last executing test programs:

2m29.07362497s ago: executing program 32 (id=77):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x2}]})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2m22.418335479s ago: executing program 33 (id=292):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x7)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x7, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
dup2(r3, r0)

2m15.84090416s ago: executing program 4 (id=429):
r0 = open(&(0x7f0000000140)='./file1\x00', 0x147842, 0x184)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c831, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
preadv2(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

2m15.802091059s ago: executing program 4 (id=431):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

2m15.768731979s ago: executing program 4 (id=432):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$lock(r2, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r2, 0x6, &(0x7f0000000000))

2m15.715020319s ago: executing program 4 (id=434):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x8}, 0x18)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f0000000080)='./file0\x00')

2m15.667559769s ago: executing program 4 (id=437):
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$llc(0x1a, 0x801, 0x0)
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x18)
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x40006, 0x80750, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffefe, 0xa5d7}, 0x4c58, 0x0, 0x0, 0x0, 0x6, 0xffffffff, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2800001, 0xc3072, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

2m15.380208568s ago: executing program 4 (id=445):
ftruncate(0xffffffffffffffff, 0x6)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x3}, 0x2b)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0500000004000000032000000c00000000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b702000014"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$selinux_load(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e7578"], 0x2000)

2m15.380049648s ago: executing program 34 (id=445):
ftruncate(0xffffffffffffffff, 0x6)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x3}, 0x2b)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0500000004000000032000000c00000000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b702000014"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$selinux_load(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e7578"], 0x2000)

1m32.88915777s ago: executing program 2 (id=1617):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{}, 0x0, 0x0}, 0x20)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000240)={&(0x7f0000000180)=""/120, 0xffffffffffffff28})

1m32.79500774s ago: executing program 2 (id=1619):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000040), &(0x7f0000000180)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
connect$unix(r3, &(0x7f0000000140)=@abs, 0x6e)

1m32.68118379s ago: executing program 2 (id=1623):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x80080, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0x7000000)

1m32.612195229s ago: executing program 2 (id=1624):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x0, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x200000000000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f0000000080)='./file0\x00')

1m32.598370109s ago: executing program 2 (id=1626):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r2, 0x5421, &(0x7f0000000100)=0x100000001)
setsockopt$inet_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4)
connect$inet(r2, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10)
close(r2)

1m31.102778805s ago: executing program 0 (id=1662):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004"], 0xd4}}, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x16, "ca2b5718d452c196000000000000f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
read$watch_queue(r2, &(0x7f00000016c0)=""/4109, 0x100d)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x9)

1m30.831991024s ago: executing program 2 (id=1670):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000400)=@newtfilter={0x98, 0x2c, 0xd27, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x58, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffff8, 0xfff, 0x0, 0x5, 0xb}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x4, 0x3}}, @TCA_CHAIN={0x8}]}, 0x98}}, 0x24000000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m30.814307444s ago: executing program 35 (id=1670):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000400)=@newtfilter={0x98, 0x2c, 0xd27, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x58, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffff8, 0xfff, 0x0, 0x5, 0xb}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x4, 0x3}}, @TCA_CHAIN={0x8}]}, 0x98}}, 0x24000000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m29.114993989s ago: executing program 8 (id=1672):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x0, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x200000000000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f0000000080)='./file0\x00')

1m29.114379279s ago: executing program 0 (id=1686):
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@getnexthop={0x20, 0x6a, 0xb0d, 0x0, 0x0, {0x3, 0x0, 0x0, 0x2}, [@NHA_MASTER={0x8, 0xe}]}, 0x20}}, 0x0)

1m28.899649498s ago: executing program 8 (id=1677):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffc8b}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

1m28.899129838s ago: executing program 0 (id=1691):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r4, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01dfffffff0000000000210000000c00018008000100", @ANYRES32=r3], 0x20}}, 0x0)

1m28.824956148s ago: executing program 0 (id=1695):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x0, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x200000000000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f0000000080)='./file0\x00')

1m28.750332288s ago: executing program 0 (id=1682):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000a000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN_LIVE(0xa, &(0x7f0000000080)={r3, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m28.591740857s ago: executing program 0 (id=1690):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x10000043, 0x0, 0x0, 0x3}, 0xb09e2977203cb8be)
bind$tipc(r2, 0x0, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000240)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

1m28.562073237s ago: executing program 36 (id=1690):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x10000043, 0x0, 0x0, 0x3}, 0xb09e2977203cb8be)
bind$tipc(r2, 0x0, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000240)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

1m27.076136903s ago: executing program 8 (id=1716):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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")
lsetxattr$trusted_overlay_nlink(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000140), 0x0, 0x0, 0x0)
llistxattr(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

1m26.972193772s ago: executing program 37 (id=1716):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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")
lsetxattr$trusted_overlay_nlink(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000140), 0x0, 0x0, 0x0)
llistxattr(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

7.260145632s ago: executing program 7 (id=4002):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000080)=0x14)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f00000000c0)=0x32)
close(r2)

7.259611012s ago: executing program 7 (id=4003):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
move_pages(0x0, 0x2064, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], &(0x7f0000001180), &(0x7f0000000000), 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = io_uring_setup(0x6f94, &(0x7f0000001240)={0x0, 0xfffffffd, 0x0, 0x2})
pause()
close_range(r0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

6.400516489s ago: executing program 7 (id=4029):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021bc0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000900003808c000080080003400000000280000b807c000180090001006c617374000000006c000280080001400000000508000140000000090c00024000000000000078260c0002400005"], 0x140}, 0x1, 0x0, 0x0, 0x8051}, 0x0)

6.331442299s ago: executing program 7 (id=4031):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000780)={'vxcan1\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000040)={0x1d, r2, 0x3}, 0x18)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000280), r1)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r1)

5.476156486s ago: executing program 9 (id=4057):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
sendto$inet6(r0, &(0x7f0000000240)="ea53", 0x2, 0x20004c51, &(0x7f00000002c0)={0xa, 0x4e23, 0x40, @dev={0xfe, 0x80, '\x00', 0x40}, 0x7}, 0x1c)
close_range(r0, r0, 0x0)

5.445004906s ago: executing program 9 (id=4048):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1, 0x2000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffe}, 0x18)
clock_nanosleep(0x2, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x0)

5.403564916s ago: executing program 9 (id=4049):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_tcp(0x2, 0x1, 0x0)
socket(0xa, 0x1, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
connect$pppl2tp(r0, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34060}], 0x1)

5.355338146s ago: executing program 9 (id=4050):
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x41800, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x1101090, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x20000, 0x0)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

5.317263336s ago: executing program 9 (id=4051):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x10)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x800084}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(r1, 0x40047451, 0x2000000c)

5.199030746s ago: executing program 9 (id=4053):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x80000000000}, 0x18)
r2 = syz_io_uring_setup(0x112, &(0x7f0000000680)={0x0, 0xcfb6, 0x10, 0x5, 0xfffffff9}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000440)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x7ff, 0x6000})
io_uring_enter(r2, 0x1c40, 0x1aa5, 0x60, 0x0, 0x0)

5.163261055s ago: executing program 38 (id=4053):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x80000000000}, 0x18)
r2 = syz_io_uring_setup(0x112, &(0x7f0000000680)={0x0, 0xcfb6, 0x10, 0x5, 0xfffffff9}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000440)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x7ff, 0x6000})
io_uring_enter(r2, 0x1c40, 0x1aa5, 0x60, 0x0, 0x0)

3.762429561s ago: executing program 7 (id=4072):
socket$inet(0x2, 0x1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
write$selinux_attr(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x25, 0x1, 0x0)
setsockopt$TIPC_IMPORTANCE(r0, 0x10f, 0x7f, 0x0, 0x0)
request_key(&(0x7f0000000200)='pkcs7_test\x00', 0x0, 0x0, 0x0)

919.524913ms ago: executing program 5 (id=4122):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x403, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, 0x0, 0xff7f}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r4}]}, 0x3c}}, 0x0)

822.569042ms ago: executing program 5 (id=4125):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
pipe2$9p(&(0x7f0000001900)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = dup(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[], [], 0x6b}})

747.417182ms ago: executing program 5 (id=4127):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x101}, 0x18)
memfd_secret(0x80000)

724.891102ms ago: executing program 7 (id=4130):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x3, &(0x7f0000000940)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc0189374, 0x0)

697.518552ms ago: executing program 5 (id=4131):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adffa87d2255f674412d020000000000005ab527ee3697f1ec4436dd1164aa93cc5800075557165397000a63f6b9b3f427f6ba6b34f98125f30e697fffffffffffffffa30b273683626e0003254d570dca6b78ad833488cfe4109eaf009edd3e69613d3cd6aaa300006eee8501000000520a0000151d010000000100bf00000000cc587424363dc6ad7f3bbd424c6e6cafbe9309aba218a52001a3cd000041f0db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de4758c1096a1dc52f29e470a000517ebc406e89dcbb7677e6528b0856e31ed9474ac24cf609068f645ce971fc0480737a55ebb0bd701f7ff21e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d933bed759ff232cebc68b91af50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56d06c759da324a39f7f51b870b2851c3f0a1aab71587a21c8f1b3369ebfcba105a6ccdd01b0f04edb256c604f068773f6ff000000000000006ffbfe5ca32142b0195531458b7d1e341c6f864f983d745f5865aad41d2915aae7602a2d6cd415e8351ebc4223f54d6bec664709ff03f1aa3dc7f1580ace9bf2afd28d7157e67fb98d121ad6eb372713255012e028cb2654d493a0b4b35faae176c89b745eda2967199cc936859a537e8e4871d4acf3e3dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0cff28235a3cbb5d33b09bc30cf2880c586272c3f4d79bc36305745cb1cb385e6add14652003c7cdd3324f07d134d3ed07f1c10900000009dd872ec66ea6c718bbd1aa59114000f0be4c6f8df084c5e9734ae30aa9afdc719bf01ab03a9b1074407136b4506000f0916a39d3057d50183612b39e73aeeb6eaf14652dda68e98ef938e6515a94a71836469e2051d9b7eb85f3f2d5ae2c51944da8d7391d6d6b97419a3b7660df4c5124ca425d374b371867a79b31c6617fc3327191fbf514573f0e30d1d60be2168fe6c2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257b84000000b749ccd74089ed6b86f81ca3d247d8f71d290ed1b1a11f7a67125170c88c3b6a50696332226401b110da9c786eeca22debc99335583b54c13c3130978fa069af8223b38ced735c2d905f51ca85ffa4add5647489b3960127696cf2f16625c0c102000000000000009ef52134842e64171f3963841086e3797a4825d081f2d987f05c5341877386ec55d7dc958fd235d6071619a65d4b82d9c162f3556076b80550d961ca74f1ffdaccf0ea5f02e0fca8b27ff3983ab74fd3d560700a1fbb44e77e312b3b129e000302d613916c9bcf9f0000fac73adb6bfb27f88dba816020be760f7b45e001efada800000000000000fdaf4660402f7b3b79a433e08074ea2462974ab2cbd247eb1cfa2638f56daee57ed14bc74de0fd87a9ce638190f3570e0b4c80ef682df22237270955afb6008846557ee3bc09fda6dbb6542e597300eb82a184c96ffde5a30e5433d86666cb045bdd02c804c22ff2635c7bfbf5c0d586cda5e1e88a4d41dee7cc74f822278d124638fec58faeb48afe324369cc51204158bb440df2a694f4cdcaa4f65c22f000000000000000000000000000d503d79906958102000000000000000000001ffff0ef89b2a635edb2dd163e863315e84498dfb52b7f54da6398cbedaa42cc17c4563c859656a357770289a61faa95a82bf1cfb7f2fd7252e9322abe282c3344fc6738b4467893b9bf0d1c8130ae6b226900110635376413c29f7c6f7b7e29b9f4bddd5e328661f4046e01f7d7dc22174e5e627a6f608ad53a4168d4d8f7fbc71104512efe8e5d7d934aa289b4db2b870000000000000000000000000000000000000000009b777883a0f9cf4ad155110cd3ace2b322ac31bfa27847dc99c8a69a1ea5b98e525e6393ad7fd9795170e7b11e4fa990b9386910a6a1a66a70eaff01247603c2ff49d3979676bffb3049166ab84a0f061991bd57c2566c10c282352a5105b6164e3f2491e4793e590dcc71de10da96fdff40dd44a2c9882d3aa0f8a797b8fea6efcfb5046b7679f15559cdaa977504c40b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd50c5e22ade17556abb722d9c085b189b5fd1f30e8dc813f60400fde1f88d830b11002135e8e7262f299ed7923bfbe00ad88be179e56b41ff3792cee2fc37eee739c3e3af923e8738d93d583a9cf00b946960fc38cf85aae7cf708f9a9d166f2e352a06d99b8be476d1cc2a53a859ae4fdab2a987925d12422474ac044ffe9fe2bf9bf9bbdf36c4ca89c516647542ac45545337829fa7039d155ebda42d4c14f4ca7f8b5d5842658c62d0a03092b94fa1b19f190000000000000000000000000000009e75a32b9fafeffd890f2759b0fe3add33fa43a4c3995458f86a926ad56b23571c46728c039cd3b4bb7d69dfa27782b953a7b81cc161912b3e5716360686e126311a7e21bfa2efd0f57b90c203528c8f620d3c7b31c7abcffae382f53500f7cd5d00159e5f741d3e2d2cbd1a04b3f39b50a4683daa7d117b7f4a149c954d69d8ab001339e464c8eb5f0c63899010757c9a3b69f4920531b83f71d5a34ef9405819afee15b77c015ea755c95127ff2274bb9a8463ce4b8c08ad70596ad2b2b044e660ed144b9dce372450ea69d25da2b6deed67fac26e765aa7d5532ba1044f62db049486acde2294127cb767c23da7d8f9844d3be5b6aa83ee4ce1876af5130efe1b64ccb6bbd349bcc0e8deec8ab3bd1b35bbc8ab8a152771744baa576b9223d26b5603a7f091be1264cabaf661fe2dbe7990a61f710f923f2337818a3983d06c11a6bee7fccb78a53c56db5c18f920d2194374db665dcadf53b8d0014e682ec721d67a7ab6c817fe53c86f8900000000000000000000000000000060b7b827c56e973a2ab5bc5c558ada68c4ec3762f5957b20b919af5d53c87de056a397bdcb614c34761e2c815698e1f9f5521a385c2910850929040a4eba573e91ca21fc855358120ecd79a5d7007693ef3ff9d2b993d114443d53c53094e516f675b2a7074584714e7a2015e05e507811b4ca89c39281c9ada5f58ceb55893cca783ab09c9a19836a3a2c715b10436a5731549e364679ecd8461a68433ab52b1108831edb9654dc602183c1170d6881647f6dca15d57fb76357d815c5f1000000000000000000f49e327c0b6e511494466cec78650f0a6267"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000180)={r4, r0})
sendmmsg$inet(r1, &(0x7f0000000740)=[{{0x0, 0x34000, &(0x7f00000008c0)=[{&(0x7f0000000440)='{', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000480)="d9", 0x1}], 0x1}}], 0x2, 0x0)

