last executing test programs:

46.305284962s ago: executing program 0 (id=2587):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

46.158005635s ago: executing program 0 (id=2589):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x10, 0x2, &(0x7f0000000100)=@raw=[@ldst={0x1, 0x2, 0x4, 0x0, 0x1, 0x19}, @jmp={0x5, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffe88}], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
accept4$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10, 0x80000)
fsmount(r1, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000400e4ff07000700e00000020800020005000000080008"], 0x2c}}, 0x0)

46.046351866s ago: executing program 0 (id=2590):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d0000001801000020207025000000000020"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={0x0, r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000fedbdf25020000000800", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x4040}, 0x8000)
write$nci(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="414601", @ANYRES16=r2], 0x4)

46.005084427s ago: executing program 0 (id=2591):
getresgid(0x0, &(0x7f0000000ac0), &(0x7f0000000b00))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
syz_open_dev$evdev(&(0x7f0000000240), 0x89c8, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$eJzs3MGLG1UcB/Bf17Xdbt3NqrXagvjQi16GZg9e9BJkC9KA0jZCKwhTd6IhYxIyYSEiVk9e/TvEozdBvOllL/4N3vbisQdxxKS1jUSpSDdSPp9LfvDel997BAZmmDdHr3/5Ub9bZd18EmsnTsTaKCLdTpFiLe76LF557Ycfn796/cblVru9dyWlS61rzVdTStsvfPfuJ1+/+P3kzDvfbH97Kg533jv6Zffnw3OH549+u/Zhr0q9Kg2Gk5Snm8PhJL9ZFmm/V/WzlN4ui7wqUm9QFeOF8W45HI2mKR/sb22OxkVVpXwwTf1imibDNBlPU/5B3hukLMvS1mbwX3S+ul3XdURdPx4no67r+nRsxpl4IrZiOxqxE0/GU/F0nI1n4lw8G8/F+dmsVa8bAAAAAAAAAAAAAAAAAAAAHi3O/wMAAAAAAAAAAAAAAAAAAMDqXb1+43Kr3d67ktJGRPnFQeegM/+dj7e60YsyirgYjfg1Zqf/5+b1pTfbexfTzE58Xt66k7910HlsMd+cfU5gab45z6fF/KnYvD+/G404uzy/uzS/ES+/dF8+i0b89H4Mo4z9+CN7L/9pM6U33mr/JX9hNg8AAAAeBVn609L79yz7u/F5/kGeD6zdbbaQX48L6yvbNndU04/7eVkW44dWnIyH3uKfio2IWF33By/W43+xDIViXqz6ysRxuPenr3olAAAAAAAAAAAA/BvH8Trh0sanj32rAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA7+zAsQAAAACAMH/rNDo2AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYKgAA///20tEU")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
r2 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000040)=<r3=>0x0)
io_submit(r3, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x1a00001a}])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r4 = socket(0x1e, 0x4, 0x0)
flock(r0, 0x0)
futex(0x0, 0x84, 0x0, 0x0, 0x0, 0x2)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r5, 0x0)
cachestat(r5, &(0x7f0000001180)={0x5, 0x6}, &(0x7f000009de80), 0x0)
r6 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r4, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r7 = dup3(r6, r4, 0x0)
recvmmsg(r7, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)
write$P9_RMKDIR(r7, &(0x7f0000000040)={0x14, 0x49, 0x1, {0x5, 0x3, 0x8}}, 0x14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000006000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x49, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x8, 0xdd18b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x3323, 0x4, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = socket$inet(0x2, 0x3, 0x8)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x2f0, 0x258, 0xe138, 0x198, 0x178, 0x198, 0x258, 0x358, 0x358, 0x258, 0x358, 0x3, 0x0, {[{{@ip={@dev={0xac, 0x14, 0x14, 0x11}, @local, 0xff, 0x0, '\x00', 'veth0_to_bond\x00', {0xff}, {}, 0x21}, 0x0, 0x158, 0x178, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'fsm\x00', "0d0004000000000000000004fff0cf81dfd28c89544e14cd3e01dd24289831867846c88621039b284c3ff45c42995560a99952bed40cf5a8c1df6cdbdb7e2378d5afd35f4c16827f55b3af494e330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a000200000000000000000000000000000000004900", 0xc}}, @inet=@rpfilter={{0x28}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x98, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x350)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

45.490422464s ago: executing program 0 (id=2593):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x1b)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r1, 0x0, 0x0)

45.428037465s ago: executing program 0 (id=2594):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x140, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})

45.399750796s ago: executing program 32 (id=2594):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x140, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})

2.61551872s ago: executing program 1 (id=3324):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3b, 0x1, 0x0, 0x0, 0x0, 0x10, 0x8410b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x4, @perf_bp={0x0}, 0x1721, 0x0, 0x3, 0x1, 0x9, 0x4, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
socket$kcm(0x2, 0x5, 0x84)
add_key$fscrypt_v1(0x0, &(0x7f0000000040)={'fscrypt:', @desc3}, &(0x7f0000000080)={0x0, "b6c466f9d923a8ab93d67dc92905b48a9f0330bc190f754ca4e0a1ffb89dbc3a4b57fd6b3c868ea9fc2c3043e55f49e75fe2d776b46948c3191807a4eb4bd1ce", 0x22}, 0x48, 0xfffffffffffffffb)
bpf$MAP_CREATE(0x0, &(0x7f0000001080)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000980)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
add_key$fscrypt_provisioning(&(0x7f0000000100), 0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="010000000000000061626364656667eefa01ef6c6d6e6f707172313233343536000000000000000000e13f7c54aa66ba4d37e041a0371c1068eaa82d8ba74282ec1d20e31f314c6bc8eed0980ef40e5ca5690d318890d6a1acbb2be0840b3874a173e0c9763e27f9743a74f35277399a87640b135d020b5afc4973ddb078b396d8d79416be79a99ea025960234541b07a2c361ea0c08aca1150326c1692fa6387735a4ba2617da1cf449658f59ed9ec82765777905aefd43671e47774d92e8e5bca53e"], 0x29, 0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x8, 0xdd18b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x3323, 0x4, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000240)={@in6={{0xa, 0x4e23, 0x1, @mcast1, 0x7}}, 0x0, 0x0, 0x18, 0x0, "90f3df6f700de8e6a7e2719fdc94d830736907dffa2a994f3a4050c937c0cc365f26813dd6e2ea78aa20e09994ab6f63f897517efc0f5e71bb098800748148f5b363d0457a3d3a89b95306029bc049cd"}, 0xd8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r1}, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x4, @multicast1}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}, 0xee0000b0}, {{0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000001100)="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", 0x186}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e4c", 0xc8}, {&(0x7f0000000380)="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", 0x9fd}], 0x3}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001700)="a6", 0x1}], 0x1}}], 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x7, &(0x7f0000000140)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @func={0x85, 0x0, 0x1, 0x0, 0x1}, @exit={0x95, 0x0, 0x7b00}, @call={0x85, 0x0, 0x0, 0x76}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x9b, &(0x7f0000000300)=""/155, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

2.476731952s ago: executing program 1 (id=3328):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f008500000004000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@newlink={0x2c, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}, @IFLA_AF_SPEC={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000780)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0500000005000000fd0900008400000001000000", @ANYRES32, @ANYBLOB="0001bb4d7c2f00"/24, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x300, 0xed}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @tracing, r1, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x92f5e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x18)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000300), 0x10, 0x0}, 0x0)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000540)='nomand\x00', 0x0, 0x0)

2.337549304s ago: executing program 5 (id=3330):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x22, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000580)={r1, 0x58, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f00000005c0)={'syztnl2\x00', &(0x7f0000000880)={'gretap0\x00', r3, 0x7f0e, 0x40, 0x800, 0x3, {{0x30, 0x4, 0x1, 0x2d, 0xc0, 0x66, 0x0, 0x9, 0x2f, 0x0, @remote, @multicast1, {[@timestamp_addr={0x44, 0x44, 0x10, 0x1, 0x2, [{@private=0xa010101, 0x9}, {@dev={0xac, 0x14, 0x14, 0x43}, 0x1000}, {@loopback, 0x3}, {@rand_addr=0x64010102, 0x8000}, {@local, 0x2}, {@remote, 0x3}, {@rand_addr=0x64010101, 0x3ce}, {@remote, 0x4}]}, @ssrr={0x89, 0x17, 0x3a, [@dev={0xac, 0x14, 0x14, 0x2}, @private=0xa010100, @remote, @private=0xa010102, @loopback]}, @timestamp_prespec={0x44, 0x24, 0x8a, 0x3, 0x0, [{@dev={0xac, 0x14, 0x14, 0x13}, 0x7}, {@multicast2, 0x10000}, {@empty, 0xcb}, {@rand_addr=0x64010101, 0x41}]}, @cipso={0x86, 0x16, 0x1, [{0x1, 0x3, '\v'}, {0x2, 0xd, "595036fa35bb9c39ccae1c"}]}, @timestamp={0x44, 0x14, 0x3b, 0x0, 0x8, [0x7, 0x90, 0xffffffff, 0xfffffffe]}]}}}}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = syz_io_uring_setup(0x88b, &(0x7f0000000140)={0x0, 0xaef3, 0x0, 0x2, 0x1a6}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r4, 0x47f6, 0x0, 0x2, 0x0, 0x0)

2.297377725s ago: executing program 1 (id=3331):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0200000004000000060000000500000000100000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYBLOB="0000000000000000000000000000000000000000000000000000000024244a133587767e11cd6f17c2fd5af08257452ad7cc1bfa6ae652e8ee96837eb252f15221ffde2e6a1a6102db111739309b1d0037a5e582e9b279a99605e5babad92b94ff72b3392e142b349608876cd260162b548f458685fd2eef90c58ff980210c7772ce2708cf1953138be2ee7e5df22818c06c0a303c6f03a3e9f234598df593a10efe430b95a922f18ef5d024edf15ea0cbe16eacc9004ade4744c6d8aca792689043c9bbe9dd983f0bc5548e9e5a6954425b333aed6e4a7f39c93e73d45667b349d155edb99928133e899941da6da4beaca78721e84f7e"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x38, 0x24, 0xd0f, 0x470bd2d, 0xfffffffd, {0x60, 0x0, 0x0, r8, {0x0, 0xfff2}, {0xfff1, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0xe}]}, 0x38}, 0x1, 0x0, 0x0, 0x24000040}, 0x44080)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x2082, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_ENABLE_BEARER(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16], 0x38}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)

2.132638257s ago: executing program 5 (id=3334):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r4, &(0x7f0000000740)='|', 0x1, 0x0, &(0x7f00000007c0)={0xa, 0x4e23, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, 0x1c)
shutdown(r4, 0x1)
setsockopt(r4, 0x84, 0x80, &(0x7f0000000080)="1a4f30d089f5bd5b", 0x8)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r4, 0x84, 0x5, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e24, 0x1, @mcast2, 0x235}}}, 0x84)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r5 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000240)={'team0\x00', <r6=>0x0})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00', r8}, 0x18)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=ANY=[@ANYBLOB="207fd2349be2f09dc2d25fb42aa60cf2d4b9ab84274ef6fcd8e5ede4c3a3f602fbfcedfc8c4a7cb5c00efeb4f11e9a2bfaa2b9f8bd263f45b050bbfcdde6555d823a98bc99cc7c6c6daf87e28c2872c1becfc1131319811230805812417e04cf965b24f3f2", @ANYRES16=r5, @ANYBLOB="01002abd7000fcdbdf250100000008000100", @ANYRES32=r6, @ANYBLOB="3c00028038000100240001006d636173745f72656a6f696e5f696e74657276616c0000000000000000000000050003000300000008000400f9fffbff"], 0x58}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r9, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="5953fdfffffffddbdf256b00000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900020000007200000002001d800c00008008000d80f9f5b99f11442ddda0366e54c198362a04000380"], 0x38}}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r11=>0x0})
sendmsg$nl_route(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2c02000010000104fcffffff8000000000000000", @ANYRES32=0x0, @ANYBLOB="0081030000000000140012800c0001006d6163766c616e0004000280f00118805c00018014000400d9e306571aedc309913d674d76df068f1400050095f1afcf1eec187b04cca4237f60eed908000100ff0100000a0002002b3a4d292d0000001400040002d6274eeb448bc57419b2312bf03878060002005e0000005800018005000600720000000500020000000000140005007fd77da3c20448d469a507348beb2d74140004003e060372ead8e83498d7a6e2e2af4ac314000500599d7430646b97db60d2960557d9652f050006000a000000580001801400040016a146576c4559b7e051882cabff8d731400020020010000000000000000000000000001050006000300000008000100000100000800010022000000140005009229652ecb3029524aef54aafa91f8384c00018014000500f3b2844080c5784144596c3dd8c082ef060002002e00000008000100800100000500060008000000140004001094453c2991256acb1b77e5a158771a050006000400000094000180140004009e06088ed17be6f0b7e0eb0a889d0f771400050041773e0d11d3bb132c51bb5f7fb5187f050006007f00000014000400a69d8af4a7826f2702887754188c936e08000100f7ffffff140005007be68d794270b510abfec8a22bd5bcae1400040047840590ec7237e5dfa1b454c34b8ead140002006b6d656d5f63616368655f6672656500050006007f00000008000a0014b6aebd52c50cae246b0da411ba1b98c9612e5d7336bcc33a18a576c180eaa12a4462035ab6adafcadac9363cb847a19bbb4e185201c77be2a87d6a4def8198edb22e77e8dc6cc0cef85b18acd8135e882716199a3a63fd1d5d44be4672dcc29d61", @ANYRES32=r11, @ANYBLOB], 0x22c}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

1.314991089s ago: executing program 5 (id=3337):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000180)=0x7fd, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
sendmsg$NL80211_CMD_GET_WOWLAN(r1, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x28, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x6f}, @void, @val={0xc, 0x99, {0x6ccf, 0x17}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x80004}, 0x4004)

1.246519961s ago: executing program 5 (id=3342):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) (fail_nth: 6)

1.233935511s ago: executing program 1 (id=3344):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xd, &(0x7f00000004c0)=ANY=[@ANYBLOB="180100012fcb0000000000000000600f000000006d00000018110000e3217b15c9246086897f416c70c2bfed32b11316fe45a91e4d47ad90def5563eb8f8464806fb789ff1545f22f69a78366cb666076a0c714880179031f2a94eded353db5a133f01ea563b5390de36a1920ffd57c6d91348304074d065b81b7416e9e0502307cd4ed9f2d77df302d8ba2923bd14ea1bdeaf42aa1101e6dc82ca83e710bb298ee9eb0a8b640e42c7816e77158bf72b57f42d8e8346859e3fd77684dbd053e285001ed2a72dacca40b50e62f75ef248031a1c4575b88ecd8bfe1e72bb54d571472f05b5d5fcca946facef0163416f66", @ANYRESHEX=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x7f, 0x0, 0x3b, 0x60, 0x0, 0x22, 0x106, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x400, 0x0, @perf_config_ext={0x7, 0x2}, 0x10018, 0x401, 0xfffffff9, 0x2, 0x3, 0x80, 0x3, 0x0, 0x6, 0x0, 0x5}, 0x0, 0x10, 0xffffffffffffffff, 0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x21, &(0x7f0000000600)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @call={0x85, 0x0, 0x0, 0x24}, @map_fd={0x18, 0xa, 0x1, 0x0, r0}, @jmp={0x5, 0x0, 0xd, 0x4, 0x5, 0xfffffffffffffff4, 0xfffffffffffffff0}, @map_fd={0x18, 0x7, 0x1, 0x0, r0}, @call={0x85, 0x0, 0x0, 0xbf}, @ldst={0x0, 0x0, 0x6, 0x5, 0xb, 0xfffffffffffffff8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='syzkaller\x00', 0x7fff, 0x47, &(0x7f00000003c0)=""/71, 0x40f00, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000740)={0x5, 0x2, 0x10, 0x200}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000780)=[r0, r0, r0, r0, r0, r0, r0, r0, r0, r0], &(0x7f00000007c0)=[{0x3, 0x2, 0x6, 0x5}, {0x1, 0x4, 0x7, 0x9}, {0x2, 0x4, 0x7, 0x4}, {0x1, 0x5, 0x8, 0x6}, {0x2, 0x5, 0x1, 0xa}, {0x0, 0x5, 0x5, 0x1}, {0x2, 0x3, 0x10, 0x5}], 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000900)='kfree\x00', r2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x200000000000009b, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffdc6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
rt_sigpending(0x0, 0x0)
ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f0000000940)=0xfffffffd)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sync()
sync()
r5 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x2)
write$binfmt_script(r5, &(0x7f0000000300)={'#! ', './file0'}, 0xb)
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

