last executing test programs:

3m34.829369985s ago: executing program 32 (id=776):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x10, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a90000000030a0300000000000000000002e000000c00020000000000000000010900010073797a30"], 0xb8}}, 0x0)

3m10.207112068s ago: executing program 33 (id=1451):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580), &(0x7f00000005c0)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f00000002c0)=[{0x6}]}, 0x10)
write$binfmt_misc(r0, &(0x7f0000001280), 0x6)

3m2.865515694s ago: executing program 34 (id=1714):
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x4)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r2 = dup2(r0, r0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000000)={'\x00', 0xfff9, 0x8, 0x1, 0x3, 0x3})

2m5.709464225s ago: executing program 35 (id=3455):
r0 = socket$tipc(0x1e, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@name={0x1e, 0x2, 0x2, {{0x1, 0x3}, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0)

1m13.3961577s ago: executing program 3 (id=4895):
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_int(r3, 0x1, 0x2a, &(0x7f0000000100)=0xfffe, 0x4)
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="3d4077e50823258d495dc9d2c2a25bc7dc0b11bde0d15d0770675db1790111e7", 0x20}, {&(0x7f0000000240)="b28231adddba8ed6f23bf98ca8caa015ab797f57353ec4ceacbd4995a9a6", 0x1e}], 0x2, 0x0)
recvmmsg(r3, &(0x7f0000001440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40002002, 0x0)
write$binfmt_misc(r2, &(0x7f0000000040), 0xffc1)
setsockopt$sock_int(r3, 0x1, 0x10, &(0x7f0000000180)=0x55b7, 0x4)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

1m13.09047557s ago: executing program 8 (id=4899):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socketpair(0x1, 0x5, 0x0, 0x0)
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f00000005c0)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffff0180c200000308060001080006040002aaaaaaaaaa98ac1414bbaaaaaaaaaabbac"], 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)

1m13.09020843s ago: executing program 3 (id=4901):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff})
splice(r2, 0x0, r1, 0x0, 0x10000008ebc, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x4cfb, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001c00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x29)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000005000000850000008200000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)

1m13.055265599s ago: executing program 8 (id=4902):
r0 = socket$xdp(0x2c, 0x3, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x44080)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x4)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4a, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)

1m12.513039239s ago: executing program 8 (id=4905):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010700000000000000000000000a20000000000a01010000000000000000020000000900010073797a30000000002c000000030a01010000001300000000020000000900010073797a30000000000900030073797a320000000014000000020a050000000000000000000000000014000000110001"], 0x88}}, 0x0)

1m12.487787499s ago: executing program 8 (id=4907):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003f80)=ANY=[], 0x1, 0x2f4, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x401, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
fdatasync(r0)
syz_io_uring_setup(0x1d36, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock2(&(0x7f0000072000/0x4000)=nil, 0x4000, 0x0)

1m12.442399259s ago: executing program 36 (id=4908):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a09000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380140001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x84}}], {0x14, 0x11, 0x1, 0xffffffff}}, 0x3c}, 0x1, 0x1200}, 0x404c010)

1m12.226343349s ago: executing program 3 (id=4914):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x100}, 0x18)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000300)=ANY=[@ANYBLOB='S\x00\x00\x00\a'], 0x53)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})

1m12.160792699s ago: executing program 3 (id=4916):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
pipe2(0x0, 0x0)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100"], 0x64}}, 0x0)

1m12.068254869s ago: executing program 3 (id=4917):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000580), 0x1, 0x503, &(0x7f0000000880)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000004c0), 0x208e24b)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000001240)={0x0, 0x5, 0x0, 0x0, 0x0, "001bf100000000000000200000000000df00"})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
getrandom(&(0x7f0000000040)=""/133, 0xfffffffffffffdde, 0x2)

1m11.804346799s ago: executing program 9 (id=4911):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x2, 0x120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x7f, 0x2}, 0x100020, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x1c, &(0x7f00000003c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5a54}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='tlb_flush\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x0)

1m11.766914899s ago: executing program 37 (id=4911):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x2, 0x120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x7f, 0x2}, 0x100020, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x1c, &(0x7f00000003c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5a54}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='tlb_flush\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x0)

1m11.627202089s ago: executing program 3 (id=4919):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, 0x0, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x2d)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000040000000500000000000000", @ANYRES32, @ANYBLOB="000000001700"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c00000010004b0422000000000000007a000000", @ANYRES32=r2, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c0002800800040000000000080015"], 0x4c}, 0x1, 0x0, 0x0, 0x200400a0}, 0x0)

1m11.626801459s ago: executing program 38 (id=4919):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, 0x0, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x2d)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000040000000500000000000000", @ANYRES32, @ANYBLOB="000000001700"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c00000010004b0422000000000000007a000000", @ANYRES32=r2, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c0002800800040000000000080015"], 0x4c}, 0x1, 0x0, 0x0, 0x200400a0}, 0x0)

1m11.615223129s ago: executing program 8 (id=4920):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
ppoll(&(0x7f00000000c0)=[{0xffffffffffffffff, 0x4186}, {r0, 0x6080}], 0x2, 0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

1m10.617239488s ago: executing program 8 (id=4921):
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x88, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_config_ext={0x2, 0x2800000000003}, 0x1320, 0xffffffff, 0x3, 0x6, 0x0, 0x4, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
pwritev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)='\x00!', 0x2}], 0xa, 0x0, 0x0)

1m10.616997488s ago: executing program 39 (id=4921):
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x88, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_config_ext={0x2, 0x2800000000003}, 0x1320, 0xffffffff, 0x3, 0x6, 0x0, 0x4, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
pwritev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)='\x00!', 0x2}], 0xa, 0x0, 0x0)

29.41434799s ago: executing program 7 (id=5876):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x3f, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xad, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
kexec_load(0x0, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)

29.33376283s ago: executing program 7 (id=5887):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_io_uring_setup(0x83f, &(0x7f00000000c0)={0x0, 0xa9ee, 0x400, 0x3, 0x8002ae}, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x109880})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)

29.16547919s ago: executing program 7 (id=5879):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xfffffffffffffd19)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

29.05798769s ago: executing program 7 (id=5880):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000002c0)='./file1\x00', 0x0, &(0x7f0000000480)={[{@acl}]}, 0x1, 0x787, &(0x7f0000001000)="$eJzs3ctrXNUfAPDvnSRNk/b3SwRB6yogaKB0YmpsFVxUXIhgoaBr22EyDTWTTMlMShMCtojgRlBxIeimax9159bHVv8LF9JSNS1WXEjkzqOdNjPppM3MBPL5wMmcc++dnPOdcx/nzr3MDWDPmkj/ZCIORcRHScRYfXoSEUPV3GDEidpyt9fX8mlKYmPjzT+S6jK31tfy0fSe1IF64cmI+PH9iMOZzfWWV1bnc8ViYalenqosnJ8qr6weObeQmyvMFRaPTc/MHD3+wvFjOxfrX7+sHrz+8WvPfnPin/eeuPrhT0mciIP1ec1x7JSJmKh/JkPpR3iPV3e6sj5L+t0AHkq6aQ7UtvI4FGMxUM21MdLLlgEA3fJuRGwAAHtM4vgPAHtM43uAW+tr+Ubq7zcSvXXjlYjYX4u/cX2zNmewfs1uf/U66Oit5J4rI0lEjO9A/RMR8cV3b3+Vpqj3g2tpQC9cuhwRZ8YnNu//k033LGzXc1vN3BiuvkzcN3mvHX+gn75Pxz8vthr/Ze6Mf6LF+Ge4xbb7MB68/Weu7UA1baXjv5eb7m273RR/3fhAvfS/6phvKDl7rlhI923/j4jJGBpOy9PVRVuP3CZv/nuzXf3N478/P3nny7T+9PXuEplrg8P3vmc2V8k9atwNNy5HPDXYKv7kTv8nbca/pzqs4/WXPvi83bw0/jTeRtocf3dtXIl4pmX/3+3LZMv7E6eqq8NUY6Vo4dtfPxttV39z/6cprb9xLtALaf+Pbh3/eNJ8v2Z5+3X8fGXsh3bzHhx/6/V/X/JWNb+vPu1irlJZmo7Yl7yxefrRu+9tlBvLp/FPPt16+69V23r9T88Jz3QY/+D1379++Pi7K41/dlv9v/3M1dvzA+3q76z/Z6q5yfqUTvZ/nTbwUT47AAAAAAAAAAAAAAAAAAAAAAAAAOhUJiIORpLJ3slnMtls7Rnej8doplgqVw6fLS0vzkb1WdnjMZRp/NTlWNPvoU7Xfw+/UT56X/n5iHgsIj4dHqmWs/lScbbfwQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA3YE2z/9P/Tbc79YBAF2zv98NAAB6zvEfAPae7R3/R7rWDgCgd5z/A8De0/Hx/0x32wEA9I7zfwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALrs1MmTadr4e30tn5ZnL6wsz5cuHJktlOezC8v5bL60dD47VyrNFQvZfGmh7T+6VHsplkrnZ2Jx+eJUpVCuTJVXVk8vlJYXK6fPLeTmCqcLQz2LDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6V15Znc8Vi4UlmS0zI7ujGbsmMxi7ohkyXcs07yVG+reDAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjl/gsAAP//IIYqoQ==")
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
gettid()
ptrace(0x10, r1)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x204410, &(0x7f0000000740), 0xfe, 0x4a1, &(0x7f00000001c0)="$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")
ptrace$setregs(0xd, r1, 0x0, &(0x7f00000003c0))
ptrace$getregset(0x4205, r1, 0x200, &(0x7f0000000080)={0x0})

28.97904809s ago: executing program 7 (id=5881):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000d8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, 0x0, 0x8, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
socket$inet(0x2, 0x6, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
close(r1)

28.7742035s ago: executing program 7 (id=5883):
r0 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r0, &(0x7f0000002980)={&(0x7f0000000180)={0x2, 0x0, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000001800)='_', 0x1}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x1e, &(0x7f0000000000), 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x1})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f0000000040)={0x80, 0x8, 0x2, 0xfffffffc})
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x0)

28.76403459s ago: executing program 40 (id=5883):
r0 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r0, &(0x7f0000002980)={&(0x7f0000000180)={0x2, 0x0, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000001800)='_', 0x1}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x1e, &(0x7f0000000000), 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x1})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f0000000040)={0x80, 0x8, 0x2, 0xfffffffc})
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x0)

14.6576621s ago: executing program 4 (id=6226):
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000600)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r3, 0x0, 0x4}, 0x18)
symlinkat(&(0x7f0000000400)='./file0/../file0\x00', r1, &(0x7f00000003c0)='./file0\x00')
readlinkat(r1, &(0x7f00000001c0)='./file0/../file0\x00', &(0x7f00000002c0)=""/198, 0xc6)

14.61506112s ago: executing program 4 (id=6228):
syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r2=>0x0})
r3 = socket$xdp(0x2c, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r4}, &(0x7f0000000000), &(0x7f00000005c0)=r5}, 0x20)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x201000, 0x1000}, 0x20)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fedbdf25080000001800028014000380100001800400030008000100050000000c00018008000100", @ANYRES32=r2], 0x38}, 0x1, 0x0, 0x0, 0x4000814}, 0x0)

14.57194176s ago: executing program 4 (id=6231):
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r0 = socket$inet6(0xa, 0x80003, 0xff)
r1 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
close(r0)

14.50212436s ago: executing program 4 (id=6232):
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r0, 0x0, 0x0)
syz_clone(0x40bc0100, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0x1, 0x8000c61)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f0000000240)={0x17c04, 0xffffffffffffffff, 0x4ffa1, 0x100000001})

14.31595049s ago: executing program 4 (id=6236):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r1, &(0x7f0000000380)={0x2, 0x4e24, @local}, 0x10)

13.262379549s ago: executing program 4 (id=6247):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r0}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r3, &(0x7f0000000040), 0x0, 0x0, 0x0)

13.262210189s ago: executing program 41 (id=6247):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r0}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r3, &(0x7f0000000040), 0x0, 0x0, 0x0)