660.953412ms ago: executing program 5 (id=4133):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r3}, 0x10)
listen(r2, 0x3)

621.069572ms ago: executing program 5 (id=4136):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r2}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

473.113251ms ago: executing program 6 (id=4143):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$can_raw(0x1d, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x40000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

444.562531ms ago: executing program 1 (id=4144):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
request_key(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000140)='\\\\@[*#)\x00', 0xfffffffffffffffe)

395.145721ms ago: executing program 1 (id=4145):
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x1c1c41, 0x6)
write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000300)=ANY=[@ANYBLOB='S\x00\x00\x00\a\x00\x00', @ANYBLOB='N'], 0x53)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

336.174811ms ago: executing program 6 (id=4146):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = memfd_secret(0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1b, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r3, r2, 0x2f, 0x4608, @void}, 0x10)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)

335.847471ms ago: executing program 6 (id=4147):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_open_dev$usbfs(0x0, 0x800000001fe, 0x2)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3, &(0x7f00000003c0)={[{@data_err_abort}, {@nobarrier}, {@quota}]}, 0x9, 0x61c, &(0x7f0000000700)="$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")

284.737791ms ago: executing program 1 (id=4149):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x408, 0xcd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

256.50008ms ago: executing program 1 (id=4150):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xfffffffffffffffd}, 0x101200, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
close(r2)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/net\x00')
r3 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="85000000080000004e00000000000000850000007d00000095000000000000007ab9e683b171b4b09980af6c1ebeda4ac0d3e3aa71a9ab17e14e1b0be949499ca6a5b2c467b6d3d1c0ae1e9820331afd90cc832c761aa3adf9be48c401c7f893694bf8cd19b7173cd4688904f7310af046fd490d3f2cf49b5f68aecf0bc659dc3d53c2"], &(0x7f0000000140)='GPL\x00', 0x0, 0xbd, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000440)={r3, 0x0, 0x11, 0x0, &(0x7f0000000600)="61df712bc884fef053a7a9a26e9b722780", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000005c0)={@ifindex, 0x11, 0x0, 0x4, &(0x7f0000000240), 0x2f, 0x0, 0x0, 0x0, 0x0}, 0x40)

255.74005ms ago: executing program 3 (id=4151):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x2, 0xc}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000280)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x3ff, @empty, 0x1}, {0xa, 0x4e20, 0x1ff, @dev={0xfe, 0x80, '\x00', 0x30}, 0x9}, r1, 0xb}}, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0x8}, 0x18)
write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f00000004c0)={0x1, 0x10, 0xfa00, {&(0x7f0000000480), r1}}, 0x18)

207.673321ms ago: executing program 6 (id=4152):
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x4004, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2, 0x0, 0x6}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1c8}}, 0x0)

207.20525ms ago: executing program 3 (id=4153):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r2}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)

183.89781ms ago: executing program 1 (id=4154):
r0 = socket$key(0xf, 0x3, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$key(r0, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x401)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000680)=@newtaction={0x180, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0x16c, 0x1, [@m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0xfffffdd6}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0xd4, 0x3, 0x0, 0x0, {{0x9}, {0x58, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0x0, 0x3, {0x2, 0xea3, 0x7}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1d28}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}, @TCA_GACT_PARMS={0x18, 0x2, {0x7ff, 0xd8, 0x0, 0x9, 0x100000e0}}]}, {0x52, 0x6, "a06b1d1931f3579c6d7c5159238a286074602c3726c701f3c0d5382de62a6e8c4fb714fcd674c66cd306a4f78d3d05530609c9b04b7483bd084d70df8e77e6fbd503917aa0a6c737cef0ed021b60"}, {0xc}, {0x1, 0x8, {0x2, 0x2}}}}]}]}, 0x180}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)

168.740141ms ago: executing program 3 (id=4155):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000dfff007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'dummy0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)

152.66999ms ago: executing program 6 (id=4156):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa10000000000000701009856ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x26e1, 0x0)
close(r2)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a1282, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x20001400)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0x9)

138.89186ms ago: executing program 3 (id=4157):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000100)='net_dev_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

68.40711ms ago: executing program 3 (id=4158):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$eJzs289vFFUcAPDvzLZFKNiK+IOCWkVj44+WFlQOXjSaeNDERA94rG0hlYUaWhMhjVZj8GhIvBuPJv4FnvRi1JOJV70bEmJ6AT2tmd2ZdrvdLW3ZdtH9fJKB92be5n2/O/N238zrBtC1hrN/koj9EfF7RAzUqmsbDNf+u7m8OPX38uJUEpXKW38l1XY3lheniqbF6/rzykgakX6WxJEm/c5funxuslyeuZjXxxbOvz82f+nys7PnJ8/OnJ25MHHq1MkT4y88P/FcW/LMYrox9NHc0cOvvXP1janTV9/9+dukyL8hjzYZ3ujgE5VKm7vrrAN15aSng4GwJaWIyE5Xb3X8D0QpVk/eQLz6aUeDA3ZUpVKp9Lc+vFQB/seS6HQEQGcUX/TZ/W+x7dLU445w/aXaDVCW9818qx3piTRv09twf9tOwxFxeumfr7ItduY5BADAGt9n859nms3/0ri/rt3d+drQYETcExEHI+LeiDgUEfdFVNs+EBEPbrH/xkWS9fOf9Nq2EtukbP73Yr62tXb+V8z+YrCU1w5U8+9NzsyWZ47n78lI9O7J6uMb9PHDK7990epY/fwv27L+i7lgHse1nj1rXzM9uTB5OznXu/5JxFBPs/yTlZWAJCIOR8TQNvuYfeqbo62O3Tr/DbRhnanydcSTtfO/FA35F5KN1yfH7oryzPGx4qpY75dfr7zZqv/byr8NsvO/r+n1v5L/YFK/Xju/9T6u/PF5y3ua7V7/fcnb1XJfvu/DyYWFi+MRfcnrtaDr90+svraoF+2z/EeONR//B2P1nTgSEdlF/FBEPBwRj+SxPxoRj0XEsQ3y/+nlx9/bfv47K8t/ekvnf7XQF417mhdK5378bk2ng1vJPzv/J6ulkXzPZj7/NhPX9q5mAAAA+O9JI2J/JOnoSjlNR0drfy9/KPal5bn5hafPzH1wYbr2G4HB6E2LJ10Ddc9Dx/Pb+qI+0VA/kT83/rK0t1ofnZorT3c6eehy/S3Gf+bPUqejA3ac32tB9zL+oXsZ/9C9jH/oXk3G/95OxAHsvmbf/x93IA5g9zWMf8t+0EXc/0P3Mv6hexn/0JXm98atfySvoLCuEOkdEYbCDhU6/ckEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQHv8GAAD//5LX5s8=")
creat(&(0x7f0000000340)='./bus\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4117639c2eb4b78c66ee677df701905b9aafab4afaaf755a3f6a004", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000"})
open(&(0x7f00000003c0)='./file1\x00', 0x14127e, 0x2)

4.23306ms ago: executing program 1 (id=4159):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000002c0)=""/249, 0xf9}], 0x1}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f00000001c0), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_freezer_state(r3, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r4, &(0x7f0000000080)='THAWED\x00', 0x7)

4.05244ms ago: executing program 3 (id=4160):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000680001ed020000000000008000000000000000000c00020001000000060000000800010001"], 0x2c}}, 0x4000)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

0s ago: executing program 6 (id=4161):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r2}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmmsg(r1, &(0x7f00000061c0)=[{{0x0, 0x0, 0x0}, 0x62dc}], 0x1, 0x2000, 0x0)
getpeername$qrtr(r1, 0x0, 0x0)

kernel console output (not intermixed with test programs):

