last executing test programs:

20.752056278s ago: executing program 4 (id=2682):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e20, @private=0xa010102}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) (fail_nth: 4)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x40)

20.499990787s ago: executing program 4 (id=2686):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)

20.471852977s ago: executing program 4 (id=2689):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=ANY=[@ANYBLOB="440000001000090600"/19, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0)

20.231931176s ago: executing program 4 (id=2693):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000001080), 0x1, 0x4f7, &(0x7f0000000540)="$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")
r0 = open(&(0x7f0000000140)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b900000000fffffffff2060000000000000200"})
open(&(0x7f0000000300)='.\x00', 0x418601, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000b80)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0xec}, 0x1, 0x0, 0x0, 0x8001}, 0x4048880)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000080000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000a40)=ANY=[@ANYRES32=r1], &(0x7f0000000a80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r4}, 0x10)
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000100005000000001e3a0000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c000480080002401725f2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30000000004c00048048000180080001"], 0x122}, 0x1, 0x0, 0x0, 0x40000c1}, 0x4000090)
r6 = socket(0x2, 0x5, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x7, r7}, 0x38)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r8}, 0x18)
sendmmsg$inet_sctp(r6, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000680)="03", 0x1}], 0x1, 0x0, 0x2b, 0x8040}], 0x1, 0x880)
ioctl$sock_inet_SIOCSIFNETMASK(r6, 0x891c, &(0x7f00000002c0)={'pim6reg0\x00', {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}})
sendmmsg$inet_sctp(r6, &(0x7f0000000bc0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000001c0)=[{0x0, 0x2}], 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c0000000000000002002b0388edb6556900"/51, @ANYRES32=0x0], 0x30}], 0x1, 0x0)
creat(&(0x7f0000000280)='./bus\x00', 0x102)
r9 = open(&(0x7f0000000200)='./bus\x00', 0x44000, 0x0)
finit_module(r9, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

19.738724365s ago: executing program 4 (id=2697):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000180)={0x80, 0x8, 0x2, 0x40000000, 0x23, 0x7})

18.691980252s ago: executing program 4 (id=2701):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
syz_io_uring_setup(0x782e, &(0x7f00000003c0)={0x0, 0x695f, 0x4000, 0x0, 0x15a}, &(0x7f0000000000), &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x808004, &(0x7f0000000000)=ANY=[], 0x3, 0x2a4, &(0x7f0000000300)="$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")

18.691735702s ago: executing program 32 (id=2701):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
syz_io_uring_setup(0x782e, &(0x7f00000003c0)={0x0, 0x695f, 0x4000, 0x0, 0x15a}, &(0x7f0000000000), &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x808004, &(0x7f0000000000)=ANY=[], 0x3, 0x2a4, &(0x7f0000000300)="$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")

18.387840441s ago: executing program 1 (id=2707):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@delalloc}, {@nouid32}, {@usrquota}, {@dioread_nolock}, {@nobh}, {@usrquota}, {@grpjquota}, {@lazytime}]}, 0x1, 0x5eb, &(0x7f0000001740)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
sendfile(r2, r1, 0x0, 0x3ffff)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan1\x00'})
sendfile(r2, 0xffffffffffffffff, 0x0, 0x7ffff000)
fallocate(r0, 0x0, 0xb7d4, 0x1001f0)

18.238747601s ago: executing program 1 (id=2708):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = perf_event_open$cgroup(&(0x7f0000000300)={0x3, 0x80, 0xc0, 0x0, 0xf, 0x8, 0x0, 0x5, 0x200, 0x4, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5d, 0x0, @perf_config_ext={0x0, 0x1}, 0x1000, 0x2, 0x80000000, 0x5, 0xa, 0x5a, 0x5, 0x0, 0xfdc, 0x0, 0x6}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000080)='GPL\x00')
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c0000001200010003950000000000000a090a0040010000e7ffffff130000000000ffff0003000000000000000000000000ffff"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xbe69ae51be7b2c52, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x14ba82, 0x18)
write$cgroup_int(r5, &(0x7f00000003c0)=0xfe8e, 0x12)
lchown(&(0x7f0000000f80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x78, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b702000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
clock_nanosleep(0x7, 0x1, &(0x7f00000006c0)={0x77359400}, &(0x7f0000000700))
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e3000000000000000000014000100736974"], 0x4b0}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000640)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}, {0x4, 0x9a, 0x5, 0x6}, {0x2, 0x48, 0x4, 0x5}]})
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r8 = add_key$keyring(&(0x7f0000000200), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r9 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, r8)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000080)=@chain={'key_or_keyring:', r9})
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="00000000000000007bdad32e000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400f7a7417d00850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
clock_gettime(0x3, &(0x7f0000000680))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10)
futimesat(0xffffffffffffffff, 0x0, 0x0)

17.231978528s ago: executing program 1 (id=2713):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)=ANY=[])

17.115362748s ago: executing program 1 (id=2715):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000001080), 0x1, 0x4f7, &(0x7f0000000540)="$eJzs3c9vI1cdAPDvTOJNmqZNCpUKCOhSCgtarZ1426jqqVxAqKqEqDhxSEPijaLYcRQ7pQkrNfkfkKjEAcGJMwckDpV64ojgBre9LAekBVagDRIHo/GPbHZjJ2HXsVX785FGM2/eeL7vrTXveb9J/AIYW1cj4iAirkTEexEx1z6ftLd4q7Vl1z24f3v16P7t1SQajXf/kTTrs3Nx4jWZZ9v3nI6I738n4kfJ6bi1vf3NlXK5tNMuF+qV7UJtb//GRmVlvbRe2ioWlxaXFt64+Xqxb319ufKbe9/eePsHH//uS3f/dPDNn2TNmm3XnexHP7W6njuOk5mMiLcvI9gQTLT7c2XYDeGJpBHxmYh4pfn8z8VE8928mC6PNQDwKdBozEVj7mQZABh1aTMHlqT5di5gNtI0n2/l8F6MmbRcrdWv36rubq21cmXzkUtvbZRLC+1c4Xzkkqy8+GF2/LBcjEfLNyPihYj46dQzzXJ+9eJ5BgCgv559bP7/91Rr/gcARtz0eRcsD6YdAMDgnDv/AwAjx/wPAOPH/A8A48f8DwDjx/wPAOPmTmf+nxh2SwCAgfjeO+9kW+Oo/f3Xa+/v7W5W37+xVqpt5iu7q/nV6s52fr1aXS+X8qvVynn3K1er24uvxe4HhXqpVi/U9vaXK9Xdrfpy83u9l0u5gfQKADjLCy9/8pckIg7efKa5xYm1HMzVMNrSYTcAGBo5fxhfvoUbxpf/4wPnreXZ81eEP3qCYI0Pn+BFQL9d+7z8P4wr+X8YX/L/ML7k/2F8NRpJrzX/0+NLAICRIscPDPTn/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAiZpvb/IlymubzEc9FxHzkklsb5dJCRDwfEX+eyk1l5cWhthgAeHrp35L2+l/X5l6dfbz2SvKfqeY+In7883d/9sFKvb6zmJ3/5/H5+kft88VhtB8AOE9nnu7M4x0P7t9e7WyDbM+9b7UWF83iHrW3Vs1kTGa7P05HLiJm/pW0ym3Z55WJPsQ/OIyIz3Xrf9LMjcy3Vz59PH4W+7mBxk8fiZ8261r77N/is6fuPNUz5nlrvcK4+CQbf97q9vylcbW5n+66+PF0c4R6ep3x7+jU+Nd53qebY0238e/qRWO89vvv9qw7jPjCZLf4yXH8pEf8Vy8Y/84Xv/xKr7rGLyOuRff4J2MV6pXtQm1v/8ZGZWW9tF7aKhaXFpcW3rj5erHQzFEXOpnq0/7+5vXne/b/1xEzPeJPn9P/r53Z68bxAPyr/773w6/0in8Y8Y2vdn//XzwjfjYnfv3M+A+tzPy25/LdWfy1Vv8P/9/3//oF49/96/7aBS8FAAagtre/uVIul3b6epCLPt/wxEFySW12MOIH2efxp73PS+2UWddr/vCLj1/KKofe074cDHlgAi7dw4d+2C0BAAAAAAAAAAAAAAB6ufQ/J0qH3UMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABG2f8CAAD//zwQyy8=")
r0 = open(&(0x7f0000000140)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b900000000fffffffff2060000000000000200"})
open(&(0x7f0000000300)='.\x00', 0x418601, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000b80)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0xec}, 0x1, 0x0, 0x0, 0x8001}, 0x4048880)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000080000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000a40)=ANY=[@ANYRES32=r1], &(0x7f0000000a80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r4}, 0x10)
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000100005000000001e3a0000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c000480080002401725f2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30000000004c00048048000180080001"], 0x122}, 0x1, 0x0, 0x0, 0x40000c1}, 0x4000090)
r6 = socket(0x2, 0x5, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x7, r7}, 0x38)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r8}, 0x18)
sendmmsg$inet_sctp(r6, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000680)="03", 0x1}], 0x1, 0x0, 0x2b, 0x8040}], 0x1, 0x880)
ioctl$sock_inet_SIOCSIFNETMASK(r6, 0x891c, &(0x7f00000002c0)={'pim6reg0\x00', {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}})

16.488562736s ago: executing program 1 (id=2724):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)=ANY=[])

15.859813835s ago: executing program 1 (id=2733):
r0 = socket(0x2, 0x5, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000680)="03", 0x1}], 0x1, 0x0, 0x2b, 0x8040}], 0x1, 0x880)
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f00000002c0)={'pim6reg0\x00', {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}})

15.800985114s ago: executing program 33 (id=2733):
r0 = socket(0x2, 0x5, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000680)="03", 0x1}], 0x1, 0x0, 0x2b, 0x8040}], 0x1, 0x880)
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f00000002c0)={'pim6reg0\x00', {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}})

6.9937039s ago: executing program 6 (id=2916):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@delalloc}, {@nouid32}, {@usrquota}, {@dioread_nolock}, {@nobh}, {@usrquota}, {@grpjquota}, {@lazytime}]}, 0x1, 0x5eb, &(0x7f0000001740)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, 0x0, 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
fallocate(r0, 0x0, 0xb7d4, 0x1001f0)

6.784725529s ago: executing program 6 (id=2920):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x301, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x54}}, 0x0)

6.731780729s ago: executing program 6 (id=2921):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r2, &(0x7f0000fce000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)

6.695189419s ago: executing program 6 (id=2923):
bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x4daf0962d7b862e0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000340), 0x276, 0x200)
ioctl$FIBMAP(r0, 0x1, &(0x7f00000000c0)=0x5)

6.659010629s ago: executing program 6 (id=2925):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
clock_gettime(0x0, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001740)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010700000000000000a6670000000800c300000000000800c4"], 0x2c}}, 0x0)

6.601413049s ago: executing program 6 (id=2927):
mknodat$null(0xffffffffffffff9c, 0x0, 0x0, 0x103)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="180100001c0000000000008000000000850000006d00000095149217e91212421c2063bb86d2a5371500095345b41af564ef21e34460fa8d3a98ee00db1d85627d37d0671b13db8c866115893d4e087d17a40cb3aa3469c49dbed172b313b4768a"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket(0x3, 0x3, 0x5)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r3=>r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYRES64=r3, @ANYRESOCT=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket(0x1e, 0x805, 0x0)
connect$tipc(r5, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{}, 0x2}}, 0x10)
connect$tipc(r5, &(0x7f0000000000)=@id, 0x10)
close(r5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r6 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r6, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064c6", 0x15}, {&(0x7f0000000340)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}, {{&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x8, &(0x7f00000000c0)=[{&(0x7f0000000140)="5825be57aff9352b356be67ca2746357d1787935", 0x14}], 0x1}}], 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x48)
r8 = accept$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14)
close_range(r7, r8, 0x2)
syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa682)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000007000000ff0f000007f0ff0000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000500)={{r9}, &(0x7f0000000400), &(0x7f00000004c0)='%pI4   \x00'}, 0x20)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x90a2, 0x2, &(0x7f0000006680))
unshare(0x2a020400)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f000000d000)={0xa, 0x3, &(0x7f0000003080)=ANY=[@ANYBLOB="850000002200000007000000000000089500000000000000e26c9bd1a6361b80cdd64bdf00000000000869045aac0000659f55df08f9b90788ff7f00000010000029c21ebbcde61d8ab5920aef6c3e007fe61241638962cf0b89ef506cfd3f1d4163d3cfca3733b30070a7cf53021a9554328a702688f92b6b71569d65e33d46f8d8ae24ba69c657afac04379cb536008c219991704f11c5a01ba62ed8f2c6a503dd1b1d076f03b0f917c766f3a7598bbc00feb3bc8e88f79df517b37b56bcbc290080000000000000e675458a43b8a8935bf9cf0be7d0aeaac41405e341d13d244359718ac3dad595712a4051bb6cf826ab757193fc093b8b3353fbbb278d19000000000000007b61805ed430ef06000000000000001e93f640f159320c8b088f4d64977b2eb312d4967aff9e4c14c66c90000054ed82c7cba4c81f91d6dfed18767bf0df584b4b6c4204df411f921e3aa02a67dd324b8176020e9c024751df38c05727f82c92046bfe64babb6d7ba86526b7886a0c2481c5812812a6fa3fca3758cbd8c32b25c28be225bd1f16297baa065f5bf96330fad0aaa4388c06c0eb2ecdf829af9577fcd868cc269b740000b777d73a63246ce6f0467167626329ab91df7a13d9ec9a64e7f6b56aeab8c38f69a213c96e2d2ad7978c9d721c230f27e7025d576535198742d403ec43572d7d0baf00e882617b260627805ca44200335ea4363066944d0aa6feb9705b09ba40d4642519281151f875cbf13a582f90ad719f0eccf02a473dd508a16138904933689ea6ee02412064730700aeff2b69c2f2bf6f691c3560e068743ae8e8771280dac7fd8fdc3f7a35ea352e35753c59ebc1bd27ab6603e6afb1b3f057fbb7ed3aabe702b3c6301d3f5c295d1d69d1541d0e64631c95d6c0999e27e8d1a58f6a00f19102d2bfaf53f25a45637b1c577ae50c4c56d9abc40c64a20c14ff0b1bf4d23fe07ae90f503ba9c64bf89b26e7d8d70710b04f9ece69023acadbb4582272e5b3a0429a5675e5a9554de54945d9a270180e0545b0c824ad36f7cc8be12b3874d5a19349b0ede845e9ece24d546d3af1bae069b89f6ecf2aabb17eb1840bc8e0ed1dd8b9b7eeaf32a185d8fc9a28c6b8e00250a7f2eeb756eadafe20bbc616bc44b347abc8caf722b2c3b06884c1d1690f23b06fa4541bb2a81073b452764f04bd39008b65ee222cf697ac21b087548e9708dffaff2859e973b1e88668c8022cc6dac8548167e5798ec9c7d288a7fa7749f07513187cd8f060abbbc5e37dd1be3aab927be1b409be733b7408534e5b0951e9ecfd0a1c77e3a29be4c4093330124615056e3ce0ce6ac91b1242d3bb2e787a186dc2ec284d60e9d8a03884a22eeaa1efa497ee88c6cb565b164a260afb5157e392b1ebb1a4d4f992011ecbac4a0a6df5bdc6f7994a422bb2761edd2d8f20f5f879a88f89d48b8314f862585e4b7a9d6a6681f40e8b82cc6555dcdb951d164cc9a70e640ac8974faa2587a6e3af3b9458f7d4b4077b3002536b10ea24d73307a33090c4c270909a5322eac32cb175e68fa83457b21465c08c02c0c714c2862ddbe567755f05a1e671328d160d3752345ca1db6e74c720e42afca982ba6befd96c5575f1e88f87ff6606301c0000000000000000000000000000000000000004d0d54b4caf78018766cdb971e8b168d4763c21181f00000003d4e1d842caf457797f93db93e4f38a9dbd79f6bf5dc40b55fdbf9b856665061b2e2924f27eb2d2b5a181ccfd9eeb11dec165b6f12433f00bb06124041ffdcdcdc91f3b3b76635a689c9249cf69bcae65e9f2cc9a5129e385b883c56026d83520395b7d511f607cf2f899c7b1c75e2192f775d72247167285857588ace1115fbebfe63c16b84cf7036d41c493a63c09f2ce46c1f5995c2d7fe58c15e64bb4cb7e7f336cc22fa1ea1363bce375bd3d579be1dddb08ed5147b629e4b3f0e65783ee5e20d9270802f2a7500738bf356131ca53e9d7ba8d486fb26252d684b84fa24639089064ca7b93057c041f12d544dab4d24a4f952b4f265a69ba279929959991b7ac63786055b3c029a0e8b6e4c26497c029bb61462623a58556cd62844d4d23cc738ee5b36c71d2c010b089251d5806000b1ade92dd9f441468967c052aecd9de817394eb580240d556d0f0b4b55d06670597991f37ddc4fa19a6369d5bf76c474633a337f676ad255869881da5cadcf49ce9188129cc978977f87b32bd49457536430ffbd3e01e67ff087644f52fcf0a3c732b0586cb87972c43d2616bf4e521dc3126bf1760243d51a197d3ecfd74bd625e9f496175cfeaaa020817d33d513f3e97854ea76e04e96a8639a297871485a8609f8ca842b3321932c4d9e224a0cec5946cec9e359fd3687415cad5fb8c678136f36d9f781fade9f2469477748f4dfa0f56c3b5a620fc84e1c735647895713cbcea57b2277831f8f633f0d29371e645e5544e57010a9b76457f6ad73231a9f31f6bbb1b95248aeda5a9df9dea643a792bb0910e45fce298ab0a0298fc33a423e860d5b308d7849381b294106af25f15fec047d5b844a99f36e342165df728e381b48c20e0900f8d265157467d3494f2b96acf060f74084760d226f50edb115c2e075f3c663a4b4169b900fa0a13cf796e0d7a9dad86953c13ed6241206d68ae194c64c491de6a531e9bd45abe705f07000a82ccd41a2c1b9d5dd8bf6c28653eb84f117e476e052a9db790e0a71dac9d8b343efebdc026860000000000000000000000000000aad579302085dfdf75bea24798c680b3de341e3bd57543bf74fd58bcebdbb883c743ed43ba7f540f2c4e0310c21e7deff9e45b8bd2cf65bb584091b8e80e34b3e59185fe32d1d73dd4f62712a39b1366c71420b339ec1295f79b1516723b6b80a7e99e5aa6536982c02275fc53fa3ef14d9fccb05f9c4e69a3af0fde863af2d9a0f8a94fc571b0ab4ad714f41fa4ee0bf14a8b44e3c41a3125be95e4b23d5f05395852761bfaebe0db979d5f3991d826cc74542b85cfd0dba66bc93cfd79178ab0b79fa3b29ff9c19e0424513c91980187c9d94b8354337a1fc782505db900c47d83bd49276cfe6e242ba8365b1ea4598a21f50f5415a70990b5bb4a1f6bd8acdf2c7da3d648754767089c9b5ceb556fafa3cc5afd2f3e9a62a90262a76ff89a2751b59a744f0d3f36ca503357daa3e29ce6f357dc1e4839277d003e93fdbb955e1a1302a76aea7e73835094fb15464e94e814c77c293121d0433e80d444c4ca17abaf32b521d8686666055da023aef9c8df3e80d2ed640ed10aa19a036dcef172dbd3b3600b69d7b90c6222e167d7c76059f2b5f3b3004e8a20d1f6612efeb629573be97aa949c6016e7e56283e84986aaa4fc8a098708ebe36f377ada63d9b464c39342e0682549862de3ec75e7b031bc49f341a21417fb6375e8701481b59d1722c836961804666801678eb25750b520bf1615a4bbf30aa74d60ec6b657f2dd298b0419da43fc708a60c94a7ff2fd6a2d08005ad73c9e2d6143d2857be8fb3f12bfa6628bccb153e39172d07563d6a1dc75c347c08060304f091230bd74b49ecdd13bf480db3984622a167c8603b8c501280059a7b6123c8f8cd217f64eccc2dffe4f3a1e8c9a96a13d8126f3ea26779fbd0069d729a7764d4ddd7d9d820b0de2530969362b94b974678527f5bac7eb8d6e321b2be0b2f7534634a5ecd1248d7ad7e8e03163e92e9f1d620e28597bd881eea0981e8adfd70b670b0763ce9226f7c3e156b353e22fdea6942b577bbc539aab23cbd46bdd0ea1e67140c759f208c12dc57f3100000000000000e4965fcb6c2749955eac9476687e63b41c6282bbcb0c3d8b0c9493a3a5f6d879d7257b4b68dc7cac3d9d5f5bbe937c501866ee4042b250e516ec074559e1e551167138766eeecb6941e8305d9cde1800c821536f9d25bd14163890842a08135bdb7a90db630b18f099855a7d9de65c80fa71ff90e873361d0e11a7dfebe56ffb2000b711a0b7914d6351ff60593e48af60e1ffecba7cd6f8ab662eb3c8f3164139e994d6a706afb92722595d649a04f1ff64e5634e7cb9106173a96bf47f7085e7eecdfdc1b6507b851c4ba43312726cfec58dedece1355a087c1b60882713a6161914f09267e2ce8aa886b380add5cd92e185d345c9b2933a78a4215133e8e7247fa444aee30bfb6c17ef537fba43aad323f552c01e17514d5db387e4bf9341ccf5931fc75350f8dcef3ed3e74d674865249b879466f0e3cf0dc9e3d8720ea261e6996b844501e374a0e9878c1d02fd3d6e2ae5d7677892d7a5cdf4b7fa8f315b41552d07495f034e1fa0a2c9a34b7f66638e775dacb33e9b5cd3f4193bdebb7e86090dd265ee2b3ca9bd32d19ef229a050e910263d916670d8006067f5c0a1d8219b4a74b6092656f3b96f060000005ca3eca5d6295a1c11be907fad3bf9ccdf9898a084bbcc0a3714691c6c28fc34c44f9a46d6caf3b93d5d9ad8e3a25d34da57b203af917f5359952468fcddbf43d8fd1add972fd5d361c5be3e8b3280bbfa97e9826163537c99ff461123a1d9f93880feb5f953217f1e633bfb221a7822513278c36abcb6a4009e5037b3f56f9172bd70331817862c5e129d830d4f13e9793dad49b6bf286d2a539d089393d481931735a544f4e86b51a91106ce86d278a0712eab917d843ecc7d031e99d230689210e5afbcbb0a6cff33b40e7b637a8171d7b28fcaee54bb0fb7e2dd92c6cf2130f9fa4482512ae356c5907533108113a9a98b0508e4041df8e99b4136a66f58a6e91e2017dc7e095e8e4776d396797e089e9b42fdee33e76c28a636893510ed71166086bb4c1f3363dfd0abf0b2ea8ceba68c7d9a22a8342059862985d987083d80761bd699c3ee77473263a77ea65eac8a4c3b6b87f399575a15a2db143f6aac363644fd45372d6f43baebc7c3547780d1d079e225962733e0c0d3f364cbe9bcec7caaa8d372da63b213d4554e9ced54c2d59a97b814f1d700"/3584], &(0x7f0000014ff5)='GPL\x00', 0x2, 0x103a, &(0x7f0000014000)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2a3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
setsockopt$IPT_SO_SET_REPLACE(r10, 0x0, 0x40, &(0x7f0000000a40)=@raw={'raw\x00', 0x8, 0x3, 0x4a8, 0x310, 0x11, 0x148, 0x310, 0x0, 0x410, 0x2a8, 0x2a8, 0x410, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2c8, 0x310, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xa}}, @common=@unspec=@bpf1={{0x230}, @fd={0x2, 0x0, r11}}]}, @unspec=@CT0={0x48}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x508)

