last executing test programs:

4.710147409s ago: executing program 4:
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$getown(0xffffffffffffffff, 0x9)
semop(0x0, 0x0, 0x0)
semtimedop(0x0, &(0x7f00000001c0)=[{0x2}], 0x1, 0x0)
semget$private(0x0, 0x4, 0x0)
semtimedop(0x0, 0x0, 0x0, 0x0)
semop(0x0, 0x0, 0x0)
semop(0x0, &(0x7f0000000180)=[{}], 0x1)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000340)=[0x1, 0x0])
semop(0x0, &(0x7f0000000300)=[{0x0, 0xd90d, 0x1000}], 0x1)
semctl$IPC_RMID(0x0, 0x2, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000040)=ANY=[@ANYRESOCT], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB])

4.605819735s ago: executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000200), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000100)='ext2\x00', &(0x7f0000000500)='./bus\x00', 0x2008002, &(0x7f0000000400), 0x20, 0x58d, &(0x7f0000001540)="$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")
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000ac0), 0xffffffffffffffff)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000140)=0x6)
sendmmsg$inet(r1, &(0x7f0000000400)=[{{0x0, 0xe, 0x0}}], 0x1, 0x20040006)
setsockopt$inet_tcp_int(r1, 0x6, 0x19, &(0x7f00000000c0), 0x4)
io_uring_setup(0xb3e, &(0x7f00000002c0))
socket(0x5b79e2211a31992c, 0x1, 0x7)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000", @ANYRES32, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r2)
r3 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000007fc0)=[@in={0x2, 0x0, @rand_addr=0x64010102}]}, 0x0)
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000), &(0x7f0000000140)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
r5 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(r4, 0x8008551d, &(0x7f0000000180)=ANY=[@ANYBLOB="321500001300000000830c047e868d8a0380068506030b01808b8d"])
fcntl$dupfd(r5, 0x0, r5)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000380)='./file0\x00', 0x200000, &(0x7f0000000600)={[{@i_version}, {@debug}, {@debug}, {@delalloc}, {@nodiscard}, {@bh}, {@jqfmt_vfsold}, {@grpquota}], [{@dont_hash}]}, 0xfe, 0x48a, &(0x7f0000000dc0)="$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")
r6 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x0)
sendfile(r6, 0xffffffffffffffff, 0x0, 0x100800001)

2.164937838s ago: executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
listen(r0, 0x0)
poll(&(0x7f0000000100)=[{}], 0x1, 0xfff)
io_setup(0x2, &(0x7f0000000200)=<r1=>0x0)
r2 = eventfd2(0x0, 0x0)
ppoll(&(0x7f0000000180)=[{r2, 0x11}], 0x1, 0x0, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000140)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x3, r2}])
shutdown(r0, 0x0)

2.08961423s ago: executing program 0:
prctl$PR_SET_MM(0x23, 0x1, &(0x7f0000ff0000/0x10000)=nil)
mbind(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x4002, &(0x7f0000000000)=0x2, 0x3, 0x0)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
brk(0x20ffc004)
mmap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x0, 0x80013, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000080)='./file0\x00', 0x2010050, &(0x7f0000000580)=ANY=[@ANYRES32=<r0=>0x0, @ANYRES32, @ANYBLOB="574ebc0e94989fcde4c7e6c29d5b7d84ea1d3b850bb44bd48bb9519bc17acbb165391925581f91c0647c1d56315d4d044e055c5842362d6e3547a65f0d1dc45f590e08b80c1182db21b765ab93d407000000a9415a11b2facb5efbeda5c99dab23a7176fd9bdcc116a308a7b3a9e3562550da7ba26451b761e0bc1c92c045eee"], 0xff, 0x2ce, &(0x7f0000000640)="$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")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYRESDEC=r1], 0x0, 0x6, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffff}, 0x90)
poll(&(0x7f0000001280), 0xa4, 0x3)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)={&(0x7f0000000940)=ANY=[@ANYRES16, @ANYBLOB="100527bd7000fddbdf250d00000008002c00060000000500300001000000", @ANYRES32=r0, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x8000005}, 0x10)
socket$inet6_mptcp(0xa, 0x1, 0x106)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)
fallocate(0xffffffffffffffff, 0x30, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0x92, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x0, 0x14, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x10000, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x90)
socket$inet_smc(0x2b, 0x1, 0x0)

2.057166725s ago: executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000001c0)={'batadv_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="440000001800010000000000000000000a10000000000000000000001800160014000100010000000000fbffffff0f000000000008000400", @ANYRES32=r1, @ANYBLOB="0600150007"], 0x44}}, 0x0)

1.993261685s ago: executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
listen(r0, 0x0)
io_setup(0x2007, &(0x7f0000000200)=<r1=>0x0)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000040), 0x4)
io_submit(r1, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x6}]})
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r2, 0x0)
fallocate(r2, 0x0, 0x0, 0x1000f4)
r3 = memfd_create(&(0x7f0000000300)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b}\xfc\x1d\x03\xe1\xfcm\x9b\xf7fo\"i\xa1hk\x1f\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94T\x81@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f\x19\xf7]#\xed,\xc7\x11\tp\xf4\xa3\xee\x00\x00\x00\x00\'}\x18\xe8O\xa8#K\xb6\xe4U\x92\xd2\x9d\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xcf+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96\r[n\xc6\x99\x1fr<\x06\xb3\xbcT\x00\xda6\x18/\x18l\xc1\x81\x8e8L\xcb*S_\xd0:\xa4V\xbd\xf1\xa4\xb75\xa9\x9d\xe0\x9b\xd3\x95\xc88n:\x89>?2kovd\xa4\x1bl+\x14\x17\x14\x17C2! U\x04:\xd93F\xb9\xfc\x1b\xfd}\x05\xf9\x11\xf3)>q\x10\xd3\xf0\xaf>\xf8t(bX\xe3g\x05\xfe\b\xbcy\x95*\xca\a\xaf\xbb\xf9\xc3Y\xa2\x91\x90.\xc8\xbe\xb0\xa6\xbd\xbd\xfd\xfaf*\xb2&\x82\xa0\x17\xe7)\xf5\xa2\xccv\n\x1b\xd4\xf4\x11*\xc9\xc6*\xa4.\x94[$\xb8\xb3Q\xde\xd8A\xa4~c,`\x02\xb8!r\xac\x82\x13\xd0}C7\xfb\xf2\tM\x1e\xe9\xa5\v\xc5\xba(\x89\xb0l\x92H\x1cR\x1f>\xc4ie\xe0B\xf0[\xe2\xe1\x12\x1d\x8fR&\x92I\xf82&\x16<\xf2RR\xc2\x02.Q\xef\x85\xef\xf9\xe5\x00\xe9\xca\xb1\x8c\x11\x11l\x9f\xc8\b\xf7A\xa6\x81\xad\xdc\x95\xc8\xef\x102\xa8\x87\x01\x00\\\xfee \n0F\xbc\x85\xc5C\xd0\x99\xe4\t\xab`\'t\xc2\xe9\x13\xcag\xea\xb3\xb5\x92\x00J\xc6y\x05\xcc\xde\xa0\xf6\xb9 \xe5\xdd\f\x18\xfc\xe0\xc3(\xd8\xeb\x1a6\xe6\xfa\x93\xc07R\x0f-\x9e\xf3\x87O\xd9\xd5o\x1bA\x88L/\xe7>45Q?\be\x7f\xa9\x9a\xcae\xd8Y\xdf]\x1bS\x825\xcb\x00\xa4}\x97\x84T\xad\x9b\x1e!\x8a\xbc\x02+#Q\xa9 \xe9\x05r\xe1\xec\x0f\xa7\xe6Of\x95\x02{y?{\xb3\x1avx<G\xaf8\x93l', 0x6)
ftruncate(r3, 0x0)
finit_module(0xffffffffffffffff, 0x0, 0x0)
shutdown(r0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@bloom_filter={0x1e, 0x8, 0x1ff, 0x5, 0x0, 0xffffffffffffffff, 0xfffffffb, '\x00', 0x0, r2, 0x0, 0x0, 0x1, 0xb}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x3, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)

1.82987274s ago: executing program 3:
syz_open_dev$tty1(0xc, 0x4, 0x1)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x91, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000c80)=@mangle={'mangle\x00', 0x64, 0x6, 0x5d8, 0x0, 0x240, 0x438, 0x150, 0x150, 0x508, 0x508, 0x508, 0x508, 0x508, 0x6, 0x0, {[{{@uncond, 0x11e, 0x108, 0x150, 0x1f000000, {}, [@common=@unspec=@connbytes={{0x38}}, @inet=@rpfilter={{0x28}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@multicast1, @ipv4=@local}}}, {{@uncond, 0x0, 0xa8, 0xf0, 0x7400}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@loopback, 'ip_vti0\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00', 0x0, {0x68}}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SET2={0x30}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@TOS={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x638)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x42)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/crypto\x00', 0x0, 0x0)
ioctl$FIBMAP(r1, 0x1, &(0x7f0000000b80))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x10)
io_uring_setup(0x30d3, &(0x7f0000000000))
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$inet(r2, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000140)="be38", 0x2}], 0x1, &(0x7f0000000080)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @dev}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xa5}}], 0x38}, 0x0)

1.807823043s ago: executing program 3:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./bus\x00', 0x80d0, &(0x7f0000000800)=ANY=[@ANYBLOB="646f74732c6e6f646f74732c6e6f646f74732c646d61736b3d30303030303030303030303030303030303037373737372c646f74732c6e6f646f74732c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030302c6e6f646f74732c646f74732c6e6f646f74732c616c6c6f775f7574696d653d3030303030303030303030303030000000003030cfa65c433030312c646f74732c646f74732c6e6f646f74732c6e6f646f74732c646f74732c747a3d5554432c6e6f646f74732c6e66732c646f74732c6e6f646f74732c636865636b3d7374726963742c00"], 0xfd, 0x1bf, &(0x7f0000000640)="$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")
inotify_init()
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x0, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000079104800000000006104000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x10000003}, 0x90)
close(r0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000003300), 0x0, 0x0)
io_setup(0x3, &(0x7f0000000180)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x300, 0x0, 0x5, 0x0, r1, 0x0}])
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)

1.712378398s ago: executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000200), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000100)='ext2\x00', &(0x7f0000000500)='./bus\x00', 0x2008002, &(0x7f0000000400), 0x20, 0x58d, &(0x7f0000001540)="$eJzs3c1vHGcZAPBnxp9x0zqBHqACEqAQUJR1vGmjqpckFxCqKiEiDgih1Ngby3idDdl1qU0k3L8BJJA4wZ/AAYkDUk89cOOIxAGBygEpQARKkEBdNLMf2cS7ydrZj8b7+0nT+Xhn5nneesfvu+/G+wYwsU5HxF5EzEbEWxGx2DyeNJe43Fiy8+7dvb16/+7t1STq9av/SPLy7Fh0XJN5rnnP+Yj4xlcjvpvsj1vd2d1cKZdLt5r7S7Wtm0vVnd1zG1sr66X10o1i8eLyxfOvXXi1OLC6ntr61Z2vbLzxzd/+5tMf/H7vyz/M0jreLOusR/v8AcRsVH2mHSczHRFv5FvHBhBhvKaa69kx58HhpBHxsYj4XP78L8ZU/ups+0u9YXwJAgADV68vRn2xcx8AOOrSfAwsSQsRkabNTkChMYb3Yiyk5Uq1dvZ6ZfvGWmOs7ETMpNc3yqXzJ+f++P385Jkk21/Oy/LyfL/4yP6FiDgZET+ZO5bvF1Yr5bXxdHkAYOI919n+R8S/59K0UOjr0i6f6gEAz4z5cScAAIzcAdv/6WHlAQCMjvf/ADB5erT/yf7tvZHkAwAMn/f/ADB5tP8AMHm0/wAwUb7+5pvZUr/f/P7rtbd3tjcrb59bK1U3C1vbq4XVyq2bhfVKZT3/zp6tx9wq2YuIcqVyc/mV2H5nqVaq1paqO7vXtirbN2rX8u/1vlaaGV3VAIAeTp567w9JROy9fixfomMuB201HG3puBMAxmbq4Jd8pz2XlQ4CPNN8lwdMrr6a8LyT8Luh5wKMRxJx9cL0iYcPznfdfNjPDhDEvzOCj5Qzn+xr/D8JczzDkWP8HybXIcb/I+LSwPMARu+A4/+Xh5UHMHr1evLonP+z7SIA4Eh60uf/jxkfqP9okB0RYGyeNJn3QD7/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgCPmeER8L5K0kM8Fnmb/TQuFiOcj4kTMJNc3yqXzEfFCnIqImblsf3ncSQMATyn9W9Kc/+vM4svHHy2dTf4zl68j4gc/v/rTd1ZqtVvL2fF/to/PtaYPKz647knzCgIAo5O338XmuuON/L27t1dbyyjzuXMl/tecinj1/t3b+dIomY7sYMR83pdY+FcS0xHx/kJjLtKXHj83cd/23o2IT3Srf5KPjZz4sDHzaSt+Sxb7+VHEj1b89KH4aV7WWGedr493v/2HA0gRjqz3rkTE5W7PXxqn83X3538+/w319O5cadys9bvvfkf86WakqS7xs2f+dL8xXnn/a/sO1hcbZe9GvDTdLX7Sjp/0iP9yn/H/9KnP/PhSj7L6LyLORPf4nbGWals3l6o7u+c2tlbWS+ulG8XixeWL51+78GpxKR+jXmqNVO/399fPvtArt6z+Cz3iz3et/2z72i/0Wf9f/vetb3/2we7co/G/9PnuP/8Xu8ZvyNrEL/aclPthKwu/7nlmFn+tR/2f9PM/21/4+OCvu2t9ngoAjEB1Z3dzpVwu3XqqjTSNGMR99m1kKfZ3cqu7eIhYWf+6eeTPMcDkZ/tOvvvGzOGqc7iN1gui5zlTvYv2bUy3+4qDTfVb2R2H+n/j0r4j6cBrsbs5c/jL7w39ldDx6AFH2YOHftyZAAAAAAAAAAAAAAAAvQz/D8v8ZQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADD8/8AAAD//wpv0SM=")
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000ac0), 0xffffffffffffffff)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000140)=0x6)
sendmmsg$inet(r1, &(0x7f0000000400)=[{{0x0, 0xe, 0x0}}], 0x1, 0x20040006)
setsockopt$inet_tcp_int(r1, 0x6, 0x19, &(0x7f00000000c0), 0x4)
io_uring_setup(0xb3e, &(0x7f00000002c0))
socket(0x5b79e2211a31992c, 0x1, 0x7)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000", @ANYRES32, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r2)
r3 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000007fc0)=[@in={0x2, 0x0, @rand_addr=0x64010102}]}, 0x0)
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000), &(0x7f0000000140)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
r5 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(r4, 0x8008551d, &(0x7f0000000180)=ANY=[@ANYBLOB="321500001300000000830c047e868d8a0380068506030b01808b8d"])
fcntl$dupfd(r5, 0x0, r5)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000380)='./file0\x00', 0x200000, &(0x7f0000000600)={[{@i_version}, {@debug}, {@debug}, {@delalloc}, {@nodiscard}, {@bh}, {@jqfmt_vfsold}, {@grpquota}], [{@dont_hash}]}, 0xfe, 0x48a, &(0x7f0000000dc0)="$eJzs3M1vFVUbAPBnbm9bPt/2Bd4PEKSKRuJHS8uHLNxoNGGhiYkuMK5qW0ilUENrIoRodYFLQ+LeuPcPMK50Y9CViVvcGxJi2ICuxsydmdKWe+u95baXcn+/5LbnzJzOOc/MnM6ZOdMG0LWGsi9JxI6IuBERA3l2eYGh/Nvd21cm/rx9ZSKJNH3rj6RW7s7tKxNl0fLntueZNC3y/WWB67sXN3v13YjxmZmpi0V+ZP78ByNzly6/MH1+/OzU2akLYydPHjt6oO/E2PG2xJnFdWffx7P7955659obE6evvffTN1l7dxTrl8axioOt1DmU7926nm5lQ5vAziXppLp8Xe9GN4am9UREtThGN2IgemLr4rqBeO2zjjYOWFdpmqb9dZYX16eFFHiEJdHpFgCdUV7vs/vf8rOBw4+Ou/VyfgOUxX23+ORrqlHJEwd7V9zfttNQRJxe+Our7BPNP4cAAFiz77Pxz/P1xn+V+G+e6Mu+/CuqtTmUwYj4d0TsiojdEbEnIv4TUSv7v4j4f4v1r5whuX/8U7m55uCakI3/XirmtpaP/yplkcGeIrezFn9vcmZ6ZupIbZ9EHI7e/jPTydToKnX88OqvXzRat3T8l32y+suxYNGOm9UVD+gmx+fHHyTmpW59GrGvWi/+JMppnCQi9kbEvjXWMf1steG6f45/FY0327T064hn8uO/ECviLyUN5ydHXzwxdnxkS8xMHRkpz4r7/fzL1Tcb1f9A8bdBdvy31T3/F+MfTLZEzF26fK42XzvXeh1Xf/u84T1Ni+f/qZ3F+d+XvF1b0Fes+Gh8fv7iaERf8vr9y8fuba3Ml+Wz+A8fqt//d8W9PfFYROyPiAMR8XgxEZy1/YmIeDIiDq0S//VXnnq/9fjrPZVvvyz+yZXHf+uyIoNZ/PeOf+uJnnM/fteo/uaO/7Fa6nCxpJnff802cO17DgAAADaPSu0d+KQyvJiuVIaH83f498S2yszs3PxzZ2Y/vDCZvys/GL2V8knXwJLnoaPFs+EyP7Yif7R4bvxlz9Zafnhidmay08FDl9veoP9nfu/pdOuAddfKPFqyju0ANl4T/b9vI9oBbLw2vEcDbEKJ/g9dTf+H7lWv/3/SsPTwt+vaGGBDuf5D92qi/y/k3xqPCoDNyfUfupf+D12p4d/GVx7oT/4lliTK/3//sLSnPYmoPBTNeLQTaZqm1ab/mUULiXQgPyezJf11y3TytxIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAED7/B0AAP//CwrjNA==")
r6 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x0)
sendfile(r6, 0xffffffffffffffff, 0x0, 0x100800001)