truncate cleaned up
[  135.410167][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.417637][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.425292][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.433155][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.440789][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.448244][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.455807][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.463344][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.470880][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.478297][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.479649][T12100] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  135.486031][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.505859][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.513485][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.520913][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.528451][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.535920][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.543346][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.550809][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.558277][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.582052][T12142] loop3: detected capacity change from 0 to 1024
[  135.588887][T12142] EXT4-fs: Ignoring removed orlov option
[  135.596686][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.604170][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.609848][T12142] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  135.611666][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.629028][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.636583][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.644015][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.651449][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.658863][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.666390][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.673929][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.681409][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.688844][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.696345][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.703772][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.711197][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.718690][   T35] hid-generic 0000:0003:0000.0008: unknown main item tag 0x0
[  135.726812][   T35] hid-generic 0000:0003:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  135.738005][T12142] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.771932][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.806869][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.947639][T12202] syz.7.2685[12202] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.947768][T12202] syz.7.2685[12202] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.960756][T12202] syz.7.2685[12202] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  136.243834][T12261] netlink: 'syz.1.2686': attribute type 16 has an invalid length.
[  136.289886][T12264] loop6: detected capacity change from 0 to 128
[  136.297701][T12264] EXT4-fs: Ignoring removed nobh option
[  136.312193][T12264] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  136.325998][T12264] ext4 filesystem being mounted at /470/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  136.409469][ T4300] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  136.448592][T12270] loop9: detected capacity change from 0 to 512
[  136.486060][T12277] loop6: detected capacity change from 0 to 128
[  136.493967][T12270] EXT4-fs warning (device loop9): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  136.529377][T12270] EXT4-fs (loop9): mount failed
[  136.543548][T12277] syz.6.2697: attempt to access beyond end of device
[  136.543548][T12277] loop6: rw=2049, sector=145, nr_sectors = 896 limit=128
[  136.606658][T12277] syz.6.2697: attempt to access beyond end of device
[  136.606658][T12277] loop6: rw=524288, sector=657, nr_sectors = 256 limit=128
[  136.621031][T12277] syz.6.2697: attempt to access beyond end of device
[  136.621031][T12277] loop6: rw=0, sector=657, nr_sectors = 8 limit=128
[  136.631321][   T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  136.636991][T12277] syz.6.2697: attempt to access beyond end of device
[  136.636991][T12277] loop6: rw=0, sector=657, nr_sectors = 8 limit=128
[  136.845984][T12291] bridge: RTM_NEWNEIGH with invalid ether address
[  136.915413][T12297] __nla_validate_parse: 7 callbacks suppressed
[  136.915432][T12297] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2706'.
[  136.998631][T12299] loop9: detected capacity change from 0 to 8192
[  137.133339][T12312] loop3: detected capacity change from 0 to 2048
[  137.167658][T12312] EXT4-fs: Ignoring removed mblk_io_submit option
[  137.174339][T12312] EXT4-fs: Ignoring removed i_version option
[  137.200989][T12312] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.339826][T12334] loop9: detected capacity change from 0 to 764
[  137.346815][T12333] loop6: detected capacity change from 0 to 512
[  137.378909][T12333] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.2721: corrupted in-inode xattr: invalid ea_ino
[  137.400390][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.411883][T12333] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.2721: couldn't read orphan inode 15 (err -117)
[  137.463190][T12333] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.587030][T12356] loop7: detected capacity change from 0 to 2048
[  137.627595][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.652372][T12356]  loop7: p1 < > p4
[  137.672263][T12356] loop7: p4 size 8388608 extends beyond EOD, truncated
[  137.809527][T12379] Falling back ldisc for ttyS3.
[  137.837954][T12393] loop6: detected capacity change from 0 to 1024
[  137.848554][T12393] EXT4-fs: Ignoring removed nobh option
[  137.854279][T12393] EXT4-fs: Ignoring removed bh option
[  137.911289][T12393] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.019596][T12404] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2753'.
[  138.057964][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.095080][T12411] loop9: detected capacity change from 0 to 256
[  138.135629][T12411] FAT-fs (loop9): Directory bread(block 64) failed
[  138.147179][T12414] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  138.157529][T12411] FAT-fs (loop9): Directory bread(block 65) failed
[  138.177966][T12411] FAT-fs (loop9): Directory bread(block 66) failed
[  138.184763][T12411] FAT-fs (loop9): Directory bread(block 67) failed
[  138.191722][T12411] FAT-fs (loop9): Directory bread(block 68) failed
[  138.198407][T12411] FAT-fs (loop9): Directory bread(block 69) failed
[  138.210425][T12411] FAT-fs (loop9): Directory bread(block 70) failed
[  138.217006][T12411] FAT-fs (loop9): Directory bread(block 71) failed
[  138.223638][T12411] FAT-fs (loop9): Directory bread(block 72) failed
[  138.233780][T12411] FAT-fs (loop9): Directory bread(block 73) failed
[  138.275061][T12411] Process accounting resumed
[  138.279998][T12411] syz.9.2757: attempt to access beyond end of device
[  138.279998][T12411] loop9: rw=0, sector=1768, nr_sectors = 4 limit=256
[  138.336078][T12438] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2767'.
[  138.359736][T12438] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  138.392780][T12442] xt_hashlimit: size too large, truncated to 1048576
[  138.437856][T12449] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  138.488596][T12455] SELinux:  Context @ is not valid (left unmapped).
[  138.495363][T12449] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  138.633690][T12463] syzkaller0: entered promiscuous mode
[  138.639289][T12463] syzkaller0: entered allmulticast mode
[  139.110361][T11197] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  139.175010][T12483] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2785'.
[  139.185537][T12483] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2785'.
[  139.194908][T11245] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  139.248348][T12485] loop7: detected capacity change from 0 to 512
[  139.261465][T12485] EXT4-fs: Ignoring removed oldalloc option
[  139.296384][T12485] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  139.338107][T12485] EXT4-fs (loop7): 1 truncate cleaned up
[  139.345665][T12485] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.399218][T12485] loop7: detected capacity change from 512 to 64
[  139.410720][T12485] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 128:freeing already freed block (bit 127); block bitmap corrupt.
[  139.425382][T12485] EXT4-fs (loop7): pa ffff88810601c2a0: logic 0, phys. 65, len 64
[  139.433408][T12485] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5366: group 0, free 64, pa_free 63
[  139.563522][T12515] loop6: detected capacity change from 0 to 8192
[  139.652773][   T29] kauditd_printk_skb: 237 callbacks suppressed
[  139.652866][   T29] audit: type=1400 audit(1736526414.560:7137): avc:  denied  { read } for  pid=12530 comm="syz.6.2805" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  139.680205][ T4878] EXT4-fs warning (device loop7): ext4_evict_inode:276: xattr delete (err -12)
[  139.693315][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.775019][   T29] audit: type=1326 audit(1736526414.680:7138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12539 comm="syz.7.2807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  139.818957][   T29] audit: type=1326 audit(1736526414.680:7139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12539 comm="syz.7.2807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  139.830176][    C1] hrtimer: interrupt took 39527 ns
[  139.842785][   T29] audit: type=1326 audit(1736526414.710:7140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12539 comm="syz.7.2807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  139.871411][   T29] audit: type=1326 audit(1736526414.710:7141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12539 comm="syz.7.2807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  140.081971][T12564] SELinux: security_context_str_to_sid (u) failed with errno=-22
[  140.148233][   T29] audit: type=1400 audit(1736526415.050:7142): avc:  denied  { read } for  pid=12570 comm="syz.9.2820" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  140.171649][   T29] audit: type=1400 audit(1736526415.050:7143): avc:  denied  { open } for  pid=12570 comm="syz.9.2820" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  140.197596][   T29] audit: type=1400 audit(1736526415.050:7144): avc:  denied  { ioctl } for  pid=12570 comm="syz.9.2820" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  140.236110][   T29] audit: type=1326 audit(1736526415.140:7145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12573 comm="syz.1.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  140.259844][   T29] audit: type=1326 audit(1736526415.140:7146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12573 comm="syz.1.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  140.308313][T12582] loop9: detected capacity change from 0 to 2048
[  140.363745][T12582]  loop9: p2 p3 p7
[  140.367494][T12595] loop1: detected capacity change from 0 to 512
[  140.396612][T12595] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  140.406493][T12595] EXT4-fs (loop1): orphan cleanup on readonly fs
[  140.413379][T12595] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  140.428385][T12595] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  140.435494][T12595] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2830: bg 0: block 40: padding at end of block bitmap is not set
[  140.450330][T12595] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  140.459396][T12595] EXT4-fs (loop1): 1 truncate cleaned up
[  140.465973][T12595] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.546004][T12606] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2833'.
[  140.561879][T12609] loop9: detected capacity change from 0 to 128
[  140.580051][ T8906] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.668298][T12622] netlink: 256 bytes leftover after parsing attributes in process `syz.6.2840'.
[  140.684582][T11202] kworker/u8:13: attempt to access beyond end of device
[  140.684582][T11202] loop9: rw=1, sector=145, nr_sectors = 896 limit=128
[  140.808178][T12642] loop9: detected capacity change from 0 to 256
[  140.816406][T12642] vfat: Unknown parameter 'sh'
[  140.921182][T12644] loop1: detected capacity change from 0 to 512
[  140.960642][T12644] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  140.970928][T12661] netlink: 'syz.9.2858': attribute type 39 has an invalid length.
[  140.979610][T12644] EXT4-fs (loop1): orphan cleanup on readonly fs
[  140.988442][T12644] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  141.006404][T12663] loop3: detected capacity change from 0 to 512
[  141.020147][T12644] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  141.027482][T12644] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2851: bg 0: block 40: padding at end of block bitmap is not set
[  141.043343][T12644] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  141.054294][T12663] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  141.062932][T12644] EXT4-fs (loop1): 1 truncate cleaned up
[  141.069725][T12663] EXT4-fs (loop3): orphan cleanup on readonly fs
[  141.076571][T12644] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  141.103984][T12663] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  141.127183][ T8906] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.168232][T12663] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  141.186027][T12663] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2859: bg 0: block 40: padding at end of block bitmap is not set
[  141.223395][T12679] netdevsim netdevsim9 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.237262][T12663] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  141.249942][T12663] EXT4-fs (loop3): 1 truncate cleaned up
[  141.256718][T12663] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  141.366937][T12679] netdevsim netdevsim9 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.388775][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.430970][T12679] netdevsim netdevsim9 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.482230][T12697] serio: Serial port ptm0
[  141.484122][T12699] loop1: detected capacity change from 0 to 128
[  141.500838][T12679] netdevsim netdevsim9 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.513637][T12699] syz.1.2875: attempt to access beyond end of device
[  141.513637][T12699] loop1: rw=2049, sector=153, nr_sectors = 888 limit=128
[  141.608065][T12679] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.620289][T12679] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.632173][T12679] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.644250][T12679] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.699639][T12718] netlink: 'syz.7.2884': attribute type 4 has an invalid length.
[  141.929653][T12722] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  141.941730][T12722] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.968220][T12741] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2893'.
[  142.012445][T12746] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.103013][T12746] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.133980][T12746] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.191059][T12746] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.247235][T12746] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.258931][T12746] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.272027][T12746] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.284146][T12746] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.389664][T11203] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  142.434074][T12769] loop9: detected capacity change from 0 to 512
[  142.457317][T12773] loop6: detected capacity change from 0 to 1024
[  142.461933][T12769] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  142.464130][T12773] journal_path: not usable as path
[  142.472347][T12769] EXT4-fs (loop9): orphan cleanup on readonly fs
[  142.476866][T12773] EXT4-fs: error: could not find journal device path
[  142.505718][T12769] EXT4-fs warning (device loop9): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  142.520684][T12769] EXT4-fs (loop9): Cannot turn on quotas: error -117
[  142.527826][T12769] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.2902: bg 0: block 40: padding at end of block bitmap is not set
[  142.542375][T12769] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  142.552000][T12769] EXT4-fs (loop9): 1 truncate cleaned up
[  142.558178][T12769] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.003702][T12784] netem: change failed
[  143.031956][T12789] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2913'.
[  143.043686][T12790] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.111137][T12790] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.171205][T12790] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.201851][ T8797] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.232661][T12800] loop1: detected capacity change from 0 to 128
[  143.239721][T12800] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[  143.262719][T12790] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.277971][T12800] syz.1.2919: attempt to access beyond end of device
[  143.277971][T12800] loop1: rw=0, sector=216, nr_sectors = 1 limit=128