1.197654011s ago: executing program 5 (id=3345):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x7f, 0x0, 0x3b, 0x60, 0x0, 0x22, 0x106, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x400, 0x0, @perf_config_ext={0x7, 0x2}, 0x10018, 0x401, 0xfffffff9, 0x2, 0x3, 0x80, 0x3, 0x0, 0x6, 0x0, 0x5}, 0x0, 0x10, 0xffffffffffffffff, 0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x23, &(0x7f0000000600)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x400}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @call={0x85, 0x0, 0x0, 0x24}, @map_fd={0x18, 0xa, 0x1, 0x0, r0}, @jmp={0x5, 0x0, 0xd, 0x4, 0x5, 0xfffffffffffffff4, 0xfffffffffffffff0}, @map_fd={0x18, 0x7, 0x1, 0x0, r0}, @call={0x85, 0x0, 0x0, 0xbf}, @ldst={0x0, 0x0, 0x6, 0x5, 0xb, 0xfffffffffffffff8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='syzkaller\x00', 0x7fff, 0x47, &(0x7f00000003c0)=""/71, 0x40f00, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000740)={0x5, 0x2, 0x10, 0x200}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000780)=[r0, r0, r0, r0, r0, r0, r0, r0, r0, r0], &(0x7f00000007c0)=[{0x3, 0x2, 0x6, 0x5}, {0x1, 0x4, 0x7, 0x9}, {0x2, 0x4, 0x7, 0x4}, {0x1, 0x5, 0x8, 0x6}, {0x2, 0x5, 0x1, 0xa}, {0x0, 0x5, 0x5, 0x1}, {0x2, 0x3, 0x10, 0x5}], 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000900)='kfree\x00', r2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x200000000000009b, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffdc6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
rt_sigpending(0x0, 0x0)
ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f0000000940)=0xfffffffd)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sync()
sync()
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f0000000180)='./file0\x00')
r5 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x2)
write$binfmt_script(r5, &(0x7f0000000300)={'#! ', './file0'}, 0xb)
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

1.146645102s ago: executing program 2 (id=3348):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2074, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r2, 0x6, 0x17, &(0x7f0000000200)=r2, 0x21)
syz_usbip_server_init(0xaa7f3cec63cbb9d)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000180)={0x28, 0x0, 0x2711, @local}, 0x10)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'ip6tnl0\x00', <r4=>0x0})
setsockopt$packet_int(r3, 0x107, 0x14, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r3, &(0x7f0000000240)='V', 0x1, 0x404c810, &(0x7f0000000080)={0x11, 0x0, r4, 0x1, 0xf7, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x58)

949.360635ms ago: executing program 3 (id=3351):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xd, &(0x7f00000004c0)=ANY=[@ANYBLOB="180100012fcb0000000000000000600f000000006d00000018110000e3217b15c9246086897f416c70c2bfed32b11316fe45a91e4d47ad90def5563eb8f8464806fb789ff1545f22f69a78366cb666076a0c714880179031f2a94eded353db5a133f01ea563b5390de36a1920ffd57c6d91348304074d065b81b7416e9e0502307cd4ed9f2d77df302d8ba2923bd14ea1bdeaf42aa1101e6dc82ca83e710bb298ee9eb0a8b640e42c7816e77158bf72b57f42d8e8346859e3fd77684dbd053e285001ed2a72dacca40b50e62f75ef248031a1c4575b88ecd8bfe1e72bb54d571472f05b5d5fcca946facef0163416f66", @ANYRESOCT=r0, @ANYRESHEX=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x7f, 0x0, 0x3b, 0x60, 0x0, 0x22, 0x106, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x400, 0x0, @perf_config_ext={0x7, 0x2}, 0x10018, 0x401, 0xfffffff9, 0x2, 0x3, 0x80, 0x3, 0x0, 0x6, 0x0, 0x5}, 0x0, 0x10, 0xffffffffffffffff, 0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x23, &(0x7f0000000600)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x400}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @call={0x85, 0x0, 0x0, 0x24}, @map_fd={0x18, 0xa, 0x1, 0x0, r0}, @jmp={0x5, 0x0, 0xd, 0x4, 0x5, 0xfffffffffffffff4, 0xfffffffffffffff0}, @map_fd={0x18, 0x7, 0x1, 0x0, r0}, @call={0x85, 0x0, 0x0, 0xbf}, @ldst={0x0, 0x0, 0x6, 0x5, 0xb, 0xfffffffffffffff8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='syzkaller\x00', 0x7fff, 0x47, &(0x7f00000003c0)=""/71, 0x40f00, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000740)={0x5, 0x2, 0x10, 0x200}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000780)=[r0, r0, r0, r0, r0, r0, r0, r0, r0, r0], &(0x7f00000007c0)=[{0x3, 0x2, 0x6, 0x5}, {0x1, 0x4, 0x7, 0x9}, {0x2, 0x4, 0x7, 0x4}, {0x1, 0x5, 0x8, 0x6}, {0x2, 0x5, 0x1, 0xa}, {0x0, 0x5, 0x5, 0x1}, {0x2, 0x3, 0x10, 0x5}], 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000900)='kfree\x00', r2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x200000000000009b, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffdc6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
rt_sigpending(0x0, 0x0)
ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f0000000940)=0xfffffffd)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sync()
sync()
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f0000000180)='./file0\x00')
r5 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x2)
write$binfmt_script(r5, &(0x7f0000000300)={'#! ', './file0'}, 0xb)
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

840.635017ms ago: executing program 5 (id=3352):
getresgid(0x0, &(0x7f0000000ac0), &(0x7f0000000b00))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
syz_open_dev$evdev(&(0x7f0000000240), 0x89c8, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="00e789da34e04a1ffbc2f05cefeb4ee6d5ae1071124b2c2fb684f5c7ac05000000c7880f67e775c748f6381a3e01e7f93330b30b90bbb4d2b697899a16f2df4fa2a8f06ac2c5352ddcae2b83672ef3d9f532e55f4e798924ac6332751e737383f6890d2dcfcbdbd41940a64c7b4374674e7bb6dd0d1b8d3d62f6d77b0282e166e2ce4c353d2d4d315a81146bf46a1508ef0d2ddc7d0b447fe17b85b292d13cea2256a16cab12d75a852bc680da7ea837480feb2e1e0000000000003bc18c52d0351cd285197b0641569048b5b416ba1c570000000000100083794afff0a9eed63b1226b18c4b455ab222d7ae1be52a22e8ec8bf2c0c7d99770415863f50aa18bcb66061a29bc55105f3482ed752f882d224a386b51836c1b437036b677156e22e174ff516dbab0b2cdf52bee43c4ffffffffffffffffd9487b8663a339b98df63b4bf3e97f02d6f1e7e65f968dd90841506355d9ac40f1b434c8a9b5bd91a70c53a5aadbebd9ed9d0a55bd47a967163e0c02753f8895bfbf1b41b5490667c241068d59983ae1d0f03e650f5357425284b76d793e25a2558fa437e38b8200000000630000000000000000000000000000000000000000000000e911000000000066e073c14bb74617079e0b6ecfc830db14244567fd8f4e4e5903eaf983786e28295783f130b95dc37f59a658000e88047db7783ce8a9cba6c255902cfb83946ea3f5f7a8cee911b2b37ae4b01e65ea86d5ea7ae17b2a9bc250c9b8fc9fbc04617939bdd13457954172d18701768f8a461bee740f2d82ae566d2e30a93ad2b201a6d16a93c75a950cc437e7f25d3aadddb8edd028d84490b6bafd636aa4fb482a8a4b3987dafe58e742448c4b36b03790090198145dee533257bb9050554f8cace210a5bc5c768f83e99019f7c00ff9ca679768dbba3f7d21c545c99c2f7688f7030fe37121d625d1f81018feb74c9d48eebdf1702550b097271ab9bd38c62f4b31fd9482c05ba064dfa60bd7fafb3c22dc057e6f9e2a5eb144290afe5369110a71d4b7fc5937a32e213c443f3b9e506b25cf9e2520999b330fc9e86bde8c8ec78f67c0c7f24db0000000", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
r2 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000040)=<r3=>0x0)
io_submit(r3, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x1a00001a}])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r4 = socket(0x1e, 0x4, 0x0)
flock(r0, 0x0)
futex(0x0, 0x84, 0x0, 0x0, 0x0, 0x2)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r5, 0x0)
cachestat(r5, &(0x7f0000001180)={0x5, 0x6}, &(0x7f000009de80), 0x0)
r6 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r4, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r7 = dup3(r6, r4, 0x0)
write$P9_RMKDIR(r7, &(0x7f0000000040)={0x14, 0x49, 0x1, {0x5, 0x3, 0x8}}, 0x14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000006000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x49, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x8, 0xdd18b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x3323, 0x4, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

736.840798ms ago: executing program 4 (id=3354):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000380)=@ethtool_drvinfo={0x33, "a4c3ea051fc8f66eedf1c6676b4e9ac4711a3ee41b102a78284f8818400000fe", "c493c69907ac61ee57f3ff6656218f8c880cab0b7f5f977f29b54144914986b5", "7795433781033bb967429b7c68c2566066943f3a566d7fd05557583a535a3b9e", "cba936683f411a1265d9ffb369dbe16de72fd8ee91c60f531196c136add25f43", "3fda464b4ffcb83f5c89e20fe8814b4e26bb81519905d65c5a0ae43be09d9f7b", "9900255a099270427859ce54", 0x43dd5e67, 0x9, 0x4, 0x5, 0x9}})
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040), 0x4)

696.109609ms ago: executing program 4 (id=3355):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="05000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r1}, 0x18)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

677.330229ms ago: executing program 4 (id=3356):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r0}, 0x10)
msgrcv(0x0, &(0x7f0000000480)={0x0, ""/182}, 0xbe, 0x2, 0x3800)

392.320143ms ago: executing program 1 (id=3357):
quotactl$Q_QUOTAOFF(0xffffffff80000300, &(0x7f0000000240)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="d800000019008111e0020f060d8107040a60000000020000001455a12a00090008000699e3ffffff14000500fe80817806000567b8b7b940020000", 0x3b}], 0x1}, 0x4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x800}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r1, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d424", 0x21)

391.489303ms ago: executing program 2 (id=3358):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
inotify_add_watch(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xa4000063)

391.006063ms ago: executing program 4 (id=3359):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r1, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

389.669933ms ago: executing program 3 (id=3360):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
msgget$private(0x0, 0x404)

361.187634ms ago: executing program 1 (id=3361):
io_setup(0x4, &(0x7f00000002c0)=<r0=>0x0)
r1 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x18)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = epoll_create1(0x0)
r5 = epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_udplite(0xa, 0x2, 0x88)
unshare(0x60400)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f0000000400)={0xa})
epoll_pwait(r4, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r9 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
io_submit(r0, 0x1, &(0x7f0000000080)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x4, 0x0, 0x0, r1}])

360.847374ms ago: executing program 4 (id=3362):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r2, 0x0, 0x7b)

325.909195ms ago: executing program 2 (id=3363):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a30000000000800034000"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}}, 0x20000000)

325.218304ms ago: executing program 4 (id=3364):
getresgid(0x0, &(0x7f0000000ac0), &(0x7f0000000b00))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
syz_open_dev$evdev(&(0x7f0000000240), 0x89c8, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$eJzs3MGLG1UcB/Bf17Xdbt3NqrXagvjQi16GZg9e9BJkC9KA0jZCKwhTd6IhYxIyYSEiVk9e/TvEozdBvOllL/4N3vbisQdxxKS1jUSpSDdSPp9LfvDel997BAZmmDdHr3/5Ub9bZd18EmsnTsTaKCLdTpFiLe76LF557Ycfn796/cblVru9dyWlS61rzVdTStsvfPfuJ1+/+P3kzDvfbH97Kg533jv6Zffnw3OH549+u/Zhr0q9Kg2Gk5Snm8PhJL9ZFmm/V/WzlN4ui7wqUm9QFeOF8W45HI2mKR/sb22OxkVVpXwwTf1imibDNBlPU/5B3hukLMvS1mbwX3S+ul3XdURdPx4no67r+nRsxpl4IrZiOxqxE0/GU/F0nI1n4lw8G8/F+dmsVa8bAAAAAAAAAAAAAAAAAAAAHi3O/wMAAAAAAAAAAAAAAAAAAMDqXb1+43Kr3d67ktJGRPnFQeegM/+dj7e60YsyirgYjfg1Zqf/5+b1pTfbexfTzE58Xt66k7910HlsMd+cfU5gab45z6fF/KnYvD+/G404uzy/uzS/ES+/dF8+i0b89H4Mo4z9+CN7L/9pM6U33mr/JX9hNg8AAAAeBVn609L79yz7u/F5/kGeD6zdbbaQX48L6yvbNndU04/7eVkW44dWnIyH3uKfio2IWF33By/W43+xDIViXqz6ysRxuPenr3olAAAAAAAAAAAA/BvH8Trh0sanj32rAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA7+zAsQAAAACAMH/rNDo2AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYKgAA///20tEU")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
r2 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000040)=<r3=>0x0)
io_submit(r3, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x1a00001a}])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r4 = socket(0x1e, 0x4, 0x0)
flock(r0, 0x0)
futex(0x0, 0x84, 0x0, 0x0, 0x0, 0x2)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r5, 0x0)
cachestat(r5, &(0x7f0000001180)={0x5, 0x6}, &(0x7f000009de80), 0x0)
r6 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r4, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r7 = dup3(r6, r4, 0x0)
recvmmsg(r7, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

266.148355ms ago: executing program 3 (id=3365):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000880)={<r2=>0x0, @loopback, @private}, &(0x7f0000000b00)=0xc)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000bc0)={0x1b, 0x0, 0x0, 0x8, 0x0, r0, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000c40)={r0, <r5=>0xffffffffffffffff}, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000cc0)={0x6, 0x2a, &(0x7f0000000980)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@map_idx={0x18, 0xa, 0x5, 0x0, 0x1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffb387}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000780)='syzkaller\x00', 0x7, 0xac, &(0x7f00000007c0)=""/172, 0x41000, 0x33, '\x00', r2, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000b40)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000b80)={0x0, 0x5, 0x81}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000c80)=[r3, r0, r4, r5, r0, r0, r0], 0x0, 0x10, 0x10001, @void, @value}, 0x94)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r7, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="595329bd7000000000086b"], 0x30}}, 0x0)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00')
cachestat(r8, &(0x7f0000000000)={0x264, 0x1}, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{0xffffffffffffffff, <r9=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000300)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0, <r10=>0xffffffffffffffff}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r11 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000005c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x15, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@alu={0x4, 0x1, 0xa, 0x7, 0xa, 0x80, 0xfffffffffffffff0}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @generic={0x6, 0x8, 0x4, 0xffff, 0xb9}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='GPL\x00', 0xc, 0x99, &(0x7f00000001c0)=""/153, 0x41000, 0x1b, '\x00', 0x0, 0x25, r8, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x2, 0xe, 0x80000000, 0x7fffffff}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000540)=[r0, r0, r9, r10, r0, r11], &(0x7f0000000640)=[{0x0, 0x1, 0x4, 0x2}, {0x0, 0x4, 0xf, 0x5}, {0x4, 0x2, 0xe, 0x6}, {0x4, 0x3, 0x10, 0x5}], 0x10, 0x6, @void, @value}, 0x94)

253.188926ms ago: executing program 3 (id=3366):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="05000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r1}, 0x18)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

235.766346ms ago: executing program 3 (id=3367):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000002000000ff"], 0x50)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r5=>r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
getpeername(r2, &(0x7f0000000740)=@nfc_llcp, &(0x7f0000000000)=0x80)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000800)={0x0, r4}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000900)={{0x1, 0x1, 0x18, <r6=>r1}, './file0\x00'})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f00000014c0)=ANY=[@ANYRES64=r2, @ANYRES64=r2, @ANYBLOB="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", @ANYRES8=r5, @ANYRES8=r3, @ANYRESHEX=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xb, &(0x7f0000000440)=ANY=[@ANYRES32=r6], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sys_enter\x00', r10}, 0x10)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffd000/0x1000)=nil, 0x4)
r11 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r12 = add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, &(0x7f00000003c0)="ae", 0x1, r11)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r11, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000140)=@keyring={'key_or_keyring:', r12})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1837000000000000000000000800000085550c00000000009500000000000000e95a7f0fda1bc47138b7c53358451a9fa55742722f2d891fcf50e9d9ba8c18740091e294f5e3f6919d2e8a39d6119fbbbca9d0a4fe148f6383c1f37b5594699e416bcd6db1ddf247e08636ba40af31364908adfd64cafc4f7275fce536a74435dced0929185cb17ff57535ea870a2c0b60fcbf5c929988527d6c39b38e250e3af4a548f228bb66cd44f0b591cf5da93bdb149d1a981f2bab3882c5b390aa251aa5c81ea7e1ab578306ec55ed304fb348d866586e62ad91d210f5c3df337b0ad85f7505ece06e1317d2d70bd3f24cf881d1a7f08249f3575d8e2729e72fc73c3c6a9107557d4d73c6a16098fad638dd05006ac2496ff16198b05b4eb885824518b5ebe1c5279595486b387fca4d682a8ae38bed86da508891ffb168899ace39"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0xffffffffffffffff, 0x0, 0x1, '\x00', 0x0, 0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$key(0xf, 0x3, 0x2)
r13 = socket$netlink(0x10, 0x3, 0x0)
r14 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', <r15=>0x0})
sendmsg$nl_route(r14, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000c00)=ANY=[@ANYRES32=r7, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r15, @ANYBLOB="80df05f132c64e043cc28093ab7e36bf9869f179eb11564580cf93e0b6c73913b02e0045bcc8f366ee44f9563383d8e17f6e5165e995653568b2"], 0x44}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
mq_open(0x0, 0x40, 0xb2, &(0x7f00000000c0)={0x9, 0xfffffffffffffff9, 0x1ff, 0x6})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000001480)={[{@data_journal}]}, 0x1, 0x5ad, &(0x7f0000000180)="$eJzs3c1vVFUbAPDnzkwLpe9rKzEqLkyjIZAoLS1g8GMBe0LwY+fGSgtBho/QGi2aWBLcmBg3LkhcuRD/CyW6dWXiwoUbV4akGsNGY3TMnbkzDO1MOy0dbu39/ZLbOeeeOz3nQp85Z+49ZyaAwhpLf5Qi9kTE5SRipK2sElnhWOO4O7+/fzrdkqjVXv0tiSTb1zw+yR6Hsyf/PRLx/TdJ7C6vrHdu4er56Wp19kqWn5i/cHlibuHqgXMXps/Onp29OPXc1NEjh48cnTx4X+dXakufuP7WOyMfnXz9i8/+Sia//OlkEsfi1zONsvbz2CxjMRZ/1GofLN+f/rse3ezKclJu/Z3clSzfwZZVyWJkMCIei5Eot/1vjsSHL+faOKCvaklEDSioRPxDQTXHAc339r29Dy71eVQCPAhLx9OfAx3iv9K4NhijMRARe5c9r8MlvQ1J6/ju25PX0y36dB0O6Gzx2o4stTz+k3psjsbOem7XndI913nTEcCp7DHd/8oG6x9blhf/8OAsXouIxzuN/9eO/zfa4v/NDdYv/gEAAAAAAGDz3DoeEc92uv9Xyu7N7Yyn6vf/ksb9vx/urhA8tgn1r33/r3R7E6oBOlg6HvFSx/m/rTm+o+Us9//GbMDkzLnq7MGIeCgi9sfAjjQ/uUodBz7efaNbWfv8v3RL62/OBczacbuy497nzEzPT9/POQMNS9cinqh0n/+T9v9Je/+fSV8PLvdYx+69N091K1s7/oF+qX0esa9j/5+0jklW/3yOifp4YKI5Kljpyfc++apb/eIf8pP2/7tWj//RpP3zeubW9/sHI+LQQqXWrXyj4//B5LVy8/en3p2en78yGTGYnFi5f2p9bYbtqhkPzXhJ43//06tf/2uN/9vicCgiFnus89F/hn/uVqb/h/yk8T+zrv5//Ympm6Nfd6u/t/7/cL1P35/tcf0PVtdrgObdTgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4LypFxP8iKY230qXS+HjEcEQ8ErtK1Utz88+cufT2xZm0rP79/6XmN/2ONPJJ8/v/R9vyU8vyhyLi4Yj4tDxUz4+fvlSdyfvkAQAAAAAAAAAAAAAAAAAAYIsY7rL+P/VLOe/WAX1XyR7FOxRPJe8GALkR/1Bc4h+KS/xDcYl/KK4Nxr/bBbAN6P+hqAZ6O2xnv9sB5EH/DwAAAAAA28qtF5+/kUTE4gtD9S01mJW1bgwO5dU6oJ9KeTcAyI05vFBcpv5AcfU4+RfYxpJW6s9ap/Lus/+T/jQIAAAAAAAAAAAAAFhh355bP665/h/Ylqz/h+Ky/h+Ky/p/KC7v8YG1VvFb/w8AAAAAAAAAAAAA+ZtbuHp+ulqdvSIhsdUSAxGxBZqRQ2Iw//DM+YUJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo+TcAAP//Swsk/Q==")
r16 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='kfree\x00', r16, 0x0, 0x4ab}, 0x18)

224.907286ms ago: executing program 2 (id=3368):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000380)='%-010d \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000580)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000c40)='sys_enter\x00', r3}, 0x10)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f00000002c0)={0x3, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x48}, {0x6, 0x37, 0x0, 0x9}]}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x40ffffffff}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x1, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
close(0x3)

120.331538ms ago: executing program 2 (id=3369):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000002000000ff"], 0x50)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r5=>r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
getpeername(r2, &(0x7f0000000740)=@nfc_llcp, &(0x7f0000000000)=0x80)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000800)={0x0, r4}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000900)={{0x1, 0x1, 0x18, <r6=>r1}, './file0\x00'})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f00000014c0)=ANY=[@ANYRES64=r2, @ANYRES64=r2, @ANYRESOCT=r2, @ANYRES8=r5, @ANYRES8=r3, @ANYRESHEX=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xb, &(0x7f0000000440)=ANY=[@ANYRES32=r6], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sys_enter\x00', r10}, 0x10)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffd000/0x1000)=nil, 0x4)
r11 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r12 = add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, &(0x7f00000003c0)="ae", 0x1, r11)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r11, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000140)=@keyring={'key_or_keyring:', r12})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0xffffffffffffffff, 0x0, 0x1, '\x00', 0x0, 0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$key(0xf, 0x3, 0x2)
r13 = socket$netlink(0x10, 0x3, 0x0)
r14 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', <r15=>0x0})
sendmsg$nl_route(r14, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000c00)=ANY=[@ANYRES32=r7, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r15, @ANYBLOB="80df05f132c64e043cc28093ab7e36bf9869f179eb11564580cf93e0b6c73913b02e0045bcc8f366ee44f9563383d8e17f6e5165e995653568b2"], 0x44}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
mq_open(0x0, 0x40, 0xb2, &(0x7f00000000c0)={0x9, 0xfffffffffffffff9, 0x1ff, 0x6})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000001480)={[{@data_journal}]}, 0x1, 0x5ad, &(0x7f0000000180)="$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")
r16 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='kfree\x00', r16, 0x0, 0x4ab}, 0x18)

103.406128ms ago: executing program 3 (id=3370):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2074, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r2, 0x6, 0x17, &(0x7f0000000200)=r2, 0x21)
syz_usbip_server_init(0xaa7f3cec63cbb9d)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'ip6tnl0\x00', <r4=>0x0})
setsockopt$packet_int(r3, 0x107, 0x14, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r3, &(0x7f0000000240)='V', 0x1, 0x404c810, &(0x7f0000000080)={0x11, 0x0, r4, 0x1, 0xf7, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x58)

0s ago: executing program 2 (id=3371):
quotactl$Q_QUOTAOFF(0xffffffff80000300, &(0x7f0000000240)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="d800000019008111e0020f060d8107040a60000000020000001455a12a00090008000699e3ffffff14000500fe80817806000567b8b7b940020000", 0x3b}], 0x1}, 0x4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x800}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r1, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d424", 0x21)

kernel console output (not intermixed with test programs):