3.180229999s ago: executing program 0 (id=2991):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@delalloc}, {@nouid32}, {@usrquota}, {@dioread_nolock}, {@nobh}, {@usrquota}, {@grpjquota}, {@lazytime}]}, 0x1, 0x5eb, &(0x7f0000001740)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
fallocate(r0, 0x0, 0xb7d4, 0x1001f0)

3.019529459s ago: executing program 0 (id=2993):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001740)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010700000000000000a6670000000800c300000000000800c4"], 0x2c}}, 0x0)

2.876846758s ago: executing program 0 (id=2995):
creat(&(0x7f0000000040)='./file0\x00', 0x24)
syz_open_dev$MSR(&(0x7f00000000c0), 0x0, 0x0)
socket$inet(0x2, 0x1, 0x0)
syz_io_uring_setup(0x6440, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f00000001c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x40, 0x0, 0x3, 0x800000001, 0x0, 0xce})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='rdma.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f0000000140)={{}, 'port0\x00', 0x22, 0x12001b, 0x0, 0x0, 0xf, 0x9, 0x81, 0x0, 0x3, 0xfd})
r3 = syz_io_uring_setup(0x6d72, &(0x7f0000000280)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000300))
socket$packet(0x11, 0x2, 0x300)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0xffffffffffffffff}, 0x10)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
syz_emit_ethernet(0xae, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r3, 0x17, &(0x7f00000009c0)={&(0x7f0000002000)={[{&(0x7f0000000240)="3dbf11f1ddde34b7950857f6ed", 0xd, 0x2}, {&(0x7f0000000380)="bad6df75835865e21974ea5e5c9dc8702effe1ccb8959e3b3d0ebdcf8d0d31a438f093487b86bce98767b7e3ba04fc0e8681fb3a85e928e21d8953f5ed289901b608a260a47f3e0d3f4b633e557cd2ef7f446ae5ea83074028faab7ed0e909921ba75eebd85e8739aafcd29cdce35b728eca8f7c89c84d09bb76475ccead8b292153d58709ef214b3b9c", 0x8a, 0x2}, {&(0x7f0000000680)="32fa2f7a93781e23a7ea5b5e6345ba616ff650f7fc5528693faf9e763bddcd067edda32110055b531f9d2bf40732a0b2223eb90653714c58175fbeb69c88c566bde72dfabb22a36e2bf504eb45dbcfe37f785488fb074b2dde2de3e7d4f70bf263dddd40f91adae5aa010603eaa5b60256c767e3c061dc5c1c16689255a42cbe231645380b762bae1d7b38b09238b076a82408cd8deba878bbb5b320f80a8e394706f2098f73c86cf008ca936a0c355da2d17e89622c6365353a6d6afb3aebe675154dc96c7f9a774aa1ba8f3c7f8b0bc3e914566c379c38e9baea395423aab062264b3669cf1095cc8a16a6067f", 0xee, 0x1}, {&(0x7f00000007c0)="2e556e0a34213b95805b98acc6208f9fb0acfce4fe5a07f02e383494ebb5c725d81fbbc5ff4695ea73644dc0d239b10438abffc67a714a9b2ca377d1faa9d7d1707ac699dedef3a04f2c10512919aead73d5676f5a7d1ba22c901c64ddd1333f626f3cc6948c90db94741447fe37cf1c08303d4b3a9e358fc937f3f4c1468620cac6066437494afe82e14794ffa0ad0555dd05dcaf50145ff3c1719f7530118b25ca9a47cd89afd7785c67f9f42f9bfeea25b07a8e5da5cf7457737800474e84b94ace3d822972632c4b6f0f066cd529165cbff5434970be444b572ec2b3cbdb3840bbcfb970", 0xe6}, {&(0x7f0000000480)="8df3dbcd9c9f316c4baeb2ee4c8a1591da1198a241042601c170b63b7a630ec7572512d682e015bf69d8f72a5ee41b829b7c28683ff17436795c8e9733970ee1b2d76c5e316e48fb9df7bda4d58de8941e8e9109edd3637aad32474206a57efca3e8edb465fd8f7077", 0x69, 0x1}, {&(0x7f00000008c0)="09d526bf96f855f057e74cca9b29da46f24a8ac50b445460385bb8cfb486186c3c0ea6db1504c7a1da4068f2fb6b69eafd21c09b4ee771ed051db59cbc7838167a1cdaef6c5b97d37fb61acf858ca8599256f0b0eff5fc7ac8dc1809984f866897335235b4711a21342fbb51d22827e075baf3b353d0684831462dc5514ae7762fe25b91903a39de79f8b3796b62f1217fe045b2cdb30ebcb47f601daeebe55bd5e6385f553d25b6b97a1e5c6e7ba4d89ea7f8804bd3e39fdf994935c1204dc268552b0d324476c4d62ebd3d2ab8a8f44bb55d4ad0c9c6336b80c9cceb2b9009e1d06e46d3618cb56b5972abc5951046c7b3b6a7", 0xf4}, {&(0x7f0000000500)="4ae559281c3e6b7c1696eb862ea982184523420abaab4cbf7ac876a212cae1bec4b956984b9845f5", 0x28, 0x2}, {&(0x7f0000000a80)="98e08577d5bfdb9811540701d1d95e09392a3112c467961e60da8424f73a93db430a383fcc3e8ed636eff3e063111d83ed076a38af27c41883f919634436841532cf2746f7faf73becfb361f881c732662570288b3f37d6e9e0e4c0975a25f4769f154fa06c04bc4044392fb47f512c999db483fa7fc4e0ca6da30daac0b91b5d02d59b0609c8caa7004495cde98ee0804ea160787b8a80cb63c583f780a910b07b4ad5ad0e50f51fc17ea8df69ac2e015f5b4", 0xb3}]}, 0x8, 0x3}, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4000)
acct(&(0x7f0000000200)='./file1\x00')
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

2.675479538s ago: executing program 0 (id=2997):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r1)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000200), r1)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r2, 0xb6c91f939c8321d, 0x0, 0x0, {0x10}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0xf, @remote}, @NLBL_UNLABEL_A_ACPTFLG={0x8}]}, 0x30}}, 0x0)

2.571108267s ago: executing program 0 (id=2999):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)={0xe000202b})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000013c0)={0x6c, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x5}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x80000001}, @IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0x8}]}]}, 0x6c}}, 0x20004000)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
syz_emit_ethernet(0x6a, &(0x7f0000000140)=ANY=[@ANYBLOB="ffffffffffff1704b45adbde08004500005c0068000000019078ac1e0001ac1414aa05009478e00000e0401000000000000000060000ac1414aa00000000442cfe0364010102000100000000000000000000ffffffff000000000a0101"], 0x0)
recvmsg(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000080)=""/100, 0x64}, 0x20)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, 0x0)
mount(&(0x7f0000000200)=@filename='./file0\x00', &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='coda\x00', 0x2002, &(0x7f0000001300)='syz1\x00')
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000055002f03020000000000000007000000", @ANYRES32=r6, @ANYBLOB="200001"], 0x38}}, 0x40840)
r7 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000001500), 0x2, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001840)={0xffffffffffffffff, 0xe0, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000001580)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x7, &(0x7f00000015c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001600)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r8=>0x0, 0xe9, &(0x7f0000001640)=[{}, {}], 0x10, 0x10, &(0x7f0000001680), &(0x7f00000016c0), 0x8, 0x73, 0x8, 0x8, &(0x7f0000001700)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001940)={0x8, 0xa, &(0x7f0000001340)=@raw=[@jmp={0x5, 0x1, 0xd, 0x9, 0xa, 0x10}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xffffffff}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}], &(0x7f0000000100)='syzkaller\x00', 0x6, 0x81, &(0x7f0000001440)=""/129, 0x41100, 0x2, '\x00', r6, @cgroup_skb, r7, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001540)={0x1, 0x5, 0x3ff, 0x8}, 0x10, r8, 0xffffffffffffffff, 0xa, 0x0, &(0x7f0000001880)=[{0x1, 0x2, 0x3, 0x1}, {0x0, 0x1, 0x7}, {0x3, 0x5, 0x2, 0x4}, {0x0, 0x5, 0x4}, {0x3, 0x2, 0x0, 0xc}, {0x4, 0x5, 0x1, 0x6}, {0x4, 0x3, 0xe, 0x6}, {0x4, 0x2, 0x9}, {0x3, 0x2, 0xf, 0x3}, {0x0, 0x3, 0xf, 0xb}], 0x10, 0x3, @void, @value}, 0x94)

2.504623347s ago: executing program 0 (id=3002):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@delalloc}, {@nouid32}, {@usrquota}, {@dioread_nolock}, {@nobh}, {@usrquota}, {@grpjquota}, {@lazytime}]}, 0x1, 0x5eb, &(0x7f0000001740)="$eJzs3c9vVVUeAPDveX0tLWWmhUxmhlkMTSYTSGZoaYEJmbiArSEN/ogbN1ZaEHlAQ2u0aEJJcGNi3Bhj4sqF+F8okS0rXblw48qQEDUsTXzmvt5b+uO9lpa2t+F+Psmj997zLud7+/rtOe/0nPsCqKyh7J9axMGImE4RA2l+saweeeHQwvMe/fre+eyRotl86ecUKT9WPD/lX/vzk3sj4ttvUhzoWl3vzNyNyxONxtT1fH9k9sr0yMzcjaOXrkxcnLo4dXXsf2OnTp44eWr02Kau62abY2dvv/n2wAfjr37x2W9p9MsfxlOcjufzJy69jq0yFEOt70laXdR/aqsrK0lX/nOy9CVO9RIDYkOK1687Iv4WA9EVj1+8gXj/hVKDA7ZVM0U0gYpK8h8qqugHFO/tV74PrpXSKwF2wsMzCwMAq/O/vjA2GL2tsYG9j1IsHdZJEbG5kbnl9kXE/Xvjty/cG78d2zQOB7Q3fysi/t4u/1Mr/wejNwZb+V9blv9Zv+Bc/jU7/uIm6185VCz/Yecs5H/vmvkfHfL/tSX5//om6x96vPlG37L879vsJQEAAAAAAEBl3T0TEf9t9/f/2uL8n2gz/6c/Ik5vQf1DK/ZX//2/9mALqgHaeHgm4rm2839rxezfwa5860+t+QDd6cKlxtSxiPhzRByJ7j3Z/ugadRz98MCnncqG8vl/xSOr/34+FzCP40F9z/JzJidmJ572uoGIh7ci/tF2/m9abP9Tm/Y/+30w/YR1HPj3nXOdytbPf2C7ND+PONy2/X9814q09v05Rlr9gZGiV7DaP9/96KtO9W82/91iAp5e1v7vXTv/B9PS+/XMbLyO43P1Zqeyzfb/e9LLrVvO9OTH3pmYnb0+GtGTznZlR5cdH9t4zPAsKvKhyJcs/4/8a+3xvxRRX9n/74uI+RX/d/pl+Zriwl9/7/+xUzz6/1CeLP8nN9T+b3xj7M7g153qf7L2/0SrrT+SHzH+Bws+KdK0Z/nxNulYb1e00/ECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwLOgFhH7ItWGF7drteHhiP6I+EvsrTWuzcz+58K1t65OZmWtz/+vFZ/0O7Cwn4rP/x9csj+2Yv94ROyPiI+7+lr7w+evNSbLvngAAAAAAAAAAAAAAAAAAADYJfo7rP/P/NRVdnTAtquXHQBQmjb5/10ZcQA7T/sP1SX/obrkP1SX/Ifqkv9QXfIfqkv+Q3XJfwAAAAAAeKbsP3T3+xQR8//vaz0yPXlZd6mRAdutVnYAQGnc4geqy9QfqC7v8YG0Tnlvx5PWO3Mt0+ef4mQAAAAAAAAAAAAAqJzDB63/h6qy/h+qy/p/qK5i/f+hkuMAdp73+ECss5K/7fr/dc8CAAAAAAAAAAAAALbSzNyNyxONxtR1G6/sjjB2cqPZbN7MfgpWF6VdEuEaG8XStd0ST2OqmAq/W+JZsVF8w57srHJ+HwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKv9EQAA//+/kiDt")
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, @void, @value}, 0x94)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r1, 0x0, 0xb7d4, 0x1001f0)

1.400826704s ago: executing program 2 (id=3023):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000004c0)={@map, 0x14, 0x1, 0x80000001, &(0x7f00000003c0)=[0x0], 0x1, 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000005c0)=[0x0, 0x0], <r0=>0x0}, 0x40)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000540)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000580)=0x14)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000500)=ANY=[@ANYRES32=r1, @ANYRES32, @ANYBLOB="22a6b6a56caf1a692f000000", @ANYRES32, @ANYBLOB, @ANYRES64=r0], 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x100000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002a00)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0x8000000000000000}, 0x18)
r4 = add_key$keyring(&(0x7f0000000080), &(0x7f00000003c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000001580)='asymmetric\x00', 0x0, &(0x7f0000000300)='0', 0x1, r4)

1.366457554s ago: executing program 2 (id=3024):
r0 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
readahead(r0, 0x3, 0x0)