[  143.347022][T12790] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  143.358929][T12790] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  143.364982][T12808] loop7: detected capacity change from 0 to 512
[  143.370868][T12790] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  143.377330][T12808] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2240: inode #15: comm syz.7.2923: corrupted in-inode xattr: invalid ea_ino
[  143.385643][T12790] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  143.404070][T12808] EXT4-fs error (device loop7): ext4_orphan_get:1394: comm syz.7.2923: couldn't read orphan inode 15 (err -117)
[  143.433371][T12808] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.434507][T11203] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[  143.520549][T12814] loop3: detected capacity change from 0 to 512
[  143.531500][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.549857][T12814] EXT4-fs (loop3): orphan cleanup on readonly fs
[  143.558303][T12814] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  143.575390][T12814] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  143.602853][T12814] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #13: comm syz.3.2926: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  143.624158][T12814] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2926: couldn't read orphan inode 13 (err -117)
[  143.637468][T12814] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.662373][T12814] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  143.671824][T12822] loop6: detected capacity change from 0 to 256
[  143.680791][T12814] EXT4-fs warning (device loop3): read_mmp_block:115: Error -117 while reading MMP block 2
[  143.710672][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.772742][T12833] loop6: detected capacity change from 0 to 1024
[  143.780043][T12833] EXT4-fs: Ignoring removed orlov option
[  143.794341][T12833] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  143.822888][T12833] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.850600][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.167927][T12851] loop9: detected capacity change from 0 to 512
[  144.181834][T12851] EXT4-fs warning (device loop9): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  144.198317][T12851] EXT4-fs (loop9): mount failed
[  144.243720][T12858] loop9: detected capacity change from 0 to 512
[  144.252302][T12858] EXT4-fs (loop9): orphan cleanup on readonly fs
[  144.259007][T12858] EXT4-fs warning (device loop9): ext4_enable_quotas:7156: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  144.274289][T12858] EXT4-fs (loop9): Cannot turn on quotas: error -22
[  144.281620][T12858] EXT4-fs error (device loop9): ext4_ext_check_inode:524: inode #13: comm syz.9.2943: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  144.300250][T12858] EXT4-fs error (device loop9): ext4_orphan_get:1394: comm syz.9.2943: couldn't read orphan inode 13 (err -117)
[  144.313794][T12858] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  144.332319][T12858] EXT4-fs (loop9): warning: mounting fs with errors, running e2fsck is recommended
[  144.342121][T12858] EXT4-fs warning (device loop9): read_mmp_block:115: Error -117 while reading MMP block 2
[  144.363728][ T8797] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.449119][T12870] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2949'.
[  144.517440][T12872] loop1: detected capacity change from 0 to 512
[  144.540918][T12872] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  144.553867][T12872] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.580721][ T8906] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  144.630157][T12882] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  144.681180][T12888] loop6: detected capacity change from 0 to 512
[  144.694295][   T29] kauditd_printk_skb: 158 callbacks suppressed
[  144.694312][   T29] audit: type=1400 audit(1736526419.600:7300): avc:  denied  { write } for  pid=12885 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  144.732712][T12888] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  144.748897][T12888] EXT4-fs (loop6): orphan cleanup on readonly fs
[  144.759750][T12888] Quota error (device loop6): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  144.770348][T12888] EXT4-fs warning (device loop6): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  144.786183][   T29] audit: type=1400 audit(1736526419.690:7301): avc:  denied  { create } for  pid=12893 comm="syz.1.2958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  144.811844][   T29] audit: type=1400 audit(1736526419.710:7302): avc:  denied  { connect } for  pid=12893 comm="syz.1.2958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  144.831512][   T29] audit: type=1400 audit(1736526419.720:7303): avc:  denied  { write } for  pid=12893 comm="syz.1.2958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  144.863531][T12888] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  144.872007][T12888] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2955: bg 0: block 40: padding at end of block bitmap is not set
[  144.886595][T12888] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  144.896073][T12888] EXT4-fs (loop6): 1 truncate cleaned up
[  144.901320][   T29] audit: type=1400 audit(1736526419.790:7304): avc:  denied  { read } for  pid=12895 comm="syz.1.2959" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  144.902375][T12888] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  144.924654][   T29] audit: type=1400 audit(1736526419.790:7305): avc:  denied  { open } for  pid=12895 comm="syz.1.2959" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  144.924688][   T29] audit: type=1400 audit(1736526419.790:7306): avc:  denied  { ioctl } for  pid=12895 comm="syz.1.2959" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  144.970209][T11197] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  144.998581][T11197] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  145.026594][   T29] audit: type=1400 audit(1736526419.930:7307): avc:  denied  { create } for  pid=12898 comm="syz.9.2960" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  145.046274][   T29] audit: type=1400 audit(1736526419.930:7308): avc:  denied  { read } for  pid=12898 comm="syz.9.2960" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  145.093093][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.097439][T12902] netlink: 'syz.1.2961': attribute type 4 has an invalid length.
[  145.127015][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.134611][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.142189][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.165343][T12907] netlink: 'syz.1.2964': attribute type 10 has an invalid length.
[  145.172629][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.173253][T12907] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2964'.
[  145.180743][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.190604][T12907] team0: entered promiscuous mode
[  145.197482][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.203051][T12907] team_slave_0: entered promiscuous mode
[  145.203204][T12907] team_slave_1: entered promiscuous mode
[  145.210524][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.216338][T12907] team0: entered allmulticast mode
[  145.221831][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.229210][T12907] team_slave_0: entered allmulticast mode
[  145.234386][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.241739][T12907] team_slave_1: entered allmulticast mode
[  145.243046][T12907] bridge0: port 3(team0) entered blocking state
[  145.247517][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.255019][T12907] bridge0: port 3(team0) entered disabled state
[  145.260734][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.268514][T12907] bridge0: port 3(team0) entered blocking state
[  145.274475][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.280704][T12907] bridge0: port 3(team0) entered forwarding state
[  145.288498][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.316233][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.323748][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.331194][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.338624][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.346143][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.353560][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.449275][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.456720][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.464174][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.471724][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.479218][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.486742][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.494230][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.501680][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.509147][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.516662][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.524456][ T3372] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  145.537775][ T3372] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  145.576673][T12914] loop6: detected capacity change from 0 to 512
[  145.593088][T12914] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.2967: corrupted in-inode xattr: invalid ea_ino
[  145.608275][T12914] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.2967: couldn't read orphan inode 15 (err -117)
[  145.631349][T12914] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.738486][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.949445][T12922] Falling back ldisc for ttyS3.
[  145.956161][T12928] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  145.973906][T12926] loop6: detected capacity change from 0 to 1024
[  145.983215][T12926] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  145.995235][T12926] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  146.003856][T12926] EXT4-fs (loop6): orphan cleanup on readonly fs
[  146.011545][T12926] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  146.021763][T12926] EXT4-fs (loop6): Remounting filesystem read-only
[  146.028548][T12926] EXT4-fs (loop6): 1 orphan inode deleted
[  146.047600][T12926] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  146.062303][T12934] loop1: detected capacity change from 0 to 1764
[  146.075628][T12926] SELinux: (dev loop6, type ext4) getxattr errno 5
[  146.083375][T12926] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.190970][T12952] loop6: detected capacity change from 0 to 512
[  146.207333][T12952] EXT4-fs: Ignoring removed oldalloc option
[  146.213365][T12952] EXT4-fs: inline encryption not supported
[  146.219812][T12952] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  146.285620][T12952] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2984: bg 0: block 64: padding at end of block bitmap is not set
[  146.300415][T12952] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.2984: Failed to acquire dquot type 0
[  146.315357][T12952] EXT4-fs (loop6): 1 truncate cleaned up
[  146.321657][T12952] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.371712][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.402026][T12973] bridge0: port 3(vlan2) entered blocking state
[  146.408515][T12973] bridge0: port 3(vlan2) entered disabled state
[  146.426262][T12973] vlan2: entered allmulticast mode
[  146.436727][T12973] vlan2: left allmulticast mode
[  146.446981][T12971] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.510864][T12971] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.551224][T12971] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.610661][T12971] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.655626][T12992] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  146.710458][T12971] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  146.734874][T12971] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  146.760778][T12971] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.832434][T12971] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.936753][T13008] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3007'.
[  146.945808][T13008] netlink: 44 bytes leftover after parsing attributes in process `syz.7.3007'.
[  146.976849][T13008] bridge1: the hash_elasticity option has been deprecated and is always 16
[  147.020429][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.028013][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.035462][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.069960][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.077530][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.085017][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.092604][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.100102][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.107865][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.115502][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.122995][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.130452][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.138151][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.145599][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.153264][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.153468][T13018] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3012'.
[  147.160853][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.160887][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.160909][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.176527][T13024] loop6: detected capacity change from 0 to 512
[  147.177232][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.197625][T13022] loop9: detected capacity change from 0 to 1024
[  147.200821][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.219676][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.227168][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.234749][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.236937][T13024] EXT4-fs warning (device loop6): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  147.242219][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.242247][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.272090][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.279614][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.285966][T13028] loop7: detected capacity change from 0 to 2048
[  147.287000][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.295778][T13024] EXT4-fs (loop6): mount failed
[  147.300803][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.300834][ T1053] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  147.316426][T13022] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.332903][ T1053] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  147.336214][T13028] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.379983][T13022] EXT4-fs error (device loop9): ext4_expand_extra_isize_ea:2793: inode #12: comm syz.9.3013: corrupted in-inode xattr: bad magic number in in-inode xattr
[  147.429466][   T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  147.435307][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.488565][T13047] loop7: detected capacity change from 0 to 764
[  147.504557][T13047] Symlink component flag not implemented
[  147.511202][T13047] Symlink component flag not implemented (101)
[  147.520714][ T8797] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.561319][T13051] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.610385][T13063] loop6: detected capacity change from 0 to 512
[  147.626290][T13066] loop7: detected capacity change from 0 to 512
[  147.650355][T13066] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2240: inode #15: comm syz.7.3033: corrupted in-inode xattr: invalid ea_ino
[  147.666061][T13066] EXT4-fs error (device loop7): ext4_orphan_get:1394: comm syz.7.3033: couldn't read orphan inode 15 (err -117)
[  147.678833][T13066] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.751434][T13063] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.764590][T13063] ext4 filesystem being mounted at /542/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.780179][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.830330][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.850639][T13084] syz.7.3038[13084] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  147.850742][T13084] syz.7.3038[13084] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  147.876357][T13084] syz.7.3038[13084] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  147.919132][T13090] netlink: 92 bytes leftover after parsing attributes in process `syz.1.3042'.
[  147.988762][T13102] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  148.052649][T13105] netlink: 'syz.6.3049': attribute type 3 has an invalid length.
[  148.080464][T13102] tipc: Enabled bearer <eth:team0>, priority 0
[  148.277736][T13139] loop1: detected capacity change from 0 to 512
[  148.308830][T13145] netlink: 3592 bytes leftover after parsing attributes in process `syz.7.3057'.
[  148.320514][T13139] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  148.336705][T13139] EXT4-fs (loop1): mount failed
[  148.409394][T13163] loop1: detected capacity change from 0 to 256
[  148.416549][T13163] /dev/loop1: Can't open blockdev
[  148.434231][T13166] ALSA: seq fatal error: cannot create timer (-19)
[  148.517245][T13186] loop1: detected capacity change from 0 to 512
[  148.520467][T13182] ALSA: seq fatal error: cannot create timer (-19)
