last executing test programs:

8m36.887609516s ago: executing program 3 (id=4):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYRES16=0x0], 0x1, 0x1a1, &(0x7f0000000440)="$eJzslb9u2lAUxr9rY6irSnRtl1YqEnSosU1blaEDc4dWapQoW1BwEIkJEXgANp4ic54gM8rCeyRDkilDyJaJwdG1r+OLEwJD/iDl/Ibj716fezj3IH0GQRCvlvOz69PDfE7n+h1yyIj9CzXOUaT8YXby9bjx92jfvDoZjv6Uk/UYAN9f/PdTAEYVFZ5Y+/706Zx4rkCJtCa/XwODIfQGFKwK7YBhXehtSbd4vmFsNVzH2Gy5NS5MHiwebB5Kyf7GA4aa1B+T3nd6/Z2q6zrtJxTz5jeuKPgt9Sf/X9FszHh+sKDAEroEhv9C/0Immk04Eun+H1NxffWZ77+UQsPUjj4z+UN2TkENS3AdEouLiR9yfw4DF5c6sAStvqCI/ck/YMhL/pSS/KPoNfeKnV7/W6NZrTt1Z9e2Sz/N76b5wy4GRhTGB/xPD/zprVRfm5GbZml0q57XtsJ4u7a7GXhtO+G4b6Jz44GCwpewa+796UTd4Hvwnn3mj4Iq1gRBEARBEARBEARBEARBEI/OJzD4Scp3tux/QfZNAAAA//8H13SA")
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='grpquota,grpquota_block_hardlimit=3'])
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

8m36.651010908s ago: executing program 3 (id=5):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x40c0, &(0x7f0000000040)=ANY=[], 0xfd, 0xc3d, &(0x7f00000005c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x143041, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

8m35.0808075s ago: executing program 3 (id=7):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x800, &(0x7f0000000b40)=ANY=[@ANYBLOB='iocharset=koi8-r,umask=00000000000000000000005,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="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"], 0x1, 0x1520, &(0x7f00000037c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x143042, 0xf0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x800, 0xfffffffc)

8m34.481645584s ago: executing program 32 (id=7):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x800, &(0x7f0000000b40)=ANY=[@ANYBLOB='iocharset=koi8-r,umask=00000000000000000000005,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c666d61736b3d30303030303030303030303030303030303030303235362c646973636172642c666d61736b3d30303030303030303030303030303030303030303030362c757466382c756d61736b3d30303030303030303030303030303030303030303030362c616c6c6f775f7574696d653d30303030303030303030303030303030303134373037302c00a9be803a3d9ca5ba4db406dd0b5459a27d7abc3b60c1d4bbac4948d4f3788a00a3c80b1a12055d2eeace5828d472e71a44f7bd33fedd00041a89e7c8b566db5aa2675eb7a1960d9cafe3683a5bcd652df3c1b26964fb49ac33708e0ece227120888d8415dc28effbe7bb2c30703dc3328ec8e0014adab48920710452a0e3cc5ed20983ca8f6364b1e77f757201c7351e80c867cddd58f0d458ee6f0dd1c04610712dfed5947f2377704b03f3f89384757085de2c0dcae856c9b09e00ab778266f2fc3374d212ec41116ade69654203903d6851a4bd26b285"], 0x1, 0x1520, &(0x7f00000037c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x143042, 0xf0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x800, 0xfffffffc)

3m25.310018583s ago: executing program 1 (id=1198):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006880)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x14, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x0, 0x1}}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x1}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8848}, 0x80)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdafd, {0x0, 0x0, 0x0, r2, {0xc, 0xc}, {0x0, 0xfff1}, {0x0, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x4041080)

3m25.072184075s ago: executing program 1 (id=1199):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002080)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000500)='inet_sock_set_state\x00', r1, 0x0, 0xb5fc}, 0x18)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r2, &(0x7f0000000000)="aa", 0x1, 0x40, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x3}, 0x1c)
shutdown(r2, 0x1)

3m24.923407666s ago: executing program 1 (id=1200):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x3000010, &(0x7f0000000100)={[{@journal_dev={'journal_dev', 0x3d, 0x2d353}}, {@nobh}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

3m24.099650822s ago: executing program 1 (id=1201):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
r1 = io_uring_setup(0xf07, &(0x7f0000000580)={0x0, 0x400826e, 0x1, 0x3, 0xf0})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000000400)=[{0x0}], 0x1)
syz_clone3(&(0x7f0000000000)={0x285002400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x46)
io_uring_register$IORING_REGISTER_FILES(r1, 0x1e, &(0x7f0000000000)=[r1], 0x1)

3m23.791766224s ago: executing program 1 (id=1202):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r0}, 0x10)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

3m23.587884216s ago: executing program 1 (id=1203):
r0 = socket$kcm(0x29, 0x5, 0x0)
sendmsg(r0, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002c40)=[{0x0}], 0x1}, 0x4000)
close(r0)

3m14.622669713s ago: executing program 33 (id=1176):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006880)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x14, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x0, 0x1}}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x1}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8848}, 0x80)

3m12.137120491s ago: executing program 34 (id=1185):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xda01})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000041}, 0x200088d0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000027c0)=@newtfilter={0x8b0, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x87c, 0x2, [@TCA_MATCHALL_ACT={0x878, 0x2, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1ff, 0xffffffff, 0x10000, 0x81, 0x7f, 0xfffffffb, 0x4, 0x2, 0xffffffc0, 0x7, 0x2234, 0x7f, 0x81b, 0x800, 0x5, 0x0, 0x3, 0x7ed53619, 0x1, 0x2, 0x9644, 0x5, 0x58b, 0x85a, 0x1003ff, 0x9, 0x2, 0x1, 0x0, 0x80000000, 0x10001, 0x790, 0x5, 0xab2, 0xfffffff9, 0x1a77, 0x9, 0x3, 0x400, 0x63c, 0x4, 0xfffffffb, 0x1, 0x5, 0x1, 0x5b1f, 0x7b0, 0x7, 0x103, 0x100006, 0xd, 0xff, 0x3, 0x10000, 0x6, 0x6b7, 0x1ff, 0x4, 0x4, 0x7, 0x3, 0xa14, 0x3, 0x2, 0x80000000, 0x81, 0x7, 0x8, 0x5, 0x10001, 0xf7, 0x3, 0xfffffff9, 0x9, 0x4, 0x8, 0xfff, 0x3, 0x1, 0x6, 0x7, 0x8, 0x100, 0xc0000000, 0x6, 0x4, 0x6, 0x12a, 0x80000001, 0x8, 0x1d24, 0x2, 0x5, 0x1, 0x7f, 0x7, 0x863c, 0xff, 0x24, 0x5, 0x7, 0x6, 0x7a, 0x8, 0x0, 0x7, 0x470, 0x7f, 0x6, 0x0, 0x1, 0x0, 0x4, 0x9, 0x61, 0x200, 0x6, 0x2, 0x2, 0x6, 0x10001, 0x8, 0x7, 0xf, 0xda56, 0x7ffffffe, 0x9, 0x2f0cb955, 0x7, 0xfed, 0xf, 0x6ae, 0x2, 0x3e, 0x9, 0x8001, 0x0, 0xec000, 0x0, 0x1, 0x2, 0xfffffffb, 0x7, 0x8, 0x4, 0x1, 0xffffcf1b, 0x282, 0x5517bc7b, 0x3, 0x4, 0xb6b, 0x5, 0x0, 0xac, 0x9, 0x6, 0x10, 0x9, 0x8, 0x80000001, 0x0, 0x74, 0x2, 0x7fffffff, 0x0, 0xa, 0x6, 0xffffffff, 0x9, 0x10001, 0x7, 0x7f, 0x5, 0x3, 0x200000a, 0x1, 0x0, 0x9, 0x300, 0x5, 0x3, 0x6, 0xffffffff, 0xffb, 0xff, 0x5, 0x8, 0x3, 0x2, 0x5, 0xfca, 0x399d, 0x6, 0x8ab6, 0x18000, 0x2, 0xfffffff9, 0x2, 0x2, 0x528c, 0x5, 0x200, 0xac, 0xf, 0xd05, 0x9a2ce73, 0x4, 0x6, 0xe074, 0x6b10, 0x5, 0x1, 0x6, 0xb, 0xa26, 0xaf6, 0x0, 0xec, 0x8, 0xde16, 0xc418, 0xffffffff, 0xffffffff, 0x9, 0x400, 0x80001, 0x5, 0x354d, 0x5, 0x2, 0x1, 0x2007, 0x1, 0x177, 0x7, 0x0, 0x80, 0x5, 0x8, 0xfffffffb, 0x9, 0xe7b, 0x0, 0x7, 0x42bf, 0x10000, 0x9, 0x9, 0x6, 0x4b75, 0x80000001, 0x4, 0x5915, 0x10001, 0x1]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1080, 0x4, 0xec2, 0x6, 0x80000008, 0x400, 0x5, 0x1, 0x7, 0x470, 0x487, 0x100, 0xa99, 0x3, 0x5, 0x37f, 0x30, 0x6, 0x3, 0x3, 0x800, 0xd2f5, 0x40, 0x4, 0x4, 0x5, 0x7, 0x46, 0x2, 0x8, 0x101, 0xffffffff, 0x2, 0x10000, 0xa6, 0x3, 0x10000, 0x5, 0x4, 0x0, 0x3, 0x0, 0xd, 0x40006, 0x98, 0x8, 0x6, 0x9, 0x1000, 0xb3000, 0xf, 0x3, 0x9, 0xfdc4, 0x94d, 0x9, 0x8, 0x6, 0x100, 0xec0, 0xffff, 0x4, 0x2, 0x3ff, 0x3e, 0xb828, 0x0, 0x2, 0x365, 0x8, 0x8, 0x4000000f, 0x8, 0xfffffffe, 0xfffffff6, 0x93, 0x7ff, 0x1000092, 0x0, 0x7, 0x1, 0x7ff, 0x9, 0x2, 0x0, 0x2, 0x8, 0x4, 0x3, 0x9, 0xc, 0x0, 0x3, 0x3, 0x400, 0x100000, 0x7f, 0x2, 0x8, 0x4, 0x7, 0x4, 0x7, 0xfffffffa, 0x200101, 0xadd9, 0x1, 0x4, 0x7, 0x7fffffff, 0x2, 0x4, 0x0, 0x9, 0x4, 0x3, 0x40008, 0x7, 0x6, 0x6, 0x2, 0xb, 0x3, 0x7f, 0xffff, 0x401, 0x1685, 0xa252, 0x8d7, 0x200, 0x3, 0x1, 0x400, 0xfffffffc, 0xfffffffc, 0x1000, 0x7ff, 0x1, 0x1f6, 0x9, 0x7, 0x40000000, 0x5, 0xffffdbb7, 0x50, 0xf, 0xf, 0xe, 0x5, 0x0, 0x81, 0xfff80000, 0x7a7, 0x1, 0x6, 0x3, 0x5, 0x7, 0x5, 0x2, 0x0, 0x4e8, 0x80, 0x3, 0x8, 0x5, 0x5, 0x5, 0x7fff, 0x7, 0x8, 0x6a4941c5, 0x2ea567b4, 0x8, 0x80000000, 0x6, 0x40, 0x2, 0xfff, 0x8, 0x7, 0x1, 0x1, 0x0, 0x0, 0xd3bed341, 0x691f, 0x0, 0x2, 0x9, 0x6, 0x0, 0x1ff, 0x4000003, 0x3, 0x6, 0x5fc8462f, 0x0, 0x7, 0xffff, 0xffffffec, 0x5, 0x0, 0xb9a6, 0x522, 0x101, 0x2, 0x900, 0x6, 0xbb99, 0xb8000000, 0x8, 0xffffff01, 0xc0a1, 0x8, 0x8, 0x7, 0x59, 0x9, 0x2, 0x101, 0x5f502dca, 0x7, 0x0, 0x4, 0x6, 0x80000001, 0x3, 0xffffff97, 0x2, 0xffe, 0x1, 0x89d, 0x8, 0x3, 0x710, 0xe, 0x1, 0xfffff339, 0x3, 0x8001, 0x1, 0x8001, 0x9, 0x8, 0xfffffffa, 0x8, 0x9, 0x3, 0xe, 0x10000, 0x9, 0x9, 0x7, 0xfffffff8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0xfffffe00, 0x1, 0x5, 0x1, 0xdbec, {0x8, 0x1, 0x8001, 0x5, 0x7, 0x9}, {0x6, 0x0, 0xd, 0x5, 0x1, 0x5d17}, 0x8, 0xffffffff, 0x6}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}]}, 0x8b0}, 0x1, 0x0, 0x0, 0x10}, 0x0)

3m10.132788436s ago: executing program 35 (id=1194):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0xa02, 0xc1)
sendfile(r0, r0, 0x0, 0x2)

3m8.116075901s ago: executing program 36 (id=1203):
r0 = socket$kcm(0x29, 0x5, 0x0)
sendmsg(r0, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002c40)=[{0x0}], 0x1}, 0x4000)
close(r0)

2m27.255512535s ago: executing program 8 (id=1307):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)

2m27.177484886s ago: executing program 8 (id=1308):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(0xffffffffffffffff, 0x0, 0x2)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x5)
write$cgroup_subtree(r3, &(0x7f0000000280), 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r3)
sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="f8000000", @ANYRES16=r5, @ANYBLOB="100026bd7000fcdbdf25250000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008b00", @ANYRES32=r0, @ANYBLOB="0e0001006e657464657673696d0000000f0002006e657464657673696d30000008008c0002000000080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32=r0, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32=r0, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32, @ANYBLOB="0e000100b16dace02f6e657464657673696d0000000f0002006e65746465760b000000000099b80800", @ANYRES32=r0, @ANYBLOB], 0xf8}, 0x1, 0x0, 0x0, 0x4040085}, 0x10)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$getregs(0xc, r6, 0xffffffffffffdcaf, &(0x7f0000000180)=""/43)

2m26.269100932s ago: executing program 8 (id=1309):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0x23, &(0x7f00000002c0)={r2}, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xa, 0xfb, 0x7ffc1ffb}]})
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, 0x0, &(0x7f00000005c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r3}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
shmdt(0x0)
sched_setscheduler(r0, 0x2, &(0x7f00000001c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x18)
syz_clone(0x60000400, 0x0, 0x0, 0x0, 0x0, 0x0)

2m24.014964029s ago: executing program 6 (id=1312):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18)
mkdir(0x0, 0x51)
lstat(&(0x7f0000000280)='./file0\x00', 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x121101, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r5 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000013c0)={{0x14, 0x453, 0x1, 0x0, 0x0, {0x5}}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x64049}, 0x40000)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000090d92bf8db00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x38, 0x1403, 0x1, 0x70bd2c, 0x25dfdbfc, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, 0x0, 0x0)
listen(r8, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0xf, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff}}}}}}, 0x0)
r9 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r9)

2m23.069913456s ago: executing program 8 (id=1315):
r0 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0xc000, &(0x7f0000000380), 0x2, 0x24d, &(0x7f0000000440)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file5\x00', 0x61c0, 0x700)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file5\x00', 0x2000, 0x56159817211d7953, &(0x7f0000002500))
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, 0x0, 0x0)