1.244701834s ago: executing program 2 (id=3025):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0xd, &(0x7f0000000740)=ANY=[@ANYRESHEX=r0, @ANYRESOCT=r0, @ANYRESDEC=r0], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
unshare(0x2040400)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001040)={0xfc, {"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", 0xfffffffffffffd1b}}, 0x1006)
semtimedop(0x0, &(0x7f0000000000)=[{0x3, 0x7f, 0x1800}], 0x1, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x2210808, &(0x7f0000000640)=ANY=[], 0x5, 0x329, &(0x7f00000000c0)="$eJzs3E1rK1UYwPEnL02TXG4mC1EUpAfdqIuhja7lBmlBDFjaRmwFYdpONGRMSiZUImLryq34Ddy4KF12V1C/QDfudONGV90ILixSPJJ5aSftJNak6cvt/wdlTs9znuk5TBqeEzJz/P7XnzRqrlmzOpLMKkmIiJyIFCUpoURwTHrtjETtyquP/vz5xeXVtXfKlcr8klIL5ZXXS0qpwsz3n36eC4YdTstR8cPjP0q/HT179PzxPysf111Vd1Wz1VGWWm/92rHWHVtt1t2GqdSiY1uurepN12778ZYfrzmtra2uspqbj/Nbbdt1ldXsqobdVZ2W6rS7yvrIqjeVaZrqcV7iZGJ7H6rq3tKSVR4xeeOaJ4NR/a21HhLWibKVEpHcpUh1b6LzAgAAd9LF+j/ZK+lHqv+l4NX/vcHn9f/+Sz92Hr13UAjq/8NMXP3/xi/+ufrq/6yITKD+73e5Irr3dv7P4LHqf9wNM5f3tIm+39rtspUP/n89X36wP+s1qP8BAAAAAAAAAAAAAAAAAAAAALgPTrQ2tNZGeAx+Xjsf4fcNSN+9qXliMgZcf2NaRLK9q6+HXn/cc8ura5L1btxLF0Scr7ar21X/6Md/Dx8tMCuGnHqvh0CvHd55pHqK8oOzE+TvbFdTXqRck7o4YsucGFK8mK/1wtuV+Tnl68+fknw0vySGPBOfX4rNz8grL0fyTTHkpw1piSObvdf1qT7L/2JOqbferVzIz3njAAAAAAB4GpjqTOz+3TQHxf38s/11/+cDIpH9+Wzs/jxtvJC+3bUDAAAAAPBQuN3PGpbj2O34RkI7djsnQ8eM2UiPlj41bEwqssKrnjDjfd9FZHIrHdIIv0jRyERCWfk26B7lzOH6JzPnpIySNSN62p/VOH89/Nho0BhZnPT1Sg8IPffNd39Fep5c/cyJ4Km90dCbB9n/WOnEGlNXevPQqTHffQAAAADcpLDoz7lhz5PbnRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/QkMeApa/rcWK3vUYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgrvg3AAD//3xXBXQ=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r5 = socket$unix(0x1, 0x3, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000680)={0x70000033})
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0500400004000000ff0f000007000000000000998e4de60d4bad8ee935d3981165cc9c650b52418dcc", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000600))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000080)=[{0x6}]})
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r8 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0), 0x8001, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(0xffffffffffffffff, 0xc0bc5351, &(0x7f0000000540)={0x9, 0x1, 'client1\x00', 0x1, "7bcdf80c5c8d5b73", "b7c157e70b9e3cb1f96f6081dfab6d0c9a4314a2c04c078fc5c9f6387047942e", 0x80000001, 0x7})
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
write$cgroup_pid(r8, &(0x7f00000031c0), 0x12)
ioctl$TUNSETSTEERINGEBPF(r4, 0x800454e0, &(0x7f0000000080)=r1)
unshare(0x60400)

1.191613464s ago: executing program 5 (id=3027):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'erspan0\x00'})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sysinfo(&(0x7f0000001080)=""/207)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0}, 0x18)
ioctl$FIOCLEX(r5, 0x5451)
ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0xc0189436, 0x1ffffffe)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r6, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

1.155870853s ago: executing program 5 (id=3028):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001740)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010700000000000000a6670000000800c300000000000800c4"], 0x2c}}, 0x0)

1.080962663s ago: executing program 5 (id=3029):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r2, 0x0, 0x65)

1.049368043s ago: executing program 5 (id=3030):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x1a, "2af01c3d0040fbffffffffffffff00"})
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000490, &(0x7f0000001300), 0x1, 0x790, &(0x7f00000014c0)="$eJzs3d9rW2UfAPDvSZt17fa+7Qsv6PSmIGhhLLWzbgpeTLwQwcFAr91CmpXZtBlNOtZScEMEbwQVLwS92bU/5p23/rjV/8IL2ZjaDSdeSOWkyZatSZduTVLo5wOneZ7zo8/zzXPOc56Tc0gC2LPG0z+ZiEMR8WESMVqfn0REtpYajDixsd7ttdVCOiWxvv7G70ltnVtrq4Vo2iZ1oJ55PCJ+eC/icGZzuZXllbl8qVRcrOcnq/PnJyvLK0fOzedni7PFhWNT09NHjz9//NjOxfrnzysHr3/06jNfn/j73ceufvBjEifiYH1Zcxw7ZTzG6+9JNn0L7/HKThfWZ0m/K8BDSQ/NgY2jPA7FaAzUUm0M97JmAEC3vBMR6516sj6Q73gDAGB3SpzOAWCPaXwOcGtttdCY+vhxRM/deDki9m/E37i/ubFksH7Pbn/tPujIreSeOyNJRIztQPnjEfH5t299mU7RpfuQAK1cuhwRZ8bGN/f/yaZnFrbr2a0Wrg/VXsbvm63/g975Lh3/vNBq/Je5M/6JFuOfoRbH7sN48PGfubYDxbSVjv9eanq27XZT/HVjA/Xcf2pjvmxy9lypmPZt/42IicgOpfmp2qqtn4KauPnPzXblN4///vj47S/S8tPXu2tkrg0O3bvNTL6af9S4G25cjnhisFX8yZ32T9qMf091WMZrL77/WbtlafxpvI1pc/zdtX4l4umW7X+3LZMtn0+crO0Ok42dooVvfvl0pF35ze2fTmn5jWuBXkjbf2Tr+MeS5uc1K9sv46cro9+3W/bg+Fvv//uSN2vpffV5F/PV6uJUxL7k9c3zj97dtpFvrJ/GP/FU6+N/q/0/vSY802H8g9d/++rh4++uNP6ZbbX/9hNXb88NtCu/Fn/2Qe0/XUtN1Od00v91WsFHee8AAAAAAAAAAAAAAAAAAAAAAAAAoFOZiDgYSSZ3J53J5HIbv+H9/xjJlMqV6uGz5aWFmaj9VvZYZDONr7ocbfo+1Kn69+E38kfvyz8XEf+LiE+Ghmv5XKFcmul38AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQd6DN7/+nfh3qd+0AgK7Z3+8KAAA95/wPAHvP9s7/w12rBwDQO67/AWDv6fj8f6a79QAAesf1PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF126uTJdFr/a221kOZnLiwvzZUvHJkpVuZy80uFXKG8eD43Wy7Ploq5Qnm+7T+6tPFSKpfPT8fC0sXJarFSnawsr5yeLy8tVE+fm8/PFk8Xsz2LDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6V1lemcuXSsVFiS0Tw7ujGrsmMRi7ohoSXUs09xLD/eugAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHa5fwMAAP//51siTA==")
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000000)=""/69)
r2 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000)=0x2, 0x4)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
preadv(r5, &(0x7f0000000080)=[{&(0x7f0000001600)=""/4102, 0x1006}], 0x1, 0x18, 0x2)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x241640)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x4058534c, &(0x7f0000000240)={0x5, 0x1, 0x1ffc000, 0xffffffff, 0x9, 0x80000000})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r7}, &(0x7f0000000800), &(0x7f0000000840)=r8}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
futex_waitv(&(0x7f0000000b00)=[{0x4, &(0x7f00000002c0)=0xfffffffffffffffd, 0x80}, {0x2, &(0x7f0000000300)=0x3, 0x2}, {0x3, &(0x7f0000000340)=0x8000000000000000, 0x2}, {0x8, &(0x7f0000000380)=0x8000000000000000, 0x82}, {0x8, &(0x7f00000003c0)=0x9, 0x82}, {0xef, &(0x7f0000000400)=0x8f, 0x82}, {0x4, &(0x7f0000000440)=0x100000001}, {0x7, &(0x7f0000000480)=0x2, 0x82}, {0xb033, &(0x7f00000004c0)=0xbfd, 0x82}, {0x70, &(0x7f0000000500), 0x82}, {0x4, &(0x7f0000000540)=0x7fffffffffffffff, 0x2}, {0x2, &(0x7f0000000580)=0x24000000000000, 0x2}, {0x7, &(0x7f00000005c0)=0xffffffff, 0x2}, {0xffffffffffffff01, &(0x7f0000000600)=0x1, 0x2}, {0xffff, &(0x7f0000000640)=0x6, 0x2}, {0x1, &(0x7f00000006c0)=0xfffffffffffffffd, 0x82}, {0xb31a, &(0x7f0000000700)=0x4, 0x82}, {0x6b, &(0x7f0000000740)=0x4, 0x2}, {0x5, &(0x7f0000000780)=0x80000000, 0x2}, {0x40, &(0x7f00000007c0)=0x3, 0x2}, {0xffffffffffffffff, &(0x7f00000008c0)=0x6, 0x82}, {0x800, &(0x7f0000000900)=0x5, 0x2}, {0x6, &(0x7f0000000940)=0x6, 0x82}, {0x8, &(0x7f0000000980)=0x1, 0x82}, {0xf, &(0x7f00000009c0)=0xc, 0x82}, {0x1, &(0x7f0000000a00)=0x6, 0x82}, {0xfffffffffffffff1, &(0x7f0000000a40)=0x2, 0x82}, {0xe, &(0x7f0000000a80)=0xffff, 0x82}, {0x3, &(0x7f0000000ac0)=0xe, 0x82}], 0x1d, 0x0, &(0x7f0000000dc0), 0x1)
openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000040)={0x0, 0xb, 0xfa00, {0x0, &(0x7f0000000080), 0x13f, 0x5}}, 0x20)
pselect6(0x40, &(0x7f0000000180)={0x1f, 0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0)

885.301242ms ago: executing program 5 (id=3032):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000060000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRESOCT=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0xe)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, 0x0, 0x0)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x2, 0xffffffff}]}, 0x10)
getcwd(&(0x7f0000000240)=""/87, 0x57)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="020300000f0000000000000000000000010018000000000005000600000000000a00000000000000fc02000007000000000000000000000000000000000000000200010000000000000002000000000005000500000000000a"], 0x78}, 0x1, 0x7}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {r2}}, './file1\x00'})
setsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0x7, &(0x7f0000000480), 0x4)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x13)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000d80)={[{@dioread_lock}, {@grpquota}, {@noload}, {@abort}, {@user_xattr}, {@usrquota}, {@resgid}, {@bh}]}, 0x1, 0x58d, &(0x7f00000005c0)="$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")
r6 = open(&(0x7f0000000140)='./file1\x00', 0x64842, 0x25)
ioctl$FIBMAP(r6, 0x1, &(0x7f0000000300)=0x4)
unshare(0x6020400)
r7 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
pipe(&(0x7f00000002c0)={<r8=>0xffffffffffffffff})
vmsplice(r8, &(0x7f00000001c0)=[{&(0x7f00000004c0)="7cd1f233f595b9483683fb7fcac2881731c46bffa49ed496fc644240945fc5df84", 0x21}], 0x1, 0x0)

541.518502ms ago: executing program 3 (id=3036):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)=ANY=[])

541.101112ms ago: executing program 3 (id=3037):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
clock_gettime(0x0, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001740)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010700000000000000a6670000000800c300000000000800c4"], 0x2c}}, 0x0)

462.818482ms ago: executing program 3 (id=3038):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001740)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010700000000000000a6670000000800c300000000000800c4"], 0x2c}}, 0x0)

391.423071ms ago: executing program 2 (id=3039):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x1a, "2af01c3d0040fbffffffffffffff00"})
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000490, &(0x7f0000001300), 0x1, 0x790, &(0x7f00000014c0)="$eJzs3d9rW2UfAPDvSZt17fa+7Qsv6PSmIGhhLLWzbgpeTLwQwcFAr91CmpXZtBlNOtZScEMEbwQVLwS92bU/5p23/rjV/8IL2ZjaDSdeSOWkyZatSZduTVLo5wOneZ7zo8/zzXPOc56Tc0gC2LPG0z+ZiEMR8WESMVqfn0REtpYajDixsd7ttdVCOiWxvv7G70ltnVtrq4Vo2iZ1oJ55PCJ+eC/icGZzuZXllbl8qVRcrOcnq/PnJyvLK0fOzedni7PFhWNT09NHjz9//NjOxfrnzysHr3/06jNfn/j73ceufvBjEifiYH1Zcxw7ZTzG6+9JNn0L7/HKThfWZ0m/K8BDSQ/NgY2jPA7FaAzUUm0M97JmAEC3vBMR6516sj6Q73gDAGB3SpzOAWCPaXwOcGtttdCY+vhxRM/deDki9m/E37i/ubFksH7Pbn/tPujIreSeOyNJRIztQPnjEfH5t299mU7RpfuQAK1cuhwRZ8bGN/f/yaZnFrbr2a0Wrg/VXsbvm63/g975Lh3/vNBq/Je5M/6JFuOfoRbH7sN48PGfubYDxbSVjv9eanq27XZT/HVjA/Xcf2pjvmxy9lypmPZt/42IicgOpfmp2qqtn4KauPnPzXblN4///vj47S/S8tPXu2tkrg0O3bvNTL6af9S4G25cjnhisFX8yZ32T9qMf091WMZrL77/WbtlafxpvI1pc/zdtX4l4umW7X+3LZMtn0+crO0Ok42dooVvfvl0pF35ze2fTmn5jWuBXkjbf2Tr+MeS5uc1K9sv46cro9+3W/bg+Fvv//uSN2vpffV5F/PV6uJUxL7k9c3zj97dtpFvrJ/GP/FU6+N/q/0/vSY802H8g9d/++rh4++uNP6ZbbX/9hNXb88NtCu/Fn/2Qe0/XUtN1Od00v91WsFHee8AAAAAAAAAAAAAAAAAAAAAAAAAoFOZiDgYSSZ3J53J5HIbv+H9/xjJlMqV6uGz5aWFmaj9VvZYZDONr7ocbfo+1Kn69+E38kfvyz8XEf+LiE+Ghmv5XKFcmul38AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQd6DN7/+nfh3qd+0AgK7Z3+8KAAA95/wPAHvP9s7/w12rBwDQO67/AWDv6fj8f6a79QAAesf1PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF126uTJdFr/a221kOZnLiwvzZUvHJkpVuZy80uFXKG8eD43Wy7Ploq5Qnm+7T+6tPFSKpfPT8fC0sXJarFSnawsr5yeLy8tVE+fm8/PFk8Xsz2LDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6V1lemcuXSsVFiS0Tw7ujGrsmMRi7ohoSXUs09xLD/eugAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHa5fwMAAP//51siTA==")
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000000)=""/69)
r2 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000)=0x2, 0x4)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
preadv(r5, &(0x7f0000000080)=[{&(0x7f0000001600)=""/4102, 0x1006}], 0x1, 0x18, 0x2)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x241640)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x4058534c, &(0x7f0000000240)={0x5, 0x1, 0x1ffc000, 0xffffffff, 0x9, 0x80000000})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r7}, &(0x7f0000000800), &(0x7f0000000840)=r8}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
futex_waitv(&(0x7f0000000b00)=[{0x4, &(0x7f00000002c0)=0xfffffffffffffffd, 0x80}, {0x2, &(0x7f0000000300)=0x3, 0x2}, {0x3, &(0x7f0000000340)=0x8000000000000000, 0x2}, {0x8, &(0x7f0000000380)=0x8000000000000000, 0x82}, {0x8, &(0x7f00000003c0)=0x9, 0x82}, {0xef, &(0x7f0000000400)=0x8f, 0x82}, {0x4, &(0x7f0000000440)=0x100000001}, {0x7, &(0x7f0000000480)=0x2, 0x82}, {0xb033, &(0x7f00000004c0)=0xbfd, 0x82}, {0x70, &(0x7f0000000500), 0x82}, {0x4, &(0x7f0000000540)=0x7fffffffffffffff, 0x2}, {0x2, &(0x7f0000000580)=0x24000000000000, 0x2}, {0x7, &(0x7f00000005c0)=0xffffffff, 0x2}, {0xffffffffffffff01, &(0x7f0000000600)=0x1, 0x2}, {0xffff, &(0x7f0000000640)=0x6, 0x2}, {0x1, &(0x7f00000006c0)=0xfffffffffffffffd, 0x82}, {0xb31a, &(0x7f0000000700)=0x4, 0x82}, {0x6b, &(0x7f0000000740)=0x4, 0x2}, {0x5, &(0x7f0000000780)=0x80000000, 0x2}, {0x40, &(0x7f00000007c0)=0x3, 0x2}, {0xffffffffffffffff, &(0x7f00000008c0)=0x6, 0x82}, {0x800, &(0x7f0000000900)=0x5, 0x2}, {0x6, &(0x7f0000000940)=0x6, 0x82}, {0x8, &(0x7f0000000980)=0x1, 0x82}, {0xf, &(0x7f00000009c0)=0xc, 0x82}, {0x1, &(0x7f0000000a00)=0x6, 0x82}, {0xfffffffffffffff1, &(0x7f0000000a40)=0x2, 0x82}, {0xe, &(0x7f0000000a80)=0xffff, 0x82}, {0x3, &(0x7f0000000ac0)=0xe, 0x82}], 0x1d, 0x0, &(0x7f0000000dc0), 0x1)
openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f00000000c0), 0xffffffffffffffff, 0x0, 0x3, 0x1}}, 0x20)

328.559731ms ago: executing program 3 (id=3040):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@delalloc}, {@nouid32}, {@usrquota}, {@dioread_nolock}, {@nobh}, {@usrquota}, {@grpjquota}, {@lazytime}]}, 0x1, 0x5eb, &(0x7f0000001740)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200), 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
fallocate(r0, 0x0, 0xb7d4, 0x1001f0)