[  148.531209][T13186] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.3063: corrupted in-inode xattr: invalid ea_ino
[  148.546624][T13186] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.3063: couldn't read orphan inode 15 (err -117)
[  148.560473][T13186] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.588252][T13191] loop7: detected capacity change from 0 to 1024
[  148.595153][T13191] EXT4-fs: Ignoring removed nobh option
[  148.603196][T13191] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  148.621230][T13191] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.639013][ T8906] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.649116][T13191] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  148.686463][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.959832][T13255] veth0_vlan: entered allmulticast mode
[  148.982458][T13260] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.992967][T13257] hub 2-0:1.0: USB hub found
[  149.004741][T13255] veth0_vlan: left promiscuous mode
[  149.008288][T13257] hub 2-0:1.0: 8 ports detected
[  149.026398][T13255] veth0_vlan: entered promiscuous mode
[  149.069802][T13260] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.087948][T13266] loop6: detected capacity change from 0 to 512
[  149.103260][T13266] EXT4-fs: Ignoring removed mblk_io_submit option
[  149.111547][T13260] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.117848][T13266] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  149.132171][T13266] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  149.140329][T13266] System zones: 1-12
[  149.144590][T13266] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.3078: corrupted in-inode xattr: e_value size too large
[  149.159436][T13266] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.3078: couldn't read orphan inode 15 (err -117)
[  149.172144][T13266] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.172926][T13260] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.254513][T13277] loop7: detected capacity change from 0 to 1024
[  149.262402][T13277] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  149.272355][T13260] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.281682][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.285319][T13260] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.301045][T13277] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.316646][T13260] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.331681][T13260] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.340359][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.400403][T13291] netlink: 96 bytes leftover after parsing attributes in process `syz.3.3087'.
[  149.411280][T13293] random: crng reseeded on system resumption
[  149.736767][   T29] kauditd_printk_skb: 111 callbacks suppressed
[  149.736786][   T29] audit: type=1400 audit(1736526424.640:7412): avc:  denied  { setopt } for  pid=13318 comm="syz.7.3097" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  149.852003][T13328] loop7: detected capacity change from 0 to 256
[  149.859056][T13328] /dev/loop7: Can't open blockdev
[  149.892966][   T29] audit: type=1400 audit(1736526424.800:7413): avc:  denied  { create } for  pid=13330 comm="syz.3.3101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  149.912800][   T29] audit: type=1400 audit(1736526424.800:7414): avc:  denied  { bind } for  pid=13330 comm="syz.3.3101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  149.953363][   T29] audit: type=1400 audit(1736526424.860:7415): avc:  denied  { read } for  pid=13335 comm="syz.7.3104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  150.004407][   T29] audit: type=1400 audit(1736526424.910:7416): avc:  denied  { write } for  pid=13343 comm="syz.3.3106" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  150.004484][T13344] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3106'.
[  150.030285][   T29] audit: type=1400 audit(1736526424.910:7417): avc:  denied  { nlmsg_write } for  pid=13343 comm="syz.3.3106" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  150.078185][T13346] bond1: entered promiscuous mode
[  150.083422][T13346] bond1: entered allmulticast mode
[  150.088772][T13346] 8021q: adding VLAN 0 to HW filter on device bond1
[  150.098614][T13346] bond1 (unregistering): Released all slaves
[  150.184936][T13354] loop1: detected capacity change from 0 to 1024
[  150.202215][   T29] audit: type=1400 audit(1736526425.110:7418): avc:  denied  { mount } for  pid=13348 comm="syz.9.3108" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  150.227730][T13354] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  150.261468][T13354] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.278254][   T29] audit: type=1400 audit(1736526425.180:7419): avc:  denied  { create } for  pid=13353 comm="syz.1.3110" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  150.322746][   T29] audit: type=1400 audit(1736526425.210:7420): avc:  denied  { read write open } for  pid=13353 comm="syz.1.3110" path="/268/file1/bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  150.374252][T13362] loop9: detected capacity change from 0 to 512
[  150.391879][T13362] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.404828][T13362] ext4 filesystem being mounted at /295/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.422531][   T29] audit: type=1326 audit(1736526425.330:7421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.9.3112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd44b565d29 code=0x7ffc0000
[  150.460445][ T8797] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.480928][T13368] netlink: 16 bytes leftover after parsing attributes in process `syz.9.3114'.
[  150.514396][T13370] netlink: '+}[@': attribute type 27 has an invalid length.
[  150.557704][T13370] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.565257][T13370] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.620961][T13370] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  150.634700][T13370] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  150.657540][T13370] veth0_vlan: left allmulticast mode
[  150.672473][T13370] netdevsim netdevsim9 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  150.681048][T13370] netdevsim netdevsim9 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  150.689558][T13370] netdevsim netdevsim9 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  150.698038][T13370] netdevsim netdevsim9 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  150.709669][   T53] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  150.710707][T11245] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  150.802370][T13372] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3116'.
[  150.870612][T13378] netlink: 'syz.7.3119': attribute type 10 has an invalid length.
[  150.879370][T13380] loop9: detected capacity change from 0 to 512
[  150.886029][T13380] EXT4-fs: Ignoring removed oldalloc option
[  150.902176][T13380] EXT4-fs error (device loop9): ext4_xattr_inode_iget:436: comm syz.9.3120: Parent and EA inode have the same ino 15
[  150.943668][T13380] EXT4-fs error (device loop9): ext4_xattr_inode_iget:436: comm syz.9.3120: Parent and EA inode have the same ino 15
[  150.961170][T13380] EXT4-fs (loop9): 1 orphan inode deleted
[  150.967646][T13380] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.015083][T13390] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3125'.
[  151.037755][T13392] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  151.235509][T13407] loop1: detected capacity change from 0 to 512
[  151.269315][T13407] ext4 filesystem being mounted at /270/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.330535][T13418] syz.6.3135[13418] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.330659][T13418] syz.6.3135[13418] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.353336][T13418] syz.6.3135[13418] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.513164][T13434] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.554269][T13439] syz.1.3142[13439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.554426][T13439] syz.1.3142[13439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.571010][T13434] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.594221][T13440] vhci_hcd vhci_hcd.0: pdev(9) rhport(0) sockfd(4)
[  151.596654][T13439] syz.1.3142[13439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.600779][T13440] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  151.600919][T13440] vhci_hcd vhci_hcd.0: Device attached
[  151.616862][T13441] vhci_hcd: connection closed
[  151.634766][T11199] vhci_hcd: stop threads
[  151.644179][T11199] vhci_hcd: release socket
[  151.648608][T11199] vhci_hcd: disconnect device
[  151.674107][T13434] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.699921][T13447] netlink: 'syz.1.3144': attribute type 1 has an invalid length.
[  151.732125][T13434] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.786692][T13434] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  151.798161][T13454] loop3: detected capacity change from 0 to 512
[  151.808642][T13434] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  151.824405][T13456] loop1: detected capacity change from 0 to 512
[  151.835310][T13434] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  151.845767][T13454] ext4 filesystem being mounted at /601/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.850373][T13456] EXT4-fs: Ignoring removed orlov option
[  151.860507][T13434] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  151.881571][T13456] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.3157: casefold flag without casefold feature
[  151.894913][T13456] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.3157: couldn't read orphan inode 15 (err -117)
[  152.043197][T13468] loop7: detected capacity change from 0 to 512
[  152.050461][T13468] EXT4-fs: Ignoring removed mblk_io_submit option
[  152.057187][T13468] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  152.067764][T13468] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  152.076291][T13468] System zones: 1-12
[  152.079042][T13469] loop3: detected capacity change from 0 to 1764
[  152.080591][T13468] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2240: inode #15: comm syz.7.3150: corrupted in-inode xattr: e_value size too large
[  152.092811][T13469] iso9660: Bad value for 'sbsector'
[  152.101645][T13468] EXT4-fs error (device loop7): ext4_orphan_get:1394: comm syz.7.3150: couldn't read orphan inode 15 (err -117)
[  152.141546][T13469] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  152.198478][T13476] loop9: detected capacity change from 0 to 512
[  152.219830][T13476] EXT4-fs error (device loop9): ext4_orphan_get:1389: inode #15: comm syz.9.3154: casefold flag without casefold feature
[  152.243374][T13476] EXT4-fs error (device loop9): ext4_orphan_get:1394: comm syz.9.3154: couldn't read orphan inode 15 (err -117)
[  152.264444][T13483] bridge0: port 3(vlan1) entered blocking state
[  152.270810][T13483] bridge0: port 3(vlan1) entered disabled state
[  152.277392][T13483] vlan1: entered allmulticast mode
[  152.307549][T13483] vlan1: left allmulticast mode
[  152.367370][T13493] vlan3: entered allmulticast mode
[  152.412262][T13497] loop7: detected capacity change from 0 to 8192
[  152.466715][T13507] xt_hashlimit: max too large, truncated to 1048576
[  152.467660][T13509] loop7: detected capacity change from 0 to 256
[  152.481459][T13507] Cannot find set identified by id 0 to match
[  152.487994][T13509] FAT-fs (loop7): Directory bread(block 64) failed
[  152.499631][T13509] FAT-fs (loop7): Directory bread(block 65) failed
[  152.506641][T13509] FAT-fs (loop7): Directory bread(block 66) failed
[  152.517685][T13509] FAT-fs (loop7): Directory bread(block 67) failed
[  152.524515][T13509] FAT-fs (loop7): Directory bread(block 68) failed
[  152.543070][T13509] FAT-fs (loop7): Directory bread(block 69) failed
[  152.553178][T13509] FAT-fs (loop7): Directory bread(block 70) failed
[  152.567451][T13509] FAT-fs (loop7): Directory bread(block 71) failed
[  152.575835][T13509] FAT-fs (loop7): Directory bread(block 72) failed
[  152.582719][T13509] FAT-fs (loop7): Directory bread(block 73) failed
[  152.593720][T13521] rdma_op ffff88811842b180 conn xmit_rdma 0000000000000000
[  152.612958][T13509] syz.7.3170: attempt to access beyond end of device
[  152.612958][T13509] loop7: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  152.637164][T13509] syz.7.3170: attempt to access beyond end of device
[  152.637164][T13509] loop7: rw=0, sector=1736, nr_sectors = 8 limit=256
[  153.075610][T13563] loop6: detected capacity change from 0 to 1024
[  153.083067][T13563] EXT4-fs: Ignoring removed nobh option
[  153.090838][T13563] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  153.117737][T13563] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  153.279519][T11245] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  153.687706][T13586] loop9: detected capacity change from 0 to 2048
[  153.750549][T13586]  loop9: p1 < > p4
[  153.779970][T13586] loop9: p4 size 8388608 extends beyond EOD, truncated
[  154.007658][T13598] vlan2: entered allmulticast mode
[  154.085168][T13602] loop7: detected capacity change from 0 to 128
[  154.133492][T13607] loop6: detected capacity change from 0 to 512
[  154.140779][T13607] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  154.180626][T13607] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=884ee02c, mo2=0102]
[  154.201626][T13607] EXT4-fs (loop6): orphan cleanup on readonly fs
[  154.226253][T13607] EXT4-fs error (device loop6): ext4_get_branch:178: inode #11: block 33619980: comm syz.6.3212: invalid block
[  154.241981][T13620] tipc: Resetting bearer <eth:team0>
[  154.249568][T13607] EXT4-fs (loop6): Remounting filesystem read-only
[  154.261925][T13620] tipc: Disabling bearer <eth:team0>
[  154.267661][T13607] EXT4-fs (loop6): 1 truncate cleaned up
[  154.278994][T13620] team0 (unregistering): Port device team_slave_0 removed
[  154.287663][T13607] SELinux: (dev loop6, type ext4) getxattr errno 5
[  154.297979][T13620] team0 (unregistering): Port device team_slave_1 removed
[  154.350927][T13633] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  154.350927][T13633]    program syz.9.3224 not setting count and/or reply_len properly
[  154.474170][T13647] syzkaller0: entered allmulticast mode
[  154.510149][T13647] syzkaller0 (unregistering): left allmulticast mode
[  154.628578][T13669] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3236'.
[  154.655333][T13671] loop7: detected capacity change from 0 to 512
[  154.657964][T13669] netdevsim netdevsim9 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  154.669938][T13669] netdevsim netdevsim9 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  154.678164][T13669] netdevsim netdevsim9 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  154.684699][T13671] EXT4-fs: Ignoring removed orlov option
[  154.686518][T13669] netdevsim netdevsim9 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  154.694221][T13671] EXT4-fs error (device loop7): ext4_orphan_get:1389: inode #15: comm syz.7.3241: casefold flag without casefold feature
[  154.713565][T13669] vxlan0: entered promiscuous mode
[  154.713736][T13671] EXT4-fs error (device loop7): ext4_orphan_get:1394: comm syz.7.3241: couldn't read orphan inode 15 (err -117)
[  155.046624][   T29] kauditd_printk_skb: 71 callbacks suppressed
[  155.046790][   T29] audit: type=1326 audit(1736526429.950:7493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.077187][   T29] audit: type=1326 audit(1736526429.950:7494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.100797][   T29] audit: type=1326 audit(1736526429.950:7495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.113717][T13691] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(4)
[  155.124511][   T29] audit: type=1326 audit(1736526429.950:7496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.131019][T13691] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  155.131176][T13691] vhci_hcd vhci_hcd.0: Device attached
[  155.154761][   T29] audit: type=1326 audit(1736526429.950:7497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.191474][   T29] audit: type=1326 audit(1736526429.950:7498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.192149][T13698] vhci_hcd: connection closed
[  155.214976][   T29] audit: type=1326 audit(1736526429.950:7499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.215013][   T29] audit: type=1326 audit(1736526429.950:7500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.253760][   T53] vhci_hcd: stop threads
[  155.267058][   T29] audit: type=1326 audit(1736526429.950:7501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.267094][   T29] audit: type=1326 audit(1736526429.950:7502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13694 comm="syz.1.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5461d5d29 code=0x7ffc0000
[  155.271367][   T53] vhci_hcd: release socket
[  155.271377][   T53] vhci_hcd: disconnect device
[  155.362740][T13705] bridge0: port 4(vlan2) entered blocking state
[  155.369052][T13705] bridge0: port 4(vlan2) entered disabled state
[  155.375646][T13705] vlan2: entered allmulticast mode
[  155.381313][T13705] vlan2: left allmulticast mode
[  155.618371][T13725] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3261'.
[  155.666451][T13727] macvtap0: entered promiscuous mode
[  155.674799][T13727] macvtap0: left promiscuous mode
[  155.816422][T13741] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3268'.
[  156.018819][T13763] netlink: 'syz.1.3278': attribute type 4 has an invalid length.