2.847330803s ago: executing program 0 (id=6549):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000800)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x34d45c, &(0x7f0000000300), 0xff, 0x4c2, &(0x7f0000001cc0)="$eJzs3D1sW0UcAPD/c5Km9CuhlI+WAoGCqPhI2rTQDkh8SEgMgJBgKKNJ06rUbVATJFJFNKCqLEhQCTGwIBALgpmBiQkBExILA0wsqFKFsrR0Mnr2c3AcfzV14jT5/STn3dkX3/3fe2ffvbMdwLo1lP5JIrZExB8RMRARudoCQ+XN1bmZsX/nZsaSKBZf/SdJ/y2uzM2MVYom2XZzOdObbnLnk3imTr2T02dP5guF8TNZfmTq1Fsjk9NnHz9xKn98/Pj46dHDhw8e2H/oydEnOhLnrWlbd707sXvnC69ffGnsyMU3fv42qWp0dRw1e2CJ+mK2ap/UeqgDNawmW6vSSW/Top3YuXRIf0Spo/aV+v9A9JzfNv/YQDz/flcbByyrYrFYHG388GwRWMOS6HYLgO6ovNFfmft0LJ0DL5wHr32Xny1PgNK4r2a38qSnd36i2lczv+2kmYg4Mnvt8/QWi65DAAB03g/p+Oex8rhj4fgvF3dUlduWrQ0NZmsp2yPitojYERG3R5TK3hkRd11n/UM1+cXjn9ylJQXWpnT891S2tlW5ZfVWigz2ZLmtpfj7kmMnCuP7sn2yN/r60/z+us+eRGkRKH77qFH9Q1Xjv/SW1l8ZC2btuNTbv/B/juan8jcceObyexG7euvFny3gZWtYOyNi1xLrOPHI17sX3tMzn2odfxPN15naUvwi4uHy8Z+NmvgrkubrkyMbozC+b6RyViz2y68XXmlU/w3F3wHp8d9U9/yfj3+wkiqt104ueooNreq48OcHDec0QxFPxxLO/w3Jawsqfyc/NXWtGLEheXHR/WeqLnBX8qXt/nL8e/fU7//b4/89cXdEpCfxPRFxb0Tclx27+yPigYjY0yT+n5578M0m8Xf1+Mc35VeoVse/tF5fOQ7lE6Gygt8y0XPyx+8bVd/e69/BUmpvdk87r3/tNnCJew0AAABuKrmI2BJJbng+ncsND5c/w78jNuUKE5NTjx6bePv00fJ3BAajL1e50jWQ5SO7/jlYzpdm36OlbcS57Hrpgey68Sc9t5Tyw2MThaPdDh7Wuc0N+n/q755utw5Ydu2vo33217I2BFhxzfr/l4dWsCHAilv652g68AkcoKvq9OKNVWk/2ABrmHdxWL/q9f9zXWgHsPL6Gz4ybmgAa9x8J/+4jcJVX/eq/fImcPPxJg/rV+v+//Jy/f4V0D3tf4t/RRIbI6JFmSRZcE98FdH8mZNVENf1Jz5cxipmkw48T+QaPdR/vT8Q0ZVEfnU0o1Wi0lGnz57sbftXLaaL5/KFwu/f3Ujt3X1dAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6JT/AgAA//9bpN5P")
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0, 0x0, 0xffffffffffffffff}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x88f, 0x0, 0x0, &(0x7f0000000280))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$eJzs3d9rZFcdAPDvnWSyyW62SdUHLbRWW8kW3ZmksW3woVYQfSqI9X2NySSETDIhM2k3oWj2LxBEVPBJX3wR/AMEWfDFRxEK+qxQUUS3CvqgvTIzd5I4uZPM1tlMdvL5wN17zrk/vufM5ty5Pw53Ariyno2I1yLi/TRNX4iImay8kE1x2J6a67334O2V5pREmr7x1ySSrKyzrySb38g2m4yIr3454hvJ6bj1/YPN5Wq1spvly42tnXJ9/+D2xtbyemW9sr24uPDy0itLLy3ND6SdNyPi1S/+8Xvf/smXXv3FZ976w50/3/pms1rT2fKT7XhI42ctbDe9eG2ya4PdDxjsMmq2p9jJTPW3zb1HWB8AAHprnuN/KCI+GREvxEyMnX06CwAAADyG0s9Px7+TiDTfRI9yAAAA4DFSaI2BTQqlbCzAdBQKpVJ7DO9H4nqhWqs3Pr1W29tebY+VnY1iYW2jWpnPxgrPRjFp5hda6eP8i135xYh4MiK+OzPVypdWatXVYd/8AAAAgCviRtf1/z9m2tf/AAAAwIiZHXYFAAAAgEfO9T8AAACMPtf/AAAAMNK+8vrrzSnt/P716pv7e5u1N2+vVuqbpa29ldJKbXentF6rrbfe2bd13v6qtdrOZ2N77265Uak3yvX9gztbtb3txp2NmLyQBgEAAACnPPnx+79LIuLwc1OtqWli2JUCLsT4USrJ5jm9//dPtOfvXlClgAsx1sc6717LL3eeAI+38e6CHn0dGD3FYVcAGLrknOU9B+/8Opt/YrD1AQAABm/uY/nP/wvnbnl4/irApaYTw9XV9fw/nRlWRYAL13r+3+9AHicLMFKKfY0ABEbZ//38/1xp+lAVAgAABm66NSWFUnZ7bzoKhVIp4mbrZwGKydpGtTIfEU9ExG9nitea+YXWlsm51wwAAAAAAAAAAAAAAAAAAAAAAAAAQFuaJpECAAAAIy2i8Kfkl+13+c/NPD/dfX9gIvlX6yeBJyLirR++8f27y43G7kKz/G9H5Y0fZOUvDuMOBgAAANCtc53emv9z2LUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYNS89+Dtlc7Ux+pTg4r7ly9ExGxe/PGYbM0noxgR1/+exPiJ7ZKIGBtA/MN7EfHRvPhJs1pHIfPiD+JDOCd+zGafQl78GwOID1fZ/ebx57W8/leIZ1vz/P43HvE/+Q+q9/Evjo5/Yz36/80+Yzz1zs/KPePfi3hqPP/404mf9Ij/XJ/xv/61g4Ney9IfRcx1vn9aR7yTEY5T5cbWTrm+f3B7Y2t5vbJe2V5cXHh56ZWll5bmy2sb1Ur2b26M7zz98/fPav/13O+/JKtN7/Y/n7O/vO+k/7xz98GHO5nD0/FvPZcT/1c/ztY4Hb+QxflUlm4un+ukD9vpk5756W+eOav9q8ftLz7M//+tXjvtdqqjPN3vnw4A8AjU9w82l6vVyu7IJppX6ZegGhKXMPGtge4wTdO02adyFt2PiH72k8SAW1rIr89xoucRYNhHJgAAYNCOT/qHXRMAAAAAAAAAAAAAAAAAAAC4ui7iLWvdMY9fgZwM4hXaAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8d8AAAD//42Q0/o=")
r1 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r1, &(0x7f00000003c0)={&(0x7f0000000100)=@in6={0xa, 0x0, 0xffffffff, @private0, 0x5}, 0x80, &(0x7f0000000000)=[{&(0x7f00000000c0)="80", 0x1}], 0x1, &(0x7f0000000640)=[{0x10, 0x84, 0x8}, {0x18, 0x84, 0x0, 'b'}], 0x28}, 0x41)

1.950421752s ago: executing program 0 (id=6572):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000540)={[{@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc1})
chdir(&(0x7f0000000300)='./bus\x00')
r2 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000140)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28d7b07d54891881fe02c1203fe49696b9f26f2da4149683f065714f8a61d1f32c99064bbd27b2aa77459cff33a3a98350f1af9d51ed5bef3d63520d260804d0"}, 0x48, 0xfffffffffffffffd)
keyctl$revoke(0x3, r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000e80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, {{&(0x7f0000000640)=@file={0x1, './file0/../file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4004000}}], 0x2, 0x0)

1.871339962s ago: executing program 0 (id=6575):
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0)={[{@dioread_nolock}, {@minixdf}, {@nolazytime}, {}]}, 0x1, 0x783, &(0x7f0000002200)="$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")
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)

810.907171ms ago: executing program 1 (id=6605):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f0000000380)='./file0\x00', 0x80)

739.398921ms ago: executing program 1 (id=6609):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f0000000380)='./file0\x00', 0xc2)
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x0)

684.516631ms ago: executing program 6 (id=6614):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
getpid()
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000180)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="3c0000001000370400000000ffffffff00000000", @ANYRES32=r4, @ANYBLOB="0b120500000000001c0012800b00010069703667726500000c00028008000100", @ANYRES32=r4], 0x3c}}, 0x0)
sendmmsg$inet(r2, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0)

549.394121ms ago: executing program 1 (id=6617):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x4, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0xc00}}}]}, 0x38}}, 0x0)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000006080)=@newtfilter={0x74, 0x2c, 0xd2b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x7}, {}, {0x1, 0x9}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x10001, 0x2000000b, 0xfffffff6, 0x40, 0x3, {0x9f, 0x0, 0x101, 0x4, 0x7}, {0x1, 0x2, 0x81, 0x5, 0x3, 0x6cf212f}, 0x0, 0x101, 0x9000000}}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x80}, 0x800)
close(0x3)

505.010201ms ago: executing program 5 (id=6619):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f00000002c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r5, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)

468.882211ms ago: executing program 0 (id=6620):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x112, &(0x7f0000000140)={0x0, 0x63c1, 0x1, 0x3}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5, 0x0, 0x0})
io_uring_enter(r2, 0x47f6, 0xb277, 0x0, 0x0, 0x0)
r5 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x9, 0x0)
fcntl$setlease(r5, 0x400, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0)
close(r5)

418.060611ms ago: executing program 6 (id=6622):
r0 = gettid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0x1276, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r3, &(0x7f0000000200)=""/209, 0xd1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000080)={0x335})
tkill(r0, 0x7)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r3, 0x40505331, &(0x7f00000000c0)={{0x7, 0x7f}, {0x10, 0x9}, 0x8, 0x4, 0x80})

389.563861ms ago: executing program 1 (id=6623):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000100)=ANY=[], 0x32600)

333.992551ms ago: executing program 0 (id=6625):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})

333.854721ms ago: executing program 6 (id=6626):
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000340)=0xfffffffc, 0x0, 0x4)
io_uring_enter(0xffffffffffffffff, 0x1d69, 0x0, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000d40)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x2, &(0x7f00000000c0)={[{@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x7}}, {@dioread_nolock}]}, 0x3, 0x4ee, &(0x7f0000002680)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r1 = socket$nl_route(0x10, 0x3, 0x0)
flistxattr(r1, 0x0, 0x0)

303.358381ms ago: executing program 6 (id=6627):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001340)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$UHID_CREATE(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000050000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000004c000000050a01020000100000000000010020000c00024000000000000000010900010073797a310000000020000480140003006e657464657673696d300000000000000800014000000005"], 0xd4}}, 0x0)

294.930601ms ago: executing program 5 (id=6628):
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0}, 0x100020, 0x0, 0x0, 0x6, 0x3, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = syz_clone(0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0)
fcntl$lock(r0, 0x24, &(0x7f00000001c0)={0x2, 0x0, 0x7, 0x1, r4})

267.768141ms ago: executing program 6 (id=6629):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200e2f7ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xbb)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r4}, 0x10)
listen(r1, 0x3)

247.108881ms ago: executing program 5 (id=6630):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000b60000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r3=>0x0}, &(0x7f0000000280)=0x5)
setuid(r3)
setrlimit(0x40000000000008, &(0x7f0000000000))
r4 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r4, 0x1, 0x3c, &(0x7f00000001c0)={0x200000000000001}, 0x8)
sendto$inet6(r4, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @local}, 0x1c)

244.545681ms ago: executing program 6 (id=6631):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x5ac, 0x231, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0xfe, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x4}}}}}]}}]}}, 0x0)
socket$kcm(0x11, 0x2, 0x0)
socket$kcm(0x2, 0xa, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffebe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000b80)={0x0, 0x0, 0x10100, 0x0, 0x33a}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

212.114661ms ago: executing program 0 (id=6632):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4000, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
mq_open(&(0x7f000084dff0)='!selynuxselinux\x00', 0x6e93ebbbcc0884f2, 0x184, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

192.244451ms ago: executing program 5 (id=6642):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2, <r3=>0xffffffffffffffff}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r4, 0x0, 0x8000000000002}, 0x18)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r5 = dup3(r1, r0, 0x0)
recvmmsg$unix(r5, &(0x7f00000082c0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000480)=""/4081, 0xff1}], 0x1}}], 0x1, 0x0, 0x0)

191.739221ms ago: executing program 1 (id=6633):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xf1, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x2000)
read(r3, &(0x7f0000000200)=""/209, 0x128)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000080)={0x335, @time={0x80, 0xff}})
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r3, 0xc058534b, &(0x7f0000000180)={0x3, 0x2, 0xc, 0xcbd, 0x40, 0x1})
tkill(r2, 0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

190.739261ms ago: executing program 2 (id=6634):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
connect$unix(r2, &(0x7f0000fce000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
accept(r3, 0x0, 0x0)

130.41401ms ago: executing program 2 (id=6635):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r1)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0xffffff62, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r3)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

130.06118ms ago: executing program 2 (id=6636):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x77e5, 0x8, 0x0, 0x34a}, &(0x7f0000000340)=<r3=>0x0, &(0x7f00000002c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2c, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x42, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, {0x2}})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0)

127.77979ms ago: executing program 2 (id=6637):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r3}, 0x10)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r4)
getsockname$packet(r4, &(0x7f0000000380)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r5, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=@newqdisc={0x2c, 0x24, 0xf1d, 0x1, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x2}, {0xffff, 0xffff}, {0xc, 0x4}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x1, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x3}, {0x0, 0x2}, {0xfff1, 0x9}}}, 0x24}}, 0x0)

100.246741ms ago: executing program 5 (id=6638):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000380)='memory.stat\x00', 0x0, 0x0)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000001)
r3 = socket$netlink(0x10, 0x3, 0x14)
sendfile(r3, r2, 0x0, 0x17)

77.81409ms ago: executing program 2 (id=6639):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x2a, 0x2, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x1a3, 0x655c, 0x4, 0x40, 0x7fffffff, 0x7fffffff, 0x80, 0xffffffff, 0x1}}}}]}, 0x58}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001bc0)=@newtfilter={0xc4, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r2, {0xe}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_u32={{0x8}, {0x98, 0x2, [@TCA_U32_SEL={0x94, 0x5, {0x1, 0x2, 0x8, 0xff, 0x94, 0x9, 0x3, 0x1000, [{0x4, 0xffffffff, 0x5, 0x35b}, {0x6, 0x7fffffff, 0x4, 0x92d}, {0x6, 0x5, 0x8, 0x6}, {0x9, 0x5, 0x4, 0x5}, {0x9, 0x800, 0xbf2e, 0x2}, {0x7f59, 0x8, 0x18000, 0x8}, {0x9, 0x1, 0x4018, 0xe0}, {0x476a, 0x4, 0x5}]}}]}}]}, 0xc4}}, 0x4000)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

18.45243ms ago: executing program 2 (id=6640):
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000000000000000000085000000050000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008008000b703000000009c8c850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
pipe(&(0x7f00000008c0)={<r2=>0xffffffffffffffff})
read(r2, &(0x7f0000032440)=""/102364, 0x18fdc)

18.16156ms ago: executing program 5 (id=6641):
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
getpid()
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
fallocate(r0, 0x0, 0x0, 0x1001f0)

0s ago: executing program 1 (id=6643):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x10000)
r3 = eventfd2(0x0, 0x0)
io_setup(0x6, &(0x7f0000000140)=<r4=>0x0)
io_submit(r4, 0x2, &(0x7f00000000c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0xfffd, r2, 0x0, 0x0, 0x0, 0x0, 0x3, r3}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
shutdown(r2, 0x0)

kernel console output (not intermixed with test programs):

