73CF3yl1yt9wjv5B75Zdyn/xKZsmv5X75J3lAfiMPym/lIfmdPCy/l0fkD/Ko/FEekz/J4/KEPClPydPyZ3lGnpXn5Hl5Qf4iL8pL8rL0UihQUimlVaByqdwqRuVRseo6FaeuV3lVPhVRN6h4daPKr25SBVRBVUgVVgmqiCqqjEJlFalQFVPFVVTdrEqoW1SiKqlKqdLKqTIqSd2qyqrbVDl1uyqv7lAV1J2qoqqkKqsq6i5VVd2tqql7VHV1r6qhaqpaqra6T9VR96u66gFVTz2o6quHVAP1sGqoHlGN1KOqsXpMNVGPq6bqCdVMNVctVEvVSj2pWqunVBvVVrVTT6v26hnVQT2rktVzqqN6XnVSL6jO6kXVRb2kuqqXVTfVXfVQl9Rl5VUv1VulqD6qr3pN9VP91QA1UA1Sr6vB6g01RL2phqpharh6S41Qb6uR6h01So1WY9S7aqwap8arCWqimqRS1XtqsnpfTVEfqKlqmpquZqg0NVMN+PNMc/+B/Pf/Tv6QX8++RW1Vn6ttarvaoXaqXWq32qP2qL1qr9qn9qkslaX2q/3qgDqgDqqD6pA6pA6rw+qIOqKOqqPqmDqmjqsT6rw6pU6rn9UZdVadVefVBXVBXfzzeyA0aKmV1jrQuXRuHaPz6Fh9nY7T1+u8Op+O6Bt0vL5R59c36QK6oC6kC+sEXUQX1Uajtpp0qIvp4jqqb9Yl9C06UZfUpXRp7XQZnaRv/Zfzr7a+VrqVbq1b6za6jW6n2+n2ur3uoDvoZJ2sO+qOupPupDvrzrqL7qK76q66m+6me+geuqfuqb0QIkWn6L76Nd1P99cD9EA9SL+uB+vBeogeoofqoXq4Hq5H6BF6pB6pR+lReoweo8fqsXq8Hq8n6ok6VafqyXqynqKn6Kl6qp6up+s0naZn6Vl6tp6t5+q5ep6ep+fr+XqhXqjTdbperBfrDJ2hl+qlOlMv08v0Cr1Cr9Kr9Bq9Rq/T6/QGvUFv0pt0pv79GzR36B16l96l9+g9eq/eq/fpfTpLZ+n9er8+oA/og/qgPqQP6cP6sD6ij+ij+qg+po/p4/q4PqlP6tP6tD6jz+hz+py+oC/oi/qivqwvZ1/2BTKQgQ50kCvIFcQEMUFsEBvEBXFB3iBvEAkiQXwQH+QPbgoKBAWDQkHhICEoEhQNTICBDSgIg2JB8SAa3ByUCG4JEoOSQamgdOCCMkFScGtQNrgtKBfcHpQP7ggqBHcGFYNKQeWgSnBXUDW4O6gW3BNUD+4NagQ1g1pB7eC+oE5wf1A3eCCoFzwY1A8eChoEDwcNg0eCRsGjQePgsaBJ8HjQNHgiaBY0D1oELYNW/9b5vT9T8CnXy/Q2KaaP6WteM/1MfzPADDSDzOtmsHnDDDFvmqFmmBlu3jIjzNtmpHnHjDKjzRjzrhlrxpnxZoKZaCaZVPOemWzeN1PMB2aqmWammxkmzcw0s8yHZraZY+aaj8w887GZbxaYhWaRSTefmMVmickwn5ql5jOTaZaZ5WaFWWlWmdVmjVlr1pn1ZoPZaDaZzWaL2Wo+N9vMdrPD7DS7zG6zx3xh9povzT7zlckyX5v95k/mgPnGHDTfmkPmO3PYfG+OmB/MUfOjOWZ+MsfNCXPSnDKnzc/mjDlrzpnz5oL5xVw0l8xl47Mv7rM/3lGjxlyYC2MwBmMxFuMwDvNiXoxgBOMxHvNjfiyABbAQFsIETMCiWBSzERIWw2IYxSiWwBKYiIlYCkuhQ4dJmIRlsSyWw3JYHstjBayAFbEiVsbs+5G78G68G+/Be/BevBdrYk2sjbWxDtbBulgX62E9rI/1sQE2wIbYEBthI2yMjbEJNsGm2BSbYTNsgS2wFbbC1tga22AbbIftsD22xw7YAZMxGTtiR+yEnbAzdsYu2AW7Ylfsht2wB/bAntgTe2EvTMEU7It9sR/2wwE4AAfhIByMg3EIDsGhOBSH43AcgSNwJI7EUTgax+C7OBbH4XicgBNxEqZiKk7GyTgFp+BUnIrTcTqmYRrOwlk4G2fjXJyL83Aezsf5uBAXYjqm42JcjBmYgUtxKWZiJi7H5bgSV+JqXI1rcS2ux/W4ETfiZtyMW3ErbsNtuAN34C7chXtwD+7FvbgP92EWZuF+3I8H8AAexIN4CA/hYTyMR/AIHsWjeAyP4XE8DifxJJ7G03gGz+A5PIcX8Be8iJfwMnqMsXlsrL3OxtnrbV6bz8bYPL2FEH+JC9nCNsEWsUWtsQVswb+J0VqbaEvaUra0dbaMTbK3/iGuaCvZyraKvctWtXfban+I69j7bV37gK1nH7S17X1/E9e3D9kG9nHb0D5hG9nmtrFtaZvYx21T+4RtZpvbFralbW+fsR3sszbZPmc72uf/EC+2S+xau86utxvsXvulPWfP2yP2B3vB/mJ72d52kH3dDrZv2CH2TTvUDvtDPMa+a8facXa8nWAn2kl/iKfbGTbNzrSz7Id2tp3zhzjdfmLn2Qw73y6wC+2iX+PsNWXYT+1S+5nNtMvscrvCrrSr7Gq75i9rXWE32c12i91jv7Db7Ha7w+60u+zuX+PsfeyzX9ks+7U9bL+3B+w39qA9ag/Z736Ns/d31P5oj9mf7HF7wp60p+xp+7M9Y8/+uv/svZ+yl+xl660gIEmKNAWUi3JTDOWhWLqO4uh6ykv5KEI3UDzdSPnpJipABakQFaYEKkJFyRCSJaKQilFxitLNVIJuoUQqSaWoNDkqQ0l0K5Wl26gc3U7l6Q6qQHdSRapElakK3UVV6W6qRvdQdbqXalBNqkW16T6qQ/dTXXqA6tGDVJ8eogb0MDWkR6gRPUqN6TFqQo9TU3qCmlFzakEtqRU9Sa3pKWpDbakdPU3t6RnqQM9SMj1HHel56kQvUGd6kbrQS9SVXqZu1J160CvUk16lXtSbUqgP9aXXqB/1pwE0kAbR6zSY3qAh9CYNpWE0nN6iEfQ2jaR3aBSNpjH0Lo2lcTSeJtBEmkSp9B5NpvdpCn1AU2kaTacZlEYzaRZ9SLNpDs2lj2gefUzzaQEtpEWUTp/QYlpCGfQpLaXPKJOW0XJaQStpFa2mNbSW1tF62kAbaRNtpi20lT6nbbSddtBO2kW7aQ99QXvpS9pHX1EWfU376U90gL6hg/QtHaLv6DB9T0foBzpKP9Ix+omO0wk6SafoNP1MZ+gsnaPzdIF+oYt0iS6TJxFCKEMV6jAIc4W5w5gwTxgbXhfGhdeHecN8YSS8IYwPbwzzhzeFBcKCYaGwcJgQFgmLhibE0IYUhmGxsHgYDW8OS4S3hIlhybBUWDp0YZkwKbw1LBveFpYLbw/Lh3eEFcI7w4phpbByWCW8K6wa3h1WC+8Jq4f3hjXCmmGtsHZ4X1gnvD+sGz4Q1gsfDMuFD4UNwofDhuEjYaPw0bBx+FjYJHw8bBo+ETYLm4ctwpZhq/DJsHX4VNgmbBu2C58O24fPhB3CZ8Pk8LmwY/j8VcdTwj5h3/C18LXQ+wfUwuiiaHr0k+ji6JJoRvTT6NLoZ9HM6LLo8uiK6Mroqujq6Jro2ui66ProhujG6Kbo5uiWqPe1cwsHTjrltAtcLpfbxbg8LtZd5+Lc9S6vy+ci7gYX7250+d1NroAr6Aq5wi7BFXFFnXHorCMXumKuuIu6m10Jd4tLdCVdKVfaOVfGJbmWrpVr5Vq7p1wb19a1c0+7p90z7hn3rHvWPec6uuddJ/eC6+xedF3cS+4l97Lr5rq7Hu4V19O96nq53i7Fpbi+rq/r5/q5AW6AG+QGucFusBvihrihbqgb7oa7EW6EG+lGulFulBvjxrixbqwb78a7iW6iS3WpbrKb7Ka4KW6qm+qmu+kuzaW5WW6Wm+1mu7lurpvn5rn5br5b6Ba6dJfuFrvFLsNluKVuqct0mW65W+5WupVutVvt1rq1br1b7za6jW6z2+y2uq1um9vmdrgdbpfb5fa4PW6v2+v2uX0uy2W5/W6/O+AOuIPuW3fIfecOu+/dEfeDO+p+dMfcT+64O+FOulPutPvZnXFn3Tl33l1wv7iL7pK77LxLjbwXmRx5PzIl8kFkamRaZHpkRiQtMjMyK/JhZHZkTmRu5KPIvMjHkfmRBZGFkUWR9MgnkcWRJZGMyKeRpZHPIpmRZZHlkRWRlZFVEe+LbAt9MV/cR/3NvoS/xSf6kr6UL+2dL+OT/K2+rL/Nl/O3+/L+Dl/B3+kr+kq+sn/CN/PNfQvf0rfyT/rW/infxrf17fzTvr1/xnfwz/pk/5zv6J/3nfwLvrN/0XfxL/mu/mXfzXf3Pfwrvqd/1ffyvX2K7+P7+td8P9/fD/AD/SD/uh/s3/BD/Jt+qB/mh/u3/Aj/th/p3/Gj/Gg/xr/rx/pxfryf4Cf6ST7Vv+cn+/f9FP+Bn+qn+el+hk/zM/0s/6Gf7ef4uf4jP89/7Of7BX6hX+TT/Sd+sV/iM/ynfqn/zGf6ZX65X+FX+lV+tV/j1/p1fr3f4Df6TX6z3+K3+s/9Nr/d7/A7/S6/2+/xX/i9/ku/z3/ls/zXfr//kz/gv/EH/bf+kP/OH/bf+yP+B3/U/+iP+Z/8cX/Cn/Sn/Gn/sz/jz/pz/ry/4H/xF/0lf5l/Zo0xxhhj7B+irjLe57/JkX/u9xVCXL+98KH/Or6xwG/9/rkT2keEEM/17vro761GjZSUlD8fm6lEUHyBECJyJT+XuBIvE+3EMyJZtBVl/zIe81fn6i+7X6CrzB+9Q4jYv8rJzv89vjL/bX93//3luHlXnX+BEInFr+TkEVfiK/OX+2/mL9j6KvPn+SZViDZ/lRMnrsRX5k8ST4nnRfLfHMkYY4wxxhhjjP2mv6zc+Wr3t9n35wn6Sk5ucSX+e/fnjDHGGGOMMcYY+9/lxe49nn0yObltZ+78T3V8vt/e6v8t6+EOd/6BzrX+ysQYY4wxxhj7d7ty0X+tV8IYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjOVc/y9+ndjv57ra3xpkjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHG/lP9nwAAAP//sjE7Eg==")
truncate(&(0x7f0000000080)='./file1\x00', 0xf000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x145802, 0x0)
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000200)='y', 0xf4240}], 0x1, 0x0, 0x0, 0x0)

5m14.029083946s ago: executing program 1 (id=19870):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)

5m13.962143646s ago: executing program 1 (id=19871):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3000490, &(0x7f0000000100)={[{@lazytime}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@auto_da_alloc}, {@mblk_io_submit}, {@nouid32}, {@barrier_val}, {@grpjquota}, {}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x24a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x8000)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x1}})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10)

5m13.755199006s ago: executing program 1 (id=19872):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0xf, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018400110800395032303030"], 0x15)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = dup(r1)
write$FUSE_BMAP(r3, &(0x7f0000000080)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
lchown(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)

5m12.244166309s ago: executing program 1 (id=19880):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x20000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r3, 0x8982, &(0x7f0000000000)={0x0, 'rose0\x00', {0x3}, 0x100})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r4 = socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)

5m12.183808819s ago: executing program 37 (id=19880):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x20000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r3, 0x8982, &(0x7f0000000000)={0x0, 'rose0\x00', {0x3}, 0x100})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r4 = socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)

1m57.003181679s ago: executing program 0 (id=20929):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file1\x00', 0x18000, &(0x7f0000001940)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRESOCT, @ANYBLOB="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", @ANYRES32, @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x121)
sendfile(r0, r0, 0x0, 0xfffe80)

1m56.927882849s ago: executing program 0 (id=20931):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x1cd02, &(0x7f0000001b80)=ANY=[], 0x1, 0x11f3, &(0x7f0000000980)="$eJzs3E+LW1UYB+C3cWrHqfNHrdV2oQfduLo0s3AlSJApyASU2gitINw6NxpyTUJuGIiI1ZVbP4e4dCeIX2A2fgZ3s3HZhXiFpLVNTdUuOpH6PJv7kvf8cu8hEDjhnBy/8c2n/W6VdfNJNE6disYoIt1KkaIRd7y0P79eu77farf3rqR0uXW1+XpKaevlHz/4/LtXfpqcff/7rR/OxNHOh8e/7v5ydP7owvHvVz/pValXpcFwkvJ0Yzic5DfKIh30qn6W0rtlkVdF6g2qYrzQ75bD0Wia8sHB5sZoXFRVygfT1C+maTJMk/E05R/nvUHKsixtbgQPdPqfh3S+vVXXdURdn44no67r+qnYiLPxdGzGVnwZEc/Es/FcnIvn43y8EC/Ghdmok3h8AAAAAAAAAAAAAAAAAAAA+P/4u/P/27Hj/D8AAAAAAAAAAAAAAAAAAACcgPeuXd9vtdt7V1Jajyi/PuwcdubXeb/VjV6UUcSl2I7fYnb6f25eX367vXcpzezEV+XN2/mbh50nFvPN2d8J3M6vzXp38s15Pi3mz8TGvfnd2I5zy++/uzS/Hq+9ek8+i+34+aMYRhkHs3vfzX/RTOmtd9r35S/OxgEAAMDjIEt/Wrp+z7IH9ef5h/h94L719VpcXFvt3Imopp/187IsxovF+l9eUfz7ovGI3rkR/5EJKh7/YtXfTJyEux/6qp8EAAAAAAAAAACAh/GIdxGuxZKdZW+uZqoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB/sAPHAgAAAADC/K3T6NgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgqAAD//99CzUo=")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000ac0)='mm_page_free_batched\x00', r1}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000100)={'sit0\x00', &(0x7f00000002c0)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x8, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x29, 0x0, @broadcast, @remote, {[@timestamp_addr={0x44, 0xc, 0x38, 0x1, 0x4, [{@rand_addr=0x64010102, 0xf}]}]}}}}})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r4, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r4, 0x0, 0x0, 0x2}, 0x20)
r5 = dup(r3)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000040)={'ip_vti0\x00', 0x0})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r6, 0xae9a)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

1m56.392230397s ago: executing program 0 (id=20940):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = open(0x0, 0x1612c2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x4000000000010046)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})

1m54.923644291s ago: executing program 0 (id=20948):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffa}]})
execve(0x0, 0x0, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
move_mount(r0, &(0x7f0000000080)='./file0/file0\x00', r0, &(0x7f0000000300)='./file0/../file0\x00', 0x0)