[  156.084677][T13769] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  156.084677][T13769]    program syz.3.3281 not setting count and/or reply_len properly
[  156.194774][T13777] smc: net device bond0 applied user defined pnetid SYZ2
[  156.203426][T13777] smc: net device bond0 erased user defined pnetid SYZ2
[  156.399583][T13792] team0 (unregistering): left allmulticast mode
[  156.405936][T13792] team_slave_0: left allmulticast mode
[  156.411473][T13792] team_slave_1: left allmulticast mode
[  156.417043][T13792] team0 (unregistering): left promiscuous mode
[  156.423270][T13792] team_slave_0: left promiscuous mode
[  156.428817][T13792] team_slave_1: left promiscuous mode
[  156.434461][T13792] : port 1(team0) entered disabled state
[  156.441935][T13794] 9pnet: p9_errstr2errno: server reported unknown error œæçæ
[  156.461957][T13792] team0 (unregistering): Port device team_slave_0 removed
[  156.469550][T11245] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  156.480931][   T53] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  156.493822][T13792] team0 (unregistering): Port device team_slave_1 removed
[  156.547832][T13798] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  156.547832][T13798]    program syz.1.3294 not setting count and/or reply_len properly
[  156.634074][T13802] loop6: detected capacity change from 0 to 256
[  156.647916][T13803] pim6reg1: entered promiscuous mode
[  156.653319][T13803] pim6reg1: entered allmulticast mode
[  156.728837][T13811] random: crng reseeded on system resumption
[  157.097467][T13838] xt_hashlimit: max too large, truncated to 1048576
[  157.137323][T13843] netlink: 96 bytes leftover after parsing attributes in process `syz.3.3316'.
[  157.242620][T13852] loop9: detected capacity change from 0 to 2048
[  157.497682][T13866] loop6: detected capacity change from 0 to 512
[  157.532014][T13866] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  157.549977][T13866] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=884ee02c, mo2=0102]
[  157.570145][T13866] EXT4-fs (loop6): orphan cleanup on readonly fs
[  157.585734][T13866] EXT4-fs error (device loop6): ext4_get_branch:178: inode #11: block 33619980: comm syz.6.3326: invalid block
[  157.588835][T13881] netlink: 'syz.7.3332': attribute type 1 has an invalid length.
[  157.605596][T13879] loop9: detected capacity change from 0 to 1024
[  157.614659][T13879] EXT4-fs: Ignoring removed orlov option
[  157.620530][T13866] EXT4-fs (loop6): Remounting filesystem read-only
[  157.627898][T13879] EXT4-fs (loop9): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  157.639141][T13866] EXT4-fs (loop6): 1 truncate cleaned up
[  157.643198][T13881] 8021q: adding VLAN 0 to HW filter on device bond1
[  157.645561][T13866] SELinux: (dev loop6, type ext4) getxattr errno 5
[  157.660925][T13881] 8021q: adding VLAN 0 to HW filter on device bond1
[  157.668294][T13881] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[  157.681404][T13881] bond1: (slave wireguard0): Error -95 calling set_mac_address
[  157.899423][T13912] syz.6.3342[13912] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  157.899546][T13912] syz.6.3342[13912] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  157.914926][T13912] syz.6.3342[13912] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.140609][T13926] netlink: 'syz.7.3351': attribute type 3 has an invalid length.
[  158.175775][T13931] bridge0: port 3(gretap0) entered blocking state
[  158.182452][T13931] bridge0: port 3(gretap0) entered disabled state
[  158.194781][T13931] gretap0: entered allmulticast mode
[  158.203733][T13935] syz.1.3355[13935] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.203809][T13935] syz.1.3355[13935] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.205723][T13934] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3354'.
[  158.215807][T13931] gretap0: entered promiscuous mode
[  158.236118][T13935] syz.1.3355[13935] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.241595][T13931] bridge0: port 3(gretap0) entered blocking state
[  158.259484][T13931] bridge0: port 3(gretap0) entered forwarding state
[  158.310211][   T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  158.322912][T13939] syzkaller0: entered promiscuous mode
[  158.328431][T13939] syzkaller0: entered allmulticast mode
[  158.422050][T13949] netlink: 'syz.7.3362': attribute type 10 has an invalid length.
[  158.550082][T13964] loop7: detected capacity change from 0 to 512
[  158.557656][T13964] EXT4-fs: Ignoring removed nobh option
[  158.563367][T13964] EXT4-fs: Ignoring removed mblk_io_submit option
[  159.280518][T13989] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3375'.
[  159.695133][T14024] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3391'.
[  159.766344][T14027] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3393'.
[  159.835760][T14027] bond1: entered promiscuous mode
[  159.855349][T13983] syz.3.3373 (13983) used greatest stack depth: 6360 bytes left
[  159.870950][T14032] netlink: 104 bytes leftover after parsing attributes in process `syz.7.3395'.
[  159.880978][T14027] 8021q: adding VLAN 0 to HW filter on device bond2
[  159.892460][T14027] bond2: entered promiscuous mode
[  159.897848][T14027] bond1: (slave bond2): Enslaving as an active interface with an up link
[  159.941831][T14027] bond1 (unregistering): (slave bond2): Releasing backup interface
[  159.946202][T14027] bond2: left promiscuous mode
[  159.951819][T14045] syz.7.3401[14045] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  159.959403][T14045] syz.7.3401[14045] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  159.959472][T14045] syz.7.3401[14045] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  159.960738][T14027] bond1 (unregistering): Released all slaves
[  159.974087][T14045] netlink: 'syz.7.3401': attribute type 10 has an invalid length.
[  160.053950][   T29] kauditd_printk_skb: 106 callbacks suppressed
[  160.053967][   T29] audit: type=1326 audit(1736526434.960:7609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.112849][   T29] audit: type=1326 audit(1736526434.960:7610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.136444][   T29] audit: type=1326 audit(1736526434.960:7611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.160148][   T29] audit: type=1326 audit(1736526434.960:7612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.183698][   T29] audit: type=1326 audit(1736526434.960:7613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.207376][   T29] audit: type=1326 audit(1736526434.960:7614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.219770][T14041] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  160.231215][   T29] audit: type=1326 audit(1736526434.960:7615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.237440][T14041] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  160.237545][T14041] vhci_hcd vhci_hcd.0: Device attached
[  160.261045][   T29] audit: type=1326 audit(1736526434.960:7616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.298007][   T29] audit: type=1326 audit(1736526434.960:7617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.321721][   T29] audit: type=1326 audit(1736526434.960:7618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14052 comm="syz.6.3403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=255 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  160.341161][T14065] vhci_hcd: connection closed
[  160.345965][T11245] vhci_hcd: stop threads
[  160.355099][T11245] vhci_hcd: release socket
[  160.359570][T11245] vhci_hcd: disconnect device
[  160.445695][T14075] random: crng reseeded on system resumption
[  160.680361][T14088] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  160.977333][T14127] loop9: detected capacity change from 0 to 256
[  160.998087][T14127] FAT-fs (loop9): Directory bread(block 64) failed
[  161.006393][T14127] FAT-fs (loop9): Directory bread(block 65) failed
[  161.013184][T14127] FAT-fs (loop9): Directory bread(block 66) failed
[  161.022091][T14127] FAT-fs (loop9): Directory bread(block 67) failed
[  161.030453][T14127] FAT-fs (loop9): Directory bread(block 68) failed
[  161.037189][T14127] FAT-fs (loop9): Directory bread(block 69) failed
[  161.049348][T14127] FAT-fs (loop9): Directory bread(block 70) failed
[  161.055930][T14127] FAT-fs (loop9): Directory bread(block 71) failed
[  161.067438][T14127] FAT-fs (loop9): Directory bread(block 72) failed
[  161.082020][T14127] FAT-fs (loop9): Directory bread(block 73) failed
[  161.129711][T14139] syz.3.3440[14139] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  161.144416][T14127] syz.9.3433: attempt to access beyond end of device
[  161.144416][T14127] loop9: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  161.171076][T14127] syz.9.3433: attempt to access beyond end of device
[  161.171076][T14127] loop9: rw=0, sector=1736, nr_sectors = 8 limit=256
[  161.294869][T14157] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3449'.
[  161.328972][T14159] bridge0: port 4(gretap0) entered blocking state
[  161.335526][T14159] bridge0: port 4(gretap0) entered disabled state
[  161.342378][T14159] gretap0: entered allmulticast mode
[  161.349404][T14159] gretap0: entered promiscuous mode
[  161.355136][T14159] bridge0: port 4(gretap0) entered blocking state
[  161.361621][T14159] bridge0: port 4(gretap0) entered forwarding state
[  161.621522][T14169] random: crng reseeded on system resumption
[  162.230451][T14184] loop7: detected capacity change from 0 to 1024
[  162.231593][T11233] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  162.247760][   T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  162.259737][T14184] EXT4-fs: Ignoring removed orlov option
[  162.275880][T14184] EXT4-fs (loop7): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  162.340368][T14196] loop6: detected capacity change from 0 to 128
[  162.468454][T14196] syz.6.3464: attempt to access beyond end of device
[  162.468454][T14196] loop6: rw=2049, sector=145, nr_sectors = 896 limit=128
[  162.494437][T14194] syz.6.3464: attempt to access beyond end of device
[  162.494437][T14194] loop6: rw=524288, sector=145, nr_sectors = 224 limit=128
[  162.672161][T14225] tipc: Started in network mode
[  162.677069][T14225] tipc: Node identity d23f76384252, cluster identity 4711
[  162.684530][T14225] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  162.692176][T14225] ªªªªªª: renamed from syzkaller0
[  162.699060][T14225] tipc: Disabling bearer <eth:syzkaller0>
[  163.209221][T14287] bpf_get_probe_write_proto: 5 callbacks suppressed
[  163.209242][T14287] syz.6.3505[14287] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  163.215939][T14287] syz.6.3505[14287] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  163.227535][T14287] syz.6.3505[14287] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  163.241016][T14287] tipc: Started in network mode
[  163.257483][T14287] tipc: Node identity ac14140f, cluster identity 4711
[  163.264866][T14287] tipc: New replicast peer: 10.1.1.2
[  163.270328][T14287] tipc: Enabled bearer <udp:syz0>, priority 10
[  163.509708][T11199] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  163.549026][T14300] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  163.567574][T14300] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  164.048172][T14321] netlink: 32 bytes leftover after parsing attributes in process `syz.7.3519'.
[  164.279214][ T3374] tipc: Node number set to 2886997007
[  164.560680][T14372] Process accounting resumed
[  164.593144][T14378] netlink: 'syz.9.3545': attribute type 2 has an invalid length.
[  164.601092][T14378] netlink: 40 bytes leftover after parsing attributes in process `syz.9.3545'.
[  164.701870][T14391] hub 9-0:1.0: USB hub found
[  164.713927][T14393] loop9: detected capacity change from 0 to 764
[  164.722872][T14391] hub 9-0:1.0: 8 ports detected
[  164.742990][T14397] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3554'.
[  164.758360][T14397] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3554'.
[  164.775766][T14393] Symlink component flag not implemented
[  164.787364][T14393] Symlink component flag not implemented (129)
[  164.787713][T14397] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3554'.
[  164.809327][T14397] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3554'.
[  164.883226][T14408] syz.6.3558[14408] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.883360][T14408] syz.6.3558[14408] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.895080][T14408] syz.6.3558[14408] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.921139][T14393] rock: directory entry would overflow storage
[  164.927407][T14393] rock: sig=0x4f50, size=4, remaining=3
[  164.933050][T14393] iso9660: Corrupted directory entry in block 6 of inode 1792
[  164.949230][T14397] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3554'.
[  164.967253][T14397] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3554'.
[  165.108142][T14431] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3569'.
[  165.117279][T14431] netlink: 108 bytes leftover after parsing attributes in process `syz.7.3569'.
[  165.133298][T14431] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3569'.
[  165.143154][T14431] netlink: 108 bytes leftover after parsing attributes in process `syz.7.3569'.
[  165.154726][   T29] kauditd_printk_skb: 85 callbacks suppressed
[  165.154741][   T29] audit: type=1400 audit(1736526440.060:7704): avc:  denied  { mount } for  pid=14435 comm="+}[@" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  165.204850][   T29] audit: type=1400 audit(1736526440.110:7705): avc:  denied  { unmount } for  pid=8797 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  165.234446][   T29] audit: type=1400 audit(1736526440.140:7706): avc:  denied  { read } for  pid=14440 comm="syz.3.3574" name="wakeup_count" dev="sysfs" ino=197 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:dhcp_state_t:s0"
[  165.250782][T14446] syz.9.3573[14446] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.261674][T14446] syz.9.3573[14446] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.274028][T14443] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  165.292025][T14443] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  165.300357][T14443] vhci_hcd vhci_hcd.0: Device attached
[  165.302048][   T29] audit: type=1400 audit(1736526440.140:7707): avc:  denied  { open } for  pid=14440 comm="syz.3.3574" path="/sys/power/wakeup_count" dev="sysfs" ino=197 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:dhcp_state_t:s0"
[  165.307112][T14446] syz.9.3573[14446] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.333752][   T29] audit: type=1326 audit(1736526440.170:7708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14433 comm="syz.6.3570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  165.333795][   T29] audit: type=1326 audit(1736526440.170:7709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14433 comm="syz.6.3570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  165.377368][   T29] audit: type=1326 audit(1736526440.280:7710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14433 comm="syz.6.3570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  165.393399][T14444] vhci_hcd: connection closed
[  165.439844][   T53] vhci_hcd: stop threads
[  165.448948][   T53] vhci_hcd: release socket
[  165.451106][   T29] audit: type=1326 audit(1736526440.330:7711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14433 comm="syz.6.3570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  165.453512][   T53] vhci_hcd: disconnect device
[  165.476924][   T29] audit: type=1326 audit(1736526440.330:7712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14433 comm="syz.6.3570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4914a25d29 code=0x7ffc0000
[  165.519272][   T29] audit: type=1400 audit(1736526440.430:7713): avc:  denied  { create } for  pid=14452 comm="syz.3.3577" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  165.566192][T14459] syz.9.3580[14459] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.602715][T14463] loop7: detected capacity change from 0 to 512
[  165.622527][T14463] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  165.671382][T14463] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  165.679753][T14463] System zones: 0-2, 18-18, 34-35
[  165.688132][T14463] EXT4-fs mount: 28 callbacks suppressed
[  165.688152][T14463] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.725141][T14463] EXT4-fs error (device loop7): ext4_readdir:261: inode #2: block 3: comm syz.7.3591: path /606/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  165.749814][T14463] EXT4-fs (loop7): Remounting filesystem read-only
[  165.836718][T14486] loop9: detected capacity change from 0 to 512
[  165.844207][T14486] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  165.864552][T14486] EXT4-fs (loop9): 1 truncate cleaned up
[  165.871795][T14486] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.020871][T14496] hub 9-0:1.0: USB hub found
[  166.028558][T14500] SELinux:  Context system_u:object_r:system_map_t:s0 is not valid (left unmapped).
[  166.049138][T14496] hub 9-0:1.0: 8 ports detected
[  166.289795][T14511] netlink: 'syz.6.3602': attribute type 1 has an invalid length.
[  166.575870][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.613600][T14540] 
@ÿ: renamed from vlan0
[  166.759278][T14549] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  166.879266][T14562] vhci_hcd: invalid port number 157
[  166.884521][T14562] vhci_hcd: default hub control req: c1ef v21ba i009d l29779