228.426791ms ago: executing program 2 (id=3041):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x1a, "2af01c3d0040fbffffffffffffff00"})
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000490, &(0x7f0000001300), 0x1, 0x790, &(0x7f00000014c0)="$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")
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000000)=""/69)
r2 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000)=0x2, 0x4)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
preadv(r5, &(0x7f0000000080)=[{&(0x7f0000001600)=""/4102, 0x1006}], 0x1, 0x18, 0x2)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x241640)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x4058534c, &(0x7f0000000240)={0x5, 0x1, 0x1ffc000, 0xffffffff, 0x9, 0x80000000})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r7}, &(0x7f0000000800), &(0x7f0000000840)=r8}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
futex_waitv(&(0x7f0000000b00)=[{0x4, &(0x7f00000002c0)=0xfffffffffffffffd, 0x80}, {0x2, &(0x7f0000000300)=0x3, 0x2}, {0x3, &(0x7f0000000340)=0x8000000000000000, 0x2}, {0x8, &(0x7f0000000380)=0x8000000000000000, 0x82}, {0x8, &(0x7f00000003c0)=0x9, 0x82}, {0xef, &(0x7f0000000400)=0x8f, 0x82}, {0x4, &(0x7f0000000440)=0x100000001}, {0x7, &(0x7f0000000480)=0x2, 0x82}, {0xb033, &(0x7f00000004c0)=0xbfd, 0x82}, {0x70, &(0x7f0000000500), 0x82}, {0x4, &(0x7f0000000540)=0x7fffffffffffffff, 0x2}, {0x2, &(0x7f0000000580)=0x24000000000000, 0x2}, {0x7, &(0x7f00000005c0)=0xffffffff, 0x2}, {0xffffffffffffff01, &(0x7f0000000600)=0x1, 0x2}, {0xffff, &(0x7f0000000640)=0x6, 0x2}, {0x1, &(0x7f00000006c0)=0xfffffffffffffffd, 0x82}, {0xb31a, &(0x7f0000000700)=0x4, 0x82}, {0x6b, &(0x7f0000000740)=0x4, 0x2}, {0x5, &(0x7f0000000780)=0x80000000, 0x2}, {0x40, &(0x7f00000007c0)=0x3, 0x2}, {0xffffffffffffffff, &(0x7f00000008c0)=0x6, 0x82}, {0x800, &(0x7f0000000900)=0x5, 0x2}, {0x6, &(0x7f0000000940)=0x6, 0x82}, {0x8, &(0x7f0000000980)=0x1, 0x82}, {0xf, &(0x7f00000009c0)=0xc, 0x82}, {0x1, &(0x7f0000000a00)=0x6, 0x82}, {0xfffffffffffffff1, &(0x7f0000000a40)=0x2, 0x82}, {0xe, &(0x7f0000000a80)=0xffff, 0x82}, {0x3, &(0x7f0000000ac0)=0xe, 0x82}], 0x1d, 0x0, &(0x7f0000000dc0), 0x1)
readahead(0xffffffffffffffff, 0x3, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000040)={0x0, 0xb, 0xfa00, {0x0, &(0x7f0000000080), 0x13f, 0x5}}, 0x20)
pselect6(0x40, &(0x7f0000000180)={0x1f, 0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0)

126.37159ms ago: executing program 3 (id=3042):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x301, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x54}}, 0x0)

90.697031ms ago: executing program 3 (id=3043):
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f00000003c0)='syzkaller\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x1a, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
mq_open(&(0x7f0000000180)=')\x00', 0x40, 0x1c, &(0x7f00000001c0)={0x8000000000000000, 0x3cd, 0x8, 0x6})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket(0x10, 0x3, 0x0)
sendto$inet6(r5, &(0x7f0000000000)="7800000018002507b9409b14ffff00000204be04020506050e0204094300080004000000040010000d0068d0bf46d32345653600648d0a0012000200000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f25232500000", 0x78, 0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095000000000000007412644a5c612627e678e1a6f02c2c359b66bb89ad112544c5e538534f"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x1c, 0x3, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r8, 0x34}, 0x10)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8923, &(0x7f0000000680)='lo:\x96o8\x14d\xa1\xe3\xd7\\b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xbaUn\x04\'%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\r\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00')

64.53819ms ago: executing program 2 (id=3044):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x1a, "2af01c3d0040fbffffffffffffff00"})
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000490, &(0x7f0000001300), 0x1, 0x790, &(0x7f00000014c0)="$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")
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000000)=""/69)
r2 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000)=0x2, 0x4)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
preadv(r5, &(0x7f0000000080)=[{&(0x7f0000001600)=""/4102, 0x1006}], 0x1, 0x18, 0x2)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x241640)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x4058534c, &(0x7f0000000240)={0x5, 0x1, 0x1ffc000, 0xffffffff, 0x9, 0x80000000})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{}, &(0x7f0000000800), &(0x7f0000000840)=r7}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r8 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
readahead(r8, 0x3, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000040)={0x0, 0xb, 0xfa00, {0x0, &(0x7f0000000080)={<r9=>0xffffffffffffffff}, 0x13f, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f00000000c0), r9, 0x0, 0x3, 0x1}}, 0x20)

0s ago: executing program 5 (id=3045):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x1a, "2af01c3d0040fbffffffffffffff00"})
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000490, &(0x7f0000001300), 0x1, 0x790, &(0x7f00000014c0)="$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")
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000000)=""/69)
r2 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000)=0x2, 0x4)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
preadv(r5, &(0x7f0000000080)=[{&(0x7f0000001600)=""/4102, 0x1006}], 0x1, 0x18, 0x2)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x241640)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x4058534c, &(0x7f0000000240)={0x5, 0x1, 0x1ffc000, 0xffffffff, 0x9, 0x80000000})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r7}, &(0x7f0000000800), &(0x7f0000000840)=r8}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
futex_waitv(&(0x7f0000000b00)=[{0x4, &(0x7f00000002c0)=0xfffffffffffffffd, 0x80}, {0x2, &(0x7f0000000300)=0x3, 0x2}, {0x3, &(0x7f0000000340)=0x8000000000000000, 0x2}, {0x8, &(0x7f0000000380)=0x8000000000000000, 0x82}, {0x8, &(0x7f00000003c0)=0x9, 0x82}, {0xef, &(0x7f0000000400)=0x8f, 0x82}, {0x4, &(0x7f0000000440)=0x100000001}, {0x7, &(0x7f0000000480)=0x2, 0x82}, {0xb033, &(0x7f00000004c0)=0xbfd, 0x82}, {0x70, &(0x7f0000000500), 0x82}, {0x4, &(0x7f0000000540)=0x7fffffffffffffff, 0x2}, {0x2, &(0x7f0000000580)=0x24000000000000, 0x2}, {0x7, &(0x7f00000005c0)=0xffffffff, 0x2}, {0xffffffffffffff01, &(0x7f0000000600)=0x1, 0x2}, {0xffff, &(0x7f0000000640)=0x6, 0x2}, {0x1, &(0x7f00000006c0)=0xfffffffffffffffd, 0x82}, {0xb31a, &(0x7f0000000700)=0x4, 0x82}, {0x6b, &(0x7f0000000740)=0x4, 0x2}, {0x5, &(0x7f0000000780)=0x80000000, 0x2}, {0x40, &(0x7f00000007c0)=0x3, 0x2}, {0xffffffffffffffff, &(0x7f00000008c0)=0x6, 0x82}, {0x800, &(0x7f0000000900)=0x5, 0x2}, {0x6, &(0x7f0000000940)=0x6, 0x82}, {0x8, &(0x7f0000000980)=0x1, 0x82}, {0xf, &(0x7f00000009c0)=0xc, 0x82}, {0x1, &(0x7f0000000a00)=0x6, 0x82}, {0xfffffffffffffff1, &(0x7f0000000a40)=0x2, 0x82}, {0xe, &(0x7f0000000a80)=0xffff, 0x82}, {0x3, &(0x7f0000000ac0)=0xe, 0x82}], 0x1d, 0x0, &(0x7f0000000dc0), 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000040)={0x0, 0xb, 0xfa00, {0x0, &(0x7f0000000080)={<r9=>0xffffffffffffffff}, 0x13f, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f00000000c0), r9, 0x0, 0x3, 0x1}}, 0x20)
pselect6(0x40, &(0x7f0000000180)={0x1f, 0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