1.379837778s ago: executing program 1:
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$getown(0xffffffffffffffff, 0x9)
semop(0x0, 0x0, 0x0)
semtimedop(0x0, &(0x7f00000001c0)=[{0x2}], 0x1, 0x0)
semget$private(0x0, 0x4, 0x0)
semtimedop(0x0, 0x0, 0x0, 0x0)
semop(0x0, 0x0, 0x0)
semop(0x0, &(0x7f0000000180)=[{}], 0x1)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000340)=[0x1, 0x0])
semop(0x0, &(0x7f0000000300)=[{0x0, 0xd90d, 0x1000}], 0x1)
semctl$IPC_RMID(0x0, 0x2, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @private2}}}, 0x30)
write$binfmt_elf64(r2, &(0x7f0000000040)=ANY=[@ANYRESOCT], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB])

1.357746261s ago: executing program 1:
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f00000002c0)='./file1/file0\x00', 0x200c0a, &(0x7f0000000700)=ANY=[@ANYRES32, @ANYRESHEX, @ANYRESHEX], 0x1, 0x1d6, &(0x7f00000004c0)="$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")
socket$inet_smc(0x2b, 0x1, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
unshare(0x42000000)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x2, 0x500, &(0x7f0000000500)="$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")
creat(&(0x7f0000000380)='./file0\x00', 0x0)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x8000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff00c}, {0x6}]}, 0x10)
sendmsg$nl_route_sched_retired(r3, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000600)=@delqdisc={0x24}, 0x24}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = syz_io_uring_setup(0x4b5, &(0x7f0000000140), &(0x7f0000000100), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000001680), 0x20a3)

1.217635423s ago: executing program 4:
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000100), 0xa0080, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
mmap(&(0x7f0000b19000/0x2000)=nil, 0x2000, 0x44e2a2aaf4e5a606, 0x50, r0, 0x519bd000)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000002ec0)=""/4096, 0x1000)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000080)=0x14)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000040)=0x14)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, &(0x7f0000000140)=0x1, 0x4)
dup3(r3, r0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000ff0100000000000000000000030000040003000000020000000000000000000000000000010500000020000000000000000000000a020000000000"], 0x0, 0x4e, 0x0, 0x2}, 0x20)
r4 = perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_pktinfo(r5, 0x84, 0x14, 0xfffffffffffffffe, &(0x7f0000000000)=0x4)
r6 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140)={0xffffffffffffffff}, 0x4)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x74, r9}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MAX_AGE={0x8}]}}}]}, 0x3c}}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0x5, 0xcc, &(0x7f0000000240)=""/204, 0x0, 0x0, '\x00', r9, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r6}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r10)
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000a80)=ANY=[@ANYBLOB="850000002a00000025000000000000009500000000000000aecd48d6494d614dcc6fab5335ec470db2c6161dba392176dd2963038e1d69ba7ea94c500dc4ef2fad94ed406f21caf5adcf920569c00cc1199684fa758147c2f027c809fea019af247c93836d9ea2cfb0e60436e05425cc4686b066707de94a4f4d5fc79c1faca0f9d9924be41a9169bdfaf16da915b2e249ee1c6eeec4309e7a23c19a39484809539fca4e0b6fab1aa7d55545a34effa077faa55c59e88254f54077f799bf168301000000bf2255d6a0244d35b213bda84cc172afd8cc2e47a7d8b85a5e3d77ac463920e231b7ae0da8616d2b79db2e3d5986c82b5aa94e539b204d58f91f5da6c025d060ab186d94af98af1da2b5952eb15855933a212304e035f7a35dfc72c81256a55a25f8fe3b28d7e53c7160ec83070000020000004015cf10453f6c0b973b81a484ebad04859d928365a7ea3fab8b4b380a00d72b0000000000001cf555c14d56b51c2298237bebfc08e0d5976a942b846970cfd98b9d4139f1111f2cc5e46ac1c60a9b030074bfbcd4b09012175484135f0e519f0b1e4aaa026d570ecb5e8cddbed65ff702000000a3ff4f8a4cf796b07a6ff61c5552417fd703f7f14d8b78ac02ca3cdf6a662db1c9c89c9120072a5d00dcdd8595356c9b2492aaf1264d4ef4a410c882834867bcd2b6e559d17879570c8ad943e392955f4f979ea13201bafedcd2063d11dd665647223c78a996810000000571cbb17d9f37282462f0e9c147c0d497c61433c6ccc35601eef97ee611be8c97f4151ffdf6f7820549cda6cb799c6e924966a7f90bf8fd1e75ee76bd89346cfbb5567e54d3504723177d356c4604b7a492ecec37e83efceefd7ca2533659edc8be05cc85451c6a14507434eb54b6f43caea5c4bf690441974b155f5adc681a03c0bbb8358856175e2ce8b0cbbbe3c033e54ffca9ec9a7a3755e0f209150a07682c4e14e3a83558df6f3fc97f1730a136bdee07e98cb984b2e2304a1b63afefdb636e56bbaae4e62136574bc6371a0bb2be1a962aae9c1258da6ef590e1d85ea9e12b3025f43e7e08ccffc5064dea4c24cf4b98e1fc6efb5978f51e16b678eca0b658a56008948e561a9845e4ff29e2bdb1d0b923b272341c5e093fd66a294351c5356c1d06c92cf8ce3c7c56cd31121624d74517fd3666277f670e812b28e2f30d035cee5d0e77a3c7220000000000000005a474816bc59d2e2a00092419304b338a987e9d3044d856ce24f370030be3b5f79f034b8d3ebce68663ef5af469abe75b314fae31445859a5ece8fb11a4ee8e46354c9c3a041e12282ce24463aaf28345bd168b4177ce37ed85464c31679053e7f9d04bb5cb51da0b7958989fd70f09000000000000004fc4bda34536020076eacd3adaa4d2ee6fe0d072ccd44341f7fd53df58ae791ee8b489a7c9efe3625a9d971b5997485d6a063dc6f7359e2eccc2fb39d401adf59d44e58eb1c60b3475be31a9b7cf42b6402312d2725b8d9fa700a86407e79ae29d2c117ca65fc86c2dce97aa03279a66ec87122219b0f796ab92b1adecae50fdb40f7f02f750d6c977a191852c9ae031db044b2353199546609f9f69a6cfefdf879d447df53f3b9b70d10355b00300000000000000553d18a6cc50feeb7bfad9b7be3283b6450d264e7712d2f1d7004548b19162cef04d18d4f58fab987baab9789bfbd8f185b5631820420bf5b6522c0e21c882c66f4f25ffb6d95e07de02205fca4f18a2eb5b63e45d5d80fe527340935aa3c0b4f3f45b418a18217747ae442e31560e5b741445ea2a1acee2a81425ff000000d2a0a765d20b30f87af976a46f9a9a1ac7dea1ea6845f9aa6623920dacc107f532348cc21164efe794874eac73381e961f3d9c8c21578fe3245097c280abe51423b9f6cd72b5da6d0252803c66730cd5eac907f09b9695906313f88735fce5115dc83ed73d8ee4a91322608c6fc01e1b9e16587bb5f721303e6b89e5c54d680ac66d09af90dbf5000000000000fa08ad0631c4b839688000c4da2a6bc4cf45854d221a2d5f96bc64647f15daa2ba79cd0f4254ed55217912ef84bd2927df82fc061aef2920c49b2a90886da75561173fa186cb7ee86dd4285c4721eb428c953296bb2f5d825da54dbef07c1b349b4901e093d13e6b9a22e887bc061d40bcaf0aa18623fd9b7179ccc692ba74b531b65c4decf9d080a8ac7e82d4cde1267aa64b2a94fd87a009e6742c2ddc3a9d7eccbb1831b1fa218277c2814a91cab7cb59c697166d6f1bb1a360470000000000000000000000000000000000000000000000000000f9f9b4ce7e871f507084c8c88e0652decbe579b03ed84ea94597dd1059620a050f69ea03b99b4e19d35f4a3b54e96ae2172effec7978a6344cec8e6debf5392882df78b0983e662dc0cb64b77f3f006b6b25443197ae93f0be6de5a703d003f00720943c0e4b33af00000000000000000021a688b2d7007fcc4b59f719afb0b3b7e0aee306ca70fe42bf4984a68f40e1fc043a03a17e4744359b87dc27c82d51cbeb64e52a28daeb6a78d6fe06181ecc8400003fa490b043d5c7d26e67eeb112c5a1b9786b4ff71e085b5086eb85831d1b864ebf3cd889c73f4a9247afd58a81853a3baf6a38de2a73cfde16709dff876740ad3300e4819bb9283e34df128e8e7f7803d941f3a34d92dfdef99e68ed2e40a643092ac41be4021595a92a283d4f7e58a00b5cec00000000003e6e10f04e7b051d4bd29af78b910556ff4238ce8908c6d40b62f1e0a5c5ac0243f4912dd111a0e2cff340157808b64c0ff1b323a488978a9bcdab72adb809b7616d0505b9b74ee45da30b678b1b7e2605b4539cae7b1c30e97481e355200d2f6d077348c1de554674d0fa0c64cea6519e217befd590ab7ade2d8b2f29551280c32784d3250645b705"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000400), r11)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb5, 0x6}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(r11, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="010000000000000000000100000008000200010000000800010000000000040008800400048038000c8014000b80080009"], 0x64}}, 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f0000000080), 0x4)

1.137561816s ago: executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x7f, 0x80000000, 0x0, 0x1020, r0, 0xffff, '\x00', 0x0, 0xffffffffffffffff, 0x4}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r4], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001a00)={&(0x7f00000002c0)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000300)="222b67eca438c5e8b9ce458671f583940de872b52e161c32c02539a5bf94af132e0d33984de4236eac157574a3e646f4d8c95150049a55f6679be88deebf22a2363cd69a0f3200113e97f0df224acaaa50e53142e3453d6211e070236ee06098797e3c238d99a4ea360eb6d6569a0ca6745876958e11ba5c0802db561225cf6c62ec8083824a51f41c65f43b8dc6a219effd0de35c95b65072946891a04466fe35116194022b7cb26fda06398806d0bd74d6c60faeb764af89f23f6248e993d4461390cd15fe892801", 0xc9}, {0x0}, {&(0x7f0000000640)}, {&(0x7f00000017c0)="737b852bb8c4faa5787f3c56ccc92fe57dfa0b938d97489a32a14b9e1a32f40e2bbea962dd358dac60c91bc1b9280c9ffc53122cfa230295c1c3bef689e4333100294b2209eaeb20585ec6c2c9186d3383", 0x51}, {&(0x7f00000005c0)}], 0x5}, 0x4080)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000140)=@o_path={&(0x7f00000000c0)='./file0\x00', 0x0, 0x8}, 0x18)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000400)='attr/current\x00')
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
r6 = socket$kcm(0x2, 0x2, 0x73)
sendmsg$kcm(r6, &(0x7f00000000c0)={&(0x7f0000000000)=@x25, 0x80, 0x0}, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r7 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r5)
sendmsg$OSF_MSG_ADD(r2, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000140)={0x268, 0x0, 0x5, 0x401, 0x0, 0x0, {}, [{{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz0\x00', "1a6b90dad8fa65b5b49348d2a068c2eda623ec414c5c6b749f58b1512dff6e00", "2d4a4b3424185768af17c8166fb8d823e734ec98821cac277b7234e3e76f0400"}}}]}, 0x268}}, 0x0)
syz_extract_tcp_res$synack(&(0x7f0000000440), 0x1, 0x0)

1.102769791s ago: executing program 1:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x1000}, 0x20)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r2=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001e80)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000740)={0x0, 0x2, &(0x7f0000000400)={&(0x7f0000000580)=ANY=[@ANYBLOB="200000001100030400"/20, @ANYRES32=r5], 0x20}}, 0x0)

1.051464409s ago: executing program 2:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./bus\x00', 0x80d0, &(0x7f0000000800)=ANY=[@ANYBLOB="646f74732c6e6f646f74732c6e6f646f74732c646d61736b3d30303030303030303030303030303030303037373737372c646f74732c6e6f646f74732c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030302c6e6f646f74732c646f74732c6e6f646f74732c616c6c6f775f7574696d653d3030303030303030303030303030000000003030cfa65c433030312c646f74732c646f74732c6e6f646f74732c6e6f646f74732c646f74732c747a3d5554432c6e6f646f74732c6e66732c646f74732c6e6f646f74732c636865636b3d7374726963742c00"], 0xfd, 0x1bf, &(0x7f0000000640)="$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")
inotify_init()
socket$nl_audit(0x10, 0x3, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x10000003}, 0x90)
close(r0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000003300), 0x0, 0x0)
io_setup(0x3, &(0x7f0000000180))
io_submit(0x0, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)

1.013611234s ago: executing program 4:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./bus\x00', 0x80d0, &(0x7f0000000800)=ANY=[@ANYBLOB="646f74732c6e6f646f74732c6e6f646f74732c646d61736b3d30303030303030303030303030303030303037373737372c646f74732c6e6f646f74732c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030302c6e6f646f74732c646f74732c6e6f646f74732c616c6c6f775f7574696d653d3030303030303030303030303030000000003030cfa65c433030312c646f74732c646f74732c6e6f646f74732c6e6f646f74732c646f74732c747a3d5554432c6e6f646f74732c6e66732c646f74732c6e6f646f74732c636865636b3d7374726963742c00"], 0xfd, 0x1bf, &(0x7f0000000640)="$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")
inotify_init()
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x0, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000079104800000000006104000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x10000003}, 0x90)
close(r0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000003300), 0x0, 0x0)
io_setup(0x3, &(0x7f0000000180)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x300, 0x0, 0x5, 0x0, r1, 0x0}])
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)

1.009089005s ago: executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_io_uring_setup(0x4f79, &(0x7f0000000400)={0x0, 0x0, 0x10100, 0x1, 0xfffffffe}, &(0x7f0000000080), &(0x7f0000000140)=<r2=>0x0)
r3 = memfd_secret(0x0)
ftruncate(r3, 0x5)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x11, r3, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x0, 0x27}, &(0x7f0000000180)='./file0\x00', 0x18})
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x6, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x4)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x180000, @empty}, 0x1c)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = getpid()
r7 = perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, r6, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r8, 0x2405, r7)
listen(r0, 0x4)
accept(r0, &(0x7f0000000080)=@can, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, 0xffffffffffffffff, 0x0)
setitimer(0x1, &(0x7f0000000000), 0x0)

994.048307ms ago: executing program 0:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000200)='./file0\x00', 0x2)
r1 = syz_open_procfs(0x0, &(0x7f0000000600)='fdinfo/3\x00')
pread64(r1, &(0x7f0000000300)=""/246, 0xf6, 0x8)

943.410415ms ago: executing program 2:
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f00000002c0)='./file1/file0\x00', 0x200c0a, &(0x7f0000000700)=ANY=[@ANYRES32, @ANYRESHEX, @ANYRESHEX], 0x1, 0x1d6, &(0x7f00000004c0)="$eJzs3T9rU18YB/Bv0v6a/ASxmyAOF1ycivoGrEgFMSAqGXRSaF0aEZIluhh3d32BvgDp1EUi9sbUhPin0dyr9fNZ8pDvyXnOMySZcvL44rP93eeDp+/Pv0u73UhzO9s5bGQzzXwxCgBwmhyOx/kwLtV9FgCgGj/x/f+x4iMBACv24OGjOzc6nZ37RdFODkbD7rBbPpb5rdudnSvFkc3jVx0Mh921aX61zIvZ/L+cmeTXFuYbuXzpKH/9Obt5tzOXt7K7+vEBAAAAAAAAAAAAAAAAAAAAAKAWW8XU5H6fZpK3b6b51nyeyf08ZfXV/UBz9/es58J6dXMAAAAAAAAAAAAAAAAAAADA32zw4uX+k15vr39ctJLMPrNcMT73zRaLiiLJrzc9adFMdb1WXlz/vRs2/pS5TlwUlfS6d/ZHa7LczhtJvr/m/yQrHjDJqHwDt2r9hAIAAAAAAAAAAAAAAAAAgH/H5Le+jf6g7pMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQH3K///v7fWXKV4lWRitzew8adWoeVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABOsU8BAAD//0jqKM8=")
socket$inet_smc(0x2b, 0x1, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
unshare(0x42000000)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x2, 0x500, &(0x7f0000000500)="$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")
creat(&(0x7f0000000380)='./file0\x00', 0x0)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x8000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff00c}, {0x6}]}, 0x10)
sendmsg$nl_route_sched_retired(r3, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000600)=@delqdisc={0x24}, 0x24}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = syz_io_uring_setup(0x4b5, &(0x7f0000000140), &(0x7f0000000100), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000001680), 0x20a3)

940.392076ms ago: executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000600)}], 0x1)

925.041768ms ago: executing program 0:
socket$nl_route(0x10, 0x3, 0x0)
socket$l2tp(0x2, 0x2, 0x73)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, &(0x7f0000000200)={0x18, 0x2, {0x0, @random="db3d3cc9903e", 'netpci0\x00'}})
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet(0x2, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000040)={0x2, {0x2, 0x3, 0x5, 0x8, 0x1}})
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x3, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48)

463.186749ms ago: executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
listen(r0, 0x0)
poll(&(0x7f0000000100)=[{}], 0x1, 0xfff)
io_setup(0x2, &(0x7f0000000200)=<r1=>0x0)
r2 = eventfd2(0x0, 0x0)
ppoll(&(0x7f0000000180)=[{r2, 0x11}], 0x1, 0x0, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000140)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x3, r2}])
shutdown(r0, 0x0)