=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16771 comm="syz.2.5267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  217.725608][   T29] audit: type=1326 audit(1741167308.798:6413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16771 comm="syz.2.5267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  217.749159][   T29] audit: type=1326 audit(1741167308.798:6414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16771 comm="syz.2.5267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  217.772571][   T29] audit: type=1326 audit(1741167308.798:6415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16771 comm="syz.2.5267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  217.801483][T16774] loop7: detected capacity change from 0 to 128
[  217.873467][T16776] pim6reg: entered allmulticast mode
[  217.891083][T16776] pim6reg: left allmulticast mode
[  217.979578][T16748] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  217.989087][T16778] xfrm1: left allmulticast mode
[  218.019326][T16748] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  218.032918][T16748] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  218.046324][T16748] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  218.440804][T16817] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5288'.
[  218.503695][T16823] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  218.503825][T16822] IPVS: stopping master sync thread 16823 ...
[  218.649343][T16834] lo speed is unknown, defaulting to 1000
[  218.709093][T16834] lo speed is unknown, defaulting to 1000
[  218.837683][T16854] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5303'.
[  218.884868][T16854] sch_tbf: burst 88 is lower than device veth5 mtu (1514) !
[  219.118948][T16866] loop0: detected capacity change from 0 to 128
[  219.188813][T16870] netlink: 'syz.0.5311': attribute type 7 has an invalid length.
[  219.196713][T16870] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5311'.
[  219.269411][T16880] vcan0: entered allmulticast mode
[  219.274920][T16880] vcan0: left allmulticast mode
[  219.360275][T16886] program syz.7.5319 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  219.370480][T16887] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5318'.
[  219.403687][T16887] sch_tbf: burst 88 is lower than device veth7 mtu (1514) !
[  219.423647][T16889] loop7: detected capacity change from 0 to 256
[  219.725206][T16912] netlink: 312 bytes leftover after parsing attributes in process `syz.7.5330'.
[  219.809044][T16911] ref_ctr increment failed for inode: 0x1c5 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff888104410b00
[  219.829435][T16910] uprobe: syz.0.5331:16910 failed to unregister, leaking uprobe
[  219.899320][T16923] loop7: detected capacity change from 0 to 2048
[  220.063452][T16938] loop7: detected capacity change from 0 to 512
[  220.070775][T16938] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  220.084631][T16938] EXT4-fs (loop7): 1 truncate cleaned up
[  220.092664][T16938] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.111168][T16942] loop0: detected capacity change from 0 to 512
[  220.126135][T16942] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  220.136852][T16942] EXT4-fs (loop0): orphan cleanup on readonly fs
[  220.145032][T16942] EXT4-fs warning (device loop0): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  220.163284][T16942] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  220.170888][T16942] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5344: bg 0: block 40: padding at end of block bitmap is not set
[  220.186001][T16942] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  220.197226][T16942] EXT4-fs (loop0): 1 truncate cleaned up
[  220.203450][T16942] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  220.722226][T17059] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5346'.
[  220.914894][ T7628] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.947222][T17082] netlink: 'syz.6.5355': attribute type 4 has an invalid length.
[  220.963392][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.979692][T17084] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5354'.
[  220.993869][T17086] netlink: 'syz.6.5357': attribute type 10 has an invalid length.
[  221.001799][T17086] netlink: 2 bytes leftover after parsing attributes in process `syz.6.5357'.
[  221.035678][T17086] team0: entered promiscuous mode
[  221.040764][T17086] team_slave_0: entered promiscuous mode
[  221.046580][T17086] team_slave_1: entered promiscuous mode
[  221.065653][T17086] bridge0: port 3(team0) entered blocking state
[  221.072056][T17086] bridge0: port 3(team0) entered disabled state
[  221.078680][T17086] team0: entered allmulticast mode
[  221.083829][T17086] team_slave_0: entered allmulticast mode
[  221.089687][T17086] team_slave_1: entered allmulticast mode
[  221.097176][T17086] bridge0: port 3(team0) entered blocking state
[  221.103478][T17086] bridge0: port 3(team0) entered forwarding state
[  221.263241][T17101] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.330166][T17101] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.420785][T17101] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.499967][T17101] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.529051][T17117] pim6reg1: entered promiscuous mode
[  221.534438][T17117] pim6reg1: entered allmulticast mode
[  221.569947][T17101] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.581866][T17101] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.594010][T17101] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.608583][T17101] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  221.689667][T17121] loop0: detected capacity change from 0 to 8192
[  221.700644][T17123] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5372'.
[  221.709756][T17123] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5372'.
[  221.723719][T17125] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5373'.
[  221.792648][T17132] loop0: detected capacity change from 0 to 128
[  221.799571][T17132] vfat: Unknown parameter '0xffffffffffffffff����������'
[  222.013754][T17157] loop6: detected capacity change from 0 to 512
[  222.035848][T17157] EXT4-fs (loop6): orphan cleanup on readonly fs
[  222.042817][T17157] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.5387: bg 0: block 248: padding at end of block bitmap is not set
[  222.057570][T17157] EXT4-fs error (device loop6): ext4_acquire_dquot:6927: comm syz.6.5387: Failed to acquire dquot type 1
[  222.074722][T17152] loop0: detected capacity change from 0 to 8192
[  222.089813][T17152] bio_check_eod: 27364 callbacks suppressed
[  222.089830][T17152] �@: attempt to access beyond end of device
[  222.089830][T17152] loop0: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  222.108935][T17157] EXT4-fs (loop6): 1 truncate cleaned up
[  222.114930][T17152] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[  222.117939][T17157] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  222.122802][T17152] FAT-fs (loop0): Filesystem has been set read-only
[  222.145776][T17152] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[  222.159376][T17152] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[  222.168051][T17157] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  222.220146][T17157] EXT4-fs error (device loop6): ext4_acquire_dquot:6927: comm syz.6.5387: Failed to acquire dquot type 1
[  222.245734][T17157] EXT4-fs warning (device loop6): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  222.288687][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.333319][T17171] loop0: detected capacity change from 0 to 2048
[  222.344604][T17179] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5395'.
[  222.366255][T17182] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5397'.
[  222.388141][T17171]  loop0: p3 p4 < >
[  222.404060][   T29] kauditd_printk_skb: 178 callbacks suppressed
[  222.404077][   T29] audit: type=1326 audit(1741167313.588:6589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.458694][   T29] audit: type=1326 audit(1741167313.628:6590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.482386][   T29] audit: type=1326 audit(1741167313.628:6591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.505965][   T29] audit: type=1326 audit(1741167313.628:6592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.529590][   T29] audit: type=1326 audit(1741167313.628:6593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.553167][   T29] audit: type=1326 audit(1741167313.628:6594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.576696][   T29] audit: type=1326 audit(1741167313.628:6595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.600330][   T29] audit: type=1326 audit(1741167313.628:6596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.623942][   T29] audit: type=1326 audit(1741167313.628:6597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.647490][   T29] audit: type=1326 audit(1741167313.628:6598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17187 comm="syz.2.5400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd58f9dd169 code=0x7ffc0000
[  222.766992][T17206] bridge0: entered allmulticast mode
[  222.821363][T17208] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5407'.
[  222.869089][T17212] SELinux: failed to load policy
[  222.894251][T17214] loop0: detected capacity change from 0 to 128
[  222.951646][ T3711] kworker/u8:19: attempt to access beyond end of device
[  222.951646][ T3711] loop0: rw=1, sector=145, nr_sectors = 488 limit=128
[  222.966358][ T3711] kworker/u8:19: attempt to access beyond end of device
[  222.966358][ T3711] loop0: rw=1, sector=641, nr_sectors = 8 limit=128
[  223.000040][T17218] bridge0: port 1(vlan0) entered blocking state
[  223.006411][T17218] bridge0: port 1(vlan0) entered disabled state
[  223.007885][T17214] syz.0.5411: attempt to access beyond end of device
[  223.007885][T17214] loop0: rw=524288, sector=145, nr_sectors = 488 limit=128
[  223.012884][T17218] vlan0: entered allmulticast mode
[  223.030086][T17214] syz.0.5411: attempt to access beyond end of device
[  223.030086][T17214] loop0: rw=524288, sector=641, nr_sectors = 8 limit=128
[  223.031703][T17218] bridge0: entered allmulticast mode
[  223.077907][T17218] vlan0: left allmulticast mode
[  223.082814][T17218] bridge0: left allmulticast mode
[  223.114416][T17220] loop7: detected capacity change from 0 to 2048
[  223.137681][T17220]  loop7: p3 p4 < >
[  223.390024][T17248] loop7: detected capacity change from 0 to 8192
[  223.400197][T17248] �@: attempt to access beyond end of device
[  223.400197][T17248] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  223.427821][T17248] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1)
[  223.435725][T17248] FAT-fs (loop7): Filesystem has been set read-only
[  223.442854][T17248] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1)
[  223.453616][T17248] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1)
[  223.707490][T17274] bridge0: port 3(vlan3) entered blocking state
[  223.713864][T17274] bridge0: port 3(vlan3) entered disabled state
[  223.720558][T17274] vlan3: entered allmulticast mode
[  223.725752][T17274] bridge0: entered allmulticast mode
[  223.731738][T17274] vlan3: left allmulticast mode
[  223.736697][T17274] bridge0: left allmulticast mode
[  223.790602][T17281] loop4: detected capacity change from 0 to 2048
[  223.857663][T17291] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  223.867737][T17281]  loop4: p3 p4 < >
[  223.889509][T17291] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  224.134957][T17312] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.5448'.
[  224.169067][T17315] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  224.286142][T17328] IPVS: stopping master sync thread 17332 ...
[  224.289441][T17332] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[  224.320195][T17336] bridge0: port 3(team0) entered disabled state
[  224.326708][T17336] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.334035][T17336] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.342780][T17336] bridge0: entered allmulticast mode
[  224.359852][T17336] team0: left allmulticast mode
[  224.364823][T17336] team_slave_0: left allmulticast mode
[  224.370619][T17336] team_slave_1: left allmulticast mode
[  224.376559][T17336] bridge0: port 3(team0) entered disabled state
[  224.385607][T17336] bridge_slave_1: left allmulticast mode
[  224.391456][T17336] bridge_slave_1: left promiscuous mode
[  224.397448][T17336] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.406005][T17336] bridge_slave_0: left allmulticast mode
[  224.411749][T17336] bridge_slave_0: left promiscuous mode
[  224.417835][T17336] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.446617][T17342] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  224.575821][T17349] lo speed is unknown, defaulting to 1000
[  224.606524][T17349] lo speed is unknown, defaulting to 1000
[  225.040118][T17389] vlan2: entered allmulticast mode
[  225.189855][T17397] loop4: detected capacity change from 0 to 512
[  225.232619][T17397] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.5485: casefold flag without casefold feature
[  225.246570][T17397] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.5485: couldn't read orphan inode 15 (err -117)
[  225.260096][T17397] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.276609][T17404] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  225.285428][T17404] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  225.294320][T17404] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  225.303117][T17404] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  225.323841][T17404] vxlan0: entered promiscuous mode
[  225.368595][T15846] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.766150][T17438] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  226.129801][T17450] __nla_validate_parse: 3 callbacks suppressed
[  226.129815][T17450] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.5506'.
[  226.146277][T17449] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.5506'.
[  226.265818][T17458] lo speed is unknown, defaulting to 1000
[  226.355452][T17458] lo speed is unknown, defaulting to 1000
[  226.610598][T17480] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  226.643769][T17482] vlan2: entered allmulticast mode
[  226.649073][T17482] bridge_slave_0: entered allmulticast mode
[  226.691662][T17486] loop7: detected capacity change from 0 to 1024
[  226.699868][T17482] bridge_slave_0: left allmulticast mode
[  226.726286][T17486] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.815581][T17486] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2793: inode #12: comm syz.7.5522: corrupted in-inode xattr: bad magic number in in-inode xattr
[  226.842369][T17493] lo speed is unknown, defaulting to 1000
[  226.947144][ T7628] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.015899][T17493] lo speed is unknown, defaulting to 1000
[  227.146533][T17501] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5527'.
[  227.388645][T17530] loop7: detected capacity change from 0 to 1024
[  227.398086][T17530] EXT4-fs: Ignoring removed bh option
[  227.407483][T17530] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.421035][T17534] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.5538'.
[  227.447481][T17527] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.5538'.
[  227.460083][T17530] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4115: comm syz.7.5540: Allocating blocks 497-513 which overlap fs metadata
[  227.478158][T17536] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5541'.
[  227.495008][   T29] kauditd_printk_skb: 288 callbacks suppressed
[  227.495092][   T29] audit: type=1400 audit(1741167318.678:6887): avc:  denied  { read write } for  pid=17529 comm="syz.7.5540" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  227.503508][T17530] EXT4-fs (loop7): Remounting filesystem read-only
[  227.526298][   T29] audit: type=1400 audit(1741167318.688:6888): avc:  denied  { open } for  pid=17529 comm="syz.7.5540" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  227.566573][T17530] EXT4-fs (loop7): pa ffff8881004cbc40: logic 256, phys. 385, len 8
[  227.634465][ T7628] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.656151][T17546] loop7: detected capacity change from 0 to 512
[  227.663256][T17546] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  227.692889][T17546] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.706861][   T29] audit: type=1326 audit(1741167318.898:6889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17552 comm="syz.6.5547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  227.707246][T17546] ext4 filesystem being mounted at /657/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.741579][T17553] loop6: detected capacity change from 0 to 1024
[  227.748677][   T29] audit: type=1326 audit(1741167318.918:6890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17552 comm="syz.6.5547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  227.772260][   T29] audit: type=1326 audit(1741167318.918:6891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17552 comm="syz.6.5547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  227.793392][T17546] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, 
[  227.795823][   T29] audit: type=1326 audit(1741167318.928:6892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17552 comm="syz.6.5547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  227.795801][T17546] block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  227.804106][   T29] audit: type=1326 audit(1741167318.928:6893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17552 comm="syz.6.5547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  227.859656][   T29] audit: type=1326 audit(1741167318.928:6894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17552 comm="syz.6.5547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  227.861596][T17546] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 9 with max blocks 1 with error 28
[  227.883175][   T29] audit: type=1326 audit(1741167318.928:6895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17552 comm="syz.6.5547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd99361d1a3 code=0x7ffc0000
[  227.883232][   T29] audit: type=1326 audit(1741167318.928:6896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17552 comm="syz.6.5547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd99361bc1f code=0x7ffc0000
[  227.942171][T17546] EXT4-fs (loop7): This should not happen!! Data will be lost
[  227.942171][T17546] 
[  227.951977][T17546] EXT4-fs (loop7): Total free blocks count 0
[  227.958143][T17546] EXT4-fs (loop7): Free/Dirty block details
[  227.964114][T17546] EXT4-fs (loop7): free_blocks=39626
[  227.969455][T17546] EXT4-fs (loop7): dirty_blocks=1
[  227.974512][T17546] EXT4-fs (loop7): Block reservation details
[  227.980536][T17546] EXT4-fs (loop7): i_reserved_data_blocks=1
[  227.988037][T17553] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.027833][T17553] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2793: inode #12: comm syz.6.5547: corrupted in-inode xattr: bad magic number in in-inode xattr
[  228.088531][ T7628] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.101436][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.153716][T17562] loop7: detected capacity change from 0 to 128
[  228.201765][T17562] +}[@: attempt to access beyond end of device
[  228.201765][T17562] loop7: rw=2049, sector=145, nr_sectors = 896 limit=128
[  228.234991][T17562] +}[@: attempt to access beyond end of device
[  228.234991][T17562] loop7: rw=524288, sector=145, nr_sectors = 224 limit=128
[  228.262717][T17562] +}[@: attempt to access beyond end of device
[  228.262717][T17562] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.277365][T17562] +}[@: attempt to access beyond end of device
[  228.277365][T17562] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.290630][T17562] +}[@: attempt to access beyond end of device
[  228.290630][T17562] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.303618][T17562] +}[@: attempt to access beyond end of device
[  228.303618][T17562] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.316901][T17562] +}[@: attempt to access beyond end of device
[  228.316901][T17562] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.363616][T17562] +}[@: attempt to access beyond end of device
[  228.363616][T17562] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.378346][T17562] +}[@: attempt to access beyond end of device
[  228.378346][T17562] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.391155][T17562] +}[@: attempt to access beyond end of device
[  228.391155][T17562] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.698380][T17584] team0: left promiscuous mode
[  228.703265][T17584] team_slave_0: left promiscuous mode
[  228.708892][T17584] team_slave_1: left promiscuous mode
[  228.852702][T17586] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5559'.
[  228.905432][T17584] xfrm1: left promiscuous mode
[  228.971554][T17589] ip6gre1: entered allmulticast mode
[  229.016206][T17593] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  229.024942][T17586] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5559'.
[  229.078731][T17597] xt_hashlimit: size too large, truncated to 1048576
[  229.133721][T17600] vlan0: entered allmulticast mode
[  229.139371][T17600] $H�: entered allmulticast mode
[  229.144572][T17600] 
@�: entered allmulticast mode
[  229.149679][T17600] bond_slave_1: entered allmulticast mode
[  229.217088][T17606] 9pnet: p9_errstr2errno: server reported unknown error 
[  229.225189][T17600] $H�: left allmulticast mode
[  229.230127][T17600] 
@�: left allmulticast mode
[  229.234991][T17600] bond_slave_1: left allmulticast mode
[  229.309641][T17608] lo speed is unknown, defaulting to 1000
[  229.361315][T17608] lo speed is unknown, defaulting to 1000
[  229.430495][T17618] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5571'.
[  229.464185][T17623] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5573'.
[  229.694452][T17650] loop4: detected capacity change from 0 to 128
[  230.359443][T17666] lo speed is unknown, defaulting to 1000
[  230.391969][T17668] team0 (unregistering): Port device team_slave_0 removed
[  230.430015][T17668] team0 (unregistering): Port device team_slave_1 removed
[  230.442108][T17666] lo speed is unknown, defaulting to 1000
[  230.841711][T17688] loop4: detected capacity change from 0 to 2048
[  230.858656][T17688] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  230.871184][T17688] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  231.197396][T17699] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5600: bg 0: block 345: padding at end of block bitmap is not set
[  231.220274][T17699] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  231.232805][T17699] EXT4-fs (loop4): This should not happen!! Data will be lost
[  231.232805][T17699] 
[  231.277901][ T3712] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  231.290617][ T3712] EXT4-fs (loop4): This should not happen!! Data will be lost
[  231.290617][ T3712] 
[  231.341228][ T3739] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  231.354471][ T3739] EXT4-fs (loop4): This should not happen!! Data will be lost
[  231.354471][ T3739] 
[  231.364317][ T3739] EXT4-fs (loop4): Total free blocks count 0
[  231.370378][ T3739] EXT4-fs (loop4): Free/Dirty block details
[  231.370451][ T3739] EXT4-fs (loop4): free_blocks=0
[  231.406259][T17724] xt_hashlimit: size too large, truncated to 1048576
[  231.544087][T17734] vlan0: entered allmulticast mode
[  231.550631][T17734] $H�: entered allmulticast mode
[  231.578446][T17733] loop6: detected capacity change from 0 to 128
[  231.595575][T17734] $H�: left allmulticast mode
[  231.648748][T17740] ip6gre1: entered allmulticast mode
[  231.720621][T17747] __nla_validate_parse: 2 callbacks suppressed
[  231.720641][T17747] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5624'.
[  231.784179][T17747] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5624'.
[  231.949027][T17754] SELinux: failed to load policy
[  232.078593][T17768] loop7: detected capacity change from 0 to 128
[  232.441027][T17787] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5640'.
[  232.475689][T17787] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  232.592800][   T29] kauditd_printk_skb: 157 callbacks suppressed
[  232.592815][   T29] audit: type=1326 audit(1741167323.778:7054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  232.645767][   T29] audit: type=1326 audit(1741167323.818:7055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  232.669339][   T29] audit: type=1326 audit(1741167323.818:7056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  232.692850][   T29] audit: type=1326 audit(1741167323.818:7057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  232.716470][   T29] audit: type=1326 audit(1741167323.818:7058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  232.740097][   T29] audit: type=1326 audit(1741167323.818:7059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  232.763957][   T29] audit: type=1326 audit(1741167323.818:7060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  232.787607][   T29] audit: type=1326 audit(1741167323.818:7061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  232.811136][   T29] audit: type=1326 audit(1741167323.818:7062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd99361d1a3 code=0x7ffc0000
[  232.834529][   T29] audit: type=1326 audit(1741167323.818:7063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17795 comm="syz.6.5644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd99361d169 code=0x7ffc0000
[  233.053776][T17811] loop6: detected capacity change from 0 to 8192
[  233.061674][T17811] vfat: Unknown parameter '�'
[  233.064771][T17816] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5654'.
[  233.147437][T17816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5654'.
[  233.172914][T17828] netlink: 'syz.4.5658': attribute type 1 has an invalid length.
[  233.233555][T17836] bond_slave_1: mtu less than device minimum
[  233.370720][T17852] loop4: detected capacity change from 0 to 2048
[  233.444634][T17851] syzkaller0: entered promiscuous mode
[  233.450215][T17851] syzkaller0: entered allmulticast mode
[  233.483949][T17852] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002]
[  233.492778][T17852] System zones: 0-4
[  233.515505][T17852] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.529928][T17852] ext4 filesystem being mounted at /145/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  233.559375][T15846] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.594229][T17859] ip6_vti0: mtu greater than device maximum
[  233.694175][T17868] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5675'.
[  233.760310][T17874] loop6: detected capacity change from 0 to 512
[  233.770883][T17874] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #13: comm syz.6.5677: attempt to clear invalid blocks 2 len 1
[  233.784278][T17874] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters
[  233.801536][T17874] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.5677: invalid indirect mapped block 1819239214 (level 0)
[  233.819148][T17874] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.5677: invalid indirect mapped block 1819239214 (level 1)
[  233.833765][T17874] EXT4-fs (loop6): 1 truncate cleaned up
[  233.841581][T17874] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.868871][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.917581][T17877] netlink: 'syz.6.5678': attribute type 10 has an invalid length.
[  233.918065][T17879] loop4: detected capacity change from 0 to 128
[  233.939454][T17877] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  233.979364][T17879] bio_check_eod: 61310 callbacks suppressed
[  233.979381][T17879] +}[@: attempt to access beyond end of device
[  233.979381][T17879] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128
[  234.019964][T17879] +}[@: attempt to access beyond end of device
[  234.019964][T17879] loop4: rw=524288, sector=145, nr_sectors = 224 limit=128
[  234.041785][T17879] +}[@: attempt to access beyond end of device
[  234.041785][T17879] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  234.057561][T17879] +}[@: attempt to access beyond end of device
[  234.057561][T17879] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  234.070898][T17879] +}[@: attempt to access beyond end of device
[  234.070898][T17879] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  234.092026][T17879] +}[@: attempt to access beyond end of device
[  234.092026][T17879] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  234.104943][T17879] +}[@: attempt to access beyond end of device
[  234.104943][T17879] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  234.117976][T17879] +}[@: attempt to access beyond end of device
[  234.117976][T17879] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  234.130836][T17879] +}[@: attempt to access beyond end of device
[  234.130836][T17879] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  234.143669][T17879] +}[@: attempt to access beyond end of device
[  234.143669][T17879] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  234.220635][T17898] netlink: 'syz.6.5687': attribute type 4 has an invalid length.
[  234.415706][T17903] lo speed is unknown, defaulting to 1000
[  234.460879][T17904] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3)
[  234.467455][T17904] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  234.475087][T17904] vhci_hcd vhci_hcd.0: Device attached
[  234.513904][T17903] lo speed is unknown, defaulting to 1000
[  234.700127][T17922] netlink: 'syz.0.5695': attribute type 1 has an invalid length.
[  234.708118][T17922] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5695'.
[  234.728871][ T2963] usb 15-1: new low-speed USB device number 2 using vhci_hcd
[  234.756622][T17926] loop6: detected capacity change from 0 to 512
[  234.775230][T17928] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5698'.
[  234.830450][T17930] bond0: (slave bridge_slave_1): Releasing backup interface
[  234.842311][T17930] bond0: (slave bond_slave_0): Releasing backup interface
[  234.870968][T17930] bond0: (slave bond_slave_1): Releasing backup interface
[  234.882882][T17930] team_slave_0: left promiscuous mode
[  234.896009][T17930] team0: Port device team_slave_0 removed
[  234.906044][T17930] team_slave_1: left promiscuous mode
[  234.917325][T17930] team0: Port device team_slave_1 removed
[  234.930870][T17930] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  234.938432][T17930] batman_adv: batadv0: Removing interface: batadv_slave_0
[  234.949967][T17930] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  234.957530][T17930] batman_adv: batadv0: Removing interface: batadv_slave_1
[  235.030373][T17946] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5705'.
[  235.063233][T17906] vhci_hcd: connection reset by peer
[  235.071990][ T3712] vhci_hcd: stop threads
[  235.076326][ T3712] vhci_hcd: release socket
[  235.080777][ T3712] vhci_hcd: disconnect device
[  235.109441][T17959] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5710'.
[  235.464235][T17988] loop4: detected capacity change from 0 to 8192
[  235.470840][T17988] vfat: Unknown parameter '�'
[  235.787469][T18018] syzkaller0: entered promiscuous mode
[  235.793006][T18018] syzkaller0: entered allmulticast mode
[  236.019740][T18028] cgroup: cgroup_addrm_files: failed to add max, err=-12
[  236.911998][T18068] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5752'.
[  236.921115][T18068] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5752'.
[  236.954176][T18071] netlink: 360 bytes leftover after parsing attributes in process `syz.6.5753'.
[  236.964929][T18071] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5753'.
[  236.981808][T18073] loop7: detected capacity change from 0 to 1024
[  236.994099][T18073] EXT4-fs error (device loop7): ext4_acquire_dquot:6927: comm syz.7.5754: Failed to acquire dquot type 0
[  237.008119][T18073] EXT4-fs (loop7): 1 truncate cleaned up
[  237.014367][T18073] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.058503][T18078] lo speed is unknown, defaulting to 1000
[  237.094360][T18078] lo speed is unknown, defaulting to 1000
[  237.157670][ T7628] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.177652][T18087] loop7: detected capacity change from 0 to 128
[  237.188298][T18087] FAT-fs (loop7): Directory bread(block 32) failed
[  237.194862][T18087] FAT-fs (loop7): Directory bread(block 33) failed
[  237.201685][T18087] FAT-fs (loop7): Directory bread(block 34) failed
[  237.217608][T18087] FAT-fs (loop7): Directory bread(block 35) failed
[  237.224292][T18087] FAT-fs (loop7): Directory bread(block 36) failed
[  237.231155][T18087] FAT-fs (loop7): Directory bread(block 37) failed
[  237.265401][T18087] FAT-fs (loop7): Directory bread(block 38) failed
[  237.276221][T18087] FAT-fs (loop7): Directory bread(block 39) failed
[  237.299644][T18087] FAT-fs (loop7): Directory bread(block 40) failed
[  237.316385][T18087] FAT-fs (loop7): Directory bread(block 41) failed
[  237.358781][T18096] xt_CT: No such helper "pptp"
[  237.458355][T18087] netlink: 'syz.7.5760': attribute type 4 has an invalid length.
[  237.505442][ T3375] lo speed is unknown, defaulting to 1000
[  237.512901][ T3375] lo speed is unknown, defaulting to 1000
[  237.602806][T18114] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5771'.
[  237.615478][T18114] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  237.622950][T18114] batman_adv: batadv0: Removing interface: batadv_slave_0
[  237.638073][   T29] kauditd_printk_skb: 98 callbacks suppressed
[  237.638092][   T29] audit: type=1326 audit(1741167328.828:7160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  237.667948][   T29] audit: type=1326 audit(1741167328.828:7161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  237.719147][T18114] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  237.726720][T18114] batman_adv: batadv0: Removing interface: batadv_slave_1
[  237.734975][   T29] audit: type=1326 audit(1741167328.878:7162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  237.758732][   T29] audit: type=1326 audit(1741167328.878:7163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  237.782263][   T29] audit: type=1326 audit(1741167328.878:7164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  237.805897][   T29] audit: type=1326 audit(1741167328.878:7165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  237.829543][   T29] audit: type=1326 audit(1741167328.878:7166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  237.853166][   T29] audit: type=1326 audit(1741167328.878:7167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  237.876715][   T29] audit: type=1326 audit(1741167328.878:7168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  237.900358][   T29] audit: type=1326 audit(1741167328.878:7169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18115 comm="syz.7.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa022b6d169 code=0x7ffc0000
[  238.061913][T18133] xt_CT: No such helper "pptp"
[  238.136198][T18137] tipc: Started in network mode
[  238.141140][T18137] tipc: Node identity 6a94c0b78d78, cluster identity 4711
[  238.148493][T18137] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  238.209423][T18131] tipc: Resetting bearer <eth:syzkaller0>
[  238.241062][T18131] tipc: Disabling bearer <eth:syzkaller0>
[  238.503310][T18167] pim6reg1: entered promiscuous mode
[  238.508783][T18167] pim6reg1: entered allmulticast mode
[  238.719648][T18184] loop6: detected capacity change from 0 to 128
[  238.731709][T18184] FAT-fs (loop6): Directory bread(block 32) failed
[  238.761458][T18184] FAT-fs (loop6): Directory bread(block 33) failed
[  238.774979][T18184] FAT-fs (loop6): Directory bread(block 34) failed
[  238.781645][T18184] FAT-fs (loop6): Directory bread(block 35) failed
[  238.789297][T18184] FAT-fs (loop6): Directory bread(block 36) failed
[  238.797836][T18184] FAT-fs (loop6): Directory bread(block 37) failed
[  238.804482][T18184] FAT-fs (loop6): Directory bread(block 38) failed
[  238.811362][T18184] FAT-fs (loop6): Directory bread(block 39) failed
[  238.818060][T18184] FAT-fs (loop6): Directory bread(block 40) failed
[  238.824594][T18184] FAT-fs (loop6): Directory bread(block 41) failed
[  238.855844][T18184] netlink: 'syz.6.5799': attribute type 4 has an invalid length.
[  238.898721][T18198] netlink: 1196 bytes leftover after parsing attributes in process `syz.0.5808'.
[  238.929822][T18203] loop6: detected capacity change from 0 to 2048
[  238.947508][T18203] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  239.059252][T18218] loop4: detected capacity change from 0 to 1024
[  239.071697][T18220] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  239.080008][T18220] tipc: Enabled bearer <udp:syz1>, priority 10
[  239.096257][T18218] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a840e01c, mo2=0002]
[  239.104432][T18218] System zones: 0-1, 3-12
[  239.112828][T18218] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  239.215049][T15846] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.238867][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.288584][T18233] loop4: detected capacity change from 0 to 128
[  239.299541][T18233] FAT-fs (loop4): Directory bread(block 32) failed
[  239.310860][T18233] FAT-fs (loop4): Directory bread(block 33) failed
[  239.317682][T18233] FAT-fs (loop4): Directory bread(block 34) failed
[  239.324342][T18233] FAT-fs (loop4): Directory bread(block 35) failed
[  239.331126][T18233] FAT-fs (loop4): Directory bread(block 36) failed
[  239.337923][T18233] FAT-fs (loop4): Directory bread(block 37) failed
[  239.344625][T18233] FAT-fs (loop4): Directory bread(block 38) failed
[  239.351445][T18233] FAT-fs (loop4): Directory bread(block 39) failed
[  239.358118][T18233] FAT-fs (loop4): Directory bread(block 40) failed
[  239.364709][T18233] FAT-fs (loop4): Directory bread(block 41) failed
[  239.396235][T18233] netlink: 'syz.4.5818': attribute type 4 has an invalid length.
[  239.478345][T18246] xt_hashlimit: max too large, truncated to 1048576
[  239.745405][ T2963] usb 15-1: enqueue for inactive port 0
[  239.751175][ T2963] usb 15-1: enqueue for inactive port 0
[  239.827390][ T2963] vhci_hcd: vhci_device speed not set
[  239.957584][T18264] $H�: (slave 
2
@�): Releasing backup interface
[  239.979347][T18264] $H�: (slave bond_slave_1): Releasing backup interface
[  239.990971][T18264] batman_adv: batadv0: Removing interface: batadv_slave_0
[  239.999460][T18264] batman_adv: batadv0: Removing interface: batadv_slave_1
[  240.012640][T18264] batman_adv: batadv0: Removing interface: macsec0
[  240.327229][T18273] loop7: detected capacity change from 0 to 512
[  240.333789][T18273] EXT4-fs: test_dummy_encryption option not supported
[  240.489765][T18279] loop7: detected capacity change from 0 to 128
[  241.021927][T18339] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5 sclass=netlink_route_socket pid=18339 comm=syz.0.5865
[  241.122772][T18342] xt_CT: No such helper "pptp"
[  241.232266][T18354] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  241.416820][T18374] lo speed is unknown, defaulting to 1000
[  241.457471][T18374] lo speed is unknown, defaulting to 1000
[  241.657607][T18390] xt_hashlimit: max too large, truncated to 1048576
[  241.798808][T18394] loop7: detected capacity change from 0 to 2048
[  241.827151][T18394] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.863984][ T7628] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  241.898224][T15050] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.060176][ T3711] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.108675][ T3711] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.157576][ T3711] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.190218][T18402] lo speed is unknown, defaulting to 1000
[  242.198313][ T3711] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.224258][T18402] lo speed is unknown, defaulting to 1000
[  242.378134][ T3711] bond0: left allmulticast mode
[  242.383133][ T3711] bond0: left promiscuous mode
[  242.687347][ T3711] $H� (unregistering): Released all slaves
[  242.690861][ T3711] bond1 (unregistering): Released all slaves
[  242.704305][ T3711] bond2 (unregistering): Released all slaves
[  242.712331][ T3711] bond0 (unregistering): Released all slaves
[  242.760686][ T3711] tipc: Disabling bearer <udp:s>
[  242.765815][ T3711] tipc: Disabling bearer <eth:team0>
[  242.767902][ T3711] tipc: Disabling bearer <udp:syz1>
[  242.767925][ T3711] tipc: Left network mode
[  242.771945][T18402] chnl_net:caif_netlink_parms(): no params data found
[  242.798910][ T3711] IPVS: stopping backup sync thread 10391 ...
[  242.861019][   T29] kauditd_printk_skb: 86 callbacks suppressed
[  242.861038][   T29] audit: type=1326 audit(1741167334.048:7256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  242.867215][   T29] audit: type=1326 audit(1741167334.048:7257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  242.867288][   T29] audit: type=1326 audit(1741167334.048:7258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  242.867319][   T29] audit: type=1326 audit(1741167334.048:7259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  242.867345][   T29] audit: type=1326 audit(1741167334.048:7260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  242.867421][   T29] audit: type=1326 audit(1741167334.048:7261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  242.867454][   T29] audit: type=1326 audit(1741167334.048:7262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  242.870538][   T29] audit: type=1326 audit(1741167334.058:7263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  243.055706][   T29] audit: type=1326 audit(1741167334.058:7264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  243.079367][   T29] audit: type=1326 audit(1741167334.058:7265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18423 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  243.106989][ T3711] hsr_slave_0: left promiscuous mode
[  243.107380][ T3711] hsr_slave_1: left promiscuous mode
[  243.113677][ T3711] veth0_macvtap: left promiscuous mode
[  243.213450][ T3712] smc: removing ib device s
z1
[  243.222347][T18402] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.222382][T18402] bridge0: port 1(bridge_slave_0) entered disabled state
[  243.222487][T18402] bridge_slave_0: entered allmulticast mode
[  243.222998][T18402] bridge_slave_0: entered promiscuous mode
[  243.224006][T18402] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.256443][T18402] bridge0: port 2(bridge_slave_1) entered disabled state
[  243.256690][T18402] bridge_slave_1: entered allmulticast mode
[  243.257416][T18402] bridge_slave_1: entered promiscuous mode
[  243.295835][T18402] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  243.297419][T18402] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  243.363629][T18402] team0: Port device team_slave_0 added
[  243.377713][T18402] team0: Port device team_slave_1 added
[  243.434264][T18440] lo speed is unknown, defaulting to 1000
[  243.434840][T18402] batman_adv: batadv0: Adding interface: batadv_slave_0
[  243.447064][T18402] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  243.473037][T18402] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  243.517825][T18402] batman_adv: batadv0: Adding interface: batadv_slave_1
[  243.524795][T18402] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  243.550786][T18402] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  243.612927][T18402] hsr_slave_0: entered promiscuous mode
[  243.619054][T18402] hsr_slave_1: entered promiscuous mode
[  243.625019][T18402] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  243.641045][T18402] Cannot create hsr debugfs directory
[  243.649231][ T3711] IPVS: stop unused estimator thread 0...
[  243.818446][T18453] loop6: detected capacity change from 0 to 512
[  243.825617][T18453] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  243.876133][T18453] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  243.900968][T18453] EXT4-fs (loop6): 1 truncate cleaned up
[  243.918394][T18453] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.967114][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.016219][T18402] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  244.038336][T18402] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  244.066815][T18402] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  244.080002][T18464] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  244.093819][T18402] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  244.177209][T18402] 8021q: adding VLAN 0 to HW filter on device bond0
[  244.186332][    T9] IPVS: starting estimator thread 0...
[  244.223546][T18473] loop6: detected capacity change from 0 to 2048
[  244.236262][T18402] 8021q: adding VLAN 0 to HW filter on device team0
[  244.248234][ T3712] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.255448][ T3712] bridge0: port 1(bridge_slave_0) entered forwarding state
[  244.268272][ T3712] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.275457][ T3712] bridge0: port 2(bridge_slave_1) entered forwarding state
[  244.283351][T18471] IPVS: using max 2304 ests per chain, 115200 per kthread
[  244.291979][T18473]  loop6: p1 < > p4
[  244.305506][T18473] loop6: p4 size 8388608 extends beyond EOD, truncated
[  244.306842][T18402] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  244.322834][T18402] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  244.371508][T18479] netlink: 'syz.2.5907': attribute type 1 has an invalid length.
[  244.423737][T18485] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5909'.
[  244.450663][T18479] 8021q: adding VLAN 0 to HW filter on device bond2
[  244.471261][T18487] bond2: (slave gretap0): making interface the new active one
[  244.479799][T18487] bond2: (slave gretap0): Enslaving as an active interface with an up link
[  244.494418][T18402] 8021q: adding VLAN 0 to HW filter on device batadv0
[  244.547906][T18485] 8021q: adding VLAN 0 to HW filter on device bond0
[  244.567467][T18479] bond2: (slave bridge0): Enslaving as an active interface with a down link
[  244.744493][T18402] veth0_vlan: entered promiscuous mode
[  244.770911][T18402] veth1_vlan: entered promiscuous mode
[  244.807649][T18402] veth0_macvtap: entered promiscuous mode
[  244.834774][T18402] veth1_macvtap: entered promiscuous mode
[  244.863049][T18402] batman_adv: batadv0: Interface activated: batadv_slave_0
[  244.881281][T18402] batman_adv: batadv0: Interface activated: batadv_slave_1
[  244.902046][T18402] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.910956][T18402] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.919691][T18402] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.928430][T18402] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  245.221926][T18550] lo speed is unknown, defaulting to 1000
[  245.262699][T18553] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5930'.
[  245.316657][T18553] 8021q: adding VLAN 0 to HW filter on device bond1
[  245.455878][T18553] macvlan2: entered promiscuous mode
[  245.461257][T18553] macvlan2: entered allmulticast mode
[  245.494052][T18553] bond0: entered allmulticast mode
[  245.499474][T18553] bond0: entered promiscuous mode
[  245.552872][T18553] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  245.577662][T18553] bond1: (slave macvlan2): Enslaving as an active interface with an up link
[  245.838172][T18566] loop6: detected capacity change from 0 to 1024
[  245.887095][T18568] loop4: detected capacity change from 0 to 128
[  245.897765][T18566] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.946423][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.018664][T18575] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5939'.
[  246.052967][T18575] batman_adv: batadv0: Removing interface: batadv_slave_0
[  246.063580][T18577] loop6: detected capacity change from 0 to 1024
[  246.074508][T18575] batman_adv: batadv0: Removing interface: batadv_slave_1
[  246.098962][T18577] EXT4-fs: Ignoring removed bh option
[  246.104515][T18577] EXT4-fs: Ignoring removed bh option
[  246.116271][T18577] EXT4-fs: Ignoring removed nobh option
[  246.143971][T18568] bio_check_eod: 15029 callbacks suppressed
[  246.143990][T18568] syz.4.5936: attempt to access beyond end of device
[  246.143990][T18568] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128
[  246.166551][T18577] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  246.254146][T18567] syz.4.5936: attempt to access beyond end of device
[  246.254146][T18567] loop4: rw=524288, sector=145, nr_sectors = 224 limit=128
[  246.312109][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.329221][T18599] wg2: entered promiscuous mode
[  246.334158][T18599] wg2: entered allmulticast mode
[  246.348309][T18568] syz.4.5936: attempt to access beyond end of device
[  246.348309][T18568] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  246.409872][T18568] syz.4.5936: attempt to access beyond end of device
[  246.409872][T18568] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  246.846996][T18628] netlink: 'syz.1.5959': attribute type 1 has an invalid length.
[  246.878616][T18631] netlink: 76 bytes leftover after parsing attributes in process `syz.0.5960'.
[  246.959012][ T7657] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  246.967145][T18641] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  246.977015][ T7657] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  246.986998][T18641] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  246.998162][T18638] syz_tun: entered promiscuous mode
[  247.004119][T18638] vlan2: entered promiscuous mode
[  247.012363][T18638] syz_tun: left promiscuous mode
[  247.023085][T18632] lo speed is unknown, defaulting to 1000
[  247.269037][T18650] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5967'.
[  247.360472][T18662] netlink: 56 bytes leftover after parsing attributes in process `syz.1.5972'.
[  247.368684][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.370812][T18662] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5972'.
[  247.382686][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.404441][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.417483][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.430489][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.444122][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.457313][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.481963][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.496669][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.512045][T18664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18664 comm=syz.2.5973
[  247.620727][T18683] xt_CT: You must specify a L4 protocol and not use inversions on it
[  247.827801][T18691] netlink: 176 bytes leftover after parsing attributes in process `syz.1.5983'.
[  247.920259][T18701] xt_hashlimit: max too large, truncated to 1048576
[  247.947904][T18703] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  248.006463][T18703] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  248.056638][T18703] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  248.106590][T18703] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  248.162465][T18703] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  248.173502][T18703] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  248.184805][T18703] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  248.196180][T18703] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  248.368457][T18712] loop6: detected capacity change from 0 to 128
[  248.381926][T18712] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  248.389973][T18712] FAT-fs (loop6): Filesystem has been set read-only
[  248.397764][T18712] syz.6.5993: attempt to access beyond end of device
[  248.397764][T18712] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  248.406219][T18714] netlink: 268 bytes leftover after parsing attributes in process `syz.0.5994'.
[  248.420258][T18714] unsupported nla_type 65024
[  248.648081][   T29] kauditd_printk_skb: 205 callbacks suppressed
[  248.648104][   T29] audit: type=1400 audit(1741167339.838:7471): avc:  denied  { bind } for  pid=18725 comm="syz.1.5999" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  248.683433][   T29] audit: type=1326 audit(1741167339.868:7472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18727 comm="syz.1.6000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  248.707115][   T29] audit: type=1326 audit(1741167339.868:7473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18727 comm="syz.1.6000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  248.737670][   T29] audit: type=1326 audit(1741167339.918:7474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18727 comm="syz.1.6000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  248.766825][   T29] audit: type=1326 audit(1741167339.958:7475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18727 comm="syz.1.6000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  248.811375][   T29] audit: type=1326 audit(1741167339.958:7476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18727 comm="syz.1.6000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  248.835000][   T29] audit: type=1326 audit(1741167339.978:7477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18727 comm="syz.1.6000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  248.858560][   T29] audit: type=1326 audit(1741167339.978:7478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18727 comm="syz.1.6000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa262afd1a3 code=0x7ffc0000
[  248.881948][   T29] audit: type=1326 audit(1741167339.978:7479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18727 comm="syz.1.6000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa262afd1a3 code=0x7ffc0000
[  248.905348][   T29] audit: type=1326 audit(1741167339.978:7480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18727 comm="syz.1.6000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  249.037336][T18749] loop6: detected capacity change from 0 to 512
[  249.044298][T18749] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  249.056122][T18749] EXT4-fs (loop6): 1 truncate cleaned up
[  249.062358][T18749] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.097568][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.190548][T18766] __nla_validate_parse: 1 callbacks suppressed
[  249.190564][T18766] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6015'.
[  249.323878][T18777] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6019'.
[  249.334344][T18777] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6019'.
[  249.840168][T18795] netlink: 56 bytes leftover after parsing attributes in process `syz.2.6026'.
[  249.856474][T18795] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6026'.
[  250.105701][T18818] syzkaller0: entered allmulticast mode
[  250.239941][T18831] loop6: detected capacity change from 0 to 256
[  250.246510][T18831] vfat: Bad value for 'fmask'
[  250.361694][T18838] loop6: detected capacity change from 0 to 164
[  250.459668][T18849] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.507017][T18849] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.567518][T18849] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.641619][T18849] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.726641][T18849] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  250.751496][T18849] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  250.768818][T18849] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  250.785506][T18849] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  250.964017][T18882] netlink: 100 bytes leftover after parsing attributes in process `syz.0.6060'.
[  251.219158][T18915] loop6: detected capacity change from 0 to 512
[  251.230106][T18919] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6079'.
[  251.235575][T18916] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6077'.
[  251.249041][T18915] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  251.261833][T18915] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  251.279720][T18915] EXT4-fs (loop6): 1 truncate cleaned up
[  251.286780][T18915] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.293135][T18919] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6079'.
[  251.375983][T18930] tipc: Started in network mode
[  251.380895][T18930] tipc: Node identity ac14140f, cluster identity 4711
[  251.387971][T18930] tipc: New replicast peer: 255.255.255.255
[  251.394187][T18930] tipc: Enabled bearer <udp:syz2>, priority 10
[  251.469071][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.508695][T18938] lo speed is unknown, defaulting to 1000
[  251.516812][T18943] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6088'.
[  251.554930][T18943] IPVS: Unknown mcast interface: vcan0
[  251.634496][T18953] block device autoloading is deprecated and will be removed.
[  251.645246][T18958] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.646893][T18953] syz.0.6092: attempt to access beyond end of device
[  251.646893][T18953] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  251.730906][T18958] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.748398][T18960] loop6: detected capacity change from 0 to 512
[  251.801550][T18976] loop0: detected capacity change from 0 to 164
[  251.818565][T18960] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.834694][T18960] ext4 filesystem being mounted at /210/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  251.851533][T18958] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.899500][T18983] tipc: New replicast peer: 255.0.0.255
[  251.905202][T18983] tipc: Enabled bearer <udp:s@>, priority 10
[  251.917334][T18958] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.947087][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.974597][T18958] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.986290][T18958] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.998461][T18958] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  252.010301][T18958] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  252.153670][T19011] 0�X���: renamed from caif0
[  252.160741][T19011] 0�X���: entered allmulticast mode
[  252.166077][T19011] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  252.220364][T19014] loop6: detected capacity change from 0 to 2048
[  252.241234][T19021] netlink: 'syz.4.6122': attribute type 11 has an invalid length.
[  252.252809][T19014] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  252.353227][T19030] loop4: detected capacity change from 0 to 1024
[  252.360041][T19030] EXT4-fs: Ignoring removed orlov option
[  252.365791][T19030] EXT4-fs: Ignoring removed nomblk_io_submit option
[  252.378650][T19030] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  252.393155][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.580777][T19044] loop0: detected capacity change from 0 to 512
[  252.589013][T19044] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  252.604171][T19042] loop6: detected capacity change from 0 to 4096
[  252.634102][T19044] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.6127: corrupted in-inode xattr: e_name out of bounds
[  252.655707][T19042] ext4: Unknown parameter 'fsname'
[  252.683461][T19044] EXT4-fs (loop0): Remounting filesystem read-only
[  252.693429][T19044] EXT4-fs (loop0): 1 truncate cleaned up
[  252.712433][T19044] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  252.763678][T19047] tc_dump_action: action bad kind
[  252.773542][T15846] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.774602][T19044] SELinux: (dev loop0, type ext4) getxattr errno 5
[  252.789678][T19044] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.915384][   T24] tipc: Node number set to 2886997007
[  253.359894][   T24] Process accounting resumed
[  253.376425][T19102] loop6: detected capacity change from 0 to 128
[  253.500822][T19113] loop4: detected capacity change from 0 to 512
[  253.618604][T19113] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #3: comm syz.4.6157: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  253.675417][T19113] EXT4-fs error (device loop4): ext4_quota_enable:7104: comm syz.4.6157: Bad quota inode: 3, type: 0
[  253.691195][T19113] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  253.723712][T19113] EXT4-fs (loop4): mount failed
[  253.746080][T19105] Set syz1 is full, maxelem 65536 reached
[  253.755493][   T29] kauditd_printk_skb: 244 callbacks suppressed
[  253.755508][   T29] audit: type=1326 audit(1741167344.938:7725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f43a49ebad0 code=0x7ffc0000
[  253.785303][   T29] audit: type=1326 audit(1741167344.938:7726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f43a49ecd6b code=0x7ffc0000
[  253.808878][   T29] audit: type=1326 audit(1741167344.938:7727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f43a49ebdca code=0x7ffc0000
[  253.840073][   T29] audit: type=1326 audit(1741167344.948:7728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a49ed169 code=0x7ffc0000
[  253.863878][   T29] audit: type=1326 audit(1741167344.948:7729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43a49ed169 code=0x7ffc0000
[  253.887427][   T29] audit: type=1326 audit(1741167344.948:7730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a49ed169 code=0x7ffc0000
[  253.911092][   T29] audit: type=1326 audit(1741167344.948:7731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a49ed169 code=0x7ffc0000
[  253.934748][   T29] audit: type=1326 audit(1741167344.948:7732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f43a49ed169 code=0x7ffc0000
[  253.958361][   T29] audit: type=1326 audit(1741167344.948:7733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a49ed169 code=0x7ffc0000
[  253.982241][   T29] audit: type=1326 audit(1741167344.948:7734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19112 comm="syz.4.6157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a49ed169 code=0x7ffc0000
[  254.178843][T19130] syzkaller0: entered promiscuous mode
[  254.184446][T19130] syzkaller0: entered allmulticast mode
[  254.493579][T19157] loop6: detected capacity change from 0 to 1764
[  254.513668][T19157] iso9660: Unknown parameter '����B\zJ��y�}m����P�E�(�:vI�C�ԓ'
[  254.655172][T19170] loop6: detected capacity change from 0 to 512
[  254.662158][T19170] EXT4-fs: Mount option(s) incompatible with ext3
[  254.973651][T19189] serio: Serial port ptm0
[  254.999215][T19191] __nla_validate_parse: 4 callbacks suppressed
[  254.999232][T19191] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6187'.
[  255.023476][T19191] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6187'.
[  255.064468][T19195] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.117643][T19198] loop9: detected capacity change from 0 to 7
[  255.123953][T19198] Buffer I/O error on dev loop9, logical block 0, async page read
[  255.132012][T19198] Buffer I/O error on dev loop9, logical block 0, async page read
[  255.139985][T19198]  loop9: unable to read partition table
[  255.146900][T19198] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  255.146900][T19198] 
U�������) failed (rc=-5)
[  255.162311][T19195] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.179508][T19202] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6192'.
[  255.218347][T19202] 8021q: adding VLAN 0 to HW filter on device bond2
[  255.229614][T19195] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.247151][T19206] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  255.257829][T19206] bond2: (slave macvlan3): Enslaving as an active interface with an up link
[  255.278689][T19195] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.296031][T19210] loop0: detected capacity change from 0 to 512
[  255.303297][T19210] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  255.314132][T19210] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.6195: invalid block
[  255.326518][T19210] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.6195: invalid indirect mapped block 4294967295 (level 1)
[  255.342070][T19210] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.6195: invalid indirect mapped block 4294967295 (level 1)
[  255.362721][T19210] EXT4-fs (loop0): 2 truncates cleaned up
[  255.369153][T19210] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.404015][T19195] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.418363][T19195] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.427477][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.432008][T19195] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.457807][T19195] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  255.540578][T19234] loop4: detected capacity change from 0 to 128
[  255.559006][T19234] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  255.568942][T19231] syzkaller0: entered allmulticast mode
[  255.587743][T19237] selinux_netlink_send: 70 callbacks suppressed
[  255.587758][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.607846][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.620739][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.634749][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.648428][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.654971][T19243] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6208'.
[  255.673369][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.694370][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.707764][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.708549][T19243] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6208'.
[  255.720472][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.744193][T19237] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19237 comm=syz.0.6205
[  255.778042][T19245] SELinux: failed to load policy
[  255.901260][T19263] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.980082][T19263] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.075736][T19278] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6223'.
[  256.086000][T19263] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.146916][T19263] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.296461][T19301] loop4: detected capacity change from 0 to 512
[  256.306728][T19301] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  256.319741][T19301] EXT4-fs (loop4): 1 truncate cleaned up
[  256.325905][T19301] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.356140][T19301] lo speed is unknown, defaulting to 1000
[  256.424448][T19310] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6235'.
[  256.467876][T19310] ip6gre1: entered allmulticast mode
[  256.491584][T15846] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /249/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  256.539706][T15846] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  256.566522][T15846] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /249/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  256.573649][T19314] loop0: detected capacity change from 0 to 1024
[  256.596265][T19314] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  256.610217][T15846] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  256.630448][T19314] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  256.638870][T15846] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /249/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  256.660673][T19314] EXT4-fs (loop0): orphan cleanup on readonly fs
[  256.668749][T15846] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  256.687153][T19314] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5838: Corrupt filesystem
[  256.699122][T15846] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /249/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  256.726069][T19314] EXT4-fs (loop0): Remounting filesystem read-only
[  256.744469][T19314] EXT4-fs (loop0): 1 orphan inode deleted
[  256.750763][T19314] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  256.773815][T19314] SELinux: (dev loop0, type ext4) getxattr errno 5
[  256.781588][T19314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.803035][T15846] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  256.825664][T15846] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /249/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  256.855693][T15846] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  257.116718][T19323] netlink: 56 bytes leftover after parsing attributes in process `syz.2.6240'.
[  257.129764][T19325] wg2: entered promiscuous mode
[  257.134716][T19325] wg2: entered allmulticast mode
[  257.171792][T19328] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6243'.
[  257.319434][T16151] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.549041][ T3712] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.618163][ T3712] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.677136][ T3712] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.727094][ T3712] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.795144][T19342] lo speed is unknown, defaulting to 1000
[  257.816920][ T3712] bridge_slave_1: left allmulticast mode
[  257.822629][ T3712] bridge_slave_1: left promiscuous mode
[  257.828442][ T3712] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.846126][ T3712] bridge_slave_0: left allmulticast mode
[  257.851811][ T3712] bridge_slave_0: left promiscuous mode
[  257.857674][ T3712] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.874529][T19358] loop0: detected capacity change from 0 to 128
[  257.882674][T19358] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  257.894986][T19358] ext4 filesystem being mounted at /276/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  257.977719][ T3712] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  257.987858][ T3712] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  257.997552][ T3712] bond0 (unregistering): Released all slaves
[  258.036939][ T3712] tipc: Left network mode
[  258.054035][T15842] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  258.069141][ T3712] hsr_slave_0: left promiscuous mode
[  258.075198][ T3712] hsr_slave_1: left promiscuous mode
[  258.083296][ T3712] veth1_macvtap: left promiscuous mode
[  258.089017][ T3712] veth0_macvtap: left promiscuous mode
[  258.095065][ T3712] veth1_vlan: left promiscuous mode
[  258.100835][ T3712] veth0_vlan: left promiscuous mode
[  258.180662][ T3712] team0 (unregistering): Port device team_slave_1 removed
[  258.190870][ T3712] team0 (unregistering): Port device team_slave_0 removed
[  258.230147][T19342] chnl_net:caif_netlink_parms(): no params data found
[  258.267501][T19342] bridge0: port 1(bridge_slave_0) entered blocking state
[  258.274571][T19342] bridge0: port 1(bridge_slave_0) entered disabled state
[  258.281721][T19342] bridge_slave_0: entered allmulticast mode
[  258.288388][T19342] bridge_slave_0: entered promiscuous mode
[  258.295111][T19342] bridge0: port 2(bridge_slave_1) entered blocking state
[  258.302336][T19342] bridge0: port 2(bridge_slave_1) entered disabled state
[  258.309586][T19342] bridge_slave_1: entered allmulticast mode
[  258.316325][T19342] bridge_slave_1: entered promiscuous mode
[  258.338797][T19386] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  258.349009][T19342] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  258.360601][T19342] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  258.382819][T19342] team0: Port device team_slave_0 added
[  258.389959][T19342] team0: Port device team_slave_1 added
[  258.415770][T19342] batman_adv: batadv0: Adding interface: batadv_slave_0
[  258.422799][T19342] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  258.448881][T19342] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  258.476101][T19342] batman_adv: batadv0: Adding interface: batadv_slave_1
[  258.483082][T19342] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  258.509104][T19342] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  258.548233][T19342] hsr_slave_0: entered promiscuous mode
[  258.554347][T19342] hsr_slave_1: entered promiscuous mode
[  258.575000][T19394] loop6: detected capacity change from 0 to 1024
[  258.619723][T19394] EXT4-fs: Ignoring removed orlov option
[  258.635754][T19394] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  258.690909][T19394] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.725845][T19394] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  258.733315][T19394] vhci_hcd: default hub control req: 6011 v8001 i0001 l0
[  258.769817][T15851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.819581][T19411] netlink: 'wޣ�': attribute type 4 has an invalid length.
[  258.847108][T19416] loop0: detected capacity change from 0 to 512
[  258.853681][T19416] EXT4-fs: Ignoring removed bh option
[  258.859368][T19416] EXT4-fs: Mount option(s) incompatible with ext3
[  258.870247][   T29] kauditd_printk_skb: 90 callbacks suppressed
[  258.870263][   T29] audit: type=1326 audit(1741167350.058:7821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.6272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  258.900809][   T29] audit: type=1326 audit(1741167350.058:7822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.6272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  258.924384][   T29] audit: type=1326 audit(1741167350.058:7823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.6272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  258.948128][   T29] audit: type=1326 audit(1741167350.058:7824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.6272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  258.971729][   T29] audit: type=1326 audit(1741167350.058:7825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.6272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  258.983362][T19419] loop0: detected capacity change from 0 to 1024
[  258.995317][   T29] audit: type=1326 audit(1741167350.058:7826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.6272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  258.995352][   T29] audit: type=1326 audit(1741167350.058:7827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19415 comm="syz.0.6272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9c236d169 code=0x7ffc0000
[  259.003982][T19419] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  259.058557][T19419] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  259.068377][T19419] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  259.080173][T19419] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: inode #5: comm syz.0.6273: unexpected bad inode w/o EXT4_IGET_BAD
[  259.094169][T19419] EXT4-fs (loop0): no journal found
[  259.099456][T19419] EXT4-fs (loop0): can't get journal size
[  259.106007][T19419] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  259.129415][T19419] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6273'.
[  259.145564][T19342] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  259.153694][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.155131][T19342] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  259.173940][T19342] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  259.182927][T19342] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  259.215735][T19263] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  259.227936][T19263] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  259.239365][T19263] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  259.251872][T19263] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  259.282121][T19342] 8021q: adding VLAN 0 to HW filter on device bond0
[  259.293359][T19428] ip6gre1: entered allmulticast mode
[  259.342386][T19342] 8021q: adding VLAN 0 to HW filter on device team0
[  259.361994][ T3712] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.369162][ T3712] bridge0: port 1(bridge_slave_0) entered forwarding state
[  259.390218][ T3712] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.397387][ T3712] bridge0: port 2(bridge_slave_1) entered forwarding state
[  259.418343][T19438] loop0: detected capacity change from 0 to 1024
[  259.441456][T19342] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  259.451951][T19342] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  259.466759][T19438] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  259.488076][T19438] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  259.513086][T19438] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  259.525360][T19438] EXT4-fs (loop0): This should not happen!! Data will be lost
[  259.525360][T19438] 
[  259.535159][T19438] EXT4-fs (loop0): Total free blocks count 0
[  259.541218][T19438] EXT4-fs (loop0): Free/Dirty block details
[  259.547183][T19438] EXT4-fs (loop0): free_blocks=68451041280
[  259.553093][T19438] EXT4-fs (loop0): dirty_blocks=16
[  259.558327][T19438] EXT4-fs (loop0): Block reservation details
[  259.564416][T19438] EXT4-fs (loop0): i_reserved_data_blocks=1
[  259.576250][T19342] 8021q: adding VLAN 0 to HW filter on device batadv0
[  259.628017][T19448] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 42 with error 28
[  259.729231][T19467] $H�: renamed from 
[  259.744458][T19467] $H�: entered promiscuous mode
[  259.749673][T19467] bond_slave_0: entered promiscuous mode
[  259.755633][T19467] bond_slave_1: entered promiscuous mode
[  259.770603][   T29] audit: type=1326 audit(1741167350.958:7828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19465 comm="syz.1.6288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  259.794171][   T29] audit: type=1326 audit(1741167350.958:7829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19465 comm="syz.1.6288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  259.818096][   T29] audit: type=1326 audit(1741167350.958:7830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19465 comm="syz.1.6288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa262afd169 code=0x7ffc0000
[  259.872832][T19342] veth0_vlan: entered promiscuous mode
[  259.904680][T19479] loop0: detected capacity change from 0 to 256
[  259.916319][T19342] veth1_vlan: entered promiscuous mode
[  259.949537][T19342] veth0_macvtap: entered promiscuous mode
[  259.970320][T19342] veth1_macvtap: entered promiscuous mode
[  259.992484][T19481] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  260.000174][T19481] batman_adv: batadv0: Removing interface: batadv_slave_0
[  260.031887][T19481] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  260.039523][T19481] batman_adv: batadv0: Removing interface: batadv_slave_1
[  260.058300][T19342] batman_adv: batadv0: Interface activated: batadv_slave_0
[  260.084139][T19342] batman_adv: batadv0: Interface activated: batadv_slave_1
[  260.101621][T19342] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  260.110486][T19342] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  260.119251][T19342] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  260.128015][T19342] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  260.513621][T19509] loop5: detected capacity change from 0 to 2048
[  260.519253][T19485] Set syz1 is full, maxelem 65536 reached
[  260.537754][T19509] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  260.566429][T19509] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  260.583220][T19514] loop0: detected capacity change from 0 to 1024
[  260.597052][T19509] netlink: 'syz.5.6248': attribute type 10 has an invalid length.
[  260.607010][T19509] batman_adv: batadv0: Adding interface: team0
[  260.613200][T19509] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  260.638514][T19509] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  260.656027][T19514] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  260.674701][T19342] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.685587][T19520] netlink: 'syz.2.6306': attribute type 13 has an invalid length.
[  260.713524][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.866263][T19534] loop0: detected capacity change from 0 to 512
[  260.877731][T19534] EXT4-fs (loop0): orphan cleanup on readonly fs
[  260.884133][T19534] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[  260.893686][T19534] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  260.909216][T19534] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.6312: attempt to clear invalid blocks 2 len 1
[  260.922785][T19534] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.6312: invalid indirect mapped block 1819239214 (level 0)
[  260.939006][T19534] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.6312: invalid indirect mapped block 1819239214 (level 1)
[  260.964335][T19534] EXT4-fs (loop0): 1 truncate cleaned up
[  260.970389][T19534] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  260.992317][T19534] EXT4-fs: Ignoring removed orlov option
[  261.003865][T19534] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  261.015447][T19534] EXT4-fs error (device loop0): __ext4_remount:6738: comm syz.0.6312: Abort forced by user
[  261.029232][T19534] EXT4-fs (loop0): Remounting filesystem read-only
[  261.031689][T19542] SELinux: failed to load policy
[  261.035823][T19534] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  261.080185][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.135251][T19560] netlink: 'syz.6.6323': attribute type 7 has an invalid length.
[  261.282800][T19570] lo speed is unknown, defaulting to 1000
[  261.327886][T19584] loop5: detected capacity change from 0 to 1024
[  261.337311][T19584] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  261.348350][T19584] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  261.358647][T19584] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  261.370191][T19584] EXT4-fs (loop5): invalid journal inode
[  261.385932][T19584] EXT4-fs (loop5): can't get journal size
[  261.395790][T19584] EXT4-fs error (device loop5): ext4_protect_reserved_inode:182: inode #3: comm syz.5.6332: blocks 2-2 from inode overlap system zone
[  261.409965][T19584] EXT4-fs (loop5): failed to initialize system zone (-117)
[  261.417495][T19584] EXT4-fs (loop5): mount failed
[  261.500445][T19591] loop0: detected capacity change from 0 to 512
[  261.513254][T19591] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.527679][T19591] ext4 filesystem being mounted at /301/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  261.572224][T19591] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #19: comm syz.0.6335: corrupted inode contents
[  261.584505][T19591] EXT4-fs error (device loop0): ext4_dirty_inode:6042: inode #19: comm syz.0.6335: mark_inode_dirty error
[  261.598247][T19591] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #19: comm syz.0.6335: corrupted inode contents
[  261.630199][T19591] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3006: inode #19: comm syz.0.6335: mark_inode_dirty error
[  261.699095][T19591] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3009: inode #19: comm syz.0.6335: mark inode dirty (error -117)
[  261.712533][T19591] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -117)
[  261.740758][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.761106][T19606] xt_hashlimit: max too large, truncated to 1048576
[  261.881838][T19616] veth0_to_bond: entered promiscuous mode
[  261.888585][T19616] __nla_validate_parse: 1 callbacks suppressed
[  261.888598][T19616] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6342'.
[  261.909144][T19616] veth0_to_bond (unregistering): left promiscuous mode
[  261.918406][T19616] $H�: (slave bond_slave_0): Releasing backup interface
[  261.926893][T19616] bond_slave_0 (unregistering): left promiscuous mode
[  262.039952][T19622] selinux_netlink_send: 59 callbacks suppressed
[  262.039973][T19622] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19622 comm=syz.2.6346
[  262.058979][T19622] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19622 comm=syz.2.6346
[  262.071938][T19622] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19622 comm=syz.2.6346
[  262.084711][T19622] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19622 comm=syz.2.6346
[  262.097373][T19622] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19622 comm=syz.2.6346
[  262.348186][T19606] Cannot find set identified by id 0 to match
[  262.413275][T19639] loop5: detected capacity change from 0 to 128
[  262.426584][T19639] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  262.434532][T19639] FAT-fs (loop5): Filesystem has been set read-only
[  262.441454][T19639] syz.5.6351: attempt to access beyond end of device
[  262.441454][T19639] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  262.455632][T19639] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  262.463511][T19639] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  262.471732][T19639] syz.5.6351: attempt to access beyond end of device
[  262.471732][T19639] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  262.667456][T19651] loop5: detected capacity change from 0 to 128
[  262.682493][T19653] lo speed is unknown, defaulting to 1000
[  262.700263][T19651] syz.5.6357: attempt to access beyond end of device
[  262.700263][T19651] loop5: rw=0, sector=121, nr_sectors = 920 limit=128
[  262.831568][T19662] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6362'.
[  262.840658][T19662] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6362'.
[  262.850066][T19662] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6362'.
[  262.877728][T19662] netem: change failed
[  262.921842][T19665] uprobe: syz.2.6363:19665 failed to unregister, leaking uprobe
[  262.990802][T19677] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6369'.
[  263.030446][T19681] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19681 comm=syz.0.6371
[  263.117463][T19693] loop0: detected capacity change from 0 to 1024
[  263.132814][T19693] EXT4-fs: Ignoring removed nomblk_io_submit option
[  263.140446][T19693] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  263.152530][T19693] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  263.162446][T19693] System zones: 0-1, 3-36
[  263.171710][T19693] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  263.203432][T19699] No such timeout policy "syz0"
[  263.232943][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.327755][T19721] loop6: detected capacity change from 0 to 164
[  263.342019][T19721] Unable to read rock-ridge attributes
[  263.360381][T19721] Unable to read rock-ridge attributes
[  263.366421][T19721] iso9660: Corrupted directory entry in block 4 of inode 1792
[  263.374090][T19721] syz.6.6386: attempt to access beyond end of device
[  263.374090][T19721] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  263.454416][T19727] pim6reg1: entered promiscuous mode
[  263.459874][T19727] pim6reg1: entered allmulticast mode
[  263.493757][T19731] $H�: left promiscuous mode
[  263.498624][T19731] bond_slave_1: left promiscuous mode
[  263.504329][T19731] 0�X���: left allmulticast mode
[  263.522067][T19731] wg2: left promiscuous mode
[  263.526824][T19731] wg2: left allmulticast mode
[  263.555125][T19731] netdevsim netdevsim0 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  263.563600][T19731] netdevsim netdevsim0 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  263.572067][T19731] netdevsim netdevsim0 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  263.580566][T19731] netdevsim netdevsim0 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  263.593011][T19731] vxlan0: left promiscuous mode
[  263.620740][T19731] ip6gre1: left allmulticast mode
[  263.687846][T19743] loop0: detected capacity change from 0 to 164
[  263.802483][T19761] loop5: detected capacity change from 0 to 512
[  263.809931][T19761] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  263.868928][T19761] EXT4-fs (loop5): 1 truncate cleaned up
[  263.878654][T19761] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.918947][T19772] ip6gre2: entered allmulticast mode
[  263.926427][T19342] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.946878][   T29] kauditd_printk_skb: 143 callbacks suppressed
[  263.946892][   T29] audit: type=1326 audit(1741167355.138:7974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  263.977165][   T29] audit: type=1326 audit(1741167355.138:7975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  264.000924][   T29] audit: type=1326 audit(1741167355.138:7976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  264.024818][   T29] audit: type=1326 audit(1741167355.138:7977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  264.048371][   T29] audit: type=1326 audit(1741167355.138:7978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  264.073606][   T29] audit: type=1326 audit(1741167355.138:7979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  264.097297][   T29] audit: type=1326 audit(1741167355.138:7980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  264.120852][   T29] audit: type=1326 audit(1741167355.138:7981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  264.144440][   T29] audit: type=1326 audit(1741167355.138:7982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  264.167984][   T29] audit: type=1326 audit(1741167355.138:7983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19773 comm="syz.5.6405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  264.317457][T19800] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6415'.
[  264.382025][T19813] netlink: 'syz.5.6420': attribute type 10 has an invalid length.
[  264.389989][T19813] netlink: 40 bytes leftover after parsing attributes in process `syz.5.6420'.
[  264.406163][T19813] team0: Port device geneve1 added
[  264.449737][T19821] loop5: detected capacity change from 0 to 512
[  264.456763][T19821] msdos: Unknown parameter 'dots�7'
[  264.520028][T19833] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6429'.
[  264.606859][T19842] loop5: detected capacity change from 0 to 1024
[  264.614612][T19842] EXT4-fs: Ignoring removed nomblk_io_submit option
[  264.638259][T19842] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  264.658636][T19842] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.6434: Allocating blocks 385-513 which overlap fs metadata
[  264.686170][T19842] EXT4-fs (loop5): pa ffff8881004cbd20: logic 16, phys. 129, len 24
[  264.694211][T19842] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 8
[  264.704598][T19842] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 27 with max blocks 1 with error 28
[  264.716999][T19842] EXT4-fs (loop5): This should not happen!! Data will be lost
[  264.716999][T19842] 
[  264.726756][T19842] EXT4-fs (loop5): Total free blocks count 0
[  264.732748][T19842] EXT4-fs (loop5): Free/Dirty block details
[  264.738690][T19842] EXT4-fs (loop5): free_blocks=128
[  264.743872][T19842] EXT4-fs (loop5): dirty_blocks=0
[  264.748999][T19842] EXT4-fs (loop5): Block reservation details
[  264.755096][T19842] EXT4-fs (loop5): i_reserved_data_blocks=0
[  264.763284][T19852] netlink: 96 bytes leftover after parsing attributes in process `syz.2.6437'.
[  264.889853][T19866] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6443'.
[  264.937228][T19872] ������: renamed from vlan1 (while UP)
[  265.068516][T19886] loop5: detected capacity change from 0 to 512
[  265.098665][T19886] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  265.149174][T19886] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  265.259951][T19342] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  265.278347][T19901] 
: renamed from bond0 (while UP)
[  265.348168][T19907] lo speed is unknown, defaulting to 1000
[  265.354133][T19911] ref_ctr_offset mismatch. inode: 0x128 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4
[  265.500103][T19921] IPVS: stopping master sync thread 19923 ...
[  265.507412][T19923] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  265.511239][T19924] loop5: detected capacity change from 0 to 512
[  265.570834][T19924] EXT4-fs (loop5): too many log groups per flexible block group
[  265.578632][T19924] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  265.585657][T19924] EXT4-fs (loop5): mount failed
[  265.710709][T19938] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  265.881134][T19954] netlink: 'syz.1.6482': attribute type 1 has an invalid length.
[  265.904124][T19956] vlan0: entered allmulticast mode
[  265.924683][T19960] loop5: detected capacity change from 0 to 2048
[  265.947770][T19960] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842e02c, mo2=0002]
[  265.959813][T19960] System zones: 0-7
[  265.964507][T19960] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  265.979127][T19960] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.6484: bg 0: block 234: padding at end of block bitmap is not set
[  265.995011][T19960] EXT4-fs (loop5): Remounting filesystem read-only
[  266.023007][T19342] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.286850][T19986] lo speed is unknown, defaulting to 1000
[  266.332845][T19989] loop5: detected capacity change from 0 to 8192
[  266.468881][T19979] syz.5.6491: attempt to access beyond end of device
[  266.468881][T19979] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  266.502933][T19979] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1)
[  266.510906][T19979] FAT-fs (loop5): Filesystem has been set read-only
[  266.520307][T19979] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1)
[  266.528467][T19979] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1)
[  266.956608][T20045] loop5: detected capacity change from 0 to 128
[  267.022762][T20045] syz.5.6517: attempt to access beyond end of device
[  267.022762][T20045] loop5: rw=0, sector=121, nr_sectors = 920 limit=128
[  267.182379][T20049] loop0: detected capacity change from 0 to 128
[  267.210461][T20053] lo speed is unknown, defaulting to 1000
[  267.266297][T20049] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  267.781415][T20092] 9pnet_fd: p9_fd_create_unix (20092): problem connecting socket: ./file0: -2
[  267.872105][T20103] netlink: 'syz.0.6541': attribute type 1 has an invalid length.
[  267.888122][T20103] 8021q: adding VLAN 0 to HW filter on device bond1
[  267.907668][T20103] bond1: (slave gretap1): making interface the new active one
[  267.916976][T20103] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  267.988100][T20121] $H�: entered promiscuous mode
[  268.000064][T20123] loop0: detected capacity change from 0 to 512
[  268.044888][T20130] pim6reg1: entered promiscuous mode
[  268.050374][T20130] pim6reg1: entered allmulticast mode
[  268.069710][T20133] loop0: detected capacity change from 0 to 512
[  268.087256][T20133] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.6549: bg 0: block 248: padding at end of block bitmap is not set
[  268.102925][T20133] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.6549: Failed to acquire dquot type 1
[  268.115237][T20133] EXT4-fs (loop0): 1 truncate cleaned up
[  268.165634][T20133] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.182922][T20133] ext4 filesystem being mounted at /353/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  268.390523][T20150] netlink: 'syz.2.6558': attribute type 10 has an invalid length.
[  268.400071][T20150] bridge_slave_1: entered promiscuous mode
[  268.407536][T20150] $H�: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  268.592766][T20171] IPv6: addrconf: prefix option has invalid lifetime
[  268.613589][T20171] loop5: detected capacity change from 0 to 1024
[  268.630342][T20171] EXT4-fs: Ignoring removed orlov option
[  268.636211][T20171] EXT4-fs: Ignoring removed orlov option
[  268.641980][T20171] EXT4-fs: Ignoring removed oldalloc option
[  268.655614][T20171] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  268.666644][T20171] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  268.684842][T20171] EXT4-fs (loop5): invalid journal inode
[  268.690808][T20171] EXT4-fs (loop5): can't get journal size
[  268.709144][T20171] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  268.738174][T20171] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.748532][T20182] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.786644][T20182] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.827097][T20182] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.849279][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.878342][T20182] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.891510][T20189] loop0: detected capacity change from 0 to 512
[  268.898410][T20189] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  268.911499][T20183] lo speed is unknown, defaulting to 1000
[  268.925719][T20189] EXT4-fs (loop0): 1 truncate cleaned up
[  268.931900][T20189] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  268.967908][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.986338][T20182] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  268.998379][T20182] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  269.028690][T20199] loop5: detected capacity change from 0 to 1024
[  269.031444][T20182] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  269.050491][T20182] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  269.067657][T20197] loop0: detected capacity change from 0 to 2048
[  269.085823][T20201] __nla_validate_parse: 7 callbacks suppressed
[  269.085902][T20201] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6578'.
[  269.115848][T20199] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.134872][T20197] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  269.147403][T20199] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  269.164951][T20197] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  269.187226][T20209] netem: change failed
[  269.199957][T19342] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.239646][   T29] kauditd_printk_skb: 310 callbacks suppressed
[  269.239671][   T29] audit: type=1400 audit(1741167360.428:8292): avc:  denied  { read } for  pid=20214 comm="syz.5.6581" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  269.418755][T20234] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6591'.
[  269.494750][T20234] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=20234 comm=syz.1.6591
[  269.520632][   T29] audit: type=1400 audit(1741167360.708:8293): avc:  denied  { read } for  pid=20233 comm="syz.1.6591" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  269.671202][T20254] hsr_slave_0: left promiscuous mode
[  269.707844][T20257] netlink: 'syz.1.6600': attribute type 10 has an invalid length.
[  269.815305][   T29] audit: type=1326 audit(1741167360.998:8294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20263 comm="syz.5.6602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  269.839247][   T29] audit: type=1326 audit(1741167360.998:8295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20263 comm="syz.5.6602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  269.864015][   T29] audit: type=1326 audit(1741167360.998:8296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20263 comm="syz.5.6602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  269.887778][   T29] audit: type=1326 audit(1741167360.998:8297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20263 comm="syz.5.6602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  269.911485][   T29] audit: type=1326 audit(1741167360.998:8298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20263 comm="syz.5.6602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  269.935068][   T29] audit: type=1326 audit(1741167360.998:8299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20263 comm="syz.5.6602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  269.958623][   T29] audit: type=1326 audit(1741167360.998:8300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20263 comm="syz.5.6602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  269.982222][   T29] audit: type=1326 audit(1741167360.998:8301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20263 comm="syz.5.6602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ea1ad169 code=0x7ffc0000
[  270.063693][T20273] loop5: detected capacity change from 0 to 1024
[  270.107794][T20273] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.168186][T19342] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.209412][T20290] loop5: detected capacity change from 0 to 1024
[  270.216881][T20288] ip6gre2: entered allmulticast mode
[  270.252122][T20290] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.307223][T19848] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set
[  270.341330][T19342] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.376953][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.450106][T20308] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6619'.
[  270.512419][T20320] pim6reg1: entered promiscuous mode
[  270.517824][T20320] pim6reg1: entered allmulticast mode
[  270.671862][T20342] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  270.721247][T20348] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6637'.
[  270.818823][T20357] loop5: detected capacity change from 0 to 2048
[  270.838045][T20357] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.916805][T20357] ==================================================================
[  270.924985][T20357] BUG: KCSAN: data-race in xas_find_marked / xas_set_mark
[  270.932161][T20357] 
[  270.934497][T20357] write to 0xffff888106356fa4 of 4 bytes by task 20363 on cpu 1:
[  270.942242][T20357]  xas_set_mark+0x131/0x150
[  270.946790][T20357]  __folio_start_writeback+0x1e8/0x430
[  270.952301][T20357]  ext4_bio_write_folio+0x591/0x9d0
[  270.957528][T20357]  mpage_process_page_bufs+0x486/0x5d0
[  270.963011][T20357]  mpage_prepare_extent_to_map+0x788/0xb80
[  270.968840][T20357]  ext4_do_writepages+0xa20/0x2130
[  270.973989][T20357]  ext4_writepages+0x159/0x2e0
[  270.978780][T20357]  do_writepages+0x1d8/0x480
[  270.983488][T20357]  file_write_and_wait_range+0x168/0x2f0
[  270.989175][T20357]  generic_buffers_fsync_noflush+0x46/0x120
[  270.995112][T20357]  ext4_sync_file+0x1ff/0x6c0
[  270.999832][T20357]  vfs_fsync_range+0x116/0x130
[  271.004626][T20357]  ext4_buffered_write_iter+0x358/0x3c0
[  271.010225][T20357]  ext4_file_write_iter+0x383/0xf20
[  271.015478][T20357]  iter_file_splice_write+0x5f1/0x980
[  271.020880][T20357]  direct_splice_actor+0x160/0x2c0
[  271.026028][T20357]  splice_direct_to_actor+0x302/0x670
[  271.031439][T20357]  do_splice_direct+0xd7/0x150
[  271.036236][T20357]  do_sendfile+0x398/0x660
[  271.040675][T20357]  __x64_sys_sendfile64+0x110/0x150
[  271.045911][T20357]  x64_sys_call+0xfbd/0x2dc0
[  271.050535][T20357]  do_syscall_64+0xc9/0x1c0
[  271.055080][T20357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.061009][T20357] 
[  271.063350][T20357] read to 0xffff888106356fa4 of 4 bytes by task 20357 on cpu 0:
[  271.071007][T20357]  xas_find_marked+0x608/0x650
[  271.075812][T20357]  find_get_entry+0x54/0x390
[  271.080420][T20357]  filemap_get_folios_tag+0x9e/0x210
[  271.085717][T20357]  mpage_prepare_extent_to_map+0x329/0xb80
[  271.091719][T20357]  ext4_do_writepages+0x6ea/0x2130
[  271.096869][T20357]  ext4_writepages+0x159/0x2e0
[  271.101659][T20357]  do_writepages+0x1d8/0x480
[  271.106287][T20357]  file_write_and_wait_range+0x168/0x2f0
[  271.111964][T20357]  generic_buffers_fsync_noflush+0x46/0x120
[  271.117891][T20357]  ext4_sync_file+0x1ff/0x6c0
[  271.122614][T20357]  vfs_fsync_range+0x116/0x130
[  271.127411][T20357]  ext4_buffered_write_iter+0x358/0x3c0
[  271.132977][T20357]  ext4_file_write_iter+0x383/0xf20
[  271.138196][T20357]  iter_file_splice_write+0x5f1/0x980
[  271.143585][T20357]  direct_splice_actor+0x160/0x2c0
[  271.148706][T20357]  splice_direct_to_actor+0x302/0x670
[  271.154088][T20357]  do_splice_direct+0xd7/0x150
[  271.158860][T20357]  do_sendfile+0x398/0x660
[  271.163291][T20357]  __x64_sys_sendfile64+0x110/0x150
[  271.168521][T20357]  x64_sys_call+0xfbd/0x2dc0
[  271.173144][T20357]  do_syscall_64+0xc9/0x1c0
[  271.177673][T20357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.183588][T20357] 
[  271.185914][T20357] value changed: 0x0a000021 -> 0x04000021
[  271.191651][T20357] 
[  271.193976][T20357] Reported by Kernel Concurrency Sanitizer on:
[  271.200175][T20357] CPU: 0 UID: 0 PID: 20357 Comm: syz.5.6641 Tainted: G        W          6.14.0-rc5-syzkaller-00016-g48a5eed9ad58 #0
[  271.212438][T20357] Tainted: [W]=WARN
[  271.216242][T20357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  271.226312][T20357] ==================================================================
[  271.282420][T19342] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.