)
[  147.454192][ T9355] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2351: Failed to acquire dquot type 1
[  147.459459][ T9361] loop0: detected capacity change from 0 to 1024
[  147.467663][ T9355] EXT4-fs (loop3): 1 truncate cleaned up
[  147.477213][ T9363] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  147.478645][ T9355] ext4 filesystem being mounted at /427/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.512486][ T9361] EXT4-fs: Ignoring removed bh option
[  147.549326][ T9361] ext4 filesystem being mounted at /478/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.567658][ T9373] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  147.577617][ T9373] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  147.626708][ T9376] pim6reg1: entered promiscuous mode
[  147.629909][ T9379] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  147.632207][ T9376] pim6reg1: entered allmulticast mode
[  147.641082][ T9379] SELinux: failed to load policy
[  147.800368][ T9387] loop2: detected capacity change from 0 to 8192
[  147.807496][ T9387] vfat: Unknown parameter 'kfree'
[  147.882887][ T9392] netlink: 'syz.2.2365': attribute type 3 has an invalid length.
[  147.940293][ T9396] loop4: detected capacity change from 0 to 1024
[  147.950298][ T9396] EXT4-fs: Ignoring removed nobh option
[  147.968012][ T9396] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  148.106040][ T9402] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  148.194513][ T9404] netlink: 'syz.1.2370': attribute type 3 has an invalid length.
[  148.230101][ T9406] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  148.238919][ T9406] SELinux: failed to load policy
[  148.353069][ T9414] loop1: detected capacity change from 0 to 512
[  148.360738][ T9414] vfat: Unknown parameter '��������'
[  148.515823][ T9422] loop0: detected capacity change from 0 to 1024
[  148.535463][ T9422] EXT4-fs: Ignoring removed nobh option
[  148.551610][ T9422] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  148.707224][ T9429] netlink: 'syz.0.2378': attribute type 3 has an invalid length.
[  148.725858][ T9431] loop1: detected capacity change from 0 to 128
[  148.750104][ T9431] ext4 filesystem being mounted at /466/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  148.873050][ T9437] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  148.883165][ T9437] SELinux: failed to load policy
[  148.932480][ T9440] loop4: detected capacity change from 0 to 1024
[  148.940498][ T9440] EXT4-fs: Ignoring removed bh option
[  148.966442][ T9440] ext4 filesystem being mounted at /529/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.985758][ T9444] loop1: detected capacity change from 0 to 512
[  149.005253][ T9444] vfat: Unknown parameter '��������'
[  149.211109][ T9455] loop2: detected capacity change from 0 to 1024
[  149.219576][ T9455] EXT4-fs: Ignoring removed bh option
[  149.235901][ T9451] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  149.256658][ T9455] ext4 filesystem being mounted at /481/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.461347][ T9465] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  149.470527][ T9465] SELinux: failed to load policy
[  149.597047][ T9477] loop0: detected capacity change from 0 to 1024
[  149.603907][ T9477] EXT4-fs: Ignoring removed nobh option
[  149.610416][ T9477] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  149.678798][ T9479] netlink: 'syz.0.2399': attribute type 3 has an invalid length.
[  149.836908][ T9483] __nla_validate_parse: 6 callbacks suppressed
[  149.836928][ T9483] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2401'.
[  149.859420][ T9483] bond2: entered promiscuous mode
[  149.866823][ T9483] bond2: entered allmulticast mode
[  149.872487][ T9483] 8021q: adding VLAN 0 to HW filter on device bond2
[  150.057962][ T9493] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  150.067114][ T9493] SELinux: failed to load policy
[  150.122089][ T9497] loop4: detected capacity change from 0 to 736
[  150.172613][ T9489] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2402'.
[  150.188948][ T9497] Symlink component flag not implemented
[  150.195118][ T9497] Symlink component flag not implemented (122)
[  150.300407][ T9507] loop1: detected capacity change from 0 to 1024
[  150.321987][ T9507] EXT4-fs: Ignoring removed bh option
[  150.349386][ T9507] ext4 filesystem being mounted at /470/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.409546][ T9521] loop2: detected capacity change from 0 to 1024
[  150.416557][ T9521] EXT4-fs: Ignoring removed bh option
[  150.443816][ T9525] loop3: detected capacity change from 0 to 1024
[  150.446142][ T9521] ext4 filesystem being mounted at /489/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.456037][ T9525] EXT4-fs: Ignoring removed nobh option
[  150.468626][ T9525] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  150.554031][ T9534] netlink: 'syz.3.2417': attribute type 3 has an invalid length.
[  150.644694][ T9539] loop3: detected capacity change from 0 to 736
[  150.691343][ T9539] Symlink component flag not implemented
[  150.699122][ T9539] Symlink component flag not implemented (122)
[  150.814836][ T9076] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 273: padding at end of block bitmap is not set
[  151.035585][ T9554] loop3: detected capacity change from 0 to 1024
[  151.042499][ T9554] EXT4-fs: Ignoring removed bh option
[  151.056281][ T9554] ext4 filesystem being mounted at /434/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.113529][ T9558] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  151.122383][ T9558] SELinux: failed to load policy
[  151.153288][ T9560] bpf_get_probe_write_proto: 8 callbacks suppressed
[  151.153379][ T9560] syz.1.2429[9560] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.157749][ T9562] loop4: detected capacity change from 0 to 512
[  151.160345][ T9560] syz.1.2429[9560] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.179627][ T9560] syz.1.2429[9560] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.196501][ T9560] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  151.209679][ T9562] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2430: bg 0: block 248: padding at end of block bitmap is not set
[  151.231258][ T9562] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2430: Failed to acquire dquot type 1
[  151.246270][ T9566] loop1: detected capacity change from 0 to 1024
[  151.252449][ T9562] EXT4-fs (loop4): 1 truncate cleaned up
[  151.258441][ T9566] EXT4-fs: Ignoring removed nobh option
[  151.264983][ T9566] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  151.272742][ T9562] ext4 filesystem being mounted at /538/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.299044][   T29] kauditd_printk_skb: 1770 callbacks suppressed
[  151.299060][   T29] audit: type=1326 audit(1737582638.660:32705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb616a9cce7 code=0x7ffc0000
[  151.330150][ T9562] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  151.330737][   T29] audit: type=1326 audit(1737582638.670:32706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb616a41f29 code=0x7ffc0000
[  151.362148][   T29] audit: type=1326 audit(1737582638.670:32707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  151.363166][ T9562] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  151.386425][   T29] audit: type=1326 audit(1737582638.700:32708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb616a9cce7 code=0x7ffc0000
[  151.416890][   T29] audit: type=1326 audit(1737582638.700:32709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb616a41f29 code=0x7ffc0000
[  151.420799][ T9570] netlink: 'syz.1.2431': attribute type 3 has an invalid length.
[  151.440349][   T29] audit: type=1326 audit(1737582638.700:32710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  151.440386][   T29] audit: type=1326 audit(1737582638.710:32711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb616a9cce7 code=0x7ffc0000
[  151.474902][ T9569] syz.2.2432[9569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.495044][   T29] audit: type=1326 audit(1737582638.710:32712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb616a41f29 code=0x7ffc0000
[  151.495089][   T29] audit: type=1326 audit(1737582638.710:32713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  151.495118][   T29] audit: type=1326 audit(1737582638.720:32714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9553 comm="syz.3.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb616a9cce7 code=0x7ffc0000
[  151.560418][ T9569] syz.2.2432[9569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.578850][ T9569] syz.2.2432[9569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.707341][ T9582] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  151.727347][ T9582] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  151.900682][ T9592] loop3: detected capacity change from 0 to 1024
[  151.901534][ T9593] syz.2.2441[9593] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.907428][ T9593] syz.2.2441[9593] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.919161][ T9593] syz.2.2441[9593] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.932780][ T9592] EXT4-fs: Ignoring removed bh option
[  151.935907][ T9593] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  151.957822][ T9592] ext4 filesystem being mounted at /435/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.997254][ T9597] loop2: detected capacity change from 0 to 1024
[  152.004384][ T9597] EXT4-fs: Ignoring removed bh option
[  152.016164][ T9597] ext4 filesystem being mounted at /495/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.071883][ T9603] loop4: detected capacity change from 0 to 1024
[  152.078787][ T9603] EXT4-fs: Ignoring removed nobh option
[  152.085909][ T9603] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  152.158112][ T9605] netlink: 'syz.4.2444': attribute type 3 has an invalid length.
[  152.219294][ T9607] syz.4.2445[9607] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  152.350231][ T9618] loop4: detected capacity change from 0 to 1024
[  152.368910][ T9618] EXT4-fs: Ignoring removed bh option
[  152.386281][ T9618] ext4 filesystem being mounted at /546/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.523237][ T9622] loop0: detected capacity change from 0 to 512
[  152.529984][ T9622] vfat: Unknown parameter '��������'
[  152.561973][ T9624] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  152.609980][ T9628] loop0: detected capacity change from 0 to 1024
[  152.617064][ T9628] EXT4-fs: Ignoring removed nobh option
[  152.623493][ T9628] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  152.702231][ T9630] netlink: 'syz.0.2454': attribute type 3 has an invalid length.
[  152.818571][ T9639] loop0: detected capacity change from 0 to 128
[  152.832013][ T9639] ext4 filesystem being mounted at /502/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  152.905404][ T9648] loop2: detected capacity change from 0 to 1024
[  152.912540][ T9648] EXT4-fs: Ignoring removed bh option
[  152.926236][ T9648] ext4 filesystem being mounted at /497/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.000409][ T9653] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  153.109256][ T9659] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  153.117988][ T9659] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  153.199087][ T9661] 9pnet_fd: Insufficient options for proto=fd
[  153.225910][ T9663] loop4: detected capacity change from 0 to 1024
[  153.232944][ T9663] EXT4-fs: Ignoring removed nobh option
[  153.239997][ T9663] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  153.307312][ T9665] netlink: 'syz.4.2467': attribute type 3 has an invalid length.
[  153.376238][ T9669] loop4: detected capacity change from 0 to 1024
[  153.383289][ T9669] EXT4-fs: Ignoring removed bh option
[  153.406210][ T9669] ext4 filesystem being mounted at /550/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.743537][ T9673] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  153.752509][ T9673] SELinux: failed to load policy
[  153.797745][ T9677] loop3: detected capacity change from 0 to 1024
[  153.806709][ T9677] EXT4-fs: Ignoring removed nobh option
[  153.812992][ T9677] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  153.814024][ T9679] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2472'.
[  153.889179][ T9686] netlink: 'syz.3.2473': attribute type 3 has an invalid length.
[  153.897431][ T9688] loop2: detected capacity change from 0 to 1024
[  153.906410][ T9688] EXT4-fs: Ignoring removed nobh option
[  153.917808][ T9688] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  153.993494][ T9694] netlink: 'syz.2.2475': attribute type 3 has an invalid length.
[  153.994365][ T9695] 9pnet_fd: Insufficient options for proto=fd
[  154.090434][ T9703] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  154.100323][ T9703] SELinux: failed to load policy
[  154.121455][ T9705] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  154.130220][ T9705] SELinux: failed to load policy
[  154.167361][ T9710] loop3: detected capacity change from 0 to 1024
[  154.174091][ T9710] EXT4-fs: Ignoring removed nobh option
[  154.180099][ T9710] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  154.252770][ T9714] netlink: 'syz.3.2484': attribute type 3 has an invalid length.
[  154.305122][ T9718] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2487'.
[  154.330578][ T9720] 9pnet_fd: Insufficient options for proto=fd
[  154.431496][ T9734] loop4: detected capacity change from 0 to 1024
[  154.439935][ T9734] EXT4-fs: Ignoring removed nobh option
[  154.448280][ T9734] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  154.489662][ T9739] loop3: detected capacity change from 0 to 1024
[  154.497439][ T9739] EXT4-fs: Ignoring removed nobh option
[  154.503705][ T9739] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  154.516912][ T9741] netlink: 'syz.4.2495': attribute type 3 has an invalid length.
[  154.570456][ T9743] loop4: detected capacity change from 0 to 512
[  154.579263][ T9743] vfat: Unknown parameter '��������'
[  154.610747][ T9746] loop4: detected capacity change from 0 to 128
[  154.638030][ T9746] ext4 filesystem being mounted at /560/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  154.645281][ T9751] 9pnet_fd: Insufficient options for proto=fd
[  154.680154][ T9753] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2502'.
[  154.736022][ T9760] loop1: detected capacity change from 0 to 1024
[  154.742886][ T9760] EXT4-fs: Ignoring removed nobh option
[  154.751702][ T9760] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  154.777133][ T9762] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  154.833997][ T9769] validate_nla: 1 callbacks suppressed
[  154.834016][ T9769] netlink: 'syz.1.2505': attribute type 3 has an invalid length.
[  154.881907][ T9776] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  154.955547][ T9780] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2514'.
[  154.971488][ T9782] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2516'.
[  155.201213][ T9808] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  155.232263][ T9813] loop2: detected capacity change from 0 to 1024
[  155.239167][ T9813] EXT4-fs: Ignoring removed nobh option
[  155.261649][ T9813] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  155.372781][ T9820] netlink: 'syz.2.2528': attribute type 3 has an invalid length.
[  155.852606][ T9842] loop4: detected capacity change from 0 to 1024
[  155.866213][ T9842] EXT4-fs: Ignoring removed nobh option
[  155.873866][ T9842] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  155.901075][ T9845] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2541'.
[  155.959284][ T9849] netlink: 'syz.4.2540': attribute type 3 has an invalid length.
[  155.971681][ T9851] loop1: detected capacity change from 0 to 128
[  155.984582][ T9851] ext4 filesystem being mounted at /481/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  156.058956][ T9854] loop3: detected capacity change from 0 to 128
[  156.081983][ T9854] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  156.166409][ T9863] loop2: detected capacity change from 0 to 1024
[  156.192201][ T9863] EXT4-fs: Ignoring removed bh option
[  156.219028][ T9863] ext4 filesystem being mounted at /508/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.274239][ T9882] loop1: detected capacity change from 0 to 736
[  156.302553][ T9880] loop4: detected capacity change from 0 to 128
[  156.308789][ T9882] Symlink component flag not implemented
[  156.314868][   T29] kauditd_printk_skb: 2259 callbacks suppressed
[  156.314883][   T29] audit: type=1326 audit(1737582643.670:34974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f57e459cce7 code=0x7ffc0000
[  156.322806][ T9882] Symlink component flag not implemented (122)
[  156.344796][   T29] audit: type=1326 audit(1737582643.670:34975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57e4541f29 code=0x7ffc0000
[  156.373446][ T9885] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  156.374407][   T29] audit: type=1326 audit(1737582643.670:34976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f57e45a5d29 code=0x7ffc0000
[  156.387302][ T9885] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  156.417813][   T29] audit: type=1326 audit(1737582643.680:34977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f57e459cce7 code=0x7ffc0000
[  156.426663][ T9880] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  156.441413][   T29] audit: type=1326 audit(1737582643.680:34978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57e4541f29 code=0x7ffc0000
[  156.473929][   T29] audit: type=1326 audit(1737582643.680:34979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f57e45a5d29 code=0x7ffc0000
[  156.497468][   T29] audit: type=1326 audit(1737582643.710:34980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f57e459cce7 code=0x7ffc0000
[  156.521085][   T29] audit: type=1326 audit(1737582643.710:34981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57e4541f29 code=0x7ffc0000
[  156.544599][   T29] audit: type=1326 audit(1737582643.710:34982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f57e45a5d29 code=0x7ffc0000
[  156.568296][   T29] audit: type=1326 audit(1737582643.710:34983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.2.2547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f57e459cce7 code=0x7ffc0000
[  156.606601][ T9887] loop1: detected capacity change from 0 to 1024
[  156.613336][ T9887] EXT4-fs: Ignoring removed nobh option
[  156.619652][ T9887] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  156.686511][ T9890] netlink: 'syz.1.2556': attribute type 3 has an invalid length.
[  156.723976][ T9892] loop1: detected capacity change from 0 to 128
[  156.736159][ T9892] ext4 filesystem being mounted at /487/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  156.851079][ T9901] loop1: detected capacity change from 0 to 512
[  156.911485][ T9903] loop3: detected capacity change from 0 to 128
[  156.918779][ T9903] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  156.986095][ T9913] program syz.2.2566 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  157.023371][ T9918] loop2: detected capacity change from 0 to 1024
[  157.030155][ T9918] EXT4-fs: Ignoring removed nobh option
[  157.036148][ T9918] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  157.104409][ T9924] netlink: 'syz.2.2568': attribute type 3 has an invalid length.
[  157.131384][ T9928] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  157.146766][ T9928] SELinux: failed to load policy
[  157.237470][ T9935] loop4: detected capacity change from 0 to 128
[  157.265608][ T9935] ext4 filesystem being mounted at /585/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  157.279473][ T9937] loop2: detected capacity change from 0 to 1024
[  157.288428][ T9937] EXT4-fs: Ignoring removed bh option
[  157.306593][ T9937] ext4 filesystem being mounted at /512/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.489070][ T9958] loop4: detected capacity change from 0 to 1024
[  157.495847][ T9958] EXT4-fs: Ignoring removed nobh option
[  157.501828][ T9958] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  157.521759][ T9961] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  157.531027][ T9961] SELinux: failed to load policy
[  157.584531][ T9964] netlink: 'syz.4.2583': attribute type 3 has an invalid length.
[  157.662290][ T9971] loop4: detected capacity change from 0 to 128
[  157.675042][ T9971] ext4 filesystem being mounted at /590/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  157.762125][ T9983] loop3: detected capacity change from 0 to 512
[  157.802118][ T9988] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  157.811027][ T9988] SELinux: failed to load policy
[  157.823136][ T9983] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2593: bg 0: block 248: padding at end of block bitmap is not set
[  157.845127][ T9983] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2593: Failed to acquire dquot type 1
[  157.870309][ T9983] EXT4-fs (loop3): 1 truncate cleaned up
[  157.876935][ T9983] ext4 filesystem being mounted at /469/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.948404][ T9997] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  157.964151][ T9997] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.037244][ T9999] loop4: detected capacity change from 0 to 512
[  158.068266][ T9999] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2598: bg 0: block 248: padding at end of block bitmap is not set
[  158.129738][ T9999] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2598: Failed to acquire dquot type 1
[  158.158908][ T9999] EXT4-fs (loop4): 1 truncate cleaned up
[  158.182477][ T9999] ext4 filesystem being mounted at /597/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.236386][ T9999] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.273800][ T9999] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.283137][T10008] bpf_get_probe_write_proto: 38 callbacks suppressed
[  158.283180][T10008] syz.2.2601[10008] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.290303][T10008] syz.2.2601[10008] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.301837][T10008] syz.2.2601[10008] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.317433][T10008] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  158.438309][T10012] loop2: detected capacity change from 0 to 128
[  158.445329][T10012] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  159.040319][T10019] chnl_net:caif_netlink_parms(): no params data found
[  159.090584][T10019] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.097855][T10019] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.108690][T10019] bridge_slave_0: entered allmulticast mode
[  159.116707][T10019] bridge_slave_0: entered promiscuous mode
[  159.127492][T10019] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.134678][T10019] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.142324][T10019] bridge_slave_1: entered allmulticast mode
[  159.150044][T10019] bridge_slave_1: entered promiscuous mode
[  159.158094][  T171] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.183066][T10019] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  159.195603][T10019] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  159.218183][  T171] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.230074][T10019] team0: Port device team_slave_0 added
[  159.236947][T10019] team0: Port device team_slave_1 added
[  159.272072][T10019] batman_adv: batadv0: Adding interface: batadv_slave_0
[  159.272656][T10034] loop2: detected capacity change from 0 to 736
[  159.279121][T10019] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.300711][T10034] Symlink component flag not implemented
[  159.311360][T10019] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  159.318762][T10034] Symlink component flag not implemented (122)
[  159.340167][  T171] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.355198][T10019] batman_adv: batadv0: Adding interface: batadv_slave_1
[  159.362188][T10019] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.388154][T10019] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  159.437874][T10019] hsr_slave_0: entered promiscuous mode
[  159.454182][T10019] hsr_slave_1: entered promiscuous mode
[  159.454182][T10036] loop2: detected capacity change from 0 to 1024
[  159.455225][T10036] EXT4-fs: Ignoring removed bh option
[  159.475838][T10019] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  159.483451][T10019] Cannot create hsr debugfs directory
[  159.495645][  T171] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.513621][T10036] ext4 filesystem being mounted at /519/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.162898][T10047] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  160.170895][  T171] bridge_slave_1: left allmulticast mode
[  160.176632][  T171] bridge_slave_1: left promiscuous mode
[  160.182309][  T171] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.194366][  T171] bridge_slave_0: left allmulticast mode
[  160.200152][  T171] bridge_slave_0: left promiscuous mode
[  160.205825][  T171] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.405075][T10065] syz.0.2612[10065] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.405417][T10065] syz.0.2612[10065] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.419283][T10063] syz.2.2611[10063] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.424843][T10065] syz.0.2612[10065] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.431282][T10063] syz.2.2611[10063] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.445005][  T171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  160.453811][T10063] syz.2.2611[10063] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.483505][  T171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  160.506295][  T171] bond0 (unregistering): Released all slaves
[  160.515373][  T171] bond1 (unregistering): Released all slaves
[  160.524523][  T171] bond2 (unregistering): Released all slaves
[  160.552095][T10065] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  160.613215][T10072] program syz.0.2614 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  160.633785][  T171] tipc: Disabling bearer <udp:syz2>
[  160.639201][  T171] tipc: Disabling bearer <udp:syz0>
[  160.644446][  T171] tipc: Left network mode
[  160.677077][  T171] hsr_slave_0: left promiscuous mode
[  160.691557][  T171] hsr_slave_1: left promiscuous mode
[  160.707723][  T171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.715303][  T171] batman_adv: batadv0: Removing interface: batadv_slave_0
[  160.729641][  T171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  160.737212][  T171] batman_adv: batadv0: Removing interface: batadv_slave_1