3] RAX: ffffffffffffffda RBX: 00007f32838e5fa0 RCX: 00007f32836be929
[  159.207778][T11273] RDX: 0000000000000007 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  159.207812][T11273] RBP: 00007f3281d27090 R08: 0000000000000000 R09: 0000000000000000
[  159.207827][T11273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.207842][T11273] R13: 0000000000000001 R14: 00007f32838e5fa0 R15: 00007ffc9d4c1638
[  159.207889][T11273]  </TASK>
[  159.444360][T11276] loop2: detected capacity change from 0 to 1024
[  159.454397][T11276] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  159.470022][T11281] xt_hashlimit: max too large, truncated to 1048576
[  159.479029][T11276] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  159.490650][T11276] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  159.491820][T11278] No such timeout policy "syz0"
[  159.537626][T11276] JBD2: no valid journal superblock found
[  159.544128][T11276] EXT4-fs (loop2): Could not load journal inode
[  159.603573][T11274] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(10)
[  159.610289][T11274] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  159.618105][T11274] vhci_hcd vhci_hcd.0: Device attached
[  159.712841][T11270] bio_check_eod: 52654 callbacks suppressed
[  159.712857][T11270] syz.5.2858: attempt to access beyond end of device
[  159.712857][T11270] loop5: rw=0, sector=305, nr_sectors = 1 limit=128
[  159.733229][T11270] syz.5.2858: attempt to access beyond end of device
[  159.733229][T11270] loop5: rw=0, sector=306, nr_sectors = 1 limit=128
[  159.748308][T11270] syz.5.2858: attempt to access beyond end of device
[  159.748308][T11270] loop5: rw=0, sector=307, nr_sectors = 1 limit=128
[  159.770350][T11270] syz.5.2858: attempt to access beyond end of device
[  159.770350][T11270] loop5: rw=0, sector=308, nr_sectors = 1 limit=128
[  159.784249][T11270] syz.5.2858: attempt to access beyond end of device
[  159.784249][T11270] loop5: rw=0, sector=309, nr_sectors = 1 limit=128
[  159.797549][T11270] syz.5.2858: attempt to access beyond end of device
[  159.797549][T11270] loop5: rw=0, sector=310, nr_sectors = 1 limit=128
[  159.810758][ T3194] vhci_hcd: vhci_device speed not set
[  159.817096][T11270] syz.5.2858: attempt to access beyond end of device
[  159.817096][T11270] loop5: rw=0, sector=311, nr_sectors = 1 limit=128
[  159.830556][T11270] syz.5.2858: attempt to access beyond end of device
[  159.830556][T11270] loop5: rw=0, sector=312, nr_sectors = 1 limit=128
[  159.846002][T11270] syz.5.2858: attempt to access beyond end of device
[  159.846002][T11270] loop5: rw=0, sector=305, nr_sectors = 1 limit=128
[  159.859427][T11270] syz.5.2858: attempt to access beyond end of device
[  159.859427][T11270] loop5: rw=0, sector=306, nr_sectors = 1 limit=128
[  159.873406][ T3194] usb 11-1: new full-speed USB device number 2 using vhci_hcd
[  160.002314][   T29] kauditd_printk_skb: 312 callbacks suppressed
[  160.002330][   T29] audit: type=1326 audit(1749188526.122:13176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.006253][T11291] vhci_hcd: connection reset by peer
[  160.010381][   T29] audit: type=1326 audit(1749188526.132:13177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.063777][ T3437] vhci_hcd: stop threads
[  160.068104][ T3437] vhci_hcd: release socket
[  160.072530][ T3437] vhci_hcd: disconnect device
[  160.121575][   T29] audit: type=1326 audit(1749188526.172:13178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.145475][   T29] audit: type=1326 audit(1749188526.172:13179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.169228][   T29] audit: type=1326 audit(1749188526.192:13180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.192875][   T29] audit: type=1326 audit(1749188526.192:13181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.216698][   T29] audit: type=1326 audit(1749188526.192:13182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.240305][   T29] audit: type=1326 audit(1749188526.192:13183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.263696][T11308] lo speed is unknown, defaulting to 1000
[  160.263956][   T29] audit: type=1326 audit(1749188526.192:13184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.293097][   T29] audit: type=1326 audit(1749188526.192:13185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11306 comm="syz.3.2870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  160.319220][T11308] lo speed is unknown, defaulting to 1000
[  160.429553][ T3437] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.491234][ T3437] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.550169][T11322] loop1: detected capacity change from 0 to 1024
[  160.585015][T11322] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  160.586963][T11308] chnl_net:caif_netlink_parms(): no params data found
[  160.609527][T11322] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  160.620527][T11322] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  160.632789][ T3437] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.671232][T11322] JBD2: no valid journal superblock found
[  160.677163][T11322] EXT4-fs (loop1): Could not load journal inode
[  160.690653][T11308] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.698036][T11308] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.715397][T11308] bridge_slave_0: entered allmulticast mode
[  160.727552][T11308] bridge_slave_0: entered promiscuous mode
[  160.746969][ T3437] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.758720][T11308] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.765951][T11308] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.792304][T11308] bridge_slave_1: entered allmulticast mode
[  160.799704][T11308] bridge_slave_1: entered promiscuous mode
[  160.842464][T11308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  160.868874][T11308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  160.878888][ T3437] bridge_slave_1: left allmulticast mode
[  160.884711][ T3437] bridge_slave_1: left promiscuous mode
[  160.890482][ T3437] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.919349][ T3437] bridge_slave_0: left promiscuous mode
[  160.925102][ T3437] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.963312][T11344] loop2: detected capacity change from 0 to 4096
[  160.991832][T11344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.096198][ T3437] bond0 (unregistering): left promiscuous mode
[  161.102442][ T3437] bond_slave_0: left promiscuous mode
[  161.107967][ T3437] bond_slave_1: left promiscuous mode
[  161.123012][ T3437] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  161.134279][ T3437] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  161.166087][ T3437] bond0 (unregistering): Released all slaves
[  161.292547][T11308] team0: Port device team_slave_0 added
[  161.298486][T11344] lo speed is unknown, defaulting to 1000
[  161.299507][T11308] team0: Port device team_slave_1 added
[  161.311758][T11360] loop5: detected capacity change from 0 to 128
[  161.473339][T11344] lo speed is unknown, defaulting to 1000
[  161.524532][T11308] batman_adv: batadv0: Adding interface: batadv_slave_0
[  161.531714][T11308] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.557730][T11308] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  161.865345][T11365] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(10)
[  161.871984][T11365] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  161.879642][T11365] vhci_hcd vhci_hcd.0: Device attached
[  161.902188][T11308] batman_adv: batadv0: Adding interface: batadv_slave_1
[  161.909865][T11308] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.936496][T11308] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  162.005067][T11308] hsr_slave_0: entered promiscuous mode
[  162.031627][T11308] hsr_slave_1: entered promiscuous mode
[  162.038015][T11308] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  162.045742][T11308] Cannot create hsr debugfs directory
[  162.106493][ T3437] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  162.113975][ T3437] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.130796][ T3437] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  162.138360][ T3437] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.158074][T11375] vhci_hcd: connection closed
[  162.158504][ T3459] vhci_hcd: stop threads
[  162.167524][ T3459] vhci_hcd: release socket
[  162.172040][ T3459] vhci_hcd: disconnect device
[  162.190557][ T3437] veth1_macvtap: left promiscuous mode
[  162.202849][ T3437] veth0_macvtap: left promiscuous mode
[  162.208420][ T3437] veth1_vlan: left promiscuous mode
[  162.217528][ T3437] veth0_vlan: left promiscuous mode
[  162.342407][ T3437] team0 (unregistering): Port device team_slave_1 removed
[  162.363801][ T3437] team0 (unregistering): Port device team_slave_0 removed
[  162.421413][T11383] __nla_validate_parse: 8 callbacks suppressed
[  162.421510][T11383] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2888'.
[  162.439957][T11383] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2888'.
[  162.449590][T11383] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2888'.
[  162.492961][T11360] buffer_io_error: 136934 callbacks suppressed
[  162.492990][T11360] Buffer I/O error on dev loop5, logical block 305, async page read
[  162.509107][T11360] Buffer I/O error on dev loop5, logical block 306, async page read
[  162.519037][T11360] Buffer I/O error on dev loop5, logical block 307, async page read
[  162.528289][T11360] Buffer I/O error on dev loop5, logical block 308, async page read
[  162.530278][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.538098][T11360] Buffer I/O error on dev loop5, logical block 309, async page read
[  162.555116][T11360] Buffer I/O error on dev loop5, logical block 310, async page read
[  162.563339][T11360] Buffer I/O error on dev loop5, logical block 311, async page read
[  162.571743][T11360] Buffer I/O error on dev loop5, logical block 312, async page read
[  162.579942][T11360] Buffer I/O error on dev loop5, logical block 305, async page read
[  162.588308][T11360] Buffer I/O error on dev loop5, logical block 306, async page read
[  162.651230][T11391] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2891'.
[  162.775354][ T3410] hid (null): unknown global tag 0xe
[  162.780797][ T3410] hid (null): unknown global tag 0xc
[  162.791086][ T3410] hid (null): report_id 619087792 is invalid
[  162.797172][ T3410] hid (null): unknown global tag 0xc
[  162.807444][T11401] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2896'.
[  162.816403][ T3410] hid-generic 0001:0002:80000001.0008: unknown global tag 0xe
[  162.823965][ T3410] hid-generic 0001:0002:80000001.0008: item 0 1 1 14 parsing failed
[  162.832349][ T3410] hid-generic 0001:0002:80000001.0008: probe with driver hid-generic failed with error -22
[  162.925309][T11308] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  162.994507][T11308] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  163.015167][T11308] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  163.025370][T11308] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  163.099770][T11410] loop2: detected capacity change from 0 to 1024
[  163.107806][T11308] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.123134][T11308] 8021q: adding VLAN 0 to HW filter on device team0
[  163.134971][T11420] netlink: 14 bytes leftover after parsing attributes in process `syz.1.2901'.
[  163.137457][T11410] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.146951][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.163115][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[  163.180475][T11308] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  163.191162][T11308] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  163.204541][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.211629][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.238638][T11410] ext4 filesystem being mounted at /597/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.303700][T11410] EXT4-fs error (device loop2): ext4_map_blocks:816: inode #15: block 3: comm syz.2.2899: lblock 3 mapped to illegal pblock 3 (length 1)
[  163.328199][T11410] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  163.340753][T11410] EXT4-fs (loop2): This should not happen!! Data will be lost
[  163.340753][T11410] 
[  163.350649][T11308] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.358751][T11430] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  163.365380][T11430] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  163.373109][T11430] vhci_hcd vhci_hcd.0: Device attached
[  163.385247][T11432] vhci_hcd: connection closed
[  163.385566][ T3437] vhci_hcd: stop threads
[  163.394677][ T3437] vhci_hcd: release socket
[  163.399131][ T3437] vhci_hcd: disconnect device
[  163.455145][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.480628][T11442] loop2: detected capacity change from 0 to 128
[  163.570389][T11446] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2906'.
[  163.609923][T11308] veth0_vlan: entered promiscuous mode
[  163.626600][T11308] veth1_vlan: entered promiscuous mode
[  163.657788][T11446] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  163.657788][T11446]    program syz.5.2906 not setting count and/or reply_len properly
[  163.661445][T11308] veth0_macvtap: entered promiscuous mode
[  163.688055][T11308] veth1_macvtap: entered promiscuous mode
[  163.708800][T11449] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  163.715441][T11449] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  163.723095][T11449] vhci_hcd vhci_hcd.0: Device attached
[  163.746082][T11308] batman_adv: batadv0: Interface activated: batadv_slave_0
[  163.775099][T11308] batman_adv: batadv0: Interface activated: batadv_slave_1
[  163.785974][T11308] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.795591][T11308] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.804393][T11308] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.813125][T11308] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.913987][ T3424] vhci_hcd: vhci_device speed not set
[  163.974459][ T3424] usb 5-1: new full-speed USB device number 2 using vhci_hcd
[  164.328953][T11455] vhci_hcd: connection reset by peer
[  164.353413][   T12] vhci_hcd: stop threads
[  164.357767][   T12] vhci_hcd: release socket
[  164.362284][   T12] vhci_hcd: disconnect device
[  164.405771][T11483] loop3: detected capacity change from 0 to 1024
[  164.433504][T11483] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2914: Failed to acquire dquot type 0
[  164.464083][T11483] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  164.508511][T11483] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #13: comm syz.3.2914: corrupted inode contents
[  164.522513][T11490] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2916'.
[  164.544009][T11490] hsr_slave_0: left promiscuous mode
[  164.549647][T11483] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #13: comm syz.3.2914: mark_inode_dirty error
[  164.563475][T11490] hsr_slave_1: left promiscuous mode
[  164.580039][T11483] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #13: comm syz.3.2914: corrupted inode contents
[  164.605297][T11483] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #13: comm syz.3.2914: mark_inode_dirty error
[  164.624714][T11492] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2917'.
[  164.625809][T11483] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #13: comm syz.3.2914: corrupted inode contents
[  164.647171][T11483] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  164.647943][T11492] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2917'.
[  164.657323][T11483] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #13: comm syz.3.2914: corrupted inode contents
[  164.678662][T11483] EXT4-fs error (device loop3): ext4_truncate:4597: inode #13: comm syz.3.2914: mark_inode_dirty error
[  164.691908][T11483] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  164.704631][T11483] EXT4-fs (loop3): 1 truncate cleaned up
[  164.710739][T11483] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.723619][T11442] bio_check_eod: 174366 callbacks suppressed
[  164.723636][T11442] syz.2.2905: attempt to access beyond end of device
[  164.723636][T11442] loop2: rw=0, sector=305, nr_sectors = 1 limit=128
[  164.723669][T11442] syz.2.2905: attempt to access beyond end of device
[  164.723669][T11442] loop2: rw=0, sector=306, nr_sectors = 1 limit=128
[  164.723697][T11442] syz.2.2905: attempt to access beyond end of device
[  164.723697][T11442] loop2: rw=0, sector=307, nr_sectors = 1 limit=128
[  164.723727][T11442] syz.2.2905: attempt to access beyond end of device
[  164.723727][T11442] loop2: rw=0, sector=308, nr_sectors = 1 limit=128
[  164.723899][T11442] syz.2.2905: attempt to access beyond end of device
[  164.723899][T11442] loop2: rw=0, sector=309, nr_sectors = 1 limit=128
[  164.723976][T11442] syz.2.2905: attempt to access beyond end of device
[  164.723976][T11442] loop2: rw=0, sector=310, nr_sectors = 1 limit=128
[  164.810596][T11442] syz.2.2905: attempt to access beyond end of device
[  164.810596][T11442] loop2: rw=0, sector=311, nr_sectors = 1 limit=128
[  164.823949][T11442] syz.2.2905: attempt to access beyond end of device
[  164.823949][T11442] loop2: rw=0, sector=312, nr_sectors = 1 limit=128
[  164.837398][T11442] syz.2.2905: attempt to access beyond end of device
[  164.837398][T11442] loop2: rw=0, sector=305, nr_sectors = 1 limit=128
[  164.853297][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.855883][T11442] syz.2.2905: attempt to access beyond end of device
[  164.855883][T11442] loop2: rw=0, sector=306, nr_sectors = 1 limit=128
[  164.925933][ T3194] usb 11-1: enqueue for inactive port 0
[  164.941797][ T3194] usb 11-1: enqueue for inactive port 0
[  164.955950][T11506] No such timeout policy "syz0"
[  164.980480][T11511] loop3: detected capacity change from 0 to 128
[  164.991208][T11511] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  165.006486][T11511] ext4 filesystem being mounted at /580/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  165.013104][   T29] kauditd_printk_skb: 269 callbacks suppressed
[  165.013123][   T29] audit: type=1326 audit(1749188531.142:13453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.070022][ T3194] vhci_hcd: vhci_device speed not set
[  165.084853][   T29] audit: type=1326 audit(1749188531.172:13454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.109168][   T29] audit: type=1326 audit(1749188531.172:13455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.133402][   T29] audit: type=1326 audit(1749188531.172:13456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.157143][   T29] audit: type=1326 audit(1749188531.172:13457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.181598][   T29] audit: type=1326 audit(1749188531.172:13458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.205219][   T29] audit: type=1326 audit(1749188531.172:13459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.229583][   T29] audit: type=1326 audit(1749188531.192:13460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.236744][T11524] loop1: detected capacity change from 0 to 1024
[  165.253899][   T29] audit: type=1326 audit(1749188531.192:13461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.268398][T11524] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  165.284554][   T29] audit: type=1326 audit(1749188531.262:13462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11517 comm="syz.1.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32836be929 code=0x7ffc0000
[  165.300770][T11524] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  165.327756][T11524] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  165.342852][ T3315] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  165.344675][T11524] JBD2: no valid journal superblock found
[  165.357733][T11524] EXT4-fs (loop1): Could not load journal inode
[  165.432037][T11530] loop3: detected capacity change from 0 to 8192
[  165.843820][T11584] loop4: detected capacity change from 0 to 512
[  165.857447][T11584] EXT4-fs (loop4): filesystem is read-only
[  165.870455][T11584] EXT4-fs (loop4): filesystem is read-only
[  165.876380][T11584] EXT4-fs (loop4): orphan cleanup on readonly fs
[  165.885258][T11584] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.2925: bad orphan inode 16
[  165.923114][T11584] ext4_test_bit(bit=15, block=3) = 0
[  165.974820][T11584] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  166.012586][T11584] netlink: 'syz.4.2925': attribute type 2 has an invalid length.
[  166.035028][T11308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.122343][T11602] lo speed is unknown, defaulting to 1000
[  166.138589][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.158606][T11602] lo speed is unknown, defaulting to 1000
[  166.188880][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.237710][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.302162][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.361472][T11602] chnl_net:caif_netlink_parms(): no params data found
[  166.389839][   T12] bridge_slave_1: left allmulticast mode
[  166.396357][   T12] bridge_slave_1: left promiscuous mode
[  166.402019][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.411521][   T12] bridge_slave_0: left promiscuous mode
[  166.417286][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.471059][   T12] team0: Port device geneve1 removed
[  166.516406][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  166.528670][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  166.539048][   T12] bond0 (unregistering): Released all slaves
[  166.594914][T11602] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.602123][T11602] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.620296][T11602] bridge_slave_0: entered allmulticast mode
[  166.627396][T11602] bridge_slave_0: entered promiscuous mode
[  166.641580][   T12] veth1_macvtap: left promiscuous mode
[  166.647345][   T12] veth0_macvtap: left promiscuous mode
[  166.652974][   T12] veth1_vlan: left promiscuous mode
[  166.658578][   T12] veth0_vlan: left promiscuous mode
[  166.729122][   T12] team0 (unregistering): Port device team_slave_1 removed
[  166.741267][   T12] team0 (unregistering): Port device team_slave_0 removed
[  166.784457][T11602] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.791612][T11602] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.798858][T11602] bridge_slave_1: entered allmulticast mode
[  166.805793][T11602] bridge_slave_1: entered promiscuous mode
[  166.819660][T11673] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.837025][T11602] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  166.848335][T11602] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  166.870816][T11602] team0: Port device team_slave_0 added
[  166.876662][T11682] loop1: detected capacity change from 0 to 1024
[  166.879505][T11602] team0: Port device team_slave_1 added
[  166.889438][T11682] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  166.890669][T11673] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.900480][T11682] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  166.921184][T11682] jbd2_journal_init_inode: Cannot locate journal superblock
[  166.928832][T11682] EXT4-fs (loop1): Could not load journal inode
[  166.942496][T11602] batman_adv: batadv0: Adding interface: batadv_slave_0
[  166.949576][T11602] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  166.975834][T11602] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  166.987487][T11602] batman_adv: batadv0: Adding interface: batadv_slave_1
[  166.994534][T11602] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.020564][T11602] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  167.048615][T11673] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.066179][T11684] No such timeout policy "syz0"
[  167.105682][T11602] hsr_slave_0: entered promiscuous mode
[  167.111990][T11602] hsr_slave_1: entered promiscuous mode
[  167.119918][T11602] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  167.127975][T11602] Cannot create hsr debugfs directory
[  167.136735][T11673] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.220480][T11673] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  167.234449][T11673] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  167.257621][T11673] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  167.276415][T11673] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  167.305630][T11703] hsr_slave_0: left promiscuous mode
[  167.311542][T11703] hsr_slave_1: left promiscuous mode
[  167.518093][T11715] loop1: detected capacity change from 0 to 2048
[  167.526406][T11711] __nla_validate_parse: 5 callbacks suppressed
[  167.526418][T11711] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2945'.
[  167.558810][T11711] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  167.558810][T11711]    program syz.5.2945 not setting count and/or reply_len properly
[  167.565537][T11602] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  167.580311][T11715]  loop1: p2 < > p4
[  167.609618][T11715] loop1: p4 size 8192 extends beyond EOD, truncated
[  167.638326][T11602] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  167.654943][T11602] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  167.716169][T11602] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  167.825272][T11731] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2949'.
[  167.845832][T11602] 8021q: adding VLAN 0 to HW filter on device bond0
[  167.949140][T11602] 8021q: adding VLAN 0 to HW filter on device team0
[  167.976049][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.983205][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.022355][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.029487][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  168.110548][T11602] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  168.449055][T11602] 8021q: adding VLAN 0 to HW filter on device batadv0
[  168.498958][T11741] loop1: detected capacity change from 0 to 1024
[  168.525758][T11741] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  168.536756][T11741] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  168.570543][T11741] jbd2_journal_init_inode: Cannot locate journal superblock
[  168.577993][T11741] EXT4-fs (loop1): Could not load journal inode
[  168.586782][T11747] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.628499][T11602] veth0_vlan: entered promiscuous mode
[  168.643956][T11747] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.684336][T11602] veth1_vlan: entered promiscuous mode
[  168.706240][T11747] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.722584][T11759] netlink: 14 bytes leftover after parsing attributes in process `syz.5.2955'.
[  168.739657][T11602] veth0_macvtap: entered promiscuous mode
[  168.759371][T11747] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.776602][T11602] veth1_macvtap: entered promiscuous mode
[  168.804460][T11602] batman_adv: batadv0: Interface activated: batadv_slave_0
[  168.821651][T11747] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.833643][T11747] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.858004][T11747] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.865621][T11765] loop3: detected capacity change from 0 to 512
[  168.870281][T11747] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.885617][T11602] batman_adv: batadv0: Interface activated: batadv_slave_1
[  168.898291][T11602] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.907153][T11602] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.916002][T11602] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.925598][T11602] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.927894][T11768] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2959'.
[  168.943481][T11765] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.943628][T11765] ext4 filesystem being mounted at /590/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  168.971456][T11765] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.2958: corrupted inode contents
[  169.011322][T11765] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.2958: mark_inode_dirty error
[  169.027254][T11765] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.2958: corrupted inode contents
[  169.040253][T11765] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.2958: mark_inode_dirty error
[  169.056280][T11778] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2960'.
[  169.086446][T11780] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2962'.
[  169.091670][ T3424] usb 5-1: enqueue for inactive port 0
[  169.109370][T11780] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2962'.
[  169.118531][T11780] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2962'.
[  169.123830][ T3424] usb 5-1: enqueue for inactive port 0
[  169.143005][T11778] netlink: 'syz.5.2960': attribute type 2 has an invalid length.
[  169.174547][T11777] loop4: detected capacity change from 0 to 8192
[  169.219559][T11786] loop2: detected capacity change from 0 to 1024
[  169.232988][ T3424] vhci_hcd: vhci_device speed not set
[  169.277728][T11786] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2964: Failed to acquire dquot type 0
[  169.309900][T11786] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  169.325610][T11786] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.2964: corrupted inode contents
[  169.337912][T11786] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #13: comm syz.2.2964: mark_inode_dirty error
[  169.381176][T11786] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.2964: corrupted inode contents
[  169.406242][T11784] lo speed is unknown, defaulting to 1000
[  169.408559][T11786] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.2964: mark_inode_dirty error
[  169.412466][T11784] lo speed is unknown, defaulting to 1000
[  169.428092][T11786] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.2964: corrupted inode contents
[  169.441837][T11786] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  169.450867][T11786] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.2964: corrupted inode contents
[  169.455038][T11777] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  169.465129][T11786] EXT4-fs error (device loop2): ext4_truncate:4597: inode #13: comm syz.2.2964: mark_inode_dirty error
[  169.485650][T11786] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  169.496433][T11786] EXT4-fs (loop2): 1 truncate cleaned up
[  169.502596][T11786] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.519290][   T51] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.561573][T11602] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.575882][   T51] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.640553][   T51] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.641951][T11807] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2968'.
[  169.698465][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.718881][   T51] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.740368][T11816] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2971'.
[  169.787363][T11825] loop4: detected capacity change from 0 to 1024
[  169.803621][T11825] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  169.828149][T11825] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  169.839281][T11825] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  169.890428][T11825] JBD2: no valid journal superblock found
[  169.896439][T11825] EXT4-fs (loop4): Could not load journal inode
[  169.932585][   T51] bridge_slave_1: left allmulticast mode
[  169.938612][   T51] bridge_slave_1: left promiscuous mode
[  169.944307][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.974854][   T51] bridge_slave_0: left promiscuous mode
[  169.981092][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.058627][   T51] team0: Port device geneve1 removed
[  170.108055][T11842] loop4: detected capacity change from 0 to 8192
[  170.127205][T11848] No such timeout policy "syz0"
[  170.175170][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  170.185861][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  170.217125][   T51] bond0 (unregistering): Released all slaves
[  170.261538][T11784] chnl_net:caif_netlink_parms(): no params data found
[  170.331221][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  170.339655][   T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[  170.374594][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  170.382131][   T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[  170.407199][   T51] veth1_macvtap: left promiscuous mode
[  170.408247][   T29] kauditd_printk_skb: 480 callbacks suppressed
[  170.408263][   T29] audit: type=1400 audit(1749188536.532:13941): avc:  denied  { watch watch_reads } for  pid=11860 comm="syz.2.2986" path="/7/file0" dev="tmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  170.412895][   T51] veth0_macvtap: left promiscuous mode
[  170.412981][   T51] veth1_vlan: left promiscuous mode
[  170.455075][   T51] veth0_vlan: left promiscuous mode
[  170.517737][   T51] team0 (unregistering): Port device team_slave_1 removed
[  170.530670][   T51] team0 (unregistering): Port device team_slave_0 removed
[  170.574041][ T3403] lo speed is unknown, defaulting to 1000
[  170.579987][ T3403] infiniband s: ib_query_port failed (-19)
[  170.597827][T11863] lo speed is unknown, defaulting to 1000
[  170.626181][T11784] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.630511][   T29] audit: type=1326 audit(1749188536.752:13942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11872 comm="syz.3.2989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  170.633558][T11784] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.657050][   T29] audit: type=1326 audit(1749188536.752:13943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11872 comm="syz.3.2989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  170.687718][   T29] audit: type=1326 audit(1749188536.752:13944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11872 comm="syz.3.2989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  170.711510][   T29] audit: type=1326 audit(1749188536.752:13945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11872 comm="syz.3.2989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  170.735104][   T29] audit: type=1326 audit(1749188536.752:13946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11872 comm="syz.3.2989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  170.736860][T11784] bridge_slave_0: entered allmulticast mode
[  170.758740][   T29] audit: type=1326 audit(1749188536.752:13947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11872 comm="syz.3.2989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  170.759613][   T29] audit: type=1326 audit(1749188536.792:13948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11872 comm="syz.3.2989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8456cde929 code=0x7ffc0000
[  170.791122][T11784] bridge_slave_0: entered promiscuous mode
[  170.811837][   T29] audit: type=1326 audit(1749188536.812:13949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11870 comm="syz.4.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  170.811873][   T29] audit: type=1326 audit(1749188536.812:13950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11870 comm="syz.4.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  170.874048][T11784] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.881207][T11784] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.881597][T11873] loop3: detected capacity change from 0 to 1024
[  170.890235][T11784] bridge_slave_1: entered allmulticast mode
[  170.901524][T11784] bridge_slave_1: entered promiscuous mode
[  170.922295][T11784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  170.941372][T11873] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  170.951517][T11873] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  170.962558][T11873] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  170.973552][T11784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  170.984797][T11873] JBD2: no valid journal superblock found
[  170.991772][T11873] EXT4-fs (loop3): Could not load journal inode
[  171.015640][T11784] team0: Port device team_slave_0 added
[  171.022623][T11784] team0: Port device team_slave_1 added
[  171.050130][T11784] batman_adv: batadv0: Adding interface: batadv_slave_0
[  171.057367][T11784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  171.083597][T11784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  171.106014][T11878] netlink: 'syz.3.2990': attribute type 2 has an invalid length.
[  171.141656][T11784] batman_adv: batadv0: Adding interface: batadv_slave_1
[  171.148746][T11784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  171.174944][T11784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  171.252118][T11784] hsr_slave_0: entered promiscuous mode
[  171.283661][T11784] hsr_slave_1: entered promiscuous mode
[  171.292999][T11893] loop5: detected capacity change from 0 to 1024
[  171.384737][T11893] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.410780][T11893] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.450066][T11893] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #15: block 3: comm syz.5.2998: lblock 3 mapped to illegal pblock 3 (length 1)
[  171.466742][T11893] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  171.479092][T11893] EXT4-fs (loop5): This should not happen!! Data will be lost
[  171.479092][T11893] 
[  171.599700][T11912] loop3: detected capacity change from 0 to 1024
[  171.618114][T11912] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.630386][T11912] ext4 filesystem being mounted at /603/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.641887][T11914] loop4: detected capacity change from 0 to 512
[  171.656700][T11914] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.669932][T11914] ext4 filesystem being mounted at /20/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  171.684328][T11914] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.3006: corrupted inode contents
[  171.696337][T11914] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.3006: mark_inode_dirty error
[  171.710033][T11914] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.3006: corrupted inode contents
[  171.722255][T11914] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.3006: mark_inode_dirty error
[  171.754224][T11929] loop2: detected capacity change from 0 to 1024
[  171.764319][T11929] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.776929][T11929] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.793194][T11929] EXT4-fs error (device loop2): ext4_map_blocks:816: inode #15: block 3: comm syz.2.3011: lblock 3 mapped to illegal pblock 3 (length 1)
[  171.807945][T11929] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  171.820421][T11929] EXT4-fs (loop2): This should not happen!! Data will be lost
[  171.820421][T11929] 
[  171.847943][T11602] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.851443][T11784] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  171.866395][T11784] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  171.876286][T11784] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  171.886297][T11784] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  171.895174][T11933] FAULT_INJECTION: forcing a failure.
[  171.895174][T11933] name failslab, interval 1, probability 0, space 0, times 0
[  171.907982][T11933] CPU: 1 UID: 0 PID: 11933 Comm: syz.2.3012 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  171.908018][T11933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  171.908035][T11933] Call Trace:
[  171.908042][T11933]  <TASK>
[  171.908051][T11933]  __dump_stack+0x1d/0x30
[  171.908137][T11933]  dump_stack_lvl+0xe8/0x140
[  171.908162][T11933]  dump_stack+0x15/0x1b
[  171.908201][T11933]  should_fail_ex+0x265/0x280
[  171.908227][T11933]  should_failslab+0x8c/0xb0
[  171.908258][T11933]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  171.908289][T11933]  ? hugetlbfs_alloc_inode+0xbc/0x100
[  171.908390][T11933]  hugetlbfs_alloc_inode+0xbc/0x100
[  171.908418][T11933]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  171.908441][T11933]  alloc_inode+0x3d/0x170
[  171.908461][T11933]  new_inode+0x1d/0xe0
[  171.908517][T11933]  hugetlbfs_get_inode+0x7b/0x370
[  171.908561][T11933]  hugetlb_file_setup+0x192/0x3d0
[  171.908639][T11933]  ksys_mmap_pgoff+0x157/0x310
[  171.908664][T11933]  x64_sys_call+0x1602/0x2fb0
[  171.908695][T11933]  do_syscall_64+0xd2/0x200
[  171.908769][T11933]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  171.908799][T11933]  ? clear_bhb_loop+0x40/0x90
[  171.908823][T11933]  ? clear_bhb_loop+0x40/0x90
[  171.908843][T11933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.908863][T11933] RIP: 0033:0x7f34caf0e929
[  171.908941][T11933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.908958][T11933] RSP: 002b:00007f34c9577038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  171.908976][T11933] RAX: ffffffffffffffda RBX: 00007f34cb135fa0 RCX: 00007f34caf0e929
[  171.909012][T11933] RDX: 000000000300000c RSI: 0000000000c00000 RDI: 0000200000400000
[  171.909027][T11933] RBP: 00007f34c9577090 R08: ffffffffffffffff R09: 0000000000000000
[  171.909040][T11933] R10: 0000000000050032 R11: 0000000000000246 R12: 0000000000000001
[  171.909051][T11933] R13: 0000000000000000 R14: 00007f34cb135fa0 R15: 00007ffef2b1f988
[  171.909070][T11933]  </TASK>
[  171.930336][T11784] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.066117][T11942] loop2: detected capacity change from 0 to 8192
[  172.079385][T11784] 8021q: adding VLAN 0 to HW filter on device team0
[  172.137041][T10510] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.149601][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.156752][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  172.175033][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.182142][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  172.197254][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.310705][T11784] 8021q: adding VLAN 0 to HW filter on device batadv0
[  172.339255][T11955] loop3: detected capacity change from 0 to 1024
[  172.348520][T11955] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  172.366691][T11958] loop5: detected capacity change from 0 to 164
[  172.374661][T11955] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  172.375051][T11942] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  172.385613][T11955] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  172.412168][T11955] JBD2: no valid journal superblock found
[  172.418034][T11955] EXT4-fs (loop3): Could not load journal inode
[  172.435551][T11958] iso9660: Corrupted directory entry in block 4 of inode 1792
[  172.490440][T11308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.517011][T11784] veth0_vlan: entered promiscuous mode
[  172.547731][T11971] loop4: detected capacity change from 0 to 1024
[  172.564821][T11784] veth1_vlan: entered promiscuous mode
[  172.591014][T11971] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.3020: Failed to acquire dquot type 0
[  172.604160][T11971] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  172.619177][T11971] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #13: comm syz.4.3020: corrupted inode contents
[  172.620952][T11784] veth0_macvtap: entered promiscuous mode
[  172.638163][T11971] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #13: comm syz.4.3020: mark_inode_dirty error
[  172.658872][T11971] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #13: comm syz.4.3020: corrupted inode contents
[  172.680963][T11978] loop5: detected capacity change from 0 to 1024
[  172.691101][T11971] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.3020: mark_inode_dirty error
[  172.704111][T11971] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #13: comm syz.4.3020: corrupted inode contents
[  172.720459][T11784] veth1_macvtap: entered promiscuous mode
[  172.726861][T11971] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  172.749174][T11971] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #13: comm syz.4.3020: corrupted inode contents
[  172.766555][T11784] batman_adv: batadv0: Interface activated: batadv_slave_0
[  172.773353][T11971] EXT4-fs error (device loop4): ext4_truncate:4597: inode #13: comm syz.4.3020: mark_inode_dirty error
[  172.786076][T11971] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  172.796360][T11784] batman_adv: batadv0: Interface activated: batadv_slave_1
[  172.807163][T11978] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.807827][T11784] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  172.828101][T11784] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  172.829557][T11971] EXT4-fs (loop4): 1 truncate cleaned up
[  172.837001][T11784] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  172.847834][T11978] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.851250][T11784] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  172.870716][T11971] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.929412][T11990] loop1: detected capacity change from 0 to 1024
[  172.936845][T11308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.938878][T11987] loop3: detected capacity change from 0 to 1024
[  172.956117][T11987] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  172.967956][T11990] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2963: Failed to acquire dquot type 0
[  172.976867][T11987] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  172.981121][T11990] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, 
[  172.990140][T11987] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  173.007780][T11990] inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  173.011702][T11987] JBD2: no valid journal superblock found
[  173.022862][T11987] EXT4-fs (loop3): Could not load journal inode
[  173.023079][T11990] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.2963: corrupted inode contents
[  173.041472][T11990] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #13: comm syz.1.2963: mark_inode_dirty error
[  173.056563][T11990] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.2963: corrupted inode contents
[  173.069151][T11990] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #13: comm syz.1.2963: mark_inode_dirty error
[  173.127312][T11990] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.2963: corrupted inode contents
[  173.140230][T11990] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  173.151003][T11990] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.2963: corrupted inode contents
[  173.174263][T11990] EXT4-fs error (device loop1): ext4_truncate:4597: inode #13: comm syz.1.2963: mark_inode_dirty error
[  173.186822][T11990] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  173.196411][T11990] EXT4-fs (loop1): 1 truncate cleaned up
[  173.202555][T11990] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.231965][T11784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.295259][T12003] lo speed is unknown, defaulting to 1000
[  173.321587][T12019] loop1: detected capacity change from 0 to 8192
[  173.322729][ T3459] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.374300][ T3459] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.412539][T10510] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.445811][ T3459] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.495997][T12003] chnl_net:caif_netlink_parms(): no params data found
[  173.518105][ T3459] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.601801][T12021] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12021 comm=syz.2.3034
[  173.619513][T12021] loop2: detected capacity change from 0 to 512
[  173.695340][T12003] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.702584][T12003] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.710284][T12003] bridge_slave_0: entered allmulticast mode
[  173.718593][T12003] bridge_slave_0: entered promiscuous mode
[  173.728285][T12003] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.735513][T12003] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.743098][T12003] bridge_slave_1: entered allmulticast mode
[  173.749837][T12003] bridge_slave_1: entered promiscuous mode
[  173.756502][ T3459] bridge_slave_1: left allmulticast mode
[  173.762196][ T3459] bridge_slave_1: left promiscuous mode
[  173.768219][ T3459] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.784221][ T3459] bridge_slave_0: left promiscuous mode
[  173.789917][ T3459] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.815767][T12045] netlink: 'syz.2.3041': attribute type 21 has an invalid length.
[  173.823749][T12045] __nla_validate_parse: 7 callbacks suppressed
[  173.823764][T12045] netlink: 128 bytes leftover after parsing attributes in process `syz.2.3041'.
[  173.869758][ T3459] team0: Port device geneve1 removed
[  173.879188][T12046] loop1: detected capacity change from 0 to 1024
[  173.895666][T12046] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  173.909252][T12046] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  173.920202][T12046] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  173.933878][ T3459] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  173.935858][T12046] JBD2: no valid journal superblock found
[  173.948396][T12046] EXT4-fs (loop1): Could not load journal inode
[  173.957486][ T3459] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  173.968538][ T3459] bond0 (unregistering): Released all slaves
[  174.016956][T12053] loop4: detected capacity change from 0 to 1024
[  174.024480][T12045] netlink: 'syz.2.3041': attribute type 4 has an invalid length.
[  174.024517][T12045] netlink: 'syz.2.3041': attribute type 3 has an invalid length.
[  174.024533][T12045] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3041'.
[  174.031369][T12003] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  174.069708][ T3459] tipc: Disabling bearer <eth:vlan0>
[  174.077307][ T3459] tipc: Left network mode
[  174.087924][T12003] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  174.097921][T12053] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.110908][T12053] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  174.130197][ T3459] IPVS: stopping backup sync thread 3908 ...
[  174.164929][T12065] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3048'.
[  174.185478][T12003] team0: Port device team_slave_0 added
[  174.194572][T12065] loop5: detected capacity change from 0 to 512
[  174.225226][T12003] team0: Port device team_slave_1 added
[  174.231010][T12063] loop1: detected capacity change from 0 to 8192
[  174.242830][T12065] EXT4-fs (loop5): filesystem is read-only
[  174.252306][T12065] EXT4-fs (loop5): filesystem is read-only
[  174.252329][ T3459] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  174.258350][T12065] EXT4-fs (loop5): orphan cleanup on readonly fs
[  174.265619][ T3459] batman_adv: batadv0: Removing interface: batadv_slave_0
[  174.291476][T12065] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.3048: bad orphan inode 16
[  174.291988][ T3459] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  174.309282][ T3459] batman_adv: batadv0: Removing interface: batadv_slave_1
[  174.315884][T12065] ext4_test_bit(bit=15, block=3) = 0
[  174.322177][T12065] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  174.340484][ T3459] veth1_macvtap: left promiscuous mode
[  174.348537][ T3459] veth0_macvtap: left promiscuous mode
[  174.354497][ T3459] veth1_vlan: left promiscuous mode
[  174.360026][ T3459] veth0_vlan: left promiscuous mode
[  174.502640][ T3459] team0 (unregistering): Port device team_slave_1 removed
[  174.515481][ T3459] team0 (unregistering): Port device team_slave_0 removed
[  174.584522][T12069] netlink: 'syz.5.3048': attribute type 2 has an invalid length.
[  174.593093][ T3403] lo speed is unknown, defaulting to 1000
[  174.593473][T12003] batman_adv: batadv0: Adding interface: batadv_slave_0
[  174.598835][ T3403] infiniband syz0: ib_query_port failed (-19)
[  174.611926][T12003] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.637995][T12003] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  174.670128][T10510] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.682350][T11308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.687419][T12003] batman_adv: batadv0: Adding interface: batadv_slave_1
[  174.698531][T12003] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.724655][T12003] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  174.773557][T12003] hsr_slave_0: entered promiscuous mode
[  174.780039][T12003] hsr_slave_1: entered promiscuous mode
[  174.788922][T12003] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  174.796801][T12003] Cannot create hsr debugfs directory
[  175.038033][T12089] loop5: detected capacity change from 0 to 8192
[  175.110062][T12095] loop2: detected capacity change from 0 to 8192
[  175.201272][T12003] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  175.250123][T12003] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  175.270003][T12003] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  175.284306][T12003] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  175.408113][T12003] 8021q: adding VLAN 0 to HW filter on device bond0
[  175.422555][T12003] 8021q: adding VLAN 0 to HW filter on device team0
[  175.437579][ T3437] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.444716][ T3437] bridge0: port 1(bridge_slave_0) entered forwarding state
[  175.457555][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.464807][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  175.490332][T12120] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3063'.
[  175.544897][T12120] loop5: detected capacity change from 0 to 512
[  175.560125][T12120] EXT4-fs (loop5): filesystem is read-only
[  175.585291][T12120] EXT4-fs (loop5): filesystem is read-only
[  175.591169][T12120] EXT4-fs (loop5): orphan cleanup on readonly fs
[  175.607934][T12120] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.3063: bad orphan inode 16
[  175.622360][T12120] ext4_test_bit(bit=15, block=3) = 0
[  175.629444][T12120] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  175.656017][T10510] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.740361][T12003] 8021q: adding VLAN 0 to HW filter on device batadv0
[  176.090140][T12138] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.186627][T12139] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3067'.
[  176.218823][T12138] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.276056][T12138] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.307651][T12003] veth0_vlan: entered promiscuous mode
[  176.317493][T12003] veth1_vlan: entered promiscuous mode
[  176.327376][T12138] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.353529][T12003] veth0_macvtap: entered promiscuous mode
[  176.361461][T12003] veth1_macvtap: entered promiscuous mode
[  176.376344][T12003] batman_adv: batadv0: Interface activated: batadv_slave_0
[  176.386260][T12003] batman_adv: batadv0: Interface activated: batadv_slave_1
[  176.395459][T12003] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  176.404325][T12003] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  176.413152][T12003] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  176.421920][T12003] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  176.484936][T12138] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  176.499218][T12138] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  176.511723][T12138] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  176.525032][T12138] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  176.568247][   T29] kauditd_printk_skb: 719 callbacks suppressed
[  176.568266][   T29] audit: type=1326 audit(1749188542.692:14666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  176.610744][T12161] loop3: detected capacity change from 0 to 1024
[  176.628422][T12161] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.655281][   T29] audit: type=1326 audit(1749188542.692:14667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  176.679195][   T29] audit: type=1326 audit(1749188542.692:14668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  176.685525][T12161] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.702885][   T29] audit: type=1326 audit(1749188542.692:14669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  176.736771][   T29] audit: type=1326 audit(1749188542.692:14670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  176.760413][   T29] audit: type=1326 audit(1749188542.692:14671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  176.784070][   T29] audit: type=1326 audit(1749188542.692:14672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  176.807726][   T29] audit: type=1326 audit(1749188542.692:14673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  176.831328][   T29] audit: type=1326 audit(1749188542.702:14674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  176.855135][   T29] audit: type=1326 audit(1749188542.702:14675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12158 comm="syz.2.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34caf0e929 code=0x7ffc0000
[  177.034547][T12182] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3079'.
[  177.044391][T12184] netlink: 76 bytes leftover after parsing attributes in process `syz.5.3080'.
[  177.053990][T12184] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3080'.
[  177.063047][T12184] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3080'.
[  177.105782][T12182] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  177.105782][T12182]    program syz.1.3079 not setting count and/or reply_len properly
[  177.205322][T12199] loop1: detected capacity change from 0 to 1024
[  177.215478][T12199] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.3086: Failed to acquire dquot type 0
[  177.230444][T12199] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  177.258284][T12202] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3088'.
[  177.274990][T12199] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.3086: corrupted inode contents
[  177.293114][T12199] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #13: comm syz.1.3086: mark_inode_dirty error
[  177.308184][T12199] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.3086: corrupted inode contents
[  177.320346][T12199] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #13: comm syz.1.3086: mark_inode_dirty error
[  177.336924][T12206] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  177.336924][T12206]    program syz.2.3089 not setting count and/or reply_len properly
[  177.379897][T12199] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.3086: corrupted inode contents
[  177.405577][T12003] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.415345][T12199] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  177.426788][T12199] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.3086: corrupted inode contents
[  177.433624][T12213] loop5: detected capacity change from 0 to 512
[  177.439564][T12199] EXT4-fs error (device loop1): ext4_truncate:4597: inode #13: comm syz.1.3086: mark_inode_dirty error
[  177.457104][T12213] EXT4-fs (loop5): filesystem is read-only
[  177.471106][T12199] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  177.480249][T12215] loop2: detected capacity change from 0 to 1024
[  177.481983][T12199] EXT4-fs (loop1): 1 truncate cleaned up
[  177.503486][T12199] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.516853][T12215] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.3092: Failed to acquire dquot type 0
[  177.532206][T12213] EXT4-fs (loop5): filesystem is read-only
[  177.538142][T12213] EXT4-fs (loop5): orphan cleanup on readonly fs
[  177.557940][T12213] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.3091: bad orphan inode 16
[  177.559234][T11784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.577198][T12222] loop3: detected capacity change from 0 to 128
[  177.577268][T12215] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  177.599785][T12215] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.3092: corrupted inode contents
[  177.600288][T12213] ext4_test_bit(bit=15, block=3) = 0
[  177.611927][T12215] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #13: comm syz.2.3092: mark_inode_dirty error
[  177.622330][T12213] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  177.652541][T12222] bio_check_eod: 6 callbacks suppressed
[  177.652560][T12222] syz.3.3094: attempt to access beyond end of device
[  177.652560][T12222] loop3: rw=2049, sector=145, nr_sectors = 16 limit=128
[  177.673382][T12215] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.3092: corrupted inode contents
[  177.686305][T12222] syz.3.3094: attempt to access beyond end of device
[  177.686305][T12222] loop3: rw=2049, sector=169, nr_sectors = 16 limit=128
[  177.700280][T12215] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.3092: mark_inode_dirty error
[  177.711898][T12222] syz.3.3094: attempt to access beyond end of device
[  177.711898][T12222] loop3: rw=2049, sector=193, nr_sectors = 8 limit=128
[  177.727071][T12215] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.3092: corrupted inode contents
[  177.740724][T10510] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.750084][T12222] syz.3.3094: attempt to access beyond end of device
[  177.750084][T12222] loop3: rw=2049, sector=209, nr_sectors = 8 limit=128
[  177.765464][T12215] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  177.780292][T12215] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.3092: corrupted inode contents
[  177.806033][T12233] syz.3.3094: attempt to access beyond end of device
[  177.806033][T12233] loop3: rw=2049, sector=305, nr_sectors = 80 limit=128
[  177.820758][T12215] EXT4-fs error (device loop2): ext4_truncate:4597: inode #13: comm syz.2.3092: mark_inode_dirty error
[  177.832896][T12222] syz.3.3094: attempt to access beyond end of device
[  177.832896][T12222] loop3: rw=2049, sector=225, nr_sectors = 8 limit=128
[  177.848981][T12215] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  177.864398][T12233] syz.3.3094: attempt to access beyond end of device
[  177.864398][T12233] loop3: rw=2049, sector=393, nr_sectors = 8 limit=128
[  177.873005][T12222] syz.3.3094: attempt to access beyond end of device
[  177.873005][T12222] loop3: rw=2049, sector=241, nr_sectors = 8 limit=128
[  177.881408][T12215] EXT4-fs (loop2): 1 truncate cleaned up
[  177.904307][T12215] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.919397][T12222] syz.3.3094: attempt to access beyond end of device
[  177.919397][T12222] loop3: rw=2049, sector=257, nr_sectors = 8 limit=128
[  177.946721][T12233] syz.3.3094: attempt to access beyond end of device
[  177.946721][T12233] loop3: rw=2049, sector=409, nr_sectors = 8 limit=128
[  177.977653][ T3437] buffer_io_error: 87934 callbacks suppressed
[  177.977670][ T3437] Buffer I/O error on dev loop3, logical block 305, lost async page write
[  178.008424][T11602] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.058258][T12245] loop2: detected capacity change from 0 to 1024
[  178.092120][T12245] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.104603][T12245] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.171312][T12263] loop1: detected capacity change from 0 to 128
[  178.195882][T12265] hsr_slave_0: left promiscuous mode
[  178.204602][T12265] hsr_slave_1: left promiscuous mode
[  178.290442][T12274] loop4: detected capacity change from 0 to 512
[  178.298163][T12274] EXT4-fs (loop4): filesystem is read-only
[  178.316856][T12274] EXT4-fs (loop4): filesystem is read-only
[  178.322859][T12274] EXT4-fs (loop4): orphan cleanup on readonly fs
[  178.341713][T12274] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.3115: bad orphan inode 16
[  178.356667][T12274] ext4_test_bit(bit=15, block=3) = 0
[  178.363404][T12262] Buffer I/O error on dev loop1, logical block 305, async page read
[  178.367389][T12274] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  178.371495][T12262] Buffer I/O error on dev loop1, logical block 306, async page read
[  178.391547][T12262] Buffer I/O error on dev loop1, logical block 307, async page read
[  178.399604][T12262] Buffer I/O error on dev loop1, logical block 308, async page read
[  178.407776][T12262] Buffer I/O error on dev loop1, logical block 309, async page read
[  178.415836][T12262] Buffer I/O error on dev loop1, logical block 310, async page read
[  178.423984][T12262] Buffer I/O error on dev loop1, logical block 311, async page read
[  178.432422][T12262] Buffer I/O error on dev loop1, logical block 312, async page read
[  178.440746][T12263] Buffer I/O error on dev loop1, logical block 305, async page read
[  178.485985][T11308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.581530][T12286] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  178.581530][T12286]    program syz.5.3119 not setting count and/or reply_len properly
[  178.656328][T11602] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.681898][T12293] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.749080][T12293] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.776464][T12303] loop4: detected capacity change from 0 to 2048
[  178.813383][T12303]  loop4: p2 < > p4
[  178.817135][T12305] loop2: detected capacity change from 0 to 1024
[  178.818032][T12303] loop4: p4 size 8192 extends beyond EOD, truncated
[  178.825065][T12293] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.855820][T12305] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.868032][T12305] ext4 filesystem being mounted at /39/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.885647][T12293] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.899656][T12305] EXT4-fs error (device loop2): ext4_map_blocks:816: inode #15: block 3: comm syz.2.3127: lblock 3 mapped to illegal pblock 3 (length 1)
[  178.915521][T12305] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  178.928214][T12305] EXT4-fs (loop2): This should not happen!! Data will be lost
[  178.928214][T12305] 
[  179.110900][T12311] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.137028][T12311] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.161765][T12312] __nla_validate_parse: 9 callbacks suppressed
[  179.161789][T12312] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3129'.
[  179.187642][T12311] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.236910][T12311] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.296262][T12311] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.307854][T12311] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.319680][T12311] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.331394][T12311] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  179.431753][T12316] loop1: detected capacity change from 0 to 8192
[  179.461264][T11602] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.550958][T12318] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  179.550958][T12318]    program syz.2.3132 not setting count and/or reply_len properly
[  179.700189][T12332] netlink: 'syz.3.3138': attribute type 2 has an invalid length.
[  180.081244][T12342] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3142'.
[  180.108885][T12342] loop3: detected capacity change from 0 to 512
[  180.124560][T12342] EXT4-fs (loop3): filesystem is read-only
[  180.141069][T12342] EXT4-fs (loop3): filesystem is read-only
[  180.146968][T12342] EXT4-fs (loop3): orphan cleanup on readonly fs
[  180.164160][T12342] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.3142: bad orphan inode 16
[  180.174848][T12342] ext4_test_bit(bit=15, block=3) = 0
[  180.179129][T12348] loop2: detected capacity change from 0 to 2048
[  180.184868][T12342] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  180.223619][T12350] loop4: detected capacity change from 0 to 8192
[  180.234492][T12348]  loop2: p2 < > p4
[  180.244585][T12348] loop2: p4 size 8192 extends beyond EOD, truncated
[  180.278605][T12003] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.419929][T12293] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  180.420549][T12359] loop1: detected capacity change from 0 to 1024
[  180.440686][T12293] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  180.455124][T12293] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  180.469227][T12359] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.3147: Failed to acquire dquot type 0
[  180.484444][T12359] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  180.501280][T12293] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  180.513092][T12359] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.3147: corrupted inode contents
[  180.538837][T12359] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #13: comm syz.1.3147: mark_inode_dirty error
[  180.552808][T12359] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.3147: corrupted inode contents
[  180.579497][T12359] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #13: comm syz.1.3147: mark_inode_dirty error
[  180.595412][T12359] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.3147: corrupted inode contents
[  180.611093][T12359] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  180.621313][T12359] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #13: comm syz.1.3147: corrupted inode contents
[  180.635899][T12359] EXT4-fs error (device loop1): ext4_truncate:4597: inode #13: comm syz.1.3147: mark_inode_dirty error
[  180.648122][T12359] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  180.666964][T12359] EXT4-fs (loop1): 1 truncate cleaned up
[  180.674630][T12359] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.729156][T11784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.013777][T12382] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  181.013777][T12382]    program syz.1.3155 not setting count and/or reply_len properly
[  181.304220][T12396] loop2: detected capacity change from 0 to 1024
[  181.411409][T12401] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3163'.
[  181.445414][T12396] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.3161: Failed to acquire dquot type 0
[  181.524936][T12396] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  181.543812][T12396] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.3161: corrupted inode contents
[  181.559425][T12409] netlink: 'syz.4.3163': attribute type 2 has an invalid length.
[  181.568461][T12396] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #13: comm syz.2.3161: mark_inode_dirty error
[  181.580071][T12396] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.3161: corrupted inode contents
[  181.621192][T12396] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.3161: mark_inode_dirty error
[  181.632766][T12396] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.3161: corrupted inode contents
[  181.645988][T12396] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  181.685219][T12396] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.3161: corrupted inode contents
[  181.700763][   T29] kauditd_printk_skb: 674 callbacks suppressed
[  181.700778][   T29] audit: type=1326 audit(1749188547.822:15342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.731420][T12413] loop5: detected capacity change from 0 to 1024
[  181.737856][   T29] audit: type=1326 audit(1749188547.822:15343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.761756][   T29] audit: type=1326 audit(1749188547.822:15344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.785706][   T29] audit: type=1326 audit(1749188547.822:15345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.809428][   T29] audit: type=1326 audit(1749188547.822:15346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.833065][   T29] audit: type=1326 audit(1749188547.822:15347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.844917][T12413] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  181.856690][   T29] audit: type=1326 audit(1749188547.832:15348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.866631][T12396] EXT4-fs error (device loop2): ext4_truncate:4597: inode #13: comm syz.2.3161: mark_inode_dirty error
[  181.890134][   T29] audit: type=1326 audit(1749188547.832:15349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.924974][   T29] audit: type=1326 audit(1749188547.832:15350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.948586][   T29] audit: type=1326 audit(1749188547.832:15351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12412 comm="syz.5.3167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb938b9e929 code=0x7ffc0000
[  181.983531][T12413] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  181.984359][T12396] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  181.994531][T12413] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  182.016860][T12396] EXT4-fs (loop2): 1 truncate cleaned up
[  182.023283][T12396] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.035821][T12413] JBD2: no valid journal superblock found
[  182.041568][T12413] EXT4-fs (loop5): Could not load journal inode
[  182.121853][T12429] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3171'.
[  182.143318][T12429] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3171'.
[  182.165493][T11602] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.282697][T12443] loop2: detected capacity change from 0 to 512
[  182.294004][T12443] EXT4-fs (loop2): filesystem is read-only
[  182.301376][T12443] EXT4-fs (loop2): filesystem is read-only
[  182.307424][T12443] EXT4-fs (loop2): orphan cleanup on readonly fs
[  182.316863][T12443] EXT4-fs error (device loop2): ext4_orphan_get:1419: comm syz.2.3176: bad orphan inode 16
[  182.349743][T12443] ext4_test_bit(bit=15, block=3) = 0
[  182.356637][T12443] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  182.440382][T11602] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.500335][T12449] loop1: detected capacity change from 0 to 8192
[  182.551736][T12470] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3190'.
[  182.562349][T12470] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3190'.
[  182.566538][T12467] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  182.566538][T12467]    program syz.3.3188 not setting count and/or reply_len properly
[  182.571501][T12470] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3190'.
[  182.617157][T12462] loop2: detected capacity change from 0 to 8192
[  182.712217][T12483] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  182.718835][T12483] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  182.726514][T12483] vhci_hcd vhci_hcd.0: Device attached
[  182.743538][T12484] vhci_hcd: connection closed
[  182.743974][ T3459] vhci_hcd: stop threads
[  182.746500][T12487] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  182.746500][T12487]    program syz.5.3194 not setting count and/or reply_len properly
[  182.748700][ T3459] vhci_hcd: release socket
[  182.775006][ T3459] vhci_hcd: disconnect device
[  182.883999][T12498] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3199'.
[  182.906725][T12498] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3199'.
[  182.996275][T12503] loop5: detected capacity change from 0 to 8192
[  183.073084][T12507] loop2: detected capacity change from 0 to 1024
[  183.090718][T12507] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  183.113432][T12507] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  183.124428][T12507] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  183.139903][T12507] JBD2: no valid journal superblock found
[  183.145814][T12507] EXT4-fs (loop2): Could not load journal inode
[  183.222969][T12515] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.342856][T12515] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.406222][T12515] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.497710][T12515] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.547218][T12515] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  183.548027][T12545] loop4: detected capacity change from 0 to 2048
[  183.564950][T12515] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  183.586575][T12515] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  183.599114][T12547] loop3: detected capacity change from 0 to 512
[  183.608331][T12515] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  183.613994][T12545]  loop4: p2 < > p4
[  183.623507][T12547] EXT4-fs (loop3): filesystem is read-only
[  183.629759][T12545] loop4: p4 size 8192 extends beyond EOD, truncated
[  183.638012][T12547] EXT4-fs (loop3): filesystem is read-only
[  183.643980][T12547] EXT4-fs (loop3): orphan cleanup on readonly fs
[  183.653208][T12547] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.3219: bad orphan inode 16
[  183.664541][T12547] ext4_test_bit(bit=15, block=3) = 0
[  183.670388][T12547] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  183.712115][T12003] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.732730][T12554] FAULT_INJECTION: forcing a failure.
[  183.732730][T12554] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  183.746434][T12554] CPU: 0 UID: 0 PID: 12554 Comm: syz.2.3222 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  183.746465][T12554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  183.746482][T12554] Call Trace:
[  183.746489][T12554]  <TASK>
[  183.746502][T12554]  __dump_stack+0x1d/0x30
[  183.746532][T12554]  dump_stack_lvl+0xe8/0x140
[  183.746552][T12554]  dump_stack+0x15/0x1b
[  183.746569][T12554]  should_fail_ex+0x265/0x280
[  183.746666][T12554]  should_fail_alloc_page+0xf2/0x100
[  183.746693][T12554]  __alloc_frozen_pages_noprof+0xff/0x360
[  183.746798][T12554]  alloc_pages_mpol+0xb3/0x250
[  183.746871][T12554]  alloc_pages_noprof+0x90/0x130
[  183.747008][T12554]  __pmd_alloc+0x47/0x470
[  183.747032][T12554]  handle_mm_fault+0x19d1/0x2be0
[  183.747054][T12554]  ? __rcu_read_unlock+0x4f/0x70
[  183.747149][T12554]  do_user_addr_fault+0x3fe/0x1090
[  183.747330][T12554]  ? __rcu_read_unlock+0x4f/0x70
[  183.747358][T12554]  exc_page_fault+0x62/0xa0
[  183.747528][T12554]  asm_exc_page_fault+0x26/0x30
[  183.747591][T12554] RIP: 0010:rep_movs_alternative+0xf/0x90
[  183.747618][T12554] Code: c4 10 e9 84 eb 01 00 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d eb 01 00 66 2e
[  183.747640][T12554] RSP: 0018:ffffc90002f43c38 EFLAGS: 00050202
[  183.747658][T12554] RAX: ffff88811980dbd8 RBX: 0000000000000004 RCX: 0000000000000004
[  183.747673][T12554] RDX: 0000000000000001 RSI: 00002000000006c0 RDI: ffffc90002f43cd4
[  183.747749][T12554] RBP: 00002000000006c0 R08: 000000000000078d R09: 0000000000000000
[  183.747763][T12554] R10: 0001c90002f43cd4 R11: 0001c90002f43cd7 R12: ffff888103410501
[  183.747778][T12554] R13: 000000000000001e R14: ffffc90002f43cd4 R15: 00002000000006c0
[  183.747799][T12554]  _copy_from_user+0x6f/0xb0
[  183.747830][T12554]  do_ipv6_setsockopt+0x220/0x22e0
[  183.747855][T12554]  ? kstrtoull+0x111/0x140
[  183.747945][T12554]  ? avc_has_perm_noaudit+0x1b1/0x200
[  183.748010][T12554]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[  183.748077][T12554]  ipv6_setsockopt+0x59/0x130
[  183.748102][T12554]  udpv6_setsockopt+0x99/0xb0
[  183.748139][T12554]  sock_common_setsockopt+0x66/0x80
[  183.748172][T12554]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  183.748201][T12554]  __sys_setsockopt+0x181/0x200
[  183.748237][T12554]  __x64_sys_setsockopt+0x64/0x80
[  183.748332][T12554]  x64_sys_call+0x2bd5/0x2fb0
[  183.748354][T12554]  do_syscall_64+0xd2/0x200
[  183.748384][T12554]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  183.748445][T12554]  ? clear_bhb_loop+0x40/0x90
[  183.748474][T12554]  ? clear_bhb_loop+0x40/0x90
[  183.748496][T12554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.748547][T12554] RIP: 0033:0x7f34caf0e929
[  183.748570][T12554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.748593][T12554] RSP: 002b:00007f34c9577038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  183.748614][T12554] RAX: ffffffffffffffda RBX: 00007f34cb135fa0 RCX: 00007f34caf0e929
[  183.748665][T12554] RDX: 000000000000001e RSI: 0000000000000029 RDI: 0000000000000003
[  183.748680][T12554] RBP: 00007f34c9577090 R08: 0000000000000308 R09: 0000000000000000
[  183.748695][T12554] R10: 00002000000006c0 R11: 0000000000000246 R12: 0000000000000001
[  183.748710][T12554] R13: 0000000000000000 R14: 00007f34cb135fa0 R15: 00007ffef2b1f988
[  183.748758][T12554]  </TASK>
[  184.209219][T12563] loop3: detected capacity change from 0 to 8192
[  184.223577][T12570] __nla_validate_parse: 6 callbacks suppressed
[  184.223592][T12570] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3228'.
[  184.261799][T12570] loop1: detected capacity change from 0 to 512
[  184.279045][T12570] EXT4-fs (loop1): filesystem is read-only
[  184.293653][T12570] EXT4-fs (loop1): filesystem is read-only
[  184.299523][T12570] EXT4-fs (loop1): orphan cleanup on readonly fs
[  184.322783][T12570] EXT4-fs error (device loop1): ext4_orphan_get:1419: comm syz.1.3228: bad orphan inode 16
[  184.357424][T12570] ext4_test_bit(bit=15, block=3) = 0
[  184.364766][T12570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  184.385186][T12578] FAULT_INJECTION: forcing a failure.
[  184.385186][T12578] name failslab, interval 1, probability 0, space 0, times 0
[  184.397986][T12578] CPU: 1 UID: 0 PID: 12578 Comm: syz.4.3230 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  184.398021][T12578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  184.398036][T12578] Call Trace:
[  184.398043][T12578]  <TASK>
[  184.398052][T12578]  __dump_stack+0x1d/0x30
[  184.398077][T12578]  dump_stack_lvl+0xe8/0x140
[  184.398155][T12578]  dump_stack+0x15/0x1b
[  184.398175][T12578]  should_fail_ex+0x265/0x280
[  184.398193][T12578]  ? __se_sys_mount+0xef/0x2e0
[  184.398214][T12578]  should_failslab+0x8c/0xb0
[  184.398277][T12578]  __kmalloc_cache_noprof+0x4c/0x320
[  184.398348][T12578]  ? memdup_user+0x99/0xd0
[  184.398373][T12578]  __se_sys_mount+0xef/0x2e0
[  184.398399][T12578]  ? fput+0x8f/0xc0
[  184.398433][T12578]  ? ksys_write+0x192/0x1a0
[  184.398467][T12578]  __x64_sys_mount+0x67/0x80
[  184.398488][T12578]  x64_sys_call+0xd36/0x2fb0
[  184.398508][T12578]  do_syscall_64+0xd2/0x200
[  184.398541][T12578]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  184.398624][T12578]  ? clear_bhb_loop+0x40/0x90
[  184.398657][T12578]  ? clear_bhb_loop+0x40/0x90
[  184.398686][T12578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.398714][T12578] RIP: 0033:0x7f7c95eee929
[  184.398733][T12578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.398800][T12578] RSP: 002b:00007f7c94557038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  184.398824][T12578] RAX: ffffffffffffffda RBX: 00007f7c96115fa0 RCX: 00007f7c95eee929
[  184.398840][T12578] RDX: 0000200000000100 RSI: 0000200000000040 RDI: 0000000000000000
[  184.398858][T12578] RBP: 00007f7c94557090 R08: 0000200000000200 R09: 0000000000000000
[  184.398874][T12578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  184.398963][T12578] R13: 0000000000000000 R14: 00007f7c96115fa0 R15: 00007fffc0baf448
[  184.398989][T12578]  </TASK>
[  184.630989][T11784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.887350][T12593] netlink: 14 bytes leftover after parsing attributes in process `syz.5.3236'.
[  185.066332][T12605] loop5: detected capacity change from 0 to 512
[  185.085765][T12605] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.099512][T12605] ext4 filesystem being mounted at /127/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  185.119409][T12605] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.3242: corrupted inode contents
[  185.146788][T12605] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #2: comm syz.5.3242: mark_inode_dirty error
[  185.178104][T12605] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.3242: corrupted inode contents
[  185.191374][T12613] loop4: detected capacity change from 0 to 8192
[  185.202940][T12605] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.3242: mark_inode_dirty error
[  185.254495][T12609] loop1: detected capacity change from 0 to 8192
[  185.354362][T12622] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  185.354362][T12622]    program syz.3.3244 not setting count and/or reply_len properly
[  185.490376][T12628] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3247'.
[  185.499935][T12628] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3247'.
[  185.549332][T12632] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3250'.
[  185.549903][T12634] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3249'.
[  185.578361][T12632] netlink: 'syz.2.3250': attribute type 2 has an invalid length.
[  185.683709][T12644] loop1: detected capacity change from 0 to 8192
[  185.778313][T12652] loop4: detected capacity change from 0 to 1024
[  185.795006][T12652] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.808413][T12652] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.827856][T12652] EXT4-fs error (device loop4): ext4_map_blocks:816: inode #15: block 3: comm syz.4.3258: lblock 3 mapped to illegal pblock 3 (length 1)
[  185.842601][T12652] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  185.855014][T12652] EXT4-fs (loop4): This should not happen!! Data will be lost
[  185.855014][T12652] 
[  185.900368][T10510] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.963970][T12662] loop5: detected capacity change from 0 to 1024
[  185.974363][T12662] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.986664][T12662] ext4 filesystem being mounted at /130/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.001434][T12662] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #15: block 3: comm syz.5.3261: lblock 3 mapped to illegal pblock 3 (length 1)
[  186.016794][T12662] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  186.029152][T12662] EXT4-fs (loop5): This should not happen!! Data will be lost
[  186.029152][T12662] 
[  186.050748][T12668] netlink: 14 bytes leftover after parsing attributes in process `syz.1.3263'.
[  186.060098][T12668] hsr_slave_0: left promiscuous mode
[  186.066065][T12668] hsr_slave_1: left promiscuous mode
[  186.122202][T12672] loop3: detected capacity change from 0 to 1024
[  186.129725][T12672] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  186.139799][T12672] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  186.150777][T12672] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  186.161602][T12672] JBD2: no valid journal superblock found
[  186.167492][T12672] EXT4-fs (loop3): Could not load journal inode
[  186.227156][T12676] loop1: detected capacity change from 0 to 8192
[  186.279760][T12680] loop3: detected capacity change from 0 to 8192
[  186.469062][T12687] loop4: detected capacity change from 0 to 8192
[  186.608312][T12697] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3274'.
[  186.634805][T12697] netlink: 'syz.5.3274': attribute type 2 has an invalid length.
[  186.705561][T12706] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3276'.
[  186.717299][T12704] loop5: detected capacity change from 0 to 512
[  186.760531][T12704] ext4 filesystem being mounted at /132/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  186.795249][   T29] kauditd_printk_skb: 673 callbacks suppressed
[  186.795267][   T29] audit: type=1326 audit(1749188552.922:16025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12709 comm="syz.3.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e01e9e929 code=0x7ffc0000
[  186.825111][   T29] audit: type=1326 audit(1749188552.922:16026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12709 comm="syz.3.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e01e9e929 code=0x7ffc0000
[  186.848813][   T29] audit: type=1326 audit(1749188552.922:16027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12709 comm="syz.3.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e01e9e929 code=0x7ffc0000
[  186.872456][   T29] audit: type=1326 audit(1749188552.922:16028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12709 comm="syz.3.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e01e9e929 code=0x7ffc0000
[  186.898170][   T29] audit: type=1326 audit(1749188552.922:16029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12709 comm="syz.3.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e01e9e929 code=0x7ffc0000
[  186.901359][T12716] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.3277: corrupted inode contents
[  186.921834][   T29] audit: type=1326 audit(1749188552.922:16030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12709 comm="syz.3.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e01e9e929 code=0x7ffc0000
[  186.921876][   T29] audit: type=1326 audit(1749188552.952:16031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12712 comm="syz.1.3279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a923e929 code=0x7ffc0000
[  186.921917][   T29] audit: type=1326 audit(1749188552.952:16032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12712 comm="syz.1.3279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a923e929 code=0x7ffc0000
[  187.004752][   T29] audit: type=1326 audit(1749188552.952:16033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12712 comm="syz.1.3279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8a923e929 code=0x7ffc0000
[  187.028409][   T29] audit: type=1326 audit(1749188552.952:16034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12712 comm="syz.1.3279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a923e929 code=0x7ffc0000
[  187.038418][T12716] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #2: comm syz.5.3277: mark_inode_dirty error
[  187.069933][T12714] loop3: detected capacity change from 0 to 1024
[  187.077586][T12716] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.3277: corrupted inode contents
[  187.090134][T12714] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  187.101488][T12714] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  187.112814][T12714] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  187.123315][T12716] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.3277: mark_inode_dirty error
[  187.125655][T12714] JBD2: no valid journal superblock found
[  187.140400][T12714] EXT4-fs (loop3): Could not load journal inode
[  187.228323][T12734] FAULT_INJECTION: forcing a failure.
[  187.228323][T12734] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.241535][T12734] CPU: 1 UID: 0 PID: 12734 Comm: syz.4.3285 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  187.241628][T12734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  187.241644][T12734] Call Trace:
[  187.241651][T12734]  <TASK>
[  187.241660][T12734]  __dump_stack+0x1d/0x30
[  187.241685][T12734]  dump_stack_lvl+0xe8/0x140
[  187.241782][T12734]  dump_stack+0x15/0x1b
[  187.241802][T12734]  should_fail_ex+0x265/0x280
[  187.241821][T12734]  should_fail+0xb/0x20
[  187.241837][T12734]  should_fail_usercopy+0x1a/0x20
[  187.241862][T12734]  _copy_from_iter+0xcf/0xe40
[  187.241944][T12734]  ? file_tty_write+0x1dc/0x670
[  187.241985][T12734]  ? file_tty_write+0x1dc/0x670
[  187.242019][T12734]  ? kfree+0x27b/0x320
[  187.242065][T12734]  file_tty_write+0x32f/0x670
[  187.242108][T12734]  ? __pfx_tty_write+0x10/0x10
[  187.242145][T12734]  tty_write+0x25/0x30
[  187.242226][T12734]  vfs_write+0x49d/0x8e0
[  187.242252][T12734]  ksys_write+0xda/0x1a0
[  187.242273][T12734]  __x64_sys_write+0x40/0x50
[  187.242298][T12734]  x64_sys_call+0x2cdd/0x2fb0
[  187.242378][T12734]  do_syscall_64+0xd2/0x200
[  187.242407][T12734]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  187.242436][T12734]  ? clear_bhb_loop+0x40/0x90
[  187.242463][T12734]  ? clear_bhb_loop+0x40/0x90
[  187.242500][T12734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.242525][T12734] RIP: 0033:0x7f7c95eee929
[  187.242545][T12734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.242568][T12734] RSP: 002b:00007f7c94557038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  187.242601][T12734] RAX: ffffffffffffffda RBX: 00007f7c96115fa0 RCX: 00007f7c95eee929
[  187.242625][T12734] RDX: 00000000fffffecc RSI: 0000200000000240 RDI: 0000000000000003
[  187.242637][T12734] RBP: 00007f7c94557090 R08: 0000000000000000 R09: 0000000000000000
[  187.242664][T12734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.242680][T12734] R13: 0000000000000000 R14: 00007f7c96115fa0 R15: 00007fffc0baf448
[  187.242705][T12734]  </TASK>
[  187.467826][T12735] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3287'.
[  187.518007][T12736] loop1: detected capacity change from 0 to 8192
[  187.533450][T12735] netlink: 'syz.3.3287': attribute type 2 has an invalid length.
[  187.641806][T12750] loop4: detected capacity change from 0 to 512
[  187.656272][T12750] EXT4-fs (loop4): filesystem is read-only
[  187.658108][T12753] loop5: detected capacity change from 0 to 1024
[  187.672299][T12750] EXT4-fs (loop4): filesystem is read-only
[  187.678281][T12750] EXT4-fs (loop4): orphan cleanup on readonly fs
[  187.686088][T12750] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.3291: bad orphan inode 16
[  187.698529][T12750] ext4_test_bit(bit=15, block=3) = 0
[  187.699298][T12753] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  187.720410][T12753] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #15: block 3: comm syz.5.3292: lblock 3 mapped to illegal pblock 3 (length 1)
[  187.737541][T12753] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  187.749962][T12753] EXT4-fs (loop5): This should not happen!! Data will be lost
[  187.749962][T12753] 
[  187.857728][T12766] loop3: detected capacity change from 0 to 1024
[  187.887436][T12766] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  187.919820][T12766] EXT4-fs error (device loop3): ext4_map_blocks:816: inode #15: block 3: comm syz.3.3295: lblock 3 mapped to illegal pblock 3 (length 1)
[  187.936630][T12766] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  187.949091][T12766] EXT4-fs (loop3): This should not happen!! Data will be lost
[  187.949091][T12766] 
[  188.045331][T12777] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  188.045331][T12777]    program syz.4.3299 not setting count and/or reply_len properly
[  188.262944][T12757] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  188.305279][T12793] loop4: detected capacity change from 0 to 128
[  188.318366][T12797] loop5: detected capacity change from 0 to 128
[  188.324085][T12793] bio_check_eod: 48553 callbacks suppressed
[  188.324104][T12793] syz.4.3306: attempt to access beyond end of device
[  188.324104][T12793] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[  188.346458][T12793] syz.4.3306: attempt to access beyond end of device
[  188.346458][T12793] loop4: rw=2049, sector=169, nr_sectors = 16 limit=128
[  188.356113][T12797] syz.5.3308: attempt to access beyond end of device
[  188.356113][T12797] loop5: rw=2049, sector=145, nr_sectors = 16 limit=128
[  188.360978][T12793] syz.4.3306: attempt to access beyond end of device
[  188.360978][T12793] loop4: rw=2049, sector=193, nr_sectors = 8 limit=128
[  188.376058][T12797] syz.5.3308: attempt to access beyond end of device
[  188.376058][T12797] loop5: rw=2049, sector=169, nr_sectors = 16 limit=128
[  188.387658][T12793] syz.4.3306: attempt to access beyond end of device
[  188.387658][T12793] loop4: rw=2049, sector=209, nr_sectors = 8 limit=128
[  188.414434][T12797] syz.5.3308: attempt to access beyond end of device
[  188.414434][T12797] loop5: rw=2049, sector=193, nr_sectors = 8 limit=128
[  188.414801][T12793] syz.4.3306: attempt to access beyond end of device
[  188.414801][T12793] loop4: rw=2049, sector=225, nr_sectors = 8 limit=128
[  188.451429][T12793] syz.4.3306: attempt to access beyond end of device
[  188.451429][T12793] loop4: rw=2049, sector=241, nr_sectors = 8 limit=128
[  188.465874][T12793] syz.4.3306: attempt to access beyond end of device
[  188.465874][T12793] loop4: rw=2049, sector=257, nr_sectors = 8 limit=128
[  188.521064][T12805] loop2: detected capacity change from 0 to 8192
[  188.523225][T12808] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  188.533979][T12808] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  188.541692][T12808] vhci_hcd vhci_hcd.0: Device attached
[  188.547630][T12757] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  188.562604][T12809] vhci_hcd: connection closed
[  188.568058][   T51] vhci_hcd: stop threads
[  188.577116][   T51] vhci_hcd: release socket
[  188.581733][   T51] vhci_hcd: disconnect device
[  188.624520][T12813] loop3: detected capacity change from 0 to 512
[  188.632735][T12813] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  188.646048][T12813] EXT4-fs (loop3): 1 truncate cleaned up
[  188.714717][T12796] buffer_io_error: 46991 callbacks suppressed
[  188.714739][T12796] Buffer I/O error on dev loop5, logical block 305, async page read
[  188.739304][T12793] Buffer I/O error on dev loop4, logical block 305, async page read
[  188.742876][T12796] Buffer I/O error on dev loop5, logical block 306, async page read
[  188.747358][T12793] Buffer I/O error on dev loop4, logical block 306, async page read
[  188.765209][T12793] Buffer I/O error on dev loop4, logical block 307, async page read
[  188.766848][T12818] loop3: detected capacity change from 0 to 8192
[  188.773310][T12793] Buffer I/O error on dev loop4, logical block 308, async page read
[  188.781997][T12796] Buffer I/O error on dev loop5, logical block 307, async page read
[  188.788744][T12793] Buffer I/O error on dev loop4, logical block 309, async page read
[  188.796009][T12796] Buffer I/O error on dev loop5, logical block 308, async page read
[  188.805043][T12793] Buffer I/O error on dev loop4, logical block 310, async page read
[  188.860067][T12802] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  188.866719][T12802] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  188.874396][T12802] vhci_hcd vhci_hcd.0: Device attached
[  188.884520][T12806] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(10)
[  188.891222][T12806] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  188.898906][T12806] vhci_hcd vhci_hcd.0: Device attached
[  189.053070][   T23] vhci_hcd: vhci_device speed not set
[  189.082791][ T3421] vhci_hcd: vhci_device speed not set
[  189.112887][   T23] usb 9-1: new full-speed USB device number 3 using vhci_hcd
[  189.142862][ T3421] usb 11-1: new full-speed USB device number 3 using vhci_hcd
[  189.155640][T12838] loop1: detected capacity change from 0 to 1024
[  189.197866][T12820] vhci_hcd: connection reset by peer
[  189.204451][ T3437] vhci_hcd: stop threads
[  189.208727][ T3437] vhci_hcd: release socket
[  189.213300][ T3437] vhci_hcd: disconnect device
[  189.293486][T12838] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  189.305477][T12842] __nla_validate_parse: 5 callbacks suppressed
[  189.305495][T12842] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3320'.
[  189.324189][T12842] loop2: detected capacity change from 0 to 512
[  189.331710][T12842] EXT4-fs (loop2): filesystem is read-only
[  189.341517][T12842] EXT4-fs (loop2): filesystem is read-only
[  189.347479][T12842] EXT4-fs (loop2): orphan cleanup on readonly fs
[  189.355652][T12838] EXT4-fs error (device loop1): ext4_map_blocks:816: inode #15: block 3: comm syz.1.3319: lblock 3 mapped to illegal pblock 3 (length 1)
[  189.381940][T12842] EXT4-fs error (device loop2): ext4_orphan_get:1419: comm syz.2.3320: bad orphan inode 16
[  189.402619][T12842] ext4_test_bit(bit=15, block=3) = 0
[  189.418322][T12838] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  189.430727][T12838] EXT4-fs (loop1): This should not happen!! Data will be lost
[  189.430727][T12838] 
[  189.502023][T12825] vhci_hcd: connection reset by peer
[  189.524076][   T51] vhci_hcd: stop threads
[  189.528360][   T51] vhci_hcd: release socket
[  189.532875][   T51] vhci_hcd: disconnect device
[  190.154936][T12853] loop3: detected capacity change from 0 to 8192
[  190.179261][T12858] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3325'.
[  190.598714][T12878] loop2: detected capacity change from 0 to 8192
[  190.620320][T12881] loop3: detected capacity change from 0 to 1024
[  190.632129][T12881] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  190.664126][T12881] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  190.675227][T12881] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  190.732046][T12881] JBD2: no valid journal superblock found
[  190.732061][T12881] EXT4-fs (loop3): Could not load journal inode
[  190.734606][T12883] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.893102][T12890] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3334'.
[  190.905271][T12883] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.015904][T12883] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.073972][T12883] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.128942][T12883] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  191.221591][T12883] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  191.236796][T12883] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  191.270243][T12883] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  191.555973][T12914] loop4: detected capacity change from 0 to 8192
[  191.978998][T12935] loop5: detected capacity change from 0 to 8192
[  192.069842][   T29] kauditd_printk_skb: 629 callbacks suppressed
[  192.069858][   T29] audit: type=1326 audit(1749188558.192:16664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.111706][   T29] audit: type=1326 audit(1749188558.222:16665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.135552][   T29] audit: type=1326 audit(1749188558.222:16666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.159210][   T29] audit: type=1326 audit(1749188558.222:16667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.182820][   T29] audit: type=1326 audit(1749188558.222:16668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.206549][   T29] audit: type=1326 audit(1749188558.222:16669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.230145][   T29] audit: type=1326 audit(1749188558.222:16670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.253763][   T29] audit: type=1326 audit(1749188558.222:16671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.277420][   T29] audit: type=1326 audit(1749188558.222:16672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.301073][   T29] audit: type=1326 audit(1749188558.222:16673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12946 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c95eee929 code=0x7ffc0000
[  192.440192][T12959] No such timeout policy "syz0"
[  192.457826][T12969] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3365'.
[  192.528343][T12974] loop3: detected capacity change from 0 to 1024
[  192.553081][T12974] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  192.564452][T12965] loop4: detected capacity change from 0 to 8192
[  192.571494][T12974] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  192.582483][T12974] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  192.595710][T12974] JBD2: no valid journal superblock found
[  192.601477][T12974] EXT4-fs (loop3): Could not load journal inode
[  192.665027][T12980] loop2: detected capacity change from 0 to 1024
[  192.672422][T12980] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  192.682556][T12980] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  192.693625][T12980] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  192.704978][T12980] JBD2: no valid journal superblock found
[  192.710799][T12980] EXT4-fs (loop2): Could not load journal inode
[  192.738787][T12965] ==================================================================
[  192.746929][T12965] BUG: KCSAN: data-race in fat16_ent_put / fat_mirror_bhs
[  192.754074][T12965] 
[  192.756397][T12965] write to 0xffff888124522460 of 2 bytes by task 12981 on cpu 1:
[  192.764117][T12965]  fat16_ent_put+0x28/0x60
[  192.768553][T12965]  fat_ent_write+0x6c/0xe0
[  192.772988][T12965]  fat_chain_add+0x15b/0x3f0
[  192.777583][T12965]  fat_get_block+0x46c/0x5e0
[  192.782188][T12965]  __block_write_begin_int+0x3fd/0xf90
[  192.787656][T12965]  cont_write_begin+0x5fc/0x970
[  192.792518][T12965]  fat_write_begin+0x4f/0xe0
[  192.797133][T12965]  generic_perform_write+0x181/0x490
[  192.802431][T12965]  __generic_file_write_iter+0x9e/0x120
[  192.807994][T12965]  generic_file_write_iter+0x8d/0x2f0
[  192.813376][T12965]  aio_write+0x2e5/0x410
[  192.817636][T12965]  io_submit_one+0xacd/0x11d0
[  192.822341][T12965]  __se_sys_io_submit+0xfb/0x280
[  192.827287][T12965]  __x64_sys_io_submit+0x43/0x50
[  192.832236][T12965]  x64_sys_call+0xfc4/0x2fb0
[  192.836835][T12965]  do_syscall_64+0xd2/0x200
[  192.841368][T12965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.847270][T12965] 
[  192.849621][T12965] read to 0xffff888124522400 of 512 bytes by task 12965 on cpu 0:
[  192.857449][T12965]  fat_mirror_bhs+0x1df/0x320
[  192.862148][T12965]  fat_alloc_clusters+0x98b/0xa80
[  192.867199][T12965]  fat_get_block+0x258/0x5e0
[  192.871829][T12965]  __block_write_begin_int+0x3fd/0xf90
[  192.877303][T12965]  cont_write_begin+0x5fc/0x970
[  192.882170][T12965]  fat_write_begin+0x4f/0xe0
[  192.886783][T12965]  generic_perform_write+0x181/0x490
[  192.892082][T12965]  __generic_file_write_iter+0x9e/0x120
[  192.897641][T12965]  generic_file_write_iter+0x8d/0x2f0
[  192.903026][T12965]  vfs_write+0x49d/0x8e0
[  192.907274][T12965]  ksys_write+0xda/0x1a0
[  192.911522][T12965]  __x64_sys_write+0x40/0x50
[  192.916118][T12965]  x64_sys_call+0x2cdd/0x2fb0
[  192.920801][T12965]  do_syscall_64+0xd2/0x200
[  192.925321][T12965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.931222][T12965] 
[  192.933547][T12965] Reported by Kernel Concurrency Sanitizer on:
[  192.939696][T12965] CPU: 0 UID: 0 PID: 12965 Comm: syz.4.3364 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  192.951857][T12965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  192.961920][T12965] ==================================================================
[  194.202856][ T3421] usb 11-1: enqueue for inactive port 0
[  194.202879][   T23] usb 9-1: enqueue for inactive port 0
[  194.208444][ T3421] usb 11-1: enqueue for inactive port 0
[  194.214022][   T23] usb 9-1: enqueue for inactive port 0
[  194.292811][   T23] vhci_hcd: vhci_device speed not set
[  194.293112][ T3421] vhci_hcd: vhci_device speed not set