[  167.042180][ T8797] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.093836][T14586] loop9: detected capacity change from 0 to 512
[  167.110387][T14586] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  167.144750][T14586] EXT4-fs (loop9): 1 truncate cleaned up
[  167.150935][T14586] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.166530][T14586] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.282418][T14603] delete_channel: no stack
[  167.336086][T14609] loop7: detected capacity change from 0 to 512
[  167.349594][T14609] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  167.351441][ T8881] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  167.370724][T11249] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  167.370787][T11199] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  167.418634][T14609] EXT4-fs (loop7): 1 truncate cleaned up
[  167.425205][T14609] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.921892][T14673] loop6: detected capacity change from 0 to 256
[  168.230361][T14705] bpf_get_probe_write_proto: 8 callbacks suppressed
[  168.230380][T14705] syz.1.3687[14705] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  168.243861][T14705] syz.1.3687[14705] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  168.259240][T14705] syz.1.3687[14705] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  168.367676][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.457443][T14727] vhci_hcd: invalid port number 157
[  168.462794][T14727] vhci_hcd: default hub control req: c1ef v21ba i009d l29779
[  168.615017][T14743] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.710431][T14743] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.746365][T14762] smc: net device bond0 applied user defined pnetid SYZ0
[  168.756013][T14762] smc: net device bond0 erased user defined pnetid SYZ0
[  168.777411][T14743] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.834792][T14743] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.908219][T14743] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.920215][T14743] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.932012][T14743] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.944389][T14743] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  169.040788][T14795] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  169.071702][T14801] rdma_op ffff88810ab9e580 conn xmit_rdma 0000000000000000
[  169.269875][   T53] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  170.062646][T14883] smc: net device bond0 applied user defined pnetid SYZ0
[  170.194515][T14891] loop6: detected capacity change from 0 to 8192
[  170.228820][   T29] kauditd_printk_skb: 189 callbacks suppressed
[  170.228835][   T29] audit: type=1326 audit(1736526445.130:7903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd44b565d29 code=0x7ffc0000
[  170.239753][T14891]  loop6: p2 p4[EZD]
[  170.270432][   T29] audit: type=1326 audit(1736526445.170:7904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd44b565d29 code=0x7ffc0000
[  170.279380][T14891] loop6: p2 size 2130706432 extends beyond EOD, truncated
[  170.293978][   T29] audit: type=1326 audit(1736526445.170:7905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd44b564690 code=0x7ffc0000
[  170.324716][   T29] audit: type=1326 audit(1736526445.170:7906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fd44b567557 code=0x7ffc0000
[  170.348328][   T29] audit: type=1326 audit(1736526445.170:7907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd44b565d29 code=0x7ffc0000
[  170.371849][   T29] audit: type=1326 audit(1736526445.170:7908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fd44b567557 code=0x7ffc0000
[  170.395457][   T29] audit: type=1326 audit(1736526445.170:7909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd44b56498a code=0x7ffc0000
[  170.419313][   T29] audit: type=1326 audit(1736526445.170:7910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd44b565d29 code=0x7ffc0000
[  170.442838][   T29] audit: type=1326 audit(1736526445.170:7911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd44b565d29 code=0x7ffc0000
[  170.443839][T14891] loop6: p4 size 65536 extends beyond EOD, 
[  170.466442][   T29] audit: type=1326 audit(1736526445.170:7912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14892 comm="syz.9.3777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd44b565d29 code=0x7ffc0000
[  170.472585][T14891] truncated
[  170.528124][T14901] __nla_validate_parse: 18 callbacks suppressed
[  170.528186][T14901] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3781'.
[  170.583450][T14905] netlink: 452 bytes leftover after parsing attributes in process `syz.1.3783'.
[  170.648024][T14915] syz.6.3788[14915] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.648092][T14915] syz.6.3788[14915] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.666157][T14915] syz.6.3788[14915] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.682766][T14917] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3789'.
[  170.898693][T14932] loop6: detected capacity change from 0 to 2048
[  170.920187][T14937] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3798'.
[  170.931966][T14934] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  170.964199][T14932]  loop6: p1 < > p2 < > p3 p4
[  170.968950][T14932] loop6: partition table partially beyond EOD, truncated
[  170.982156][T14932] loop6: p1 start 2305 is beyond EOD, truncated
[  170.988559][T14932] loop6: p2 start 4294902784 is beyond EOD, truncated
[  170.995422][T14932] loop6: p3 start 3724543488 is beyond EOD, truncated
[  171.002279][T14932] loop6: p4 size 8192 extends beyond EOD, truncated
[  171.016788][T14943] bridge0: port 3(vlan0) entered blocking state
[  171.023159][T14943] bridge0: port 3(vlan0) entered disabled state
[  171.043634][T14943] vlan0: entered allmulticast mode
[  171.056667][T14943] vlan0: left allmulticast mode
[  171.117125][T14956] loop6: detected capacity change from 0 to 512
[  171.186687][T14967] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3810'.
[  171.201769][T14956] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.216502][T14956] ext4 filesystem being mounted at /686/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.310523][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.318820][T14976] loop9: detected capacity change from 0 to 8192
[  171.328950][T14979] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  171.346206][T14981] netlink: 'syz.6.3814': attribute type 1 has an invalid length.
[  171.354208][T14981] netlink: 224 bytes leftover after parsing attributes in process `syz.6.3814'.
[  171.390782][T14976]  loop9: p2 p4[EZD]
[  171.399443][T14976] loop9: p2 size 2130706432 extends beyond EOD, truncated
[  171.407557][T14976] loop9: p4 size 65536 extends beyond EOD, truncated
[  171.417117][T14987] syz.6.3818[14987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  171.417210][T14987] syz.6.3818[14987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  171.429042][T14987] syz.6.3818[14987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  171.521016][T14999] loop9: detected capacity change from 0 to 1024
[  171.545242][T15001] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  171.553975][T15001] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  171.563813][T14999] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.576058][T14999] ext4 filesystem being mounted at /434/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.600594][ T8797] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.650061][T15015] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3829'.
[  171.713248][T15023] sd 0:0:1:0: device reset
[  172.145060][T15049] program syz.1.3845 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  172.453459][T15066] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  172.471498][ T3372] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  172.486070][T15068] netlink: 'syz.1.3854': attribute type 1 has an invalid length.
[  172.493950][T15068] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3854'.
[  172.523014][T15070] loop7: detected capacity change from 0 to 2048
[  172.590107][T15070]  loop7: p1 < > p2 < > p3 p4
[  172.594985][T15070] loop7: partition table partially beyond EOD, truncated
[  172.606956][T15085] netlink: 96 bytes leftover after parsing attributes in process `syz.6.3860'.
[  172.617293][T15070] loop7: p1 start 2305 is beyond EOD, truncated
[  172.623677][T15070] loop7: p2 start 4294902784 is beyond EOD, truncated
[  172.627911][T15085] netlink: 3 bytes leftover after parsing attributes in process `syz.6.3860'.
[  172.630548][T15070] loop7: p3 start 3724543488 is beyond EOD, truncated
[  172.646239][T15085] 0ªX¹¦À: renamed from caif0
[  172.646242][T15070] loop7: p4 size 8192 extends beyond EOD, 
[  172.650897][T15070] truncated
[  172.669012][T15085] 0ªX¹¦À: entered allmulticast mode
[  172.674426][T15085] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  172.811199][T15099] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=15099 comm=syz.1.3867
[  172.834852][T15104] loop7: detected capacity change from 0 to 512
[  172.866686][T15104] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.881549][T15104] ext4 filesystem being mounted at /640/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.924675][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.944860][T15111] gretap0: left allmulticast mode
[  172.950240][T15111] gretap0: left promiscuous mode
[  172.955435][T15111] bridge0: port 3(gretap0) entered disabled state
[  172.987947][T15111] bridge_slave_0: left allmulticast mode
[  172.993688][T15111] bridge_slave_0: left promiscuous mode
[  172.999416][T15111] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.011074][T15114] netlink: 'syz.7.3870': attribute type 1 has an invalid length.
[  173.024118][T15111] bridge_slave_1: left allmulticast mode
[  173.029932][T15111] bridge_slave_1: left promiscuous mode
[  173.035616][T15111] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.047152][T15111] bond0: (slave bond_slave_0): Releasing backup interface
[  173.055357][T15120] loop9: detected capacity change from 0 to 512
[  173.063839][T15111] bond0: (slave bond_slave_1): Releasing backup interface
[  173.073479][T15120] EXT4-fs error (device loop9): ext4_xattr_ibody_find:2240: inode #15: comm syz.9.3873: corrupted in-inode xattr: invalid ea_ino
[  173.087350][T15120] EXT4-fs error (device loop9): ext4_orphan_get:1394: comm syz.9.3873: couldn't read orphan inode 15 (err -117)
[  173.089972][T15111] team0: Port device team_slave_0 removed
[  173.100368][T15120] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.109543][T11249] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  173.118770][T11199] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  173.142193][T15111] team0: Port device team_slave_1 removed
[  173.153680][ T8797] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.166953][T15112] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  173.343587][T15137] ALSA: seq fatal error: cannot create timer (-19)
[  173.407001][T15151] netlink: 'syz.9.3888': attribute type 1 has an invalid length.
[  173.424366][T15154] loop6: detected capacity change from 0 to 512
[  173.432132][T15154] /dev/loop6: Can't open blockdev
[  173.437890][    C1] operation not supported error, dev loop6, sector 0 op 0x9:(WRITE_ZEROES) flags 0x10000800 phys_seg 0 prio class 0
[  173.465418][T15161] loop9: detected capacity change from 0 to 512
[  173.475434][T15161] EXT4-fs error (device loop9): ext4_xattr_ibody_find:2240: inode #12: comm syz.9.3891: corrupted in-inode xattr: invalid ea_ino
[  173.482020][T15163] loop6: detected capacity change from 0 to 2048
[  173.489614][T15161] EXT4-fs error (device loop9): ext4_orphan_get:1394: comm syz.9.3891: couldn't read orphan inode 12 (err -117)
[  173.508266][T15161] EXT4-fs (loop9): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.519654][T15163]  loop6: p1 < > p4
[  173.523934][T15161] EXT4-fs error (device loop9): ext4_add_entry:2444: inode #2: comm syz.9.3891: Directory hole found for htree leaf block 0
[  173.525001][T15163] loop6: p4 size 8388608 extends beyond EOD, truncated
[  173.551432][ T8797] EXT4-fs (loop9): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  173.609845][T15174] IPv4: Oversized IP packet from 127.202.26.0
[  173.668719][T15181] bond_slave_1: entered promiscuous mode
[  173.675889][T15181] bond_slave_1: left promiscuous mode
[  173.682596][T15183] netlink: 'syz.3.3901': attribute type 1 has an invalid length.
[  173.748726][T15193] bridge_slave_1: left allmulticast mode
[  173.754898][T15193] bridge_slave_1: left promiscuous mode
[  173.760622][T15193] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.768530][T15193] bridge_slave_0: left allmulticast mode
[  173.774284][T15193] bridge_slave_0: left promiscuous mode
[  173.779991][T15193] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.841288][T15199] Unknown options in mask 5
[  173.954420][T15212] tipc: Failed to remove unknown binding: 66,1,1/2886997007:781239456/781239458
[  173.965138][T15210] netlink: 'syz.9.3914': attribute type 1 has an invalid length.
[  173.974096][T15212] tipc: Failed to remove unknown binding: 66,1,1/2886997007:781239456/781239458
[  174.101899][T15227] smc: net device bond0 erased user defined pnetid SYZ0
[  174.248582][T15232] gretap0: left allmulticast mode
[  174.253738][T15232] gretap0: left promiscuous mode
[  174.258883][T15232] bridge0: port 4(gretap0) entered disabled state
[  174.269811][T15232] bridge0: port 3(team0) entered disabled state
[  174.294648][T15232] bridge_slave_1: left allmulticast mode
[  174.300478][T15232] bridge_slave_1: left promiscuous mode
[  174.306266][T15232] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.346549][T15232] bridge_slave_0: left allmulticast mode
[  174.352327][T15232] bridge_slave_0: left promiscuous mode
[  174.358062][T15232] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.445001][T15241] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.470121][T15243] loop7: detected capacity change from 0 to 2048
[  174.491905][T15243]  loop7: p1 < > p4
[  174.500079][T15243] loop7: p4 size 8388608 extends beyond EOD, truncated
[  174.528624][T15241] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.645434][T15249] loop9: detected capacity change from 0 to 8192
[  174.667357][T15249] msdos: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  174.667357][T15249] n'º|$@OOݱµ’-®+·el'
[  174.686439][T15241] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.761167][T15241] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.782874][T15259] loop9: detected capacity change from 0 to 512
[  174.800244][T15259] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.3933: invalid indirect mapped block 256 (level 2)
[  174.822165][T15259] EXT4-fs (loop9): 2 truncates cleaned up
[  174.848070][T15259] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.889315][T15241] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.924233][T15241] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.942375][T15241] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.954130][T15241] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.976863][T15266] netlink: 'syz.7.3936': attribute type 1 has an invalid length.
[  175.009882][ T8797] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.029537][   T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  175.071507][T15273] bridge_slave_1: left allmulticast mode
[  175.077248][T15273] bridge_slave_1: left promiscuous mode
[  175.083113][T15273] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.093419][T15273] bridge_slave_0: left allmulticast mode
[  175.099264][T15273] bridge_slave_0: left promiscuous mode
[  175.105252][T15273] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.160887][T15284] loop6: detected capacity change from 0 to 1024
[  175.167517][T15284] EXT4-fs: Ignoring removed orlov option
[  175.186213][T15284] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.194639][T15289] syz.9.3944[15289] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.198872][T15289] syz.9.3944[15289] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.210672][T15289] syz.9.3944[15289] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.257453][T15291] EXT4-fs (loop6): shut down requested (0)
[  175.298140][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.373573][T15304] loop7: detected capacity change from 0 to 512
[  175.383103][T15304] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2240: inode #15: comm syz.7.3950: corrupted in-inode xattr: invalid ea_ino
[  175.398751][T15304] EXT4-fs error (device loop7): ext4_orphan_get:1394: comm syz.7.3950: couldn't read orphan inode 15 (err -117)
[  175.414796][T15304] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.446873][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.486977][   T29] kauditd_printk_skb: 190 callbacks suppressed
[  175.487000][   T29] audit: type=1326 audit(1736526450.390:8103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  175.520041][   T29] audit: type=1326 audit(1736526450.390:8104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  175.543640][   T29] audit: type=1326 audit(1736526450.390:8105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  175.567411][   T29] audit: type=1326 audit(1736526450.390:8106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  175.591018][   T29] audit: type=1326 audit(1736526450.390:8107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  175.591054][   T29] audit: type=1326 audit(1736526450.390:8108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  175.638150][   T29] audit: type=1326 audit(1736526450.390:8109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  175.661781][   T29] audit: type=1326 audit(1736526450.390:8110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  175.685462][   T29] audit: type=1326 audit(1736526450.430:8111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  175.709070][   T29] audit: type=1326 audit(1736526450.430:8112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15317 comm="syz.7.3956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb011985d29 code=0x7ffc0000