448.145221ms ago: executing program 4:
prctl$PR_SET_MM(0x23, 0x1, &(0x7f0000ff0000/0x10000)=nil)
mbind(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x4002, &(0x7f0000000000)=0x2, 0x3, 0x0)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
brk(0x20ffc004)
mmap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x0, 0x80013, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000080)='./file0\x00', 0x2010050, &(0x7f0000000580)=ANY=[@ANYRES32=<r0=>0x0, @ANYRES32, @ANYBLOB="574ebc0e94989fcde4c7e6c29d5b7d84ea1d3b850bb44bd48bb9519bc17acbb165391925581f91c0647c1d56315d4d044e055c5842362d6e3547a65f0d1dc45f590e08b80c1182db21b765ab93d407000000a9415a11b2facb5efbeda5c99dab23a7176fd9bdcc116a308a7b3a9e3562550da7ba26451b761e0bc1c92c045eee"], 0xff, 0x2ce, &(0x7f0000000640)="$eJzs3M9LFH8cx/G3uu6uK7p7+PL98i2iN3UpgkG3e7CEUrRQqBtZEIw6W8tOu7IzGBuhduoa/REdxKM3oTp09dKtU5duHgo6JPRjYmdnddUVk9od0+cDdN7OzNvP58OM8hrBWb/17EEx7xh505XueK90iyzKhkiqVolUa5+6RCQudV0SlWaLcr7/87tT45O3r2Wy2ZEx1dHMxMW0qg6efvnw8fKZ127/zZXB1Zispe6uf0p/WPt37f/1HxP3C44WHC2VXTV1qvzejU7Zls4UnKKhesPzTMfSQunNpIh/vOyateN5uzw7W1WzNDOQmK1YjqNmqapFq6oSEalU1bxnFkpqGIYOJAT7iS2NjZkZv4wfuHm6DRPCb7uy68avVDJmj4j07To3t9SpWQEAgMNje/7Xnfnf1xVsa3u+e57X3H+w/L8a3SP/B/m+kf9tq57/Havi/lr+d8vq1vJ/hPx/ALmt/I8jq5b/E8HPr+/JneUhvyD/AwAAAAAAAAAAAAAAAAAAAADwN9jwvKTnecnGtvERC/4lvPF12PNEe3D9j7dxDQrVuIj9dC43lxOxe+s7N6+7JUOSlG/+/RCo16NXsyND6kvJK3sh6F+Yy/X4jZm8FMQWS4YlKanW/cP1ft3e3yuJ5v60JOWf1v3plv1ROXe2qd+QpLydlrLYMuPf11v988Oql69nd/T3+ecBAAAAAHAUGLqp5fO7Yex1vN6fyYv4z9f7/31gx/N1RE5Ewl07AAAAAADHhVN9VDRt26p0sIiLSPvHqq2us+tqUcxfCHP0sItk057GS6Q7Po1I86CxYBZtGuu/5y++/LlveGnl5NfwrmB4v5MAAAAAtMdW6N/7HO9jJ2cEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDx04nXiYW9RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCw+BkAAP//0b8mQA==")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYRESDEC=r1], 0x0, 0x6, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffff}, 0x90)
poll(&(0x7f0000001280), 0xa4, 0x3)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)={&(0x7f0000000940)=ANY=[@ANYRES16, @ANYBLOB="100527bd7000fddbdf250d00000008002c00060000000500300001000000", @ANYRES32=r0, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x8000005}, 0x10)
socket$inet6_mptcp(0xa, 0x1, 0x106)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)
fallocate(0xffffffffffffffff, 0x30, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0x92, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x0, 0x14, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x10000, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x90)
socket$inet_smc(0x2b, 0x1, 0x0)

247.198542ms ago: executing program 2:
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r0)

240.056043ms ago: executing program 3:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xef, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x418484, &(0x7f0000000440), 0x1, 0x775, &(0x7f0000001180)="$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")
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback, 0xe7c}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000003840)=[{&(0x7f00000006c0)="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", 0x1000}, {&(0x7f0000000000)="87", 0x1}, {&(0x7f0000003300)="9e", 0x1}], 0x3}}], 0x1, 0x4000000)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x6, 0x0, 0xb}, {0x65}}, [@printk={@lld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xc, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x4}}], {{0x7, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket(0x10, 0x3, 0x0)
write(r2, &(0x7f0000000000)="240000001a00ffffffff00000000040180000000000000000000000008000f0040000000", 0x24)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000001b00)=@bloom_filter={0x1e, 0x4, 0xfffeffff, 0x0, 0x200, 0xffffffffffffffff, 0x7ff, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x0, 0xc}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x8, &(0x7f0000001900)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7700000000000009500000000000000010444dfc0bdc01b77a342f735208932ba26cd4d46796ba62db5d7cdfadb3646ff72aeb602efc37a7c22060f02f3433f9ea98b1b5fcdf2169546fe63029f928ba4084e00fda3ceff02f0cb9a6990aa1e91de6ab341b4da27533f7680171e8be5dc282fcc9fea12c013c3d29c30fec70af7a45d3bf9269c91b9d753ae85436269a7e001b8017e2185742cb7c90661165548941f7234c52b18a65be09d7b894be4a26512d62850793bd11744d7f683713db9a2750952258e4be00169922d926ee1c3f168557ac5620fa2ef39b02a7a02335349b3c1f78e2fc0b8129ec5137888b2db1cee9d030041d2b4f6f95444b8d9b1ce2695c6afadf8ad1852a11e94b1089af023bbc9685237cc21709942ff6055e2a4e83f021389909a8704bda58663f540e424c5f75d67060df487ba3fc0fccfa13215f6c18cd4fad2b8d03bc6610ed2f68562b71f387ce31932d8708a1fd49466af996c0d5e440ed08f3d520de526d23a75f9a8aa946f25238473d337f0698bc9d57d18a71a49260e9b7e67beaa515dc94c9b469856399e749625d4894d8204ea0f5b644957b34f10eaf975c6e063ef289639ad1e"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x0, "00000000000000000000044f00"}}}]}, 0x48}}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'veth1_to_hsr\x00'})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0xc, 0x30c}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, &(0x7f0000000240)=""/183, 0x26, 0xb7, 0x1}, 0x20)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)

179.254752ms ago: executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
listen(r0, 0x0)
io_setup(0x2007, &(0x7f0000000200)=<r1=>0x0)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000040), 0x4)
io_submit(r1, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x6}]})
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r2, 0x0)
fallocate(r2, 0x0, 0x0, 0x1000f4)
r3 = memfd_create(&(0x7f0000000300)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b}\xfc\x1d\x03\xe1\xfcm\x9b\xf7fo\"i\xa1hk\x1f\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94T\x81@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f\x19\xf7]#\xed,\xc7\x11\tp\xf4\xa3\xee\x00\x00\x00\x00\'}\x18\xe8O\xa8#K\xb6\xe4U\x92\xd2\x9d\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xcf+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96\r[n\xc6\x99\x1fr<\x06\xb3\xbcT\x00\xda6\x18/\x18l\xc1\x81\x8e8L\xcb*S_\xd0:\xa4V\xbd\xf1\xa4\xb75\xa9\x9d\xe0\x9b\xd3\x95\xc88n:\x89>?2kovd\xa4\x1bl+\x14\x17\x14\x17C2! U\x04:\xd93F\xb9\xfc\x1b\xfd}\x05\xf9\x11\xf3)>q\x10\xd3\xf0\xaf>\xf8t(bX\xe3g\x05\xfe\b\xbcy\x95*\xca\a\xaf\xbb\xf9\xc3Y\xa2\x91\x90.\xc8\xbe\xb0\xa6\xbd\xbd\xfd\xfaf*\xb2&\x82\xa0\x17\xe7)\xf5\xa2\xccv\n\x1b\xd4\xf4\x11*\xc9\xc6*\xa4.\x94[$\xb8\xb3Q\xde\xd8A\xa4~c,`\x02\xb8!r\xac\x82\x13\xd0}C7\xfb\xf2\tM\x1e\xe9\xa5\v\xc5\xba(\x89\xb0l\x92H\x1cR\x1f>\xc4ie\xe0B\xf0[\xe2\xe1\x12\x1d\x8fR&\x92I\xf82&\x16<\xf2RR\xc2\x02.Q\xef\x85\xef\xf9\xe5\x00\xe9\xca\xb1\x8c\x11\x11l\x9f\xc8\b\xf7A\xa6\x81\xad\xdc\x95\xc8\xef\x102\xa8\x87\x01\x00\\\xfee \n0F\xbc\x85\xc5C\xd0\x99\xe4\t\xab`\'t\xc2\xe9\x13\xcag\xea\xb3\xb5\x92\x00J\xc6y\x05\xcc\xde\xa0\xf6\xb9 \xe5\xdd\f\x18\xfc\xe0\xc3(\xd8\xeb\x1a6\xe6\xfa\x93\xc07R\x0f-\x9e\xf3\x87O\xd9\xd5o\x1bA\x88L/\xe7>45Q?\be\x7f\xa9\x9a\xcae\xd8Y\xdf]\x1bS\x825\xcb\x00\xa4}\x97\x84T\xad\x9b\x1e!\x8a\xbc\x02+#Q\xa9 \xe9\x05r\xe1\xec\x0f\xa7\xe6Of\x95\x02{y?{\xb3\x1avx<G\xaf8\x93l', 0x6)
ftruncate(r3, 0x0)
finit_module(0xffffffffffffffff, 0x0, 0x0)
shutdown(r0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@bloom_filter={0x1e, 0x8, 0x1ff, 0x5, 0x0, 0xffffffffffffffff, 0xfffffffb, '\x00', 0x0, r2, 0x0, 0x0, 0x1, 0xb}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x3, 0x4, 0x4, 0x0, 0x0, 0x1}, 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)

175.163893ms ago: executing program 3:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x1000}, 0x20)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r2=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001e80)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000740)={0x0, 0x2, &(0x7f0000000400)={&(0x7f0000000580)=ANY=[@ANYBLOB="200000001100030400"/20, @ANYRES32=r5], 0x20}}, 0x0)

138.240959ms ago: executing program 1:
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000100), 0xa0080, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
mmap(&(0x7f0000b19000/0x2000)=nil, 0x2000, 0x44e2a2aaf4e5a606, 0x50, r0, 0x519bd000)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000002ec0)=""/4096, 0x1000)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000080)=0x14)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000040)=0x14)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, &(0x7f0000000140)=0x1, 0x4)
dup3(r3, r0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000ff0100000000000000000000030000040003000000020000000000000000000000000000010500000020000000000000000000000a020000000000"], 0x0, 0x4e, 0x0, 0x2}, 0x20)
r4 = perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_pktinfo(r5, 0x84, 0x14, 0xfffffffffffffffe, &(0x7f0000000000)=0x4)
r6 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140)={0xffffffffffffffff}, 0x4)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x74, r9}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MAX_AGE={0x8}]}}}]}, 0x3c}}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0x5, 0xcc, &(0x7f0000000240)=""/204, 0x0, 0x0, '\x00', r9, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r6}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r10)
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000a80)=ANY=[@ANYBLOB="850000002a00000025000000000000009500000000000000aecd48d6494d614dcc6fab5335ec470db2c6161dba392176dd2963038e1d69ba7ea94c500dc4ef2fad94ed406f21caf5adcf920569c00cc1199684fa758147c2f027c809fea019af247c93836d9ea2cfb0e60436e05425cc4686b066707de94a4f4d5fc79c1faca0f9d9924be41a9169bdfaf16da915b2e249ee1c6eeec4309e7a23c19a39484809539fca4e0b6fab1aa7d55545a34effa077faa55c59e88254f54077f799bf168301000000bf2255d6a0244d35b213bda84cc172afd8cc2e47a7d8b85a5e3d77ac463920e231b7ae0da8616d2b79db2e3d5986c82b5aa94e539b204d58f91f5da6c025d060ab186d94af98af1da2b5952eb15855933a212304e035f7a35dfc72c81256a55a25f8fe3b28d7e53c7160ec83070000020000004015cf10453f6c0b973b81a484ebad04859d928365a7ea3fab8b4b380a00d72b0000000000001cf555c14d56b51c2298237bebfc08e0d5976a942b846970cfd98b9d4139f1111f2cc5e46ac1c60a9b030074bfbcd4b09012175484135f0e519f0b1e4aaa026d570ecb5e8cddbed65ff702000000a3ff4f8a4cf796b07a6ff61c5552417fd703f7f14d8b78ac02ca3cdf6a662db1c9c89c9120072a5d00dcdd8595356c9b2492aaf1264d4ef4a410c882834867bcd2b6e559d17879570c8ad943e392955f4f979ea13201bafedcd2063d11dd665647223c78a996810000000571cbb17d9f37282462f0e9c147c0d497c61433c6ccc35601eef97ee611be8c97f4151ffdf6f7820549cda6cb799c6e924966a7f90bf8fd1e75ee76bd89346cfbb5567e54d3504723177d356c4604b7a492ecec37e83efceefd7ca2533659edc8be05cc85451c6a14507434eb54b6f43caea5c4bf690441974b155f5adc681a03c0bbb8358856175e2ce8b0cbbbe3c033e54ffca9ec9a7a3755e0f209150a07682c4e14e3a83558df6f3fc97f1730a136bdee07e98cb984b2e2304a1b63afefdb636e56bbaae4e62136574bc6371a0bb2be1a962aae9c1258da6ef590e1d85ea9e12b3025f43e7e08ccffc5064dea4c24cf4b98e1fc6efb5978f51e16b678eca0b658a56008948e561a9845e4ff29e2bdb1d0b923b272341c5e093fd66a294351c5356c1d06c92cf8ce3c7c56cd31121624d74517fd3666277f670e812b28e2f30d035cee5d0e77a3c7220000000000000005a474816bc59d2e2a00092419304b338a987e9d3044d856ce24f370030be3b5f79f034b8d3ebce68663ef5af469abe75b314fae31445859a5ece8fb11a4ee8e46354c9c3a041e12282ce24463aaf28345bd168b4177ce37ed85464c31679053e7f9d04bb5cb51da0b7958989fd70f09000000000000004fc4bda34536020076eacd3adaa4d2ee6fe0d072ccd44341f7fd53df58ae791ee8b489a7c9efe3625a9d971b5997485d6a063dc6f7359e2eccc2fb39d401adf59d44e58eb1c60b3475be31a9b7cf42b6402312d2725b8d9fa700a86407e79ae29d2c117ca65fc86c2dce97aa03279a66ec87122219b0f796ab92b1adecae50fdb40f7f02f750d6c977a191852c9ae031db044b2353199546609f9f69a6cfefdf879d447df53f3b9b70d10355b00300000000000000553d18a6cc50feeb7bfad9b7be3283b6450d264e7712d2f1d7004548b19162cef04d18d4f58fab987baab9789bfbd8f185b5631820420bf5b6522c0e21c882c66f4f25ffb6d95e07de02205fca4f18a2eb5b63e45d5d80fe527340935aa3c0b4f3f45b418a18217747ae442e31560e5b741445ea2a1acee2a81425ff000000d2a0a765d20b30f87af976a46f9a9a1ac7dea1ea6845f9aa6623920dacc107f532348cc21164efe794874eac73381e961f3d9c8c21578fe3245097c280abe51423b9f6cd72b5da6d0252803c66730cd5eac907f09b9695906313f88735fce5115dc83ed73d8ee4a91322608c6fc01e1b9e16587bb5f721303e6b89e5c54d680ac66d09af90dbf5000000000000fa08ad0631c4b839688000c4da2a6bc4cf45854d221a2d5f96bc64647f15daa2ba79cd0f4254ed55217912ef84bd2927df82fc061aef2920c49b2a90886da75561173fa186cb7ee86dd4285c4721eb428c953296bb2f5d825da54dbef07c1b349b4901e093d13e6b9a22e887bc061d40bcaf0aa18623fd9b7179ccc692ba74b531b65c4decf9d080a8ac7e82d4cde1267aa64b2a94fd87a009e6742c2ddc3a9d7eccbb1831b1fa218277c2814a91cab7cb59c697166d6f1bb1a360470000000000000000000000000000000000000000000000000000f9f9b4ce7e871f507084c8c88e0652decbe579b03ed84ea94597dd1059620a050f69ea03b99b4e19d35f4a3b54e96ae2172effec7978a6344cec8e6debf5392882df78b0983e662dc0cb64b77f3f006b6b25443197ae93f0be6de5a703d003f00720943c0e4b33af00000000000000000021a688b2d7007fcc4b59f719afb0b3b7e0aee306ca70fe42bf4984a68f40e1fc043a03a17e4744359b87dc27c82d51cbeb64e52a28daeb6a78d6fe06181ecc8400003fa490b043d5c7d26e67eeb112c5a1b9786b4ff71e085b5086eb85831d1b864ebf3cd889c73f4a9247afd58a81853a3baf6a38de2a73cfde16709dff876740ad3300e4819bb9283e34df128e8e7f7803d941f3a34d92dfdef99e68ed2e40a643092ac41be4021595a92a283d4f7e58a00b5cec00000000003e6e10f04e7b051d4bd29af78b910556ff4238ce8908c6d40b62f1e0a5c5ac0243f4912dd111a0e2cff340157808b64c0ff1b323a488978a9bcdab72adb809b7616d0505b9b74ee45da30b678b1b7e2605b4539cae7b1c30e97481e355200d2f6d077348c1de554674d0fa0c64cea6519e217befd590ab7ade2d8b2f29551280c32784d3250645b705"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000400), r11)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb5, 0x6}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(r11, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="010000000000000000000100000008000200010000000800010000000000040008800400048038000c8014000b80080009"], 0x64}}, 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f0000000080), 0x4)

49.540592ms ago: executing program 3:
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_aout(r2, 0x0, 0x6a)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000100)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x8ec3, 0x0)
readv(r1, &(0x7f0000000080)=[{&(0x7f00000078c0)=""/110, 0x6e}], 0x1)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r1, 0x0, r5, 0x0, 0x800, 0x0)
close(r2)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
syz_io_uring_setup(0x0, 0x0, 0x0, 0x0)
write$eventfd(r6, &(0x7f0000000580)=0x100000001, 0x8)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x338, 0x0, 0x111, 0x4b4, 0x1a0, 0xd4feffff, 0x2b0, 0x20a, 0x278, 0x2b0, 0x278, 0x3, 0x0, {[{{@ipv6={@loopback, @empty, [], [], 'ipvlan0\x00', 'ipvlan0\x00'}, 0x0, 0xf0, 0x158, 0x0, {}, [@common=@hbh={{0x48}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@ipv6={@mcast1, @private0, [], [], 'xfrm0\x00', 'veth1_vlan\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x398)
pread64(r6, &(0x7f0000000180)=""/73, 0x49, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000580)=ANY=[], 0x10}], 0x1}, 0x0)
close(r8)
recvmsg$unix(r7, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0)