2m23.066322896s ago: executing program 6 (id=1316):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)

2m22.857669618s ago: executing program 6 (id=1318):
socket$kcm(0x10, 0x2, 0x0)
bind$rds(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafb", 0xf}, {&(0x7f0000000500)="e98314d58ce4b24ee137cea9c243c233bfa2f5fee778bbfc11a66c5fc8d3e63588056401261b11905fabd4af", 0x2c}], 0x2)

2m22.403795711s ago: executing program 8 (id=1320):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

2m22.104455643s ago: executing program 8 (id=1322):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000ffdbdf251400000008000100", @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)

2m17.784462816s ago: executing program 6 (id=1323):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
recvmmsg(r0, &(0x7f0000003000)=[{{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, 0x0}, 0x90a9}], 0x2, 0x40010002, 0x0)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "0000000000000003"}, 0x10}, 0x1, 0x0, 0x0, 0x8001}, 0x20000000)

2m16.754037913s ago: executing program 6 (id=1330):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

2m16.524108665s ago: executing program 6 (id=1332):
socket$kcm(0x10, 0x2, 0x0)
bind$rds(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafb", 0xf}, {&(0x7f0000000500)="e98314d58ce4b24ee137cea9c243c233bfa2f5fee778bbfc11a66c5fc8d3e63588056401261b11905fabd4af", 0x2c}], 0x2)

2m10.013923894s ago: executing program 5 (id=1335):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)

2m9.893726714s ago: executing program 5 (id=1336):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="a1ab000000000000000032000000080017"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

2m9.661854616s ago: executing program 5 (id=1338):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r0, &(0x7f00000001c0), 0x10)
recvmmsg(r0, &(0x7f0000003000)=[{{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, 0x0}, 0x90a9}], 0x2, 0x40010002, 0x0)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "0000000000000003"}, 0x10}, 0x1, 0x0, 0x0, 0x8001}, 0x20000000)

2m8.600743754s ago: executing program 5 (id=1339):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x1c1242, 0x0)
ftruncate(r0, 0x2007ffb)
r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
sendfile(r1, r0, 0x0, 0x7ffff000)

2m7.596587651s ago: executing program 5 (id=1340):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

2m7.267706204s ago: executing program 5 (id=1342):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x100}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_GROUP_ADDR={0xa, 0x14, @multicast}]}}}]}, 0x40}}, 0x84)
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)={0x70, r4, 0x8, 0x70bd2c, 0x25dfdbfc, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x70}, 0x1, 0x0, 0x0, 0x80}, 0x48050)

2m6.302602611s ago: executing program 37 (id=1322):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000ffdbdf251400000008000100", @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)

2m1.04077721s ago: executing program 38 (id=1332):
socket$kcm(0x10, 0x2, 0x0)
bind$rds(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafb", 0xf}, {&(0x7f0000000500)="e98314d58ce4b24ee137cea9c243c233bfa2f5fee778bbfc11a66c5fc8d3e63588056401261b11905fabd4af", 0x2c}], 0x2)

1m51.553079341s ago: executing program 39 (id=1342):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x100}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_GROUP_ADDR={0xa, 0x14, @multicast}]}}}]}, 0x40}}, 0x84)
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)={0x70, r4, 0x8, 0x70bd2c, 0x25dfdbfc, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x70}, 0x1, 0x0, 0x0, 0x80}, 0x48050)

1m37.617382004s ago: executing program 9 (id=1387):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20702, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000780)={'pim6reg0\x00', 0x400})
write$cgroup_int(r2, &(0x7f0000000240)=0x2, 0x12)

1m36.89949436s ago: executing program 9 (id=1388):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000020000000000000030000000000000000000000004119202532aeecfcdbb73887feb3"], 0x138)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000f00)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000020000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
write$UHID_DESTROY(r0, &(0x7f0000000340), 0x4)

1m36.501623213s ago: executing program 3 (id=1350):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b000000000000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

1m36.263407324s ago: executing program 3 (id=1390):
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x3e)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)

1m35.868893727s ago: executing program 9 (id=1393):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000170900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}}, 0x2000c450)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xe}}}, 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000f00)={@val={0x0, 0x86dd}, @val={0x0, 0x0, 0x11, 0x800}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "ec9700", 0x38, 0x2c, 0x0, @local, @mcast2, {[@fragment={0x3a}], @time_exceed={0x3, 0x0, 0x0, 0x8, '\x00', {0x0, 0x6, "aabc2b", 0x2, 0x84, 0x1, @local, @private2}}}}}}, 0x6e)

1m34.699474216s ago: executing program 9 (id=1395):
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000900000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0600000004000000ff0100005c00000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000170000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000feffffff000000000000000000"], 0x48)

1m34.374427709s ago: executing program 9 (id=1397):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b000000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

1m34.024711051s ago: executing program 9 (id=1399):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5e8, &(0x7f0000001200)="$eJzs3c9vFdUeAPDv3P6gpbzXQl7ee7iQJsZAorS0gCHGBWwNafBH3Lix0oJIgYbWaNGEkuDGxLgxxsSVC/G/UCJbVrpy4caVISFqWJp4zdzOlP6Y2x+X207T+XySS2fOmeGc4fLtOXPuOXMDqKzB9I9axMGImE4i+pP5xbzOyDIHF4579OdH59NXEvX6a78nkWRp+fFJ9rMvO7knIn78IYkDHavLnZm7cXl8amryerY/PHtlenhm7sbRS1fGL05enLw6+sLoqZMnTp4aOdbSdd0sSDt7+933+z8Ze/Obr/5KRr79ZSyJ0/FyduDS62iXwRhs/Jskq7P6TrW7sJJ0ZP9Plr7FSWeJFWJT8vevKyL+F/3REY/fvP74+JVSKwdsqXoSUQcqKhH/UFF5PyC/t195H1wrpVcCbIeHZxYGAFbHf+fC2GD0NMYG9j5KYumwThIRrY3MLbcvIu7fG7t94d7Y7diicTig2PytiPh/UfwnjfgfiJ4YaMR/bVn8p/2Cc9nPNP3VFstfOVQs/mH7LMR/z5rxH03i/60l8f92i+UPPt58p3dZ/Pe2ekkAAAAAAABQWXfPRMTzRZ//1xbn/0TB/J++iDjdhvIHV+yv/vy/9qANxQAFHp6JeKlw/m8tn/070JFt/asxH6AruXBpavJYRPw7Io5E1550f2SNMo5+euDLZnmD2fy//JWWfz+bC5jV40HnnuXnTIzPjj/pdQMRD29FPFU4/zdZbP+TgvY//X0wvcEyDjx751yzvPXjH9gq9a8jDhe2/4+fWpGs/XyO4UZ/YDjvFaz29Ieffdes/Fbj3yMm4Mml7f/eteN/IFn6vJ6ZzZdxfK6z3iyv1f5/d/J645Ez3VnaB+Ozs9dHIrqTsx1p6rL00c3XGXajPB7yeEnj/8gza4//FfX/eyNifsXfnfyxfE1x7r9/9/3arD76/1CeNP4nNtX+b35j9M7A983K31j7f6LR1h/JUoz/wYIv8jDtXp5eEI6dRVnbXV8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2A1qEbEvktrQ4natNjQU0RcR/4m9talrM7PPXbj23tWJNK/x/f+1/Jt++xf2k/z7/weW7I+u2D8eEfsj4vOO3sb+0PlrUxNlXzwAAAAAAAAAAAAAAAAAAADsEH1N1v+nfusou3bAlussuwJAaQri/6cy6gFsP+0/VJf4h+oS/1Bd4h+qq8X472p3PYDtp/2H6hL/UF3iHwAAAAAAdpX9h+7+nETE/Iu9jVeqO8szvwd2t1rZFQBK4xE/UF2m/kB1uccHknXye5qetN6Za5k+/wQnAwAAAAAAAAAAAEDlHD5o/T9UlfX/UF3W/0N15ev/D5VcD2D7uccHYp2V/IXr/9c9CwAAAAAAAAAAAABop5m5G5fHp6Ymr9t4Y2dUox0b6Tu7kYPr9frNxrEtlbVnB1zpjtrIp8LvlPqs2MjX+m3srNJ+JQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACv8EwAA//8IGSKz")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3, 0x0, 0x400007}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
process_mrelease(0xffffffffffffffff, 0x700000000000000)

1m21.147875987s ago: executing program 40 (id=1390):
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x3e)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)

1m18.707525135s ago: executing program 41 (id=1399):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5e8, &(0x7f0000001200)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3, 0x0, 0x400007}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
process_mrelease(0xffffffffffffffff, 0x700000000000000)

5.733258977s ago: executing program 7 (id=1787):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000020303000000000000000000000100000800010001"], 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2000000003030101000000000000f7ca00000000"], 0x20}, 0x1, 0x0, 0x0, 0x94f7cfd7d57de2ec}, 0x0)

5.617263189s ago: executing program 7 (id=1788):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000001000080000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0)

2.823416689s ago: executing program 7 (id=1792):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x8, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x4c}, 0x94)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, 0x0, 0x0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
write$binfmt_aout(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="03010000b5"], 0xc8)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000002680)="1e", 0xfdef}], 0x1)

2.6884777s ago: executing program 0 (id=1793):
prctl$PR_SET_NAME(0xf, &(0x7f0000000700)=',&#^%\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000e40)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
getxattr(0x0, 0x0, 0x0, 0x0)

2.67410343s ago: executing program 7 (id=1794):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
get_robust_list(0x0, &(0x7f00000002c0)=&(0x7f0000000280), 0x0)

2.380432812s ago: executing program 0 (id=1796):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000020303000000000000000000000100000800010001"], 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2000000003030101000000000000f7ca00000000"], 0x20}, 0x1, 0x0, 0x0, 0x94f7cfd7d57de2ec}, 0x0)

2.020831616s ago: executing program 0 (id=1800):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_usbip_server_init(0x1)
syz_usbip_server_init(0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd2d, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x0, 0x300}, 0x93}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x0, 0x3000000, 0x40000000}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8000, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x800000, 0x0, 0xd2c}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10, 0x4}, {0x0, 0x470a, 0x0, 0x8000000, 0x0, 0xffffffff}, {}, {0x2, 0x0, 0x0, 0x0, 0x3, 0x6}, {}, {}, {0x0, 0x2, 0x2, 0x1, 0x0, 0xfff}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x8, 0x0, 0x0, 0x20}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x20000}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0x5}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x60569add}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff, 0x9}, {0x0, 0x0, 0x0, 0x0, 0xfffff800}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0xfffffffd}, {}, {0x0, 0x9, 0x0, 0xffffffff, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x101}, {0x80}, {0x80}, {0x0, 0x0, 0x0, 0x5, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x2, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x8, 0x0, 0x3, 0x3}, {}, {0x0, 0xffffffff}, {0x4, 0x0, 0x0, 0x8510}, {0xffff, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x5}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5, 0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x9}, {0xfffffffd, 0xfffffffc, 0x4}, {0x0, 0x0, 0x0, 0x200}, {}, {0x4}, {0x0, 0x0, 0x5}, {0x0, 0x0, 0x800}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x3, 0xfffffffe}, {0x0, 0x0, 0x0, 0x4, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x1, 0x7}, {0x0, 0xb}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x56}, {0x0, 0x0, 0x0, 0xec33, 0x0, 0x4}, {}, {0xd, 0x0, 0x1000, 0x0, 0x0, 0xfe1}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f, 0x0, 0x0, 0x8000000, 0x4}, {}, {0x0, 0x8, 0x0, 0xfffffffc, 0xfffffffe}, {0x4, 0x2, 0x2000000, 0x2, 0x0, 0xfffffffe}, {0x0, 0xffffffff, 0x0, 0x0, 0xe9d, 0x58a}, {0x2}, {0x2, 0x9, 0x20000000, 0x0, 0x2}, {0xfffffffc, 0x0, 0x0, 0x0, 0x1000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0xe600, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x7, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x8, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8, 0x4}, {0x0, 0x0, 0x0, 0x3}, {0x800}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0xfffffffb, 0x0, 0x0, 0x0, 0x8000}, {0x6, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x2d, 0x0, 0x10000}, {0x0, 0x0, 0x8000, 0x0, 0x40000}, {0x0, 0x8000}, {0x0, 0x0, 0x10000}, {0x0, 0x80000000, 0x0, 0x7fff800, 0x4}, {0x0, 0x3}, {0xffffffff, 0x0, 0x0, 0x0, 0xd}], [{}, {}, {0x0, 0x1}, {0x1}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x5, 0x1}, {}, {0x4}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {0x4}, {}, {}, {0x3}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x4}, {}, {0x1, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x3}, {0x5}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2, 0x1}, {}, {}, {}, {}, {0x5, 0x1}, {}, {}, {}, {0x2}, {}, {0x2}, {0x4}, {0x3}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000f80)={'filter\x00', 0x7, 0x4, 0x3e8, 0x1f0, 0x3e8, 0x300, 0x300, 0x1f0, 0x300, 0x4, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x1000, 0xc0, 0x3}}}, {{@uncond, 0xc0, 0x108}, @unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x7, 'syz0\x00', {0x10000}}}}, {{@arp={@broadcast, @rand_addr=0x64010100, 0x0, 0x0, 0x5, 0xd, {@empty, {[0xff, 0x0, 0xff, 0xff, 0x0, 0xff]}}, {}, 0xfffa, 0x6, 0x7, 0x0, 0xb2, 0x6, 'veth1_to_bond\x00', 'wg0\x00', {}, {0xff}, 0x0, 0x210}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @multicast1, @remote, 0xd, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

1.496206639s ago: executing program 4 (id=1803):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x8, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x4c}, 0x94)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, 0x0, 0x0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
write$binfmt_aout(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="03010000b5"], 0xc8)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000002680)="1e", 0xfdef}], 0x1)

1.36724519s ago: executing program 4 (id=1804):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
sendmsg$rds(r0, &(0x7f0000000140)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

1.119369992s ago: executing program 4 (id=1806):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_proto_private(r2, 0x891f, &(0x7f00000014c0)="94b58e89013a")
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x1}, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x7, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10}, 0x94)
sendmsg$nl_generic(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYRES64=r3], 0x14}}, 0x4000000)
r5 = socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_ethernet(0xfdef, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6002000800fe2c00fe8000000000000000000000000000bbff020000000000000000000000000001"], 0x0)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x2000}, 0x4)

1.111030482s ago: executing program 2 (id=1807):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r0)
ioctl$TUNGETVNETLE(r0, 0x4010744d, &(0x7f0000000180))

978.926293ms ago: executing program 0 (id=1808):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
unshare(0x2c020400)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x110}}, 0x0)

875.488174ms ago: executing program 4 (id=1809):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20702, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000780)={'pim6reg0\x00', 0x400})
write$cgroup_int(r2, &(0x7f0000000240)=0x2, 0x12)

811.434344ms ago: executing program 2 (id=1810):
set_mempolicy(0x8006, 0x0, 0x5)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='sys_enter\x00', r1, 0x0, 0x7}, 0x18)
socket$inet_udp(0x2, 0x2, 0x0)
semop(0x0, &(0x7f0000000200)=[{0x0, 0x0, 0x1000}], 0x2)
semop(0x0, &(0x7f0000000000), 0x0)