[  160.747822][  T171] veth1_macvtap: left promiscuous mode
[  160.764909][  T171] veth0_macvtap: left promiscuous mode
[  160.770470][  T171] veth1_vlan: left promiscuous mode
[  160.777006][ T3298] EXT4-fs unmount: 93 callbacks suppressed
[  160.777021][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.779521][  T171] veth0_vlan: left promiscuous mode
[  160.799038][T10090] syz.2.2617[10090] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.820309][T10092] loop0: detected capacity change from 0 to 1024
[  160.841235][T10092] EXT4-fs: Ignoring removed nobh option
[  160.851038][T10092] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  160.912533][T10092] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.929217][T10097] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  160.952457][T10099] loop2: detected capacity change from 0 to 1024
[  160.956546][T10097] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  160.975549][T10099] EXT4-fs: Ignoring removed bh option
[  161.006585][T10099] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.069510][T10019] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  161.092697][T10099] ext4 filesystem being mounted at /524/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.109318][T10092] netlink: 'syz.0.2619': attribute type 3 has an invalid length.
[  161.117384][T10019] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  161.126885][T10019] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  161.162051][T10019] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  161.203444][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.249477][T10019] 8021q: adding VLAN 0 to HW filter on device bond0
[  161.263230][T10117] loop0: detected capacity change from 0 to 1024
[  161.288962][T10019] 8021q: adding VLAN 0 to HW filter on device team0
[  161.299018][T10117] EXT4-fs: Ignoring removed nobh option
[  161.311249][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.318431][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  161.328639][   T29] kauditd_printk_skb: 1108 callbacks suppressed
[  161.328654][   T29] audit: type=1326 audit(1737582648.690:36088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f57e459cce7 code=0x7ffc0000
[  161.338268][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.358636][   T29] audit: type=1326 audit(1737582648.690:36089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57e4541f29 code=0x7ffc0000
[  161.365677][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  161.389139][   T29] audit: type=1326 audit(1737582648.690:36090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f57e45a5d29 code=0x7ffc0000
[  161.398993][T10117] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  161.431879][   T29] audit: type=1326 audit(1737582648.760:36091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f57e459cce7 code=0x7ffc0000
[  161.455481][   T29] audit: type=1326 audit(1737582648.760:36092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57e4541f29 code=0x7ffc0000
[  161.479092][   T29] audit: type=1326 audit(1737582648.760:36093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f57e45a5d29 code=0x7ffc0000
[  161.502708][   T29] audit: type=1326 audit(1737582648.760:36094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f57e459cce7 code=0x7ffc0000
[  161.526608][   T29] audit: type=1326 audit(1737582648.760:36095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57e4541f29 code=0x7ffc0000
[  161.530479][T10019] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  161.550141][   T29] audit: type=1326 audit(1737582648.760:36096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f57e45a5d29 code=0x7ffc0000
[  161.585319][T10019] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  161.585331][   T29] audit: type=1326 audit(1737582648.790:36097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10098 comm="syz.2.2620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f57e459cce7 code=0x7ffc0000
[  161.622520][T10117] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.724577][T10019] 8021q: adding VLAN 0 to HW filter on device batadv0
[  161.760404][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.786641][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.818340][T10143] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  161.861848][T10146] loop0: detected capacity change from 0 to 1024
[  161.869833][T10146] EXT4-fs: Ignoring removed nobh option
[  161.886477][T10146] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  161.912822][T10146] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.955872][T10019] veth0_vlan: entered promiscuous mode
[  161.971627][T10019] veth1_vlan: entered promiscuous mode
[  161.995550][T10159] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2625'.
[  162.010197][T10019] veth0_macvtap: entered promiscuous mode
[  162.031436][T10019] veth1_macvtap: entered promiscuous mode
[  162.041381][T10019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.051978][T10019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.061861][T10019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.072435][T10019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.082368][T10019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.092834][T10019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.103687][T10019] batman_adv: batadv0: Interface activated: batadv_slave_0
[  162.105387][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.112440][T10019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.130480][T10019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.140342][T10019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.150788][T10019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.160644][T10019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.171091][T10019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.181016][T10019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.191485][T10019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.201947][T10019] batman_adv: batadv0: Interface activated: batadv_slave_1
[  162.215937][T10019] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  162.224840][T10019] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  162.233617][T10019] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  162.242486][T10019] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  162.315605][T10170] loop0: detected capacity change from 0 to 512
[  162.341139][T10170] vfat: Unknown parameter '��������'
[  162.388517][T10176] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  162.421553][T10176] SELinux: failed to load policy
[  162.659589][T10199] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  162.716794][T10208] FAULT_INJECTION: forcing a failure.
[  162.716794][T10208] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.726612][T10209] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  162.729924][T10208] CPU: 0 UID: 0 PID: 10208 Comm: syz.2.2648 Not tainted 6.13.0-syzkaller-04541-gdf60eac9efe8 #0
[  162.729954][T10208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  162.729970][T10208] Call Trace:
[  162.729978][T10208]  <TASK>
[  162.729988][T10208]  dump_stack_lvl+0xf2/0x150
[  162.730046][T10208]  dump_stack+0x15/0x1a
[  162.730065][T10208]  should_fail_ex+0x223/0x230
[  162.730164][T10208]  should_fail+0xb/0x10
[  162.730193][T10208]  should_fail_usercopy+0x1a/0x20
[  162.730227][T10208]  strncpy_from_user+0x25/0x210
[  162.730252][T10208]  ? kmem_cache_alloc_noprof+0x18e/0x320
[  162.730322][T10208]  ? getname_flags+0x81/0x3b0
[  162.730349][T10208]  getname_flags+0xb0/0x3b0
[  162.730375][T10208]  user_path_at+0x26/0x120
[  162.730406][T10208]  __se_sys_utime+0xc6/0x1c0
[  162.730478][T10208]  __x64_sys_utime+0x31/0x40
[  162.730503][T10208]  x64_sys_call+0x2996/0x2dc0
[  162.730529][T10208]  do_syscall_64+0xc9/0x1c0
[  162.730556][T10208]  ? clear_bhb_loop+0x55/0xb0
[  162.730587][T10208]  ? clear_bhb_loop+0x55/0xb0
[  162.730627][T10208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.730681][T10208] RIP: 0033:0x7f57e45a5d29
[  162.730699][T10208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.730720][T10208] RSP: 002b:00007f57e2c17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000084
[  162.730741][T10208] RAX: ffffffffffffffda RBX: 00007f57e4795fa0 RCX: 00007f57e45a5d29
[  162.730755][T10208] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[  162.730816][T10208] RBP: 00007f57e2c17090 R08: 0000000000000000 R09: 0000000000000000
[  162.730830][T10208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.730844][T10208] R13: 0000000000000001 R14: 00007f57e4795fa0 R15: 00007ffe91113ef8
[  162.730933][T10208]  </TASK>
[  162.927888][T10212] loop0: detected capacity change from 0 to 1024
[  162.934583][T10212] EXT4-fs: Ignoring removed nobh option
[  162.940540][T10209] SELinux: failed to load policy
[  162.951565][T10212] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  162.977982][T10212] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.018646][T10219] loop4: detected capacity change from 0 to 1024
[  163.038223][T10212] netlink: 'syz.0.2646': attribute type 3 has an invalid length.
[  163.054150][T10221] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2652'.
[  163.063276][T10221] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2652'.
[  163.083197][T10219] EXT4-fs: Ignoring removed nobh option
[  163.091609][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.104683][T10219] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  163.137794][T10219] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.362042][T10019] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.481094][T10238] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  164.215206][T10245] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  164.247266][T10247] bpf_get_probe_write_proto: 14 callbacks suppressed
[  164.247300][T10247] syz.4.2657[10247] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.254128][T10247] syz.4.2657[10247] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.286762][T10245] SELinux: failed to load policy
[  164.316216][T10247] syz.4.2657[10247] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.336879][T10249] loop2: detected capacity change from 0 to 1024
[  164.355498][T10249] EXT4-fs: Ignoring removed nobh option
[  164.361235][T10251] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  164.371718][T10249] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  164.392105][T10249] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.405634][T10251] SELinux: failed to load policy
[  164.418562][T10249] netlink: 'syz.2.2660': attribute type 3 has an invalid length.
[  164.437287][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.510916][T10260] syz.2.2663[10260] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.511016][T10260] syz.2.2663[10260] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.538431][T10260] syz.2.2663[10260] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.567408][T10264] loop0: detected capacity change from 0 to 128
[  164.594728][T10260] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  164.634917][T10264] netlink: zone id is out of range
[  164.640485][T10264] netlink: del zone limit has 4 unknown bytes
[  164.736725][T10278] syz.0.2672[10278] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.736797][T10278] syz.0.2672[10278] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.781387][T10278] syz.0.2672[10278] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.805377][T10286] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  164.830800][T10282] loop3: detected capacity change from 0 to 8192
[  164.843867][T10282] vfat: Unknown parameter ''
[  164.855926][T10286] SELinux: failed to load policy
[  164.920058][T10291] syz.3.2680[10291] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.923824][T10291] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  164.938979][T10300] FAULT_INJECTION: forcing a failure.
[  164.938979][T10300] name failslab, interval 1, probability 0, space 0, times 0
[  164.955746][T10300] CPU: 0 UID: 0 PID: 10300 Comm: syz.4.2682 Not tainted 6.13.0-syzkaller-04541-gdf60eac9efe8 #0
[  164.955773][T10300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  164.955786][T10300] Call Trace:
[  164.955791][T10300]  <TASK>
[  164.955837][T10300]  dump_stack_lvl+0xf2/0x150
[  164.955880][T10300]  dump_stack+0x15/0x1a
[  164.955899][T10300]  should_fail_ex+0x223/0x230
[  164.955941][T10300]  should_failslab+0x8f/0xb0
[  164.955973][T10300]  __kmalloc_noprof+0xab/0x3f0
[  164.956067][T10300]  ? __rds_conn_create+0x3f9/0xfb0
[  164.956096][T10300]  __rds_conn_create+0x3f9/0xfb0
[  164.956134][T10300]  rds_conn_create_outgoing+0x43/0x60
[  164.956164][T10300]  rds_sendmsg+0xba7/0x1400
[  164.956187][T10300]  ? __pfx_rds_sendmsg+0x10/0x10
[  164.956223][T10300]  __sock_sendmsg+0x140/0x180
[  164.956245][T10300]  ____sys_sendmsg+0x312/0x410
[  164.956277][T10300]  __sys_sendmsg+0x19d/0x230
[  164.956315][T10300]  __x64_sys_sendmsg+0x46/0x50
[  164.956343][T10300]  x64_sys_call+0x2734/0x2dc0
[  164.956384][T10300]  do_syscall_64+0xc9/0x1c0
[  164.956411][T10300]  ? clear_bhb_loop+0x55/0xb0
[  164.956454][T10300]  ? clear_bhb_loop+0x55/0xb0
[  164.956479][T10300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.956502][T10300] RIP: 0033:0x7fe0eede5d29
[  164.956518][T10300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.956540][T10300] RSP: 002b:00007fe0ed457038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  164.956574][T10300] RAX: ffffffffffffffda RBX: 00007fe0eefd5fa0 RCX: 00007fe0eede5d29
[  164.956588][T10300] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  164.956599][T10300] RBP: 00007fe0ed457090 R08: 0000000000000000 R09: 0000000000000000
[  164.956610][T10300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.956620][T10300] R13: 0000000000000000 R14: 00007fe0eefd5fa0 R15: 00007ffe2ebcbfe8
[  164.956697][T10300]  </TASK>
[  165.186840][T10304] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  165.207465][T10304] SELinux: failed to load policy
[  165.251693][T10314] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  165.270817][T10314] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  165.298796][T10320] loop1: detected capacity change from 0 to 1024
[  165.309465][T10320] EXT4-fs: Ignoring removed nobh option
[  165.331559][T10318] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2689'.
[  165.347852][T10320] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  165.368953][T10325] loop0: detected capacity change from 0 to 512
[  165.378387][T10320] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.429100][T10325] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2692: bg 0: block 248: padding at end of block bitmap is not set
[  165.475787][T10330] netlink: 'syz.1.2690': attribute type 3 has an invalid length.
[  165.483373][T10325] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.2692: Failed to acquire dquot type 1
[  165.497888][T10325] EXT4-fs (loop0): 1 truncate cleaned up
[  165.503940][T10325] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.517812][T10325] ext4 filesystem being mounted at /537/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.530940][T10333] loop4: detected capacity change from 0 to 512
[  165.560522][T10333] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.574712][T10333] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.588370][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.621559][T10337] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  165.625537][T10338] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  165.640986][T10333] loop4: detected capacity change from 512 to 0
[  165.649024][T10333] syz.4.2693: attempt to access beyond end of device
[  165.649024][T10333] loop4: rw=12288, sector=72, nr_sectors = 4 limit=0
[  165.667942][T10338] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  165.682639][T10333] EXT4-fs error (device loop4): ext4_read_inode_bitmap:203: comm syz.4.2693: Cannot read inode bitmap - block_group = 0, inode_bitmap = 18
[  165.725958][T10339] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2693'.
[  165.742371][T10341] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  165.760679][T10333] syz.4.2693: attempt to access beyond end of device
[  165.760679][T10333] loop4: rw=145409, sector=0, nr_sectors = 4 limit=0
[  165.773988][T10333] buffer_io_error: 726 callbacks suppressed
[  165.774003][T10333] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  165.869869][T10341] SELinux: failed to load policy
[  165.876036][T10339] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2693'.
[  165.886684][T10333] EXT4-fs (loop4): I/O error while writing superblock
[  165.918743][T10339] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2693'.
[  165.929112][T10339] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2693'.
[  165.954486][T10339] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2693'.
[  165.963564][T10339] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2693'.
[  165.986943][T10019] syz-executor: attempt to access beyond end of device
[  165.986943][T10019] loop4: rw=12288, sector=12, nr_sectors = 4 limit=0
[  166.001525][T10019] syz-executor: attempt to access beyond end of device
[  166.001525][T10019] loop4: rw=524288, sector=140, nr_sectors = 4 limit=0
[  166.017507][T10019] syz-executor: attempt to access beyond end of device
[  166.017507][T10019] loop4: rw=524288, sector=144, nr_sectors = 4 limit=0
[  166.031238][T10019] syz-executor: attempt to access beyond end of device
[  166.031238][T10019] loop4: rw=12288, sector=136, nr_sectors = 4 limit=0
[  166.046272][T10019] EXT4-fs error (device loop4): ext4_get_inode_loc:4573: inode #2: block 34: comm syz-executor: unable to read itable block
[  166.059343][T10019] syz-executor: attempt to access beyond end of device
[  166.059343][T10019] loop4: rw=145409, sector=0, nr_sectors = 4 limit=0
[  166.072795][T10019] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  166.088265][T10019] EXT4-fs (loop4): I/O error while writing superblock
[  166.095086][T10019] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5838: IO failure
[  166.103968][T10019] syz-executor: attempt to access beyond end of device
[  166.103968][T10019] loop4: rw=145409, sector=0, nr_sectors = 4 limit=0
[  166.117414][T10019] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  166.126220][T10019] EXT4-fs (loop4): I/O error while writing superblock
[  166.133021][T10019] EXT4-fs error (device loop4): ext4_dirty_inode:6042: inode #2: comm syz-executor: mark_inode_dirty error
[  166.144905][T10019] syz-executor: attempt to access beyond end of device
[  166.144905][T10019] loop4: rw=145409, sector=0, nr_sectors = 4 limit=0
[  166.158388][T10019] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  166.167048][T10019] EXT4-fs (loop4): I/O error while writing superblock
[  166.182972][  T171] kworker/u8:6: attempt to access beyond end of device
[  166.182972][  T171] loop4: rw=524288, sector=136, nr_sectors = 4 limit=0
[  166.198745][  T171] EXT4-fs error (device loop4): __ext4_get_inode_loc_noinmem:4558: inode #18: block 35: comm kworker/u8:6: unable to read itable block
[  166.213442][  T171] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  166.222821][  T171] EXT4-fs (loop4): I/O error while writing superblock
[  166.229773][  T171] EXT4-fs error (device loop4): __ext4_get_inode_loc_noinmem:4558: inode #2: block 34: comm kworker/u8:6: unable to read itable block
[  166.244824][  T171] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  166.253294][  T171] EXT4-fs (loop4): I/O error while writing superblock
[  166.261745][T10019] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.271530][T10019] Buffer I/O error on dev loop4, logical block 0, lost sync page write
[  166.281090][T10019] EXT4-fs (loop4): I/O error while writing superblock
[  166.289781][T10334] Buffer I/O error on dev loop4, logical block 12, lost sync page write
[  166.772938][T10352] loop1: detected capacity change from 0 to 1024
[  166.785077][T10352] EXT4-fs: Ignoring removed nobh option
[  166.791293][T10352] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  166.802041][T10352] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.877560][T10354] netlink: 'syz.1.2698': attribute type 3 has an invalid length.
[  166.921707][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.953779][T10356] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  166.962889][T10356] SELinux: failed to load policy
[  166.990316][  T171] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.038821][  T171] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.090134][  T171] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.103471][T10364] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2703'.
[  167.158513][  T171] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.284210][T10380] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  167.303688][T10380] SELinux: failed to load policy
[  167.307063][T10361] chnl_net:caif_netlink_parms(): no params data found
[  167.370907][  T171] bridge_slave_1: left allmulticast mode
[  167.377185][  T171] bridge_slave_1: left promiscuous mode
[  167.382875][  T171] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.397420][T10387] loop1: detected capacity change from 0 to 1024
[  167.416583][T10387] EXT4-fs: Ignoring removed nobh option
[  167.426802][T10387] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  167.436581][  T171] bridge_slave_0: left allmulticast mode
[  167.442258][  T171] bridge_slave_0: left promiscuous mode
[  167.447993][  T171] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.459589][T10387] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.496853][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.587665][  T171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  167.600637][  T171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  167.610762][  T171] bond0 (unregistering): Released all slaves
[  167.652096][T10361] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.659307][T10361] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.667972][T10361] bridge_slave_0: entered allmulticast mode
[  167.674576][T10361] bridge_slave_0: entered promiscuous mode
[  167.685214][T10361] bridge0: port 2(bridge_slave_1) entered blocking state
[  167.692396][T10361] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.701835][T10361] bridge_slave_1: entered allmulticast mode
[  167.708844][T10361] bridge_slave_1: entered promiscuous mode
[  167.718242][  T171] hsr_slave_0: left promiscuous mode
[  167.724032][  T171] hsr_slave_1: left promiscuous mode
[  167.730115][  T171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  167.737727][  T171] batman_adv: batadv0: Removing interface: batadv_slave_0
[  167.746592][  T171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  167.754237][  T171] batman_adv: batadv0: Removing interface: batadv_slave_1
[  167.776185][  T171] veth1_macvtap: left promiscuous mode
[  167.781812][  T171] veth0_macvtap: left promiscuous mode
[  167.788115][  T171] veth1_vlan: left promiscuous mode
[  167.793548][  T171] veth0_vlan: left promiscuous mode
[  167.887557][  T171] team0 (unregistering): Port device team_slave_1 removed
[  167.899168][  T171] team0 (unregistering): Port device team_slave_0 removed
[  167.938198][T10361] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  167.953756][T10361] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  167.978045][T10361] team0: Port device team_slave_0 added
[  167.990993][T10361] team0: Port device team_slave_1 added
[  168.014060][T10361] batman_adv: batadv0: Adding interface: batadv_slave_0
[  168.021114][T10361] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.047122][T10361] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  168.058446][T10361] batman_adv: batadv0: Adding interface: batadv_slave_1
[  168.065458][T10361] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.091492][T10361] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  168.127145][T10361] hsr_slave_0: entered promiscuous mode
[  168.139297][T10361] hsr_slave_1: entered promiscuous mode
[  168.147497][T10361] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  168.155279][T10361] Cannot create hsr debugfs directory
[  168.190945][   T29] kauditd_printk_skb: 536 callbacks suppressed
[  168.190962][   T29] audit: type=1326 audit(1737582655.550:36632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.220866][   T29] audit: type=1326 audit(1737582655.550:36633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.221438][T10435] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  168.255284][T10435] SELinux: failed to load policy
[  168.260407][   T29] audit: type=1326 audit(1737582655.550:36634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.284040][   T29] audit: type=1326 audit(1737582655.550:36635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.307724][   T29] audit: type=1326 audit(1737582655.550:36636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.331407][   T29] audit: type=1326 audit(1737582655.550:36637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.355001][   T29] audit: type=1326 audit(1737582655.550:36638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.378674][   T29] audit: type=1326 audit(1737582655.550:36639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.402379][   T29] audit: type=1326 audit(1737582655.550:36640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.426018][   T29] audit: type=1326 audit(1737582655.550:36641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10432 comm="syz.3.2709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  168.479056][T10438] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  168.524400][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.631739][T10460] loop1: detected capacity change from 0 to 512
[  168.659310][T10464] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  168.686568][T10464] SELinux: failed to load policy
[  168.693955][T10361] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  168.703445][T10460] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.744403][T10361] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  168.751294][T10460] ext4 filesystem being mounted at /524/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.757325][T10471] loop3: detected capacity change from 0 to 1024
[  168.778469][T10471] EXT4-fs: Ignoring removed nobh option
[  168.785537][T10471] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  168.794176][T10361] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  168.806299][T10460] loop1: detected capacity change from 512 to 0
[  168.813981][T10361] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  168.821697][T10460] EXT4-fs error (device loop1): ext4_read_inode_bitmap:203: comm syz.1.2715: Cannot read inode bitmap - block_group = 0, inode_bitmap = 18
[  168.842125][T10477] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  168.843423][T10460] Buffer I/O error on dev loop1, logical block 0, lost sync page write
[  168.859212][T10477] SELinux: failed to load policy
[  168.871851][T10471] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.877405][T10460] EXT4-fs (loop1): I/O error while writing superblock
[  168.907717][T10361] 8021q: adding VLAN 0 to HW filter on device bond0
[  168.926242][T10460] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2715'.
[  168.940029][T10361] 8021q: adding VLAN 0 to HW filter on device team0
[  168.949180][T10460] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2715'.
[  168.970240][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.977398][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.999799][T10484] loop0: detected capacity change from 0 to 2048
[  169.020163][T10460] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2715'.
[  169.030019][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.041374][ T3408] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.048558][ T3408] bridge0: port 2(bridge_slave_1) entered forwarding state
[  169.061251][T10460] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2715'.
[  169.071208][T10494] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  169.093417][T10361] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  169.143884][T10460] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2715'.
[  169.144938][T10484] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.153629][T10460] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2715'.
[  169.206758][T10509] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  169.238823][ T3305] EXT4-fs error (device loop1): ext4_get_inode_loc:4573: inode #2: block 34: comm syz-executor: unable to read itable block
[  169.258195][ T3305] Buffer I/O error on dev loop1, logical block 0, lost sync page write
[  169.284933][ T3305] EXT4-fs (loop1): I/O error while writing superblock
[  169.291917][ T3305] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5838: IO failure
[  169.301214][ T3305] EXT4-fs (loop1): I/O error while writing superblock
[  169.308049][ T3305] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #2: comm syz-executor: mark_inode_dirty error
[  169.320723][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.325992][T10361] 8021q: adding VLAN 0 to HW filter on device batadv0
[  169.337547][ T3305] EXT4-fs (loop1): I/O error while writing superblock
[  169.399282][   T28] EXT4-fs error (device loop1): __ext4_get_inode_loc_noinmem:4558: inode #18: block 35: comm kworker/u8:1: unable to read itable block
[  169.420804][T10524] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2726'.
[  169.430285][T10528] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  169.442349][   T28] EXT4-fs (loop1): I/O error while writing superblock
[  169.449375][T10528] SELinux: failed to load policy
[  169.463047][   T28] EXT4-fs error (device loop1): __ext4_get_inode_loc_noinmem:4558: inode #2: block 34: comm kworker/u8:1: unable to read itable block
[  169.485565][   T28] EXT4-fs (loop1): I/O error while writing superblock
[  169.505865][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.531630][ T3305] EXT4-fs (loop1): I/O error while writing superblock
[  169.559883][T10361] veth0_vlan: entered promiscuous mode
[  169.581513][T10361] veth1_vlan: entered promiscuous mode
[  169.671417][T10361] veth0_macvtap: entered promiscuous mode
[  169.686522][T10361] veth1_macvtap: entered promiscuous mode
[  169.694154][T10560] loop0: detected capacity change from 0 to 128
[  169.710550][T10361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.721064][T10361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.731019][T10361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.741570][T10361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.745734][T10560] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  169.751442][T10361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.770987][T10361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.793820][T10361] batman_adv: batadv0: Interface activated: batadv_slave_0
[  169.802296][T10564] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2732'.
[  169.826539][T10361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.837063][T10361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.846985][T10361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.857462][T10361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.867504][T10361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.878705][T10361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.888577][T10361] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.899032][T10361] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.927633][T10361] batman_adv: batadv0: Interface activated: batadv_slave_1
[  169.937582][   T28] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.955858][T10572] bpf_get_probe_write_proto: 14 callbacks suppressed
[  169.955878][T10572] syz.3.2734[10572] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.973160][T10572] syz.3.2734[10572] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.974177][T10361] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.004879][T10361] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.013638][T10361] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.022467][T10361] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  170.055012][T10572] syz.3.2734[10572] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.060168][T10576] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  170.108467][   T28] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.164503][   T28] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.261382][   T28] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.304460][T10604] syz.3.2737[10604] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.304581][T10604] syz.3.2737[10604] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.330270][T10604] syz.3.2737[10604] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.448754][   T28] bridge_slave_1: left allmulticast mode
[  170.465966][   T28] bridge_slave_1: left promiscuous mode
[  170.471687][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.502698][   T28] bridge_slave_0: left allmulticast mode
[  170.508439][   T28] bridge_slave_0: left promiscuous mode
[  170.514135][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.583103][T10618] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2738'.
[  170.594402][T10578] chnl_net:caif_netlink_parms(): no params data found
[  170.604876][    C1] SELinux: failure in sel_netif_sid_slow(), invalid network interface (3)
[  170.613501][    C1] SELinux: failure in sel_netif_sid_slow(), invalid network interface (3)
[  170.676942][T10632] loop5: detected capacity change from 0 to 512
[  170.683180][T10634] program syz.3.2742 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  170.695126][T10632] vfat: Unknown parameter '��������'
[  170.793450][T10638] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  170.803721][T10638] SELinux: failed to load policy
[  170.840165][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  170.858656][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  170.883846][   T28] bond0 (unregistering): Released all slaves
[  170.895522][   T28] bond1 (unregistering): Released all slaves
[  170.962474][T10578] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.969744][T10578] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.983224][T10578] bridge_slave_0: entered allmulticast mode
[  170.990129][T10578] bridge_slave_0: entered promiscuous mode
[  170.997338][T10578] bridge0: port 2(bridge_slave_1) entered blocking state
[  171.004482][T10578] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.017293][T10578] bridge_slave_1: entered allmulticast mode
[  171.026023][T10578] bridge_slave_1: entered promiscuous mode
[  171.038899][   T28] tipc: Disabling bearer <udp:syz2>
[  171.044163][   T28] tipc: Disabling bearer <udp:syz0>
[  171.049470][   T28] tipc: Left network mode
[  171.062942][T10648] loop3: detected capacity change from 0 to 1024
[  171.074525][T10650] FAULT_INJECTION: forcing a failure.
[  171.074525][T10650] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  171.087802][T10650] CPU: 1 UID: 0 PID: 10650 Comm: syz.5.2750 Not tainted 6.13.0-syzkaller-04541-gdf60eac9efe8 #0
[  171.087830][T10650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  171.087848][T10650] Call Trace:
[  171.087853][T10650]  <TASK>
[  171.087897][T10650]  dump_stack_lvl+0xf2/0x150
[  171.087937][T10650]  dump_stack+0x15/0x1a
[  171.087952][T10650]  should_fail_ex+0x223/0x230
[  171.088065][T10650]  should_fail+0xb/0x10
[  171.088094][T10650]  should_fail_usercopy+0x1a/0x20
[  171.088187][T10650]  _copy_from_user+0x1c/0xa0
[  171.088220][T10650]  copy_msghdr_from_user+0x54/0x2a0
[  171.088262][T10650]  ? __fget_files+0x17c/0x1c0
[  171.088366][T10650]  __sys_sendmsg+0x13e/0x230
[  171.088412][T10650]  __x64_sys_sendmsg+0x46/0x50
[  171.088445][T10650]  x64_sys_call+0x2734/0x2dc0
[  171.088468][T10650]  do_syscall_64+0xc9/0x1c0
[  171.088491][T10650]  ? clear_bhb_loop+0x55/0xb0
[  171.088528][T10650]  ? clear_bhb_loop+0x55/0xb0
[  171.088556][T10650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.088584][T10650] RIP: 0033:0x7f320ef75d29
[  171.088601][T10650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.088622][T10650] RSP: 002b:00007f320d5e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  171.088645][T10650] RAX: ffffffffffffffda RBX: 00007f320f165fa0 RCX: 00007f320ef75d29
[  171.088683][T10650] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  171.088694][T10650] RBP: 00007f320d5e7090 R08: 0000000000000000 R09: 0000000000000000
[  171.088705][T10650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.088716][T10650] R13: 0000000000000000 R14: 00007f320f165fa0 R15: 00007ffddeadade8
[  171.088736][T10650]  </TASK>
[  171.092633][T10578] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  171.107483][T10648] EXT4-fs: Ignoring removed nobh option
[  171.293054][T10578] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  171.305465][   T28] hsr_slave_0: left promiscuous mode
[  171.314552][T10648] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  171.327821][   T28] hsr_slave_1: left promiscuous mode
[  171.335279][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.342727][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.353652][T10648] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.372041][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.380261][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.401896][   T28] veth1_macvtap: left promiscuous mode
[  171.409213][   T28] veth0_macvtap: left promiscuous mode
[  171.415691][   T28] veth1_vlan: left promiscuous mode
[  171.421069][   T28] veth0_vlan: left promiscuous mode
[  171.432704][T10669] program syz.5.2753 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  171.458770][T10674] loop0: detected capacity change from 0 to 512
[  171.475092][T10674] vfat: Unknown parameter '��������'
[  171.515979][T10678] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  171.535082][T10678] SELinux: failed to load policy
[  171.643107][   T28] team0 (unregistering): Port device team_slave_1 removed
[  171.655648][T10692] loop2: detected capacity change from 0 to 512
[  171.667288][   T28] team0 (unregistering): Port device team_slave_0 removed
[  171.690705][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.718670][T10578] team0: Port device team_slave_0 added
[  171.738881][T10692] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2760: bg 0: block 248: padding at end of block bitmap is not set
[  171.762877][T10703] program syz.5.2764 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  171.771842][T10578] team0: Port device team_slave_1 added
[  171.772494][T10692] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2760: Failed to acquire dquot type 1
[  171.791269][T10692] EXT4-fs (loop2): 1 truncate cleaned up
[  171.800066][T10692] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.812980][T10692] ext4 filesystem being mounted at /551/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.833156][T10692] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  171.842205][T10692] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  171.853591][T10578] batman_adv: batadv0: Adding interface: batadv_slave_0
[  171.860063][T10706] loop0: detected capacity change from 0 to 1024
[  171.860734][T10578] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  171.873557][T10706] EXT4-fs: Ignoring removed nobh option
[  171.893383][T10578] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  171.910588][T10706] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  171.920027][T10578] batman_adv: batadv0: Adding interface: batadv_slave_1
[  171.924472][T10712] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  171.927043][T10578] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  171.935937][T10712] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  171.961327][T10578] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  171.983291][T10706] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.013231][T10578] hsr_slave_0: entered promiscuous mode
[  172.020575][T10578] hsr_slave_1: entered promiscuous mode
[  172.026797][T10578] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  172.034487][T10578] Cannot create hsr debugfs directory
[  172.057575][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.160038][T10578] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  172.172082][T10578] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  172.184503][T10578] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  172.201939][T10730] __nla_validate_parse: 1 callbacks suppressed
[  172.201959][T10730] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2768'.
[  172.216583][T10578] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  172.298487][T10578] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.316387][T10578] 8021q: adding VLAN 0 to HW filter on device team0
[  172.332196][ T3802] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.332283][ T3802] bridge0: port 1(bridge_slave_0) entered forwarding state
[  172.353548][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.353587][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  172.412830][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.426228][T10749] loop0: detected capacity change from 0 to 128
[  172.437973][T10578] 8021q: adding VLAN 0 to HW filter on device batadv0
[  172.448875][T10749] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  172.521756][T10769] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2772'.
[  172.619522][T10786] loop3: detected capacity change from 0 to 1024
[  172.635219][T10786] EXT4-fs: Ignoring removed nobh option
[  172.648634][T10786] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  172.654322][T10791] program syz.2.2775 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  172.665515][T10786] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.688069][T10578] veth0_vlan: entered promiscuous mode
[  172.699450][T10578] veth1_vlan: entered promiscuous mode
[  172.717511][T10578] veth0_macvtap: entered promiscuous mode
[  172.728865][T10578] veth1_macvtap: entered promiscuous mode
[  172.749812][T10578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.751075][T10798] netlink: 'syz.3.2774': attribute type 3 has an invalid length.
[  172.760363][T10578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.760379][T10578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.788662][T10578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.798683][T10578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.809164][T10578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.820379][T10578] batman_adv: batadv0: Interface activated: batadv_slave_0
[  172.832075][T10578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.842690][T10578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.852709][T10578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.863559][T10578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.873464][T10578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.884174][T10578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.894109][T10578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.904823][T10578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.915911][T10578] batman_adv: batadv0: Interface activated: batadv_slave_1
[  172.923709][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.924280][T10578] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  172.941542][T10578] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  172.950380][T10578] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  172.959161][T10578] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  173.052907][T10817] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2735'.
[  173.081570][T10820] loop3: detected capacity change from 0 to 2048
[  173.090962][T10817] Y�4��`Ҙ: renamed from lo (while UP)
[  173.139109][T10820] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.157221][T10833] syz.6.2779[10833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  173.157336][T10833] syz.6.2779[10833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  173.180111][T10833] syz.6.2779[10833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  173.243867][T10810] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  173.285113][   T29] kauditd_printk_skb: 268 callbacks suppressed
[  173.285168][   T29] audit: type=1326 audit(1737582660.560:36908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.315020][   T29] audit: type=1326 audit(1737582660.560:36909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.338922][   T29] audit: type=1326 audit(1737582660.560:36910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.362587][   T29] audit: type=1326 audit(1737582660.560:36911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.386373][   T29] audit: type=1326 audit(1737582660.560:36912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.409962][   T29] audit: type=1326 audit(1737582660.560:36913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.433570][   T29] audit: type=1326 audit(1737582660.560:36914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.457160][   T29] audit: type=1326 audit(1737582660.560:36915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.480733][   T29] audit: type=1326 audit(1737582660.560:36916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.504359][   T29] audit: type=1326 audit(1737582660.560:36917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10830 comm="syz.6.2779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c53cb5d29 code=0x7ffc0000
[  173.577014][T10840] loop6: detected capacity change from 0 to 1024
[  173.584101][T10840] EXT4-fs: Ignoring removed nobh option
[  173.594066][T10840] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  173.626285][T10840] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.649938][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.753845][T10578] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.775538][T10866] loop0: detected capacity change from 0 to 1024
[  173.782395][T10866] EXT4-fs: Ignoring removed nobh option
[  173.790068][T10866] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  173.831520][T10868] loop2: detected capacity change from 0 to 2048
[  173.847714][T10866] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.865566][T10874] program syz.6.2785 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.879785][T10876] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2789'.
[  173.885661][T10868] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.948459][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.978301][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.035925][T10896] loop3: detected capacity change from 0 to 2048
[  174.052309][T10896] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.083757][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.110935][T10910] loop0: detected capacity change from 0 to 1024
[  174.118824][T10910] EXT4-fs: Ignoring removed nobh option
[  174.139398][T10910] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  174.150665][T10910] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.228674][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.253300][T10928] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2799'.
[  174.361602][T10936] loop0: detected capacity change from 0 to 2048
[  174.430436][T10943] tipc: Started in network mode
[  174.435410][T10943] tipc: Node identity ac14140f, cluster identity 4711
[  174.442344][T10943] tipc: New replicast peer: 255.255.255.255
[  174.448659][T10943] tipc: Enabled bearer <udp:syz2>, priority 10
[  174.822579][T10950] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  174.921420][T10952] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2803'.
[  175.034347][T10954] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2804'.
[  175.226413][T10956] loop6: detected capacity change from 0 to 1024
[  175.235165][T10956] EXT4-fs: Ignoring removed nobh option
[  175.243262][T10956] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  175.252932][T10936] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.260837][T10956] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.318130][T10965] syz.5.2807[10965] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.318263][T10965] syz.5.2807[10965] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.372400][T10965] syz.5.2807[10965] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.392946][T10578] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.459403][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.524576][T10981] loop3: detected capacity change from 0 to 1024
[  175.525318][T10981] EXT4-fs: Ignoring removed bh option
[  175.549704][T10981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.549822][T10981] ext4 filesystem being mounted at /508/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.565492][ T3376] tipc: Node number set to 2886997007
[  175.582022][T10993] loop6: detected capacity change from 0 to 128
[  175.588498][T10987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2811'.
[  175.589189][T10989] loop5: detected capacity change from 0 to 1024
[  175.589693][T10989] EXT4-fs: Ignoring removed bh option
[  175.592787][T10993] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  175.644006][T10989] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.644161][T10989] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.689488][T11001] loop2: detected capacity change from 0 to 2048
[  175.707346][T11001] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.745660][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.814401][T11013] loop2: detected capacity change from 0 to 1024
[  175.822261][T11013] EXT4-fs: Ignoring removed nobh option
[  175.828749][T11013] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  175.844407][T11013] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.852334][T11015] loop0: detected capacity change from 0 to 2048
[  175.876552][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.877109][T11015] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.916598][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.974095][T11025] loop2: detected capacity change from 0 to 2048
[  175.976942][T11027] loop0: detected capacity change from 0 to 1024
[  175.991475][T11027] EXT4-fs: Ignoring removed nobh option
[  175.998666][T11027] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  175.999867][T11025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.146590][T11044] loop0: detected capacity change from 0 to 1024
[  176.166782][T11044] EXT4-fs: Ignoring removed nobh option
[  176.180116][T11044] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  176.218840][T11054] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2834'.
[  176.254702][T11056] loop0: detected capacity change from 0 to 2048
[  176.380003][T11075] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2842'.
[  176.440697][T11079] loop2: detected capacity change from 0 to 1024
[  176.440952][T11077] loop3: detected capacity change from 0 to 2048
[  176.485105][T11079] EXT4-fs: Ignoring removed bh option
[  176.509565][T11079] ext4 filesystem being mounted at /579/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.534280][T11093] loop0: detected capacity change from 0 to 2048
[  176.602530][T11103] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  176.614337][T11103] SELinux: failed to load policy
[  176.649574][T11095] loop5: detected capacity change from 0 to 8192
[  176.652276][T11095] vfat: Unknown parameter 'kfree'
[  176.676251][T11105] loop0: detected capacity change from 0 to 128
[  176.694669][T11105] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  176.724010][T11112] loop3: detected capacity change from 0 to 512
[  176.745764][T11114] loop5: detected capacity change from 0 to 2048
[  176.886270][T11135] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  176.895047][T11135] SELinux: failed to load policy
[  176.916427][T11137] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  176.926677][T11137] SELinux: failed to load policy
[  176.948874][T11139] program syz.3.2867 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  176.986308][T11143] syz.5.2868[11143] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  176.986419][T11143] syz.5.2868[11143] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  177.005405][T11143] syz.5.2868[11143] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  177.026460][T11143] tipc: Started in network mode
[  177.042797][T11143] tipc: Node identity ac14140f, cluster identity 4711
[  177.057013][T11143] tipc: New replicast peer: 10.1.1.2
[  177.062405][T11143] tipc: Enabled bearer <udp:syz0>, priority 10
[  177.106313][T11156] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  177.110237][T11158] netlink: 'syz.5.2875': attribute type 15 has an invalid length.
[  177.115461][T11156] SELinux: failed to load policy
[  177.153448][T11160] loop5: detected capacity change from 0 to 1024
[  177.161658][T11160] EXT4-fs: Ignoring removed bh option
[  177.189075][T11160] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.242871][T11169] __nla_validate_parse: 3 callbacks suppressed
[  177.242885][T11169] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2880'.
[  177.329668][T11179] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2885'.
[  177.338315][T11177] loop3: detected capacity change from 0 to 2048
[  177.417703][T11189] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  177.426486][T11189] SELinux: failed to load policy
[  177.451289][T11192] loop3: detected capacity change from 0 to 1024
[  177.458354][T11192] EXT4-fs: Ignoring removed orlov option
[  177.464044][T11192] EXT4-fs: Ignoring removed nomblk_io_submit option
[  177.496372][T11195] loop6: detected capacity change from 0 to 512
[  177.568499][T11205] loop0: detected capacity change from 0 to 1024
[  177.575564][T11205] EXT4-fs: Ignoring removed nobh option
[  177.581516][T11205] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  177.590645][T11206] netlink: 'syz.3.2889': attribute type 15 has an invalid length.
[  177.682592][T11213] loop6: detected capacity change from 0 to 1024
[  177.705889][T11213] EXT4-fs: Ignoring removed nobh option
[  177.740609][T11213] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  177.741471][T11220] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  177.760880][T11220] SELinux: failed to load policy
[  177.868158][T11229] loop2: detected capacity change from 0 to 128
[  177.892056][T11229] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  178.048889][T11232] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  178.174795][ T3376] tipc: Node number set to 2886997007
[  178.390598][   T29] kauditd_printk_skb: 1471 callbacks suppressed
[  178.390615][   T29] audit: type=1400 audit(1737582665.750:38389): avc:  denied  { unmount } for  pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  178.422370][T11237] loop3: detected capacity change from 0 to 512
[  178.433023][T11237] vfat: Unknown parameter '��������'
[  178.480219][T11241] loop3: detected capacity change from 0 to 2048
[  178.499837][   T29] audit: type=1326 audit(1737582665.860:38390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.3.2907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  178.524387][   T29] audit: type=1326 audit(1737582665.860:38391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.3.2907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  178.548517][   T29] audit: type=1326 audit(1737582665.860:38392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.3.2907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  178.572681][   T29] audit: type=1326 audit(1737582665.860:38393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.3.2907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  178.635876][T11251] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  178.644071][T11249] loop3: detected capacity change from 0 to 2048
[  178.644581][T11251] SELinux: failed to load policy
[  178.743526][T11260] loop6: detected capacity change from 0 to 1024
[  178.755576][T11260] EXT4-fs: Ignoring removed nobh option
[  178.765418][T11260] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  178.793822][   T29] audit: type=1326 audit(1737582666.150:38394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11248 comm="syz.3.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  178.817539][   T29] audit: type=1326 audit(1737582666.150:38395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11248 comm="syz.3.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  178.821168][T11268] loop0: detected capacity change from 0 to 2048
[  178.841468][   T29] audit: type=1326 audit(1737582666.150:38396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11248 comm="syz.3.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  178.871849][   T29] audit: type=1326 audit(1737582666.150:38397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11248 comm="syz.3.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  178.895524][   T29] audit: type=1326 audit(1737582666.150:38398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11248 comm="syz.3.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb616aa5d29 code=0x7ffc0000
[  178.966415][T11273] loop3: detected capacity change from 0 to 1024
[  178.979388][T11273] EXT4-fs: Ignoring removed bh option
[  179.016739][T11281] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  179.026141][T11281] SELinux: failed to load policy
[  179.036545][T11283] program syz.6.2923 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  179.047896][T11273] ext4 filesystem being mounted at /539/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.095487][T11289] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2925'.
[  179.105695][T11287] loop0: detected capacity change from 0 to 128
[  179.112754][T11287] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  179.165905][T11296] loop5: detected capacity change from 0 to 1024
[  179.172909][T11296] EXT4-fs: Ignoring removed nobh option
[  179.179558][T11296] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  179.229554][T11302] loop0: detected capacity change from 0 to 2048
[  179.253542][T11306] netlink: 'syz.5.2928': attribute type 3 has an invalid length.
[  179.401105][T11311] loop5: detected capacity change from 0 to 2048
[  179.573065][T11326] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2938'.
[  179.696959][T11337] loop2: detected capacity change from 0 to 2048
[  179.771053][T11344] loop2: detected capacity change from 0 to 1024
[  179.785840][T11344] EXT4-fs: Ignoring removed nobh option
[  179.800447][T11344] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  180.062527][T11367] netlink: 'syz.3.2952': attribute type 3 has an invalid length.
[  180.110733][T11370] loop3: detected capacity change from 0 to 2048
[  180.130895][T11353] chnl_net:caif_netlink_parms(): no params data found
[  180.151257][   T54] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.260515][   T54] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.264041][T11382] loop3: detected capacity change from 0 to 2048
[  180.291230][T11353] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.298452][T11353] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.308751][T11353] bridge_slave_0: entered allmulticast mode
[  180.350427][T11353] bridge_slave_0: entered promiscuous mode
[  180.358856][T11353] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.366104][T11353] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.373419][T11353] bridge_slave_1: entered allmulticast mode
[  180.380223][T11353] bridge_slave_1: entered promiscuous mode
[  180.387654][   T54] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.427277][T11391] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2958'.
[  180.438629][T11353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  180.454656][T11353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  180.482115][   T54] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.521591][T11398] loop0: detected capacity change from 0 to 2048
[  180.542090][T11396] netlink: 'syz.5.2962': attribute type 3 has an invalid length.
[  180.551464][T11400] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2961'.
[  180.561668][T11353] team0: Port device team_slave_0 added
[  180.570106][T11353] team0: Port device team_slave_1 added
[  180.615401][T11353] batman_adv: batadv0: Adding interface: batadv_slave_0
[  180.622452][T11353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  180.648483][T11353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  180.706566][T11413] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2967'.
[  180.767600][T11353] batman_adv: batadv0: Adding interface: batadv_slave_1
[  180.774684][T11353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  180.800790][T11353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  180.828680][T11421] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2970'.
[  180.853772][   T54] bridge_slave_1: left allmulticast mode
[  180.859561][   T54] bridge_slave_1: left promiscuous mode
[  180.865303][   T54] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.880116][   T54] bridge_slave_0: left allmulticast mode
[  180.885868][   T54] bridge_slave_0: left promiscuous mode
[  180.891526][   T54] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.962798][T11428] netlink: 'syz.0.2973': attribute type 3 has an invalid length.
[  180.978993][T11429] loop5: detected capacity change from 0 to 2048
[  181.060142][T11434] loop0: detected capacity change from 0 to 2048
[  181.180891][T11353] hsr_slave_0: entered promiscuous mode
[  181.195414][T11353] hsr_slave_1: entered promiscuous mode
[  181.209738][T11353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  181.226329][T11353] Cannot create hsr debugfs directory
[  181.236704][   T54] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  181.248581][T11455] loop0: detected capacity change from 0 to 128
[  181.263121][T11455] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  181.263411][   T54] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  181.305656][   T54] bond0 (unregistering): Released all slaves
[  181.390665][   T54] tipc: Disabling bearer <udp:syz0>
[  181.396125][   T54] tipc: Disabling bearer <udp:syz2>
[  181.401400][   T54] tipc: Left network mode
[  181.438515][T11468] loop0: detected capacity change from 0 to 1024
[  181.484061][   T54] hsr_slave_0: left promiscuous mode
[  181.496268][   T54] hsr_slave_1: left promiscuous mode
[  181.501922][   T54] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  181.509434][   T54] batman_adv: batadv0: Removing interface: batadv_slave_0
[  181.512335][T11468] EXT4-fs: Ignoring removed nobh option
[  181.522610][   T54] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  181.530084][   T54] batman_adv: batadv0: Removing interface: batadv_slave_1
[  181.547003][   T54] veth1_macvtap: left promiscuous mode
[  181.555055][T11468] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  181.555921][   T54] veth0_macvtap: left promiscuous mode
[  181.578681][   T54] veth1_vlan: left promiscuous mode
[  181.589207][   T54] veth0_vlan: left promiscuous mode
[  181.659855][T11476] loop0: detected capacity change from 0 to 2048
[  181.755616][T11480] loop0: detected capacity change from 0 to 512
[  181.780131][T11480] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2983: bg 0: block 248: padding at end of block bitmap is not set
[  181.794791][   T54] team0 (unregistering): Port device team_slave_1 removed
[  181.804582][   T54] team0 (unregistering): Port device team_slave_0 removed
[  181.812109][T11480] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.2983: Failed to acquire dquot type 1
[  181.834185][T11480] EXT4-fs (loop0): 1 truncate cleaned up
[  181.852954][T11480] ext4 filesystem being mounted at /610/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.944587][T11480] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  181.957002][T11473] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2981'.
[  181.988142][T11480] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  182.079003][T11490] loop3: detected capacity change from 0 to 2048
[  182.235722][T11353] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  182.246325][T11353] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  182.278205][T11353] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  182.284235][T11507] loop3: detected capacity change from 0 to 2048
[  182.309827][T11353] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  182.335460][T11507]  loop3: p2 p3 < > p4 < p5 >
[  182.340210][T11507] loop3: partition table partially beyond EOD, truncated
[  182.366328][T11507] loop3: p2 start 16908804 is beyond EOD, truncated
[  182.372988][T11507] loop3: p3 start 4284289 is beyond EOD, truncated
[  182.406460][T11507] loop3: p5 start 16908804 is beyond EOD, truncated
[  182.427766][T11353] 8021q: adding VLAN 0 to HW filter on device bond0
[  182.451623][T11353] 8021q: adding VLAN 0 to HW filter on device team0
[  182.469986][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  182.477122][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  182.509171][T11353] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  182.519702][T11353] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  182.558438][T11523] loop3: detected capacity change from 0 to 2048
[  182.561437][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  182.571292][T11527] loop0: detected capacity change from 0 to 1024
[  182.571876][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  182.615188][T11527] EXT4-fs: Ignoring removed nobh option
[  182.624818][T11527] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  182.644176][T11353] 8021q: adding VLAN 0 to HW filter on device batadv0
[  182.732259][T11543] loop3: detected capacity change from 0 to 2048
[  182.759653][T11552] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2993'.
[  182.853848][T11353] veth0_vlan: entered promiscuous mode
[  182.885722][T11353] veth1_vlan: entered promiscuous mode
[  182.942850][T11353] veth0_macvtap: entered promiscuous mode
[  182.960942][T11353] veth1_macvtap: entered promiscuous mode
[  182.987627][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  182.998311][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.008313][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.018878][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.028795][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.039281][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.055719][T11353] batman_adv: batadv0: Interface activated: batadv_slave_0
[  183.069233][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.079815][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.089764][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.100243][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.110111][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.120651][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.130513][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.141049][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.181604][T11353] batman_adv: batadv0: Interface activated: batadv_slave_1
[  183.222795][T11353] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  183.231660][T11353] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  183.240447][T11353] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  183.249292][T11353] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  183.297246][T11604] loop0: detected capacity change from 0 to 1024
[  183.328094][T11610] syz.3.3003[11610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.328250][T11610] syz.3.3003[11610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.342377][T11604] EXT4-fs: Ignoring removed nobh option
[  183.354858][T11610] syz.3.3003[11610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.389836][T11613] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3004'.
[  183.421591][T11604] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  183.479639][T11625] loop5: detected capacity change from 0 to 2048
[  183.572637][   T29] kauditd_printk_skb: 365 callbacks suppressed
[  183.572655][   T29] audit: type=1326 audit(1737582670.930:38762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.625156][   T29] audit: type=1326 audit(1737582670.930:38763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.648939][   T29] audit: type=1326 audit(1737582670.930:38764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.672618][   T29] audit: type=1326 audit(1737582670.930:38765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.696284][   T29] audit: type=1326 audit(1737582670.930:38766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.719904][   T29] audit: type=1326 audit(1737582670.930:38767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.743519][   T29] audit: type=1326 audit(1737582670.930:38768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.767145][   T29] audit: type=1326 audit(1737582670.930:38769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.791054][   T29] audit: type=1326 audit(1737582670.930:38770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.814755][   T29] audit: type=1326 audit(1737582670.930:38771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11624 comm="syz.5.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f320ef75d29 code=0x7ffc0000
[  183.839812][T11646] loop2: detected capacity change from 0 to 2048
[  183.876171][T11661] syz.5.3015[11661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.876249][T11661] syz.5.3015[11661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.919597][T11661] syz.5.3015[11661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.973306][   T36] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.081721][T11681] loop5: detected capacity change from 0 to 2048
[  184.129317][   T36] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.182901][T11690] loop2: detected capacity change from 0 to 1024
[  184.186338][T11692] loop5: detected capacity change from 0 to 1024
[  184.196440][T11690] EXT4-fs: Ignoring removed nobh option
[  184.202493][T11692] EXT4-fs: Ignoring removed nobh option
[  184.208747][T11690] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  184.220761][T11692] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  184.260227][T11642] chnl_net:caif_netlink_parms(): no params data found
[  184.313714][   T36] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.396310][T11703] netlink: 'syz.5.3021': attribute type 3 has an invalid length.
[  184.421889][T11642] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.429052][T11642] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.474912][T11642] bridge_slave_0: entered allmulticast mode
[  184.498884][T11642] bridge_slave_0: entered promiscuous mode
[  184.523622][   T36] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.524493][T11709] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3026'.
[  184.532917][T11642] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.532957][T11642] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.533119][T11642] bridge_slave_1: entered allmulticast mode
[  184.541591][T11711] syz.5.3027[11711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  184.541653][T11711] syz.5.3027[11711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  184.541734][T11711] syz.5.3027[11711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  184.541990][T11642] bridge_slave_1: entered promiscuous mode
[  184.585466][T11642] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  184.586913][T11642] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  184.613534][T11714] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3028'.
[  184.614634][T11642] team0: Port device team_slave_0 added
[  184.617325][T11642] team0: Port device team_slave_1 added
[  184.661369][T11715] loop2: detected capacity change from 0 to 128
[  184.671694][T11642] batman_adv: batadv0: Adding interface: batadv_slave_0
[  184.671784][T11642] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  184.671812][T11642] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  184.672551][T11642] batman_adv: batadv0: Adding interface: batadv_slave_1
[  184.672565][T11642] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  184.672594][T11642] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  184.703886][T11719] loop5: detected capacity change from 0 to 2048
[  184.725705][T11642] hsr_slave_0: entered promiscuous mode
[  184.726092][T11642] hsr_slave_1: entered promiscuous mode
[  184.726463][T11715] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  184.735762][T11642] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  184.735783][T11642] Cannot create hsr debugfs directory
[  184.862133][   T36] bridge_slave_1: left allmulticast mode
[  184.862155][   T36] bridge_slave_1: left promiscuous mode
[  184.862344][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.872074][   T36] bridge_slave_0: left allmulticast mode
[  184.872097][   T36] bridge_slave_0: left promiscuous mode
[  184.872260][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.882416][T11727] loop5: detected capacity change from 0 to 1024
[  184.882850][T11727] EXT4-fs: Ignoring removed bh option
[  184.931426][T11727] ext4 filesystem being mounted at /58/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.022739][T11735] loop3: detected capacity change from 0 to 2048
[  185.169744][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  185.188135][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  185.201092][   T36] bond0 (unregistering): Released all slaves
[  185.211044][   T36] bond1 (unregistering): Released all slaves
[  185.237760][T11754] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3037'.
[  185.276210][   T36] tipc: Disabling bearer <udp:syz2>
[  185.281489][   T36] tipc: Disabling bearer <udp:syz0>
[  185.286753][   T36] tipc: Left network mode
[  185.293432][T11757] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3038'.
[  185.318886][   T36] hsr_slave_0: left promiscuous mode
[  185.349054][   T36] hsr_slave_1: left promiscuous mode
[  185.365715][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  185.387629][T11764] loop2: detected capacity change from 0 to 2048
[  185.405461][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  185.412926][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  185.429310][   T36] veth1_macvtap: left promiscuous mode
[  185.436177][T11771] loop3: detected capacity change from 0 to 1024
[  185.439768][   T36] veth0_macvtap: left promiscuous mode
[  185.448417][   T36] veth1_vlan: left promiscuous mode
[  185.453733][   T36] veth0_vlan: left promiscuous mode
[  185.478135][T11771] EXT4-fs: Ignoring removed nobh option
[  185.503283][T11771] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  185.571751][T11779] loop2: detected capacity change from 0 to 2048
[  185.598466][   T36] team0 (unregistering): Port device team_slave_1 removed
[  185.634367][   T36] team0 (unregistering): Port device team_slave_0 removed
[  185.705017][T11785] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3043'.
[  185.708668][T11787] loop2: detected capacity change from 0 to 2048
[  185.725993][T10361] ==================================================================
[  185.734113][T10361] BUG: KCSAN: data-race in filemap_flush / xas_set_mark
[  185.741077][T10361] 
[  185.743415][T10361] write to 0xffff8881004c11a4 of 4 bytes by task 54 on cpu 1:
[  185.750879][T10361]  xas_set_mark+0x131/0x150
[  185.755413][T10361]  __folio_start_writeback+0x1e8/0x430
[  185.760930][T10361]  __block_write_full_folio+0x506/0x8c0
[  185.766547][T10361]  block_write_full_folio+0x293/0x2b0
[  185.771957][T10361]  write_cache_pages+0x62/0x100
[  185.777028][T10361]  blkdev_writepages+0x59/0x90
[  185.781822][T10361]  do_writepages+0x1d8/0x480
[  185.786443][T10361]  __writeback_single_inode+0x89/0x850
[  185.791931][T10361]  writeback_sb_inodes+0x461/0xa30
[  185.797069][T10361]  __writeback_inodes_wb+0x9a/0x1a0
[  185.802399][T10361]  wb_writeback+0x274/0x640
[  185.806941][T10361]  wb_workfn+0x67f/0x940
[  185.811187][T10361]  process_scheduled_works+0x483/0x9a0
[  185.816780][T10361]  worker_thread+0x51d/0x6f0
[  185.821404][T10361]  kthread+0x4ae/0x520
[  185.825483][T10361]  ret_from_fork+0x4b/0x60
[  185.829916][T10361]  ret_from_fork_asm+0x1a/0x30
[  185.834689][T10361] 
[  185.837025][T10361] read to 0xffff8881004c11a4 of 4 bytes by task 10361 on cpu 0:
[  185.844664][T10361]  filemap_flush+0x9a/0x120
[  185.849184][T10361]  sync_blockdev_nowait+0x29/0x40
[  185.854225][T10361]  sync_filesystem+0xe3/0x190
[  185.858935][T10361]  generic_shutdown_super+0x46/0x220
[  185.864244][T10361]  kill_block_super+0x2a/0x70
[  185.868950][T10361]  ext4_kill_sb+0x44/0x80
[  185.873319][T10361]  deactivate_locked_super+0x7d/0x1c0
[  185.878706][T10361]  deactivate_super+0x9f/0xb0
[  185.883405][T10361]  cleanup_mnt+0x268/0x2e0
[  185.887835][T10361]  __cleanup_mnt+0x19/0x20
[  185.892269][T10361]  task_work_run+0x13a/0x1a0
[  185.896877][T10361]  syscall_exit_to_user_mode+0xa8/0x120
[  185.902446][T10361]  do_syscall_64+0xd6/0x1c0
[  185.906966][T10361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.912881][T10361] 
[  185.915211][T10361] value changed: 0x02000021 -> 0x04000021
[  185.920937][T10361] 
[  185.923263][T10361] Reported by Kernel Concurrency Sanitizer on:
[  185.929418][T10361] CPU: 0 UID: 0 PID: 10361 Comm: syz-executor Not tainted 6.13.0-syzkaller-04541-gdf60eac9efe8 #0
[  185.940017][T10361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  185.950080][T10361] ==================================================================
[  185.992526][T11642] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  186.030546][T11642] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  186.036542][T11798] loop5: detected capacity change from 0 to 2048
[  186.084423][T11642] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  186.103097][T11642] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  186.170110][T11642] 8021q: adding VLAN 0 to HW filter on device bond0
[  186.200251][T11642] 8021q: adding VLAN 0 to HW filter on device team0
[  186.214309][ T3802] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.221418][ T3802] bridge0: port 1(bridge_slave_0) entered forwarding state
[  186.242375][ T3802] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.249490][ T3802] bridge0: port 2(bridge_slave_1) entered forwarding state
[  186.277621][T11642] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  186.358772][T11642] 8021q: adding VLAN 0 to HW filter on device batadv0
[  186.487217][T11642] veth0_vlan: entered promiscuous mode
[  186.506954][T11642] veth1_vlan: entered promiscuous mode
[  186.539128][T11642] veth0_macvtap: entered promiscuous mode
[  186.555932][T11642] veth1_macvtap: entered promiscuous mode
[  186.568329][T11642] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.578851][T11642] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.588746][T11642] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.599302][T11642] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.609152][T11642] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.619636][T11642] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.629487][T11642] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.639989][T11642] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.665009][T11642] batman_adv: batadv0: Interface activated: batadv_slave_0
[  186.676646][T11642] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.687174][T11642] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.697033][T11642] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.707546][T11642] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.717470][T11642] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.728043][T11642] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.737910][T11642] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.748619][T11642] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.759205][T11642] batman_adv: batadv0: Interface activated: batadv_slave_1
[  186.768325][T11642] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.777100][T11642] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.785913][T11642] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.794639][T11642] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0