0s ago: executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./bus\x00', 0x80d0, &(0x7f0000000800)=ANY=[@ANYBLOB="646f74732c6e6f646f74732c6e6f646f74732c646d61736b3d30303030303030303030303030303030303037373737372c646f74732c6e6f646f74732c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030302c6e6f646f74732c646f74732c6e6f646f74732c616c6c6f775f7574696d653d3030303030303030303030303030000000003030cfa65c433030312c646f74732c646f74732c6e6f646f74732c6e6f646f74732c646f74732c747a3d5554432c6e6f646f74732c6e66732c646f74732c6e6f646f74732c636865636b3d7374726963742c00"], 0xfd, 0x1bf, &(0x7f0000000640)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa")
inotify_init()
socket$nl_audit(0x10, 0x3, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x10000003}, 0x90)
close(r0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000003300), 0x0, 0x0)
io_setup(0x3, &(0x7f0000000180))
io_submit(0x0, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)

kernel console output (not intermixed with test programs):

op2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   91.937815][ T5847] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[   91.953683][ T5847] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[   92.007777][ T5849] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[   92.618704][ T5860] loop1: detected capacity change from 0 to 512
[   92.627172][ T5860] EXT4-fs (loop1): failed to initialize system zone (-117)
[   92.635189][ T5860] EXT4-fs (loop1): mount failed
[   92.725546][ T5865] netlink: 'syz-executor.1': attribute type 10 has an invalid length.
[   92.758905][ T5867] loop3: detected capacity change from 0 to 256
[   92.903642][ T5877] Invalid ELF header magic: != ELF
[   92.944764][ T5881] loop4: detected capacity change from 0 to 128
[   93.084540][ T5885] loop2: detected capacity change from 0 to 2048
[   93.105441][ T5885] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.155149][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.272719][ T5890] loop2: detected capacity change from 0 to 512
[   93.280915][ T5890] EXT4-fs (loop2): orphan cleanup on readonly fs
[   93.287688][ T5890] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz-executor.2: Failed to acquire dquot type 0
[   93.299702][ T5890] EXT4-fs (loop2): 1 truncate cleaned up
[   93.305879][ T5890] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   93.333274][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.458622][ T5898] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[   93.697460][ T5902] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[   93.726967][ T5904] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[   93.742670][ T5904] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[   93.861006][ T5917] loop4: detected capacity change from 0 to 2048
[   93.874490][ T5917] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.898349][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.965758][ T5923] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.4'.
[   94.878038][ T5932] loop4: detected capacity change from 0 to 256
[   94.911282][ T5937] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[   94.969978][ T5949] loop2: detected capacity change from 0 to 256
[   95.121160][ T5955] loop4: detected capacity change from 0 to 128
[   95.157668][ T5957] loop2: detected capacity change from 0 to 256
[   95.170865][ T5957] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   95.277740][ T5961] loop2: detected capacity change from 0 to 2048
[   95.322249][ T5961] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.344574][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.390435][   T29] kauditd_printk_skb: 2880 callbacks suppressed
[   95.390448][   T29] audit: type=1326 audit(1717898080.906:105797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5964 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde81615f69 code=0x0
[   96.717204][ T5987] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[   96.732267][ T5987] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.746543][ T5987] team0: Port device batadv0 added
[   96.750161][ T5988] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[   96.762830][ T5986] loop1: detected capacity change from 0 to 2048
[   96.787085][ T5986] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.837855][ T5992] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[   96.856115][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.886099][ T5992] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[   96.897339][   T29] audit: type=1326 audit(1717898082.416:105798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5991 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f982f749f69 code=0x0
[   96.945650][ T5994] loop1: detected capacity change from 0 to 256
[   96.955201][ T5994] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   97.501528][ T6005] loop3: detected capacity change from 0 to 256
[   97.512115][ T6005] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   97.563401][ T6010] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[   97.572791][ T6010] netlink: 'syz-executor.2': attribute type 30 has an invalid length.
[   97.581600][ T6010] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[   98.427060][ T6019] loop4: detected capacity change from 0 to 256
[   98.440994][ T6020] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[   98.489783][ T6026] loop2: detected capacity change from 0 to 256
[   98.497820][ T6018] loop1: detected capacity change from 0 to 8192
[   98.511643][ T6026] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   98.550873][ T6019] loop4: detected capacity change from 0 to 512
[   98.563454][ T6031] 9pnet_fd: Insufficient options for proto=fd
[   98.571953][   T29] audit: type=1400 audit(1717898084.086:105799): avc:  denied  { mounton } for  pid=6015 comm="syz-executor.1" path="/root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/199/file0/file0" dev="loop1" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[   98.609687][ T6031] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[   98.629718][ T6019] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   98.649920][ T6043] loop2: detected capacity change from 0 to 512
[   98.663291][ T6019] ext4 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.683312][ T6043] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   98.706128][ T6043] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[   98.722514][ T6043] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz-executor.2: bg 0: block 18: invalid block bitmap
[   98.737037][ T6043] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6551: Corrupt filesystem
[   98.748855][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   98.759192][ T6043] EXT4-fs (loop2): 1 truncate cleaned up
[   98.766919][ T6043] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.780126][ T6043] ext2 filesystem being mounted at /root/syzkaller-testdir774255803/syzkaller.Wc1Cyn/200/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.890471][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.012347][ T6063] sched: RT throttling activated
[  102.075777][ T6065] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  102.080900][ T6067] block device autoloading is deprecated and will be removed.
[  102.096603][ T6067] dccp_invalid_packet: P.Data Offset(100) too large
[  102.107151][ T6071] loop2: detected capacity change from 0 to 256
[  102.132456][ T6071] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  102.142847][ T6074] loop3: detected capacity change from 0 to 2048
[  102.170100][ T6074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.211024][ T5145] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.213858][ T6082] loop2: detected capacity change from 0 to 512
[  102.232369][ T6084] loop1: detected capacity change from 0 to 512
[  102.239458][ T6082] EXT4-fs (loop2): orphan cleanup on readonly fs
[  102.246008][ T6084] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  102.246782][ T6082] Quota error (device loop2): do_check_range: Getting block 71 out of range 1-5
[  102.263297][ T6082] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  102.264718][ T6084] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  102.272729][ T6082] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz-executor.2: Failed to acquire dquot type 0
[  102.272973][ T6082] EXT4-fs (loop2): 1 truncate cleaned up
[  102.282294][ T6084] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz-executor.1: bg 0: block 18: invalid block bitmap
[  102.312093][ T6084] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  102.312177][ T6082] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  102.336576][ T6084] EXT4-fs (loop1): 1 truncate cleaned up
[  102.343196][ T6084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.355907][ T6084] ext2 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/201/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.371861][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.396853][ T6089] loop3: detected capacity change from 0 to 256
[  102.423923][ T6088] loop4: detected capacity change from 0 to 8192
[  102.441827][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.492664][   T29] audit: type=1326 audit(1717898088.006:105800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6091 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde81615f69 code=0x0
[  102.496169][ T6089] loop3: detected capacity change from 0 to 512
[  102.525662][ T6096] 9pnet_fd: Insufficient options for proto=fd
[  102.546923][ T6096] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
[  102.547182][ T6089] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  102.573551][ T6089] ext4 filesystem being mounted at /root/syzkaller-testdir292119832/syzkaller.K7R0wn/52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.648330][ T5145] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  106.047184][ T6109] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  106.061408][ T6113] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  106.072657][ T6114] loop2: detected capacity change from 0 to 256
[  106.088415][ T6109] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[  106.100539][ T6114] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  106.115293][   T29] audit: type=1326 audit(1717898091.626:105801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fac614a9f69 code=0x0
[  106.192703][ T6119] loop2: detected capacity change from 0 to 512
[  106.207756][   T29] audit: type=1326 audit(1717898091.726:105802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6120 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd8caae1f69 code=0x0
[  106.228139][ T6125] loop4: detected capacity change from 0 to 2048
[  106.238548][ T6119] EXT4-fs (loop2): orphan cleanup on readonly fs
[  106.245413][ T6119] Quota error (device loop2): do_check_range: Getting block 71 out of range 1-5
[  106.254523][ T6119] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  106.263910][ T6119] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz-executor.2: Failed to acquire dquot type 0
[  106.275748][ T6119] EXT4-fs (loop2): 1 truncate cleaned up
[  106.281779][ T6119] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  106.284612][ T6125] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.316948][ T6129] Invalid ELF header magic: != ELF
[  106.330419][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.340922][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.380467][ T6131] loop2: detected capacity change from 0 to 256
[  106.463242][ T6131] loop2: detected capacity change from 0 to 512
[  106.475071][ T6131] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  106.487811][ T6131] ext4 filesystem being mounted at /root/syzkaller-testdir774255803/syzkaller.Wc1Cyn/209/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.529689][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  106.615739][ T6140] loop2: detected capacity change from 0 to 256
[  106.779824][   T29] audit: type=1326 audit(1717898092.296:105803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6144 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde81615f69 code=0x0
[  107.727023][ T6155] loop4: detected capacity change from 0 to 512
[  107.737568][ T6156] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  107.742462][ T6158] loop1: detected capacity change from 0 to 256
[  107.753082][ T6155] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  107.762209][ T6155] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  107.765602][ T6158] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  107.775228][ T6155] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz-executor.4: bg 0: block 18: invalid block bitmap
[  107.800389][ T6155] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  107.817113][ T6155] EXT4-fs (loop4): 1 truncate cleaned up
[  107.819588][ T6163] loop2: detected capacity change from 0 to 512
[  107.823353][ T6155] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.847046][ T6155] ext2 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.862663][ T6161] loop3: detected capacity change from 0 to 8192
[  107.862879][ T6163] EXT4-fs (loop2): orphan cleanup on readonly fs
[  107.877687][ T6163] Quota error (device loop2): do_check_range: Getting block 71 out of range 1-5
[  107.886834][ T6163] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  107.896260][ T6163] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz-executor.2: Failed to acquire dquot type 0
[  107.897332][ T6166] loop1: detected capacity change from 0 to 2048
[  107.909280][ T6163] EXT4-fs (loop2): 1 truncate cleaned up
[  107.921930][ T6163] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  107.945823][ T6166] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.958212][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.969995][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.986046][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.997937][ T6170] 9pnet_fd: Insufficient options for proto=fd
[  108.010755][ T6170] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'.
[  108.086648][ T6178] loop2: detected capacity change from 0 to 256
[  108.107064][ T6178] FAT-fs (loop2): Unrecognized mount option "shortname=mixe¥9·ÕüQLý
d" or missing value
[  108.651430][ T6184] syz-executor.3 uses obsolete (PF_INET,SOCK_PACKET)
[  109.663430][   T29] audit: type=1326 audit(1717898095.176:105804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde81615f69 code=0x0
[  109.664910][ T6198] loop4: detected capacity change from 0 to 256
[  109.697081][ T6199] loop1: detected capacity change from 0 to 256
[  109.706372][ T6197] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  109.707953][ T6199] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  109.729157][ T6203] Invalid ELF header magic: != ELF
[  109.759276][ T6205] loop3: detected capacity change from 0 to 512
[  109.767470][ T6205] EXT4-fs (loop3): orphan cleanup on readonly fs
[  109.774472][ T6205] Quota error (device loop3): do_check_range: Getting block 71 out of range 1-5
[  109.782513][ T6208] loop1: detected capacity change from 0 to 512
[  109.783527][ T6205] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  109.799131][ T6205] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz-executor.3: Failed to acquire dquot type 0
[  109.799764][ T6208] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  109.811040][ T6205] EXT4-fs (loop3): 1 truncate cleaned up
[  109.823450][ T6208] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  109.834272][ T6205] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  109.850000][ T6208] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz-executor.1: bg 0: block 18: invalid block bitmap
[  109.863700][ T6208] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  109.872643][ T6208] EXT4-fs (loop1): 1 truncate cleaned up
[  109.880027][ T6208] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.881278][ T5145] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.892890][ T6208] ext2 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/211/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.978481][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.144476][ T6224] loop3: detected capacity change from 0 to 8192
[  110.152738][ T6224] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  110.341170][ T6228] loop3: detected capacity change from 0 to 256
[  110.348475][ T6228] FAT-fs (loop3): Unrecognized mount option "shortname=mixe¥9·ÕüQLý
d" or missing value
[  110.435348][ T6236] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  111.252308][ T6244] loop1: detected capacity change from 0 to 256
[  111.277646][ T6249] loop4: detected capacity change from 0 to 512
[  111.286948][ T6249] EXT4-fs (loop4): orphan cleanup on readonly fs
[  111.293866][ T6249] Quota error (device loop4): do_check_range: Getting block 71 out of range 1-5
[  111.300690][ T6252] loop2: detected capacity change from 0 to 512
[  111.302941][ T6249] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  111.302959][ T6249] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz-executor.4: Failed to acquire dquot type 0
[  111.331655][   T29] audit: type=1326 audit(1717898096.846:105805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6241 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd8caae1f69 code=0x0
[  111.333591][ T6249] EXT4-fs (loop4): 1 truncate cleaned up
[  111.355970][ T6252] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  111.364553][ T6249] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.369573][ T6252] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  111.391702][ T6252] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz-executor.2: bg 0: block 18: invalid block bitmap
[  111.405260][ T6252] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  111.414226][ T6252] EXT4-fs (loop2): 1 truncate cleaned up
[  111.414472][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.420135][ T6252] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.441366][ T6252] ext2 filesystem being mounted at /root/syzkaller-testdir774255803/syzkaller.Wc1Cyn/217/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.508999][ T6259] loop4: detected capacity change from 0 to 256
[  111.522970][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.570326][ T6262] loop1: detected capacity change from 0 to 256
[  111.584354][ T6262] FAT-fs (loop1): Unrecognized mount option "shortname=mixe¥9·ÕüQLý
d" or missing value
[  111.595597][ T6259] loop4: detected capacity change from 0 to 512
[  111.614598][ T6259] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  111.627755][ T6259] ext4 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/28/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.672814][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  111.688074][   T29] audit: type=1400 audit(1717898097.206:105806): avc:  denied  { setopt } for  pid=6267 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  111.862571][ T6279] netlink: 'syz-executor.1': attribute type 10 has an invalid length.
[  112.098240][   T29] audit: type=1326 audit(1717898097.616:105807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6292 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd8caae1f69 code=0x0
[  112.200538][ T6294] Invalid ELF header magic: != ELF
[  112.300936][ T6302] loop4: detected capacity change from 0 to 2048
[  112.308194][ T6302] EXT4-fs: Ignoring removed bh option
[  112.313738][ T6302] EXT4-fs: Ignoring removed nomblk_io_submit option
[  112.320500][ T6302] EXT4-fs: Ignoring removed nobh option
[  112.344436][ T6302] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.359275][ T6302] EXT4-fs error (device loop4): __ext4_remount:6503: comm syz-executor.4: Abort forced by user
[  112.370132][ T6302] EXT4-fs (loop4): Remounting filesystem read-only
[  112.377411][ T6302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  112.386629][ T6302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  112.395518][ T6302] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  112.411026][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.658198][ T6312] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  112.856994][ T6337] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[  112.866052][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.874508][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.881925][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.889311][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.896715][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.904194][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.911642][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.919027][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.926485][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.933888][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.941353][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.948711][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.956144][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.963520][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.970968][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.978366][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.979818][ T6344] loop2: detected capacity change from 0 to 512
[  112.985835][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  112.999501][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.007007][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.008306][ T6344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.014398][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.029097][ T6344] ext4 filesystem being mounted at /root/syzkaller-testdir774255803/syzkaller.Wc1Cyn/221/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.034132][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.055190][ T6344] EXT4-fs error (device loop2): ext4_do_update_inode:5075: inode #2: comm syz-executor.2: corrupted inode contents
[  113.056135][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.069358][ T6344] EXT4-fs error (device loop2): ext4_dirty_inode:5935: inode #2: comm syz-executor.2: mark_inode_dirty error
[  113.075526][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.075549][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.075568][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.090187][ T6344] EXT4-fs error (device loop2): ext4_do_update_inode:5075: inode #2: comm syz-executor.2: corrupted inode contents
[  113.094465][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.094490][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.101954][ T6344] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz-executor.2: mark_inode_dirty error
[  113.109168][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.125954][ T6348] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  113.128592][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.151619][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  113.151630][   T29] audit: type=1400 audit(1717898098.666:105813): avc:  denied  { rename } for  pid=6339 comm="syz-executor.2" name="file0" dev="loop2" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  113.154807][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.165421][   T29] audit: type=1400 audit(1717898098.686:105814): avc:  denied  { rmdir } for  pid=6339 comm="syz-executor.2" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  113.171675][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.171699][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.257134][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.264580][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.271937][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.279380][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.286748][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.294113][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.301554][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.308963][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.316332][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.323801][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.331247][ T3242] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  113.340849][ T3242] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  113.358609][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.412766][ T6353] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  113.613965][ T6359] chnl_net:caif_netlink_parms(): no params data found
[  113.651850][ T6359] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.658980][ T6359] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.667256][ T6359] bridge_slave_0: entered allmulticast mode
[  113.673685][ T6359] bridge_slave_0: entered promiscuous mode
[  113.680663][ T6359] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.687779][ T6359] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.696264][ T6359] bridge_slave_1: entered allmulticast mode
[  113.702596][ T6359] bridge_slave_1: entered promiscuous mode
[  113.728375][ T6359] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  113.739945][ T6359] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  113.762464][ T6359] team0: Port device team_slave_0 added
[  113.769539][ T6359] team0: Port device team_slave_1 added
[  113.787162][ T6359] batman_adv: batadv0: Adding interface: batadv_slave_0
[  113.794188][ T6359] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.820136][ T6359] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  113.833679][ T6359] batman_adv: batadv0: Adding interface: batadv_slave_1
[  113.840633][ T6359] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.866654][ T6359] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  113.894221][ T6359] hsr_slave_0: entered promiscuous mode
[  113.900385][ T6359] hsr_slave_1: entered promiscuous mode
[  113.907480][ T6359] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  113.915192][ T6359] Cannot create hsr debugfs directory
[  113.984333][ T6359] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  113.994652][ T6359] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.068166][ T6359] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  114.078451][ T6359] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.137549][ T6359] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  114.147820][ T6359] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.192352][ T6359] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  114.202698][ T6359] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.289701][ T6359] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  114.298696][ T6359] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  114.308334][ T6359] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  114.317094][ T6359] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  114.333025][ T6359] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.340091][ T6359] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.347413][ T6359] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.354458][ T6359] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.372212][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.380184][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.435331][ T6359] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.448032][ T6359] 8021q: adding VLAN 0 to HW filter on device team0
[  114.458856][  T970] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.465910][  T970] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.477443][ T3178] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.484533][ T3178] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.544992][ T6391] loop4: detected capacity change from 0 to 256
[  114.557575][ T6391] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  114.588836][ T6359] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.623105][   T29] audit: type=1326 audit(1717898100.136:105815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6401 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fac614a9f69 code=0x0
[  114.649983][ T6405] loop4: detected capacity change from 0 to 256
[  114.678709][ T6359] veth0_vlan: entered promiscuous mode
[  114.688253][ T6359] veth1_vlan: entered promiscuous mode
[  114.700413][ T6359] veth0_macvtap: entered promiscuous mode
[  114.711891][ T6359] veth1_macvtap: entered promiscuous mode
[  114.721749][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  114.725435][ T6412] Invalid ELF header magic: != ELF
[  114.732241][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.747203][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  114.757632][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.767599][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  114.778045][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.787896][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  114.798381][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.808195][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  114.818662][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.830660][ T6359] batman_adv: batadv0: Interface activated: batadv_slave_0
[  114.840295][ T6414] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  114.850836][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  114.861319][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.871161][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  114.881668][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.891511][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  114.901984][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.911852][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  114.922264][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.932068][ T6359] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  114.942475][ T6359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.953239][ T6359] batman_adv: batadv0: Interface activated: batadv_slave_1
[  114.964732][ T6359] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.973568][ T6359] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.979280][ T6416] loop4: detected capacity change from 0 to 512
[  114.982246][ T6359] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.997281][ T6359] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.998720][ T6416] EXT4-fs (loop4): orphan cleanup on readonly fs
[  115.014710][ T6416] Quota error (device loop4): do_check_range: Getting block 71 out of range 1-5
[  115.023769][ T6416] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  115.033150][ T6416] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz-executor.4: Failed to acquire dquot type 0
[  115.045759][ T6416] EXT4-fs (loop4): 1 truncate cleaned up
[  115.053164][ T6416] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  115.083441][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.111840][ T6420] loop0: detected capacity change from 0 to 8192
[  115.140462][   T29] audit: type=1400 audit(1717898100.656:105816): avc:  denied  { getopt } for  pid=6422 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  115.140599][ T6424] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  115.170044][ T6423] loop4: detected capacity change from 0 to 512
[  115.178587][ T6423] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  115.188357][ T6423] EXT4-fs warning (device loop4): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop4.
[  115.200481][ T6428] loop0: detected capacity change from 0 to 256
[  115.298155][ T6428] loop0: detected capacity change from 0 to 512
[  115.317523][ T6428] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  115.334342][ T6428] ext4 filesystem being mounted at /root/syzkaller-testdir2923188352/syzkaller.trA0kM/1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.343915][ T6444] loop4: detected capacity change from 0 to 256
[  115.361739][ T6444] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  115.380010][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  115.427340][ T6451] netlink: 'syz-executor.0': attribute type 10 has an invalid length.
[  115.438851][ T6451] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.448183][ T6451] team0: Port device batadv0 added
[  115.453165][   T29] audit: type=1326 audit(1717898100.966:105817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6452 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f982f749f69 code=0x0
[  115.507907][ T6455] loop0: detected capacity change from 0 to 512
[  115.515573][ T6455] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  115.525384][ T6455] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  115.534636][ T6455] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz-executor.0: bg 0: block 18: invalid block bitmap
[  115.547621][ T6455] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  115.567561][ T6455] EXT4-fs (loop0): 1 truncate cleaned up
[  115.590072][ T6455] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.610267][ T6455] ext2 filesystem being mounted at /root/syzkaller-testdir2923188352/syzkaller.trA0kM/3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.638803][ T6461] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[  115.688738][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.179596][ T6472] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
[  116.255246][ T6474] loop2: detected capacity change from 0 to 2048
[  116.277505][ T6474] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.334150][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.372428][ T6479] loop4: detected capacity change from 0 to 256
[  116.467523][ T6479] loop4: detected capacity change from 0 to 512
[  116.484928][ T6479] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  116.491869][ T6485] loop0: detected capacity change from 0 to 256
[  116.498908][ T6479] ext4 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.528823][ T6485] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  116.556876][ T6487] netlink: 'syz-executor.1': attribute type 10 has an invalid length.
[  116.565648][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  116.591121][ T6489] loop0: detected capacity change from 0 to 256
[  116.621112][   T29] audit: type=1400 audit(1717898102.136:105818): avc:  denied  { write } for  pid=6495 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  116.621550][ T6496] loop1: detected capacity change from 0 to 512
[  116.652481][ T6496] EXT4-fs (loop1): Can't support bigalloc feature without extents feature
[  116.652481][ T6496] 
[  116.663193][ T6496] EXT4-fs (loop1): Skipping orphan cleanup due to unknown ROCOMPAT features
[  116.672345][ T6496] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  116.691263][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.753690][ T6502] loop1: detected capacity change from 0 to 512
[  116.762060][ T6502] EXT4-fs (loop1): orphan cleanup on readonly fs
[  116.769925][ T6502] Quota error (device loop1): do_check_range: Getting block 71 out of range 1-5
[  116.779180][ T6502] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  116.788636][ T6502] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz-executor.1: Failed to acquire dquot type 0
[  116.801072][ T6502] EXT4-fs (loop1): 1 truncate cleaned up
[  116.807381][ T6502] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  116.831360][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.905775][ T6508] loop1: detected capacity change from 0 to 2048
[  116.924497][ T6508] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.945472][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.477642][ T6521] loop4: detected capacity change from 0 to 256
[  117.490088][ T6521] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  117.551901][ T6523] loop4: detected capacity change from 0 to 512
[  117.561538][ T6523] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  117.570209][ T6523] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  117.580210][ T6523] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz-executor.4: bg 0: block 18: invalid block bitmap
[  117.593049][ T6523] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  117.602901][ T6523] EXT4-fs (loop4): 1 truncate cleaned up
[  117.609058][ T6523] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.622108][ T6523] ext2 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.658318][ T6526] netlink: 'syz-executor.0': attribute type 10 has an invalid length.
[  117.707399][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.729063][ T6529] loop0: detected capacity change from 0 to 256
[  117.870587][ T6543] loop0: detected capacity change from 0 to 512
[  117.879261][ T6543] EXT4-fs (loop0): orphan cleanup on readonly fs
[  117.888050][ T6543] EXT4-fs error (device loop0): ext4_acquire_dquot:6860: comm syz-executor.0: Failed to acquire dquot type 0
[  117.899995][ T6543] EXT4-fs (loop0): 1 truncate cleaned up
[  117.907391][ T6543] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  117.933873][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.846695][ T6564] loop1: detected capacity change from 0 to 512
[  118.854439][ T6564] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  118.863720][ T6564] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  118.874737][ T6564] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz-executor.1: bg 0: block 18: invalid block bitmap
[  118.875120][ T6569] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
[  118.888024][ T6564] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  118.895642][ T6569] netlink: 'syz-executor.0': attribute type 2 has an invalid length.
[  118.905520][ T6564] EXT4-fs (loop1): 1 truncate cleaned up
[  118.929194][ T6564] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.943336][ T6564] ext2 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/239/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.978685][ T6573] loop2: detected capacity change from 0 to 256
[  119.021887][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.106398][ T6589] loop1: detected capacity change from 0 to 256
[  119.115810][ T6589] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  119.186417][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  119.186425][   T29] audit: type=1400 audit(1717898104.706:105821): avc:  denied  { create } for  pid=6596 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  119.213961][   T29] audit: type=1400 audit(1717898104.706:105822): avc:  denied  { write } for  pid=6596 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  119.234473][   T29] audit: type=1400 audit(1717898104.706:105823): avc:  denied  { setopt } for  pid=6596 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  119.255118][   T29] audit: type=1400 audit(1717898104.706:105824): avc:  denied  { read } for  pid=6596 comm="syz-executor.1" path="socket:[17271]" dev="sockfs" ino=17271 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  119.256822][ T6599] loop1: detected capacity change from 0 to 512
[  119.294463][ T6599] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.306925][ T6599] ext4 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/243/wÅü5ÔTÕÔ)­`)Y�Fæ¾nA­½@T<Ÿ3»Ú‚$¢ó×rçcnH³<¿pƒrèñ¹“>ÅwC¾" žð-ùËòöè€Ó8 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.329530][ T6599] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 3: comm syz-executor.1: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  119.350718][ T6599] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  119.944869][   T29] audit: type=1400 audit(1717898105.466:105825): avc:  denied  { read } for  pid=6605 comm="syz-executor.0" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  119.970267][   T29] audit: type=1400 audit(1717898105.466:105826): avc:  denied  { open } for  pid=6605 comm="syz-executor.0" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  120.005686][ T6606] loop0: detected capacity change from 0 to 1024
[  120.014474][ T6606] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  120.027093][ T6606] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0
[  120.041917][ T6606] Quota error (device loop0): write_blk: dquota write failed
[  120.049640][ T6606] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  120.060719][ T6606] EXT4-fs error (device loop0): ext4_acquire_dquot:6860: comm syz-executor.0: Failed to acquire dquot type 0
[  120.073192][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.076921][ T6606] EXT4-fs error (device loop0): ext4_free_blocks:6590: comm syz-executor.0: Freeing blocks not in datazone - block = 0, count = 4096
[  120.096277][ T6606] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz-executor.0: Invalid inode bitmap blk 0 in block_group 0
[  120.109374][ T6606] EXT4-fs error (device loop0) in ext4_free_inode:362: Corrupt filesystem
[  120.117989][   T40] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8
[  120.119311][ T6606] EXT4-fs (loop0): 1 orphan inode deleted
[  120.127310][   T40] EXT4-fs error (device loop0): ext4_release_dquot:6883: comm kworker/u8:2: Failed to release dquot type 0
[  120.152522][   T29] audit: type=1400 audit(1717898105.666:105827): avc:  denied  { ioctl } for  pid=6605 comm="syz-executor.0" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  120.212357][ T6620] loop2: detected capacity change from 0 to 256
[  120.221833][ T6620] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  120.294881][ T6634] batadv0: mtu greater than device maximum
[  120.295533][ T6636] loop0: detected capacity change from 0 to 256
[  120.300683][ T6634] team0: Device batadv0 failed to change mtu
[  120.314142][ T6634] loop2: detected capacity change from 0 to 256
[  120.376766][ T6641] loop4: detected capacity change from 0 to 512
[  120.389304][ T6641] EXT4-fs (loop4): orphan cleanup on readonly fs
[  120.399337][ T6641] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz-executor.4: Failed to acquire dquot type 0
[  120.411107][ T6641] EXT4-fs (loop4): 1 truncate cleaned up
[  120.433031][ T6647] loop2: detected capacity change from 0 to 256
[  120.440616][ T6647] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  120.444954][ T6650] loop0: detected capacity change from 0 to 512
[  120.458825][ T6647] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  120.460821][ T6650] EXT4-fs (loop0): failed to initialize system zone (-117)
[  120.478071][ T6650] EXT4-fs (loop0): mount failed
[  120.751304][ T6669] loop2: detected capacity change from 0 to 256
[  120.760508][ T6669] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  121.288318][ T6681] loop0: detected capacity change from 0 to 256
[  121.421153][ T6686] loop4: detected capacity change from 0 to 256
[  121.435648][ T6688] loop0: detected capacity change from 0 to 1024
[  121.443490][ T6688] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  121.455389][ T6688] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0
[  121.469545][ T6688] EXT4-fs error (device loop0): ext4_acquire_dquot:6860: comm syz-executor.0: Failed to acquire dquot type 0
[  121.481309][ T6688] EXT4-fs error (device loop0): ext4_free_blocks:6590: comm syz-executor.0: Freeing blocks not in datazone - block = 0, count = 4096
[  121.495308][ T6688] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz-executor.0: Invalid inode bitmap blk 0 in block_group 0
[  121.509396][ T6688] EXT4-fs error (device loop0) in ext4_free_inode:362: Corrupt filesystem
[  121.517951][   T28] EXT4-fs error (device loop0): ext4_release_dquot:6883: comm kworker/u8:1: Failed to release dquot type 0
[  121.530168][ T6688] EXT4-fs (loop0): 1 orphan inode deleted
[  121.549399][ T6686] loop4: detected capacity change from 0 to 512
[  121.565229][ T6686] ext4 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.699363][ T6709] loop2: detected capacity change from 0 to 256
[  121.709879][ T6709] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  121.725874][ T6710] loop0: detected capacity change from 0 to 512
[  121.772386][ T6711] Invalid ELF header magic: != ELF
[  121.802570][ T6710] loop0: detected capacity change from 0 to 512
[  121.810417][ T6710] EXT4-fs: Ignoring removed i_version option
[  121.816469][ T6710] EXT4-fs: Ignoring removed bh option
[  121.822917][ T6710] ext4: Unknown parameter 'dont_hash'
[  121.968995][ T6721] loop2: detected capacity change from 0 to 256
[  121.994264][ T6724] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  122.099085][ T6734] loop1: detected capacity change from 0 to 512
[  122.108627][ T6736] loop2: detected capacity change from 0 to 256
[  122.115143][ T6734] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  122.124246][ T6734] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  122.133663][ T6734] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz-executor.1: bg 0: block 18: invalid block bitmap
[  122.146528][ T6734] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  122.155784][ T6734] EXT4-fs (loop1): 1 truncate cleaned up
[  122.161824][ T6734] ext2 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/252/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.221520][ T6736] loop2: detected capacity change from 0 to 512
[  122.236213][ T6736] ext4 filesystem being mounted at /root/syzkaller-testdir774255803/syzkaller.Wc1Cyn/252/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.331104][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  122.433455][ T6697] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  122.444856][ T6697] CPU: 1 PID: 6697 Comm: syz-executor.0 Not tainted 6.10.0-rc2-syzkaller-00361-g061d1af7b030 #0
[  122.455278][ T6697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  122.465386][ T6697] Call Trace:
[  122.468663][ T6697]  <TASK>
[  122.471619][ T6697]  dump_stack_lvl+0xf2/0x150
[  122.476240][ T6697]  dump_stack+0x15/0x20
[  122.480453][ T6697]  dump_header+0x83/0x2d0
[  122.485177][ T6697]  oom_kill_process+0x33e/0x4c0
[  122.490050][ T6697]  out_of_memory+0x9af/0xbe0
[  122.494628][ T6697]  mem_cgroup_out_of_memory+0x13e/0x190
[  122.500207][ T6697]  try_charge_memcg+0x745/0xcd0
[  122.505147][ T6697]  ? _raw_spin_unlock+0x26/0x50
[  122.509997][ T6697]  ? radix_tree_lookup+0xf9/0x150
[  122.515031][ T6697]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  122.521084][ T6697]  __read_swap_cache_async+0x2b9/0x520
[  122.526660][ T6697]  swap_cluster_readahead+0x276/0x3f0
[  122.532028][ T6697]  swapin_readahead+0xe2/0x7a0
[  122.536786][ T6697]  ? __filemap_get_folio+0x420/0x5b0
[  122.542072][ T6697]  ? bpf_send_signal_thread+0x16/0x20
[  122.547479][ T6697]  ? swap_cache_get_folio+0x6e/0x210
[  122.552800][ T6697]  do_swap_page+0x3bc/0x1840
[  122.557423][ T6697]  ? __rcu_read_lock+0x36/0x50
[  122.562184][ T6697]  handle_mm_fault+0x809/0x2a80
[  122.567034][ T6697]  exc_page_fault+0x296/0x650
[  122.571704][ T6697]  asm_exc_page_fault+0x26/0x30
[  122.576562][ T6697] RIP: 0010:__get_user_8+0x11/0x20
[  122.581674][ T6697] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[  122.601274][ T6697] RSP: 0018:ffffc900012dbdd8 EFLAGS: 00050202
[  122.607342][ T6697] RAX: 000055556b470da8 RBX: ffffc900012dbde0 RCX: ffffffff814b1af4
[  122.615309][ T6697] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881185d4bf0
[  122.623267][ T6697] RBP: ffffc900012dbe90 R08: 00018881185d4bf7 R09: 0000000000000000
[  122.631222][ T6697] R10: 0001ffffffffffff R11: 0001c900012dbef0 R12: ffff8881185d4200
[  122.639184][ T6697] R13: ffff8881185d4bf0 R14: ffffc900012dbf58 R15: ffffc900012dbfd8
[  122.647150][ T6697]  ? __rseq_handle_notify_resume+0xb4/0xc00
[  122.653114][ T6697]  __rseq_handle_notify_resume+0xc8/0xc00
[  122.658834][ T6697]  arch_do_signal_or_restart+0x201/0x4b0
[  122.664459][ T6697]  irqentry_exit_to_user_mode+0x94/0x130
[  122.670126][ T6697]  irqentry_exit+0x12/0x50
[  122.674660][ T6697]  asm_exc_page_fault+0x26/0x30
[  122.679575][ T6697] RIP: 0033:0x7f20d2c10fb4
[  122.683979][ T6697] Code: 69 3d 04 e7 ca 00 e8 03 00 00 48 8d 1d e5 cf 17 00 e8 50 5f 04 00 eb 12 66 0f 1f 44 00 00 48 81 c3 d0 00 00 00 48 39 eb 74 bb <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 87 f0 ff ff eb
[  122.703622][ T6697] RSP: 002b:00007ffdcef20480 EFLAGS: 00010206
[  122.709674][ T6697] RAX: 0000000000000000 RBX: 00007f20d2d8df80 RCX: 0000000000000000
[  122.717696][ T6697] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055556b470788
[  122.725683][ T6697] RBP: 00007f20d2d8f980 R08: 0000000000000000 R09: 7fffffffffffffff
[  122.733643][ T6697] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000001de6e
[  122.741601][ T6697] R13: 00007f20d2d8e05c R14: 0000000000000032 R15: 00007f20d2d8f980
[  122.749563][ T6697]  </TASK>
[  122.752923][ T6697] memory: usage 307200kB, limit 307200kB, failcnt 273
[  122.759841][ T6697] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[  122.767755][ T6697] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[  122.775135][ T6697] Memory cgroup stats for /syz0:
[  122.775390][ T6697] cache 8192
[  122.783496][ T6697] rss 8192
[  122.786543][ T6697] shmem 0
[  122.789466][ T6697] mapped_file 0
[  122.792980][ T6697] dirty 4096
[  122.796176][ T6697] writeback 8192
[  122.799707][ T6697] workingset_refault_anon 262
[  122.804376][ T6697] workingset_refault_file 17
[  122.808949][ T6697] swap 741376
[  122.812236][ T6697] swapcached 12288
[  122.815981][ T6697] pgpgin 53861
[  122.819337][ T6697] pgpgout 53856
[  122.822797][ T6697] pgfault 58683
[  122.826274][ T6697] pgmajfault 97
[  122.829784][ T6697] inactive_anon 0
[  122.833490][ T6697] active_anon 0
[  122.836930][ T6697] inactive_file 8192
[  122.840804][ T6697] active_file 0
[  122.844274][ T6697] unevictable 0
[  122.847828][ T6697] hierarchical_memory_limit 314572800
[  122.853253][ T6697] hierarchical_memsw_limit 9223372036854771712
[  122.859407][ T6697] total_cache 8192
[  122.863183][ T6697] total_rss 8192
[  122.866713][ T6697] total_shmem 0
[  122.870154][ T6697] total_mapped_file 0
[  122.874151][ T6697] total_dirty 4096
[  122.877918][ T6697] total_writeback 8192
[  122.881995][ T6697] total_workingset_refault_anon 262
[  122.887184][ T6697] total_workingset_refault_file 17
[  122.892277][ T6697] total_swap 741376
[  122.896126][ T6697] total_swapcached 12288
[  122.900338][ T6697] total_pgpgin 53861
[  122.904281][ T6697] total_pgpgout 53856
[  122.908234][ T6697] total_pgfault 58683
[  122.912185][ T6697] total_pgmajfault 97
[  122.916283][ T6697] total_inactive_anon 0
[  122.920414][ T6697] total_active_anon 0
[  122.924392][ T6697] total_inactive_file 8192
[  122.928777][ T6697] total_active_file 0
[  122.932727][ T6697] total_unevictable 0
[  122.936709][ T6697] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=6697,uid=0
[  122.951987][ T6697] Memory cgroup out of memory: Killed process 6697 (syz-executor.0) total-vm:48620kB, anon-rss:420kB, file-rss:8972kB, shmem-rss:128kB, UID:0 pgtables:84kB oom_score_adj:1000
[  123.116326][ T6762] loop4: detected capacity change from 0 to 256
[  123.180236][ T6771] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  123.200079][ T6773] loop1: detected capacity change from 0 to 256
[  123.305821][ T6773] loop1: detected capacity change from 0 to 512
[  123.326702][ T6773] ext4 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/254/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.354914][ T6794] loop4: detected capacity change from 0 to 512
[  123.356554][ T6795] Invalid ELF header magic: != ELF
[  123.367208][ T6794] EXT4-fs (loop4): orphan cleanup on readonly fs
[  123.377671][ T6794] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz-executor.4: Failed to acquire dquot type 0
[  123.381075][ T6797] Invalid ELF header magic: != ELF
[  123.392576][ T6794] EXT4-fs (loop4): 1 truncate cleaned up
[  123.464098][ T6799] loop4: detected capacity change from 0 to 512
[  123.476569][ T6799] EXT4-fs (loop4): failed to initialize system zone (-117)
[  123.484005][ T6799] EXT4-fs (loop4): mount failed
[  123.548322][ T6809] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  123.585894][ T6811] loop4: detected capacity change from 0 to 256
[  123.744565][ T6818] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  123.786498][ T6820] loop4: detected capacity change from 0 to 256
[  123.898723][ T6828] loop4: detected capacity change from 0 to 256
[  123.986791][ T6828] loop4: detected capacity change from 0 to 512
[  124.014782][ T6828] ext4 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.114865][ T6832] loop4: detected capacity change from 0 to 512
[  124.123054][ T6832] EXT4-fs (loop4): orphan cleanup on readonly fs
[  124.129777][ T6832] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz-executor.4: Failed to acquire dquot type 0
[  124.141458][ T6832] EXT4-fs (loop4): 1 truncate cleaned up
[  124.220129][ T6839] loop4: detected capacity change from 0 to 512
[  124.232536][ T6839] EXT4-fs (loop4): failed to initialize system zone (-117)
[  124.244122][ T6839] EXT4-fs (loop4): mount failed
[  124.254128][ T6842] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  124.294245][ T6844] loop2: detected capacity change from 0 to 256
[  124.304392][ T6846] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  124.352901][ T6858] loop4: detected capacity change from 0 to 256
[  124.379967][ T6862] loop0: detected capacity change from 0 to 256
[  124.392657][ T6863] loop1: detected capacity change from 0 to 128
[  124.401958][ T6862] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  124.426454][ T6858] loop4: detected capacity change from 0 to 512
[  124.441139][   T29] kauditd_printk_skb: 16 callbacks suppressed
[  124.441152][   T29] audit: type=1326 audit(1717898109.956:105835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde81615f69 code=0x0
[  124.463316][ T6867] loop0: detected capacity change from 0 to 2048
[  124.474583][ T6858] ext4 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.545429][ T6874] Invalid ELF header magic: != ELF
[  124.575683][ T6878] loop4: detected capacity change from 0 to 512
[  124.585321][ T6878] EXT4-fs (loop4): failed to initialize system zone (-117)
[  124.592638][ T6878] EXT4-fs (loop4): mount failed
[  124.757306][ T6884] batadv0: mtu greater than device maximum
[  124.763113][ T6884] team0: Device batadv0 failed to change mtu
[  124.809045][ T6888] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  124.860989][ T6890] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'.
[  124.870335][ T6890] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'.
[  124.937332][ T6900] loop4: detected capacity change from 0 to 512
[  124.944644][ T6900] EXT4-fs: Ignoring removed mblk_io_submit option
[  124.952136][ T6900] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002]
[  124.960118][ T6900] System zones: 1-12
[  124.964362][ T6900] EXT4-fs error (device loop4): ext4_orphan_get:1394: inode #15: comm syz-executor.4: iget: bad extended attribute block 262144
[  124.977772][ T6900] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117)
[  125.071766][   T29] audit: type=1400 audit(1717898110.586:105836): avc:  denied  { write } for  pid=6899 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  125.092380][   T29] audit: type=1400 audit(1717898110.606:105837): avc:  denied  { map } for  pid=6899 comm="syz-executor.4" path="/root/syzkaller-testdir3277700415/syzkaller.j9mbYw/93/file0/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  125.261423][ T6906] loop1: detected capacity change from 0 to 256
[  125.270861][ T6906] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  125.326023][ T6908] loop1: detected capacity change from 0 to 2048
[  125.345550][ T6910] loop2: detected capacity change from 0 to 256
[  125.443536][ T6910] loop2: detected capacity change from 0 to 512
[  125.455682][ T6910] ext4 filesystem being mounted at /root/syzkaller-testdir774255803/syzkaller.Wc1Cyn/267/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.460440][ T6921] batadv0: mtu greater than device maximum
[  125.476261][ T6921] team0: Device batadv0 failed to change mtu
[  125.500469][ T6923] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  125.520956][   T29] audit: type=1400 audit(1717898111.036:105838): avc:  denied  { connect } for  pid=6922 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  125.596554][ T6932] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  125.635821][ T6935] loop0: detected capacity change from 0 to 8192
[  125.662326][ T6935] openvswitch: netlink: Tunnel attr 16383 out of range max 16
[  125.668305][ T6942] loop1: detected capacity change from 0 to 256
[  125.679022][ T6942] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  125.700709][ T6943] loop2: detected capacity change from 0 to 256
[  125.744253][   T29] audit: type=1326 audit(1717898111.266:105839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6944 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fac614a9f69 code=0x0
[  125.848179][ T6947] Invalid ELF header magic: != ELF
[  125.882141][ T6949] loop4: detected capacity change from 0 to 2048
[  126.108589][ T6957] batadv0: mtu greater than device maximum
[  126.114431][ T6957] team0: Device batadv0 failed to change mtu
[  126.130033][ T6959] loop0: detected capacity change from 0 to 256
[  126.236005][ T6961] loop0: detected capacity change from 0 to 256
[  126.414511][ T6974] netlink: 'syz-executor.0': attribute type 10 has an invalid length.
[  126.456827][ T6976] loop0: detected capacity change from 0 to 256
[  126.465655][ T6976] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  126.495272][ T6978] loop2: detected capacity change from 0 to 512
[  126.504482][ T6978] EXT4-fs (loop2): failed to initialize system zone (-117)
[  126.511782][ T6978] EXT4-fs (loop2): mount failed
[  126.520722][ T6981] loop0: detected capacity change from 0 to 512
[  126.528692][ T6981] EXT4-fs (loop0): failed to initialize system zone (-117)
[  126.536010][ T6981] EXT4-fs (loop0): mount failed
[  126.580011][ T6986] batadv0: mtu greater than device maximum
[  126.585930][ T6986] team0: Device batadv0 failed to change mtu
[  126.601729][   T29] audit: type=1326 audit(1717898112.116:105840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6987 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde81615f69 code=0x0
[  126.604995][ T6990] loop0: detected capacity change from 0 to 256
[  126.688045][ T6992] loop1: detected capacity change from 0 to 256
[  126.836191][ T7004] syzkaller1: entered promiscuous mode
[  126.837034][    C0] vxcan0: j1939_tp_txtimer: 0xffff888119564800: tx aborted with unknown reason: -2
[  126.841663][ T7004] syzkaller1: entered allmulticast mode
[  126.850972][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff888119564c00: 0x00000: (250) Any other reason (if a Connection Abort reason is identified that is not listed in the table use code 250)
[  126.873973][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff888119564800: 0x00000: (250) Any other reason (if a Connection Abort reason is identified that is not listed in the table use code 250)
[  126.880250][ T7004] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 49 (only 8 groups)
[  126.960782][   T29] audit: type=1400 audit(1717898112.476:105841): avc:  denied  { getopt } for  pid=7003 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  126.985879][ T7009] loop0: detected capacity change from 0 to 256
[  127.012975][ T7011] loop1: detected capacity change from 0 to 512
[  127.024627][ T7013] loop0: detected capacity change from 0 to 512
[  127.034059][ T7013] EXT4-fs (loop0): failed to initialize system zone (-117)
[  127.037332][ T7011] EXT4-fs (loop1): failed to initialize system zone (-117)
[  127.041308][ T7013] EXT4-fs (loop0): mount failed
[  127.051553][ T7011] EXT4-fs (loop1): mount failed
[  127.118322][   T29] audit: type=1400 audit(1717898112.636:105842): avc:  denied  { write } for  pid=7019 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  127.125700][ T7024] loop1: detected capacity change from 0 to 256
[  127.139294][   T29] audit: type=1400 audit(1717898112.636:105843): avc:  denied  { setopt } for  pid=7019 comm="syz-executor.0" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  127.158183][ T7026] loop4: detected capacity change from 0 to 256
[  127.320751][   T29] audit: type=1400 audit(1717898112.836:105844): avc:  denied  { ioctl } for  pid=7037 comm="syz-executor.4" path="socket:[19128]" dev="sockfs" ino=19128 ioctlcmd=0x8915 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  128.171283][ T7046] loop4: detected capacity change from 0 to 256
[  128.190409][ T7048] loop2: detected capacity change from 0 to 2048
[  128.205253][ T7048] EXT4-fs mount: 32 callbacks suppressed
[  128.205262][ T7048] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.232615][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.286882][ T7056] loop2: detected capacity change from 0 to 512
[  128.312289][ T7056] EXT4-fs (loop2): failed to initialize system zone (-117)
[  128.324417][ T7056] EXT4-fs (loop2): mount failed
[  128.326294][ T7060] loop0: detected capacity change from 0 to 512
[  128.338310][ T7060] EXT4-fs (loop0): failed to initialize system zone (-117)
[  128.345633][ T7060] EXT4-fs (loop0): mount failed
[  128.381510][ T7066] loop4: detected capacity change from 0 to 512
[  128.386310][ T7069] loop2: detected capacity change from 0 to 256
[  128.396519][ T7070] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  128.415291][ T7066] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.428582][ T7066] ext4 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/102/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.456579][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.526936][ T7078] gretap0: entered promiscuous mode
[  129.250377][ T7083] loop2: detected capacity change from 0 to 512
[  129.267654][ T7078] netlink: 'syz-executor.1': attribute type 2 has an invalid length.
[  129.275867][ T7078] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.1'.
[  129.282467][ T7087] loop0: detected capacity change from 0 to 2048
[  129.303023][ T7083] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  129.318036][ T7083] ext4 filesystem being mounted at /root/syzkaller-testdir774255803/syzkaller.Wc1Cyn/275/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.339933][ T7087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.363729][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  129.366750][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.425531][ T7100] loop0: detected capacity change from 0 to 256
[  129.507519][ T7110] loop4: detected capacity change from 0 to 512
[  129.516608][ T7110] EXT4-fs (loop4): failed to initialize system zone (-117)
[  129.522534][ T7113] loop1: detected capacity change from 0 to 512
[  129.523841][ T7110] EXT4-fs (loop4): mount failed
[  129.537258][ T7113] EXT4-fs (loop1): failed to initialize system zone (-117)
[  129.546778][ T7113] EXT4-fs (loop1): mount failed
[  129.574211][ T7116] loop4: detected capacity change from 0 to 512
[  129.582326][ T7116] EXT4-fs (loop4): orphan cleanup on readonly fs
[  129.589107][ T7116] Quota error (device loop4): do_check_range: Getting block 71 out of range 1-5
[  129.598250][ T7116] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  129.607650][ T7116] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz-executor.4: Failed to acquire dquot type 0
[  129.623970][ T7116] EXT4-fs (loop4): 1 truncate cleaned up
[  129.630982][ T7121] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  129.632021][ T7116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  129.671422][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.580601][ T7137] loop4: detected capacity change from 0 to 2048
[  130.607058][ T7135] loop2: detected capacity change from 0 to 512
[  130.611140][ T7137] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.620345][ T7135] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.2: corrupted in-inode xattr: bad e_name length
[  130.639664][ T7135] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 15 (err -117)
[  130.652365][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.663601][ T7135] EXT4-fs (loop2): mounted filesystem 00000004-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.682495][ T7135] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor.2: bg 0: block 312: padding at end of block bitmap is not set
[  130.698746][ T7135] EXT4-fs warning (device loop2): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[  130.712410][ T7135] EXT4-fs warning (device loop2): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[  130.724297][ T7135] EXT4-fs warning (device loop2): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[  130.735597][ T7135] EXT4-fs warning (device loop2): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[  130.756105][ T3102] EXT4-fs (loop2): unmounting filesystem 00000004-0000-0000-0000-000000000000.
[  130.934472][ T7151] gretap0: entered promiscuous mode
[  130.944964][ T7153] loop2: detected capacity change from 0 to 256
[  130.954860][ T7151] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[  130.963059][ T7151] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.4'.
[  131.137213][ T7159] loop2: detected capacity change from 0 to 512
[  131.147228][ T7159] EXT4-fs (loop2): failed to initialize system zone (-117)
[  131.154513][ T7159] EXT4-fs (loop2): mount failed
[  131.160284][ T7162] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  131.179596][ T7164] loop0: detected capacity change from 0 to 512
[  131.187900][ T7164] EXT4-fs (loop0): orphan cleanup on readonly fs
[  131.195000][ T7164] Quota error (device loop0): do_check_range: Getting block 71 out of range 1-5
[  131.204155][ T7164] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  131.213572][ T7164] EXT4-fs error (device loop0): ext4_acquire_dquot:6860: comm syz-executor.0: Failed to acquire dquot type 0
[  131.218283][ T7167] syzkaller1: entered promiscuous mode
[  131.225468][ T7164] EXT4-fs (loop0): 1 truncate cleaned up
[  131.239321][ T7167] syzkaller1: entered allmulticast mode
[  131.246571][ T7164] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  131.247727][    C0] vxcan0: j1939_tp_txtimer: 0xffff888149497c00: tx aborted with unknown reason: -2
[  131.268240][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff888149496600: 0x00000: (250) Any other reason (if a Connection Abort reason is identified that is not listed in the table use code 250)
[  131.275297][ T7167] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 49 (only 8 groups)
[  131.285698][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff888149497c00: 0x00000: (250) Any other reason (if a Connection Abort reason is identified that is not listed in the table use code 250)
[  131.345832][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.355907][ T7183] loop2: detected capacity change from 0 to 2048
[  132.385969][ T7183] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.411468][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.425709][ T7191] loop4: detected capacity change from 0 to 256
[  132.491121][ T7198] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  132.516604][ T7201] loop1: detected capacity change from 0 to 512
[  132.535261][ T7201] EXT4-fs (loop1): orphan cleanup on readonly fs
[  132.542377][ T7201] Quota error (device loop1): do_check_range: Getting block 71 out of range 1-5
[  132.551486][ T7201] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  132.560959][ T7201] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz-executor.1: Failed to acquire dquot type 0
[  132.579058][ T7204] loop2: detected capacity change from 0 to 256
[  132.597118][ T7201] EXT4-fs (loop1): 1 truncate cleaned up
[  132.604968][ T7201] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  132.627200][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.684122][   T29] audit: type=1400 audit(1717898118.206:105845): avc:  denied  { bind } for  pid=7211 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  132.703971][   T29] audit: type=1400 audit(1717898118.206:105846): avc:  denied  { node_bind } for  pid=7211 comm="syz-executor.4" saddr=fe88::5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  132.771240][ T7218] xt_connbytes: Forcing CT accounting to be enabled
[  132.784957][ T7218] loop4: detected capacity change from 0 to 128
[  133.630218][ T7226] loop2: detected capacity change from 0 to 2048
[  133.645661][ T7226] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.670633][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.678760][ T7238] loop0: detected capacity change from 0 to 256
[  133.686713][   T29] audit: type=1326 audit(1717898119.206:105847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7227 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac614a9f69 code=0x7ffc0000
[  133.713610][   T29] audit: type=1326 audit(1717898119.206:105848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7227 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac614a9f69 code=0x7ffc0000
[  133.751712][ T7244] loop4: detected capacity change from 0 to 256
[  133.761970][ T7244] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  133.807136][ T7249] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  133.828940][ T7251] loop4: detected capacity change from 0 to 256
[  133.921410][ T7257] loop2: detected capacity change from 0 to 8192
[  133.922108][ T7258] 9pnet_fd: Insufficient options for proto=fd
[  133.943875][ T7257]  loop2: p1 < > p4 < >
[  136.530532][ T7278] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  136.577390][   T29] kauditd_printk_skb: 24 callbacks suppressed
[  136.577401][   T29] audit: type=1326 audit(1717898122.096:105873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7227 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac614a9f69 code=0x7ffc0000
[  136.607993][   T29] audit: type=1326 audit(1717898122.096:105874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7227 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac614a9f69 code=0x7ffc0000
[  136.654705][ T7281] loop2: detected capacity change from 0 to 2048
[  136.688875][ T7281] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.701827][ T7290] loop0: detected capacity change from 0 to 256
[  136.714608][ T7290] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  136.734539][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.747337][ T7294] loop1: detected capacity change from 0 to 512
[  136.750703][ T7295] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.4'.
[  136.768210][ T7294] EXT4-fs (loop1): orphan cleanup on readonly fs
[  136.775070][ T7294] Quota error (device loop1): do_check_range: Getting block 71 out of range 1-5
[  136.784130][ T7294] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  136.793625][ T7294] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz-executor.1: Failed to acquire dquot type 0
[  136.805619][ T7294] EXT4-fs (loop1): 1 truncate cleaned up
[  136.811598][ T7294] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  136.835494][ T7298] loop0: detected capacity change from 0 to 256
[  136.845695][ T7301] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  136.855171][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.892543][ T7307] can: request_module (can-proto-0) failed.
[  136.898640][   T29] audit: type=1400 audit(1717898122.416:105875): avc:  denied  { map } for  pid=7306 comm="syz-executor.2" path="socket:[20585]" dev="sockfs" ino=20585 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  136.925660][ T7307] 9p: Unknown Cache mode or invalid value f
[  136.956197][ T7312] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  137.026039][ T7317] loop2: detected capacity change from 0 to 256
[  137.843028][   T29] audit: type=1326 audit(1717898123.356:105876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7318 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20d2c56f69 code=0x7ffc0000
[  137.867244][   T29] audit: type=1326 audit(1717898123.356:105877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7318 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20d2c56f69 code=0x7ffc0000
[  137.891373][   T29] audit: type=1326 audit(1717898123.376:105878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7318 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f20d2c56f69 code=0x7ffc0000
[  137.915474][   T29] audit: type=1326 audit(1717898123.376:105879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7318 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20d2c56f69 code=0x7ffc0000
[  137.927096][ T7330] loop4: detected capacity change from 0 to 2048
[  137.939585][   T29] audit: type=1326 audit(1717898123.376:105880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7318 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20d2c56f69 code=0x7ffc0000
[  137.995420][ T7330] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.847768][ T7343] loop1: detected capacity change from 0 to 256
[  138.856626][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.875871][ T7343] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  138.924787][ T7348] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  138.978616][ T7355] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  139.028553][ T7359] loop4: detected capacity change from 0 to 256
[  139.068717][ T7364] loop1: detected capacity change from 0 to 512
[  139.157130][ T7364] loop1: detected capacity change from 0 to 512
[  139.168268][ T7364] EXT4-fs: Ignoring removed i_version option
[  139.174378][ T7364] EXT4-fs: Ignoring removed bh option
[  139.184457][ T7364] ext4: Unknown parameter 'dont_hash'
[  139.199370][ T7372] loop0: detected capacity change from 0 to 2048
[  139.214577][ T7372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.238201][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.249597][ T7370] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  139.321968][ T7378] loop0: detected capacity change from 0 to 2048
[  139.360507][ T7378] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.396688][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.615220][ T7367] Direct I/O collision with buffered writes! File: syzkaller-testdir3277700415/syzkaller.j9mbYw/128/cgroup.controllers Comm: syz-executor.4
[  139.753987][ T7385] loop0: detected capacity change from 0 to 256
[  139.780186][ T7387] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  139.793168][ T7385] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  139.891928][ T7397] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  139.905842][ T7398] loop2: detected capacity change from 0 to 256
[  139.991929][ T7406] loop0: detected capacity change from 0 to 2048
[  140.054324][ T7406] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.080953][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.085003][ T7412] loop1: detected capacity change from 0 to 256
[  140.113656][ T7414] loop1: detected capacity change from 0 to 512
[  140.122374][ T7414] EXT4-fs (loop1): orphan cleanup on readonly fs
[  140.129339][ T7414] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz-executor.1: Failed to acquire dquot type 0
[  140.141094][ T7414] EXT4-fs (loop1): 1 truncate cleaned up
[  140.148219][ T7414] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.174913][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.404584][ T7420] loop0: detected capacity change from 0 to 256
[  140.413452][ T7420] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  140.438321][ T7426] netlink: 'syz-executor.1': attribute type 10 has an invalid length.
[  140.475374][ T7428] batadv_slave_0: entered promiscuous mode
[  140.489243][ T7430] loop1: detected capacity change from 0 to 2048
[  140.505669][ T7430] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.525233][ T7427] batadv_slave_0: left promiscuous mode
[  140.542651][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.548133][ T7434] loop0: detected capacity change from 0 to 512
[  140.559241][ T7434] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  140.575395][ T7434] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.587953][ T7434] ext4 filesystem being mounted at /root/syzkaller-testdir2923188352/syzkaller.trA0kM/92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.607178][ T7438] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  140.648764][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.716850][ T7443] loop2: detected capacity change from 0 to 2048
[  140.732049][ T7446] loop1: detected capacity change from 0 to 256
[  140.747302][ T7443] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.778612][ T7451] loop1: detected capacity change from 0 to 512
[  140.795649][ T7449] loop0: detected capacity change from 0 to 512
[  140.811434][ T7451] EXT4-fs (loop1): orphan cleanup on readonly fs
[  140.818190][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.828538][ T7451] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz-executor.1: Failed to acquire dquot type 0
[  140.847390][ T7451] EXT4-fs (loop1): 1 truncate cleaned up
[  140.853459][ T7451] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.882885][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.966336][ T7461] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  141.012721][ T7449] loop0: detected capacity change from 0 to 512
[  141.022032][ T7449] EXT4-fs: Ignoring removed i_version option
[  141.028302][ T7449] EXT4-fs: Ignoring removed bh option
[  141.045632][ T7449] ext4: Unknown parameter 'dont_hash'
[  141.270168][ T7473] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  141.296074][ T7474] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'.
[  143.624630][ T7500] loop2: detected capacity change from 0 to 512
[  143.632419][ T7500] EXT4-fs (loop2): orphan cleanup on readonly fs
[  143.639440][ T7500] __quota_error: 702 callbacks suppressed
[  143.639450][ T7500] Quota error (device loop2): do_check_range: Getting block 71 out of range 1-5
[  143.654551][ T7500] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  143.663932][ T7500] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz-executor.2: Failed to acquire dquot type 0
[  143.676549][ T7500] EXT4-fs (loop2): 1 truncate cleaned up
[  143.688478][ T7500] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.694197][ T7504] loop1: detected capacity change from 0 to 256
[  143.710056][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.784951][ T7504] loop1: detected capacity change from 0 to 512
[  143.799646][ T7510] netlink: zone id is out of range
[  143.804854][ T7510] netlink: set zone limit has 8 unknown bytes
[  143.805564][ T7504] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  143.824293][ T7504] ext4 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/307/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.523350][ T3111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  147.548356][ T7522] loop1: detected capacity change from 0 to 256
[  147.659321][ T7526] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  147.733675][ T7528] 9pnet_fd: Insufficient options for proto=fd
[  147.831132][   T29] audit: type=1326 audit(1717898133.346:106579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7531 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f982f749f69 code=0x0
[  148.628271][   T29] audit: type=1326 audit(1717898134.136:106580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7527 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde81615f69 code=0x0
[  148.679144][ T7529] chnl_net:caif_netlink_parms(): no params data found
[  148.726904][ T7529] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.734008][ T7529] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.741496][ T7529] bridge_slave_0: entered allmulticast mode
[  148.748959][ T7529] bridge_slave_0: entered promiscuous mode
[  148.756390][ T7529] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.762101][ T7560] loop0: detected capacity change from 0 to 512
[  148.763780][ T7529] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.777912][ T7529] bridge_slave_1: entered allmulticast mode
[  148.784378][ T7529] bridge_slave_1: entered promiscuous mode
[  148.784601][ T7560] EXT4-fs (loop0): orphan cleanup on readonly fs
[  148.798806][ T7560] Quota error (device loop0): do_check_range: Getting block 71 out of range 1-5
[  148.807861][ T7560] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  148.810591][ T7563] loop4: detected capacity change from 0 to 512
[  148.817250][ T7560] EXT4-fs error (device loop0): ext4_acquire_dquot:6860: comm syz-executor.0: Failed to acquire dquot type 0
[  148.823024][ T7560] EXT4-fs (loop0): 1 truncate cleaned up
[  148.840593][ T7563] EXT4-fs (loop4): orphan cleanup on readonly fs
[  148.840997][ T7560] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  148.854585][ T7563] Quota error (device loop4): do_check_range: Getting block 71 out of range 1-5
[  148.868463][ T7563] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  148.877867][ T7563] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz-executor.4: Failed to acquire dquot type 0
[  148.889873][ T7563] EXT4-fs (loop4): 1 truncate cleaned up
[  148.896025][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.900691][ T7563] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  148.919468][ T7529] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  148.929374][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.930362][ T7529] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  148.967666][ T7529] team0: Port device team_slave_0 added
[  148.974530][ T7529] team0: Port device team_slave_1 added
[  148.977607][ T7575] loop2: detected capacity change from 0 to 256
[  148.995704][ T7529] batman_adv: batadv0: Adding interface: batadv_slave_0
[  149.002854][ T7529] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.028847][ T7529] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  149.040259][ T7529] batman_adv: batadv0: Adding interface: batadv_slave_1
[  149.047251][ T7529] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.073154][ T7529] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  149.093669][   T29] audit: type=1400 audit(1717898134.606:106581): avc:  denied  { ioctl } for  pid=7576 comm="syz-executor.4" path="socket:[21116]" dev="sockfs" ino=21116 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  149.118013][ T7580] infiniband syz2: set active
[  149.124361][ T7580] infiniband syz2: added team_slave_1
[  149.138176][ T7585] loop2: detected capacity change from 0 to 256
[  149.139548][ T7529] hsr_slave_0: entered promiscuous mode
[  149.152901][ T7585] FAT-fs (loop2): Unrecognized mount option "permit_directio" or missing value
[  149.153054][ T7529] hsr_slave_1: entered promiscuous mode
[  149.176027][ T7529] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  149.176472][ T7580] RDS/IB: syz2: added
[  149.183632][ T7529] Cannot create hsr debugfs directory
[  149.188010][ T7580] smc: adding ib device syz2 with port count 1
[  149.199135][ T7580] smc:    ib device syz2 port 1 has pnetid 
[  149.249147][ T7591] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  149.325379][ T7529] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.421429][ T7529] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.510303][ T7529] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.594179][ T7529] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.617065][ T7603] loop0: detected capacity change from 0 to 128
[  149.688998][ T7529] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  149.705101][ T7529] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  149.718218][ T7529] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  149.739148][ T7529] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  149.818236][ T7529] 8021q: adding VLAN 0 to HW filter on device bond0
[  149.841519][ T7529] 8021q: adding VLAN 0 to HW filter on device team0
[  149.859315][ T3242] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.866410][ T3242] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.886960][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.894018][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.929561][ T7529] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  149.939919][ T7529] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  150.052411][ T7529] 8021q: adding VLAN 0 to HW filter on device batadv0
[  150.207573][ T7529] veth0_vlan: entered promiscuous mode
[  150.234179][ T7529] veth1_vlan: entered promiscuous mode
[  150.267809][ T7529] veth0_macvtap: entered promiscuous mode
[  150.284591][ T7529] veth1_macvtap: entered promiscuous mode
[  150.316423][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.326996][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.336827][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.347239][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.357085][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.367552][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.377398][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.387910][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.397824][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.408287][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.418123][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.427796][   T29] audit: type=1400 audit(1717898135.946:106582): avc:  denied  { ioctl } for  pid=7616 comm="syz-executor.4" path="socket:[22124]" dev="sockfs" ino=22124 ioctlcmd=0x9425 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  150.428596][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.465574][ T7529] batman_adv: batadv0: Interface activated: batadv_slave_0
[  150.479880][ T7620] loop2: detected capacity change from 0 to 512
[  150.483310][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.496583][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.497335][ T7620] EXT4-fs (loop2): orphan cleanup on readonly fs
[  150.506558][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.523557][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.524081][ T7620] Quota error (device loop2): do_check_range: Getting block 71 out of range 1-5
[  150.533420][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.542379][ T7620] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  150.552777][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.552790][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.552801][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.552810][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.552820][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.552830][ T7529] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.562172][ T7620] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz-executor.2: Failed to acquire dquot type 0
[  150.563673][ T7620] EXT4-fs (loop2): 1 truncate cleaned up
[  150.572041][ T7529] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.584416][ T7620] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  150.596016][ T7529] batman_adv: batadv0: Interface activated: batadv_slave_1
[  150.611422][   T29] audit: type=1400 audit(1717898136.116:106583): avc:  denied  { read } for  pid=7616 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  150.621322][ T7529] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  150.622809][   T29] audit: type=1400 audit(1717898136.116:106584): avc:  denied  { lock } for  pid=7616 comm="syz-executor.4" path="/dev/virtual_nci" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  150.634290][ T7529] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  150.685095][ T7627] loop4: detected capacity change from 0 to 256
[  150.689376][ T7529] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  150.745381][ T7529] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  150.754409][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.791113][ T7630] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  150.812620][ T7630] 8021q: adding VLAN 0 to HW filter on device batadv0
[  150.822669][ T7633] loop2: detected capacity change from 0 to 256