705.160515ms ago: executing program 0 (id=1811):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x6, &(0x7f0000000040)=0x9, 0x8, 0x0)
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x48, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

670.095085ms ago: executing program 2 (id=1812):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x8, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x4c}, 0x94)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f00000002c0)={0x2a, 0x0, 0x3fff}, 0xc)
r1 = openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x2)
write$binfmt_aout(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="03010000b5"], 0xc8)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000002680)="1e", 0xfdef}], 0x1)

505.369897ms ago: executing program 4 (id=1813):
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b0000000000020000000000", @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYBLOB='\x00'/27], 0x50)
open(&(0x7f0000000740)='./bus\x00', 0x163361, 0x501c998c4dfcafcd)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x2}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x8050)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0xd, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008", @ANYRES32, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0x1f5}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000300))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)={0x5c, 0x9, 0x6, 0x801, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0xe1f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x88}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)

455.464327ms ago: executing program 2 (id=1814):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r0}, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r1)

455.064307ms ago: executing program 7 (id=1815):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4044894}, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000001f80)=""/4092, 0x100)

268.539898ms ago: executing program 7 (id=1816):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x569, &(0x7f00000002c0)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f0000000940)=ANY=[], 0x361, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f00000013c0)=ANY=[], 0x700, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)=ANY=[], 0xfe37, 0x0)

243.473598ms ago: executing program 2 (id=1817):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_proto_private(r2, 0x891f, &(0x7f00000014c0)="94b58e89013a")
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x1}, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x7, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10}, 0x94)
sendmsg$nl_generic(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYRES64=r3], 0x14}}, 0x4000000)
r5 = socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_ethernet(0xfdef, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6002000800fe2c00fe8000000000000000000000000000bbff020000000000000000000000000001"], 0x0)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x2000}, 0x4)

72.591379ms ago: executing program 0 (id=1818):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r0)
ioctl$TUNGETVNETLE(r0, 0x4010744d, &(0x7f0000000180))

71.62443ms ago: executing program 4 (id=1819):
r0 = creat(&(0x7f0000000200)='./file0\x00', 0x100)
close(r0)
socket$can_raw(0x1d, 0x3, 0x1)
r1 = socket(0x40000000015, 0x5, 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x200400, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

0s ago: executing program 2 (id=1820):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x6000, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0xa2)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000200)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@newqdisc={0x468, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0x3}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x43c, 0x2, [@TCA_TBF_RATE64={0xc, 0x4, 0x5ec888eb7598db49}, @TCA_TBF_PARMS={0x28, 0x1, {{0x3, 0x1, 0x8, 0x1, 0xff, 0x7}, {0x4, 0x0, 0x3, 0xa159, 0x1000, 0x7}, 0x3, 0x8, 0x41e}}, @TCA_TBF_PTAB={0x404, 0x3, [0x104, 0x2, 0xc, 0xfff, 0x0, 0x8ba, 0xa1, 0x4d91, 0x7fffffff, 0x63c4, 0x0, 0x7ffd, 0x400, 0x255, 0x6, 0xc, 0xd81, 0x3, 0xa, 0xa, 0x7, 0x6, 0xc, 0x9, 0xfffffffd, 0x5, 0xb96, 0x7, 0x0, 0xffffffff, 0x200, 0x3, 0x2e, 0x7c, 0xfffffffc, 0x5, 0x1, 0x2, 0x8, 0x6, 0x1, 0xd, 0x80, 0x400, 0x80, 0x90000000, 0x3800000, 0x0, 0xfffff30b, 0x0, 0xf5, 0x81, 0xfffffffa, 0x80, 0x101, 0x3f, 0xfffffbff, 0x36a5, 0x4, 0x6, 0x200, 0x1ba, 0x9, 0xab, 0x6, 0xfffffff7, 0x6, 0x0, 0x3, 0x1, 0x963, 0x1ff, 0x2, 0xfffffffd, 0x6, 0x5, 0x0, 0x3, 0x0, 0xb09, 0x3ff, 0x7, 0x8000, 0x4, 0x8, 0x1000, 0x101, 0x5, 0x1, 0x6, 0x9, 0x3, 0x1, 0x7, 0x10008e, 0x80000005, 0xfffff76b, 0x0, 0x4, 0x4275c4e9, 0x8, 0x5, 0x800, 0x4, 0x955, 0x5, 0x6cdf139e, 0x9, 0x3, 0x2, 0x10001, 0xff, 0x80000001, 0xed2, 0x5, 0xfffffffa, 0x10002, 0x18d0, 0x0, 0x3, 0x9486, 0x80, 0x5, 0x80000000, 0xdb, 0x3, 0x80, 0xffff7ffc, 0x5, 0x8, 0x7, 0x1, 0x2, 0x8008, 0x2, 0x8, 0x2, 0x81, 0x3, 0x1, 0x6bf, 0x7, 0xea, 0x4, 0xc1, 0x2, 0x40, 0x5, 0x27f, 0x200, 0x7, 0x40, 0x7, 0x4, 0x7, 0xff, 0x400, 0x8, 0x7fffffff, 0xfffffff8, 0x8, 0xfffffff4, 0x8, 0xc, 0x96, 0x6, 0x104, 0x62cc, 0x2, 0x7, 0x2eb7, 0x10001, 0xcbf, 0x10000, 0x101, 0x9, 0xfffffffa, 0x1, 0x8, 0x7, 0x8001, 0xf, 0x5, 0x8, 0x8d, 0xffffffff, 0x2, 0x7, 0x1, 0x61, 0xffffffff, 0x494, 0xb, 0x1, 0x1, 0xd1, 0xd, 0x9, 0x1002, 0xffffffff, 0x6, 0x3, 0xfffffffb, 0xffff, 0xff, 0x5, 0xe, 0x401, 0x2, 0x8cc5, 0x8, 0x159, 0xfffffff7, 0x81, 0x382ae49d, 0x9, 0xffffffff, 0xffff, 0xdf3b, 0x8d, 0x6, 0xfffffef7, 0x89c3, 0x6319da67, 0x5, 0x9, 0x2, 0xfffff801, 0x0, 0x5, 0x5, 0x7, 0x7, 0x7f, 0x7, 0x1, 0x0, 0xffffffff, 0xdfed, 0xb, 0x77, 0x7, 0xff, 0xb331, 0x9, 0x6, 0x9, 0x7, 0x5, 0x400, 0x10001, 0x1, 0x800, 0x6000, 0xfe000000, 0xfffffffd]}]}}]}, 0x468}}, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r4}, 0x9)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net\x00')
fchdir(r5)
exit(0xffff)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)

kernel console output (not intermixed with test programs):

netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  436.672871][T11021] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  436.681648][T11021] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  436.691422][T11021] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  436.978293][T11040] veth0_vlan: entered promiscuous mode
[  436.999878][T11043] veth0_vlan: entered promiscuous mode
[  437.136531][T11040] veth1_vlan: entered promiscuous mode
[  437.190666][T11043] veth1_vlan: entered promiscuous mode
[  437.252913][ T9098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  437.260819][ T9098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  437.430523][ T9098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  437.468278][T11040] veth0_macvtap: entered promiscuous mode
[  437.468366][ T9098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  437.557189][T11040] veth1_macvtap: entered promiscuous mode
[  437.562542][T11239] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1209'.
[  437.658244][T11043] veth0_macvtap: entered promiscuous mode
[  437.688060][T11043] veth1_macvtap: entered promiscuous mode
[  437.761629][T11040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  437.775630][T11040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.786094][T11040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  437.797031][T11040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.817257][T11040] batman_adv: batadv0: Interface activated: batadv_slave_0
[  437.858269][T11043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  437.905227][ T9080] IPVS: stop unused estimator thread 0...
[  437.907765][T11043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.957267][T11043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  437.972405][T11043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.983573][T11043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  437.994291][T11043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  438.016835][T11043] batman_adv: batadv0: Interface activated: batadv_slave_0
[  438.039913][T11242] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1210'.
[  438.368305][T11040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  438.379185][T11040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  438.391307][T11040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  438.402378][T11040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  438.414859][T11040] batman_adv: batadv0: Interface activated: batadv_slave_1
[  438.428125][T11040] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  438.443938][T11040] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  438.456576][T11040] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  438.466611][T11040] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  438.488732][T11043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  438.500735][T11043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  438.510664][T11043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  438.523022][T11043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  438.539821][T11043] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  438.551251][T11043] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  438.566366][T11043] batman_adv: batadv0: Interface activated: batadv_slave_1
[  438.592306][T11043] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  438.623827][T11043] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  438.650988][T11043] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  438.660080][T11043] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  438.903215][T11256] loop5: detected capacity change from 0 to 512
[  438.927670][T11256] EXT4-fs: Ignoring removed nobh option
[  439.005037][ T9123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  439.021825][ T9123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  439.100965][ T9108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  439.114445][T11256] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #3: comm syz.5.1213: corrupted inode contents
[  439.121729][ T9108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  439.166422][T11256] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #3: comm syz.5.1213: mark_inode_dirty error
[  439.236140][T11256] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #3: comm syz.5.1213: corrupted inode contents
[  439.272885][ T9108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  439.291007][T11256] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #3: comm syz.5.1213: mark_inode_dirty error
[  439.306834][ T9108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  439.330141][T11256] Quota error (device loop5): write_blk: dquota write failed
[  439.354634][T11256] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  439.376526][T11256] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1213: Failed to acquire dquot type 0
[  439.410049][ T9080] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  439.430496][ T9080] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  439.431689][T11256] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #16: comm syz.5.1213: corrupted inode contents
[  439.467905][T11256] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #16: comm syz.5.1213: mark_inode_dirty error
[  439.517321][T11256] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #16: comm syz.5.1213: corrupted inode contents
[  439.554781][T11256] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #16: comm syz.5.1213: mark_inode_dirty error
[  439.594022][T11256] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #16: comm syz.5.1213: corrupted inode contents
[  439.633388][T11256] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem
[  439.651871][T11256] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #16: comm syz.5.1213: corrupted inode contents
[  439.707805][T11256] EXT4-fs error (device loop5): ext4_truncate:4294: inode #16: comm syz.5.1213: mark_inode_dirty error
[  439.754354][T11256] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem
[  439.806641][T11256] EXT4-fs (loop5): 1 truncate cleaned up
[  439.848801][T11256] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  439.963094][T11256] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  440.718410][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  441.113880][T10998] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.490642][T11298] loop8: detected capacity change from 0 to 512
[  441.538262][T11298] EXT4-fs: Ignoring removed nobh option
[  441.663497][T11298] EXT4-fs error (device loop8): ext4_do_update_inode:5244: inode #3: comm syz.8.1218: corrupted inode contents
[  441.763240][T11298] EXT4-fs error (device loop8): ext4_dirty_inode:6120: inode #3: comm syz.8.1218: mark_inode_dirty error
[  441.897580][T11298] EXT4-fs error (device loop8): ext4_do_update_inode:5244: inode #3: comm syz.8.1218: corrupted inode contents
[  441.994672][T11298] EXT4-fs error (device loop8): __ext4_ext_dirty:202: inode #3: comm syz.8.1218: mark_inode_dirty error
[  442.026548][T11298] Quota error (device loop8): write_blk: dquota write failed
[  442.039830][T11298] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  442.050020][T11298] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.1218: Failed to acquire dquot type 0
[  442.078650][T11298] EXT4-fs error (device loop8): ext4_do_update_inode:5244: inode #16: comm syz.8.1218: corrupted inode contents
[  442.101474][T11298] EXT4-fs error (device loop8): ext4_dirty_inode:6120: inode #16: comm syz.8.1218: mark_inode_dirty error
[  442.152899][T11298] EXT4-fs error (device loop8): ext4_do_update_inode:5244: inode #16: comm syz.8.1218: corrupted inode contents
[  442.187718][T11298] EXT4-fs error (device loop8): __ext4_ext_dirty:202: inode #16: comm syz.8.1218: mark_inode_dirty error
[  442.243562][T11298] EXT4-fs error (device loop8): ext4_do_update_inode:5244: inode #16: comm syz.8.1218: corrupted inode contents
[  442.310150][T11298] EXT4-fs error (device loop8) in ext4_orphan_del:301: Corrupt filesystem
[  442.355966][T11298] EXT4-fs error (device loop8): ext4_do_update_inode:5244: inode #16: comm syz.8.1218: corrupted inode contents
[  442.384544][T11298] EXT4-fs error (device loop8): ext4_truncate:4294: inode #16: comm syz.8.1218: mark_inode_dirty error
[  442.415297][T11298] EXT4-fs error (device loop8) in ext4_process_orphan:343: Corrupt filesystem
[  442.435051][T11298] EXT4-fs (loop8): 1 truncate cleaned up
[  442.459082][   T28] audit: type=1326 audit(1762398292.705:1445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11315 comm="syz.5.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  442.504000][T11298] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.532914][T11298] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  442.543672][   T28] audit: type=1326 audit(1762398292.705:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11315 comm="syz.5.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  442.623139][   T28] audit: type=1326 audit(1762398292.705:1447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11315 comm="syz.5.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  442.702720][   T28] audit: type=1326 audit(1762398292.715:1448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11315 comm="syz.5.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  442.714994][T11323] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1224'.
[  442.746659][   T28] audit: type=1326 audit(1762398292.715:1449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11315 comm="syz.5.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  442.790321][T11043] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.831481][   T28] audit: type=1326 audit(1762398292.715:1450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11315 comm="syz.5.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  443.476396][T11347] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1233'.
[  443.698758][T11355] loop5: detected capacity change from 0 to 512
[  443.729070][T11355] EXT4-fs: Ignoring removed nobh option
[  443.860198][T11355] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #3: comm syz.5.1236: corrupted inode contents
[  443.913141][T11355] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #3: comm syz.5.1236: mark_inode_dirty error
[  443.962957][T11355] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #3: comm syz.5.1236: corrupted inode contents
[  444.005857][T11355] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #3: comm syz.5.1236: mark_inode_dirty error
[  444.044781][T11355] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1236: Failed to acquire dquot type 0
[  444.088005][T11355] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #16: comm syz.5.1236: corrupted inode contents
[  444.113752][T11355] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #16: comm syz.5.1236: mark_inode_dirty error
[  444.146995][T11355] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #16: comm syz.5.1236: corrupted inode contents
[  444.175995][T11355] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #16: comm syz.5.1236: mark_inode_dirty error
[  444.244000][T11355] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #16: comm syz.5.1236: corrupted inode contents
[  444.280545][T11355] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem
[  444.319833][T11355] EXT4-fs error (device loop5): ext4_do_update_inode:5244: inode #16: comm syz.5.1236: corrupted inode contents
[  444.367926][T11355] EXT4-fs error (device loop5): ext4_truncate:4294: inode #16: comm syz.5.1236: mark_inode_dirty error
[  444.417704][T11355] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem
[  444.429420][T11355] EXT4-fs (loop5): 1 truncate cleaned up
[  444.448323][T11355] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  444.471827][T11355] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  444.628087][T10998] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  444.640883][   T28] kauditd_printk_skb: 14 callbacks suppressed
[  444.640899][   T28] audit: type=1326 audit(1762398294.875:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  444.832302][   T28] audit: type=1326 audit(1762398294.895:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  444.893259][   T28] audit: type=1326 audit(1762398294.895:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  444.928309][   T28] audit: type=1326 audit(1762398294.895:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  445.637933][   T28] audit: type=1326 audit(1762398294.895:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  445.794725][   T28] audit: type=1326 audit(1762398294.895:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  445.819019][   T28] audit: type=1326 audit(1762398294.895:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  445.853760][   T28] audit: type=1326 audit(1762398294.895:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  445.955828][   T28] audit: type=1326 audit(1762398294.895:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  446.051838][   T28] audit: type=1326 audit(1762398294.895:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.7.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  446.686497][T11424] loop6: detected capacity change from 0 to 512
[  446.705966][T11424] EXT4-fs: Ignoring removed nobh option
[  446.867339][T11424] EXT4-fs error (device loop6): ext4_do_update_inode:5244: inode #3: comm syz.6.1255: corrupted inode contents
[  446.932747][T11424] EXT4-fs error (device loop6): ext4_dirty_inode:6120: inode #3: comm syz.6.1255: mark_inode_dirty error
[  446.975585][T11424] EXT4-fs error (device loop6): ext4_do_update_inode:5244: inode #3: comm syz.6.1255: corrupted inode contents
[  447.049570][T11424] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #3: comm syz.6.1255: mark_inode_dirty error
[  447.085942][T11424] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.1255: Failed to acquire dquot type 0
[  447.116151][T11424] EXT4-fs error (device loop6): ext4_do_update_inode:5244: inode #16: comm syz.6.1255: corrupted inode contents
[  447.173344][T11424] EXT4-fs error (device loop6): ext4_dirty_inode:6120: inode #16: comm syz.6.1255: mark_inode_dirty error
[  447.222812][T11424] EXT4-fs error (device loop6): ext4_do_update_inode:5244: inode #16: comm syz.6.1255: corrupted inode contents
[  447.253205][T11424] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #16: comm syz.6.1255: mark_inode_dirty error
[  447.281523][T11424] EXT4-fs error (device loop6): ext4_do_update_inode:5244: inode #16: comm syz.6.1255: corrupted inode contents
[  447.333137][T11424] EXT4-fs error (device loop6) in ext4_orphan_del:301: Corrupt filesystem
[  447.385509][T11424] EXT4-fs error (device loop6): ext4_do_update_inode:5244: inode #16: comm syz.6.1255: corrupted inode contents
[  447.438540][T11424] EXT4-fs error (device loop6): ext4_truncate:4294: inode #16: comm syz.6.1255: mark_inode_dirty error
[  447.474701][T11424] EXT4-fs error (device loop6) in ext4_process_orphan:343: Corrupt filesystem
[  447.513840][T11424] EXT4-fs (loop6): 1 truncate cleaned up
[  447.520788][T11445] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  447.521052][T11424] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  447.554301][T11424] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  447.779405][T11021] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.804615][T11451] xt_CT: You must specify a L4 protocol and not use inversions on it
[  448.081591][T11456] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1263'.
[  448.309161][T11463] netlink: 'syz.6.1265': attribute type 3 has an invalid length.
[  448.923378][T11480] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  448.956103][T11480] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  448.982832][T11480] netdevsim netdevsim5: Falling back to sysfs fallback for: .
[  449.306850][T11488] netlink: 60 bytes leftover after parsing attributes in process `syz.8.1268'.
[  449.480502][T11488] netlink: 60 bytes leftover after parsing attributes in process `syz.8.1268'.
[  449.825628][T11488] netlink: 60 bytes leftover after parsing attributes in process `syz.8.1268'.
[  450.464037][T11510] loop5: detected capacity change from 0 to 2048
[  450.544186][T11510] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  450.559432][T11518] loop8: detected capacity change from 0 to 512
[  450.728656][T11518] EXT4-fs error (device loop8): ext4_orphan_get:1425: comm syz.8.1275: bad orphan inode 11862016
[  450.746574][T10998] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.824721][T11518] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  450.938027][T11518] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  451.340509][T11043] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  451.529386][   T28] kauditd_printk_skb: 29 callbacks suppressed
[  451.529402][   T28] audit: type=1326 audit(1762398301.775:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  451.631780][   T28] audit: type=1326 audit(1762398301.815:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  451.703885][   T28] audit: type=1326 audit(1762398301.825:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  451.793370][   T28] audit: type=1326 audit(1762398301.825:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  451.911564][T11540] loop6: detected capacity change from 0 to 8192
[  451.918255][   T28] audit: type=1326 audit(1762398301.825:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  452.034104][   T28] audit: type=1326 audit(1762398301.825:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  452.138185][   T28] audit: type=1326 audit(1762398301.825:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  452.184235][T11549] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1279'.
[  452.253666][   T28] audit: type=1326 audit(1762398301.835:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  452.322288][   T28] audit: type=1326 audit(1762398301.835:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  452.378820][   T28] audit: type=1326 audit(1762398301.835:1509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11536 comm="syz.8.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  452.672862][T11554] tipc: Started in network mode
[  452.677841][T11554] tipc: Node identity 1aeea222cd5c, cluster identity 4711
[  452.738241][T11554] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  452.780326][T11551] tipc: Resetting bearer <eth:syzkaller0>
[  453.800495][  T788] tipc: Node number set to 3618808354
[  457.345716][T11551] tipc: Disabling bearer <eth:syzkaller0>
[  457.394455][T11584] veth0: entered promiscuous mode
[  457.409322][T11586] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1291'.
[  457.936343][T11599] loop5: detected capacity change from 0 to 764
[  457.952840][T11226] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  457.999396][T11599] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  458.123760][T11226] usb 9-1: device descriptor read/64, error -71
[  458.445508][T11226] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  458.507080][T11617] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1301'.
[  458.622890][T11226] usb 9-1: device descriptor read/64, error -71
[  458.761523][T11226] usb usb9-port1: attempt power cycle
[  458.857786][T11623] tipc: Started in network mode
[  458.872872][T11623] tipc: Node identity 06f1a11a0e36, cluster identity 4711
[  458.894076][T11623] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  458.937367][T11619] tipc: Resetting bearer <eth:syzkaller0>
[  459.195482][T11226] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  459.242277][T11226] usb 9-1: device descriptor read/8, error -71
[  459.534415][T11226] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  459.586048][T11226] usb 9-1: device descriptor read/8, error -71
[  459.735106][T11226] usb usb9-port1: unable to enumerate USB device
[  459.930905][T11226] tipc: Node number set to 147300634
[  461.739981][   T28] kauditd_printk_skb: 4 callbacks suppressed
[  461.739996][   T28] audit: type=1326 audit(1762398311.985:1514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  461.769544][   T28] audit: type=1326 audit(1762398311.985:1515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  461.873913][   T28] audit: type=1326 audit(1762398312.025:1516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  461.932008][   T28] audit: type=1326 audit(1762398312.025:1517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  462.003001][   T28] audit: type=1326 audit(1762398312.025:1518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  462.070919][   T28] audit: type=1326 audit(1762398312.045:1519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  462.098537][   T28] audit: type=1326 audit(1762398312.045:1520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  462.479463][   T28] audit: type=1326 audit(1762398312.045:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  462.737731][   T28] audit: type=1326 audit(1762398312.045:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  462.761017][   T28] audit: type=1326 audit(1762398312.045:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11642 comm="syz.8.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9a198f6c9 code=0x7ffc0000
[  463.640130][T11619] tipc: Disabling bearer <eth:syzkaller0>
[  463.664999][T11629] netlink: 'syz.5.1304': attribute type 1 has an invalid length.
[  463.674187][T11632] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1304'.
[  463.685554][T11632] veth0_macvtap: left promiscuous mode
[  463.798945][T11647] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1310'.
[  463.809687][T11647] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1310'.
[  464.183796][T11653] lo speed is unknown, defaulting to 1000
[  464.189687][T11653] lo speed is unknown, defaulting to 1000
[  464.223399][T11653] lo speed is unknown, defaulting to 1000
[  464.272337][T11653] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  464.430560][T11653] lo speed is unknown, defaulting to 1000
[  464.494831][T11653] lo speed is unknown, defaulting to 1000
[  464.520050][T11653] lo speed is unknown, defaulting to 1000
[  464.554599][T11653] lo speed is unknown, defaulting to 1000
[  464.577909][T11653] lo speed is unknown, defaulting to 1000
[  465.007082][T11671] loop8: detected capacity change from 0 to 128
[  465.060789][T11671] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  465.075549][T11671] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  465.348388][T11671] block device autoloading is deprecated and will be removed.
[  465.426085][T11681] tipc: Started in network mode
[  465.431096][T11681] tipc: Node identity 8634fa8f6e16, cluster identity 4711
[  465.448506][T11681] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  465.538122][T11676] tipc: Resetting bearer <eth:syzkaller0>
[  465.600724][T11043] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  465.772117][T11658] syz.7.1314 (11658) used greatest stack depth: 17384 bytes left
[  466.573049][  T788] tipc: Node number set to 3894606479
[  470.050751][T11676] tipc: Disabling bearer <eth:syzkaller0>
[  470.114617][T11688] netem: change failed
[  470.732119][   T28] kauditd_printk_skb: 21 callbacks suppressed
[  470.732136][   T28] audit: type=1326 audit(1762398320.975:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11711 comm="syz.5.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  470.817294][   T28] audit: type=1326 audit(1762398321.015:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11711 comm="syz.5.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  470.861361][   T28] audit: type=1326 audit(1762398321.015:1547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11711 comm="syz.5.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  470.915288][   T28] audit: type=1326 audit(1762398321.015:1548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11711 comm="syz.5.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f127598f6c9 code=0x7ffc0000
[  471.340849][T11721] syzkaller0: entered promiscuous mode
[  471.422873][T11721] syzkaller0: entered allmulticast mode
[  478.192500][T11744] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1336'.
[  478.285106][T11747] loop7: detected capacity change from 0 to 2048
[  478.387850][T11747] Alternate GPT is invalid, using primary GPT.
[  478.407926][T11747]  loop7: p2 p3 p7
[  478.468546][T11747] syz.7.1337[11747] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  478.468704][T11747] syz.7.1337[11747] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  480.874298][T11782] lo speed is unknown, defaulting to 1000
[  482.817971][ T5799] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  482.830084][ T5799] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  482.839901][ T5799] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  482.853152][ T5799] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  482.864781][ T5799] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  482.875482][ T5799] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  482.965966][T11800] lo speed is unknown, defaulting to 1000
[  483.391673][T11808] loop7: detected capacity change from 0 to 512
[  483.403971][T11808] EXT4-fs: Ignoring removed oldalloc option
[  483.670195][T11808] EXT4-fs error (device loop7): ext4_xattr_inode_iget:440: comm syz.7.1347: Parent and EA inode have the same ino 15
[  484.240212][T11808] EXT4-fs error (device loop7): ext4_xattr_inode_iget:440: comm syz.7.1347: Parent and EA inode have the same ino 15
[  484.313568][T11808] EXT4-fs (loop7): 1 orphan inode deleted
[  484.333491][T11808] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  485.262773][ T5804] Bluetooth: hci2: command tx timeout
[  485.649717][T11040] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  485.679566][T11800] chnl_net:caif_netlink_parms(): no params data found
[  486.080976][ T9098] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  486.331297][ T9098] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  486.434928][T11800] bridge0: port 1(bridge_slave_0) entered blocking state
[  486.442181][T11800] bridge0: port 1(bridge_slave_0) entered disabled state
[  486.455034][T11800] bridge_slave_0: entered allmulticast mode
[  486.483629][T11800] bridge_slave_0: entered promiscuous mode
[  486.570306][ T9098] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  486.657630][T11800] bridge0: port 2(bridge_slave_1) entered blocking state
[  486.677760][T11800] bridge0: port 2(bridge_slave_1) entered disabled state
[  486.704110][T11800] bridge_slave_1: entered allmulticast mode
[  486.721932][T11800] bridge_slave_1: entered promiscuous mode
[  486.944961][ T9098] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  487.027079][T11800] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  487.115176][T11800] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  487.177531][   T28] audit: type=1326 audit(1762398337.425:1549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11826 comm="syz.7.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  487.265379][   T28] audit: type=1326 audit(1762398337.455:1550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11826 comm="syz.7.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  487.301391][T11800] team0: Port device team_slave_0 added
[  487.338253][ T5804] Bluetooth: hci2: command tx timeout
[  487.352674][   T28] audit: type=1326 audit(1762398337.455:1551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11826 comm="syz.7.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  487.385407][T11800] team0: Port device team_slave_1 added
[  487.403973][   T28] audit: type=1326 audit(1762398337.455:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11826 comm="syz.7.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  487.471744][T11800] batman_adv: batadv0: Adding interface: batadv_slave_0
[  487.481923][T11800] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  487.508967][T11800] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  487.573304][T11800] batman_adv: batadv0: Adding interface: batadv_slave_1
[  487.611240][T11800] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  487.757139][T11800] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  489.143974][ T5799] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  489.162872][ T5799] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  489.172072][ T5799] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  489.181002][ T5799] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  489.191231][ T5799] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  489.199020][ T5799] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  489.415264][T11832] kthread_run failed with err -4
[  489.423867][ T5799] Bluetooth: hci2: command tx timeout
[  490.110166][T11800] hsr_slave_0: entered promiscuous mode
[  490.142264][T11800] hsr_slave_1: entered promiscuous mode
[  490.192869][T11800] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  490.200502][T11800] Cannot create hsr debugfs directory
[  490.234342][T11834] lo speed is unknown, defaulting to 1000
[  490.390398][   T28] audit: type=1326 audit(1762398340.635:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11852 comm="syz.7.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  490.441586][T11853] $H�: renamed from bond0 (while UP)
[  490.461055][   T28] audit: type=1326 audit(1762398340.665:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11852 comm="syz.7.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  490.505457][T11853] $H�: entered promiscuous mode
[  490.513183][T11853] bond_slave_0: entered promiscuous mode
[  490.534475][   T28] audit: type=1326 audit(1762398340.665:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11852 comm="syz.7.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  490.539463][T11853] bond_slave_1: entered promiscuous mode
[  490.568287][   T28] audit: type=1326 audit(1762398340.665:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11852 comm="syz.7.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  490.642212][   T28] audit: type=1326 audit(1762398340.665:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11852 comm="syz.7.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  490.717047][   T28] audit: type=1326 audit(1762398340.875:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11852 comm="syz.7.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  491.277232][ T5799] Bluetooth: hci1: command tx timeout
[  491.495220][ T5799] Bluetooth: hci2: command tx timeout
[  491.827419][T11863] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  491.837706][T11863] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  491.847730][T11863] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  492.590135][T11800] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  492.612030][T11800] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  492.651035][T11834] chnl_net:caif_netlink_parms(): no params data found
[  492.782720][T11800] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  492.834413][T11800] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  493.172803][ T9098] hsr_slave_0: left promiscuous mode
[  493.185161][ T9098] hsr_slave_1: left promiscuous mode
[  493.209472][ T9098] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  493.221343][ T9098] batman_adv: batadv0: Removing interface: batadv_slave_0
[  493.260461][ T9098] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  493.269406][ T9098] batman_adv: batadv0: Removing interface: batadv_slave_1
[  493.299596][ T9098] bridge_slave_1: left allmulticast mode
[  493.317328][ T9098] bridge_slave_1: left promiscuous mode
[  493.332800][ T5799] Bluetooth: hci1: command tx timeout
[  493.347018][ T9098] bridge0: port 2(bridge_slave_1) entered disabled state
[  493.381681][ T9098] bridge_slave_0: left allmulticast mode
[  493.407652][ T9098] bridge_slave_0: left promiscuous mode
[  493.430495][ T9098] bridge0: port 1(bridge_slave_0) entered disabled state
[  493.553721][ T9098] veth1_macvtap: left promiscuous mode
[  493.559339][ T9098] veth0_macvtap: left promiscuous mode
[  493.573188][ T9098] veth1_vlan: left promiscuous mode
[  493.579644][ T9098] veth0_vlan: left promiscuous mode
[  493.853903][T11885] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(7)
[  493.861743][T11885] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  493.903636][T11885] vhci_hcd vhci_hcd.0: Device attached
[  493.944958][T11886] vhci_hcd: connection closed
[  493.951644][   T34] vhci_hcd: stop threads
[  493.975095][   T34] vhci_hcd: release socket
[  494.000155][   T34] vhci_hcd: disconnect device
[  494.591969][T11890] syz.7.1364[11890] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  494.592112][T11890] syz.7.1364[11890] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  494.908497][ T9098] team0 (unregistering): Port device team_slave_1 removed
[  495.044543][ T9098] team0 (unregistering): Port device team_slave_0 removed
[  495.136231][ T9098] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  495.264046][ T9098] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  495.434537][ T5799] Bluetooth: hci1: command tx timeout
[  496.555579][ T9098] bond0 (unregistering): Released all slaves
[  496.980579][ T5799] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  496.990758][T11834] bridge0: port 1(bridge_slave_0) entered blocking state
[  497.025396][ T5799] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  497.027464][T11834] bridge0: port 1(bridge_slave_0) entered disabled state
[  497.045004][ T5799] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  497.053952][T11834] bridge_slave_0: entered allmulticast mode
[  497.065334][ T5799] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  497.096488][ T5799] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  497.108838][ T5799] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  497.115316][T11834] bridge_slave_0: entered promiscuous mode
[  497.263739][T11834] bridge0: port 2(bridge_slave_1) entered blocking state
[  497.286478][T11834] bridge0: port 2(bridge_slave_1) entered disabled state
[  497.311484][T11834] bridge_slave_1: entered allmulticast mode
[  497.339531][T11834] bridge_slave_1: entered promiscuous mode
[  497.460409][T11897] lo speed is unknown, defaulting to 1000
[  497.470992][T11834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  497.492942][ T5804] Bluetooth: hci1: command tx timeout
[  497.494900][T11834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  497.650894][T11834] team0: Port device team_slave_0 added
[  497.664698][T11834] team0: Port device team_slave_1 added
[  497.749455][T11834] batman_adv: batadv0: Adding interface: batadv_slave_0
[  497.757188][T11834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  497.785203][T11834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  497.821912][T11834] batman_adv: batadv0: Adding interface: batadv_slave_1
[  497.849064][T11834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  497.897852][T11834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  498.149855][T11834] hsr_slave_0: entered promiscuous mode
[  498.169737][T11834] hsr_slave_1: entered promiscuous mode
[  498.177580][T11834] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  498.187562][T11834] Cannot create hsr debugfs directory
[  498.279815][ T9098] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  498.307869][T11800] 8021q: adding VLAN 0 to HW filter on device bond0
[  498.407684][ T9098] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  498.541404][T11800] 8021q: adding VLAN 0 to HW filter on device team0
[  498.579650][ T9098] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  498.594208][T11897] chnl_net:caif_netlink_parms(): no params data found
[  498.636122][ T9080] bridge0: port 1(bridge_slave_0) entered blocking state
[  498.643378][ T9080] bridge0: port 1(bridge_slave_0) entered forwarding state
[  498.683521][ T9098] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  498.764633][ T9080] bridge0: port 2(bridge_slave_1) entered blocking state
[  498.771863][ T9080] bridge0: port 2(bridge_slave_1) entered forwarding state
[  498.912522][T11897] bridge0: port 1(bridge_slave_0) entered blocking state
[  498.920591][T11897] bridge0: port 1(bridge_slave_0) entered disabled state
[  498.927926][T11897] bridge_slave_0: entered allmulticast mode
[  498.935950][T11897] bridge_slave_0: entered promiscuous mode
[  498.990455][T11897] bridge0: port 2(bridge_slave_1) entered blocking state
[  498.998198][T11897] bridge0: port 2(bridge_slave_1) entered disabled state
[  499.006022][T11897] bridge_slave_1: entered allmulticast mode
[  499.014908][T11897] bridge_slave_1: entered promiscuous mode
[  499.174386][ T5804] Bluetooth: hci4: command tx timeout
[  499.204012][T11897] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  499.223702][T11897] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  499.354068][T11897] team0: Port device team_slave_0 added
[  499.422819][ T9098] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.450862][T11897] team0: Port device team_slave_1 added
[  499.582196][ T9098] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.619746][T11897] batman_adv: batadv0: Adding interface: batadv_slave_0
[  499.635248][T11897] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  499.674802][T11897] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  499.688088][T11897] batman_adv: batadv0: Adding interface: batadv_slave_1
[  499.695696][T11897] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  499.722787][T11897] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  499.766587][ T9098] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.923162][ T9098] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.950128][T11897] hsr_slave_0: entered promiscuous mode
[  499.957294][T11897] hsr_slave_1: entered promiscuous mode
[  499.970848][T11897] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  499.980203][T11897] Cannot create hsr debugfs directory
[  500.079959][T11800] 8021q: adding VLAN 0 to HW filter on device batadv0
[  500.416731][ T9098] tipc: Left network mode
[  500.427567][ T9098] tipc: Left network mode
[  501.087744][T11800] veth0_vlan: entered promiscuous mode
[  501.253179][ T5804] Bluetooth: hci4: command tx timeout
[  501.554487][T11800] veth1_vlan: entered promiscuous mode
[  501.704803][T11800] veth0_macvtap: entered promiscuous mode
[  501.790294][T11800] veth1_macvtap: entered promiscuous mode
[  501.821677][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  501.842900][T11800] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  501.855129][T11800] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  501.867671][T11800] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  501.887510][T11800] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  501.901468][T11800] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  501.922496][T11800] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  501.944629][T11800] batman_adv: batadv0: Interface activated: batadv_slave_0
[  502.072357][T11800] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  502.107191][T11800] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  502.126165][T11800] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  502.142256][T11800] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  502.153076][T11800] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  502.164137][T11800] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  502.175719][T11800] batman_adv: batadv0: Interface activated: batadv_slave_1
[  502.350306][T11800] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  502.359231][T11800] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  502.374361][T11800] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  502.388109][T11800] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  503.099711][ T9080] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  503.101128][T11834] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  503.114882][ T9080] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  503.178645][T11834] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  503.281566][T11834] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  503.325605][T11834] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  503.334865][ T5804] Bluetooth: hci4: command tx timeout
[  503.476738][ T3482] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  503.488750][ T3482] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  503.650828][ T9098] hsr_slave_0: left promiscuous mode
[  503.661044][ T9098] hsr_slave_1: left promiscuous mode
[  503.669479][ T9098] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  503.678935][ T9098] batman_adv: batadv0: Removing interface: batadv_slave_0
[  503.687484][ T9098] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  503.699240][ T9098] batman_adv: batadv0: Removing interface: batadv_slave_1
[  503.707251][ T9098] bridge_slave_1: left allmulticast mode
[  503.713323][ T9098] bridge_slave_1: left promiscuous mode
[  503.719178][ T9098] bridge0: port 2(bridge_slave_1) entered disabled state
[  503.729709][ T9098] bridge_slave_0: left allmulticast mode
[  503.737802][ T9098] bridge_slave_0: left promiscuous mode
[  503.744728][ T9098] bridge0: port 1(bridge_slave_0) entered disabled state
[  503.758274][ T9098] hsr_slave_0: left promiscuous mode
[  503.766424][ T9098] hsr_slave_1: left promiscuous mode
[  503.772300][ T9098] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  503.779937][ T9098] batman_adv: batadv0: Removing interface: batadv_slave_0
[  503.789500][ T9098] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  503.797118][ T9098] batman_adv: batadv0: Removing interface: batadv_slave_1
[  503.805106][ T9098] bridge_slave_1: left allmulticast mode
[  503.810792][ T9098] bridge_slave_1: left promiscuous mode
[  503.816779][ T9098] bridge0: port 2(bridge_slave_1) entered disabled state
[  503.826608][ T9098] bridge_slave_0: left allmulticast mode
[  503.832284][ T9098] bridge_slave_0: left promiscuous mode
[  503.838386][ T9098] bridge0: port 1(bridge_slave_0) entered disabled state
[  503.886871][ T9098] veth1_macvtap: left promiscuous mode
[  503.896195][ T9098] veth1_macvtap: left promiscuous mode
[  503.901802][ T9098] veth0_macvtap: left promiscuous mode
[  503.909022][ T9098] veth1_vlan: left promiscuous mode
[  503.914512][ T9098] veth0_vlan: left promiscuous mode
[  504.586152][ T9098] team0 (unregistering): Port device team_slave_1 removed
[  504.651757][ T9098] team0 (unregistering): Port device team_slave_0 removed
[  504.717756][ T9098] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  504.782003][ T9098] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  505.416081][ T5804] Bluetooth: hci4: command tx timeout
[  505.552161][ T9098] bond0 (unregistering): Released all slaves
[  506.301839][ T9098] team0 (unregistering): Port device team_slave_1 removed
[  506.374368][ T9098] team0 (unregistering): Port device team_slave_0 removed
[  506.442204][ T9098] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  506.510165][ T9098] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  507.231231][ T9098] bond0 (unregistering): Released all slaves
[  507.391846][   T27] lo speed is unknown, defaulting to 1000
[  507.661757][T11834] 8021q: adding VLAN 0 to HW filter on device bond0
[  507.693246][T11834] 8021q: adding VLAN 0 to HW filter on device team0
[  507.813677][T11966] loop7: detected capacity change from 0 to 2048
[  507.926468][ T9080] bridge0: port 1(bridge_slave_0) entered blocking state
[  507.933745][ T9080] bridge0: port 1(bridge_slave_0) entered forwarding state
[  508.007467][T11966] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  508.051710][T11966] EXT4-fs error (device loop7): ext4_find_extent:936: inode #2: comm syz.7.1379: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  508.092453][T11966] EXT4-fs (loop7): Remounting filesystem read-only
[  508.824253][ T1300] bridge0: port 2(bridge_slave_1) entered blocking state
[  508.831432][ T1300] bridge0: port 2(bridge_slave_1) entered forwarding state
[  509.079638][T11897] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  509.105185][T11897] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  509.166466][T11897] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  509.184893][T11897] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  509.600640][T11897] 8021q: adding VLAN 0 to HW filter on device bond0
[  509.685213][T11897] 8021q: adding VLAN 0 to HW filter on device team0
[  509.718905][   T34] bridge0: port 1(bridge_slave_0) entered blocking state
[  509.726212][   T34] bridge0: port 1(bridge_slave_0) entered forwarding state
[  509.756889][T11994] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1384'.
[  509.839250][T11040] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  509.882497][T11994] team0: Port device team_slave_1 removed
[  509.972526][ T9098] bridge0: port 2(bridge_slave_1) entered blocking state
[  509.979803][ T9098] bridge0: port 2(bridge_slave_1) entered forwarding state
[  510.032176][T11834] 8021q: adding VLAN 0 to HW filter on device batadv0
[  510.109711][T11897] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  510.266480][T11834] veth0_vlan: entered promiscuous mode
[  510.316878][T11834] veth1_vlan: entered promiscuous mode
[  510.454504][T11834] veth0_macvtap: entered promiscuous mode
[  510.501647][T11834] veth1_macvtap: entered promiscuous mode
[  510.570460][T11834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  510.612407][T11834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  510.633125][T11834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  510.658468][T11834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  510.684439][T11834] batman_adv: batadv0: Interface activated: batadv_slave_0
[  510.728149][T11834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  510.746892][T11834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  510.772134][T11834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  510.794908][T11834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  510.819221][T11834] batman_adv: batadv0: Interface activated: batadv_slave_1
[  510.850013][T11834] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  510.869979][T11834] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  510.885786][T11834] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  510.895689][T11834] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  511.066232][T11897] 8021q: adding VLAN 0 to HW filter on device batadv0
[  511.151750][ T9102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  511.171365][ T9102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  511.262293][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4
[  511.299914][ T3482] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  511.303164][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2
[  511.327650][ T3482] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  511.343929][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.377021][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.394888][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.428845][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.466676][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.493767][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.545037][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.564336][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.592709][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.617567][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.646018][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.665512][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.708035][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.732832][  T968] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[  511.773612][  T968] hid-generic 0000:3000000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  512.130063][T12039] fido_id[12039]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  512.249367][T11897] veth0_vlan: entered promiscuous mode
[  512.279728][T12046] loop7: detected capacity change from 0 to 2048
[  512.325719][T12046]  loop7: p1 < > p3
[  512.351106][T12046] loop7: p3 size 134217728 extends beyond EOD, truncated
[  512.360165][T11897] veth1_vlan: entered promiscuous mode
[  512.582940][T11897] veth0_macvtap: entered promiscuous mode
[  512.635175][T11897] veth1_macvtap: entered promiscuous mode
[  512.794201][T11961] udevd[11961]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  512.806694][T11960] udevd[11960]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  512.934424][T11897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  512.973587][T11897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.012707][T11897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.042861][T11897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.072596][T11897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.095303][T11897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.125051][T11897] batman_adv: batadv0: Interface activated: batadv_slave_0
[  513.254625][T11897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.301220][T11897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.331796][T11897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.369023][T11897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.409675][T11897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.440885][T11897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.464003][T11897] batman_adv: batadv0: Interface activated: batadv_slave_1
[  513.500737][T11897] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  513.540374][T11897] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  513.566128][T11897] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  513.594434][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  513.636255][T11897] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  513.895397][ T9123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  513.917034][ T9123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  513.959440][ T9123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  513.978729][ T9123] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  514.172196][T12080] loop7: detected capacity change from 0 to 512
[  514.222319][T12080] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  514.267701][T12080] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  514.353224][T12080] EXT4-fs error (device loop7): ext4_orphan_get:1399: inode #15: comm syz.7.1400: inode has both inline data and extents flags
[  514.424645][T12080] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1400: couldn't read orphan inode 15 (err -117)
[  514.493352][T12080] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  514.732483][T11040] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.429959][T12098] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  515.722275][T12098] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  515.754676][T12107] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1405'.
[  515.914841][T12098] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.108447][T12098] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.417863][T12098] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  516.455846][T12098] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  516.513121][T12098] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  516.572180][T12098] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  516.639346][T12122] loop4: detected capacity change from 0 to 128
[  516.764860][T12122] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  516.824003][T12122] ext4 filesystem being mounted at /6/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  516.867353][T12128] loop7: detected capacity change from 0 to 136
[  517.067184][T11897] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  517.158402][T11040] rock: directory entry would overflow storage
[  517.171091][T11040] rock: sig=0x4f50, size=4, remaining=3
[  517.204346][T11040] iso9660: Corrupted directory entry in block 2 of inode 1472
[  517.221453][T11040] iso9660: Corrupted directory entry in block 2 of inode 1472
[  517.275896][T12135] loop4: detected capacity change from 0 to 764
[  517.327991][T12135] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  517.622855][T12141] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1412'.
[  517.945687][T12145] loop7: detected capacity change from 0 to 1024
[  518.031993][T12145] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  518.246937][T11040] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  518.823266][T12170] loop4: detected capacity change from 0 to 128
[  518.913588][T12170] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1420'.
[  519.256453][T12178] loop4: detected capacity change from 0 to 764
[  519.333428][T12178] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  519.887563][T12190] loop7: detected capacity change from 0 to 736
[  520.620637][T12201] loop4: detected capacity change from 0 to 128
[  520.751742][T12201] FAT-fs (loop4): Directory bread(block 414) failed
[  520.759038][T12201] FAT-fs (loop4): Directory bread(block 415) failed
[  520.766783][T12201] FAT-fs (loop4): Directory bread(block 416) failed
[  520.773777][T12201] FAT-fs (loop4): Directory bread(block 417) failed
[  520.780519][T12201] FAT-fs (loop4): Directory bread(block 418) failed
[  520.787313][T12201] FAT-fs (loop4): Directory bread(block 419) failed
[  520.794151][T12201] FAT-fs (loop4): Directory bread(block 420) failed
[  520.800934][T12201] FAT-fs (loop4): Directory bread(block 421) failed
[  521.328065][T12207] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1428'.
[  521.521303][T12207] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1428'.
[  521.755099][T12207] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1428'.
[  522.330111][T12230] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1432'.
[  522.346287][T12233] loop4: detected capacity change from 0 to 764
[  522.434532][T12233] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  525.591939][T12292] loop7: detected capacity change from 0 to 128
[  528.826729][T12347] loop7: detected capacity change from 0 to 128
[  528.953742][ T5799] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  528.967051][ T5799] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  528.979010][ T5799] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  529.006379][ T5799] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  529.030572][ T5799] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  529.069466][ T5799] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  529.497846][   T34] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.870989][   T34] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.148507][ T5799] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  530.149385][   T34] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.169758][ T5799] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  530.184068][ T5799] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  530.197921][ T5799] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  530.206122][ T5799] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  530.223223][ T5799] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  530.345436][   T34] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.414610][T12367] loop4: detected capacity change from 0 to 736
[  530.765375][T12372] loop4: detected capacity change from 0 to 764
[  530.775192][T12372] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  530.965826][T12350] chnl_net:caif_netlink_parms(): no params data found
[  531.062439][T12376] loop4: detected capacity change from 0 to 512
[  531.097431][T12376] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  531.163781][T12376] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  531.182858][ T5804] Bluetooth: hci1: command tx timeout
[  531.223703][T12376] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  531.249610][T12376] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  531.382988][T12376] serio: Serial port ptm0
[  531.524814][T11897] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.637122][T12350] bridge0: port 1(bridge_slave_0) entered blocking state
[  531.664358][T12350] bridge0: port 1(bridge_slave_0) entered disabled state
[  531.671726][T12350] bridge_slave_0: entered allmulticast mode
[  531.680054][T12350] bridge_slave_0: entered promiscuous mode
[  531.839097][T12350] bridge0: port 2(bridge_slave_1) entered blocking state
[  531.847097][T12350] bridge0: port 2(bridge_slave_1) entered disabled state
[  531.855648][T12350] bridge_slave_1: entered allmulticast mode
[  531.863457][T12350] bridge_slave_1: entered promiscuous mode
[  532.232513][T12350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  532.266333][T12350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  532.317811][ T5804] Bluetooth: hci2: command tx timeout
[  532.565910][T12350] team0: Port device team_slave_0 added
[  532.591267][T12350] team0: Port device team_slave_1 added
[  532.753625][T12362] chnl_net:caif_netlink_parms(): no params data found
[  532.796025][T12411] netlink: 'syz.4.1465': attribute type 12 has an invalid length.
[  532.902766][T12350] batman_adv: batadv0: Adding interface: batadv_slave_0
[  532.909790][T12350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  532.988966][T12350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  533.104863][T12350] batman_adv: batadv0: Adding interface: batadv_slave_1
[  533.111886][T12350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.139909][T12350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  533.255944][ T5804] Bluetooth: hci1: command tx timeout
[  533.519150][T12350] hsr_slave_0: entered promiscuous mode
[  533.535193][T12350] hsr_slave_1: entered promiscuous mode
[  533.585806][T12362] bridge0: port 1(bridge_slave_0) entered blocking state
[  533.602908][T12362] bridge0: port 1(bridge_slave_0) entered disabled state
[  533.610238][T12362] bridge_slave_0: entered allmulticast mode
[  533.634756][T12362] bridge_slave_0: entered promiscuous mode
[  533.718551][   T34] hsr_slave_0: left promiscuous mode
[  533.738275][   T34] hsr_slave_1: left promiscuous mode
[  533.755464][   T34] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  533.782922][   T34] batman_adv: batadv0: Removing interface: batadv_slave_0
[  533.799139][   T34] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  533.809704][   T34] batman_adv: batadv0: Removing interface: batadv_slave_1
[  533.828430][   T34] bridge_slave_1: left allmulticast mode
[  533.841276][   T34] bridge_slave_1: left promiscuous mode
[  533.853049][   T34] bridge0: port 2(bridge_slave_1) entered disabled state
[  533.877487][   T34] bridge_slave_0: left allmulticast mode
[  533.893587][   T34] bridge_slave_0: left promiscuous mode
[  533.903361][   T34] bridge0: port 1(bridge_slave_0) entered disabled state
[  534.009201][   T34] veth1_macvtap: left promiscuous mode
[  534.015433][   T34] veth0_macvtap: left promiscuous mode
[  534.024074][   T34] veth1_vlan: left promiscuous mode
[  534.029473][   T34] veth0_vlan: left promiscuous mode
[  534.378033][ T5804] Bluetooth: hci2: command tx timeout
[  535.133791][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  535.133806][   T28] audit: type=1326 audit(1762398385.365:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12442 comm="syz.7.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  535.189249][   T28] audit: type=1326 audit(1762398385.365:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12442 comm="syz.7.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  535.213418][   T28] audit: type=1326 audit(1762398385.385:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12442 comm="syz.7.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  535.272676][   T28] audit: type=1326 audit(1762398385.435:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12442 comm="syz.7.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  535.304187][   T28] audit: type=1326 audit(1762398385.435:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12442 comm="syz.7.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  535.340895][ T5804] Bluetooth: hci1: command tx timeout
[  535.639882][   T34] team0 (unregistering): Port device team_slave_1 removed
[  535.771182][   T34] team0 (unregistering): Port device team_slave_0 removed
[  535.887469][   T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  535.967229][   T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  536.458811][ T5804] Bluetooth: hci2: command tx timeout
[  536.832695][   T34] bond0 (unregistering): Released all slaves
[  536.949212][T12362] bridge0: port 2(bridge_slave_1) entered blocking state
[  536.959256][T12362] bridge0: port 2(bridge_slave_1) entered disabled state
[  536.975733][T12362] bridge_slave_1: entered allmulticast mode
[  536.989035][T12362] bridge_slave_1: entered promiscuous mode
[  537.052266][T12362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  537.175657][T12362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  537.295300][T12362] team0: Port device team_slave_0 added
[  537.346524][T12362] team0: Port device team_slave_1 added
[  537.358728][T12463] loop4: detected capacity change from 0 to 128
[  537.415818][ T5804] Bluetooth: hci1: command tx timeout
[  537.429485][T12463] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  537.453907][   T28] audit: type=1800 audit(1762398387.655:1565): pid=12463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1483" name="file2" dev="loop4" ino=1048785 res=0 errno=0
[  537.500636][T12463] FAT-fs (loop4): Filesystem has been set read-only
[  537.529436][T12362] batman_adv: batadv0: Adding interface: batadv_slave_0
[  537.543174][T12463] syz.4.1483: attempt to access beyond end of device
[  537.543174][T12463] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  537.562084][T12362] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  537.603907][T12362] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  537.623191][T12463] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  537.631087][T12463] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  537.707467][T12463] syz.4.1483: attempt to access beyond end of device
[  537.707467][T12463] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  537.728529][T12469] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  537.755732][T12463] syz.4.1483: attempt to access beyond end of device
[  537.755732][T12463] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  537.801687][T12463] syz.4.1483: attempt to access beyond end of device
[  537.801687][T12463] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  537.830874][T12463] syz.4.1483: attempt to access beyond end of device
[  537.830874][T12463] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  537.840478][T12362] batman_adv: batadv0: Adding interface: batadv_slave_1
[  537.862805][T12463] syz.4.1483: attempt to access beyond end of device
[  537.862805][T12463] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  537.869064][T12362] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  537.902786][T12463] syz.4.1483: attempt to access beyond end of device
[  537.902786][T12463] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  537.902993][T12463] syz.4.1483: attempt to access beyond end of device
[  537.902993][T12463] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  537.903067][T12463] syz.4.1483: attempt to access beyond end of device
[  537.903067][T12463] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  537.903144][T12463] syz.4.1483: attempt to access beyond end of device
[  537.903144][T12463] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  537.943095][T12362] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  538.158360][T12476] netlink: 'syz.7.1486': attribute type 13 has an invalid length.
[  538.456322][T12485] loop4: detected capacity change from 0 to 1024
[  538.485866][T12485] EXT4-fs: inline encryption not supported
[  538.519654][T12485] EXT4-fs: Mount option(s) incompatible with ext3
[  538.533122][ T5804] Bluetooth: hci2: command tx timeout
[  538.691775][T12489] sd 0:0:1:0: device reset
[  538.786247][T12476] bridge0: port 2(bridge_slave_1) entered disabled state
[  538.797811][T12476] bridge0: port 1(bridge_slave_0) entered disabled state
[  538.984146][T12476] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  539.026025][T12476] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  539.331838][T12476] netdevsim netdevsim7 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  539.340389][T12476] netdevsim netdevsim7 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  539.349035][T12476] netdevsim netdevsim7 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  539.357517][T12476] netdevsim netdevsim7 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  539.639538][T12362] hsr_slave_0: entered promiscuous mode
[  539.647697][T12362] hsr_slave_1: entered promiscuous mode
[  539.654563][T12362] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  539.662157][T12362] Cannot create hsr debugfs directory
[  539.681855][T12488] lo speed is unknown, defaulting to 1000
[  539.856793][T12488] lo speed is unknown, defaulting to 1000
[  540.037820][T12488] lo speed is unknown, defaulting to 1000
[  540.086046][T12488] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  540.285928][   T34] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  540.348742][T12488] lo speed is unknown, defaulting to 1000
[  540.376055][T12488] lo speed is unknown, defaulting to 1000
[  540.435017][   T34] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  540.474279][T12488] lo speed is unknown, defaulting to 1000
[  540.481709][T12488] lo speed is unknown, defaulting to 1000
[  540.618501][   T34] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  540.656386][T12488] lo speed is unknown, defaulting to 1000
[  540.930033][   T34] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.255890][T12350] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  541.287036][T12350] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  541.548790][T12350] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  541.595640][T12350] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  542.099771][T12577] loop4: detected capacity change from 0 to 128
[  542.114591][T12577] FAT-fs (loop4): Directory bread(block 414) failed
[  542.121325][T12577] FAT-fs (loop4): Directory bread(block 415) failed
[  542.128090][T12577] FAT-fs (loop4): Directory bread(block 416) failed
[  542.129280][T12569] lo speed is unknown, defaulting to 1000
[  542.134928][T12577] FAT-fs (loop4): Directory bread(block 417) failed
[  542.134961][T12577] FAT-fs (loop4): Directory bread(block 418) failed
[  542.134990][T12577] FAT-fs (loop4): Directory bread(block 419) failed
[  542.135016][T12577] FAT-fs (loop4): Directory bread(block 420) failed
[  542.135043][T12577] FAT-fs (loop4): Directory bread(block 421) failed
[  542.600514][T12350] 8021q: adding VLAN 0 to HW filter on device bond0
[  542.630650][T12350] 8021q: adding VLAN 0 to HW filter on device team0
[  542.681348][T12588] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1504'.
[  542.737221][ T9102] bridge0: port 1(bridge_slave_0) entered blocking state
[  542.744511][ T9102] bridge0: port 1(bridge_slave_0) entered forwarding state
[  542.806202][ T3482] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.813448][ T3482] bridge0: port 2(bridge_slave_1) entered forwarding state
[  543.096139][T12350] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  544.110257][T12623] lo speed is unknown, defaulting to 1000
[  544.118542][T12627] loop7: detected capacity change from 0 to 128
[  544.134587][T12627] FAT-fs (loop7): Directory bread(block 414) failed
[  544.141447][T12627] FAT-fs (loop7): Directory bread(block 415) failed
[  544.149355][T12627] FAT-fs (loop7): Directory bread(block 416) failed
[  544.156102][T12627] FAT-fs (loop7): Directory bread(block 417) failed
[  544.162886][T12627] FAT-fs (loop7): Directory bread(block 418) failed
[  544.169540][T12627] FAT-fs (loop7): Directory bread(block 419) failed
[  544.176773][T12627] FAT-fs (loop7): Directory bread(block 420) failed
[  544.183984][T12627] FAT-fs (loop7): Directory bread(block 421) failed
[  544.541867][T12350] 8021q: adding VLAN 0 to HW filter on device batadv0
[  544.856479][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[  544.964436][T12362] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  545.065995][   T34] hsr_slave_0: left promiscuous mode
[  545.095180][   T34] hsr_slave_1: left promiscuous mode
[  545.109091][   T34] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  545.122253][   T34] batman_adv: batadv0: Removing interface: batadv_slave_0
[  545.141567][   T34] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  545.153121][   T34] batman_adv: batadv0: Removing interface: batadv_slave_1
[  545.162233][T12650] loop4: detected capacity change from 0 to 764
[  545.174027][   T34] bridge_slave_1: left allmulticast mode
[  545.202633][   T34] bridge_slave_1: left promiscuous mode
[  545.213304][   T34] bridge0: port 2(bridge_slave_1) entered disabled state
[  545.225832][T12650] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  545.238478][   T34] bridge_slave_0: left allmulticast mode
[  545.251211][   T34] bridge_slave_0: left promiscuous mode
[  545.282799][   T34] bridge0: port 1(bridge_slave_0) entered disabled state
[  545.438295][   T34] veth1_macvtap: left promiscuous mode
[  545.452740][   T34] veth0_macvtap: left promiscuous mode
[  545.458504][   T34] veth1_vlan: left promiscuous mode
[  545.475306][   T34] veth0_vlan: left promiscuous mode
[  546.876865][   T34] team0 (unregistering): Port device team_slave_0 removed
[  547.038141][   T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  547.183883][   T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  548.366477][   T34] bond0 (unregistering): Released all slaves
[  548.508668][T12362] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  548.520917][T12362] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  548.594228][T12350] veth0_vlan: entered promiscuous mode
[  548.600556][T12362] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  548.795327][T12350] veth1_vlan: entered promiscuous mode
[  548.927237][T12350] veth0_macvtap: entered promiscuous mode
[  548.976404][T12350] veth1_macvtap: entered promiscuous mode
[  549.015916][T12750] loop7: detected capacity change from 0 to 736
[  549.187242][T12362] 8021q: adding VLAN 0 to HW filter on device bond0
[  549.210490][T12350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  549.239827][T12350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.284413][T12350] batman_adv: batadv0: Interface activated: batadv_slave_0
[  549.385132][T12362] 8021q: adding VLAN 0 to HW filter on device team0
[  549.405967][T12350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  549.442155][T12350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  549.484926][T12350] batman_adv: batadv0: Interface activated: batadv_slave_1
[  549.507187][T12350] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  549.523920][T12350] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  549.547275][T12350] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  549.557884][T12350] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  549.730986][ T9108] bridge0: port 1(bridge_slave_0) entered blocking state
[  549.738258][ T9108] bridge0: port 1(bridge_slave_0) entered forwarding state
[  549.827879][T12767] lo speed is unknown, defaulting to 1000
[  549.893777][T12768] loop7: detected capacity change from 0 to 128
[  549.963205][ T9108] bridge0: port 2(bridge_slave_1) entered blocking state
[  549.970471][ T9108] bridge0: port 2(bridge_slave_1) entered forwarding state
[  549.982309][T12768] FAT-fs (loop7): Directory bread(block 414) failed
[  549.989101][T12768] FAT-fs (loop7): Directory bread(block 415) failed
[  549.995904][T12768] FAT-fs (loop7): Directory bread(block 416) failed
[  550.002711][T12768] FAT-fs (loop7): Directory bread(block 417) failed
[  550.009343][T12768] FAT-fs (loop7): Directory bread(block 418) failed
[  550.016039][T12768] FAT-fs (loop7): Directory bread(block 419) failed
[  550.022753][T12768] FAT-fs (loop7): Directory bread(block 420) failed
[  550.029380][T12768] FAT-fs (loop7): Directory bread(block 421) failed
[  550.507779][ T9102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  550.552092][ T9102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  550.654868][T12362] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  550.701486][T12780] netlink: 'syz.7.1533': attribute type 39 has an invalid length.
[  550.774663][T12784] futex_wake_op: syz.4.1535 tries to shift op by -1; fix this program
[  550.785537][T12784] Cannot find add_set index 0 as target
[  550.844125][ T9102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  550.902896][ T9102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  551.009812][T12788] loop4: detected capacity change from 0 to 736
[  551.307962][T12795] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1537'.
[  551.489793][T12805] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1539'.
[  551.739805][T12362] 8021q: adding VLAN 0 to HW filter on device batadv0
[  552.012418][T12362] veth0_vlan: entered promiscuous mode
[  552.069735][T12362] veth1_vlan: entered promiscuous mode
[  552.213463][T12362] veth0_macvtap: entered promiscuous mode
[  552.241993][T12362] veth1_macvtap: entered promiscuous mode
[  552.328962][T12362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  552.348959][T12831] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1547'.
[  552.369236][T12362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.420690][T12362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  552.454925][T12362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.489534][T12362] batman_adv: batadv0: Interface activated: batadv_slave_0
[  552.526814][T12362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  552.546837][T12362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.562358][T12362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  552.582266][T12362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  552.609916][T12362] batman_adv: batadv0: Interface activated: batadv_slave_1
[  552.646773][T12362] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  552.667850][T12362] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  552.682304][T12362] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  552.719766][T12362] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  553.132776][ T9108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  553.140674][ T9108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  553.207932][T12848] netlink: 'syz.0.1552': attribute type 25 has an invalid length.
[  553.234284][T12848] netlink: 'syz.0.1552': attribute type 7 has an invalid length.
[  553.242108][T12848] netlink: 'syz.0.1552': attribute type 1 has an invalid length.
[  553.269231][T12848] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1552'.
[  553.297154][T12848] bridge0: port 1(bridge_slave_0) entered disabled state
[  553.412325][ T9108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  553.440546][ T9108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  554.147363][T12867] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1556'.
[  554.556852][T12875] loop0: detected capacity change from 0 to 128
[  554.674976][T12880] loop2: detected capacity change from 0 to 512
[  554.682235][T12880] journal_path: Lookup failure for './bus'
[  554.748640][T12880] EXT4-fs: error: could not find journal device path
[  555.181812][T12886] sch_tbf: burst 2 is lower than device syzkaller0 mtu (1514) !
[  556.461847][T12912] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1566'.
[  557.011171][T12925] smc: net device bond0 applied user defined pnetid SYZ0
[  557.025529][T12925] smc: net device bond0 erased user defined pnetid SYZ0
[  557.816837][T12944] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1575'.
[  558.112448][T12952] loop2: detected capacity change from 0 to 764
[  558.242868][T12952] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  559.039178][T12966] loop2: detected capacity change from 0 to 736
[  559.808108][   T28] audit: type=1326 audit(1762398410.055:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  559.913988][   T28] audit: type=1326 audit(1762398410.085:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  559.949439][T12980] loop4: detected capacity change from 0 to 512
[  560.012846][   T28] audit: type=1326 audit(1762398410.085:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  560.037872][T12982] loop7: detected capacity change from 0 to 128
[  560.055697][T12986] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1588'.
[  560.075531][T12982] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  560.115767][   T28] audit: type=1326 audit(1762398410.085:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  560.138907][   T28] audit: type=1326 audit(1762398410.085:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  560.144223][T12980] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  560.161725][   T28] audit: type=1326 audit(1762398410.085:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  560.198692][   T28] audit: type=1326 audit(1762398410.085:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  560.222199][   T28] audit: type=1326 audit(1762398410.095:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  560.223845][T12982] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  560.245823][   T28] audit: type=1326 audit(1762398410.095:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  560.276946][T12980] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  560.356003][   T28] audit: type=1326 audit(1762398410.095:1575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.4.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f400298f6c9 code=0x7ffc0000
[  560.385317][T12980] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #2: comm syz.4.1587: corrupted inode contents
[  560.472612][T12980] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #2: comm syz.4.1587: mark_inode_dirty error
[  560.508273][T12980] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #2: comm syz.4.1587: corrupted inode contents
[  560.531473][ T9080] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  560.699814][T12996] loop2: detected capacity change from 0 to 2048
[  560.828055][T12996] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  560.893557][T12996] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  560.942063][T13001] loop7: detected capacity change from 0 to 764
[  560.971645][T11897] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  561.004385][T12996] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 16: comm syz.2.1592: path /16/file0: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[  561.033163][T13001] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  561.089002][T12996] EXT4-fs (loop2): Remounting filesystem read-only
[  561.168607][T13008] loop7: detected capacity change from 0 to 512
[  561.225067][T13008] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  561.340796][T13008] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  561.458149][T12362] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  561.921935][T13025] loop0: detected capacity change from 0 to 128
[  562.175228][T11040] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  562.392909][T13037] netlink: 'syz.2.1601': attribute type 1 has an invalid length.
[  562.459618][T13031] lo speed is unknown, defaulting to 1000
[  562.477057][T13038] loop4: detected capacity change from 0 to 128
[  562.511160][T13038] FAT-fs (loop4): Directory bread(block 414) failed
[  562.518531][T13038] FAT-fs (loop4): Directory bread(block 415) failed
[  562.525392][T13038] FAT-fs (loop4): Directory bread(block 416) failed
[  562.532060][T13038] FAT-fs (loop4): Directory bread(block 417) failed
[  562.538791][T13038] FAT-fs (loop4): Directory bread(block 418) failed
[  562.545810][T13038] FAT-fs (loop4): Directory bread(block 419) failed
[  562.552477][T13038] FAT-fs (loop4): Directory bread(block 420) failed
[  562.559255][T13038] FAT-fs (loop4): Directory bread(block 421) failed
[  563.165018][T13054] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1604'.
[  563.225555][T13059] loop4: detected capacity change from 0 to 736
[  563.263089][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  563.806172][T13072] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1611'.
[  563.850718][T13075] loop4: detected capacity change from 0 to 764
[  563.862954][T13072] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1611'.
[  563.936652][T13075] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  564.241171][ T5160] udevd[5160]: worker [11960] terminated by signal 33 (Unknown signal 33)
[  564.285351][ T5160] udevd[5160]: worker [11960] failed while handling '/devices/virtual/block/loop4'
[  564.581975][T13093] loop4: detected capacity change from 0 to 736
[  564.824018][   T28] kauditd_printk_skb: 75 callbacks suppressed
[  564.824034][   T28] audit: type=1326 audit(1762398415.075:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13098 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  565.050740][   T28] audit: type=1326 audit(1762398415.075:1652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  565.146814][   T28] audit: type=1326 audit(1762398415.075:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  565.169683][   T28] audit: type=1326 audit(1762398415.075:1654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  565.232680][   T28] audit: type=1326 audit(1762398415.165:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdeabd2b779 code=0x7ffc0000
[  565.302644][   T28] audit: type=1326 audit(1762398415.165:1656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  565.372989][   T28] audit: type=1326 audit(1762398415.165:1657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdeabd8f703 code=0x7ffc0000
[  565.537124][   T28] audit: type=1326 audit(1762398415.785:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fdeabd8e17f code=0x7ffc0000
[  565.561901][T13094] loop2: detected capacity change from 0 to 128
[  565.590409][T13094] FAT-fs (loop2): Unrecognized mount option "shortname=winnlower" or missing value
[  565.615856][   T28] audit: type=1326 audit(1762398415.815:1659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fdeabd8f757 code=0x7ffc0000
[  565.661165][   T28] audit: type=1326 audit(1762398415.815:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdeabd8df10 code=0x7ffc0000
[  565.700768][T12616] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  565.983614][T13120] syzkaller0: entered promiscuous mode
[  565.989212][T13120] syzkaller0: entered allmulticast mode
[  567.766976][T13144] loop7: detected capacity change from 0 to 736
[  568.875121][T13171] loop4: detected capacity change from 0 to 764
[  569.006014][T13171] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  569.096441][T13174] syzkaller0: entered promiscuous mode
[  569.112696][T13174] syzkaller0: entered allmulticast mode
[  569.353603][T13179] loop4: detected capacity change from 0 to 2048
[  569.457611][T13179]  loop4: p2 p3 p7
[  569.836501][T13190] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1637'.
[  569.978863][T12616] udevd[12616]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  570.010091][T11961] udevd[11961]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[  570.017116][T12563] udevd[12563]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  571.296050][T13223] syzkaller0: entered promiscuous mode
[  571.312726][T13223] syzkaller0: entered allmulticast mode
[  571.376522][T13226] serio: Serial port ttyS3
[  571.571782][T13226] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1644'.
[  572.019226][T13248] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1652'.
[  572.023240][T13248] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1652'.
[  572.251659][   T28] kauditd_printk_skb: 355 callbacks suppressed
[  572.251675][   T28] audit: type=1326 audit(1762398422.495:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13256 comm="syz.7.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  572.296025][   T28] audit: type=1326 audit(1762398422.535:2017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13256 comm="syz.7.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  572.366559][   T28] audit: type=1326 audit(1762398422.565:2018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13256 comm="syz.7.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  572.462645][   T28] audit: type=1326 audit(1762398422.565:2019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13256 comm="syz.7.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  572.536154][   T28] audit: type=1326 audit(1762398422.575:2020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13256 comm="syz.7.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  572.596704][T13265] syzkaller0: entered promiscuous mode
[  572.602263][T13265] syzkaller0: entered allmulticast mode
[  572.626254][T13270] loop0: detected capacity change from 0 to 128
[  572.631056][T12501] IPVS: starting estimator thread 0...
[  572.692868][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  572.712320][T13270] FAT-fs (loop0): Filesystem has been set read-only
[  572.752165][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  572.847272][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  572.928050][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  572.952948][T13272] IPVS: using max 16 ests per chain, 38400 per kthread
[  573.350284][T13280] loop4: detected capacity change from 0 to 512
[  573.364211][T13280] EXT4-fs: Ignoring removed nomblk_io_submit option