1m54.86863913s ago: executing program 0 (id=20949):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x50)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$key(0xf, 0x3, 0x2)
r1 = inotify_init()
ioctl$INOTIFY_IOC_SETNEXTWD(r1, 0x40044900, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x48, &(0x7f0000000000)=0x4000a, 0x4)
getsockopt$inet6_int(r3, 0x29, 0x48, 0x0, &(0x7f00007d0000))
getpid()
r4 = openat$binfmt_format(0xffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0)
write$binfmt_format(r4, &(0x7f0000000100)='-1\x00', 0x2)

1m54.7319152s ago: executing program 0 (id=20951):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x77c, &(0x7f0000001180)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)

1m54.69858532s ago: executing program 38 (id=20951):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x77c, &(0x7f0000001180)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)

5.478276602s ago: executing program 3 (id=21725):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r2, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0}, 0x18)
readlink(&(0x7f0000000cc0)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000dc0)=""/61, 0x3d)
r3 = socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r3, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)

5.098678521s ago: executing program 3 (id=21735):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1805000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000950000000000"], 0x0, 0xfffffa84, 0x0, 0x0, 0x41000, 0x72, '\x00', 0x0, @cgroup_sock_addr, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x10, &(0x7f00000014c0), 0x1, 0x793, &(0x7f0000001700)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x2, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="18110000ff3b31045c7624d1e2241f6fdaa526a1e7253c4a734ed6956d238cedbd8d4f2f990b389f66b19f84fe2edc230aaa441ea32342fb1e867be4798b7d366de3fe4b99c6adca5bff33b164ab7827ff8169066c70fd77dfebda0f45f7a284fe600ce7b88e3192c9efb65d2663143a5bd6f4a2b9550034dbeaa25707c81e6b6905702c63e3bccadf9a342aaa5c", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000076000000bf0900000000000026090600000003e704000000060000005c93000000000000b5030200000000008500000000000000b70000000000000095000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x8, &(0x7f0000000000)=0xfffffffd, 0x4)
getsockopt$inet6_tcp_buf(r6, 0x6, 0x8, 0x0, &(0x7f0000001040))
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = open(&(0x7f0000007fc0)='./bus\x00', 0x60142, 0x0)
r8 = open(&(0x7f0000000380)='./file1\x00', 0x42042, 0x0)
r9 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x82100, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000900)=@bpf_ext={0x1c, 0x19, &(0x7f0000000b00)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @alu={0x4, 0x1, 0x5, 0x7, 0x7, 0x1}, @cb_func={0x18, 0x1, 0x4, 0x0, 0xfffffffffffffffd}, @cb_func={0x18, 0x7, 0x4, 0x0, 0xfffffffffffffffe}, @cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffc}, @map_val={0x18, 0x9, 0x2, 0x0, r9, 0x0, 0x0, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}, @call={0x85, 0x0, 0x0, 0x6f}], &(0x7f0000000700)='syzkaller\x00', 0xffffffff, 0x0, &(0x7f0000000740), 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000a00)={0x4, 0x7, 0x7, 0x8001}, 0x10, 0x21b75, r3, 0x4, 0x0, &(0x7f0000000cc0)=[{0x1, 0x1, 0x3, 0x6}, {0x3, 0x1, 0x1, 0xa}, {0x3, 0x4, 0x7, 0x7}, {0x5, 0x1, 0x4, 0x6}], 0x10, 0x2, @void, @value}, 0x94)
openat$full(0xffffffffffffff9c, &(0x7f0000001780), 0x20100, 0x0)
r10 = socket(0x10, 0x80002, 0x4)
sendmsg$nl_route_sched(r10, &(0x7f0000002980)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)=@newtaction={0x14, 0x13, 0x53b}, 0x14}}, 0x0)
sendfile(r7, r8, 0x0, 0x1000000211005)

4.547553938s ago: executing program 7 (id=21743):
r0 = open(0x0, 0x801, 0x4b)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\t\x00'/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
timer_create(0x1, &(0x7f0000000280)={0x0, 0x38, 0x4, @thr={&(0x7f0000000580)="2c6e1158225066450d26957ef0ea4135b9d589415ce0e12f8fcca86cf4612443e3158279ca3b03780a8fc40a7ac44c5b384686196439b62a011a39ff073fd77a881a08968854bebc11ffefe5b3567b5f2657d1f499c0e04c7587a941dbb90d021684d989ab8a39b0b945b877d25d299020d466284bc9074c41dad6c079e716d92e3c8fd187967df919d2a28b0f3b8cff10d431170931310563a4c1a22ed0aff940b08c10e12cb2cd2810ee6cffdf52c1df21412b263891d5d4471b17d216629699baa96412", &(0x7f0000000340)="e3d69c9fb36a363c03a5ec35718e24a2cbd6f6d022a09db6aca8c2"}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x11, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r7], 0x4c}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x248, &(0x7f0000000100), 0xfd, 0x48f, &(0x7f0000000940)="$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")
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r0, 0x8008f511, &(0x7f00000001c0))
r8 = openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$cgroup_pid(r8, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

4.306898108s ago: executing program 8 (id=21744):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0)
lsetxattr$system_posix_acl(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)

2.960409502s ago: executing program 3 (id=21746):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x401, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
r1 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)

2.960157432s ago: executing program 8 (id=21747):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4c6, &(0x7f00000012c0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r3, 0x2007ff3)
copy_file_range(r3, 0x0, r2, 0x0, 0xffffffffa003e459, 0x700000000000000)

2.959337142s ago: executing program 7 (id=21748):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
connect$inet6(r1, &(0x7f00000003c0)={0xa, 0xfffe, 0x3000003, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r1, &(0x7f00000000c0)="8f2a0a65bd8c002b0304000e0580a7b6070d63e286a5cefe", 0x5ac)
socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x84}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4006, &(0x7f00000001c0)={[{@i_version}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x1, 0x443, &(0x7f0000001040)="$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")
r7 = inotify_init()
inotify_add_watch(r7, &(0x7f0000000000)='.\x00', 0x400017e)
pipe2$9p(&(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
r10 = creat(&(0x7f0000000080)='./bus\x00', 0x9)
write$P9_RVERSION(r9, &(0x7f0000000080)=ANY=[], 0x15)
splice(r8, 0x0, r10, 0x0, 0x15, 0x0)

2.885697472s ago: executing program 3 (id=21749):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x232402)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = gettid()
process_vm_writev(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2}]})
close_range(r2, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

2.710810301s ago: executing program 2 (id=21750):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000580), 0x0}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_procs(r0, &(0x7f00000013c0)='tasks\x00', 0x2, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000340))
socket(0xa, 0x2400000001, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{}, 0x0, 0x0}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffc]}, 0x8)
read(r2, &(0x7f0000000740)=""/377, 0x179)

2.57298566s ago: executing program 9 (id=21752):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
connect$inet6(r0, 0x0, 0x0)

2.56074377s ago: executing program 9 (id=21753):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4c, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc7b, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000000000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000010000000000010000000000000000010018"], 0x88}}, 0x0)

2.55301939s ago: executing program 8 (id=21754):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x50)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = inotify_init()
ioctl$INOTIFY_IOC_SETNEXTWD(r2, 0x40044900, 0x9)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020a0002070000000000ffffffff000005001a00"], 0x38}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x48, &(0x7f0000000000)=0x4000a, 0x4)
getsockopt$inet6_int(r4, 0x29, 0x48, 0x0, &(0x7f00007d0000))
getpid()
r5 = openat$binfmt_format(0xffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0)
write$binfmt_format(r5, &(0x7f0000000100)='-1\x00', 0x2)

2.40011379s ago: executing program 9 (id=21755):
recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1}}], 0x1, 0x140, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r2=>0x0})
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000001280)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000001a0000000c00018008000100", @ANYRES32=r2, @ANYBLOB="a51c4e9e8c696543e4115ff1659c9e1653a78c0015a8415656060327690f4e427d33b54dc0460e6066ce921aae5473a582bafe98a76840ed675be63554f4f2e1e50ff98d40104e991aff731c382d37132511c93ff032062a0a2e0a4ce9ca973be4481c"], 0x20}}, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r4, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

2.399803509s ago: executing program 8 (id=21756):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x20000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0}, 0x18)
readlink(&(0x7f0000000cc0)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000dc0)=""/61, 0x3d)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)

2.37760504s ago: executing program 9 (id=21757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1805000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000950000000000"], 0x0, 0xfffffa84, 0x0, 0x0, 0x41000, 0x72, '\x00', 0x0, @cgroup_sock_addr, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x10, &(0x7f00000014c0), 0x1, 0x793, &(0x7f0000001700)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x2, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="18110000ff3b31045c7624d1e2241f6fdaa526a1e7253c4a734ed6956d238cedbd8d4f2f990b389f66b19f84fe2edc230aaa441ea32342fb1e867be4798b7d366de3fe4b99c6adca5bff33b164ab7827ff8169066c70fd77dfebda0f45f7a284fe600ce7b88e3192c9efb65d2663143a5bd6f4a2b9550034dbeaa25707c81e6b6905702c63e3bccadf9a342aaa5c", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000076000000bf0900000000000026090600000003e704000000060000005c93000000000000b5030200000000008500000000000000b70000000000000095000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x8, &(0x7f0000000000)=0xfffffffd, 0x4)
getsockopt$inet6_tcp_buf(r6, 0x6, 0x8, 0x0, &(0x7f0000001040))
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = open(&(0x7f0000007fc0)='./bus\x00', 0x60142, 0x0)
r8 = open(&(0x7f0000000380)='./file1\x00', 0x42042, 0x0)
r9 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x82100, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000900)=@bpf_ext={0x1c, 0x19, &(0x7f0000000b00)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @alu={0x4, 0x1, 0x5, 0x7, 0x7, 0x1}, @cb_func={0x18, 0x1, 0x4, 0x0, 0xfffffffffffffffd}, @cb_func={0x18, 0x7, 0x4, 0x0, 0xfffffffffffffffe}, @cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffc}, @map_val={0x18, 0x9, 0x2, 0x0, r9, 0x0, 0x0, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}, @call={0x85, 0x0, 0x0, 0x6f}], &(0x7f0000000700)='syzkaller\x00', 0xffffffff, 0x0, &(0x7f0000000740), 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000a00)={0x4, 0x7, 0x7, 0x8001}, 0x10, 0x21b75, r3, 0x4, 0x0, &(0x7f0000000cc0)=[{0x1, 0x1, 0x3, 0x6}, {0x3, 0x1, 0x1, 0xa}, {0x3, 0x4, 0x7, 0x7}, {0x5, 0x1, 0x4, 0x6}], 0x10, 0x2, @void, @value}, 0x94)
openat$full(0xffffffffffffff9c, &(0x7f0000001780), 0x20100, 0x0)
r10 = socket(0x10, 0x80002, 0x4)
sendmsg$nl_route_sched(r10, &(0x7f0000002980)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)=@newtaction={0x14, 0x13, 0x53b}, 0x14}}, 0x0)
sendfile(r7, r8, 0x0, 0x1000000211005)

1.998492198s ago: executing program 7 (id=21758):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x4880)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000020000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}}, 0x0)

1.975713098s ago: executing program 3 (id=21759):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b000000070000000100010009"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = open(0x0, 0x1612c2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x4000000000010046)
r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r6, 0x400, 0x1)
r7 = userfaultfd(0x801)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})

1.924219178s ago: executing program 7 (id=21760):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r2, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0}, 0x18)
readlink(&(0x7f0000000cc0)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000dc0)=""/61, 0x3d)
r3 = socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r3, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)

1.863386398s ago: executing program 7 (id=21761):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b000000070000000100010009"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4000000000010046)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})

1.800968007s ago: executing program 2 (id=21762):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='fdb_delete\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

1.776546377s ago: executing program 2 (id=21763):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
connect$inet6(r0, 0x0, 0x0)

1.738472027s ago: executing program 2 (id=21764):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4c6, &(0x7f00000012c0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r3, 0x2007ff3)
copy_file_range(r3, 0x0, r2, 0x0, 0xffffffffa003e459, 0x700000000000000)

1.594609936s ago: executing program 2 (id=21765):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="184200004000000000000000000000eee500000900000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, r0, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
prctl$PR_MCE_KILL(0x21, 0x0, 0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000100)={0x0, 0x3, &(0x7f0000000080)={&(0x7f0000000900)=ANY=[@ANYBLOB="020300090a00000000000000000000000300060000000e0002000000e0000009000000000000000002000100000000000000000200000000030005000000000002000000e0000001", @ANYRES64], 0x50}}, 0x0)
ioctl$SNAPSHOT_FREE(0xffffffffffffffff, 0x3305)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, 0x0, 0x24028024)
syz_emit_ethernet(0x2d, 0x0, 0x0)
request_key(&(0x7f0000000000)='logon\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f00000000c0)='@^\x00', 0x0)
r5 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
io_setup(0x1, &(0x7f0000000740)=<r6=>0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
io_submit(r6, 0x2, &(0x7f0000000280)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0}, &(0x7f0000000240)={0x0, 0x0, 0x2, 0x3, 0x0, r7, 0x0}])
recvmmsg(r5, &(0x7f0000006980)=[{{&(0x7f0000000100)=@alg, 0x80, &(0x7f0000000380)=[{&(0x7f00000002c0)=""/78, 0x4e}], 0x1, &(0x7f00000003c0)=""/215, 0xd7}, 0x8}, {{&(0x7f00000004c0)=@alg, 0x80, &(0x7f0000000600)=[{&(0x7f0000000540)=""/181, 0xb5}], 0x1, &(0x7f0000000640)=""/65, 0x41}, 0x1000}, {{&(0x7f00000006c0)=@l2={0x1f, 0x0, @none}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000740)=""/174, 0xae}, {&(0x7f0000000800)=""/173, 0xad}, {&(0x7f00000008c0)=""/40, 0x28}, {&(0x7f0000000900)=""/21, 0x15}, {&(0x7f0000000940)=""/146, 0x92}, {&(0x7f0000000a00)=""/88, 0x58}, {&(0x7f0000000a80)=""/117, 0x75}, {&(0x7f0000000b00)=""/150, 0x96}], 0x8, &(0x7f0000000c40)=""/185, 0xb9}, 0x2}, {{&(0x7f0000000d00)=@generic, 0x80, &(0x7f00000031c0)=[{&(0x7f0000000d80)=""/4096, 0x1000}, {&(0x7f0000001d80)=""/108, 0x6c}, {&(0x7f0000001e00)=""/117, 0x75}, {&(0x7f0000001e80)=""/238, 0xee}, {&(0x7f0000001f80)=""/8, 0x8}, {&(0x7f0000001fc0)=""/4, 0x4}, {&(0x7f0000002000)=""/18, 0x12}, {&(0x7f0000002040)=""/190, 0xbe}, {&(0x7f0000002100)=""/4096, 0x1000}, {&(0x7f0000003100)=""/182, 0xb6}], 0xa, &(0x7f0000003280)=""/4096, 0x1000}, 0x6}, {{&(0x7f0000004280)=@in={0x2, 0x0, @initdev}, 0x80, &(0x7f00000065c0)=[{&(0x7f0000004300)=""/103, 0x67}, {&(0x7f0000004380)=""/4096, 0x1000}, {&(0x7f0000005380)=""/182, 0xb6}, {&(0x7f0000005440)=""/89, 0x59}, {&(0x7f00000054c0)=""/47, 0x2f}, {&(0x7f0000005500)=""/4096, 0x1000}, {&(0x7f0000006500)=""/190, 0xbe}], 0x7, &(0x7f0000006640)=""/106, 0x6a}, 0xcda}, {{0x0, 0x0, &(0x7f0000006900)=[{&(0x7f00000066c0)=""/83, 0x53}, {&(0x7f0000006740)=""/29, 0x1d}, {&(0x7f0000006780)=""/77, 0x4d}, {&(0x7f0000006800)=""/253, 0xfd}], 0x4, &(0x7f0000006940)}, 0x6}], 0x6, 0x20000100, &(0x7f0000006b00))

1.445175096s ago: executing program 9 (id=21766):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x6f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r3, 0x8983, &(0x7f00000001c0))
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5, 0x0, 0x4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
flock(0xffffffffffffffff, 0x2)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x40000080, &(0x7f00000002c0)="656d8c342bb05845c995e8a3062a915ca2", 0x11, &(0x7f0000000380), &(0x7f00000003c0), 0x0)

1.442614466s ago: executing program 8 (id=21767):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x50)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = inotify_init()
ioctl$INOTIFY_IOC_SETNEXTWD(r2, 0x40044900, 0x9)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020a0002070000000000ffffffff000005001a00"], 0x38}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x48, &(0x7f0000000000)=0x4000a, 0x4)
getsockopt$inet6_int(r4, 0x29, 0x48, 0x0, &(0x7f00007d0000))
getpid()
r5 = openat$binfmt_format(0xffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0)
write$binfmt_format(r5, &(0x7f0000000100)='-1\x00', 0x2)

260.101741ms ago: executing program 9 (id=21768):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$eJzs3MtrXFUYAPDv3jyaNrGTiqgtggGpFcVp2hSFrlrXooIuuuyYTErI9GEmggldpHWvLkRcFKR/guDeunAluKgLrX9BEYsU3bQuInce6dBkktjO9PTx+8GZe86c6XzfN5fOPQfmJoAn1kTxkEfsjYiTWUSp9XweEcON3kjESvN1t2+eny5aFqur7/+VRRYRt26en26/V9Y6jrYGIxFx9a0snv50fdz60vJ8pVarLrTGBxdPnztYX1p+fe505VT1VPXMkak3j0y9MTXVw1qvn/vw6xd+eefli5c/m3z3q90/ZXEsxlpznXX0ykRMrH0mnQYjotLrYIkMtOrprDMbTJgQAACbyjvWcM9GKQbizuKtFD/+mjQ5AAAAoCdWByJWAQAAgMdcZv8PAAAAj7n27wBu3Tw/3W5pf5HwYN04HhHjzfrb9zc3ZwZjpXEciaGI2PV3Fp23tWbNf3bfJopI3/1cLVr06T7kzaxciIjnNzr/WaP+8cZd3OvrzyNisgfxJ+4aP0r1H+tB/NT1A/BkunK8eSFbf/3L19Y/scH1b3CDa9e9SH39a6//bq9b/92pf6DL+u+9bcbY9++rV7vNda7/Tnz++0wRvzjeV1H/w40LEfsGN6o/W6s/61L/yW3GGJ2+fqnbXFF/UW+7Pej6Vy9H7I+N62/LNvv7RAdn52rVyeZjlxj7fzhxoFv8zvNftCJ+ey/wIBTnf1eX+rc6/+e2GWP8uT/3dpvbuv78j+Hsg0ZvuPXMJ5XFxYVDEcPZ2+ufP7x5Lu3XtN+jqP+Vlzb//79R/cV3wkrrcyj2Ahdax2J88a6Yo/sPf3vv9fdXUf/MPZ7/L7YZ45vvL33UbS51/QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8GvKIGIssL6/187xcjhiNiGdiV147W198bfbsx2dmirmI8RjKZ+dq1cmIKDXHWTE+1OjfGR++azwVEXsi4svSzsa4PH22NpO6eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANaMRsRYZHk5IvKI+KeU5+Vy6qwAAACAnhtPnQAAAADQd/b/AAAA8Piz/wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDP9rx45VoWEStHdzZaYbg1N5Q0M6Df8tQJAMkMpE4ASGYwdQJAMvb4QLbF/EjXmR09zwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAh9eBvVeuZRGxcnRnoxWGW3NDSTMD+i1PnQCQzEDqBIBkBlMnACRjjw9kW8yPdJ3Z0fNcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHh4jTValpcjIm/087xcjngqIsZjKJudq1UnI2J3RPxWGtpRjA+lThoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICeqy8tz1dqteqCjo6Ozlon9TcTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp1JeW5yu1WnWhnjoTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAILX60vJ8pVarLvSxk7pGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADS+S8AAP//szUGGQ==")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="180000000000003150ddecc508bb0d3d709e83", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000", @ANYRESOCT], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
ioctl$EXT4_IOC_GETFSUUID(r2, 0x8008662c, &(0x7f0000000200))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ftruncate(0xffffffffffffffff, 0x1f)
timer_create(0x9, 0x0, &(0x7f0000000400))
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r4, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

259.667901ms ago: executing program 8 (id=21769):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
connect$inet6(r1, &(0x7f00000003c0)={0xa, 0xfffe, 0x3000003, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r1, &(0x7f00000000c0)="8f2a0a65bd8c002b0304000e0580a7b6070d63e286a5cefe", 0x5ac)
socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x84}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4006, &(0x7f00000001c0)={[{@i_version}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x1, 0x443, &(0x7f0000001040)="$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")
r7 = inotify_init()
inotify_add_watch(r7, &(0x7f0000000000)='.\x00', 0x400017e)
pipe2$9p(&(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
r10 = creat(&(0x7f0000000080)='./bus\x00', 0x9)
write$P9_RVERSION(r9, &(0x7f0000000080)=ANY=[], 0x15)
splice(r8, 0x0, r10, 0x0, 0x15, 0x0)

208.826551ms ago: executing program 3 (id=21770):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = open(0x0, 0x1612c2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x4000000000010046)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})

85.26845ms ago: executing program 2 (id=21771):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r4, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0}, 0x18)
readlink(&(0x7f0000000cc0)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000dc0)=""/61, 0x3d)
r5 = socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r5, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)

0s ago: executing program 7 (id=21772):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
creat(&(0x7f0000000140)='./file2\x00', 0x1ad)
unlink(&(0x7f0000000000)='./file1\x00')

kernel console output (not intermixed with test programs):

 that may corrupt user memory!
[ 3068.954044][T29994] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3069.002868][   T28] audit: type=1326 audit(2000153858.006:16637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29993 comm="syz.7.20886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3069.105171][T30014] xt_TCPMSS: Only works on TCP SYN packets
[ 3069.291272][   T28] audit: type=1326 audit(2000153858.006:16638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29993 comm="syz.7.20886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f138dd85d63 code=0x7ffc0000
[ 3069.363546][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3069.911935][T30012] loop0: detected capacity change from 0 to 40427
[ 3069.918766][T30012] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 3069.926639][T30012] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 3069.935614][T30012] F2FS-fs (loop0): invalid crc value
[ 3069.993976][T30012] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 3070.001499][T30028] loop7: detected capacity change from 0 to 512
[ 3070.057111][T30028] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3070.072839][T30028] ext4 filesystem being mounted at /29/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3070.139124][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3070.151564][T30012] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 3070.170340][T30012] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 3070.221660][T12286] hid-generic 0000:3000000:0000.01AE: unknown main item tag 0x4
[ 3070.229811][T12286] hid-generic 0000:3000000:0000.01AE: unknown main item tag 0x2
[ 3070.238085][T12286] hid-generic 0000:3000000:0000.01AE: unknown main item tag 0x3
[ 3070.246170][T12286] hid-generic 0000:3000000:0000.01AE: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[ 3072.092163][T30056] device vlan2 entered promiscuous mode
[ 3073.131261][T30060] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3073.185769][T30064] fuse: Unknown parameter '0x000000000000000a'
[ 3073.251860][T30067] netlink: 12 bytes leftover after parsing attributes in process `syz.7.20905'.
[ 3073.256485][T30071] loop0: detected capacity change from 0 to 8192
[ 3073.273396][T30071] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 3073.382921][   T28] kauditd_printk_skb: 65 callbacks suppressed
[ 3073.382936][   T28] audit: type=1326 audit(2000153863.167:16704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30087 comm="syz.3.20912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3073.413399][   T28] audit: type=1326 audit(2000153863.167:16705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30087 comm="syz.3.20912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3073.476457][   T28] audit: type=1326 audit(2000153863.167:16706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30087 comm="syz.3.20912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3073.591853][   T28] audit: type=1400 audit(2000153863.355:16707): avc:  denied  { setopt } for  pid=30095 comm="syz.9.20916" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[ 3073.801296][T30094] loop3: detected capacity change from 0 to 40427
[ 3073.830339][T30094] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 3073.837974][T30094] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 3073.871628][T30110] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3074.035077][T30094] F2FS-fs (loop3): invalid crc value
[ 3074.153564][T30094] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 3074.192177][T30116] loop7: detected capacity change from 0 to 1024
[ 3074.297778][T30116] EXT4-fs: Ignoring removed orlov option
[ 3074.327318][T30094] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 3074.345535][T30116] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3074.354858][T30094] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 3074.958068][   T28] audit: type=1326 audit(2000153864.626:16708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30126 comm="syz.0.20926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ce5785d29 code=0x7ffc0000
[ 3074.982019][   T28] audit: type=1326 audit(2000153864.645:16709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30126 comm="syz.0.20926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ce5785d29 code=0x7ffc0000
[ 3075.009787][T30135] loop0: detected capacity change from 0 to 128
[ 3075.101107][T30140] loop0: detected capacity change from 0 to 8192
[ 3075.112128][T30140] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 3075.155268][   T28] audit: type=1326 audit(2000153864.813:16710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30146 comm="syz.3.20927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3075.214815][   T28] audit: type=1326 audit(2000153864.823:16711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30146 comm="syz.3.20927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3075.241650][T30149] Restarting kernel threads ... done.
[ 3075.299437][   T28] audit: type=1326 audit(2000153864.823:16712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30146 comm="syz.3.20927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3075.351801][   T28] audit: type=1326 audit(2000153864.860:16713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30146 comm="syz.3.20927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3075.464028][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3075.705582][T30166] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3076.470194][T30162] loop3: detected capacity change from 0 to 40427
[ 3076.503345][T30162] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 3076.527951][T30162] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 3076.555095][T30162] F2FS-fs (loop3): invalid crc value
[ 3076.585020][T30178] fuse: Bad value for 'fd'
[ 3076.591196][T30162] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 3076.635168][T30162] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 3076.642097][T30162] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 3077.559690][T30207] loop7: detected capacity change from 0 to 512
[ 3077.654559][T30207] EXT4-fs: Invalid want_extra_isize 6
[ 3077.682502][T30207] loop7: detected capacity change from 0 to 1024
[ 3077.707181][T30207] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3077.838058][T30213] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3077.845596][T30213] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3077.890321][T30213] device bridge_slave_0 entered promiscuous mode
[ 3077.900280][T30213] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3077.907382][T30213] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3077.926879][T30213] device bridge_slave_1 entered promiscuous mode
[ 3077.937572][T30224] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3078.499244][T17859] device bridge_slave_1 left promiscuous mode
[ 3078.514848][T17859] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3078.611400][T17859] device bridge_slave_0 left promiscuous mode
[ 3078.707981][T17859] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3078.802641][T17859] device veth1_macvtap left promiscuous mode
[ 3078.819499][T17859] device veth0_vlan left promiscuous mode
[ 3078.826329][   T28] kauditd_printk_skb: 88 callbacks suppressed
[ 3078.826345][   T28] audit: type=1326 audit(2000153868.254:16802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30232 comm="syz.8.20960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3078.934773][   T28] audit: type=1326 audit(2000153868.254:16803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30232 comm="syz.8.20960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3079.026496][   T28] audit: type=1326 audit(2000153868.254:16804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30232 comm="syz.8.20960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f85bcd85d63 code=0x7ffc0000
[ 3079.094082][   T28] audit: type=1326 audit(2000153868.254:16805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30232 comm="syz.8.20960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f85bcd85d63 code=0x7ffc0000
[ 3079.117752][   T28] audit: type=1326 audit(2000153868.254:16806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30232 comm="syz.8.20960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3079.154936][   T28] audit: type=1326 audit(2000153868.254:16807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30230 comm="syz.3.20959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3079.181079][   T28] audit: type=1326 audit(2000153868.254:16808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30230 comm="syz.3.20959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3079.279911][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3079.350318][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3079.418680][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3079.510382][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3079.660648][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3079.681707][T29999] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3079.688578][T29999] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3079.697565][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3079.763289][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3079.778079][T29999] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3079.784955][T29999] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3079.875136][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3079.890943][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3080.128550][T30256] loop3: detected capacity change from 0 to 512
[ 3083.277829][T30256] EXT4-fs: failed to create workqueue
[ 3083.283198][T30256] EXT4-fs (loop3): mount failed
[ 3083.394248][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3083.415861][T30213] device veth0_vlan entered promiscuous mode
[ 3083.476305][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3083.493371][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3083.508571][   T28] audit: type=1326 audit(2000153872.640:16809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30262 comm="syz.3.20967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3083.516575][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3083.540558][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3083.555003][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3083.558743][T30266] loop7: detected capacity change from 0 to 512
[ 3083.563090][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3083.578645][   T28] audit: type=1326 audit(2000153872.640:16810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30262 comm="syz.3.20967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3083.617283][T30266] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3083.667880][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3083.677454][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3083.705960][T30266] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3083.744739][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3083.752849][T29999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3083.769022][   T28] audit: type=1326 audit(2000153872.640:16811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30262 comm="syz.3.20967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3083.781138][T30266] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #2: comm syz.7.20968: corrupted inode contents
[ 3083.792941][T30273] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20969'.
[ 3083.813812][T30266] EXT4-fs error (device loop7): ext4_dirty_inode:6091: inode #2: comm syz.7.20968: mark_inode_dirty error
[ 3083.827538][T30213] device veth1_macvtap entered promiscuous mode
[ 3083.833839][T30266] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #2: comm syz.7.20968: corrupted inode contents
[ 3083.846011][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3083.854798][T30266] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #2: comm syz.7.20968: mark_inode_dirty error
[ 3083.865454][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3083.900543][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3083.917026][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3083.928294][T17859] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3083.945335][T30278] loop7: detected capacity change from 0 to 1024
[ 3083.946538][T17859] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3083.951853][T30278] EXT4-fs: Ignoring removed orlov option
[ 3083.985402][T30278] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3084.120268][T30283] loop3: detected capacity change from 0 to 512
[ 3084.181202][   T28] kauditd_printk_skb: 47 callbacks suppressed
[ 3084.181248][   T28] audit: type=1326 audit(2000153873.108:16859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30280 comm="syz.2.20952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3084.251029][T30283] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.20970: corrupted xattr block 95
[ 3084.264193][T30283] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.20970: bg 0: block 7: invalid block bitmap
[ 3084.278322][T30283] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3084.287419][T30283] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.20970: corrupted xattr block 95
[ 3084.301996][T30283] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[ 3084.311070][T30283] EXT4-fs (loop3): 1 orphan inode deleted
[ 3084.316661][T30283] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3084.640412][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3084.740910][   T28] audit: type=1326 audit(2000153873.257:16860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30280 comm="syz.2.20952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3084.899546][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3084.902300][   T28] audit: type=1326 audit(2000153873.257:16861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30280 comm="syz.2.20952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3084.962173][T30294] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 3085.029772][T30305] loop7: detected capacity change from 0 to 8192
[ 3085.037151][T30305] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 3085.407914][T30319] loop2: detected capacity change from 0 to 1024
[ 3085.453785][T30323] loop7: detected capacity change from 0 to 1024
[ 3085.460237][T30323] EXT4-fs: Ignoring removed orlov option
[ 3085.498673][T30319] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 3085.511443][T30319] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 3085.519288][T30323] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3085.538117][T30319] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 3085.556929][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3085.563345][T30319] EXT4-fs error (device loop2): ext4_dirty_inode:6091: inode #3: comm syz.2.20982: mark_inode_dirty error
[ 3085.576286][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3085.587828][T30319] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:477: comm syz.2.20982: Invalid block bitmap block 3 in block_group 0
[ 3085.608554][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3085.615338][T30319] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 3085.626144][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3085.635581][   T28] audit: type=1326 audit(2000153874.613:16862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30334 comm="syz.9.20989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3085.667870][T30319] EXT4-fs error (device loop2): ext4_dirty_inode:6091: inode #3: comm syz.2.20982: mark_inode_dirty error
[ 3085.679623][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3085.686210][   T28] audit: type=1326 audit(2000153874.613:16863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30334 comm="syz.9.20989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3085.709836][T30319] Quota error (device loop2): write_blk: dquota write failed
[ 3085.710146][   T28] audit: type=1326 audit(2000153874.613:16864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30334 comm="syz.9.20989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3085.742066][T30319] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 1: comm syz.2.20982: lblock 6 mapped to illegal pblock 1 (length 1)
[ 3085.756874][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3085.763265][T30319] Quota error (device loop2): write_blk: dquota write failed
[ 3085.790529][   T28] audit: type=1326 audit(2000153874.613:16865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30334 comm="syz.9.20989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3085.814458][   T28] audit: type=1326 audit(2000153874.613:16866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30334 comm="syz.9.20989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3085.816617][T30319] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 48: comm syz.2.20982: lblock 0 mapped to illegal pblock 48 (length 1)
[ 3085.860458][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3085.866925][T30319] EXT4-fs error (device loop2): ext4_acquire_dquot:6788: comm syz.2.20982: Failed to acquire dquot type 0
[ 3086.004999][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3086.087197][T30319] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 49: comm syz.2.20982: lblock 1 mapped to illegal pblock 49 (length 1)
[ 3086.143536][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3086.158885][T30319] EXT4-fs error (device loop2): ext4_acquire_dquot:6788: comm syz.2.20982: Failed to acquire dquot type 0
[ 3086.178648][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3086.185444][T30319] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 3086.205832][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3086.216789][T30319] EXT4-fs error (device loop2): ext4_evict_inode:279: inode #15: comm syz.2.20982: mark_inode_dirty error
[ 3086.228217][T30319] EXT4-fs (loop2): Remounting filesystem read-only
[ 3086.234732][T30319] EXT4-fs warning (device loop2): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[ 3086.244853][T30319] EXT4-fs (loop2): 1 orphan inode deleted
[ 3086.250623][T30319] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3086.293219][T30357] loop3: detected capacity change from 0 to 512
[ 3086.311905][T30357] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 3086.337698][T30357] EXT4-fs (loop3): 1 orphan inode deleted
[ 3086.355045][T30357] EXT4-fs (loop3): 1 truncate cleaned up
[ 3086.360699][T30357] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3086.361591][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3086.378984][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3086.517947][T30365] device pim6reg1 entered promiscuous mode
[ 3086.561535][T30367] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.3.20996: path /196/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[ 3086.656811][T30367] EXT4-fs (loop3): Remounting filesystem read-only
[ 3086.858629][T30372] loop7: detected capacity change from 0 to 512
[ 3086.876626][T30372] EXT4-fs: Invalid want_extra_isize 6
[ 3086.992490][T30372] loop7: detected capacity change from 0 to 1024
[ 3087.161946][T30372] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3087.470868][T30384] loop2: detected capacity change from 0 to 256
[ 3087.483488][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3087.571524][T30392] netlink: 8 bytes leftover after parsing attributes in process `syz.2.21008'.
[ 3087.580451][T30392] netlink: 4 bytes leftover after parsing attributes in process `syz.2.21008'.
[ 3087.597017][T30392] device wireguard0 entered promiscuous mode
[ 3087.644744][T30395] loop2: detected capacity change from 0 to 2048
[ 3087.674128][T30395] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3087.777880][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3087.983658][T30408] netlink: 'syz.7.21012': attribute type 3 has an invalid length.
[ 3088.218490][T30417] loop7: detected capacity change from 0 to 512
[ 3088.236742][T30417] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 3088.340198][T30420] loop3: detected capacity change from 0 to 512
[ 3088.365654][T30417] EXT4-fs (loop7): 1 orphan inode deleted
[ 3088.371234][T30417] EXT4-fs (loop7): 1 truncate cleaned up
[ 3088.378984][T30417] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3088.587697][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3089.675893][T30423] EXT4-fs error (device loop7): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.7.21017: path /49/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[ 3089.691060][T30429] loop2: detected capacity change from 0 to 1024
[ 3089.828796][T30423] EXT4-fs (loop7): Remounting filesystem read-only
[ 3090.040613][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3090.047773][T30420] __quota_error: 50 callbacks suppressed
[ 3090.047790][T30420] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[ 3090.063581][T30420] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[ 3090.072733][T30420] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.21015: Failed to acquire dquot type 0
[ 3090.084155][T30420] EXT4-fs (loop3): Remounting filesystem read-only
[ 3090.086423][T30437] syz.9.21022[30437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3090.090625][T30420] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[ 3090.096791][T30437] syz.9.21022[30437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3090.101990][T30420] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[ 3090.115098][T30429] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3090.123439][T30420] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.21015: Failed to acquire dquot type 0
[ 3090.136889][T30429] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3090.162273][T30420] EXT4-fs (loop3): Remounting filesystem read-only
[ 3090.170729][   T28] audit: type=1326 audit(2000153878.849:16913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30440 comm="syz.9.21023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3090.200367][   T28] audit: type=1326 audit(2000153878.849:16914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30440 comm="syz.9.21023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3090.200596][T30420] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[ 3090.224418][   T28] audit: type=1326 audit(2000153878.849:16915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30440 comm="syz.9.21023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3090.234424][T30420] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[ 3090.259015][   T28] audit: type=1326 audit(2000153878.849:16916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30440 comm="syz.9.21023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3090.268554][T30420] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.21015: Failed to acquire dquot type 0
[ 3090.308868][T30420] EXT4-fs (loop3): Remounting filesystem read-only
[ 3090.315257][T30420] EXT4-fs (loop3): 1 orphan inode deleted
[ 3090.321066][T30420] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3090.329791][T30420] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3090.353309][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3092.084331][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3092.133351][T30454] loop7: detected capacity change from 0 to 512
[ 3092.176253][T30467] loop3: detected capacity change from 0 to 256
[ 3092.253997][T30454] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3092.266348][T30454] ext4 filesystem being mounted at /51/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3093.024273][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3094.061962][T30505] loop7: detected capacity change from 0 to 256
[ 3094.137338][T29755] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[ 3094.543670][T29755] usb 4-1: Using ep0 maxpacket: 8
[ 3094.613709][T29755] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 3094.640871][T29755] usb 4-1: config 9 has an invalid interface number: 112 but max is 0
[ 3095.278538][T29755] usb 4-1: config 9 has no interface number 0
[ 3095.286702][T29755] usb 4-1: config 9 interface 112 has no altsetting 0
[ 3095.314194][T29755] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice= 8.d3
[ 3095.386526][T29755] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3095.417367][T29755] usb 4-1: Product: syz
[ 3095.428117][T29755] usb 4-1: Manufacturer: syz
[ 3095.437914][   T28] kauditd_printk_skb: 74 callbacks suppressed
[ 3095.437929][   T28] audit: type=1326 audit(2000153883.786:16991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30516 comm="syz.9.21049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3095.478735][T29755] usb 4-1: SerialNumber: syz
[ 3095.622067][   T28] audit: type=1326 audit(2000153883.814:16992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30516 comm="syz.9.21049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3095.697915][   T28] audit: type=1326 audit(2000153883.814:16993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30516 comm="syz.9.21049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3095.728816][T29755] r8152-cfgselector 4-1: Unknown version 0x0000
[ 3095.740502][T29755] r8152-cfgselector 4-1: Unknown version 0x0000
[ 3095.754075][   T28] audit: type=1326 audit(2000153883.814:16994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30516 comm="syz.9.21049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3095.772934][T29755] r8152-cfgselector 4-1: USB disconnect, device number 63
[ 3095.788962][T30523] loop7: detected capacity change from 0 to 512
[ 3095.809418][T30523] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2186: inode #15: comm syz.7.21051: corrupted in-inode xattr
[ 3095.821536][T30523] EXT4-fs error (device loop7): ext4_orphan_get:1405: comm syz.7.21051: couldn't read orphan inode 15 (err -117)
[ 3095.838774][T30523] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3095.860489][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3095.915139][T30535] loop7: detected capacity change from 0 to 512
[ 3095.936327][T30535] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3095.945661][T30535] ext4 filesystem being mounted at /56/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3096.265553][   T28] audit: type=1326 audit(2000153884.525:16995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30539 comm="syz.2.21057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3096.302165][   T28] audit: type=1326 audit(2000153884.535:16996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30539 comm="syz.2.21057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3096.311833][T30540] loop2: detected capacity change from 0 to 512
[ 3096.325851][   T28] audit: type=1326 audit(2000153884.535:16997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30539 comm="syz.2.21057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3096.355545][   T28] audit: type=1326 audit(2000153884.535:16998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30539 comm="syz.2.21057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3096.379438][   T28] audit: type=1326 audit(2000153884.535:16999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30539 comm="syz.2.21057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3096.403584][   T28] audit: type=1326 audit(2000153884.544:17000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30539 comm="syz.2.21057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3096.413967][T30540] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3096.436081][T30540] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3096.490184][T30550] loop3: detected capacity change from 0 to 128
[ 3096.531546][T30560] futex_wake_op: syz.9.21065 tries to shift op by 32; fix this program
[ 3096.552977][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3096.749116][T30582] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3096.756189][T30582] IPv6: NLM_F_CREATE should be set when creating new route
[ 3096.788178][T30582] loop2: detected capacity change from 0 to 512
[ 3096.894025][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3096.936113][T30582] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.2.21067: corrupted xattr block 95
[ 3096.949160][T30582] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.21067: bg 0: block 7: invalid block bitmap
[ 3096.962496][T30582] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3096.971871][T30582] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2925: inode #11: comm syz.2.21067: corrupted xattr block 95
[ 3096.984689][T30582] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117)
[ 3096.993638][T30582] EXT4-fs (loop2): 1 orphan inode deleted
[ 3096.999148][T30582] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3097.086739][T30560] device wireguard0 entered promiscuous mode
[ 3097.621462][T30595] loop7: detected capacity change from 0 to 512
[ 3097.671735][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3097.679308][T30595] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3097.680714][T30603] netlink: 12 bytes leftover after parsing attributes in process `syz.9.21081'.
[ 3097.694336][T30595] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3098.166050][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3098.207773][T30629] 9pnet: Could not find request transport: fd0x0000000000000003
[ 3098.321541][T28015] usb 3-1: new high-speed USB device number 124 using dummy_hcd
[ 3098.556179][T28015] usb 3-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[ 3098.556236][T28015] usb 3-1: config 17 has 0 interfaces, different from the descriptor's value: 1
[ 3098.556290][T28015] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[ 3098.556341][T28015] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3099.330581][T30666] loop3: detected capacity change from 0 to 1024
[ 3099.364964][T30666] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3099.402081][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3099.436592][T30674] loop3: detected capacity change from 0 to 128
[ 3099.546589][T30683] loop3: detected capacity change from 0 to 128
[ 3099.556992][T30683] syz.3.21111: attempt to access beyond end of device
[ 3099.556992][T30683] loop3: rw=2049, sector=145, nr_sectors = 3 limit=128
[ 3099.572974][T30683] syz.3.21111: attempt to access beyond end of device
[ 3099.572974][T30683] loop3: rw=0, sector=97, nr_sectors = 32 limit=128
[ 3099.635133][T30683] syz.3.21111: attempt to access beyond end of device
[ 3099.635133][T30683] loop3: rw=0, sector=145, nr_sectors = 3 limit=128
[ 3100.051724][T30690] loop3: detected capacity change from 0 to 512
[ 3100.064474][T30690] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 3100.085398][T30690] EXT4-fs (loop3): 1 orphan inode deleted
[ 3100.091181][T30690] EXT4-fs (loop3): 1 truncate cleaned up
[ 3100.096814][T30690] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3100.263542][T30693] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.3.21113: path /223/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[ 3100.285768][T30693] EXT4-fs (loop3): Remounting filesystem read-only
[ 3100.802224][T30699] loop7: detected capacity change from 0 to 2048
[ 3100.853756][T30699]  loop7: p1 < > p4
[ 3100.870095][T30699] loop7: p4 size 8388608 extends beyond EOD, truncated
[ 3100.961062][  T103]  loop7: p1 < > p4
[ 3100.966405][  T103] loop7: p4 size 8388608 extends beyond EOD, truncated
[ 3101.017996][   T28] kauditd_printk_skb: 196 callbacks suppressed
[ 3101.018014][   T28] audit: type=1326 audit(2000153889.004:17197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3101.052126][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3101.064492][T27845] udevd[27845]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[ 3101.075099][T27842] udevd[27842]: inotify_add_watch(7, /dev/loop7p4, 10) failed: No such file or directory
[ 3101.091327][T30711] loop7: detected capacity change from 0 to 512
[ 3101.126517][   T28] audit: type=1326 audit(2000153889.070:17198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3101.128585][T30713] loop3: detected capacity change from 0 to 512
[ 3101.176248][   T28] audit: type=1326 audit(2000153889.070:17199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3101.200406][   T28] audit: type=1326 audit(2000153889.070:17200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3101.202421][T28015] usb 3-1: USB disconnect, device number 124
[ 3101.231028][T30711] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3101.233246][   T28] audit: type=1326 audit(2000153889.079:17201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3101.254207][T30711] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3101.267764][T30713] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 3101.327406][   T28] audit: type=1326 audit(2000153889.079:17202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3101.348336][T30713] EXT4-fs (loop3): 1 truncate cleaned up
[ 3101.353517][   T28] audit: type=1326 audit(2000153889.079:17203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f138dd85d63 code=0x7ffc0000
[ 3101.363112][T30713] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3101.385817][   T28] audit: type=1326 audit(2000153889.079:17204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f138dd847df code=0x7ffc0000
[ 3101.415109][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3101.452438][   T28] audit: type=1326 audit(2000153889.079:17205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f138dd85db7 code=0x7ffc0000
[ 3101.482623][T30720] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3101.506095][T30720] loop2: detected capacity change from 0 to 512
[ 3101.592607][   T28] audit: type=1326 audit(2000153889.079:17206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30710 comm="syz.7.21119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f138dd84690 code=0x7ffc0000
[ 3101.826649][T30720] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.2.21121: corrupted xattr block 95
[ 3101.840253][T30720] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.21121: bg 0: block 7: invalid block bitmap
[ 3102.096288][T30720] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3102.105545][T30720] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2925: inode #11: comm syz.2.21121: corrupted xattr block 95
[ 3102.118456][T30720] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117)
[ 3102.127488][T30720] EXT4-fs (loop2): 1 orphan inode deleted
[ 3102.133090][T30720] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3102.398532][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3102.405942][T30733] loop7: detected capacity change from 0 to 512
[ 3102.445121][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3102.452466][T30733] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3102.463324][T30733] ext4 filesystem being mounted at /69/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3102.485394][T30741] loop2: detected capacity change from 0 to 256
[ 3103.409795][T30746] loop3: detected capacity change from 0 to 256
[ 3103.476703][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3103.770291][T30758] tipc: Started in network mode
[ 3103.775156][T30758] tipc: Node identity ac14140f, cluster identity 4711
[ 3103.796788][T30758] tipc: New replicast peer: 10.1.1.2
[ 3103.801979][T30758] tipc: Enabled bearer <udp:syz2>, priority 10
[ 3103.875603][T30762] loop2: detected capacity change from 0 to 512
[ 3103.900859][T30762] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 3103.934518][T30762] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.21136: invalid block
[ 3103.968934][T30762] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.21136: invalid indirect mapped block 4294967295 (level 1)
[ 3104.018059][T30762] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.21136: invalid indirect mapped block 4294967295 (level 1)
[ 3104.057600][T30762] EXT4-fs (loop2): 2 truncates cleaned up
[ 3104.079456][T30762] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3104.167486][T30762] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.21136: bg 0: block 5: invalid block bitmap
[ 3104.187179][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3104.371785][T30779] loop2: detected capacity change from 0 to 512
[ 3104.504819][T30779] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3104.514873][T30779] ext4 filesystem being mounted at /21/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3104.655172][T30798] 9pnet_fd: Insufficient options for proto=fd
[ 3105.172632][  T328] tipc: Node number set to 2886997007
[ 3105.362802][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3105.492379][T30812] loop3: detected capacity change from 0 to 256
[ 3105.681142][T30819] loop3: detected capacity change from 0 to 40427
[ 3105.695210][T30819] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 3105.703073][T30819] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 3105.712178][T30819] F2FS-fs (loop3): invalid crc value
[ 3105.718622][T30819] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 3105.760857][T30819] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 3105.767809][T30819] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 3106.571128][T30864] loop2: detected capacity change from 0 to 128
[ 3106.633223][   T28] kauditd_printk_skb: 46 callbacks suppressed
[ 3106.633281][   T28] audit: type=1326 audit(2000153894.260:17253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30868 comm="syz.2.21175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3106.641115][T30873] loop3: detected capacity change from 0 to 2048
[ 3106.669968][   T28] audit: type=1326 audit(2000153894.288:17254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30868 comm="syz.2.21175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3106.694361][   T28] audit: type=1326 audit(2000153894.288:17255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30868 comm="syz.2.21175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3106.718220][   T28] audit: type=1326 audit(2000153894.288:17256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30868 comm="syz.2.21175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3106.721100][T30873] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3106.742342][   T28] audit: type=1326 audit(2000153894.288:17257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30868 comm="syz.2.21175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3106.777991][   T28] audit: type=1326 audit(2000153894.372:17258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30877 comm="syz.8.21178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3106.788532][T30880] loop2: detected capacity change from 0 to 128
[ 3106.802009][   T28] audit: type=1326 audit(2000153894.372:17259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30877 comm="syz.8.21178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3106.837480][   T28] audit: type=1326 audit(2000153894.372:17260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30877 comm="syz.8.21178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3106.841639][T30883] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[ 3106.870000][   T28] audit: type=1326 audit(2000153894.372:17261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30877 comm="syz.8.21178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3106.878941][T30873] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[ 3106.907958][T30873] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 32 with max blocks 1 with error 28
[ 3106.920185][   T28] audit: type=1326 audit(2000153894.372:17262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30877 comm="syz.8.21178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3106.928012][T30873] EXT4-fs (loop3): This should not happen!! Data will be lost
[ 3106.928012][T30873] 
[ 3106.944123][T30883] SELinux: failed to load policy
[ 3106.953480][T30873] EXT4-fs (loop3): Total free blocks count 0
[ 3106.964573][T30873] EXT4-fs (loop3): Free/Dirty block details
[ 3106.965676][T30880] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3106.971684][T30873] EXT4-fs (loop3): free_blocks=4096
[ 3106.985366][T30888] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 28
[ 3106.997641][T30873] EXT4-fs (loop3): dirty_blocks=32
[ 3106.997813][T30880] ext4 filesystem being mounted at /26/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 3107.002648][T30873] EXT4-fs (loop3): Block reservation details
[ 3107.034471][T30888] EXT4-fs (loop3): This should not happen!! Data will be lost
[ 3107.034471][T30888] 
[ 3107.128158][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3107.243256][T30912] loop3: detected capacity change from 0 to 256
[ 3108.288116][T30973] xt_TCPMSS: Only works on TCP SYN packets
[ 3109.144931][T30977] loop3: detected capacity change from 0 to 40427
[ 3109.161069][T30977] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 3109.168843][T30977] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 3109.178082][T30977] F2FS-fs (loop3): invalid crc value
[ 3109.184640][T30977] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 3109.224380][T30977] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 3109.231439][T30977] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 3109.256378][T30987] sit: Src spoofed 0.0.127.0/2002::bfd8:a5dd -> 224.0.0.1/2002:c021:42c4:3911:45ba:dd28:fd7f:ffc
[ 3109.329104][T31000] netlink: 12 bytes leftover after parsing attributes in process `syz.9.21229'.
[ 3109.339496][T30996] 9pnet_fd: Insufficient options for proto=fd
[ 3109.958861][T31020] xt_TCPMSS: Only works on TCP SYN packets
[ 3110.398277][T31029] netlink: 76 bytes leftover after parsing attributes in process `syz.2.21241'.
[ 3110.487416][T31035] loop3: detected capacity change from 0 to 2048
[ 3110.510822][T31039] loop2: detected capacity change from 0 to 512
[ 3110.539661][T31041] xt_hashlimit: size too large, truncated to 1048576
[ 3110.549904][T31035] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3110.559140][T31039] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3110.581408][T31039] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3110.593317][T31035] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 3110.780421][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3110.827476][T31054] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 3110.887091][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3110.961227][T31065] loop2: detected capacity change from 0 to 2048
[ 3110.981151][T31061] loop3: detected capacity change from 0 to 8192
[ 3111.007675][T31065] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3111.028503][T31061]  loop3: p1 p2 < > p3 p4 < p5 >
[ 3111.037077][T31061] loop3: p1 size 108986237 extends beyond EOD, truncated
[ 3111.045761][T31061] loop3: p3 size 131072 extends beyond EOD, truncated
[ 3111.053400][T31061] loop3: p5 size 108986237 extends beyond EOD, truncated
[ 3111.065100][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3111.123247][T31080] udevd[31080]: inotify_add_watch(7, /dev/loop3p5, 10) failed: No such file or directory
[ 3111.137671][T31085] netlink: 12 bytes leftover after parsing attributes in process `syz.3.21263'.
[ 3111.214314][T31089] xt_TCPMSS: Only works on TCP SYN packets
[ 3111.233736][T27845] udevd[27845]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[ 3112.178334][T31113] loop3: detected capacity change from 0 to 512
[ 3112.325520][   T28] kauditd_printk_skb: 124 callbacks suppressed
[ 3112.325543][   T28] audit: type=1326 audit(2000153899.580:17387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3112.691850][T31113] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.21270: corrupted xattr block 95
[ 3112.705444][T31113] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.21270: bg 0: block 7: invalid block bitmap
[ 3112.719313][T31113] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3112.729063][T31113] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.21270: corrupted xattr block 95
[ 3112.742152][T31113] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[ 3112.751245][T31113] EXT4-fs (loop3): 1 orphan inode deleted
[ 3112.756898][T31113] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3112.813901][   T28] audit: type=1326 audit(2000153899.908:17388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3113.199501][   T28] audit: type=1326 audit(2000153899.908:17389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3113.312428][   T28] audit: type=1326 audit(2000153899.917:17390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3113.356697][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3113.406857][   T28] audit: type=1326 audit(2000153900.020:17391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3113.434927][T31125] loop7: detected capacity change from 0 to 2048
[ 3113.446883][   T28] audit: type=1326 audit(2000153900.020:17392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3113.486709][   T28] audit: type=1326 audit(2000153900.038:17393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3113.493658][T31131] loop2: detected capacity change from 0 to 1024
[ 3113.526158][   T28] audit: type=1326 audit(2000153900.038:17394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3113.550727][   T28] audit: type=1326 audit(2000153900.038:17395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3113.576531][T31125] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 3113.585158][T31131] EXT4-fs: Ignoring removed orlov option
[ 3113.607262][T31131] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3113.612880][   T28] audit: type=1326 audit(2000153900.038:17396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31117 comm="syz.8.21275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3113.711856][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3113.744837][T31152] loop2: detected capacity change from 0 to 512
[ 3113.857225][T29755] usb 9-1: new high-speed USB device number 58 using dummy_hcd
[ 3113.947783][T31152] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3113.972769][T31152] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3114.038885][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3114.159538][T31168] loop2: detected capacity change from 0 to 2048
[ 3114.185314][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3114.189136][T29755] usb 9-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[ 3114.201230][T31168] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3114.210201][T29755] usb 9-1: too many endpoints for config 17 interface 0 altsetting 255: 255, using maximum allowed: 30
[ 3114.454333][T31172] loop3: detected capacity change from 0 to 512
[ 3114.462456][T29755] usb 9-1: config 17 interface 0 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 3114.476832][T29755] usb 9-1: config 17 interface 0 has no altsetting 0
[ 3114.484140][T29755] usb 9-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[ 3115.247840][T29755] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3115.314601][T31172] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.21290: corrupted xattr block 95
[ 3115.327370][T31172] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.21290: bg 0: block 7: invalid block bitmap
[ 3115.340302][T31172] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3115.349066][T31172] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.21290: corrupted xattr block 95
[ 3115.439419][T31172] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[ 3115.448375][T31172] EXT4-fs (loop3): 1 orphan inode deleted
[ 3115.453913][T31172] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3115.474175][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3115.479234][T29755] aiptek 9-1:17.0: interface has no int in endpoints, but must have minimum 1
[ 3115.567476][T31190] loop2: detected capacity change from 0 to 1024
[ 3115.573966][T31190] EXT4-fs: Ignoring removed orlov option
[ 3115.575160][T31188] loop7: detected capacity change from 0 to 128
[ 3115.602518][T31190] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3115.872884][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3116.069673][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3116.120582][T31202] loop2: detected capacity change from 0 to 512
[ 3116.148228][T31202] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3116.162617][T31202] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3116.183758][T31212] loop3: detected capacity change from 0 to 2048
[ 3116.190609][T31212] EXT4-fs: Ignoring removed mblk_io_submit option
[ 3116.206691][T31212] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3116.301205][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3116.552293][T31227] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3116.615716][T31227] loop2: detected capacity change from 0 to 512
[ 3120.402367][T31227] EXT4-fs: failed to create workqueue
[ 3120.407621][T31227] EXT4-fs (loop2): mount failed
[ 3120.417225][T31417] usb 9-1: USB disconnect, device number 58
[ 3120.524271][T31241] loop2: detected capacity change from 0 to 128
[ 3120.837163][   T28] kauditd_printk_skb: 122 callbacks suppressed
[ 3120.837185][   T28] audit: type=1326 audit(2000153907.538:17519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3120.915202][   T28] audit: type=1326 audit(2000153907.566:17520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3120.989983][   T28] audit: type=1326 audit(2000153907.566:17521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3121.054226][   T28] audit: type=1326 audit(2000153907.566:17522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3121.126405][   T28] audit: type=1326 audit(2000153907.566:17523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3121.171862][T31121] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[ 3122.056740][T31121] EXT4-fs (loop3): Remounting filesystem read-only
[ 3122.088656][   T28] audit: type=1326 audit(2000153908.707:17524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31255 comm="syz.2.21317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3122.245881][   T28] audit: type=1326 audit(2000153908.735:17525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31255 comm="syz.2.21317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3122.339178][   T28] audit: type=1326 audit(2000153908.735:17526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31255 comm="syz.2.21317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3122.454978][   T28] audit: type=1326 audit(2000153908.735:17527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31255 comm="syz.2.21317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3122.573753][   T28] audit: type=1326 audit(2000153908.735:17528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31255 comm="syz.2.21317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3123.221754][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3123.288232][T31270] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3123.343969][T31263] 9pnet: Could not find request transport: rdma
[ 3123.469338][T31272] loop7: detected capacity change from 0 to 256
[ 3124.098406][T31274] loop7: detected capacity change from 0 to 128
[ 3124.158869][T31276] 9pnet: Could not find request transport: xen
[ 3124.168901][T31278] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 3124.217637][T31282] bridge0: port 3(vlan2) entered blocking state
[ 3124.231323][T31282] bridge0: port 3(vlan2) entered disabled state
[ 3124.399560][T30301] usb 3-1: new high-speed USB device number 125 using dummy_hcd
[ 3124.831628][T31301] loop3: detected capacity change from 0 to 256
[ 3124.883816][T30301] usb 3-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[ 3124.897320][T30301] usb 3-1: too many endpoints for config 17 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 3124.920663][T30301] usb 3-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 3124.937184][T30301] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[ 3124.946052][T30301] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3124.968716][T30301] aiptek 3-1:17.0: interface has no int in endpoints, but must have minimum 1
[ 3125.001537][T31303] loop3: detected capacity change from 0 to 128
[ 3125.312844][T31327] loop3: detected capacity change from 0 to 512
[ 3125.558659][T31327] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.21341: corrupted xattr block 95
[ 3125.571994][T31327] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.21341: bg 0: block 7: invalid block bitmap
[ 3125.934620][T31327] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3125.944472][T31327] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.21341: corrupted xattr block 95
[ 3125.957445][T31327] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[ 3125.966611][T31327] EXT4-fs (loop3): 1 orphan inode deleted
[ 3125.972211][T31327] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3126.062594][T31331] loop7: detected capacity change from 0 to 128
[ 3126.610786][   T28] kauditd_printk_skb: 67 callbacks suppressed
[ 3126.610802][   T28] audit: type=1326 audit(2000153912.934:17596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31326 comm="syz.8.21348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3126.612048][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3126.617079][   T28] audit: type=1326 audit(2000153912.943:17597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31326 comm="syz.8.21348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3126.744787][T31356] loop7: detected capacity change from 0 to 256
[ 3127.155146][T31231] usb 3-1: USB disconnect, device number 125
[ 3128.313436][   T28] audit: type=1326 audit(2000153914.523:17598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31385 comm="syz.9.21368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3128.337107][   T28] audit: type=1326 audit(2000153914.523:17599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31385 comm="syz.9.21368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3128.435853][T31388] loop3: detected capacity change from 0 to 512
[ 3128.467541][   T28] audit: type=1326 audit(2000153914.523:17600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31385 comm="syz.9.21368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3128.533919][T31388] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.21365: corrupted xattr block 95
[ 3128.547138][T31388] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.21365: bg 0: block 7: invalid block bitmap
[ 3128.561243][T31388] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3128.570165][T31231] usb 3-1: new high-speed USB device number 126 using dummy_hcd
[ 3128.578582][T31388] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.21365: corrupted xattr block 95
[ 3128.591534][T31388] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[ 3128.600581][T31388] EXT4-fs (loop3): 1 orphan inode deleted
[ 3128.606204][T31388] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3128.771467][   T28] audit: type=1326 audit(2000153914.523:17601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31385 comm="syz.9.21368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3128.892899][   T28] audit: type=1326 audit(2000153914.523:17602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31385 comm="syz.9.21368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3128.917004][T31231] usb 3-1: Using ep0 maxpacket: 16
[ 3128.922867][T31231] usb 3-1: no configurations
[ 3128.942892][T31231] usb 3-1: can't read configurations, error -22
[ 3129.026117][   T28] audit: type=1326 audit(2000153914.523:17603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31385 comm="syz.9.21368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3129.128354][T31231] usb 3-1: new high-speed USB device number 127 using dummy_hcd
[ 3129.188322][   T28] audit: type=1326 audit(2000153914.523:17604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31385 comm="syz.9.21368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9100185d63 code=0x7ffc0000
[ 3129.235286][   T28] audit: type=1326 audit(2000153914.533:17605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31385 comm="syz.9.21368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f91001847df code=0x7ffc0000
[ 3129.311870][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3129.395515][T31231] usb 3-1: Using ep0 maxpacket: 16
[ 3129.401114][T31231] usb 3-1: no configurations
[ 3129.407133][T31231] usb 3-1: can't read configurations, error -22
[ 3129.413342][T31231] usb usb3-port1: attempt power cycle
[ 3129.509430][T31411] loop3: detected capacity change from 0 to 1024
[ 3129.515888][T31411] EXT4-fs: Ignoring removed orlov option
[ 3129.527647][T31411] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3130.060222][T31420] 9pnet: Could not find request transport: rdma
[ 3130.069375][T31231] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[ 3130.149051][T31231] usb 3-1: Using ep0 maxpacket: 16
[ 3130.155897][T31231] usb 3-1: no configurations
[ 3130.160400][T31231] usb 3-1: can't read configurations, error -22
[ 3130.270036][T31424] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3130.277107][T31424] IPv6: NLM_F_CREATE should be set when creating new route
[ 3130.324418][T31424] loop7: detected capacity change from 0 to 512
[ 3130.570576][T31231] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[ 3130.725800][T31424] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.7.21380: corrupted xattr block 95
[ 3130.739065][T31424] EXT4-fs error (device loop7): ext4_validate_block_bitmap:429: comm syz.7.21380: bg 0: block 7: invalid block bitmap
[ 3130.752219][T31424] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3130.761856][T31424] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2925: inode #11: comm syz.7.21380: corrupted xattr block 95
[ 3130.774372][T31424] EXT4-fs warning (device loop7): ext4_evict_inode:299: xattr delete (err -117)
[ 3130.783581][T31424] EXT4-fs (loop7): 1 orphan inode deleted
[ 3130.789191][T31424] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 3131.449650][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3131.453869][T31231] usb 3-1: device descriptor read/8, error -71
[ 3131.457235][T31435] loop2: detected capacity change from 0 to 512
[ 3131.468922][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3131.529740][T31438] loop7: detected capacity change from 0 to 4096
[ 3131.536232][T31438] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 3131.546851][T31435] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3131.547334][T31441] loop3: detected capacity change from 0 to 256
[ 3131.556290][T31435] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3131.565916][T31438] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3131.606709][T31438] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #15: comm syz.7.21386: corrupted inode contents
[ 3131.622205][T31231] usb 3-1: device descriptor read/8, error -71
[ 3131.642031][T31438] EXT4-fs error (device loop7): ext4_dirty_inode:6091: inode #15: comm syz.7.21386: mark_inode_dirty error
[ 3131.653792][T31438] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #15: comm syz.7.21386: corrupted inode contents
[ 3131.670106][T31438] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #15: comm syz.7.21386: mark_inode_dirty error
[ 3131.683035][T31438] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #15: comm syz.7.21386: corrupted inode contents
[ 3131.703636][T31438] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #15: comm syz.7.21386: mark_inode_dirty error
[ 3131.715519][T31438] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #15: comm syz.7.21386: corrupted inode contents
[ 3131.718252][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3131.738173][T31438] EXT4-fs error (device loop7): ext4_truncate:4313: inode #15: comm syz.7.21386: mark_inode_dirty error
[ 3131.752106][T31438] EXT4-fs error (device loop7) in ext4_setattr:5630: Corrupt filesystem
[ 3131.803853][T31231] usb usb3-port1: unable to enumerate USB device
[ 3131.830246][T31450] loop3: detected capacity change from 0 to 128
[ 3132.077746][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3132.108155][   T28] kauditd_printk_skb: 92 callbacks suppressed
[ 3132.108180][   T28] audit: type=1326 audit(2000153918.077:17698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3132.272123][   T28] audit: type=1326 audit(2000153918.123:17699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3132.328032][   T28] audit: type=1326 audit(2000153918.133:17700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3132.755527][   T28] audit: type=1326 audit(2000153918.133:17701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3132.849143][T31466] block device autoloading is deprecated and will be removed.
[ 3132.867086][   T28] audit: type=1326 audit(2000153918.133:17702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3132.891996][   T28] audit: type=1326 audit(2000153918.133:17703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3132.917360][   T28] audit: type=1326 audit(2000153918.133:17704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3132.942125][   T28] audit: type=1326 audit(2000153918.133:17705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3132.965806][   T28] audit: type=1326 audit(2000153918.142:17706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3132.989761][   T28] audit: type=1326 audit(2000153918.142:17707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31456 comm="syz.2.21391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f916cb85d29 code=0x7ffc0000
[ 3133.047247][T31467] loop7: detected capacity change from 0 to 1024
[ 3133.056364][T31467] EXT4-fs: Ignoring removed orlov option
[ 3133.109551][T31477] loop2: detected capacity change from 0 to 256
[ 3133.117796][T31467] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3133.222019][T31486] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3134.005479][T31494] futex_wake_op: syz.8.21405 tries to shift op by 32; fix this program
[ 3134.032750][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3134.273007][T31516] loop7: detected capacity change from 0 to 512
[ 3134.398859][T31516] EXT4-fs error (device loop7): ext4_acquire_dquot:6788: comm syz.7.21407: Failed to acquire dquot type 0
[ 3134.410858][T31516] EXT4-fs (loop7): Remounting filesystem read-only
[ 3134.417461][T31516] EXT4-fs error (device loop7): ext4_acquire_dquot:6788: comm syz.7.21407: Failed to acquire dquot type 0
[ 3134.430459][T31516] EXT4-fs (loop7): Remounting filesystem read-only
[ 3134.438656][T31516] EXT4-fs error (device loop7): ext4_acquire_dquot:6788: comm syz.7.21407: Failed to acquire dquot type 0
[ 3134.450828][T31516] EXT4-fs (loop7): Remounting filesystem read-only
[ 3134.457419][T31516] EXT4-fs (loop7): 1 orphan inode deleted
[ 3134.463001][T31516] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3134.472033][T31516] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3134.544241][T31517] device wireguard0 entered promiscuous mode
[ 3135.379235][T31536] loop3: detected capacity change from 0 to 256
[ 3139.796506][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3139.843622][T27384] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[ 3139.906573][T31547] loop7: detected capacity change from 0 to 1024
[ 3139.915448][T31547] EXT4-fs: Ignoring removed orlov option
[ 3140.063921][T31551] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3140.924163][T31547] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3141.169289][T31564] loop2: detected capacity change from 0 to 256
[ 3141.193497][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3142.072678][T31583] loop2: detected capacity change from 0 to 1024
[ 3142.244645][T28154] device bridge_slave_1 left promiscuous mode
[ 3142.253434][T31587] serio: Serial port pts0
[ 3142.261554][T28154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3142.279717][T28154] device bridge_slave_0 left promiscuous mode
[ 3142.296800][T31583] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3142.321088][T28154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3142.346948][T28154] device veth1_macvtap left promiscuous mode
[ 3142.360689][T28154] device veth0_vlan left promiscuous mode
[ 3142.489968][T31597] syz.3.21434[31597] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3142.490046][T31597] syz.3.21434[31597] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3142.589789][T31583] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[ 3142.616285][T31583] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28
[ 3142.628489][T31583] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 3142.628489][T31583] 
[ 3143.158384][T31583] EXT4-fs (loop2): Total free blocks count 0
[ 3143.169145][T31583] EXT4-fs (loop2): Free/Dirty block details
[ 3143.833338][T31612] loop7: detected capacity change from 0 to 512
[ 3144.123684][T31583] EXT4-fs (loop2): free_blocks=68451041280
[ 3144.129515][T31583] EXT4-fs (loop2): dirty_blocks=16
[ 3144.134408][T31583] EXT4-fs (loop2): Block reservation details
[ 3144.140274][T31583] EXT4-fs (loop2): i_reserved_data_blocks=1
[ 3144.148956][T31612] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.7.21439: corrupted xattr block 95
[ 3144.161996][T31612] EXT4-fs error (device loop7): ext4_validate_block_bitmap:429: comm syz.7.21439: bg 0: block 7: invalid block bitmap
[ 3144.174298][T31612] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3146.144322][T31612] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2925: inode #11: comm syz.7.21439: corrupted xattr block 95
[ 3146.157120][T31612] EXT4-fs warning (device loop7): ext4_evict_inode:299: xattr delete (err -117)
[ 3146.166036][T31612] EXT4-fs (loop7): 1 orphan inode deleted
[ 3146.171535][T31612] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 3146.290128][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3146.390471][T31628] netlink: 24 bytes leftover after parsing attributes in process `syz.8.21443'.
[ 3146.390628][T31600] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3146.406488][T31610] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3146.822530][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3146.949506][   T28] kauditd_printk_skb: 90 callbacks suppressed
[ 3146.949523][   T28] audit: type=1326 audit(2000153931.953:17792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3146.978982][   T28] audit: type=1326 audit(2000153931.953:17793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3147.002885][   T28] audit: type=1326 audit(2000153931.953:17794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3147.027172][   T28] audit: type=1326 audit(2000153931.953:17795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3147.051122][   T28] audit: type=1326 audit(2000153931.953:17796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3147.088070][   T28] audit: type=1326 audit(2000153931.953:17797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3147.111958][   T28] audit: type=1326 audit(2000153931.953:17798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3147.135802][   T28] audit: type=1326 audit(2000153931.953:17799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3147.164937][   T28] audit: type=1326 audit(2000153931.953:17800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3147.190075][   T28] audit: type=1326 audit(2000153932.028:17801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31637 comm="syz.9.21448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3147.297675][T31649] serio: Serial port pts0
[ 3147.324869][T31651] loop3: detected capacity change from 0 to 256
[ 3147.340643][T31647] loop7: detected capacity change from 0 to 512
[ 3147.503677][T31647] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3147.513033][T31647] ext4 filesystem being mounted at /114/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3147.614517][T31665] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3147.624274][T31665] loop2: detected capacity change from 0 to 512
[ 3147.968575][T31665] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.2.21455: corrupted xattr block 95
[ 3147.983947][T31665] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.21455: bg 0: block 7: invalid block bitmap
[ 3147.996872][T31665] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3148.006208][T31665] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2925: inode #11: comm syz.2.21455: corrupted xattr block 95
[ 3148.019182][T31665] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117)
[ 3148.028288][T31665] EXT4-fs (loop2): 1 orphan inode deleted
[ 3148.033892][T31665] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3148.452807][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3148.678548][T28154] device bridge_slave_1 left promiscuous mode
[ 3148.684506][T28154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3148.709809][T28154] device bridge_slave_0 left promiscuous mode
[ 3148.726610][T28154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3148.754833][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3148.760731][T28154] device veth1_macvtap left promiscuous mode
[ 3148.768064][T28154] device veth0_vlan left promiscuous mode
[ 3148.787340][T31694] loop7: detected capacity change from 0 to 512
[ 3148.830801][T31694] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3148.873519][T31705] loop3: detected capacity change from 0 to 128
[ 3148.874707][T31694] ext4 filesystem being mounted at /115/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3148.933448][T31705] syz.3.21470: attempt to access beyond end of device
[ 3148.933448][T31705] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128
[ 3148.975325][T31705] syz.3.21470: attempt to access beyond end of device
[ 3148.975325][T31705] loop3: rw=524288, sector=145, nr_sectors = 224 limit=128
[ 3149.025599][T31705] syz.3.21470: attempt to access beyond end of device
[ 3149.025599][T31705] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 3149.060603][T31705] syz.3.21470: attempt to access beyond end of device
[ 3149.060603][T31705] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 3149.218214][T31705] syz.3.21470: attempt to access beyond end of device
[ 3149.218214][T31705] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 3149.307923][T31705] syz.3.21470: attempt to access beyond end of device
[ 3149.307923][T31705] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 3149.353534][T31705] syz.3.21470: attempt to access beyond end of device
[ 3149.353534][T31705] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 3149.391455][T31705] syz.3.21470: attempt to access beyond end of device
[ 3149.391455][T31705] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 3149.407140][T31703] netlink: 'syz.2.21471': attribute type 13 has an invalid length.
[ 3149.417985][T31705] syz.3.21470: attempt to access beyond end of device
[ 3149.417985][T31705] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 3149.434280][T31703] gretap0: refused to change device tx_queue_len
[ 3149.442680][T31705] syz.3.21470: attempt to access beyond end of device
[ 3149.442680][T31705] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 3149.443783][T31703] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 3149.518482][T31711] loop3: detected capacity change from 0 to 512
[ 3149.541471][T31711] EXT4-fs: Ignoring removed bh option
[ 3149.558230][T31711] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 3149.610745][T31711] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3149.626443][T31711] ext4 filesystem being mounted at /300/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3149.689545][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3149.697103][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3151.660952][T31729] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3151.888204][T31729] loop2: detected capacity change from 0 to 512
[ 3152.031728][T31729] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.2.21478: corrupted xattr block 95
[ 3152.044779][T31729] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.21478: bg 0: block 7: invalid block bitmap
[ 3152.058726][T31729] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3152.067721][T31729] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2925: inode #11: comm syz.2.21478: corrupted xattr block 95
[ 3152.080405][T31729] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117)
[ 3152.089431][T31729] EXT4-fs (loop2): 1 orphan inode deleted
[ 3152.095021][T31729] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3152.301741][T31735] loop7: detected capacity change from 0 to 256
[ 3152.526374][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3152.586967][T31741] loop7: detected capacity change from 0 to 1024
[ 3152.678245][T31743] loop2: detected capacity change from 0 to 8192
[ 3152.685789][T31743] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 3152.697615][T31741] __quota_error: 7 callbacks suppressed
[ 3152.697631][T31741] Quota error (device loop7): do_check_range: Getting block 64 out of range 1-5
[ 3152.772075][T31753] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3152.816152][T31741] Quota error (device loop7): qtree_read_dquot: Can't read quota structure for id 0
[ 3152.877121][T31741] EXT4-fs error (device loop7): ext4_acquire_dquot:6788: comm syz.7.21484: Failed to acquire dquot type 0
[ 3153.087635][T31741] EXT4-fs error (device loop7): mb_free_blocks:1815: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[ 3153.320157][T31741] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #13: comm syz.7.21484: corrupted inode contents
[ 3153.361811][T31760] IPv6: NLM_F_CREATE should be specified when creating new route
[ 3153.447032][T31741] EXT4-fs error (device loop7): ext4_dirty_inode:6091: inode #13: comm syz.7.21484: mark_inode_dirty error
[ 3153.649984][T31741] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #13: comm syz.7.21484: corrupted inode contents
[ 3153.681123][T31741] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #13: comm syz.7.21484: mark_inode_dirty error
[ 3153.692792][T31741] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #13: comm syz.7.21484: corrupted inode contents
[ 3153.705410][T31741] EXT4-fs error (device loop7) in ext4_orphan_del:305: Corrupt filesystem
[ 3153.714691][T31741] EXT4-fs error (device loop7): ext4_do_update_inode:5226: inode #13: comm syz.7.21484: corrupted inode contents
[ 3153.727196][T31741] EXT4-fs error (device loop7): ext4_truncate:4313: inode #13: comm syz.7.21484: mark_inode_dirty error
[ 3153.738923][T31741] EXT4-fs error (device loop7) in ext4_process_orphan:347: Corrupt filesystem
[ 3153.791598][T31741] EXT4-fs (loop7): 1 truncate cleaned up
[ 3153.797080][T31741] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3153.826659][T31741] EXT4-fs (loop7): re-mounted. Quota mode: writeback.
[ 3153.854737][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3154.068986][T31772] loop7: detected capacity change from 0 to 512
[ 3154.107091][T31772] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3154.120313][T31772] ext4 filesystem being mounted at /119/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3154.237431][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3154.339781][T31784] loop7: detected capacity change from 0 to 2048
[ 3154.386947][T31784] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 3154.399630][T31791] loop3: detected capacity change from 0 to 512
[ 3154.498894][T31791] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3154.516196][T31791] ext4 filesystem being mounted at /309/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3155.738616][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3155.750424][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3155.774951][T31810] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3156.525018][T31816] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3156.534662][T31816] loop2: detected capacity change from 0 to 512
[ 3156.623676][T31816] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.2.21507: corrupted xattr block 95
[ 3156.636770][T31816] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.21507: bg 0: block 7: invalid block bitmap
[ 3156.649921][T31816] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3156.659621][T31816] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2925: inode #11: comm syz.2.21507: corrupted xattr block 95
[ 3156.672437][T31816] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117)
[ 3156.681733][T31816] EXT4-fs (loop2): 1 orphan inode deleted
[ 3156.687401][T31816] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3156.943714][T31819] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 3157.000453][   T28] audit: type=1326 audit(2000153941.351:17809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31824 comm="syz.7.21504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3157.050928][   T28] audit: type=1326 audit(2000153941.351:17810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31824 comm="syz.7.21504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3157.203106][T31836] serio: Serial port pts0
[ 3157.278174][   T28] audit: type=1326 audit(2000153941.351:17811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31824 comm="syz.7.21504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3157.329493][   T28] audit: type=1326 audit(2000153941.351:17812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31824 comm="syz.7.21504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3157.371153][   T28] audit: type=1326 audit(2000153941.351:17813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31824 comm="syz.7.21504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3157.399255][T31845] tipc: Started in network mode
[ 3157.404022][T31845] tipc: Node identity 7e6a50815be6, cluster identity 4711
[ 3157.411084][T31845] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[ 3157.418254][T31845] ªªªªªª: renamed from syzkaller0
[ 3157.425036][   T28] audit: type=1326 audit(2000153941.389:17814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31824 comm="syz.7.21504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3157.448767][   T28] audit: type=1326 audit(2000153941.389:17815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31824 comm="syz.7.21504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3157.449226][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3157.472597][   T28] audit: type=1326 audit(2000153941.389:17816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31827 comm="syz.9.21510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3157.478325][T31845] tipc: Disabling bearer <eth:syzkaller0>
[ 3157.576909][T31852] loop7: detected capacity change from 0 to 512
[ 3157.651603][T31852] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3157.660574][T31852] ext4 filesystem being mounted at /123/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3158.558837][T31862] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3159.262752][T31862] loop2: detected capacity change from 0 to 512
[ 3159.358043][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3159.448922][T31862] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.2.21519: corrupted xattr block 95
[ 3159.462041][T31862] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.21519: bg 0: block 7: invalid block bitmap
[ 3159.475878][T31862] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3159.485067][T31862] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2925: inode #11: comm syz.2.21519: corrupted xattr block 95
[ 3159.497628][T31862] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117)
[ 3159.506805][T31862] EXT4-fs (loop2): 1 orphan inode deleted
[ 3159.512409][T31862] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3159.751519][T31417] kernel write not supported for file bpf-prog (pid: 31417 comm: kworker/1:13)
[ 3159.782022][   T28] kauditd_printk_skb: 120 callbacks suppressed
[ 3159.782040][   T28] audit: type=1326 audit(2000153943.960:17937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31867 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3159.918046][   T28] audit: type=1326 audit(2000153943.960:17938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31867 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3159.942282][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3159.948282][   T28] audit: type=1326 audit(2000153943.988:17939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31867 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3159.972457][   T28] audit: type=1326 audit(2000153943.998:17940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31867 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f85bcd85d29 code=0x7ffc0000
[ 3159.997571][   T28] audit: type=1326 audit(2000153943.998:17941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31867 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f85bcd85d63 code=0x7ffc0000
[ 3160.257435][T31887] loop3: detected capacity change from 0 to 512
[ 3160.319746][T31885] loop7: detected capacity change from 0 to 512
[ 3160.380891][   T28] audit: type=1326 audit(2000153943.998:17942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31867 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f85bcd847df code=0x7ffc0000
[ 3160.434009][T31887] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.21528: corrupted xattr block 95
[ 3160.447263][T31887] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.21528: bg 0: block 7: invalid block bitmap
[ 3160.460851][T31887] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3160.470189][T31887] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.21528: corrupted xattr block 95
[ 3160.483179][T31887] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[ 3160.492235][T31887] EXT4-fs (loop3): 1 orphan inode deleted
[ 3160.497870][T31887] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3160.628856][T31885] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 3160.848614][T31885] EXT4-fs (loop7): 1 truncate cleaned up
[ 3160.868376][T31885] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 3160.880984][   T28] audit: type=1326 audit(2000153943.998:17943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31874 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f85bcdb85e5 code=0x7ffc0000
[ 3160.957726][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3160.973976][   T28] audit: type=1326 audit(2000153943.998:17944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31867 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f85bcd85db7 code=0x7ffc0000
[ 3161.007713][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3161.092771][T31904] serio: Serial port pts0
[ 3161.103395][   T28] audit: type=1326 audit(2000153943.998:17945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31867 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f85bcd84690 code=0x7ffc0000
[ 3161.160071][   T28] audit: type=1326 audit(2000153943.998:17946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31867 comm="syz.8.21522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f85bcd8498a code=0x7ffc0000
[ 3161.190016][T31912] 9p: Unknown access argument vŸÔYË-=Y1<í².ÕÌŒ%qLÚG=§Ç•–·8yIó-.+&€„s: -22
[ 3161.414968][T31927] loop3: detected capacity change from 0 to 512
[ 3162.680591][T31927] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.21540: corrupted xattr block 95
[ 3162.693244][T31927] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.21540: bg 0: block 7: invalid block bitmap
[ 3162.707205][T31927] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3162.715876][T31927] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.21540: corrupted xattr block 95
[ 3162.735042][T31927] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[ 3162.744112][T31927] EXT4-fs (loop3): 1 orphan inode deleted
[ 3162.749689][T31927] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3162.802692][T31943] netlink: 4 bytes leftover after parsing attributes in process `syz.7.21548'.
[ 3165.474272][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3166.163076][T31962] loop7: detected capacity change from 0 to 512
[ 3166.223959][T31962] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3166.267788][T31962] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3166.527584][   T28] kauditd_printk_skb: 49 callbacks suppressed
[ 3166.527599][   T28] audit: type=1326 audit(2000153950.263:17996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3166.589500][   T28] audit: type=1326 audit(2000153950.300:17997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3166.613536][   T28] audit: type=1326 audit(2000153950.300:17998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3166.670828][   T28] audit: type=1326 audit(2000153950.300:17999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3166.699584][   T28] audit: type=1326 audit(2000153950.300:18000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3166.769897][   T28] audit: type=1326 audit(2000153950.300:18001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3166.804540][T31989] netlink: 76 bytes leftover after parsing attributes in process `syz.8.21561'.
[ 3166.846019][   T28] audit: type=1326 audit(2000153950.300:18002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3166.888937][   T28] audit: type=1326 audit(2000153950.300:18003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3166.931306][T31988] loop3: detected capacity change from 0 to 2048
[ 3166.958581][   T28] audit: type=1326 audit(2000153950.300:18004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3167.026266][T31988] Alternate GPT is invalid, using primary GPT.
[ 3167.071477][T31993] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3167.117339][T31988]  loop3: p2 p3 p7
[ 3167.204535][   T28] audit: type=1326 audit(2000153950.300:18005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31972 comm="syz.9.21556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9100185d29 code=0x7ffc0000
[ 3167.856089][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3167.937092][T31998] syz.3.21563[31998] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3167.937166][T31998] syz.3.21563[31998] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3167.961850][T31998] loop3: detected capacity change from 0 to 128
[ 3168.058980][T32010] loop2: detected capacity change from 0 to 2048
[ 3168.092940][T32016] loop3: detected capacity change from 0 to 1024
[ 3168.102216][T32016] EXT4-fs: Ignoring removed orlov option
[ 3168.134841][T32010] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3168.143528][T32016] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3168.759562][T32047] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3169.202440][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3169.574674][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3169.665115][T32053] syz.7.21583[32053] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3169.665219][T32053] syz.7.21583[32053] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3169.942092][T32065] loop3: detected capacity change from 0 to 512
[ 3169.983892][T32065] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 3170.003711][T32065] EXT4-fs (loop3): 1 truncate cleaned up
[ 3170.009610][T32065] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3170.026112][T32069] loop7: detected capacity change from 0 to 2048
[ 3170.084536][T32069] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 3170.101748][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3170.186306][T32082] netlink: 16 bytes leftover after parsing attributes in process `syz.9.21596'.
[ 3170.195258][T32082] IPv6: NLM_F_CREATE should be specified when creating new route
[ 3170.585406][T32098] loop2: detected capacity change from 0 to 128
[ 3170.591854][T32098] EXT4-fs: Ignoring removed nobh option
[ 3170.608258][T32098] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3170.618365][T32098] ext4 filesystem being mounted at /98/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3170.660176][T32101] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3171.109302][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3171.732677][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3171.772448][T32120] loop3: detected capacity change from 0 to 512
[ 3171.805413][T32120] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[ 3171.817194][T32120] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[ 3171.835599][T32120] EXT4-fs (loop3): 1 truncate cleaned up
[ 3171.852123][T32120] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3171.930938][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3171.994216][T32137] netlink: 'syz.3.21612': attribute type 12 has an invalid length.
[ 3172.161097][   T28] kauditd_printk_skb: 115 callbacks suppressed
[ 3172.161116][   T28] audit: type=1326 audit(2000153955.527:18121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32138 comm="syz.7.21614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3172.222094][   T28] audit: type=1326 audit(2000153955.527:18122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32138 comm="syz.7.21614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3172.330654][T32144] loop3: detected capacity change from 0 to 512
[ 3172.505071][T32144] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.21615: corrupted xattr block 95
[ 3172.518402][T32144] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.21615: bg 0: block 7: invalid block bitmap
[ 3172.532037][T32144] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3172.541760][T32144] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.21615: corrupted xattr block 95
[ 3172.554817][T32144] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[ 3172.563884][T32144] EXT4-fs (loop3): 1 orphan inode deleted
[ 3172.569515][T32144] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3173.268911][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3173.271905][T32156] loop7: detected capacity change from 0 to 2048
[ 3173.327561][T32156]  loop7: p1 < > p4
[ 3173.334563][T32156] loop7: p4 size 8388608 extends beyond EOD, truncated
[ 3173.380431][  T103]  loop7: p1 < > p4
[ 3173.412850][  T103] loop7: p4 size 8388608 extends beyond EOD, truncated
[ 3173.470680][  T103]  loop7: p1 < > p4
[ 3173.483157][  T103] loop7: p4 size 8388608 extends beyond EOD, truncated
[ 3173.554041][T27845] udevd[27845]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[ 3173.595966][T32169] loop3: detected capacity change from 0 to 512
[ 3173.623838][T27842] udevd[27842]: inotify_add_watch(7, /dev/loop7p4, 10) failed: No such file or directory
[ 3173.794352][T32169] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.21621: corrupted xattr block 95
[ 3173.807405][T32169] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.21621: bg 0: block 7: invalid block bitmap
[ 3173.820579][T32169] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3173.829606][T32169] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.21621: corrupted xattr block 95
[ 3173.842586][T32169] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[ 3173.851643][T32169] EXT4-fs (loop3): 1 orphan inode deleted
[ 3173.857249][T32169] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3174.326406][T32179] loop7: detected capacity change from 0 to 512
[ 3174.365447][T32179] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3174.385073][T32179] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3174.460571][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3174.463718][T32176] fuse: Unknown parameter 'group_id00000000000000000000'
[ 3174.577616][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3174.615768][   T28] audit: type=1326 audit(2000153957.828:18123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32186 comm="syz.3.21629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3174.637558][T32200] loop2: detected capacity change from 0 to 2048
[ 3174.644057][   T28] audit: type=1326 audit(2000153957.828:18124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32186 comm="syz.3.21629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c7185d29 code=0x7ffc0000
[ 3174.818771][T32200] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3177.071110][T32217] loop7: detected capacity change from 0 to 128
[ 3177.621216][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3177.680036][T32227] fuse: Unknown parameter 'group_id00000000000000000000'
[ 3177.758659][T32232] xt_TCPMSS: Only works on TCP SYN packets
[ 3177.857172][   T28] audit: type=1326 audit(2000153960.857:18125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3178.138556][   T28] audit: type=1326 audit(2000153960.904:18126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3178.385634][   T28] audit: type=1326 audit(2000153960.923:18127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3178.420770][   T28] audit: type=1326 audit(2000153960.942:18128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3178.444418][   T28] audit: type=1326 audit(2000153961.381:18129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3178.895107][   T28] audit: type=1326 audit(2000153961.409:18130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3179.618557][T32263] loop3: detected capacity change from 0 to 512
[ 3179.667558][T32263] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3179.676485][T32263] ext4 filesystem being mounted at /342/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3179.732135][   T28] audit: type=1326 audit(2000153961.409:18131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3179.762232][T32269] fuse: Unknown parameter 'group_id00000000000000000000'
[ 3179.770361][   T28] audit: type=1326 audit(2000153961.409:18132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3179.794268][   T28] audit: type=1326 audit(2000153961.409:18133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3179.843604][   T28] audit: type=1326 audit(2000153961.409:18134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32228 comm="syz.7.21646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3179.902435][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3179.999138][T32283] 9pnet: Could not find request transport: 0xffffffffffffffff
[ 3180.096953][T32297] loop3: detected capacity change from 0 to 4096
[ 3180.174734][T32297] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3180.297241][T32303] loop2: detected capacity change from 0 to 256
[ 3181.161439][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3181.367076][T32310] fuse: Bad value for 'user_id'
[ 3183.369004][T32344] fuse: Bad value for 'user_id'
[ 3183.450246][   T28] kauditd_printk_skb: 88 callbacks suppressed
[ 3183.450262][   T28] audit: type=1400 audit(2000153966.085:18223): avc:  denied  { read } for  pid=32335 comm="syz.8.21687" path="socket:[276498]" dev="sockfs" ino=276498 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[ 3183.479818][   T28] audit: type=1326 audit(2000153966.085:18224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32335 comm="syz.8.21687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7fc00000
[ 3183.511088][   T28] audit: type=1326 audit(2000153966.113:18225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32335 comm="syz.8.21687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f85bcd85d29 code=0x7fc00000
[ 3183.542269][   T28] audit: type=1326 audit(2000153966.113:18226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32335 comm="syz.8.21687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7fc00000
[ 3183.566729][   T28] audit: type=1326 audit(2000153966.113:18227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32335 comm="syz.8.21687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7fc00000
[ 3183.594961][   T28] audit: type=1326 audit(2000153966.113:18228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32335 comm="syz.8.21687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7fc00000
[ 3183.618737][   T28] audit: type=1326 audit(2000153966.113:18229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32335 comm="syz.8.21687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7fc00000
[ 3183.650109][   T28] audit: type=1326 audit(2000153966.113:18230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32335 comm="syz.8.21687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7fc00000
[ 3183.673916][   T28] audit: type=1326 audit(2000153966.113:18231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32335 comm="syz.8.21687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7fc00000
[ 3183.699125][   T28] audit: type=1326 audit(2000153966.113:18232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32335 comm="syz.8.21687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bcd85d29 code=0x7fc00000
[ 3183.783049][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x4
[ 3183.792121][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x2
[ 3183.806819][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.825120][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.826446][T32354] loop3: detected capacity change from 0 to 40427
[ 3183.835893][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.846711][T32354] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 3183.847870][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.860723][T32354] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 3183.863258][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.878121][T32354] F2FS-fs (loop3): invalid crc value
[ 3183.883663][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.891154][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.898883][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.906389][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.914141][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.921795][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.929387][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.930378][T32354] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 3183.936913][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.950514][T18480] hid-generic 0000:3000000:0000.01AF: unknown main item tag 0x0
[ 3183.959437][T18480] hid-generic 0000:3000000:0000.01AF: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[ 3184.004046][T32354] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 3184.018720][T32354] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 3184.467667][T32393] fuse: Bad value for 'user_id'
[ 3184.513311][T32395] loop2: detected capacity change from 0 to 4096
[ 3184.540265][T32395] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3184.575213][T32401] loop3: detected capacity change from 0 to 4096
[ 3184.650631][T32401] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 3185.078112][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3185.099342][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3186.226633][T32445] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3186.325976][T32445] loop7: detected capacity change from 0 to 512
[ 3186.517509][T32445] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.7.21721: corrupted xattr block 95
[ 3186.530236][T32445] EXT4-fs error (device loop7): ext4_validate_block_bitmap:429: comm syz.7.21721: bg 0: block 7: invalid block bitmap
[ 3186.542923][T32445] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3186.551957][T32445] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2925: inode #11: comm syz.7.21721: corrupted xattr block 95
[ 3186.564445][T32445] EXT4-fs warning (device loop7): ext4_evict_inode:299: xattr delete (err -117)
[ 3186.573385][T32445] EXT4-fs (loop7): 1 orphan inode deleted
[ 3186.578908][T32445] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 3186.635006][T32458] syz.2.21728[32458] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3186.635125][T32458] syz.2.21728[32458] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3186.747094][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3186.747717][T32461] loop2: detected capacity change from 0 to 2048
[ 3186.783801][T32461] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 3187.074860][T32478] loop3: detected capacity change from 0 to 2048
[ 3187.262744][T32478] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 3188.329885][T32506] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 3188.352108][T32506] loop7: detected capacity change from 0 to 512
[ 3188.388218][T32506] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.7.21743: corrupted xattr block 95
[ 3188.401377][T32506] EXT4-fs error (device loop7): ext4_validate_block_bitmap:429: comm syz.7.21743: bg 0: block 7: invalid block bitmap
[ 3188.417836][T32506] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 3188.428409][T32506] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2925: inode #11: comm syz.7.21743: corrupted xattr block 95
[ 3188.441756][T32506] EXT4-fs warning (device loop7): ext4_evict_inode:299: xattr delete (err -117)
[ 3188.450856][T32506] EXT4-fs (loop7): 1 orphan inode deleted
[ 3188.456449][T32506] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 3188.753780][T26800] EXT4-fs (loop3): unmounting filesystem.
[ 3188.765417][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3189.035467][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3189.129658][T32521] random: crng reseeded on system resumption
[ 3189.182733][   T28] kauditd_printk_skb: 205 callbacks suppressed
[ 3189.182748][   T28] audit: type=1326 audit(2000153971.443:18438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32518 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3189.228810][T32522] loop7: detected capacity change from 0 to 512
[ 3189.235531][T32522] EXT4-fs: Ignoring removed i_version option
[ 3189.250524][T32522] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 3189.261000][   T28] audit: type=1326 audit(2000153971.443:18439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32518 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3189.308865][   T28] audit: type=1326 audit(2000153971.443:18440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32518 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3189.347550][T32522] EXT4-fs (loop7): 1 truncate cleaned up
[ 3189.353035][T32522] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3189.377297][   T28] audit: type=1326 audit(2000153971.443:18441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32518 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3189.412444][   T28] audit: type=1326 audit(2000153971.443:18442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32524 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f138ddb85e5 code=0x7ffc0000
[ 3189.442524][   T28] audit: type=1326 audit(2000153971.480:18443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32518 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f138dd85d29 code=0x7ffc0000
[ 3189.466369][   T28] audit: type=1326 audit(2000153971.480:18444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32518 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f138dd85d63 code=0x7ffc0000
[ 3189.490071][   T28] audit: type=1326 audit(2000153971.480:18445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32518 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f138dd847df code=0x7ffc0000
[ 3189.524026][   T28] audit: type=1326 audit(2000153971.480:18446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32518 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f138dd85db7 code=0x7ffc0000
[ 3189.547841][   T28] audit: type=1326 audit(2000153971.480:18447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32518 comm="syz.7.21748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f138dd84690 code=0x7ffc0000
[ 3189.997489][T29514] EXT4-fs (loop7): unmounting filesystem.
[ 3190.237990][T32565] loop2: detected capacity change from 0 to 512
[ 3190.261036][T32565] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 3190.270864][T32565] ext4 filesystem being mounted at /132/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3190.403090][T30213] EXT4-fs (loop2): unmounting filesystem.
[ 3191.973158][T32594] loop7: detected capacity change from 0 to 512
[ 3191.993677][T32594] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 3192.020782][T32594] EXT4-fs (loop7): 1 truncate cleaned up
[ 3192.028608][T32594] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 3192.055207][T32594] ==================================================================
[ 3192.063098][T32594] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x909/0x1fa0
[ 3192.070646][T32594] Read of size 18446744073709551572 at addr ffff88812db03050 by task syz.7.21772/32594
[ 3192.080103][T32594] 
[ 3192.082274][T32594] CPU: 0 PID: 32594 Comm: syz.7.21772 Tainted: G        W          6.1.118-syzkaller-00073-ge50cf165f4e7 #0
[ 3192.093558][T32594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 3192.103453][T32594] Call Trace:
[ 3192.106577][T32594]  <TASK>
[ 3192.109358][T32594]  dump_stack_lvl+0x151/0x1b7
[ 3192.113867][T32594]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[ 3192.119164][T32594]  ? _printk+0xd1/0x111
[ 3192.123156][T32594]  ? __virt_addr_valid+0x242/0x2f0
[ 3192.128103][T32594]  print_report+0x158/0x4e0
[ 3192.132447][T32594]  ? __virt_addr_valid+0x242/0x2f0
[ 3192.137389][T32594]  ? kasan_complete_mode_report_info+0x57/0x1b0
[ 3192.143462][T32594]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 3192.148758][T32594]  kasan_report+0x13c/0x170
[ 3192.153096][T32594]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 3192.158394][T32594]  kasan_check_range+0x294/0x2a0
[ 3192.163171][T32594]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 3192.168462][T32594]  memmove+0x2d/0x70
[ 3192.172194][T32594]  ext4_xattr_set_entry+0x909/0x1fa0
[ 3192.177317][T32594]  ? ext4_xattr_inode_lookup_create+0x1a60/0x1a60
[ 3192.183562][T32594]  ? memcpy+0x56/0x70
[ 3192.187380][T32594]  ext4_xattr_block_set+0x99c/0x37f0
[ 3192.192505][T32594]  ? ext4_drop_inode+0x90/0x1a0
[ 3192.197196][T32594]  ? __getblk_gfp+0x3d/0x7d0
[ 3192.201619][T32594]  ? ext4_xattr_block_find+0x320/0x320
[ 3192.206911][T32594]  ? xattr_find_entry+0x23c/0x300
[ 3192.211773][T32594]  ? ext4_xattr_block_find+0x2ac/0x320
[ 3192.217068][T32594]  ext4_expand_extra_isize_ea+0x10eb/0x1c40
[ 3192.222799][T32594]  ? ext4_xattr_set+0x3d0/0x3d0
[ 3192.227480][T32594]  ? rwsem_write_trylock+0x153/0x340
[ 3192.232600][T32594]  ? dquot_initialize_needed+0x13d/0x370
[ 3192.238071][T32594]  __ext4_expand_extra_isize+0x31a/0x420
[ 3192.243539][T32594]  __ext4_mark_inode_dirty+0x4bb/0x7d0
[ 3192.248834][T32594]  ? sb_end_intwrite+0x130/0x130
[ 3192.253607][T32594]  ? current_time+0x1ba/0x300
[ 3192.258119][T32594]  ? atime_needs_update+0x810/0x810
[ 3192.263154][T32594]  ? __kasan_check_write+0x14/0x20
[ 3192.268099][T32594]  ? drop_nlink+0xa9/0x110
[ 3192.272352][T32594]  __ext4_unlink+0x6ed/0xba0
[ 3192.276781][T32594]  ? __ext4_read_dirblock+0x8e0/0x8e0
[ 3192.281991][T32594]  ? rwsem_mark_wake+0x770/0x770
[ 3192.286761][T32594]  ext4_unlink+0x142/0x3f0
[ 3192.291014][T32594]  vfs_unlink+0x38c/0x630
[ 3192.295182][T32594]  do_unlinkat+0x483/0x920
[ 3192.299436][T32594]  ? fsnotify_link_count+0x100/0x100
[ 3192.304553][T32594]  ? strncpy_from_user+0x169/0x2b0
[ 3192.309501][T32594]  ? getname_flags+0x1fd/0x520
[ 3192.314104][T32594]  __x64_sys_unlink+0x49/0x50
[ 3192.318614][T32594]  x64_sys_call+0x289/0x9a0
[ 3192.322953][T32594]  do_syscall_64+0x3b/0xb0
[ 3192.327204][T32594]  ? clear_bhb_loop+0x55/0xb0
[ 3192.331720][T32594]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 3192.337445][T32594] RIP: 0033:0x7f138dd85d29
[ 3192.341705][T32594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3192.361144][T32594] RSP: 002b:00007f138eafa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 3192.369389][T32594] RAX: ffffffffffffffda RBX: 00007f138df75fa0 RCX: 00007f138dd85d29
[ 3192.377200][T32594] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[ 3192.385011][T32594] RBP: 00007f138de01a20 R08: 0000000000000000 R09: 0000000000000000
[ 3192.392823][T32594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3192.400635][T32594] R13: 0000000000000000 R14: 00007f138df75fa0 R15: 00007ffd3c994da8
[ 3192.408452][T32594]  </TASK>
[ 3192.411311][T32594] 
[ 3192.413478][T32594] Allocated by task 32594:
[ 3192.417732][T32594]  kasan_set_track+0x4b/0x70
[ 3192.422158][T32594]  kasan_save_alloc_info+0x1f/0x30
[ 3192.427108][T32594]  __kasan_kmalloc+0x9c/0xb0
[ 3192.431535][T32594]  __kmalloc_node_track_caller+0xb3/0x1e0
[ 3192.437086][T32594]  kmemdup+0x29/0x60
[ 3192.440821][T32594]  ext4_xattr_block_set+0x80f/0x37f0
[ 3192.445940][T32594]  ext4_expand_extra_isize_ea+0x10eb/0x1c40
[ 3192.451669][T32594]  __ext4_expand_extra_isize+0x31a/0x420
[ 3192.457136][T32594]  __ext4_mark_inode_dirty+0x4bb/0x7d0
[ 3192.462430][T32594]  __ext4_unlink+0x6ed/0xba0
[ 3192.466857][T32594]  ext4_unlink+0x142/0x3f0
[ 3192.471110][T32594]  vfs_unlink+0x38c/0x630
[ 3192.475275][T32594]  do_unlinkat+0x483/0x920
[ 3192.479530][T32594]  __x64_sys_unlink+0x49/0x50
[ 3192.484042][T32594]  x64_sys_call+0x289/0x9a0
[ 3192.488380][T32594]  do_syscall_64+0x3b/0xb0
[ 3192.492636][T32594]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 3192.498362][T32594] 
[ 3192.500533][T32594] Last potentially related work creation:
[ 3192.506091][T32594]  kasan_save_stack+0x3b/0x60
[ 3192.510601][T32594]  __kasan_record_aux_stack+0xb4/0xc0
[ 3192.515830][T32594]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 3192.521571][T32594]  kvfree_call_rcu+0x9f/0x800
[ 3192.526076][T32594]  drop_sysctl_table+0x311/0x450
[ 3192.530849][T32594]  unregister_sysctl_table+0x76/0x120
[ 3192.536055][T32594]  unregister_net_sysctl_table+0x15/0x20
[ 3192.541618][T32594]  neigh_sysctl_unregister+0x78/0x90
[ 3192.546730][T32594]  inetdev_event+0x848/0x1110
[ 3192.551249][T32594]  raw_notifier_call_chain+0x8c/0xf0
[ 3192.556367][T32594]  unregister_netdevice_many+0xe25/0x1730
[ 3192.561920][T32594]  default_device_exit_batch+0x975/0xa00
[ 3192.567389][T32594]  cleanup_net+0x6c9/0xbf0
[ 3192.571641][T32594]  process_one_work+0x73d/0xcb0
[ 3192.576329][T32594]  worker_thread+0xa60/0x1260
[ 3192.580837][T32594]  kthread+0x26d/0x300
[ 3192.584744][T32594]  ret_from_fork+0x1f/0x30
[ 3192.588998][T32594] 
[ 3192.591169][T32594] Second to last potentially related work creation:
[ 3192.597593][T32594]  kasan_save_stack+0x3b/0x60
[ 3192.602104][T32594]  __kasan_record_aux_stack+0xb4/0xc0
[ 3192.607313][T32594]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 3192.612952][T32594]  kvfree_call_rcu+0x9f/0x800
[ 3192.617468][T32594]  drop_sysctl_table+0x311/0x450
[ 3192.622239][T32594]  unregister_sysctl_table+0x76/0x120
[ 3192.627456][T32594]  unregister_net_sysctl_table+0x15/0x20
[ 3192.632915][T32594]  neigh_sysctl_unregister+0x78/0x90
[ 3192.638035][T32594]  inetdev_event+0x848/0x1110
[ 3192.642550][T32594]  raw_notifier_call_chain+0x8c/0xf0
[ 3192.647678][T32594]  unregister_netdevice_many+0xe25/0x1730
[ 3192.653227][T32594]  ip_tunnel_delete_nets+0x33e/0x380
[ 3192.658348][T32594]  erspan_exit_batch_net+0x22/0x30
[ 3192.663293][T32594]  cleanup_net+0x6c9/0xbf0
[ 3192.667546][T32594]  process_one_work+0x73d/0xcb0
[ 3192.672232][T32594]  worker_thread+0xa60/0x1260
[ 3192.676747][T32594]  kthread+0x26d/0x300
[ 3192.680653][T32594]  ret_from_fork+0x1f/0x30
[ 3192.684904][T32594] 
[ 3192.687076][T32594] The buggy address belongs to the object at ffff88812db03000
[ 3192.687076][T32594]  which belongs to the cache kmalloc-1k of size 1024
[ 3192.700964][T32594] The buggy address is located 80 bytes inside of
[ 3192.700964][T32594]  1024-byte region [ffff88812db03000, ffff88812db03400)
[ 3192.714279][T32594] 
[ 3192.716439][T32594] The buggy address belongs to the physical page:
[ 3192.722696][T32594] page:ffffea0004b6c000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x12db00
[ 3192.732766][T32594] head:ffffea0004b6c000 order:3 compound_mapcount:0 compound_pincount:0
[ 3192.740918][T32594] flags: 0x4000000000010200(slab|head|zone=1)
[ 3192.746824][T32594] raw: 4000000000010200 ffffea00044ea200 dead000000000002 ffff888100043080
[ 3192.755242][T32594] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 3192.763656][T32594] page dumped because: kasan: bad access detected
[ 3192.769912][T32594] page_owner tracks the page as allocated
[ 3192.775460][T32594] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d2a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 1915, tgid 1915 (syz-executor), ts 1650333337551, free_ts 1650333089912
[ 3192.797766][T32594]  post_alloc_hook+0x213/0x220
[ 3192.802364][T32594]  prep_new_page+0x1b/0x110
[ 3192.806712][T32594]  get_page_from_freelist+0x2f41/0x2fc0
[ 3192.812087][T32594]  __alloc_pages+0x234/0x610
[ 3192.816520][T32594]  alloc_slab_page+0x6c/0xf0
[ 3192.820940][T32594]  new_slab+0x90/0x3e0
[ 3192.824848][T32594]  ___slab_alloc+0x6f9/0xb80
[ 3192.829270][T32594]  __slab_alloc+0x5d/0xa0
[ 3192.833438][T32594]  __kmem_cache_alloc_node+0x207/0x2a0
[ 3192.838732][T32594]  __kmalloc_node_track_caller+0xa2/0x1e0
[ 3192.844286][T32594]  __alloc_skb+0x125/0x2d0
[ 3192.848539][T32594]  inet6_rt_notify+0x2db/0x560
[ 3192.853138][T32594]  fib6_add+0x23ac/0x3df0
[ 3192.857305][T32594]  ip6_route_add+0x8a/0x130
[ 3192.861644][T32594]  addrconf_add_dev+0x419/0x5f0
[ 3192.866332][T32594]  addrconf_init_auto_addrs+0xadc/0x1050
[ 3192.871800][T32594] page last free stack trace:
[ 3192.876352][T32594]  free_unref_page_prepare+0x83d/0x850
[ 3192.881608][T32594]  free_unref_page+0xb2/0x5c0
[ 3192.886246][T32594]  __free_pages+0x61/0xf0
[ 3192.890409][T32594]  __free_slab+0xce/0x1a0
[ 3192.894572][T32594]  __unfreeze_partials+0x165/0x1a0
[ 3192.899520][T32594]  put_cpu_partial+0xa9/0x100
[ 3192.904032][T32594]  __slab_free+0x1c8/0x280
[ 3192.908287][T32594]  ___cache_free+0xc6/0xd0
[ 3192.912540][T32594]  qlist_free_all+0xc5/0x140
[ 3192.916964][T32594]  kasan_quarantine_reduce+0x15a/0x180
[ 3192.922260][T32594]  __kasan_slab_alloc+0x24/0x80
[ 3192.926948][T32594]  slab_post_alloc_hook+0x53/0x2c0
[ 3192.931895][T32594]  __kmem_cache_alloc_node+0x193/0x2a0
[ 3192.937187][T32594]  __kmalloc+0xa3/0x1e0
[ 3192.941180][T32594]  fib_create_info+0x858/0x1f10
[ 3192.945867][T32594]  fib_table_insert+0x1b7/0x20a0
[ 3192.950641][T32594] 
[ 3192.952813][T32594] Memory state around the buggy address:
[ 3192.958284][T32594]  ffff88812db02f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 3192.966180][T32594]  ffff88812db02f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 3192.974088][T32594] >ffff88812db03000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 3192.981973][T32594]                                                  ^
[ 3192.988534][T32594]  ffff88812db03080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 3192.996397][T32594]  ffff88812db03100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 3193.004282][T32594] ==================================================================
[ 3193.013718][T32594] Disabling lock debugging due to kernel taint
[ 3193.091197][T29514] EXT4-fs (loop7): unmounting filesystem.