[  150.827052][ T7630] team0: Port device batadv0 added
[  150.857749][ T7638] xt_connbytes: Forcing CT accounting to be enabled
[  150.870868][ T7638] loop0: detected capacity change from 0 to 128
[  150.890210][ T7641] loop4: detected capacity change from 0 to 512
[  150.928438][ T7641] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  150.945391][ T7641] ext4 filesystem being mounted at /root/syzkaller-testdir3277700415/syzkaller.j9mbYw/143/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.986148][ T7652] loop2: detected capacity change from 0 to 2048
[  151.003065][ T5584] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  151.014098][ T7652] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.068491][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.082808][ T7659] loop4: detected capacity change from 0 to 128
[  151.135030][ T7661] loop2: detected capacity change from 0 to 512
[  151.144000][ T7661] EXT4-fs (loop2): orphan cleanup on readonly fs
[  151.150801][ T7661] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz-executor.2: Failed to acquire dquot type 0
[  151.163655][ T7661] EXT4-fs (loop2): 1 truncate cleaned up
[  151.169729][ T7661] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  151.191233][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.274946][ T7668] loop2: detected capacity change from 0 to 256
[  151.437295][ T7675] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  151.486520][ T7677] loop2: detected capacity change from 0 to 256
[  151.623555][ T7682] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  151.678808][ T7686] xt_connbytes: Forcing CT accounting to be enabled
[  151.699887][ T7688] loop2: detected capacity change from 0 to 256
[  151.793267][ T7689] loop2: detected capacity change from 0 to 512
[  151.806057][ T7689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  151.818768][ T7689] ext4 filesystem being mounted at /root/syzkaller-testdir774255803/syzkaller.Wc1Cyn/326/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.867912][ T7695] loop0: detected capacity change from 0 to 2048
[  151.874781][ T3102] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  151.899873][ T7695] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.911615][ T7699] loop3: detected capacity change from 0 to 256
[  151.931300][ T6359] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.951413][ T7704] loop2: detected capacity change from 0 to 512
[  151.961077][ T7704] EXT4-fs (loop2): orphan cleanup on readonly fs
[  151.968206][ T7704] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz-executor.2: Failed to acquire dquot type 0
[  151.981232][ T7704] EXT4-fs (loop2): 1 truncate cleaned up
[  151.993630][ T7709] netlink: 'syz-executor.0': attribute type 10 has an invalid length.
[  152.032970][ T7712] netlink: 'syz-executor.0': attribute type 10 has an invalid length.
[  152.071400][ T7718] loop2: detected capacity change from 0 to 256
[  152.105692][ T7721] loop3: detected capacity change from 0 to 512
[  152.117079][ T7722] loop4: detected capacity change from 0 to 512
[  152.128041][ T7721] EXT4-fs (loop3): orphan cleanup on readonly fs
[  152.147383][ T7721] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz-executor.3: Failed to acquire dquot type 0
[  152.160744][ T7721] EXT4-fs (loop3): 1 truncate cleaned up
[  152.172086][ T7722] loop4: detected capacity change from 0 to 512
[  152.182319][ T7722] EXT4-fs: Ignoring removed i_version option
[  152.188384][ T7722] EXT4-fs: Ignoring removed bh option
[  152.195403][ T7722] ext4: Unknown parameter 'dont_hash'
[  152.230873][ T7729] loop3: detected capacity change from 0 to 256
[  152.336061][ T7733] loop3: detected capacity change from 0 to 512
[  152.368076][ T7733] ext4 filesystem being mounted at /root/syzkaller-testdir3037379621/syzkaller.VfzgIp/8/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.517003][ T7737] sctp: [Deprecated]: syz-executor.3 (pid 7737) Use of int in max_burst socket option.
[  152.517003][ T7737] Use struct sctp_assoc_value instead
[  152.539701][ T7737] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[  152.549078][ T7737] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  152.564046][ T7739] loop1: detected capacity change from 0 to 128
[  152.602397][ T7741] loop3: detected capacity change from 0 to 512
[  152.613776][ T7741] EXT4-fs (loop3): orphan cleanup on readonly fs
[  152.620505][ T7741] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz-executor.3: Failed to acquire dquot type 0
[  152.633408][ T7741] EXT4-fs (loop3): 1 truncate cleaned up
[  152.705656][ T7746] loop3: detected capacity change from 0 to 512
[  152.721792][ T7713] syz-executor.4 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  152.724698][ T7746] ext4 filesystem being mounted at /root/syzkaller-testdir3037379621/syzkaller.VfzgIp/11/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  152.733177][ T7713] CPU: 0 PID: 7713 Comm: syz-executor.4 Not tainted 6.10.0-rc2-syzkaller-00361-g061d1af7b030 #0
[  152.754751][ T7746] EXT4-fs error (device loop3): ext4_do_update_inode:5075: inode #2: comm syz-executor.3: corrupted inode contents
[  152.758115][ T7713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  152.758128][ T7713] Call Trace:
[  152.758135][ T7713]  <TASK>
[  152.774614][ T7746] EXT4-fs error (device loop3): ext4_dirty_inode:5935: inode #2: comm syz-executor.3: mark_inode_dirty error
[  152.780277][ T7713]  dump_stack_lvl+0xf2/0x150
[  152.780312][ T7713]  dump_stack+0x15/0x20
[  152.783908][ T7746] EXT4-fs error (device loop3): ext4_do_update_inode:5075: inode #2: comm syz-executor.3: corrupted inode contents
[  152.786497][ T7713]  dump_header+0x83/0x2d0
[  152.799604][ T7746] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz-executor.3: mark_inode_dirty error
[  152.802577][ T7713]  oom_kill_process+0x33e/0x4c0
[  152.802600][ T7713]  out_of_memory+0x9af/0xbe0
[  152.802619][ T7713]  mem_cgroup_out_of_memory+0x13e/0x190
[  152.849533][ T7713]  try_charge_memcg+0x745/0xcd0
[  152.854372][ T7713]  ? _raw_spin_unlock+0x26/0x50
[  152.859271][ T7713]  ? radix_tree_lookup+0xf9/0x150
[  152.864352][ T7713]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  152.870432][ T7713]  __read_swap_cache_async+0x2b9/0x520
[  152.875998][ T7713]  swap_cluster_readahead+0x276/0x3f0
[  152.881432][ T7713]  swapin_readahead+0xe2/0x7a0
[  152.886199][ T7713]  ? __filemap_get_folio+0x420/0x5b0
[  152.891509][ T7713]  ? bpf_send_signal_thread+0x16/0x20
[  152.896911][ T7713]  ? swap_cache_get_folio+0x6e/0x210
[  152.902212][ T7713]  do_swap_page+0x3bc/0x1840
[  152.906889][ T7713]  ? __rcu_read_lock+0x36/0x50
[  152.911727][ T7713]  handle_mm_fault+0x809/0x2a80
[  152.916579][ T7713]  exc_page_fault+0x296/0x650
[  152.921260][ T7713]  asm_exc_page_fault+0x26/0x30
[  152.926091][ T7713] RIP: 0010:x64_setup_rt_frame+0x103/0x570
[  152.931896][ T7713] Code: 00 00 00 04 41 0f 94 c6 31 ff 4c 89 e6 e8 55 b7 28 00 83 fd 33 0f 85 65 02 00 00 49 83 f6 07 48 8b 7c 24 08 0f 01 cb 0f ae e8 <4c> 89 73 08 48 c7 43 10 00 00 00 00 4c 8b 74 24 10 49 8b 85 f8 07
[  152.951502][ T7713] RSP: 0018:ffffc90001533e10 EFLAGS: 00050202
[  152.955366][ T7750] loop0: detected capacity change from 0 to 256
[  152.957548][ T7713] RAX: 0000000000000000 RBX: 00007ffd6b693f38 RCX: ffff888118ca5280
[  152.957563][ T7713] RDX: ffff888118ca5280 RSI: 0000000004000000 RDI: ffff888118ca5a48
[  152.957576][ T7713] RBP: 0000000000000033 R08: ffffffff81062e3b R09: 0000000000000000
[  152.957588][ T7713] R10: 0001ffffffffffff R11: 0001c90001533d0f R12: 0000000004000000
[  152.957600][ T7713] R13: ffff888118ca5280 R14: 0000000000000007 R15: ffffc90001533f58
[  153.003610][ T7713]  ? x64_setup_rt_frame+0xeb/0x570
[  153.008762][ T7713]  arch_do_signal_or_restart+0x287/0x4b0
[  153.014376][ T7713]  syscall_exit_to_user_mode+0x59/0x130
[  153.019922][ T7713]  do_syscall_64+0xd6/0x1c0
[  153.024432][ T7713]  ? clear_bhb_loop+0x55/0xb0
[  153.029101][ T7713]  ? clear_bhb_loop+0x55/0xb0
[  153.033797][ T7713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.039704][ T7713] RIP: 0033:0x7f982f775375
[  153.044184][ T7713] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[  153.063784][ T7713] RSP: 002b:00007ffd6b694500 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  153.072229][ T7713] RAX: 0000000000000000 RBX: 00007f982f880f80 RCX: 00007f982f775375
[  153.080230][ T7713] RDX: 00007ffd6b694540 RSI: 0000000000000000 RDI: 0000000000000000
[  153.088184][ T7713] RBP: 00007f982f882980 R08: 0000000000000000 R09: 7fffffffffffffff
[  153.096216][ T7713] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000025516
[  153.104164][ T7713] R13: 00007f982f88105c R14: 0000000000000032 R15: 00007f982f882980
[  153.112114][ T7713]  </TASK>
[  153.115230][ T7713] memory: usage 307200kB, limit 307200kB, failcnt 660
[  153.122168][ T7713] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[  153.130104][ T7713] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[  153.137371][ T7713] Memory cgroup stats for /syz4:
[  153.137567][ T7713] cache 16384
[  153.145742][ T7713] rss 8192
[  153.148740][ T7713] shmem 0
[  153.151653][ T7713] mapped_file 0
[  153.155095][ T7713] dirty 0
[  153.158001][ T7713] writeback 8192
[  153.161517][ T7713] workingset_refault_anon 396
[  153.166168][ T7713] workingset_refault_file 31
[  153.170731][ T7713] swap 364544
[  153.174046][ T7713] swapcached 12288
[  153.177757][ T7713] pgpgin 86829
[  153.181112][ T7713] pgpgout 86822
[  153.184578][ T7713] pgfault 92978
[  153.188092][ T7713] pgmajfault 138
[  153.191606][ T7713] inactive_anon 4096
[  153.195498][ T7713] active_anon 0
[  153.198928][ T7713] inactive_file 4096
[  153.202917][ T7713] active_file 12288
[  153.206781][ T7713] unevictable 0
[  153.210313][ T7713] hierarchical_memory_limit 314572800
[  153.215664][ T7713] hierarchical_memsw_limit 9223372036854771712
[  153.221790][ T7713] total_cache 16384
[  153.225587][ T7713] total_rss 8192
[  153.229104][ T7713] total_shmem 0
[  153.232541][ T7713] total_mapped_file 0
[  153.236513][ T7713] total_dirty 0
[  153.239980][ T7713] total_writeback 8192
[  153.244212][ T7713] total_workingset_refault_anon 396
[  153.249380][ T7713] total_workingset_refault_file 31
[  153.254482][ T7713] total_swap 364544
[  153.258326][ T7713] total_swapcached 12288
[  153.262560][ T7713] total_pgpgin 86829
[  153.266531][ T7713] total_pgpgout 86822
[  153.270482][ T7713] total_pgfault 92978
[  153.274455][ T7713] total_pgmajfault 138
[  153.278643][ T7713] total_inactive_anon 4096
[  153.283093][ T7713] total_active_anon 0
[  153.287059][ T7713] total_inactive_file 4096
[  153.291442][ T7713] total_active_file 12288
[  153.295753][ T7713] total_unevictable 0
[  153.299704][ T7713] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=7713,uid=0
[  153.314908][ T7713] Memory cgroup out of memory: Killed process 7713 (syz-executor.4) total-vm:46572kB, anon-rss:420kB, file-rss:8892kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[  153.431002][ T7755] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  153.476985][ T7757] loop2: detected capacity change from 0 to 256
[  153.514930][ T7763] loop3: detected capacity change from 0 to 256
[  153.530217][ T7767] loop0: detected capacity change from 0 to 256
[  154.361179][ T7776] loop1: detected capacity change from 0 to 256
[  154.421792][ T7777] loop0: detected capacity change from 0 to 512
[  154.467945][ T7777] ext4 filesystem being mounted at /root/syzkaller-testdir2923188352/syzkaller.trA0kM/111/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.471345][ T7782] loop1: detected capacity change from 0 to 512
[  154.506798][ T7782] ext4 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/314/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.544824][ T7787] sctp: [Deprecated]: syz-executor.3 (pid 7787) Use of int in max_burst socket option.
[  154.544824][ T7787] Use struct sctp_assoc_value instead
[  154.591646][ T7792] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  154.593380][ T7779] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[  154.600161][ T7792] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  154.609046][ T7779] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  154.616164][ T7792] IPv6: NLM_F_CREATE should be set when creating new route
[  154.616174][ T7792] IPv6: NLM_F_CREATE should be set when creating new route
[  154.655557][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  154.655569][   T29] audit: type=1326 audit(1717898140.176:106591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde81615f69 code=0x0
[  154.656621][ T7797] loop0: detected capacity change from 0 to 128
[  154.744896][ T7800] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  154.757516][ T7803] loop1: detected capacity change from 0 to 256
[  154.807443][ T7807] xt_connbytes: Forcing CT accounting to be enabled
[  154.833614][ T7810] loop3: detected capacity change from 0 to 256
[  154.922416][ T7815] vhci_hcd: default hub control req: 400e v0f00 i0001 l0
[  154.958510][ T7817] loop1: detected capacity change from 0 to 256
[  155.021867][ T7820] loop3: detected capacity change from 0 to 512
[  155.059325][ T7821] loop1: detected capacity change from 0 to 512
[  155.084191][ T7820] loop3: detected capacity change from 0 to 512
[  155.091407][ T7820] EXT4-fs: Ignoring removed i_version option
[  155.095143][ T7821] ext4 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/317/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.097463][ T7820] EXT4-fs: Ignoring removed bh option
[  155.121274][ T7820] ext4: Unknown parameter 'dont_hash'
[  155.281261][ T7831] loop1: detected capacity change from 0 to 256
[  155.378069][ T7832] loop1: detected capacity change from 0 to 512
[  155.415657][ T7832] ext4 filesystem being mounted at /root/syzkaller-testdir1340601787/syzkaller.Ss8dPh/321/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.502643][ T7837] sctp: [Deprecated]: syz-executor.4 (pid 7837) Use of int in max_burst socket option.
[  155.502643][ T7837] Use struct sctp_assoc_value instead
[  155.540276][ T7837] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.4'.
[  155.549682][ T7837] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  155.594778][ T7844] loop2: detected capacity change from 0 to 256
[  155.598424][ T7839] netlink: 'syz-executor.0': attribute type 10 has an invalid length.
[  155.628815][ T7847] loop4: detected capacity change from 0 to 256
[  155.650751][   T29] audit: type=1400 audit(1717898141.166:106592): avc:  denied  { watch } for  pid=7849 comm="syz-executor.0" path="/root/syzkaller-testdir2923188352/syzkaller.trA0kM/114/file0" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  155.715027][ T7818] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  155.726708][ T7818] CPU: 0 PID: 7818 Comm: syz-executor.3 Not tainted 6.10.0-rc2-syzkaller-00361-g061d1af7b030 #0
[  155.737119][ T7818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  155.747249][ T7818] Call Trace:
[  155.750519][ T7818]  <TASK>
[  155.753441][ T7818]  dump_stack_lvl+0xf2/0x150
[  155.758027][ T7818]  dump_stack+0x15/0x20
[  155.762172][ T7818]  dump_header+0x83/0x2d0
[  155.766613][ T7818]  oom_kill_process+0x33e/0x4c0
[  155.771450][ T7818]  out_of_memory+0x9af/0xbe0
[  155.776027][ T7818]  mem_cgroup_out_of_memory+0x13e/0x190
[  155.781609][ T7818]  try_charge_memcg+0x745/0xcd0
[  155.786447][ T7818]  ? _raw_spin_unlock+0x26/0x50
[  155.791377][ T7818]  ? radix_tree_lookup+0xf9/0x150
[  155.796414][ T7818]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  155.802469][ T7818]  __read_swap_cache_async+0x2b9/0x520
[  155.807977][ T7818]  swap_cluster_readahead+0x276/0x3f0
[  155.813350][ T7818]  swapin_readahead+0xe2/0x7a0
[  155.818158][ T7818]  ? __filemap_get_folio+0x420/0x5b0
[  155.823431][ T7818]  ? swap_cache_get_folio+0x6e/0x210
[  155.828713][ T7818]  do_swap_page+0x3bc/0x1840
[  155.833374][ T7818]  ? cgroup_rstat_updated+0x99/0x550
[  155.838737][ T7818]  ? __rcu_read_lock+0x36/0x50
[  155.843496][ T7818]  handle_mm_fault+0x809/0x2a80
[  155.848615][ T7818]  ? mas_walk+0x204/0x320
[  155.852935][ T7818]  exc_page_fault+0x3b9/0x650
[  155.857754][ T7818]  asm_exc_page_fault+0x26/0x30
[  155.862651][ T7818] RIP: 0033:0x7fa3e293d323
[  155.867096][ T7818] Code: 00 00 00 00 00 66 90 31 c0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d ce fb 0d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f
[  155.886688][ T7818] RSP: 002b:00007fff98f8a7e8 EFLAGS: 00010293
[  155.892737][ T7818] RAX: 00000000fffffffa RBX: 00007fa3e2a48f80 RCX: 0000000000000000
[  155.900706][ T7818] RDX: 00007fff98f8a800 RSI: 0000000000000000 RDI: 0000000000000000
[  155.908662][ T7818] RBP: 00007fa3e2a4a980 R08: 00000000293c879f R09: 7fffffffffffffff
[  155.916616][ T7818] R10: 0000000000000000 R11: 00007fa3e2a1f080 R12: 0000000000026083
[  155.924571][ T7818] R13: 00007fa3e2a4905c R14: 0000000000000032 R15: 00007fa3e2a4a980
[  155.932583][ T7818]  </TASK>
[  155.935643][ T7818] memory: usage 307200kB, limit 307200kB, failcnt 891
[  155.942796][ T7818] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[  155.951017][ T7818] kmem: usage 307104kB, limit 9007199254740988kB, failcnt 0
[  155.958329][ T7818] Memory cgroup stats for /syz3:
[  155.958513][ T7818] cache 16384
[  155.959598][ T7861] loop2: detected capacity change from 0 to 256
[  155.963452][ T7818] rss 8192
[  155.963484][ T7818] shmem 0
[  155.978936][ T7818] mapped_file 0
[  155.982367][ T7818] dirty 12288
[  155.985632][ T7818] writeback 8192
[  155.989149][ T7818] workingset_refault_anon 654
[  155.993815][ T7818] workingset_refault_file 35
[  155.998381][ T7818] swap 544768
[  156.001636][ T7818] swapcached 16384
[  156.005360][ T7818] pgpgin 74159
[  156.008715][ T7818] pgpgout 74151
[  156.012145][ T7818] pgfault 87419
[  156.015588][ T7818] pgmajfault 252
[  156.019167][ T7818] inactive_anon 0
[  156.022773][ T7818] active_anon 0
[  156.026226][ T7818] inactive_file 4096
[  156.030163][ T7818] active_file 12288
[  156.033955][ T7818] unevictable 0
[  156.037383][ T7818] hierarchical_memory_limit 314572800
[  156.042722][ T7818] hierarchical_memsw_limit 9223372036854771712
[  156.048982][ T7818] total_cache 16384
[  156.052761][ T7818] total_rss 8192
[  156.056369][ T7818] total_shmem 0
[  156.059817][ T7818] total_mapped_file 0
[  156.063788][ T7818] total_dirty 12288
[  156.067578][ T7818] total_writeback 8192
[  156.071617][ T7818] total_workingset_refault_anon 654
[  156.076819][ T7818] total_workingset_refault_file 35
[  156.082027][ T7818] total_swap 544768
[  156.085810][ T7818] total_swapcached 16384
[  156.090029][ T7818] total_pgpgin 74159
[  156.093938][ T7818] total_pgpgout 74151
[  156.097894][ T7818] total_pgfault 87419
[  156.101903][ T7818] total_pgmajfault 252
[  156.106029][ T7818] total_inactive_anon 0
[  156.110187][ T7818] total_active_anon 0
[  156.114149][ T7818] total_inactive_file 4096
[  156.118603][ T7818] total_active_file 12288
[  156.122901][ T7818] total_unevictable 0
[  156.126917][ T7818] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=7818,uid=0
[  156.142111][ T7818] Memory cgroup out of memory: Killed process 7818 (syz-executor.3) total-vm:46572kB, anon-rss:472kB, file-rss:8992kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[  156.254976][ T7866] loop4: detected capacity change from 0 to 128
[  156.293038][ T7868] loop2: detected capacity change from 0 to 512
[  156.335037][ T7868] ext4 filesystem being mounted at /root/syzkaller-testdir774255803/syzkaller.Wc1Cyn/335/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.403102][ T7874] loop3: detected capacity change from 0 to 2048
[  156.462891][   T29] audit: type=1326 audit(1717898141.976:106593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde81615f69 code=0x0
[  156.554960][ T7885] sctp: [Deprecated]: syz-executor.1 (pid 7885) Use of int in max_burst socket option.
[  156.554960][ T7885] Use struct sctp_assoc_value instead
[  156.577802][ T7882] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'.
[  156.587135][ T7882] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  156.641664][ T7890] loop1: detected capacity change from 0 to 256
[  156.804334][ T7893] ==================================================================
[  156.812429][ T7893] BUG: KCSAN: data-race in pipe_lock / pipe_release
[  156.819109][ T7893] 
[  156.821418][ T7893] read-write to 0xffff888117dbf7ec of 4 bytes by task 7894 on cpu 0:
[  156.829476][ T7893]  pipe_release+0x164/0x1c0
[  156.833977][ T7893]  __fput+0x2c2/0x660
[  156.837954][ T7893]  __fput_sync+0x44/0x60
[  156.842187][ T7893]  __se_sys_close+0x101/0x1b0
[  156.846853][ T7893]  __x64_sys_close+0x1f/0x30
[  156.851434][ T7893]  x64_sys_call+0x25f1/0x2d70
[  156.856109][ T7893]  do_syscall_64+0xc9/0x1c0
[  156.860604][ T7893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.866491][ T7893] 
[  156.868803][ T7893] read to 0xffff888117dbf7ec of 4 bytes by task 7893 on cpu 1:
[  156.876334][ T7893]  pipe_lock+0x17/0x50
[  156.880395][ T7893]  do_splice+0x200/0x1120
[  156.884721][ T7893]  __se_sys_splice+0x24c/0x390
[  156.889481][ T7893]  __x64_sys_splice+0x78/0x90
[  156.894156][ T7893]  x64_sys_call+0x297f/0x2d70
[  156.898824][ T7893]  do_syscall_64+0xc9/0x1c0
[  156.903314][ T7893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.909199][ T7893] 
[  156.911511][ T7893] value changed: 0x00000002 -> 0x00000001
[  156.917210][ T7893] 
[  156.919517][ T7893] Reported by Kernel Concurrency Sanitizer on:
[  156.925647][ T7893] CPU: 1 PID: 7893 Comm: syz-executor.3 Not tainted 6.10.0-rc2-syzkaller-00361-g061d1af7b030 #0
[  156.936042][ T7893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  156.946084][ T7893] ==================================================================
2024/06/09 01:55:42 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  157.427372][   T29] audit: type=1400 audit(1717898142.946:106594): avc:  denied  { write } for  pid=3073 comm="syz-fuzzer" path="pipe:[629]" dev="pipefs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1