[  176.094965][T15351] loop7: detected capacity change from 0 to 512
[  176.105600][T15351] EXT4-fs: Ignoring removed i_version option
[  176.111738][T15351] EXT4-fs: Ignoring removed mblk_io_submit option
[  176.120142][T15351] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[  176.237303][T15354] veth0_to_team: entered promiscuous mode
[  176.243161][T15354] veth0_to_team: entered allmulticast mode
[  176.590814][T15351] loop7: detected capacity change from 0 to 512
[  176.604382][T15351] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.617573][T15351] ext4 filesystem being mounted at /660/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.634027][T15351] EXT4-fs (loop7): shut down requested (2)
[  176.659652][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.690485][T15373] loop7: detected capacity change from 0 to 512
[  176.711493][T15373] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.726141][T15373] ext4 filesystem being mounted at /661/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.745260][T15373] Process accounting resumed
[  176.751887][T15373] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  176.794552][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.814683][T15386] __nla_validate_parse: 21 callbacks suppressed
[  176.814698][T15386] netlink: 40 bytes leftover after parsing attributes in process `syz.7.3984'.
[  177.228848][T15401] loop9: detected capacity change from 0 to 512
[  177.236752][T15396] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  177.246969][T15401] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  177.268177][T15401] EXT4-fs (loop9): 1 truncate cleaned up
[  177.274480][T15401] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.300824][ T8797] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.321033][T15406] loop9: detected capacity change from 0 to 256
[  177.799316][T15424] Set syz1 is full, maxelem 65536 reached
[  177.850283][T15436] syz.9.4004[15436] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  177.850542][T15436] syz.9.4004[15436] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  177.862202][T15436] syz.9.4004[15436] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  177.959468][T15439] loop9: detected capacity change from 0 to 8192
[  178.007674][ T8881] kernel write not supported for file /commit_pending_bools (pid: 8881 comm: kworker/0:7)
[  178.093745][T15449] syz.9.4010[15449] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  178.093821][T15449] syz.9.4010[15449] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  178.106021][T15449] syz.9.4010[15449] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  178.160055][T11245] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  178.243477][T15463] IPVS: Error connecting to the multicast addr
[  178.467939][T15483] loop6: detected capacity change from 0 to 512
[  178.481096][T15483] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.494309][T15483] ext4 filesystem being mounted at /734/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.511729][T15483] Process accounting resumed
[  178.518053][T15483] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  178.547234][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.647956][T15497] netlink: 64 bytes leftover after parsing attributes in process `syz.7.4029'.
[  178.814125][T15502] netlink: 3 bytes leftover after parsing attributes in process `syz.1.4032'.
[  178.823292][T15502] 0ªX¹¦À: renamed from caif0
[  178.830453][T15509] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[  178.837985][T15502] 0ªX¹¦À: entered allmulticast mode
[  178.843278][T15502] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  178.866155][T15511] netlink: 'syz.6.4035': attribute type 3 has an invalid length.
[  178.869762][T11245] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  178.996100][T15522] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4040'.
[  179.582926][T15539] loop6: detected capacity change from 0 to 512
[  179.595762][T15539] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  179.631501][T15539] EXT4-fs (loop6): 1 truncate cleaned up
[  179.644260][T15539] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.811898][T11199] netdevsim netdevsim9 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  179.901199][T11199] netdevsim netdevsim9 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  179.937918][T15556] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4056'.
[  179.957468][T11199] netdevsim netdevsim9 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  180.022841][T11199] netdevsim netdevsim9 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  180.072798][T15570] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4060'.
[  180.261512][T11199] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  180.272747][T11199] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  180.290281][T11199] bond0 (unregistering): Released all slaves
[  180.308489][T15568] geneve0: entered promiscuous mode
[  180.313787][T15568] geneve0: entered allmulticast mode
[  180.391441][T11199] tipc: Left network mode
[  180.411886][T11199] hsr_slave_0: left promiscuous mode
[  180.417620][T11199] hsr_slave_1: left promiscuous mode
[  180.426980][T11199] batman_adv: batadv0: Removing interface: batadv_slave_0
[  180.438248][T11199] batman_adv: batadv0: Removing interface: batadv_slave_1
[  180.520689][T11199] team0 (unregistering): Port device team_slave_1 removed
[  180.532030][T11199] team0 (unregistering): Port device team_slave_0 removed
[  180.621392][T15553] chnl_net:caif_netlink_parms(): no params data found
[  180.638935][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.708443][T15553] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.715591][T15553] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.731972][T15553] bridge_slave_0: entered allmulticast mode
[  180.743126][T15553] bridge_slave_0: entered promiscuous mode
[  180.750246][T15553] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.757564][T15553] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.765008][T15553] bridge_slave_1: entered allmulticast mode
[  180.771652][T15553] bridge_slave_1: entered promiscuous mode
[  180.789687][T11249] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  180.831862][T15553] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  180.849388][T15599] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  180.858613][T15553] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  180.899701][T15553] team0: Port device team_slave_0 added
[  180.908997][T15553] team0: Port device team_slave_1 added
[  180.958874][T15604] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4069'.
[  181.095382][T15553] batman_adv: batadv0: Adding interface: batadv_slave_0
[  181.102512][T15553] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  181.128559][T15553] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  181.143794][T15553] batman_adv: batadv0: Adding interface: batadv_slave_1
[  181.150829][T15553] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  181.176975][T15553] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  181.227231][T15553] hsr_slave_0: entered promiscuous mode
[  181.238011][T15553] hsr_slave_1: entered promiscuous mode
[  181.335826][   T29] kauditd_printk_skb: 87 callbacks suppressed
[  181.335841][   T29] audit: type=1400 audit(1736526456.240:8199): avc:  denied  { setopt } for  pid=15609 comm="syz.7.4072" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  181.799854][T15553] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  181.818568][T15553] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  181.849810][T15622] bond0: entered promiscuous mode
[  181.854925][T15622] bond_slave_0: entered promiscuous mode
[  181.860728][T15622] bond_slave_1: entered promiscuous mode
[  181.869962][T15622] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  181.881486][T15622] bond0: left promiscuous mode
[  181.886315][T15622] bond_slave_0: left promiscuous mode
[  181.891897][T15622] bond_slave_1: left promiscuous mode
[  181.917506][T15553] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  181.931602][T15553] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  181.938710][T15625] loop6: detected capacity change from 0 to 512
[  181.986999][T15625] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.4079: corrupted in-inode xattr: invalid ea_ino
[  182.007309][T15553] 8021q: adding VLAN 0 to HW filter on device bond0
[  182.016237][T15625] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.4079: couldn't read orphan inode 15 (err -117)
[  182.051200][T15553] 8021q: adding VLAN 0 to HW filter on device team0
[  182.065635][T11245] bridge0: port 1(bridge_slave_0) entered blocking state
[  182.072887][T11245] bridge0: port 1(bridge_slave_0) entered forwarding state
[  182.084340][T15625] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.112544][T11245] bridge0: port 2(bridge_slave_1) entered blocking state
[  182.119755][T11245] bridge0: port 2(bridge_slave_1) entered forwarding state
[  182.169841][   T29] audit: type=1326 audit(1736526457.080:8200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15632 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f934dff5d29 code=0x7ffc0000
[  182.213511][ T4300] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.241404][T15553] 8021q: adding VLAN 0 to HW filter on device batadv0
[  182.248314][   T29] audit: type=1326 audit(1736526457.110:8201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15632 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f934dff5d29 code=0x7ffc0000
[  182.272024][   T29] audit: type=1326 audit(1736526457.110:8202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15632 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f934dff5d29 code=0x7ffc0000
[  182.295671][   T29] audit: type=1326 audit(1736526457.110:8203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15632 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f934dff5d29 code=0x7ffc0000
[  182.319299][   T29] audit: type=1326 audit(1736526457.110:8204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15632 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f934dff5d29 code=0x7ffc0000
[  182.343143][   T29] audit: type=1326 audit(1736526457.110:8205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15632 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7f934dff5d29 code=0x7ffc0000
[  182.384132][   T29] audit: type=1326 audit(1736526457.270:8206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15632 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f934dff5d29 code=0x7ffc0000
[  182.407906][   T29] audit: type=1326 audit(1736526457.270:8207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15632 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f934dff5d29 code=0x7ffc0000
[  182.627590][T15553] veth0_vlan: entered promiscuous mode
[  182.652218][T15553] veth1_vlan: entered promiscuous mode
[  182.680083][T15553] veth0_macvtap: entered promiscuous mode
[  182.689993][T15553] veth1_macvtap: entered promiscuous mode
[  182.710309][ T8881] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  182.731114][T15553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  182.741740][T15553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.762084][T15553] batman_adv: batadv0: Interface activated: batadv_slave_0
[  182.770910][T15553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  182.781442][T15553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.792396][T15553] batman_adv: batadv0: Interface activated: batadv_slave_1
[  182.805177][T15553] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  182.814049][T15553] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  182.823005][T15553] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  182.831916][T15553] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  182.859457][   T29] audit: type=1400 audit(1736526457.760:8208): avc:  denied  { mounton } for  pid=15553 comm="syz-executor" path="/root/syzkaller.6Y9LkK/syz-tmp" dev="sda1" ino=1962 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  183.017152][T15681] loop5: detected capacity change from 0 to 1024
[  183.035644][T15681] EXT4-fs: Ignoring removed orlov option
[  183.069581][T15681] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.349791][T11245] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  183.574447][T15706] geneve0: entered promiscuous mode
[  183.579791][T15706] geneve0: entered allmulticast mode
[  183.723563][T15717] syz.6.4109[15717] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.723631][T15717] syz.6.4109[15717] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.757463][T15717] syz.6.4109[15717] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.901365][T15725] loop6: detected capacity change from 0 to 764
[  183.933839][T15725] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  183.946710][   T35] kernel write not supported for file /snd/seq (pid: 35 comm: kworker/1:1)
[  184.015037][T15553] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.110355][T15744] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4122'.
[  184.123329][T15744] team_slave_0: entered promiscuous mode
[  184.129019][T15744] team_slave_1: entered promiscuous mode
[  184.135096][T15744] macsec1: entered promiscuous mode
[  184.140377][T15744] team0: entered promiscuous mode
[  184.145704][T15744] macsec1: entered allmulticast mode
[  184.151100][T15744] team0: entered allmulticast mode
[  184.156246][T15744] team_slave_0: entered allmulticast mode
[  184.162221][T15744] team_slave_1: entered allmulticast mode
[  184.184195][T15748] program syz.3.4124 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  184.228769][T15752] IPv4: Oversized IP packet from 127.202.26.0
[  184.241290][T15747] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  184.241290][T15747] n'º|$@OOݱµ’-®+·el'
[  184.308738][T15760] loop7: detected capacity change from 0 to 1024
[  184.315722][T15760] EXT4-fs: Ignoring removed orlov option
[  184.340195][T15760] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.629633][T11245] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  184.728858][T15802] loop6: detected capacity change from 0 to 1024
[  184.750862][T15802] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  184.767671][T15802] JBD2: no valid journal superblock found
[  184.773545][T15802] EXT4-fs (loop6): Could not load journal inode
[  184.898643][T15818] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4154'.
[  184.907750][T15818] netlink: 108 bytes leftover after parsing attributes in process `syz.1.4154'.
[  184.919988][T15818] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4154'.
[  184.929925][T15818] netlink: 108 bytes leftover after parsing attributes in process `syz.1.4154'.
[  184.939290][T15818] netlink: 84 bytes leftover after parsing attributes in process `syz.1.4154'.
[  185.115513][T15777] ==================================================================
[  185.123791][T15777] BUG: KCSAN: data-race in filemap_splice_read / filemap_splice_read
[  185.131910][T15777] 
[  185.134288][T15777] write to 0xffff88811ff4e0b0 of 8 bytes by task 15760 on cpu 0:
[  185.142034][T15777]  filemap_splice_read+0x6c4/0x910
[  185.147195][T15777]  ext4_file_splice_read+0x8f/0xb0
[  185.152357][T15777]  splice_direct_to_actor+0x269/0x670
[  185.157766][T15777]  do_splice_direct+0xd7/0x150
[  185.162572][T15777]  do_sendfile+0x398/0x660
[  185.167035][T15777]  __x64_sys_sendfile64+0x110/0x150
[  185.172266][T15777]  x64_sys_call+0xfbd/0x2dc0
[  185.176900][T15777]  do_syscall_64+0xc9/0x1c0
[  185.181436][T15777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.187389][T15777] 
[  185.189737][T15777] write to 0xffff88811ff4e0b0 of 8 bytes by task 15777 on cpu 1:
[  185.197495][T15777]  filemap_splice_read+0x6c4/0x910
[  185.202687][T15777]  ext4_file_splice_read+0x8f/0xb0
[  185.208278][T15777]  splice_direct_to_actor+0x269/0x670
[  185.213693][T15777]  do_splice_direct+0xd7/0x150
[  185.218504][T15777]  do_sendfile+0x398/0x660
[  185.222954][T15777]  __x64_sys_sendfile64+0x110/0x150
[  185.228284][T15777]  x64_sys_call+0xfbd/0x2dc0
[  185.233011][T15777]  do_syscall_64+0xc9/0x1c0
[  185.237554][T15777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.243493][T15777] 
[  185.245840][T15777] value changed: 0x00000000000007fa -> 0x00000000000007fb
[  185.252976][T15777] 
[  185.255336][T15777] Reported by Kernel Concurrency Sanitizer on:
[  185.261519][T15777] CPU: 1 UID: 0 PID: 15777 Comm: syz.7.4130 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[  185.272308][T15777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  185.282397][T15777] ==================================================================
[  185.371643][ T4878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.549570][   T53] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  189.119468][T11249] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  190.389549][   T53] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  192.309586][   T53] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  194.869650][T11199] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration