last executing test programs:

2m33.013705036s ago: executing program 32 (id=387):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r1}, 0x10)
pipe2$9p(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x800002, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_9p2000}]}})

2m32.910758237s ago: executing program 2 (id=390):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000070"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r2}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000001ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

2m32.877219028s ago: executing program 2 (id=391):
open(0x0, 0x147842, 0x88)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x1}, {@in6=@remote, 0x3, 0x32}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffff7ffc}, {0x0, 0xfffffffffffffffc}, {0x0, 0x2, 0xfffffffd}, 0x0, 0x0, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001640)={0x2, 0x1, 0x0, 0x9, 0x8, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x20}}}]}, 0x40}}, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001ec0)=ANY=[@ANYBLOB="020100030a0000000000000000000000020010000000000200000000000000000300050000000000020000009d1414000000000000000000030006000000000002000000ac14"], 0x50}}, 0x0)

2m32.857583408s ago: executing program 2 (id=392):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'wg1\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0x14, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r2, &(0x7f0000001880)="bb", 0x1, 0x4000840, &(0x7f0000000080)={0x11, 0x0, r3, 0x1, 0xd, 0x6, @broadcast}, 0x14)

2m32.819536298s ago: executing program 2 (id=393):
syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000002380)='./file1\x00', 0x3a0cc0a, &(0x7f0000000480)=ANY=[@ANYBLOB='hide,dmode=0x0000000000000005,map=normal,map=normal,session=0x000000000000000e,overriderockperm,showassoc,nocompress,utf8,map=normal,session=0x0000000000000006,map=acorn,mode=0x0000000000000086,uid=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00'], 0x41, 0x9ea, &(0x7f0000004100)="$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")
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={0x0})

2m32.71025876s ago: executing program 2 (id=394):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x200)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x1000003, 0x300102, 0x0, 'queue1\x00', 0xffffffff})
r1 = dup(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000001280)={0x0, 0x0, {0x1, 0x0, 0x0, 0x0, 0xf963}})

2m32.297948475s ago: executing program 2 (id=399):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000e40)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000001c0)='mm_page_alloc\x00', r1}, 0x10)
syz_clone3(&(0x7f00000002c0)={0x44100000, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)

2m32.290287945s ago: executing program 33 (id=399):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000e40)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000001c0)='mm_page_alloc\x00', r1}, 0x10)
syz_clone3(&(0x7f00000002c0)={0x44100000, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)

1m59.277278071s ago: executing program 5 (id=1282):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$smc(&(0x7f00000001c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newqdisc={0x64, 0x24, 0xe0b, 0x2, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{0x1ff, 0x4, 0x0, 0x0, 0xfffffffd, 0x8}, [@TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x8000, 0x9, 0x0, 0xfffffc00}}]}]}}}]}, 0x64}}, 0x0)
sendto$packet(r0, &(0x7f0000000580)="44c394f305916c4516999da288a8", 0x5ea, 0x0, &(0x7f0000000440)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)

1m59.173672793s ago: executing program 5 (id=1276):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000940)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_kthread_work_queue_work\x00', r2}, 0x10)
socketpair(0x11, 0xa, 0x0, &(0x7f0000001080))

1m59.074412414s ago: executing program 5 (id=1280):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1f00, 0xe, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="12000000810000000800000002"], 0x14)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r2, &(0x7f00000004c0), &(0x7f0000000400)=@udp6=r3}, 0x3f)
bpf$MAP_UPDATE_ELEM(0x4, &(0x7f0000000100)={r2, &(0x7f0000000000), &(0x7f00000000c0)=@udp6}, 0x20)

1m59.063061654s ago: executing program 5 (id=1283):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000240)='./file0/../file0/file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000100)='./file0/../file0/file0\x00', 0x0, 0x80000, 0x0)
umount2(&(0x7f00000001c0)='./file0/../file0\x00', 0x3)

1m59.008792565s ago: executing program 5 (id=1286):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

1m58.985496055s ago: executing program 5 (id=1288):
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000100850000005900000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r3}, 0x10)
r4 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

1m58.962521916s ago: executing program 34 (id=1288):
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000100850000005900000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r3}, 0x10)
r4 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

1m18.463658357s ago: executing program 4 (id=2572):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f00000001c0)=0x5, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x70, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x18115, @rand_addr, 0x983a}, 0x1c)

1m18.24832833s ago: executing program 4 (id=2576):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
r0 = syz_io_uring_setup(0x24f6, &(0x7f0000000b80)={0x0, 0x0, 0x10100, 0x0, 0x33a}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x8})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1m18.174568451s ago: executing program 4 (id=2580):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
unlink(0x0)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)

1m18.074215893s ago: executing program 4 (id=2586):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f00000000c0)='./file0/../file0/../file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0/../file0\x00')
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f0000000600)='./file0/../file0/../file0/../file0\x00')

1m18.009286094s ago: executing program 4 (id=2589):
r0 = openat(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, 0x0, 0x1c1002, 0x12)
write(r1, 0x0, 0x0)
sendfile(r1, r0, 0x0, 0x3ffff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0xfffffffff7ffffe9}, 0x18)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f00000007c0)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x2, 0x0, 0x0, 0x4, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000a22a30456b880000145b41fe69e3ffff78616d3000000000000000000000000079616d3000000000000000000000000076657468315f742f5f626f6e640000000180c20000000000000000000180c20000000800000000000000b100000067010000900100007374617469737469630000000000000000000000000000000000000000000000180000000000000000000000000000000000000000000000000000000000646e61740000060000000000ff0300000000000000000000000000000000000010000000000000000180c20000000000bb8e66505c1aa6d062c3b52cffffffff000000006e666c6f670000000000000000000000000000000000000050000000121b6eb244c4f0fffbf04a000000007e4b000022569e338e2c551c2fc4a19597ba4c501c8b1f16fb7809c40aeea768e825383d2afb577ed2bb6dd99fd43741089cca6edb0041555449540000000000000000000000000626967e000000000000000000000008000000000000200000000000000000840200"/544]}, 0x298)

1m17.586642669s ago: executing program 4 (id=2596):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000900)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0300000000000000140012800c0001006d6163766c616e000400028008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x44}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000280)='%-010d \x00'}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r3, 0x0, 0xfffffffffffffffd}, 0x18)

1m17.586483089s ago: executing program 35 (id=2596):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000900)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0300000000000000140012800c0001006d6163766c616e000400028008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x44}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000280)='%-010d \x00'}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r3, 0x0, 0xfffffffffffffffd}, 0x18)

49.771679838s ago: executing program 8 (id=3438):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x762f, &(0x7f0000000700)={0x0, 0x114dd, 0x10, 0x2, 0x321}, &(0x7f00000004c0)=<r3=>0x0, &(0x7f0000000200)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0/../file0\x00', 0xffffffffffffffff, 0x1000, 0x1})
io_uring_enter(r2, 0x3516, 0xaddf, 0x2, 0x0, 0x1517f)

49.664832519s ago: executing program 8 (id=3441):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000680)={{r0}, &(0x7f00000000c0), &(0x7f0000000140)='%pi6   \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b040000000000000000020000002400048020000180070001006374000014000280080002400000001108000440000000020900010073797a30000000000900020073797a32"], 0x78}}, 0x0)

49.59225121s ago: executing program 8 (id=3443):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10)
setsockopt$inet_udp_int(r0, 0x11, 0x67, &(0x7f0000000000)=0x507, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18)
sendmmsg$inet(r0, &(0x7f0000000600)=[{{&(0x7f0000000c00)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r0, &(0x7f00000000c0)="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", 0xffe3, 0x0, 0x0, 0x0)

49.521881121s ago: executing program 8 (id=3445):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

49.521216651s ago: executing program 8 (id=3446):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
socket(0x400000000010, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfe, 0x46c, &(0x7f0000000f00)="$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")
statfs(&(0x7f0000000200)='.\x00', 0x0)
lchown(&(0x7f0000000300)='./file0\x00', 0x0, 0x0)

49.426052132s ago: executing program 8 (id=3448):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
open(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
io_setup(0x9, &(0x7f0000000380)=<r1=>0x0)
io_pgetevents(r1, 0x5, 0x6, &(0x7f00000003c0)=[{}, {}, {}, {}, {}, {}], &(0x7f00000004c0), &(0x7f0000000540)={&(0x7f0000000500)={[0x7]}, 0x8})

49.403582143s ago: executing program 36 (id=3448):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
open(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
io_setup(0x9, &(0x7f0000000380)=<r1=>0x0)
io_pgetevents(r1, 0x5, 0x6, &(0x7f00000003c0)=[{}, {}, {}, {}, {}, {}], &(0x7f00000004c0), &(0x7f0000000540)={&(0x7f0000000500)={[0x7]}, 0x8})

15.078847835s ago: executing program 9 (id=4451):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r2}, &(0x7f0000000080), &(0x7f0000000180)='%ps    \x00'}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = dup(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000002240)='9p_client_req\x00', r3}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}})

14.995144316s ago: executing program 9 (id=4464):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00'}, 0x18)
munlockall()
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x4080, 0x1)
lstat(&(0x7f0000000840)='./bus\x00', &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
ioprio_get$uid(0x3, r0)

14.969313217s ago: executing program 9 (id=4456):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r2, 0x0)
connect$unix(r1, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r2, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

14.105847758s ago: executing program 9 (id=4484):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x0, &(0x7f0000000000), 0x0, 0x248, &(0x7f0000000940)="$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")
ftruncate(0xffffffffffffffff, 0x80079a0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0x1000000, 0x2012, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f00000001c0)='./file0\x00', 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

13.93289837s ago: executing program 9 (id=4487):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x10)
close(r0)
r1 = getpid()
r2 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000100)={0x20000014})
r4 = syz_pidfd_open(r1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r4}})

13.713808323s ago: executing program 9 (id=4490):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfe, 0x0, 0x7ffc0002}]})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x3, 0x0)
symlinkat(0x0, 0xffffffffffffffff, 0x0)

13.713425073s ago: executing program 37 (id=4490):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfe, 0x0, 0x7ffc0002}]})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x3, 0x0)
symlinkat(0x0, 0xffffffffffffffff, 0x0)

3.043550611s ago: executing program 7 (id=4760):
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x69, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xbd, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f008004be0ffff00124000632f77fbac141416ac141416441805034d2f87e5940c05ab845013f2325f1a39010702038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae8", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x1, 0x0, 0x0, 0xfffffffffff7bbfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f1, &(0x7f0000000080))

2.933898692s ago: executing program 7 (id=4751):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f00000000c0)=<r1=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0xf3a, 0x0)
write$binfmt_misc(r3, &(0x7f0000000980), 0xfdef)
timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

2.121840162s ago: executing program 7 (id=4769):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001240)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=@newtfilter={0x24, 0x28, 0xd27, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, r4}}, 0x24}}, 0x0)

2.121208233s ago: executing program 6 (id=4770):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000380), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x6}, 0x18)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)

2.070425303s ago: executing program 7 (id=4771):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r1}, 0x10)
r2 = epoll_create1(0x80000)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/wakeup_count', 0x80800, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f00000000c0)={0xe000001a})
read$char_usb(r3, &(0x7f0000001980)=""/179, 0xb3)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000000))

2.053778493s ago: executing program 6 (id=4773):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000780)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x5d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @perf_config_ext={0x5}, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

1.998127584s ago: executing program 7 (id=4775):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x100}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x5}, 0x2004c000)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)

1.966403175s ago: executing program 7 (id=4776):
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x40)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r0, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
openat$sndseq(0xffffffffffffff9c, 0x0, 0x42002)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff"], 0x48)
io_uring_enter(r0, 0x47f6, 0x0, 0x2, 0x0, 0x0)

1.818269537s ago: executing program 1 (id=4778):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000680)=@newtfilter={0x30, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x0, 0xfff3}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006080)=@delchain={0x24, 0x64, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff3}, {}, {0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

1.710145198s ago: executing program 1 (id=4779):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x87, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a3100000000e8010000030a01020000000000000000010000000900030073797a3200000000280004800800024000000000080001400000000514000300626174616476300000000000000000000900010073797a31000000000900010073797a3100000000340008800c00024000000000000080010c00024000000000000000040c00014000000000000000000c00014000000000000000014c000480080002404c82f47c080001400000000008000140000000010800014000000003080002404f32945f080001400000000308000140000000020800024019885f270800014000000003fd000c00a03ac330bf11a2145946e6d945deece8485ee69dbc29a8dd5dbce127f829a3adf5c4171b4bedbbc9b913a67b9ee679020f0200000064419faae0136b893d91d95b1174f115798a1abfdc06983fb83f2116a85a00dd35cdf9d8f81683e5e2ebcca132a712e0be44c12c02ac92fbbb86ed717ce0cbd6a0134f899e23ca6d2f063d26be86555cc0e9c7a25d77e6c0f4217794be96b5d797e3116d874c3adfb096e0567ec28bd1e4d8d6713109695f1f3a877d89d20e19304501aeb851d14c4f9b2d769d554fe5308810d19bb040c1977bce50b894f2c45a1f0e80c8256b6dcb072f9d91d94a67bba9f62eb2f192fa4b3786d9a774b99aa332dfbb000000080007006e6174"], 0x25c}}, 0x0)

1.420155622s ago: executing program 6 (id=4784):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000600), 0x1, 0x561, &(0x7f0000000640)="$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")
prctl$PR_MCE_KILL(0x23, 0xa, 0x7fffffffeffe)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x2, 0x11, r0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0xfff7, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r1, 0x4008550d, &(0x7f00000011c0))
write$tun(0xffffffffffffffff, &(0x7f00000024c0)=ANY=[], 0x1007)

1.401159532s ago: executing program 3 (id=4787):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000280)='skb_copy_datagram_iovec\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001f40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r2}, 0x10)
r3 = socket(0x10, 0x2, 0x0)
write(r3, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r3, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

1.300001443s ago: executing program 0 (id=4789):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8264, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10320, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1509, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}, 0x0, 0x4, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1509, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}, 0x0, 0x4, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f00000003c0)=ANY=[])

1.248446714s ago: executing program 6 (id=4790):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000580)={0x0, 0xd736, 0x8, 0x3, 0xbffffffa}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x80, 0x6000})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000380), 0x1, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x2}, 0x18)
io_uring_enter(r0, 0x1c3a, 0xe176, 0x22, 0x0, 0x0)

1.083348136s ago: executing program 1 (id=4791):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000090000000000000000000000850000004100000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0xe, 0x0, &(0x7f0000000240)="bf1ea0e3c19ed614ebadb3161741", 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

1.009983877s ago: executing program 0 (id=4792):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000040)={0x7ffffff, 0x100, 0x0, 'queue1\x00', 0xffffffff})
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r2, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'})
close_range(r1, 0xffffffffffffffff, 0x0)

1.009579847s ago: executing program 6 (id=4793):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0, 0x0, 0x100}, 0x18)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
syz_open_dev$loop(0x0, 0x9, 0x12d600)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000003c0)={0x1, 'veth0_virt_wifi\x00', 0x2000000}, 0x18)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x0, 0x48c, &(0x7f00000002c0)={0x1, 'ipvlan1\x00', 0x100}, 0x18)

949.287308ms ago: executing program 6 (id=4794):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@discard}, {@bh}, {@nomblk_io_submit}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r1, &(0x7f0000004200)='t', 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="9feb010018000000000000000c00"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
sendfile(r1, r0, 0x0, 0x7ffff000)

948.959638ms ago: executing program 3 (id=4795):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0xd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x6}]}, 0x10)
write$binfmt_misc(r0, &(0x7f0000001280), 0x6)

922.994968ms ago: executing program 3 (id=4796):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)

917.342118ms ago: executing program 1 (id=4797):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read(r2, &(0x7f0000000040)=""/148, 0xffffff96)

901.004048ms ago: executing program 0 (id=4798):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYRES64=0x0, @ANYRES16, @ANYRES16, @ANYRESHEX, @ANYRESHEX], 0x1, 0x11f4, &(0x7f0000001280)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000280)={0x2, &(0x7f0000000180)=[{0x61}, {0x6, 0x0, 0xfc, 0x9}]})

749.82214ms ago: executing program 0 (id=4799):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
recvmsg(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x40000020)
arch_prctl$ARCH_REQ_XCOMP_PERM(0x1023, 0x7)

708.767301ms ago: executing program 0 (id=4800):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f00000001c0)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r2, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r2, 0x47f6, 0x0, 0x2, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{0x0}], 0x1)

497.052093ms ago: executing program 0 (id=4801):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x1, 0x56d, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r1}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r1}, 0x38)

427.032174ms ago: executing program 1 (id=4802):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r3, 0xc0105500, &(0x7f0000000040)={0x0, 0x0, 0x8, 0x10, 0x0, 0x9, 0x0})

372.055815ms ago: executing program 3 (id=4803):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0xe7fd}, 0x100002, 0x3, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0x64, 0x30, 0xb, 0x0, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfdb}}, @TCA_CT_MARK={0x8, 0x10}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000000)

303.693796ms ago: executing program 3 (id=4804):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000200)=0x1, 0x12)
mkdirat$cgroup(r0, &(0x7f00000000c0)='syz1\x00', 0x1ff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r2}, 0x18)
listxattr(0x0, 0x0, 0x0)
write$cgroup_pid(r1, &(0x7f0000000080), 0x12)

245.795276ms ago: executing program 1 (id=4805):
r0 = syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r0, &(0x7f0000000000), 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

0s ago: executing program 3 (id=4806):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
mkdir(&(0x7f0000000400)='./file0\x00', 0x101)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r3 = dup(r2)
r4 = open(&(0x7f0000000300)='./bus\x00', 0x40542, 0x0)
sendfile(r3, r4, 0x0, 0x8000fffffffe)

kernel console output (not intermixed with test programs):

ipc: Node identity 7f000001, cluster identity 4711
[  132.434713][T11426] tipc: Enabled bearer <udp:syz2>, priority 10
[  132.456786][T11425] lo speed is unknown, defaulting to 1000
[  132.533547][T11441] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2942'.
[  132.542619][T11441] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2942'.
[  132.551585][T11441] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2942'.
[  132.563054][T11441] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2942'.
[  132.572080][T11441] netlink: 'syz.6.2942': attribute type 6 has an invalid length.
[  132.621789][T11446] infiniband syz!: set down
[  132.626323][T11446] infiniband syz!: added team_slave_0
[  132.637871][T11446] RDS/IB: syz!: added
[  132.642127][T11446] smc: adding ib device syz! with port count 1
[  132.648619][T11446] smc:    ib device syz! port 1 has pnetid 
[  132.817334][T11457] loop6: detected capacity change from 0 to 512
[  132.833255][T11457] EXT4-fs: Ignoring removed mblk_io_submit option
[  132.857205][T11457] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #15: comm syz.6.2948: iget: bad extended attribute block 1
[  132.881279][T11457] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.2948: couldn't read orphan inode 15 (err -117)
[  132.923838][T11466] netlink: 'syz.0.2953': attribute type 13 has an invalid length.
[  132.928102][T11457] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.973071][ T4511] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.973324][T11471] vlan3: entered allmulticast mode
[  132.987186][T11471] bridge_slave_0: entered allmulticast mode
[  132.993356][T11471] bridge0: port 1(vlan3) entered blocking state
[  132.999690][T11471] bridge0: port 1(vlan3) entered disabled state
[  133.006598][T11471] vlan3: entered promiscuous mode
[  133.011709][T11471] bridge_slave_0: entered promiscuous mode
[  133.039325][T11474] loop6: detected capacity change from 0 to 1024
[  133.039864][T11471] bridge0: mtu less than device minimum
[  133.051796][T11474] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  133.061593][T11474] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  133.085787][T11477] lo speed is unknown, defaulting to 1000
[  133.100118][T11470] lo speed is unknown, defaulting to 1000
[  133.108389][T11474] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  133.122868][T11474] EXT4-fs error (device loop6): ext4_get_journal_inode:5798: inode #5: comm syz.6.2956: unexpected bad inode w/o EXT4_IGET_BAD
[  133.148276][T11474] EXT4-fs (loop6): no journal found
[  133.153486][T11474] EXT4-fs (loop6): can't get journal size
[  133.173411][T11474] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  133.250906][ T4511] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.302462][T11487] loop6: detected capacity change from 0 to 128
[  133.318415][T11487] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  133.366085][T11492] -1: renamed from syzkaller0
[  133.368093][T11487] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  133.419900][ T3544] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  133.548064][ T3393] tipc: Node number set to 2130706433
[  133.657103][T11519] netlink: 'syz.3.2973': attribute type 11 has an invalid length.
[  133.708199][T11519] netlink: 448 bytes leftover after parsing attributes in process `syz.3.2973'.
[  133.729833][T11527] vlan3: entered allmulticast mode
[  133.763655][T11527] dummy0: entered allmulticast mode
[  133.849485][T11531] sch_tbf: burst 3504 is lower than device lo mtu (11337746) !
[  133.894774][T11529] lo speed is unknown, defaulting to 1000
[  133.955232][T11534] lo speed is unknown, defaulting to 1000
[  134.422184][   T29] kauditd_printk_skb: 140 callbacks suppressed
[  134.422199][   T29] audit: type=1326 audit(1748453640.319:6837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbaba8f5927 code=0x7ffc0000
[  134.496408][   T29] audit: type=1326 audit(1748453640.349:6838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbaba89ab39 code=0x7ffc0000
[  134.519830][   T29] audit: type=1326 audit(1748453640.349:6839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbaba8f5927 code=0x7ffc0000
[  134.543341][   T29] audit: type=1326 audit(1748453640.349:6840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbaba89ab39 code=0x7ffc0000
[  134.566818][   T29] audit: type=1326 audit(1748453640.349:6841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaba8fe969 code=0x7ffc0000
[  134.590313][   T29] audit: type=1326 audit(1748453640.349:6842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaba8fe969 code=0x7ffc0000
[  134.613810][   T29] audit: type=1326 audit(1748453640.349:6843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbaba8fe969 code=0x7ffc0000
[  134.639149][   T29] audit: type=1326 audit(1748453640.349:6844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaba8fe969 code=0x7ffc0000
[  134.662719][   T29] audit: type=1326 audit(1748453640.349:6845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaba8fe969 code=0x7ffc0000
[  134.686603][   T29] audit: type=1326 audit(1748453640.349:6846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11546 comm="syz.8.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbaba8fe969 code=0x7ffc0000
[  134.757654][T11560] netlink: 'syz.7.2992': attribute type 11 has an invalid length.
[  134.766603][T11560] netlink: 448 bytes leftover after parsing attributes in process `syz.7.2992'.
[  134.804389][T11570] loop3: detected capacity change from 0 to 512
[  134.811659][T11570] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  134.829308][T11570] EXT4-fs (loop3): 1 truncate cleaned up
[  134.853136][T11570] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.998950][T11583] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.999502][ T3328] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.007416][T11583] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  135.087717][T11593] sch_fq: defrate 0 ignored.
[  135.589203][T11602] __nla_validate_parse: 1 callbacks suppressed
[  135.589218][T11602] netlink: 88 bytes leftover after parsing attributes in process `syz.8.3010'.
[  135.737796][T11615] lo speed is unknown, defaulting to 1000
[  135.845957][T11623] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  136.030786][T11636] syzkaller0: entered promiscuous mode
[  136.036288][T11636] syzkaller0: entered allmulticast mode
[  136.446400][T11674] lo speed is unknown, defaulting to 1000
[  136.620968][T11684] netlink: 'syz.0.3043': attribute type 11 has an invalid length.
[  136.655904][T11684] netlink: 448 bytes leftover after parsing attributes in process `syz.0.3043'.
[  136.728245][T11688] sch_fq: defrate 0 ignored.
[  136.792052][T11695] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  136.880488][T11706] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  136.934490][T11715] loop3: detected capacity change from 0 to 128
[  136.963560][T11712] netlink: 'syz.6.3058': attribute type 3 has an invalid length.
[  136.971412][T11712] netlink: 'syz.6.3058': attribute type 3 has an invalid length.
[  137.015753][T11712] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3058'.
[  137.055592][T11727] loop8: detected capacity change from 0 to 164
[  137.063713][T11727] syz.8.3065: attempt to access beyond end of device
[  137.063713][T11727] loop8: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  137.095134][T11727] syz.8.3065: attempt to access beyond end of device
[  137.095134][T11727] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  137.136052][T11723] syz.3.3060: attempt to access beyond end of device
[  137.136052][T11723] loop3: rw=0, sector=121, nr_sectors = 120 limit=128
[  137.153202][T11737] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  137.200155][ T3551] kworker/u8:47: attempt to access beyond end of device
[  137.200155][ T3551] loop3: rw=1, sector=241, nr_sectors = 800 limit=128
[  137.649436][T11751] lo speed is unknown, defaulting to 1000
[  137.740373][T11797] IPVS: Error connecting to the multicast addr
[  137.990838][T11819] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3106'.
[  137.999888][T11819] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3106'.
[  138.231087][T11853] 9pnet: p9_errstr2errno: server reported unknown error 18446744
[  138.341775][T11871] loop3: detected capacity change from 0 to 1024
[  138.348578][T11871] EXT4-fs: Ignoring removed nomblk_io_submit option
[  138.357037][T11871] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.378972][ T3328] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.089402][T11883] macvlan2: entered promiscuous mode
[  139.094824][T11883] bridge0: entered promiscuous mode
[  139.100433][T11883] bridge0: port 1(macvlan2) entered blocking state
[  139.106944][T11883] bridge0: port 1(macvlan2) entered disabled state
[  139.113559][T11883] macvlan2: entered allmulticast mode
[  139.118953][T11883] bridge0: entered allmulticast mode
[  139.124495][T11883] macvlan2: left allmulticast mode
[  139.129756][T11883] bridge0: left allmulticast mode
[  139.135075][T11883] bridge0: left promiscuous mode
[  139.269274][T11902] loop7: detected capacity change from 0 to 2048
[  139.288674][T11902]  loop7: p1 < > p4
[  139.292869][T11902] loop7: p4 size 8388608 extends beyond EOD, truncated
[  139.318414][T11906] tipc: Started in network mode
[  139.323340][T11906] tipc: Node identity ac1414aa, cluster identity 4711
[  139.330320][T11906] tipc: Enabled bearer <udp:syz2>, priority 10
[  139.336731][T11906] tipc: Disabling bearer <udp:syz2>
[  139.384677][T11913] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3147'.
[  139.394281][T11913] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3147'.
[  139.460731][T11923] netlink: 'syz.3.3152': attribute type 13 has an invalid length.
[  139.497536][T11923] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.505954][T11923] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.514387][T11923] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.522811][T11923] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.559103][T11931] loop7: detected capacity change from 0 to 128
[  139.698995][   T29] kauditd_printk_skb: 173 callbacks suppressed
[  139.699008][   T29] audit: type=1326 audit(1748453645.599:7020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11950 comm="syz.0.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  139.743548][   T29] audit: type=1326 audit(1748453645.629:7021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11950 comm="syz.0.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  139.767088][   T29] audit: type=1326 audit(1748453645.629:7022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11950 comm="syz.0.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  139.790666][   T29] audit: type=1326 audit(1748453645.629:7023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11950 comm="syz.0.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  139.814198][   T29] audit: type=1326 audit(1748453645.629:7024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11950 comm="syz.0.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  139.836901][T11955] xt_CT: No such helper "pptp"
[  139.837655][   T29] audit: type=1326 audit(1748453645.629:7025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11950 comm="syz.0.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  139.865936][   T29] audit: type=1326 audit(1748453645.629:7026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11950 comm="syz.0.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  139.889483][   T29] audit: type=1326 audit(1748453645.629:7027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11950 comm="syz.0.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  139.913119][   T29] audit: type=1400 audit(1748453645.769:7028): avc:  denied  { bind } for  pid=11957 comm="syz.3.3165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  139.933474][   T29] audit: type=1400 audit(1748453645.769:7029): avc:  denied  { setopt } for  pid=11957 comm="syz.3.3165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  139.986362][T11960] netlink: 60 bytes leftover after parsing attributes in process `syz.8.3166'.
[  139.995425][T11960] unsupported nlmsg_type 40
[  140.939006][T12001] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3183'.
[  140.970286][T12003] loop8: detected capacity change from 0 to 512
[  140.977171][T12003] EXT4-fs: Ignoring removed nobh option
[  140.984654][T12003] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.3184: invalid indirect mapped block 256 (level 2)
[  140.998769][T12003] EXT4-fs (loop8): 2 truncates cleaned up
[  141.004882][T12003] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.032718][T10433] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.425397][T12028] netlink: 'syz.7.3194': attribute type 3 has an invalid length.
[  141.482436][T12039] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3200'.
[  141.530591][T12043] pim6reg1: entered promiscuous mode
[  141.535915][T12043] pim6reg1: entered allmulticast mode
[  141.695353][T12055] netlink: 5 bytes leftover after parsing attributes in process `syz.0.3207'.
[  141.788593][T12049] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  141.797497][T12049] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.815086][T12061] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  142.153263][T12073] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3214'.
[  142.230698][T12080] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3217'.
[  142.716384][T12099] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  142.729301][T12099] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  142.920833][T12132] loop7: detected capacity change from 0 to 164
[  142.930447][T12132] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  142.940302][T12132] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  142.952125][T12134] xt_hashlimit: max too large, truncated to 1048576
[  142.971491][T12132] Symlink component flag not implemented
[  142.977143][T12132] Symlink component flag not implemented
[  142.983245][T12132] Symlink component flag not implemented (7)
[  142.989319][T12132] Symlink component flag not implemented (116)
[  143.088410][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.096207][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.103976][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.111731][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.119615][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.127362][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.135110][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.142870][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.150624][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.158405][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.166155][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.173901][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.181687][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.189457][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.197213][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.204959][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.212705][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.220529][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.228346][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.236077][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.243870][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.251630][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.259454][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.267181][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.274933][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.282678][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.290443][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.298188][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.305984][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.313718][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.321548][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.329343][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.337129][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.344963][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.352715][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.360586][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.368331][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.376065][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.383811][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.391569][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.399373][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.407156][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.414914][   T36] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.424409][   T36] hid-generic 0000:007F:FFFFFFFE.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  143.439489][T12150] loop8: detected capacity change from 0 to 512
[  143.458554][T12150] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  143.477860][T12150] EXT4-fs (loop8): 1 truncate cleaned up
[  143.486002][T12157] loop3: detected capacity change from 0 to 512
[  143.489218][T12150] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.494278][T12157] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  143.518129][T12157] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  143.531340][T12157] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.3253: corrupted in-inode xattr: e_value size too large
[  143.562860][T12157] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.3253: couldn't read orphan inode 15 (err -117)
[  143.603110][T10433] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.632428][T12157] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.638631][T12171] loop6: detected capacity change from 0 to 128
[  143.672080][T12171] syz.6.3259: attempt to access beyond end of device
[  143.672080][T12171] loop6: rw=0, sector=97, nr_sectors = 97 limit=128
[  143.707854][T12178] loop6: detected capacity change from 0 to 512
[  143.726202][ T3328] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.736463][T12178] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  143.747869][T12178] EXT4-fs (loop6): 1 truncate cleaned up
[  143.754830][T12178] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.857720][ T4511] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.054873][T12194] loop3: detected capacity change from 0 to 2048
[  144.138952][T12194] Alternate GPT is invalid, using primary GPT.
[  144.145292][T12194]  loop3: p1 p2 p3
[  144.639552][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.647023][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.654436][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.682203][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.689707][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.697104][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.704599][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.712050][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.719455][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.726878][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.734346][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.741750][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.749169][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.793661][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.801122][   T36] hid-generic 0006:0000:0000.0009: unknown main item tag 0x0
[  144.820804][   T36] hid-generic 0006:0000:0000.0009: hidraw0: VIRTUAL HID vffffff.00 Device [syz0] on syz1
[  144.848969][   T29] kauditd_printk_skb: 675 callbacks suppressed
[  144.848982][   T29] audit: type=1400 audit(1748453650.749:7705): avc:  denied  { read write } for  pid=12222 comm="syz.8.3279" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  144.861615][T12223] program syz.8.3279 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  144.889482][   T29] audit: type=1400 audit(1748453650.749:7706): avc:  denied  { open } for  pid=12222 comm="syz.8.3279" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  144.913513][   T29] audit: type=1400 audit(1748453650.749:7707): avc:  denied  { ioctl } for  pid=12222 comm="syz.8.3279" path="/dev/sg0" dev="devtmpfs" ino=137 ioctlcmd=0x6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  144.940283][T12223] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  144.950423][T12221] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3278'.
[  145.012497][T12221] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3278'.
[  145.068359][   T29] audit: type=1400 audit(1748453650.949:7708): avc:  denied  { read } for  pid=12226 comm="syz.8.3281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  145.325523][   T29] audit: type=1400 audit(1748453651.219:7709): avc:  denied  { ioctl } for  pid=12252 comm="syz.8.3293" path="socket:[34621]" dev="sockfs" ino=34621 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  145.447359][   T29] audit: type=1400 audit(1748453651.319:7710): avc:  denied  { connect } for  pid=12260 comm="syz.8.3297" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  145.466971][   T29] audit: type=1400 audit(1748453651.319:7711): avc:  denied  { write } for  pid=12260 comm="syz.8.3297" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  145.521074][T12270] loop6: detected capacity change from 0 to 2048
[  145.545320][T12270] msdos: Bad value for 'time_offset'
[  145.568298][T12277] netlink: 'syz.7.3303': attribute type 1 has an invalid length.
[  145.581358][T12278] loop3: detected capacity change from 0 to 1024
[  145.609819][T12278] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.625081][   T29] audit: type=1400 audit(1748453651.519:7712): avc:  denied  { create } for  pid=12275 comm="syz.3.3305" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  145.678388][ T3328] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.726579][T12296] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.3308'.
[  145.740388][T12288] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.3308'.
[  145.752557][T12298] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3312'.
[  145.779682][T12303] loop6: detected capacity change from 0 to 2048
[  145.786378][T12303] journal_path: Lookup failure for './file0'
[  145.792475][T12303] EXT4-fs: error: could not find journal device path
[  145.807408][T12303] loop6: detected capacity change from 0 to 512
[  145.817005][   T29] audit: type=1326 audit(1748453651.719:7713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12304 comm="syz.7.3315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e5ce3e969 code=0x7ffc0000
[  145.840826][   T29] audit: type=1326 audit(1748453651.719:7714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12304 comm="syz.7.3315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e5ce3e969 code=0x7ffc0000
[  145.874820][T12303] EXT4-fs (loop6): too many log groups per flexible block group
[  145.882620][T12303] EXT4-fs (loop6): failed to initialize mballoc (-12)
[  145.891585][T12303] EXT4-fs (loop6): mount failed
[  146.073643][T12333] loop7: detected capacity change from 0 to 2048
[  146.090624][T12334] vhci_hcd: invalid port number 96
[  146.095843][T12334] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  146.104671][T12333] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.138373][T12340] tipc: New replicast peer: 255.255.255.255
[  146.144515][T12340] tipc: Enabled bearer <udp:syz2>, priority 10
[  146.159090][ T6854] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.379829][T12373] loop3: detected capacity change from 0 to 2048
[  146.394000][T12373] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.409758][T12373] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  146.448178][T12373] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[  146.460599][T12373] EXT4-fs (loop3): This should not happen!! Data will be lost
[  146.460599][T12373] 
[  146.470304][T12373] EXT4-fs (loop3): Total free blocks count 0
[  146.476304][T12373] EXT4-fs (loop3): Free/Dirty block details
[  146.482248][T12373] EXT4-fs (loop3): free_blocks=2415919104
[  146.488047][T12373] EXT4-fs (loop3): dirty_blocks=48
[  146.493215][T12373] EXT4-fs (loop3): Block reservation details
[  146.499263][T12373] EXT4-fs (loop3): i_reserved_data_blocks=3
[  146.541525][ T3328] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.570387][T12391] loop3: detected capacity change from 0 to 128
[  146.665992][T12397] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3352'.
[  146.740725][T12404] loop3: detected capacity change from 0 to 512
[  146.750122][T12404] EXT4-fs (loop3): 1 orphan inode deleted
[  146.756418][T12404] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.769281][T12404] ext4 filesystem being mounted at /656/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.769682][ T3511] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:12: Failed to release dquot type 1
[  146.803827][ T3328] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.113803][T12429] netlink: 'syz.0.3364': attribute type 11 has an invalid length.
[  147.133882][T12429] netlink: 448 bytes leftover after parsing attributes in process `syz.0.3364'.
[  147.142993][   T36] tipc: Node number set to 2130706433
[  147.157201][T12433] netlink: '+}[@': attribute type 10 has an invalid length.
[  147.168224][T12433] batman_adv: batadv0: Adding interface: team0
[  147.174500][T12433] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  147.199819][T12433] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  147.240912][T12437] netlink: 52 bytes leftover after parsing attributes in process `syz.7.3368'.
[  147.427954][T12455] loop7: detected capacity change from 0 to 2048
[  147.445997][T12455] msdos: Bad value for 'time_offset'
[  147.498136][T12458] Falling back ldisc for ttyS3.
[  147.506416][T12460] loop8: detected capacity change from 0 to 1024
[  147.520351][T12460] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.557963][T10433] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.603550][T12466] netlink: 'syz.8.3379': attribute type 11 has an invalid length.
[  147.625982][T12466] netlink: 448 bytes leftover after parsing attributes in process `syz.8.3379'.
[  147.643118][T12470] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3380'.
[  147.724547][T12482] syzkaller0: entered promiscuous mode
[  147.730118][T12482] syzkaller0: entered allmulticast mode
[  147.738886][T12484] loop8: detected capacity change from 0 to 128
[  147.799877][T12489] loop7: detected capacity change from 0 to 1024
[  147.811674][T12489] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.823882][T12490] syz.8.3388: attempt to access beyond end of device
[  147.823882][T12490] loop8: rw=0, sector=121, nr_sectors = 120 limit=128
[  147.879256][ T3551] kworker/u8:47: attempt to access beyond end of device
[  147.879256][ T3551] loop8: rw=1, sector=241, nr_sectors = 800 limit=128
[  147.948521][ T6854] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.248214][T12523] Falling back ldisc for ttyS3.
[  148.376984][T12534] loop7: detected capacity change from 0 to 512
[  148.393753][T12534] EXT4-fs (loop7): 1 orphan inode deleted
[  148.402058][T12534] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.419532][T12534] ext4 filesystem being mounted at /406/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.419678][T12538] syzkaller0: entered promiscuous mode
[  148.435603][T12538] syzkaller0: entered allmulticast mode
[  148.461752][ T6854] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.495518][T12546] lo speed is unknown, defaulting to 1000
[  148.609211][T12553] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3414'.
[  148.665218][T12556] loop6: detected capacity change from 0 to 512
[  148.671911][T12556] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  148.821235][T12563] IPVS: Error connecting to the multicast addr
[  148.990917][T12573] loop8: detected capacity change from 0 to 2048
[  149.005330][T12573] journal_path: Lookup failure for './file0'
[  149.011400][T12573] EXT4-fs: error: could not find journal device path
[  149.033026][T12573] loop8: detected capacity change from 0 to 512
[  149.044753][T12575] loop6: detected capacity change from 0 to 512
[  149.061710][T12574] loop7: detected capacity change from 0 to 2048
[  149.085617][T12573] EXT4-fs (loop8): too many log groups per flexible block group
[  149.093374][T12573] EXT4-fs (loop8): failed to initialize mballoc (-12)
[  149.101057][T12573] EXT4-fs (loop8): mount failed
[  149.140533][T12575] EXT4-fs (loop6): 1 orphan inode deleted
[  149.149084][T12575] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.164594][ T3511] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:12: Failed to release dquot type 1
[  149.176703][T12575] ext4 filesystem being mounted at /550/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.262163][ T4511] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.282252][T12587] loop8: detected capacity change from 0 to 512
[  149.296120][T12587] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  149.311418][T12574] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.330083][T12574] ext4 filesystem being mounted at /408/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.427520][T12587] EXT4-fs (loop8): 1 truncate cleaned up
[  149.443963][T12587] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.536207][T12600] loop6: detected capacity change from 0 to 1024
[  149.558473][T10433] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.579459][T12600] EXT4-fs: Ignoring removed oldalloc option
[  149.585773][T12600] EXT4-fs: Ignoring removed nomblk_io_submit option
[  149.586816][T12604] lo speed is unknown, defaulting to 1000
[  149.611908][T12600] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.709738][ T4511] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.203962][T12645] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3452'.
[  150.254385][T12638] lo speed is unknown, defaulting to 1000
[  150.290886][ T3561] vlan3: left promiscuous mode
[  150.295675][ T3561] bridge_slave_0: left promiscuous mode
[  150.301537][ T3561] bridge0: port 1(vlan3) entered disabled state
[  150.372362][   T29] kauditd_printk_skb: 113 callbacks suppressed
[  150.372377][   T29] audit: type=1400 audit(1748453656.269:7826): avc:  denied  { connect } for  pid=12657 comm="syz.6.3457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  150.387359][T12605] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.3424: bg 0: block 345: padding at end of block bitmap is not set
[  150.420074][ T3561] $Hÿ (unregistering): Released all slaves
[  150.426289][T12605] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[  150.439040][T12605] EXT4-fs (loop7): This should not happen!! Data will be lost
[  150.439040][T12605] 
[  150.542634][ T3561] hsr_slave_0: left promiscuous mode
[  150.552324][ T3561] hsr_slave_1: left promiscuous mode
[  150.602658][ T3511] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[  150.613806][   T58] smc: removing ib device syz!
[  150.615387][ T3511] EXT4-fs (loop7): This should not happen!! Data will be lost
[  150.615387][ T3511] 
[  150.725794][ T3513] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 225 with error 28
[  150.738481][ T3513] EXT4-fs (loop7): This should not happen!! Data will be lost
[  150.738481][ T3513] 
[  150.748335][ T3513] EXT4-fs (loop7): Total free blocks count 0
[  150.754397][ T3513] EXT4-fs (loop7): Free/Dirty block details
[  150.760307][ T3513] EXT4-fs (loop7): free_blocks=0
[  150.838735][T12638] chnl_net:caif_netlink_parms(): no params data found
[  151.000408][T12638] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.007501][T12638] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.057551][T12638] bridge_slave_0: entered allmulticast mode
[  151.080056][T12638] bridge_slave_0: entered promiscuous mode
[  151.089165][   T29] audit: type=1326 audit(1748453656.979:7827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.3.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  151.094477][T12638] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.119844][T12638] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.132597][T12638] bridge_slave_1: entered allmulticast mode
[  151.140589][T12638] bridge_slave_1: entered promiscuous mode
[  151.146899][   T29] audit: type=1326 audit(1748453656.989:7828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.3.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  151.170512][   T29] audit: type=1326 audit(1748453656.989:7829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.3.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  151.194097][   T29] audit: type=1326 audit(1748453656.989:7830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.3.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  151.250227][   T29] audit: type=1326 audit(1748453657.119:7831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.3.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  151.273804][   T29] audit: type=1326 audit(1748453657.119:7832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12711 comm="syz.3.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  151.298718][T12716] netlink: 96 bytes leftover after parsing attributes in process `syz.6.3475'.
[  151.308909][T12638] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  151.347899][T12638] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  151.373695][T12638] team0: Port device team_slave_0 added
[  151.390668][T12638] team0: Port device team_slave_1 added
[  151.413246][T12720] loop7: detected capacity change from 0 to 1024
[  151.425157][   T29] audit: type=1400 audit(1748453657.319:7833): avc:  denied  { bind } for  pid=12727 comm="syz.3.3481" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  151.456408][   T29] audit: type=1400 audit(1748453657.349:7834): avc:  denied  { connect } for  pid=12727 comm="syz.3.3481" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  151.482361][T12638] batman_adv: batadv0: Adding interface: batadv_slave_0
[  151.489347][T12638] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.515385][T12638] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  151.518656][T12720] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.527927][   T29] audit: type=1400 audit(1748453657.379:7835): avc:  denied  { write } for  pid=12727 comm="syz.3.3481" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  151.559290][T12638] batman_adv: batadv0: Adding interface: batadv_slave_1
[  151.566249][T12638] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.592199][T12638] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  151.630258][T12638] hsr_slave_0: entered promiscuous mode
[  151.648115][T12638] hsr_slave_1: entered promiscuous mode
[  151.666426][ T6854] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.854623][T12638] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  151.876789][T12638] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  151.896019][T12638] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  151.919812][T12638] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  151.979274][T12638] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.992375][T12638] 8021q: adding VLAN 0 to HW filter on device team0
[  152.029002][   T58] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.036107][   T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[  152.046175][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.053247][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  152.202310][T12638] 8021q: adding VLAN 0 to HW filter on device batadv0
[  152.365841][T12638] veth0_vlan: entered promiscuous mode
[  152.374551][T12638] veth1_vlan: entered promiscuous mode
[  152.394675][T12638] veth0_macvtap: entered promiscuous mode
[  152.402867][T12638] veth1_macvtap: entered promiscuous mode
[  152.420322][T12638] batman_adv: batadv0: Interface activated: batadv_slave_0
[  152.433120][T12638] batman_adv: batadv0: Interface activated: batadv_slave_1
[  152.447167][T12638] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  152.455975][T12638] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  152.464741][T12638] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  152.473636][T12638] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  152.506635][T12805] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3507'.
[  152.535474][T12809] loop9: detected capacity change from 0 to 2048
[  152.550596][T12813] netlink: 'syz.3.3508': attribute type 3 has an invalid length.
[  152.554566][T12811] loop7: detected capacity change from 0 to 2048
[  152.568753][T12809]  loop9: p1 < > p4
[  152.573885][T12811] EXT4-fs (loop7): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.586918][T12809] loop9: p4 size 8388608 extends beyond EOD, truncated
[  152.605928][ T6854] EXT4-fs (loop7): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[  152.636713][T12820] loop7: detected capacity change from 0 to 2048
[  152.650242][T12820] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.666807][T12827] loop9: detected capacity change from 0 to 128
[  152.723503][T12820] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  152.738486][T12820] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1410 with error 28
[  152.751014][T12820] EXT4-fs (loop7): This should not happen!! Data will be lost
[  152.751014][T12820] 
[  152.760713][T12820] EXT4-fs (loop7): Total free blocks count 0
[  152.766715][T12820] EXT4-fs (loop7): Free/Dirty block details
[  152.772847][T12820] EXT4-fs (loop7): free_blocks=2415919104
[  152.778625][T12820] EXT4-fs (loop7): dirty_blocks=1424
[  152.783939][T12820] EXT4-fs (loop7): Block reservation details
[  152.790064][T12820] EXT4-fs (loop7): i_reserved_data_blocks=89
[  152.916094][   T58] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 2 with max blocks 2 with error 28
[  152.971151][T12842] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3519'.
[  153.074285][T12849] loop6: detected capacity change from 0 to 512
[  153.080645][T12846] xt_CT: No such helper "pptp"
[  153.129493][T12849] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.143145][T12849] ext4 filesystem being mounted at /574/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.216984][T12855] syzkaller0: entered promiscuous mode
[  153.222539][T12855] syzkaller0: entered allmulticast mode
[  153.338638][ T4511] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.367216][T12868] tipc: Started in network mode
[  153.372176][T12868] tipc: Node identity ac14140f, cluster identity 4711
[  153.387706][T12868] tipc: New replicast peer: 255.255.255.83
[  153.393762][T12868] tipc: Enabled bearer <udp:£>, priority 10
[  153.543199][T12895] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3541'.
[  153.552935][T12895] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3541'.
[  153.823067][T12908] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3547'.
[  153.843997][T12910] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3548'.
[  153.907164][T12918] netlink: 5 bytes leftover after parsing attributes in process `syz.9.3552'.
[  154.007441][T12927] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3556'.
[  154.256644][T12942] loop9: detected capacity change from 0 to 164
[  154.263789][T12942] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.274075][T12942] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.282564][T12942] Symlink component flag not implemented
[  154.288322][T12942] Symlink component flag not implemented
[  154.295131][T12942] Symlink component flag not implemented (7)
[  154.301407][T12942] Symlink component flag not implemented (116)
[  154.306354][T12947] netlink: 5 bytes leftover after parsing attributes in process `syz.7.3564'.
[  154.508044][ T3397] tipc: Node number set to 2886997007
[  154.802129][T12999] loop7: detected capacity change from 0 to 512
[  154.828348][T12999] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.846342][T12999] ext4 filesystem being mounted at /syzcgroup/cpu/syz7/cgroup.procs supports timestamps until 2038-01-19 (0x7fffffff)
[  154.865459][T12999] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.177850][T13029] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3601'.
[  155.198589][T13029] netlink: 'syz.7.3601': attribute type 2 has an invalid length.
[  155.502469][T13052] syzkaller1: entered promiscuous mode
[  155.508697][T13052] syzkaller1: entered allmulticast mode
[  155.526620][T13042] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  155.538112][T13042] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  155.714943][   T29] kauditd_printk_skb: 116 callbacks suppressed
[  155.714958][   T29] audit: type=1326 audit(1748453661.609:7952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13061 comm="syz.3.3614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  155.765007][   T29] audit: type=1326 audit(1748453661.619:7953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13061 comm="syz.3.3614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  155.788649][   T29] audit: type=1326 audit(1748453661.619:7954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13061 comm="syz.3.3614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  155.812279][   T29] audit: type=1326 audit(1748453661.619:7955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13061 comm="syz.3.3614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  155.837586][   T29] audit: type=1326 audit(1748453661.619:7956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13061 comm="syz.3.3614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  155.861749][   T29] audit: type=1326 audit(1748453661.649:7957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13061 comm="syz.3.3614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd991a7e969 code=0x7ffc0000
[  156.108122][   T29] audit: type=1326 audit(1748453661.989:7958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13083 comm="syz.7.3624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e5ce3e969 code=0x7ffc0000
[  156.131771][   T29] audit: type=1326 audit(1748453661.989:7959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13083 comm="syz.7.3624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e5ce3e969 code=0x7ffc0000
[  156.155446][   T29] audit: type=1326 audit(1748453661.989:7960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13083 comm="syz.7.3624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e5ce3e969 code=0x7ffc0000
[  156.179116][   T29] audit: type=1326 audit(1748453661.989:7961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13083 comm="syz.7.3624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e5ce3e969 code=0x7ffc0000
[  156.374459][ T3464] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  156.394614][ T3464] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  157.088435][T13150] $Hÿ: renamed from bond0
[  157.094753][T13150] $Hÿ: entered promiscuous mode
[  157.121529][T13148] loop7: detected capacity change from 0 to 2048
[  157.175959][T13148] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.353053][ T6854] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.437115][T13188] vlan2: entered allmulticast mode
[  157.442366][T13188] macvtap0: entered allmulticast mode
[  157.447744][T13188] veth0_macvtap: entered allmulticast mode
[  157.466405][T13192] xt_hashlimit: size too large, truncated to 1048576
[  157.868927][T13237] geneve0: entered allmulticast mode
[  157.906171][T13244] wg2: entered promiscuous mode
[  157.911344][T13244] wg2: entered allmulticast mode
[  158.024861][T13252] loop7: detected capacity change from 0 to 8192
[  158.032964][T13252] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  158.119131][T13260] futex_wake_op: syz.3.3698 tries to shift op by -1; fix this program
[  158.132495][T13262] loop9: detected capacity change from 0 to 164
[  158.152984][T13262] syz.9.3699: attempt to access beyond end of device
[  158.152984][T13262] loop9: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  158.169617][T13262] syz.9.3699: attempt to access beyond end of device
[  158.169617][T13262] loop9: rw=0, sector=263328, nr_sectors = 4 limit=164
[  158.278317][T13281] __nla_validate_parse: 4 callbacks suppressed
[  158.278331][T13281] netlink: 96 bytes leftover after parsing attributes in process `syz.9.3706'.
[  158.564912][T13314] loop7: detected capacity change from 0 to 128
[  158.572149][T13314] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  158.599333][ T3561] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  158.693898][T13334] pim6reg1: entered promiscuous mode
[  158.699279][T13334] pim6reg1: entered allmulticast mode
[  158.802184][T13345] futex_wake_op: syz.7.3734 tries to shift op by -1; fix this program
[  158.900654][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.908452][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.916282][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.924177][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.932641][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.940490][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.948349][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.956213][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.964290][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.972049][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.979974][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.987814][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  158.995596][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.003344][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.011085][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.018959][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.026704][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.034468][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.042308][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.050140][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.057875][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.065590][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.073318][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.081032][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.088770][ T3464] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  159.097108][ T3464] hid-generic 0000:0000:20000000.000B: hidraw0: <UNKNOWN> HID v0.01 Device [syz0] on syz1
[  159.162308][T13380] ALSA: seq fatal error: cannot create timer (-19)
[  159.180947][T13383] bridge: RTM_NEWNEIGH with invalid ether address
[  159.200498][T13385] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3751'.
[  159.210006][T13385] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3751'.
[  159.471527][T13397] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3757'.
[  159.503290][T13403] netlink: 10 bytes leftover after parsing attributes in process `syz.6.3760'.
[  159.512390][T13403] openvswitch: netlink: Flow key attr not present in new flow.
[  159.688869][T13427] lo speed is unknown, defaulting to 1000
[  159.749864][T13438] netlink: 2028 bytes leftover after parsing attributes in process `syz.9.3773'.
[  159.759040][T13438] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3773'.
[  160.001871][T13446] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3780'.
[  160.205846][T13462] geneve0: entered allmulticast mode
[  160.247887][T13467] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3791'.
[  160.268567][T13467] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3791'.
[  160.776554][T13507] loop7: detected capacity change from 0 to 164
[  160.918060][   T29] kauditd_printk_skb: 665 callbacks suppressed
[  160.918074][   T29] audit: type=1326 audit(1748453666.809:8627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  160.947788][   T29] audit: type=1326 audit(1748453666.809:8628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  160.971314][   T29] audit: type=1326 audit(1748453666.809:8629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  160.994869][   T29] audit: type=1326 audit(1748453666.809:8630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  161.018344][   T29] audit: type=1326 audit(1748453666.809:8631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  161.041920][   T29] audit: type=1326 audit(1748453666.809:8632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  161.065329][   T29] audit: type=1326 audit(1748453666.809:8633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  161.088869][   T29] audit: type=1326 audit(1748453666.809:8634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  161.112345][   T29] audit: type=1326 audit(1748453666.809:8635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  161.135756][   T29] audit: type=1326 audit(1748453666.809:8636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13514 comm="syz.9.3811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  161.722042][T13575] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13575 comm=syz.7.3838
[  161.763652][T13575] netlink: 'syz.7.3838': attribute type 1 has an invalid length.
[  161.831868][T13581] vlan3: entered allmulticast mode
[  161.837012][T13581] bond2: entered allmulticast mode
[  161.992139][T13576] netlink: 'syz.0.3837': attribute type 4 has an invalid length.
[  162.091856][T13582] lo speed is unknown, defaulting to 1000
[  162.127885][ T3533] bond1 (unregistering): (slave geneve2): Releasing active interface
[  162.137022][ T3533] geneve2 (unregistering): left promiscuous mode
[  162.170824][ T3533] bond0 (unregistering): Released all slaves
[  162.180383][ T3533] bond1 (unregistering): Released all slaves
[  162.237751][ T3533] tipc: Disabling bearer <udp:syz2>
[  162.243127][ T3533] tipc: Left network mode
[  162.327910][T13582] chnl_net:caif_netlink_parms(): no params data found
[  162.383935][T13582] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.391063][T13582] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.406686][T13582] bridge_slave_0: entered allmulticast mode
[  162.413127][T13582] bridge_slave_0: entered promiscuous mode
[  162.431388][T13582] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.438710][T13582] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.448149][T13582] bridge_slave_1: entered allmulticast mode
[  162.454640][T13582] bridge_slave_1: entered promiscuous mode
[  162.464906][T13632] loop7: detected capacity change from 0 to 2048
[  162.480211][T13632] EXT4-fs: Ignoring removed i_version option
[  162.488700][T13582] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  162.499413][T13582] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  162.523493][T13632] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.524655][T13582] team0: Port device team_slave_0 added
[  162.535651][T13632] ext4 filesystem being mounted at /502/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.563500][T13582] team0: Port device team_slave_1 added
[  162.582062][ T6854] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.593046][T13582] batman_adv: batadv0: Adding interface: batadv_slave_0
[  162.600100][T13582] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  162.626192][T13582] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  162.668750][T13582] batman_adv: batadv0: Adding interface: batadv_slave_1
[  162.675761][T13582] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  162.701757][T13582] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  162.749818][T13645] pimreg: entered allmulticast mode
[  162.760132][ T3533] IPVS: stop unused estimator thread 0...
[  162.778289][T13645] pimreg: left allmulticast mode
[  162.798951][T13582] hsr_slave_0: entered promiscuous mode
[  162.807207][T13582] hsr_slave_1: entered promiscuous mode
[  162.815520][T13582] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  162.841129][T13582] Cannot create hsr debugfs directory
[  163.065147][T13668] loop9: detected capacity change from 0 to 2048
[  163.073492][T13668] EXT4-fs: Ignoring removed i_version option
[  163.090467][T13668] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.106723][T13668] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.142228][T13582] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  163.152181][T12638] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.164104][T13582] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  163.180553][T13582] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  163.193117][T13582] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  163.262112][T13582] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.289170][T13582] 8021q: adding VLAN 0 to HW filter on device team0
[  163.308674][ T3551] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.315788][ T3551] bridge0: port 1(bridge_slave_0) entered forwarding state
[  163.336671][ T3561] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.343813][ T3561] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.439122][T13582] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  163.449524][T13582] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  163.554711][T13582] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.631398][T13582] veth0_vlan: entered promiscuous mode
[  163.638889][T13582] veth1_vlan: entered promiscuous mode
[  163.653025][T13582] veth0_macvtap: entered promiscuous mode
[  163.660503][T13582] veth1_macvtap: entered promiscuous mode
[  163.673264][T13582] batman_adv: batadv0: Interface activated: batadv_slave_0
[  163.689804][T13582] batman_adv: batadv0: Interface activated: batadv_slave_1
[  163.699991][T13582] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.708748][T13582] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.717445][T13582] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.726261][T13582] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.726275][T13698] usb usb8: usbfs: process 13698 (syz.0.3876) did not claim interface 0 before use
[  163.827426][T13709] loop7: detected capacity change from 0 to 1024
[  163.829576][T13705] SELinux: failed to load policy
[  163.834398][T13709] EXT4-fs: Ignoring removed bh option
[  163.844804][T13709] EXT4-fs: inline encryption not supported
[  163.850755][T13709] EXT4-fs: Ignoring removed i_version option
[  163.859429][T13709] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  163.873724][T13709] EXT4-fs error (device loop7): ext4_map_blocks:709: inode #3: block 1: comm syz.7.3879: lblock 1 mapped to illegal pblock 1 (length 1)
[  163.889955][T13709] EXT4-fs error (device loop7): ext4_acquire_dquot:6935: comm syz.7.3879: Failed to acquire dquot type 0
[  163.906723][T13709] EXT4-fs error (device loop7): ext4_free_blocks:6587: comm syz.7.3879: Freeing blocks not in datazone - block = 0, count = 4096
[  163.920826][T13709] EXT4-fs error (device loop7): ext4_read_inode_bitmap:139: comm syz.7.3879: Invalid inode bitmap blk 0 in block_group 0
[  163.933855][T13709] EXT4-fs error (device loop7) in ext4_free_inode:361: Corrupt filesystem
[  163.942582][ T3511] EXT4-fs error (device loop7): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:12: lblock 1 mapped to illegal pblock 1 (length 1)
[  163.949038][T13709] EXT4-fs (loop7): 1 orphan inode deleted
[  163.963044][ T3511] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:12: Failed to release dquot type 0
[  163.989709][T13709] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.003900][T13709] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.201904][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.210104][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.218312][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.231100][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.234576][T13733] __nla_validate_parse: 7 callbacks suppressed
[  164.234590][T13733] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3889'.
[  164.239270][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.262486][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.270629][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.278824][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.286933][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.295026][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.303141][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.311392][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.319541][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.327612][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.338169][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.346277][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.354432][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.362587][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.370677][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.378790][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.386883][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.395013][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.403104][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.411204][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.419294][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.427498][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.435594][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.443767][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.451901][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: unknown main item tag 0x0
[  164.462166][ T3191] hid-generic FFFF:FFFFFFFC:20000001.000C: hidraw0: <UNKNOWN> HID va0.69 Device [syz0] on syz1
[  164.720036][T13752] loop9: detected capacity change from 0 to 2048
[  164.758471][T13752] EXT4-fs: Ignoring removed bh option
[  164.766788][T13761] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3899'.
[  164.777223][T13752] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.846549][T13752] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  164.897870][T13752] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  164.910136][T13752] EXT4-fs (loop9): This should not happen!! Data will be lost
[  164.910136][T13752] 
[  164.919788][T13752] EXT4-fs (loop9): Total free blocks count 0
[  164.925831][T13752] EXT4-fs (loop9): Free/Dirty block details
[  164.931744][T13752] EXT4-fs (loop9): free_blocks=2415919104
[  164.937465][T13752] EXT4-fs (loop9): dirty_blocks=16
[  164.942624][T13752] EXT4-fs (loop9): Block reservation details
[  164.948646][T13752] EXT4-fs (loop9): i_reserved_data_blocks=1
[  164.982362][T13773] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  165.015327][T13777] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27745 sclass=netlink_route_socket pid=13777 comm=syz.7.3904
[  165.854418][T13824] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3926'.
[  166.056721][T13788] syz.0.3921 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  166.071221][T13788] CPU: 1 UID: 0 PID: 13788 Comm: syz.0.3921 Not tainted 6.15.0-syzkaller-03645-g3d413f0cfd7e #0 PREEMPT(voluntary) 
[  166.071254][T13788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  166.071345][T13788] Call Trace:
[  166.071352][T13788]  <TASK>
[  166.071360][T13788]  __dump_stack+0x1d/0x30
[  166.071380][T13788]  dump_stack_lvl+0xe8/0x140
[  166.071442][T13788]  dump_stack+0x15/0x1b
[  166.071503][T13788]  dump_header+0x81/0x220
[  166.071540][T13788]  oom_kill_process+0x334/0x3f0
[  166.071567][T13788]  out_of_memory+0x979/0xb80
[  166.071599][T13788]  ? css_next_descendant_pre+0x138/0x160
[  166.071644][T13788]  mem_cgroup_out_of_memory+0x13d/0x190
[  166.071667][T13788]  try_charge_memcg+0x5e2/0x870
[  166.071705][T13788]  obj_cgroup_charge_pages+0xb7/0x1a0
[  166.071770][T13788]  __memcg_kmem_charge_page+0x9f/0x170
[  166.071801][T13788]  __alloc_frozen_pages_noprof+0x188/0x360
[  166.071925][T13788]  alloc_pages_mpol+0xb3/0x250
[  166.071954][T13788]  alloc_pages_noprof+0x90/0x130
[  166.071980][T13788]  __vmalloc_node_range_noprof+0x6d5/0xe40
[  166.072034][T13788]  __kvmalloc_node_noprof+0x312/0x4f0
[  166.072107][T13788]  ? ip_set_alloc+0x1f/0x30
[  166.072127][T13788]  ? ip_set_alloc+0x1f/0x30
[  166.072221][T13788]  ? __kmalloc_cache_noprof+0x189/0x320
[  166.072249][T13788]  ip_set_alloc+0x1f/0x30
[  166.072265][T13788]  hash_netiface_create+0x282/0x740
[  166.072287][T13788]  ? __pfx_hash_netiface_create+0x10/0x10
[  166.072311][T13788]  ip_set_create+0x3c9/0x960
[  166.072403][T13788]  ? __nla_parse+0x40/0x60
[  166.072494][T13788]  nfnetlink_rcv_msg+0x4c3/0x590
[  166.072540][T13788]  netlink_rcv_skb+0x120/0x220
[  166.072634][T13788]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  166.072672][T13788]  nfnetlink_rcv+0x16b/0x1690
[  166.072702][T13788]  ? css_rstat_updated+0xcd/0x5b0
[  166.072772][T13788]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  166.072808][T13788]  ? sched_clock+0x3f/0x60
[  166.072842][T13788]  ? perf_cgroup_switch+0x132/0x460
[  166.072870][T13788]  ? update_load_avg+0x1da/0x820
[  166.072944][T13788]  ? __list_add_valid_or_report+0x38/0xe0
[  166.072967][T13788]  ? _raw_spin_unlock+0x26/0x50
[  166.072985][T13788]  ? finish_task_switch+0xad/0x2b0
[  166.073006][T13788]  ? __schedule+0x6a8/0xb30
[  166.073059][T13788]  ? __rcu_read_lock+0x37/0x50
[  166.073081][T13788]  ? __pte_offset_map_lock+0x1d4/0x230
[  166.073106][T13788]  ? vm_normal_page+0xad/0x1c0
[  166.073177][T13788]  ? mod_zone_page_state+0x19/0x80
[  166.073212][T13788]  ? mlock_folio+0x1d7/0x200
[  166.073231][T13788]  ? __rcu_read_unlock+0x4f/0x70
[  166.073251][T13788]  ? mlock_pte_range+0x71e/0x750
[  166.073301][T13788]  ? should_fail_ex+0x30/0x280
[  166.073327][T13788]  ? selinux_nlmsg_lookup+0x99/0x8b0
[  166.073358][T13788]  ? selinux_netlink_send+0x59f/0x5f0
[  166.073460][T13788]  ? __rcu_read_unlock+0x34/0x70
[  166.073484][T13788]  ? __netlink_lookup+0x266/0x2a0
[  166.073584][T13788]  netlink_unicast+0x59e/0x670
[  166.073645][T13788]  netlink_sendmsg+0x58b/0x6b0
[  166.073737][T13788]  ? __pfx_netlink_sendmsg+0x10/0x10
[  166.073845][T13788]  __sock_sendmsg+0x145/0x180
[  166.073877][T13788]  ____sys_sendmsg+0x31e/0x4e0
[  166.073905][T13788]  ___sys_sendmsg+0x17b/0x1d0
[  166.073945][T13788]  __x64_sys_sendmsg+0xd4/0x160
[  166.074083][T13788]  x64_sys_call+0x2999/0x2fb0
[  166.074104][T13788]  do_syscall_64+0xd2/0x200
[  166.074147][T13788]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  166.074173][T13788]  ? clear_bhb_loop+0x40/0x90
[  166.074268][T13788]  ? clear_bhb_loop+0x40/0x90
[  166.074293][T13788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.074317][T13788] RIP: 0033:0x7f77d80fe969
[  166.074334][T13788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.074356][T13788] RSP: 002b:00007f77d6767038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  166.074384][T13788] RAX: ffffffffffffffda RBX: 00007f77d8325fa0 RCX: 00007f77d80fe969
[  166.074399][T13788] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  166.074414][T13788] RBP: 00007f77d8180ab1 R08: 0000000000000000 R09: 0000000000000000
[  166.074428][T13788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  166.074443][T13788] R13: 0000000000000000 R14: 00007f77d8325fa0 R15: 00007ffc767b5d68
[  166.074464][T13788]  </TASK>
[  166.074493][T13788] memory: usage 307200kB, limit 307200kB, failcnt 1124
[  166.147031][   T29] kauditd_printk_skb: 599 callbacks suppressed
[  166.147045][   T29] audit: type=1326 audit(1748453672.009:9233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13843 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  166.151659][T13788] memory+swap: usage 361980kB, limit 9007199254740988kB, failcnt 0
[  166.151671][T13788] kmem: usage 294136kB, limit 9007199254740988kB, failcnt 0
[  166.151683][T13788] Memory cgroup stats for /syz0
[  166.157146][   T29] audit: type=1326 audit(1748453672.009:9234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13843 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  166.162925][T13788] :
[  166.190889][T13788] cache 10489856
[  166.194675][   T29] audit: type=1326 audit(1748453672.009:9235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13843 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  166.200197][T13788] rss 217088
[  166.200205][T13788] shmem 10452992
[  166.200213][T13788] mapped_file 36864
[  166.204516][   T29] audit: type=1326 audit(1748453672.009:9236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13845 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa2c7531225 code=0x7ffc0000
[  166.209750][T13788] dirty 16384
[  166.215407][   T29] audit: type=1326 audit(1748453672.009:9237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13843 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  166.219992][T13788] writeback 0
[  166.219999][T13788] workingset_refault_anon 102
[  166.220007][T13788] workingset_refault_file 259
[  166.220014][T13788] swap 56094720
[  166.220021][T13788] swapcached 2670592
[  166.220029][T13788] nr_memmap_boot_pages 177300
[  166.224412][   T29] audit: type=1326 audit(1748453672.009:9238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13843 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  166.229399][T13788] pgpgin 174034
[  166.229406][T13788] pglazyfree 218675
[  166.229412][T13788] pgfault 62
[  166.229419][T13788] a_other 12005376
[  166.229427][T13788] inactive_anon 1142784
[  166.229435][T13788] active_anon 0
[  166.229442][T13788] inactive_file 0
[  166.229449][T13788] active_file 229376
[  166.234185][   T29] audit: type=1326 audit(1748453672.009:9239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13843 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  166.239643][T13788] hierarchical_memory_limit 314572800
[  166.239652][T13788] hierarchical_memsw_limit 9223372036854771712
[  166.239660][T13788] total_cache 10489856
[  166.239667][T13788] total_rss 217088
[  166.239674][T13788] total_shmem 10452992
[  166.239681][T13788] total_mapped_file 36864
[  166.244346][   T29] audit: type=1326 audit(1748453672.009:9240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13843 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  166.249340][T13788] total_dirty 16384
[  166.249348][T13788] total_writeback 0
[  166.249354][T13788] total_workingset_refault_anon 102
[  166.249362][T13788] total_workingset_refault_file 259
[  166.255225][   T29] audit: type=1326 audit(1748453672.019:9241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13843 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  166.259630][T13788] total_swap 56094720
[  166.259637][T13788] total_swapcached 2670592
[  166.259671][T13788] total_nr_memmap_boot_pages 177300
[  166.259678][T13788] total_pgpgin 174034
[  166.259685][T13788] total_pglazyfree 218675
[  166.259692][T13788] total_pgfault 62
[  166.259699][T13788] total_a_other 12005376
[  166.264861][   T29] audit: type=1326 audit(1748453672.019:9242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13843 comm="syz.9.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  166.269796][T13788] total_inactive_anon 1142784
[  166.593505][T13857] netlink: 2028 bytes leftover after parsing attributes in process `syz.6.3937'.
[  166.600729][T13788] total_active_anon 0
[  166.600740][T13788] total_inactive_file 0
[  166.603920][T13857] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3937'.
[  166.941238][T13788] total_active_file 229376
[  166.945633][T13788] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.3921,pid=13787,uid=0
[  166.960337][T13788] Memory cgroup out of memory: Killed process 13787 (syz.0.3921) total-vm:95796kB, anon-rss:1068kB, file-rss:22064kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  166.981510][T13853] loop9: detected capacity change from 0 to 512
[  167.008933][T13853] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  167.030943][T13853] EXT4-fs (loop9): 1 truncate cleaned up
[  167.037204][T13853] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.080092][T12638] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.100186][T13864] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3942'.
[  167.184080][T13870] loop7: detected capacity change from 0 to 1024
[  167.213071][T13870] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.240309][T13880] netlink: 'syz.9.3949': attribute type 7 has an invalid length.
[  167.248200][T13880] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3949'.
[  167.320572][ T6854] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.722100][T13903] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3968'.
[  167.817015][T13911] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3962'.
[  167.910010][T13915] rdma_rxe: rxe_newlink: failed to add lo
[  167.945612][T13920] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3963'.
[  167.972617][T13920] 8021q: adding VLAN 0 to HW filter on device bond0
[  168.140258][T13943] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13943 comm=syz.9.3978
[  168.155262][T13943] netlink: 'syz.9.3978': attribute type 1 has an invalid length.
[  168.174398][T13943] vlan2: entered allmulticast mode
[  168.179691][T13943] bond1: entered allmulticast mode
[  168.234758][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.242398][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.249832][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.270754][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.278342][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.285754][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.293172][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.300667][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.308062][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.315478][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.322943][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.330346][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.337794][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.348347][T13955] hub 9-0:1.0: USB hub found
[  168.353163][T13955] hub 9-0:1.0: 8 ports detected
[  168.365276][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.372741][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.380244][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.387695][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.395085][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.402578][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.409982][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.417363][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.424795][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.432221][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.439628][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.447001][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.454445][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.461841][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.469376][ T3464] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  168.510976][ T3464] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  168.566854][T13965] loop9: detected capacity change from 0 to 2048
[  168.620335][T13965]  loop9: p1 < > p3
[  168.624842][T13965] loop9: p3 size 134217728 extends beyond EOD, truncated
[  168.725178][T13968] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  168.925670][T13988] loop9: detected capacity change from 0 to 512
[  168.932311][T13988] EXT4-fs: Ignoring removed mblk_io_submit option
[  168.939186][T13988] EXT4-fs: Ignoring removed i_version option
[  168.945766][T13988] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  168.962722][T13988] EXT4-fs (loop9): 1 truncate cleaned up
[  168.980369][T13988] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.115852][T14000] loop7: detected capacity change from 0 to 2048
[  169.123040][T12638] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.151308][T14000] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.167420][T13986] Set syz1 is full, maxelem 65536 reached
[  169.347374][T14011] __nla_validate_parse: 5 callbacks suppressed
[  169.347388][T14011] netlink: 256 bytes leftover after parsing attributes in process `syz.3.4005'.
[  169.371939][T14015] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4006'.
[  169.488217][T14015] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4006'.
[  169.492080][ T6854] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.829372][T14056] loop7: detected capacity change from 0 to 1764
[  170.372989][T14092] tipc: New replicast peer: 255.255.0.10
[  170.378870][T14092] tipc: Enabled bearer <udp:ree>, priority 10
[  170.424463][T14098] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  170.637901][T14120] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4053'.
[  170.677892][T14125] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  170.707195][T14131] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4057'.
[  170.822797][T14154] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  170.990720][T14175] ref_ctr increment failed for inode: 0xe3 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff888104917300
[  171.004188][T14174] uprobe: syz.3.4072:14174 failed to unregister, leaking uprobe
[  171.149930][   T29] kauditd_printk_skb: 571 callbacks suppressed
[  171.149947][   T29] audit: type=1326 audit(1748453677.049:9814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f77d80f5927 code=0x7ffc0000
[  171.179897][   T29] audit: type=1326 audit(1748453677.049:9815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f77d809ab39 code=0x7ffc0000
[  171.203290][   T29] audit: type=1326 audit(1748453677.049:9816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  171.226905][   T29] audit: type=1326 audit(1748453677.049:9817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f77d80f5927 code=0x7ffc0000
[  171.250334][   T29] audit: type=1326 audit(1748453677.049:9818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f77d809ab39 code=0x7ffc0000
[  171.273749][   T29] audit: type=1326 audit(1748453677.049:9819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  171.297288][   T29] audit: type=1326 audit(1748453677.049:9820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f77d80f5927 code=0x7ffc0000
[  171.320835][   T29] audit: type=1326 audit(1748453677.049:9821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f77d809ab39 code=0x7ffc0000
[  171.344250][   T29] audit: type=1326 audit(1748453677.049:9822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  171.369562][   T29] audit: type=1326 audit(1748453677.079:9823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14093 comm="syz.0.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f77d80f5927 code=0x7ffc0000
[  171.439883][T14196] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4082'.
[  171.457876][T14193] netlink: 256 bytes leftover after parsing attributes in process `syz.0.4079'.
[  171.521427][T14204] lo speed is unknown, defaulting to 1000
[  171.524557][T14205] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  171.533729][T14205] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  171.541446][T14205] vhci_hcd vhci_hcd.0: Device attached
[  171.590010][T14217] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4087'.
[  171.689927][T14209] vhci_hcd: connection closed
[  171.690088][ T3428] vhci_hcd: stop threads
[  171.699049][ T3428] vhci_hcd: release socket
[  171.703648][ T3428] vhci_hcd: disconnect device
[  171.728074][   T36] vhci_hcd: vhci_device speed not set
[  172.307292][T14239] lo speed is unknown, defaulting to 1000
[  172.375584][T14251] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4102'.
[  172.671770][T14274] netlink: 40 bytes leftover after parsing attributes in process `syz.7.4114'.
[  172.852336][T14257] Set syz1 is full, maxelem 65536 reached
[  173.252575][T14335] netlink: 'syz.3.4140': attribute type 13 has an invalid length.
[  173.376719][T14335] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.384026][T14335] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.498797][T14335] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.512888][T14335] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.548797][T14335] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.557708][T14335] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.566597][T14335] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.575672][T14335] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.700227][T14355] netlink: '+}[@': attribute type 4 has an invalid length.
[  173.863266][T14364] ref_ctr increment failed for inode: 0xb38 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff88810005cac0
[  173.887651][T14363] uprobe: syz.7.4152:14363 failed to unregister, leaking uprobe
[  174.045469][T14381] wg2: entered promiscuous mode
[  174.050433][T14381] wg2: entered allmulticast mode
[  174.112566][T14389] lo speed is unknown, defaulting to 1000
[  174.853072][T14408] __nla_validate_parse: 2 callbacks suppressed
[  174.853088][T14408] netlink: 36 bytes leftover after parsing attributes in process `syz.9.4170'.
[  174.868418][T14408] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4170'.
[  174.877356][T14408] netlink: 36 bytes leftover after parsing attributes in process `syz.9.4170'.
[  174.887635][T14408] netlink: 36 bytes leftover after parsing attributes in process `syz.9.4170'.
[  175.024574][T14416] netlink: '+}[@': attribute type 4 has an invalid length.
[  175.260935][T14443] netlink: 36 bytes leftover after parsing attributes in process `syz.6.4183'.
[  175.269959][T14443] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4183'.
[  175.278974][T14443] netlink: 36 bytes leftover after parsing attributes in process `syz.6.4183'.
[  175.304653][T14443] netlink: 36 bytes leftover after parsing attributes in process `syz.6.4183'.
[  176.117140][T14530] netlink: 'syz.7.4218': attribute type 13 has an invalid length.
[  176.167073][   T29] kauditd_printk_skb: 1068 callbacks suppressed
[  176.167087][   T29] audit: type=1326 audit(1748453682.059:10892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14479 comm="syz.9.4194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  176.198459][   T29] audit: type=1326 audit(1748453682.089:10893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14479 comm="syz.9.4194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  176.223984][   T29] audit: type=1326 audit(1748453682.119:10894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14479 comm="syz.9.4194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  176.248673][   T29] audit: type=1326 audit(1748453682.149:10895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14479 comm="syz.9.4194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  176.273261][   T29] audit: type=1326 audit(1748453682.169:10896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14479 comm="syz.9.4194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  176.298758][   T29] audit: type=1326 audit(1748453682.199:10897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14479 comm="syz.9.4194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  176.323497][   T29] audit: type=1326 audit(1748453682.219:10898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14479 comm="syz.9.4194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fa2c74fe969 code=0x7ffc0000
[  176.444281][T14550] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4215'.
[  176.489342][T14554] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4226'.
[  176.519576][T14563] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  176.541944][T14568] netlink: 'syz.7.4224': attribute type 5 has an invalid length.
[  176.550722][T14568] : renamed from bond0
[  176.554111][T14570] netlink: 'syz.9.4225': attribute type 13 has an invalid length.
[  176.650016][T14579] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=14579 comm=syz.3.4230
[  176.681510][T14570] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.688691][T14570] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.711384][T14586] SELinux: security_context_str_to_sid () failed with errno=-22
[  176.764925][T14570] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  176.808434][T14570] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  176.916978][T14570] veth0_macvtap: left allmulticast mode
[  176.941806][T14570] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.950896][T14570] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.960068][T14570] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.969207][T14570] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  177.515923][   T29] audit: type=1326 audit(1748453683.409:10899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.0.4258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  177.571519][   T29] audit: type=1326 audit(1748453683.439:10900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.0.4258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  177.595361][   T29] audit: type=1326 audit(1748453683.439:10901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.0.4258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77d80fe969 code=0x7ffc0000
[  178.348270][T14694] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27745 sclass=netlink_route_socket pid=14694 comm=syz.3.4271
[  178.459528][T14704] netlink: 'syz.0.4275': attribute type 13 has an invalid length.
[  178.899501][T14744] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14744 comm=syz.3.4293
[  179.414552][T14791] SELinux: ebitmap: truncated map
[  179.428723][T14794] lo speed is unknown, defaulting to 1000
[  179.430468][T14791] SELinux: failed to load policy
[  179.632941][T14812] lo speed is unknown, defaulting to 1000
[  180.368285][T14833] all: renamed from bridge_slave_0
[  180.478991][T14814] Set syz1 is full, maxelem 65536 reached
[  181.081365][T14866] bridge: RTM_NEWNEIGH with invalid state 0x31
[  181.233866][T14613] IPVS: starting estimator thread 0...
[  181.354615][   T29] kauditd_printk_skb: 77 callbacks suppressed
[  181.354630][   T29] audit: type=1400 audit(1748453687.239:10979): avc:  denied  { ioctl } for  pid=14884 comm="syz.9.4347" path="socket:[43567]" dev="sockfs" ino=43567 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  181.386063][T14881] IPVS: using max 2496 ests per chain, 124800 per kthread
[  181.425425][T14890] netlink: 'syz.6.4348': attribute type 7 has an invalid length.
[  181.433251][T14890] __nla_validate_parse: 3 callbacks suppressed
[  181.433264][T14890] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4348'.
[  181.503601][T14893] openvswitch: netlink: Message has 6 unknown bytes.
[  181.588805][T14898] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4353'.
[  181.668982][T14874] xt_hashlimit: max too large, truncated to 1048576
[  181.702226][T14874] No such timeout policy "syz1"
[  181.827476][   T29] audit: type=1326 audit(1748453687.719:10980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14914 comm="syz.3.4360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b87fe969 code=0x7ffc0000
[  181.908190][   T29] audit: type=1326 audit(1748453687.749:10981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14914 comm="syz.3.4360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b87fe969 code=0x7ffc0000
[  181.931936][   T29] audit: type=1326 audit(1748453687.749:10982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14914 comm="syz.3.4360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd6b87fe969 code=0x7ffc0000
[  181.955480][   T29] audit: type=1326 audit(1748453687.749:10983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14914 comm="syz.3.4360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b87fe969 code=0x7ffc0000
[  181.979367][   T29] audit: type=1326 audit(1748453687.749:10984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14914 comm="syz.3.4360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b87fe969 code=0x7ffc0000
[  182.002941][   T29] audit: type=1326 audit(1748453687.749:10985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14914 comm="syz.3.4360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7fd6b87fe969 code=0x7ffc0000
[  182.026793][   T29] audit: type=1326 audit(1748453687.749:10986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14914 comm="syz.3.4360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b87fe969 code=0x7ffc0000
[  182.050388][   T29] audit: type=1326 audit(1748453687.749:10987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14914 comm="syz.3.4360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd6b87fe969 code=0x7ffc0000
[  182.218037][   T29] audit: type=1326 audit(1748453688.099:10988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14914 comm="syz.3.4360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b87fe969 code=0x7ffc0000
[  182.479393][T14941] netlink: 24 bytes leftover after parsing attributes in process `syz.9.4370'.
[  182.628402][T14951] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4373'.
[  182.687966][T14958] wg2: left promiscuous mode
[  182.692747][T14958] wg2: left allmulticast mode
[  182.700602][T14958] wg2: entered promiscuous mode
[  182.705473][T14958] wg2: entered allmulticast mode
[  182.892769][T14981] netlink: 'syz.6.4386': attribute type 7 has an invalid length.
[  182.900540][T14981] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4386'.
[  183.141606][T15004] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4396'.
[  183.231023][T14613] kernel write not supported for file /1335/attr/exec (pid: 14613 comm: kworker/1:9)
[  183.324059][T15021] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4404'.
[  183.427618][T15037] syzkaller0: entered promiscuous mode
[  183.433176][T15037] syzkaller0: entered allmulticast mode
[  183.525734][T15048] SET target dimension over the limit!
[  183.685921][T15065] lo speed is unknown, defaulting to 1000
[  183.747417][T15067] xt_connbytes: Forcing CT accounting to be enabled
[  183.754349][T15067] Cannot find set identified by id 0 to match
[  183.927120][T15090] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4435'.
[  184.273850][T15121] wg2: left promiscuous mode
[  184.278636][T15121] wg2: left allmulticast mode
[  184.410160][T15134] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4463'.
[  184.685260][T15162] lo speed is unknown, defaulting to 1000
[  184.953942][T15178] tipc: Failed to remove unknown binding: 66,1,1/2130706433:2542125496/2542125498
[  184.963725][T15178] tipc: Failed to remove unknown binding: 66,1,1/2130706433:2542125496/2542125498
[  184.973059][T15178] tipc: Failed to remove unknown binding: 66,1,1/2130706433:2542125496/2542125498
[  184.996501][T15180] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4474'.
[  185.028070][T15182] bridge0: entered allmulticast mode
[  185.033933][T15182] bridge_slave_1: left allmulticast mode
[  185.039681][T15182] bridge_slave_1: left promiscuous mode
[  185.045264][T15182] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.053232][T15182] bridge_slave_0: left allmulticast mode
[  185.058985][T15182] bridge_slave_0: left promiscuous mode
[  185.064679][T15182] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.787568][T15219] lo speed is unknown, defaulting to 1000
[  185.848915][T15219] chnl_net:caif_netlink_parms(): no params data found
[  185.885070][T15219] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.892332][T15219] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.900368][T15219] bridge_slave_0: entered allmulticast mode
[  185.907042][T15219] bridge_slave_0: entered promiscuous mode
[  185.914518][T15219] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.921667][T15219] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.929028][T15219] bridge_slave_1: entered allmulticast mode
[  185.935547][T15219] bridge_slave_1: entered promiscuous mode
[  185.953206][T15219] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  185.963447][T15219] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  185.981859][T15219] team0: Port device team_slave_0 added
[  185.988501][T15219] team0: Port device team_slave_1 added
[  186.003022][T15219] batman_adv: batadv0: Adding interface: batadv_slave_0
[  186.010021][T15219] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  186.035954][T15219] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  186.047323][T15219] batman_adv: batadv0: Adding interface: batadv_slave_1
[  186.054318][T15219] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  186.080313][T15219] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  186.161193][T15219] hsr_slave_0: entered promiscuous mode
[  186.170511][T15219] hsr_slave_1: entered promiscuous mode
[  186.181433][T15219] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  186.189612][T15219] Cannot create hsr debugfs directory
[  186.372325][   T29] kauditd_printk_skb: 313 callbacks suppressed
[  186.372348][   T29] audit: type=1400 audit(1748453692.269:11302): avc:  denied  { create } for  pid=15271 comm="syz.6.4510" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  186.428218][   T29] audit: type=1400 audit(1748453692.269:11303): avc:  denied  { create } for  pid=15273 comm="syz.3.4511" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  186.448920][   T29] audit: type=1400 audit(1748453692.299:11304): avc:  denied  { write } for  pid=15273 comm="syz.3.4511" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  186.469576][   T29] audit: type=1400 audit(1748453692.299:11305): avc:  denied  { read } for  pid=15273 comm="syz.3.4511" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  186.490424][   T29] audit: type=1400 audit(1748453692.299:11306): avc:  denied  { open } for  pid=15271 comm="syz.6.4510" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  186.510206][   T29] audit: type=1400 audit(1748453692.299:11307): avc:  denied  { kernel } for  pid=15271 comm="syz.6.4510" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  186.529848][   T29] audit: type=1400 audit(1748453692.309:11308): avc:  denied  { write } for  pid=15273 comm="syz.3.4511" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  186.591388][   T29] audit: type=1400 audit(1748453692.489:11309): avc:  denied  { mounton } for  pid=15278 comm="syz.0.4513" path="/927/file0" dev="tmpfs" ino=4832 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  186.635766][   T29] audit: type=1400 audit(1748453692.519:11310): avc:  denied  { mount } for  pid=15278 comm="syz.0.4513" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  186.658038][   T29] audit: type=1400 audit(1748453692.519:11311): avc:  denied  { setattr } for  pid=15278 comm="syz.0.4513" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  186.786878][T15219] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  186.796959][T15219] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  186.807885][T15219] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  186.820829][T15219] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  186.864936][ T3515] bridge_slave_1: left allmulticast mode
[  186.870836][ T3515] bridge_slave_1: left promiscuous mode
[  186.876462][ T3515] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.884616][ T3515] bridge_slave_0: left allmulticast mode
[  186.890386][ T3515] bridge_slave_0: left promiscuous mode
[  186.896083][ T3515] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.070117][ T3515] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  187.081888][ T3515] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  187.091034][ T3515] bond0 (unregistering): Released all slaves
[  187.106193][ T3515] bond1 (unregistering): Released all slaves
[  187.139508][T15219] 8021q: adding VLAN 0 to HW filter on device bond0
[  187.152301][T15219] 8021q: adding VLAN 0 to HW filter on device team0
[  187.161945][ T3539] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.169003][ T3539] bridge0: port 1(bridge_slave_0) entered forwarding state
[  187.182656][ T3515] tipc: Disabling bearer <udp:£>
[  187.187617][ T3515] tipc: Left network mode
[  187.201378][T15219] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  187.211841][T15219] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  187.225360][ T3539] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.232426][ T3539] bridge0: port 2(bridge_slave_1) entered forwarding state
[  187.251689][ T3515] hsr_slave_0: left promiscuous mode
[  187.257534][ T3515] hsr_slave_1: left promiscuous mode
[  187.264704][ T3515] batman_adv: batadv0: Removing interface: batadv_slave_0
[  187.272949][ T3515] batman_adv: batadv0: Removing interface: batadv_slave_1
[  187.317584][ T3515] team0 (unregistering): Port device team_slave_1 removed
[  187.328629][ T3515] team0 (unregistering): Port device team_slave_0 removed
[  187.406699][T15219] 8021q: adding VLAN 0 to HW filter on device batadv0
[  187.485720][T15219] veth0_vlan: entered promiscuous mode
[  187.495506][T15219] veth1_vlan: entered promiscuous mode
[  187.510597][T15219] veth0_macvtap: entered promiscuous mode
[  187.522231][T15219] veth1_macvtap: entered promiscuous mode
[  187.534362][T15219] batman_adv: batadv0: Interface activated: batadv_slave_0
[  187.545506][T15219] batman_adv: batadv0: Interface activated: batadv_slave_1
[  187.556045][T15219] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  187.564912][T15219] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  187.573792][T15219] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  187.582564][T15219] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  187.669468][T15319] __nla_validate_parse: 3 callbacks suppressed
[  187.669485][T15319] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4532'.
[  187.762317][T15319] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4532'.
[  187.947865][T15345] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4535'.
[  187.956925][T15345] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4535'.
[  187.966037][T15345] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4535'.
[  188.044622][T15356] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  188.167424][T15366] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4544'.
[  188.225825][T15372] lo speed is unknown, defaulting to 1000
[  188.377974][T15377] infiniband syz!: set down
[  188.382575][T15377] infiniband syz!: added team_slave_0
[  188.403476][T15377] RDS/IB: syz!: added
[  188.408695][T15377] smc: adding ib device syz! with port count 1
[  188.415713][T15377] smc:    ib device syz! port 1 has pnetid 
[  188.567931][T15383] C: renamed from team_slave_0
[  188.576287][T15383] netlink: 'syz.0.4551': attribute type 3 has an invalid length.
[  188.584134][T15383] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4551'.
[  188.593248][T15383] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  188.625116][T15385] netlink: 43 bytes leftover after parsing attributes in process `syz.0.4552'.
[  188.649607][T15385] tipc: Enabled bearer <eth:vlan0>, priority 10
[  188.656713][T15385] ªªªªªª: renamed from vlan0
[  188.664510][T15385] tipc: Disabling bearer <eth:vlan0>
[  188.906232][T15412] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  188.914705][T15412] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  189.301623][T15456] xt_hashlimit: size too large, truncated to 1048576
[  189.674044][T15476] ip6gre1: entered allmulticast mode
[  189.739052][T15480] hsr_slave_1 (unregistering): left promiscuous mode
[  189.822223][T15486] loop1: detected capacity change from 0 to 2048
[  189.854473][T15486] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.909698][T15219] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.002187][T15501] pim6reg1: entered promiscuous mode
[  190.007573][T15501] pim6reg1: entered allmulticast mode
[  190.368841][T15545] syz_tun: entered allmulticast mode
[  190.374710][T15544] syz_tun: left allmulticast mode
[  190.850853][T15641] loop1: detected capacity change from 0 to 512
[  190.857651][T15641] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  190.870849][T15641] EXT4-fs (loop1): 1 truncate cleaned up
[  190.880451][T15641] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.929680][T15219] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.964307][T15513] 9pnet_fd: p9_fd_create_tcp (15513): problem connecting socket to 127.0.0.1
[  191.059132][T15672] ref_ctr_offset mismatch. inode: 0x5f offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x6
[  191.410766][   T29] kauditd_printk_skb: 196 callbacks suppressed
[  191.410779][   T29] audit: type=1400 audit(1748453697.309:11508): avc:  denied  { name_bind } for  pid=15705 comm="syz.1.4641" src=24097 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  191.534647][T15708] netlink: 'syz.1.4642': attribute type 13 has an invalid length.
[  191.605694][T15708] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.612929][T15708] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.679400][   T29] audit: type=1400 audit(1748453697.569:11509): avc:  denied  { create } for  pid=15710 comm="syz.7.4643" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  191.699773][   T29] audit: type=1400 audit(1748453697.579:11510): avc:  denied  { write } for  pid=15710 comm="syz.7.4643" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  191.765213][T15708] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.777558][T15708] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.832458][T15708] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.842275][T15708] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.852280][T15708] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.862482][T15708] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.938465][T15713] : (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  191.950513][T15713] : (slave ipvlan2): The slave device specified does not support setting the MAC address
[  191.975393][T15713] : (slave ipvlan2): Error -95 calling set_mac_address
[  192.082732][   T29] audit: type=1400 audit(1748453697.979:11511): avc:  denied  { write } for  pid=15718 comm="syz.1.4647" name="001" dev="devtmpfs" ino=168 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  192.138582][T15721] all: renamed from lo
[  192.164777][   T29] audit: type=1400 audit(1748453698.059:11512): avc:  denied  { read write } for  pid=15722 comm="syz.1.4650" name="rdma_cm" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  192.189275][   T29] audit: type=1400 audit(1748453698.059:11513): avc:  denied  { open } for  pid=15722 comm="syz.1.4650" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  192.255323][   T23] IPVS: starting estimator thread 0...
[  192.283342][   T29] audit: type=1400 audit(1748453698.179:11514): avc:  denied  { create } for  pid=15733 comm="syz.1.4655" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=decnet_socket permissive=1
[  192.369829][   T29] audit: type=1400 audit(1748453698.269:11515): avc:  denied  { create } for  pid=15744 comm="syz.0.4659" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  192.398177][T15732] IPVS: using max 2448 ests per chain, 122400 per kthread
[  192.600715][   T29] audit: type=1400 audit(1748453698.309:11516): avc:  denied  { mounton } for  pid=15744 comm="syz.0.4659" path="/966/file0" dev="tmpfs" ino=5033 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  192.624137][   T29] audit: type=1400 audit(1748453698.399:11517): avc:  denied  { unlink } for  pid=3318 comm="syz-executor" name="file0" dev="tmpfs" ino=5033 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  192.710992][T15742] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  192.822151][T15759] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=15759 comm=syz.0.4664
[  192.985511][T15771] loop1: detected capacity change from 0 to 128
[  193.000094][T15771] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  193.036700][T15771] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  193.286514][ T1087] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  193.317076][T15791] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  193.573970][T15795] __nla_validate_parse: 15 callbacks suppressed
[  193.574058][T15795] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4677'.
[  193.627374][T15799] loop1: detected capacity change from 0 to 164
[  193.679209][T15799] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  193.781172][T15813] tipc: New replicast peer: 255.255.255.83
[  193.787096][T15813] tipc: Enabled bearer <udp:£>, priority 10
[  193.903620][T15821] netlink: 'syz.6.4690': attribute type 5 has an invalid length.
[  193.911576][T15821] netlink: 152 bytes leftover after parsing attributes in process `syz.6.4690'.
[  194.521914][T15871] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15871 comm=syz.7.4721
[  195.021533][T15882] loop1: detected capacity change from 0 to 1024
[  195.040153][T15882] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  195.049948][T15882] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  195.060549][T15882] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #32: comm syz.1.4714: iget: special inode unallocated
[  195.073283][T15882] EXT4-fs (loop1): Remounting filesystem read-only
[  195.079946][T15882] EXT4-fs (loop1): no journal found
[  195.085203][T15882] EXT4-fs (loop1): can't get journal size
[  195.099206][T15882] EXT4-fs (loop1): filesystem is read-only
[  195.105792][T15882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  195.272326][T15219] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.505365][T15919] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4734'.
[  195.575291][T15925] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4736'.
[  195.623932][T15925] netem: change failed
[  195.683670][T15929] syzkaller1: entered promiscuous mode
[  195.689194][T15929] syzkaller1: entered allmulticast mode
[  196.427442][   T29] kauditd_printk_skb: 144 callbacks suppressed
[  196.427458][   T29] audit: type=1400 audit(1748453702.319:11662): avc:  denied  { read } for  pid=15955 comm="syz.1.4750" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  196.564664][T15966] lo speed is unknown, defaulting to 1000
[  196.600531][   T29] audit: type=1326 audit(1748453702.499:11663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15965 comm="syz.1.4753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75762fe969 code=0x7ffc0000
[  196.654437][   T29] audit: type=1326 audit(1748453702.529:11664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15965 comm="syz.1.4753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f75762fe969 code=0x7ffc0000
[  196.677974][   T29] audit: type=1326 audit(1748453702.529:11665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15965 comm="syz.1.4753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75762fe969 code=0x7ffc0000
[  196.701654][   T29] audit: type=1326 audit(1748453702.529:11666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15965 comm="syz.1.4753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75762fe969 code=0x7ffc0000
[  196.725392][   T29] audit: type=1326 audit(1748453702.529:11667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15965 comm="syz.1.4753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f75762fe969 code=0x7ffc0000
[  196.748887][   T29] audit: type=1326 audit(1748453702.529:11668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15965 comm="syz.1.4753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75762fe969 code=0x7ffc0000
[  196.772565][   T29] audit: type=1326 audit(1748453702.529:11669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15965 comm="syz.1.4753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75762fe969 code=0x7ffc0000
[  196.796123][   T29] audit: type=1326 audit(1748453702.539:11670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15965 comm="syz.1.4753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f75762fe969 code=0x7ffc0000
[  196.819737][   T29] audit: type=1326 audit(1748453702.539:11671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15965 comm="syz.1.4753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75762fe969 code=0x7ffc0000
[  196.956417][T15972] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4755'.
[  196.996569][T15974] lo speed is unknown, defaulting to 1000
[  197.143021][T15985] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  197.249621][T16002] macvtap0: entered promiscuous mode
[  197.256656][T16002] macvtap0: left promiscuous mode
[  197.284180][T16009] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4769'.
[  197.301421][T16009] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4769'.
[  197.489953][T16030] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4777'.
[  197.733006][T16039] lo speed is unknown, defaulting to 1000
[  198.402217][T16071] IPVS: Error connecting to the multicast addr
[  198.542985][T16078] lo speed is unknown, defaulting to 1000
[  199.000048][T16093] vhci_hcd: invalid port number 16
[  199.005374][T16093] vhci_hcd: default hub control req: 0000 v0008 i0010 l0
[  199.117336][T16099] loop1: detected capacity change from 0 to 1024
[  199.135541][T16099] EXT4-fs: Ignoring removed orlov option
[  199.154048][T16099] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.412364][T16104] ==================================================================
[  199.420481][T16104] BUG: KCSAN: data-race in __writeback_single_inode / xas_set_mark
[  199.428414][T16104] 
[  199.430740][T16104] write to 0xffff888116ecfc54 of 4 bytes by task 16099 on cpu 0:
[  199.438459][T16104]  xas_set_mark+0x12b/0x140
[  199.442969][T16104]  __folio_start_writeback+0x1dd/0x430
[  199.448432][T16104]  ext4_bio_write_folio+0x5ad/0x9f0
[  199.453639][T16104]  mpage_process_page_bufs+0x46c/0x5b0
[  199.459100][T16104]  mpage_prepare_extent_to_map+0x775/0xb80
[  199.464903][T16104]  ext4_do_writepages+0xa25/0x2270
[  199.470023][T16104]  ext4_writepages+0x176/0x300
[  199.474785][T16104]  do_writepages+0x1c6/0x310
[  199.479376][T16104]  file_write_and_wait_range+0x156/0x2c0
[  199.485008][T16104]  generic_buffers_fsync_noflush+0x45/0x120
[  199.490913][T16104]  ext4_sync_file+0x1ab/0x690
[  199.495584][T16104]  vfs_fsync_range+0x10a/0x130
[  199.500349][T16104]  ext4_buffered_write_iter+0x34f/0x3c0
[  199.505889][T16104]  ext4_file_write_iter+0x383/0xf00
[  199.511082][T16104]  iter_file_splice_write+0x5ef/0x970
[  199.516452][T16104]  direct_splice_actor+0x153/0x2a0
[  199.521560][T16104]  splice_direct_to_actor+0x30f/0x680
[  199.526931][T16104]  do_splice_direct+0xda/0x150
[  199.531692][T16104]  do_sendfile+0x380/0x650
[  199.536104][T16104]  __x64_sys_sendfile64+0x105/0x150
[  199.541293][T16104]  x64_sys_call+0xb39/0x2fb0
[  199.545878][T16104]  do_syscall_64+0xd2/0x200
[  199.550381][T16104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.556270][T16104] 
[  199.558584][T16104] read to 0xffff888116ecfc54 of 4 bytes by task 16104 on cpu 1:
[  199.566202][T16104]  __writeback_single_inode+0x1f9/0x7c0
[  199.571744][T16104]  writeback_single_inode+0x167/0x3e0
[  199.577312][T16104]  sync_inode_metadata+0x5b/0x90
[  199.582243][T16104]  generic_buffers_fsync_noflush+0xd9/0x120
[  199.588136][T16104]  ext4_sync_file+0x1ab/0x690
[  199.592819][T16104]  vfs_fsync_range+0x10a/0x130
[  199.597589][T16104]  ext4_buffered_write_iter+0x34f/0x3c0
[  199.603134][T16104]  ext4_file_write_iter+0x383/0xf00
[  199.608329][T16104]  iter_file_splice_write+0x5ef/0x970
[  199.613706][T16104]  direct_splice_actor+0x153/0x2a0
[  199.618828][T16104]  splice_direct_to_actor+0x30f/0x680
[  199.624203][T16104]  do_splice_direct+0xda/0x150
[  199.628969][T16104]  do_sendfile+0x380/0x650
[  199.633383][T16104]  __x64_sys_sendfile64+0x105/0x150
[  199.638661][T16104]  x64_sys_call+0xb39/0x2fb0
[  199.643248][T16104]  do_syscall_64+0xd2/0x200
[  199.647758][T16104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.653645][T16104] 
[  199.655968][T16104] value changed: 0x0a000021 -> 0x04000021
[  199.661680][T16104] 
[  199.663993][T16104] Reported by Kernel Concurrency Sanitizer on:
[  199.670147][T16104] CPU: 1 UID: 0 PID: 16104 Comm: syz.1.4805 Not tainted 6.15.0-syzkaller-03645-g3d413f0cfd7e #0 PREEMPT(voluntary) 
[  199.682318][T16104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  199.692366][T16104] ==================================================================
[  200.005618][T15219] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.