[  573.470072][T13280] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002]
[  573.534575][T13280] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1660: invalid indirect mapped block 2683928664 (level 1)
[  573.563804][T13280] EXT4-fs (loop4): Remounting filesystem read-only
[  573.577283][T13280] EXT4-fs (loop4): 1 truncate cleaned up
[  573.592095][T13280] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  573.662985][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  573.675068][T13274] unsupported nla_type 52263
[  573.692216][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  573.706768][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  573.734093][T13279] lo speed is unknown, defaulting to 1000
[  573.795927][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  573.903724][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.090915][T13290] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1663'.
[  574.103771][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.147248][T13290] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1663'.
[  574.180755][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.208080][T13293] loop7: detected capacity change from 0 to 128
[  574.228156][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.264249][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.302744][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.336155][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.355086][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.400618][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.458355][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.528642][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.538262][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.546868][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.555577][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.564113][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.572732][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.581348][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.589976][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.599241][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.608007][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.616661][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.625505][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.634452][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.643177][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.653481][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.662106][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.671720][T13270] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 52)
[  574.688273][   T28] audit: type=1800 audit(1762398424.935:2021): pid=13270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1659" name="file1" dev="loop0" ino=1048794 res=0 errno=0
[  574.826065][T13299] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(9)
[  574.832694][T13299] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  574.973929][T13299] vhci_hcd vhci_hcd.0: Device attached
[  575.187817][T13300] vhci_hcd: connection closed
[  575.192470][T12501] vhci_hcd: vhci_device speed not set
[  575.209631][ T9102] vhci_hcd: stop threads
[  575.218451][ T9102] vhci_hcd: release socket
[  575.243844][ T9102] vhci_hcd: disconnect device
[  575.314877][T12501] usb 47-1: new low-speed USB device number 2 using vhci_hcd
[  575.371139][T12501] usb 47-1: enqueue for inactive port 0
[  575.472813][T12501] vhci_hcd: vhci_device speed not set
[  575.709663][T11897] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.823553][T13322] syzkaller0: entered promiscuous mode
[  575.829116][T13322] syzkaller0: entered allmulticast mode
[  576.419445][   T28] audit: type=1326 audit(1762398426.665:2022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13343 comm="syz.2.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  576.474449][   T28] audit: type=1326 audit(1762398426.695:2023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13343 comm="syz.2.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  576.516763][T13340] loop0: detected capacity change from 0 to 512
[  576.582808][T13340] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  576.592072][   T28] audit: type=1326 audit(1762398426.695:2024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13343 comm="syz.2.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  576.630786][   T28] audit: type=1326 audit(1762398426.695:2025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13343 comm="syz.2.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  576.668445][T13340] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  576.914955][T12350] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  577.061170][T13361] loop4: detected capacity change from 0 to 7
[  577.077885][T13361] Dev loop4: unable to read RDB block 7
[  577.092176][T13361]  loop4: unable to read partition table
[  577.111303][T13361] loop4: partition table beyond EOD, truncated
[  577.136100][T13361] loop_reread_partitions: partition scan of loop4 (���������S�j̖�P=ý?�}X���	���%��`��ր����5) failed (rc=-5)
[  577.436488][T13373] loop2: detected capacity change from 0 to 128
[  577.993100][T13377] bio_check_eod: 1480 callbacks suppressed
[  577.993167][T13377] syz.2.1683: attempt to access beyond end of device
[  577.993167][T13377] loop2: rw=2049, sector=145, nr_sectors = 56 limit=128
[  578.573778][ T1300] kworker/u4:7: attempt to access beyond end of device
[  578.573778][ T1300] loop2: rw=1, sector=201, nr_sectors = 416 limit=128
[  579.165584][T13401] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1693'.
[  580.041523][T13422] loop7: detected capacity change from 0 to 512
[  580.065210][T13422] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  580.200754][T13422] EXT4-fs error (device loop7): mb_free_blocks:1938: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  580.223953][T13422] EXT4-fs error (device loop7): ext4_do_update_inode:5244: inode #11: comm syz.7.1699: corrupted inode contents
[  580.274541][T13422] EXT4-fs error (device loop7): ext4_dirty_inode:6120: inode #11: comm syz.7.1699: mark_inode_dirty error
[  580.289915][T13429] loop2: detected capacity change from 0 to 764
[  580.333571][T13422] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #11: comm syz.7.1699: invalid indirect mapped block 1 (level 1)
[  580.347451][T13429] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  580.384527][T13422] EXT4-fs error (device loop7): ext4_do_update_inode:5244: inode #11: comm syz.7.1699: corrupted inode contents
[  580.497235][T13422] EXT4-fs error (device loop7) in ext4_orphan_del:301: Corrupt filesystem
[  580.515635][T13422] EXT4-fs error (device loop7): ext4_do_update_inode:5244: inode #11: comm syz.7.1699: corrupted inode contents
[  580.582744][T13422] EXT4-fs error (device loop7): ext4_truncate:4294: inode #11: comm syz.7.1699: mark_inode_dirty error
[  580.706903][T13422] EXT4-fs error (device loop7) in ext4_process_orphan:343: Corrupt filesystem
[  580.753448][T13422] EXT4-fs (loop7): 1 truncate cleaned up
[  580.760699][T13422] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.816550][T13435] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1703'.
[  580.898347][T13422] EXT4-fs error (device loop7): ext4_find_dest_de:2115: inode #2: block 13: comm syz.7.1699: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[  581.105759][T11040] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.258998][T13442] loop0: detected capacity change from 0 to 512
[  581.287837][T13442] EXT4-fs: Ignoring removed i_version option
[  581.319026][T13442] EXT4-fs: Ignoring removed bh option
[  581.478760][T13442] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  581.567430][T13442] ext4 filesystem being mounted at /30/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  582.090818][T13463] loop2: detected capacity change from 0 to 512
[  582.138704][T13463] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.1711: bad orphan inode 15
[  582.202081][T13463] ext4_test_bit(bit=14, block=5) = 0
[  582.210660][T13463] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  582.246717][T13463] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.322769][T12350] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.413948][   T28] audit: type=1326 audit(1762398432.645:2026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13472 comm="syz.0.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  582.444324][T13463] random: crng reseeded on system resumption
[  582.448136][   T28] audit: type=1326 audit(1762398432.645:2027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13472 comm="syz.0.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  582.529749][   T28] audit: type=1326 audit(1762398432.665:2028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13472 comm="syz.0.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  582.590234][   T28] audit: type=1326 audit(1762398432.665:2029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13472 comm="syz.0.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  582.711582][   T28] audit: type=1326 audit(1762398432.665:2030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13472 comm="syz.0.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  582.744595][   T28] audit: type=1326 audit(1762398432.665:2031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13472 comm="syz.0.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  582.794796][   T28] audit: type=1326 audit(1762398432.695:2032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13472 comm="syz.0.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  582.883392][   T28] audit: type=1326 audit(1762398432.695:2033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13472 comm="syz.0.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  582.960730][   T28] audit: type=1326 audit(1762398432.695:2034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13472 comm="syz.0.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  582.998175][   T28] audit: type=1326 audit(1762398432.745:2035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeabd8f6c9 code=0x7ffc0000
[  583.405935][T13496] netlink: 'syz.0.1717': attribute type 3 has an invalid length.
[  584.226828][T13523] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1725'.
[  584.358776][T13522] syzkaller0: entered promiscuous mode
[  584.392701][T13522] syzkaller0: entered allmulticast mode
[  587.786978][T13549] loop0: detected capacity change from 0 to 512
[  587.838747][T13549] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  587.901205][T13549] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  588.253924][T13557] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1739'.
[  588.263507][T13557] bridge_slave_1: left allmulticast mode
[  588.269515][T13557] bridge_slave_1: left promiscuous mode
[  588.287860][T13557] bridge0: port 2(bridge_slave_1) entered disabled state
[  588.294961][T12350] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  588.351575][T13561] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1737'.
[  588.393800][T13557] bridge_slave_0: left allmulticast mode
[  588.399497][T13557] bridge_slave_0: left promiscuous mode
[  588.474515][T13557] bridge0: port 1(bridge_slave_0) entered disabled state
[  588.874148][T13580] siw: device registration error -23
[  589.104397][   T28] kauditd_printk_skb: 6 callbacks suppressed
[  589.104413][   T28] audit: type=1326 audit(1762398439.355:2042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13583 comm="syz.7.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  589.207625][T13584] syzkaller0: entered promiscuous mode
[  589.208405][   T28] audit: type=1326 audit(1762398439.355:2043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13583 comm="syz.7.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  589.213843][T13584] syzkaller0: entered allmulticast mode
[  589.270226][   T28] audit: type=1326 audit(1762398439.355:2044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13583 comm="syz.7.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  589.322024][T13586] lo speed is unknown, defaulting to 1000
[  589.342767][   T28] audit: type=1326 audit(1762398439.355:2045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13583 comm="syz.7.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1247f8f6c9 code=0x7ffc0000
[  590.002830][T13612] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1750'.
[  594.379012][T13660] lo speed is unknown, defaulting to 1000
[  594.405531][T13664] loop2: detected capacity change from 0 to 128
[  594.493130][T13664] FAT-fs (loop2): Directory bread(block 414) failed
[  594.583316][T13664] FAT-fs (loop2): Directory bread(block 415) failed
[  594.590218][T13664] FAT-fs (loop2): Directory bread(block 416) failed
[  594.702775][T13664] FAT-fs (loop2): Directory bread(block 417) failed
[  594.725914][T13664] FAT-fs (loop2): Directory bread(block 418) failed
[  594.785233][T13664] FAT-fs (loop2): Directory bread(block 419) failed
[  594.799316][T13664] FAT-fs (loop2): Directory bread(block 420) failed
[  594.806637][T13664] FAT-fs (loop2): Directory bread(block 421) failed
[  595.371944][T13683] syzkaller0: entered promiscuous mode
[  595.392086][T13683] syzkaller0: entered allmulticast mode
[  596.634590][T13704] loop4: detected capacity change from 0 to 2048
[  596.726679][T13704] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  596.765582][T13704] EXT4-fs error (device loop4): ext4_find_extent:936: inode #2: comm syz.4.1766: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  596.807408][T13704] EXT4-fs (loop4): Remounting filesystem read-only
[  596.927459][T11897] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  597.242806][T13711] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1768'.
[  599.992886][   T28] audit: type=1326 audit(1762398450.225:2046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.110305][   T28] audit: type=1326 audit(1762398450.225:2047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.232966][   T28] audit: type=1326 audit(1762398450.225:2048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.287889][T13743] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1777'.
[  600.302674][   T28] audit: type=1326 audit(1762398450.225:2049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.390888][   T28] audit: type=1326 audit(1762398450.235:2050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.487056][   T28] audit: type=1326 audit(1762398450.235:2051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.550907][   T28] audit: type=1326 audit(1762398450.235:2052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.607475][   T28] audit: type=1326 audit(1762398450.235:2053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.659552][T13746] loop4: detected capacity change from 0 to 2048
[  600.667648][   T28] audit: type=1326 audit(1762398450.275:2054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.777674][   T28] audit: type=1326 audit(1762398450.275:2055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13731 comm="syz.0.1775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdd158f6c9 code=0x7ffc0000
[  600.840826][T13746] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  600.863137][T13746] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  601.019176][T11897] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.026149][T13756] syzkaller0: entered promiscuous mode
[  601.047761][T13756] syzkaller0: entered allmulticast mode
[  601.627838][T13775] xt_CT: You must specify a L4 protocol and not use inversions on it
[  602.274646][T13789] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1787'.
[  605.230376][T13801] loop4: detected capacity change from 0 to 2048
[  605.514646][T13801] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  605.562332][T13801] ext4 filesystem being mounted at /136/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  605.633996][T11897] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.744802][T13822] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1796'.
[  606.049999][T13832] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  606.056633][T13832] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  606.097648][T13832] vhci_hcd vhci_hcd.0: Device attached
[  606.125243][T13838] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(7)
[  606.131861][T13838] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  606.182676][T13838] vhci_hcd vhci_hcd.0: Device attached
[  606.372815][ T5882] usb 33-1: new low-speed USB device number 2 using vhci_hcd
[  606.416385][T13839] vhci_hcd: connection closed
[  606.416608][T13834] vhci_hcd: connection reset by peer
[  606.440639][ T3482] vhci_hcd: stop threads
[  606.462572][ T3482] vhci_hcd: release socket
[  606.478912][ T3482] vhci_hcd: disconnect device
[  606.498217][ T3482] vhci_hcd: stop threads
[  606.507972][ T3482] vhci_hcd: release socket
[  606.514943][ T3482] vhci_hcd: disconnect device
[  607.897353][T13890] loop7: detected capacity change from 0 to 1024
[  607.997056][T13890] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  608.077160][T13890] ==================================================================
[  608.085319][T13890] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90
[  608.093109][T13890] Read of size 18446744073709551588 at addr ffff88802407d840 by task syz.7.1816/13890
[  608.102690][T13890] 
[  608.105050][T13890] CPU: 1 PID: 13890 Comm: syz.7.1816 Not tainted syzkaller #0
[  608.112549][T13890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  608.122646][T13890] Call Trace:
[  608.125974][T13890]  <TASK>
[  608.128951][T13890]  dump_stack_lvl+0x16c/0x230
[  608.133695][T13890]  ? read_lock_is_recursive+0x20/0x20
[  608.139124][T13890]  ? show_regs_print_info+0x20/0x20
[  608.144391][T13890]  ? load_image+0x3b0/0x3b0
[  608.148938][T13890]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[  608.154360][T13890]  ? __virt_addr_valid+0x18c/0x540
[  608.159519][T13890]  ? __virt_addr_valid+0x469/0x540
[  608.162341][T13907] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  608.164657][T13890]  print_report+0xac/0x220
[  608.164689][T13890]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  608.164718][T13890]  kasan_report+0x117/0x150
[  608.187827][T13890]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  608.193337][T13890]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  608.198845][T13890]  kasan_check_range+0x288/0x290
[  608.203832][T13890]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  608.209345][T13890]  __asan_memmove+0x29/0x70
[  608.213904][T13890]  ext4_xattr_set_entry+0x94b/0x1e90
[  608.219278][T13890]  ext4_xattr_block_set+0xae3/0x32a0
[  608.224623][T13890]  ? ext4_destroy_inode+0x200/0x200
[  608.229875][T13890]  ? proc_nr_inodes+0x230/0x230
[  608.234784][T13890]  ? do_raw_spin_unlock+0x121/0x230
[  608.240035][T13890]  ? _raw_spin_unlock+0x28/0x40
[  608.244947][T13890]  ? ext4_xattr_block_find+0x350/0x350
[  608.250471][T13890]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  608.255904][T13890]  ext4_xattr_set_handle+0xbff/0x1290
[  608.261346][T13890]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  608.267393][T13890]  ? __ext4_journal_start_sb+0x259/0x570
[  608.273092][T13890]  ext4_xattr_set+0x22d/0x320
[  608.277828][T13890]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  608.283422][T13890]  ? evm_protected_xattr_common+0x170/0x190
[  608.289372][T13890]  ? evm_protect_xattr+0x534/0x7a0
[  608.294541][T13890]  ? ext4_xattr_security_get+0x40/0x40
[  608.300066][T13890]  __vfs_setxattr+0x431/0x470
[  608.304800][T13890]  __vfs_setxattr_noperm+0x12d/0x5e0
[  608.310147][T13890]  vfs_setxattr+0x16c/0x2f0
[  608.314747][T13890]  ? xattr_permission+0x470/0x470
[  608.319831][T13890]  ? __mnt_want_write+0x223/0x2a0
[  608.324939][T13890]  ? path_setxattr+0x314/0x550
[  608.329760][T13890]  path_setxattr+0x362/0x550
[  608.334403][T13890]  ? simple_xattrs_free+0x150/0x150
[  608.339673][T13890]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  608.345737][T13890]  ? lock_chain_count+0x20/0x20
[  608.350649][T13890]  __x64_sys_setxattr+0xbb/0xd0
[  608.355554][T13890]  do_syscall_64+0x55/0xb0
[  608.360087][T13890]  ? clear_bhb_loop+0x40/0x90
[  608.364815][T13890]  ? clear_bhb_loop+0x40/0x90
[  608.369541][T13890]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  608.375481][T13890] RIP: 0033:0x7f1247f8f6c9
[  608.379941][T13890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  608.399591][T13890] RSP: 002b:00007f1248d80038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  608.408052][T13890] RAX: ffffffffffffffda RBX: 00007f12481e5fa0 RCX: 00007f1247f8f6c9
[  608.416284][T13890] RDX: 00002000000013c0 RSI: 0000200000000140 RDI: 0000200000000100
[  608.424311][T13890] RBP: 00007f1248011f91 R08: 0000000000000000 R09: 0000000000000000
[  608.432329][T13890] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000
[  608.440346][T13890] R13: 00007f12481e6038 R14: 00007f12481e5fa0 R15: 00007ffc0aae9a58
[  608.448371][T13890]  </TASK>
[  608.451431][T13890] 
[  608.453785][T13890] Allocated by task 13890:
[  608.458241][T13890]  kasan_set_track+0x4e/0x70
[  608.462873][T13890]  __kasan_kmalloc+0x8f/0xa0
[  608.467498][T13890]  __kmalloc_node_track_caller+0xb2/0x230
[  608.473269][T13890]  kmemdup+0x2b/0x70
[  608.477203][T13890]  ext4_xattr_block_set+0x9e5/0x32a0
[  608.482529][T13890]  ext4_xattr_set_handle+0xbff/0x1290
[  608.487944][T13890]  ext4_xattr_set+0x22d/0x320
[  608.492669][T13890]  __vfs_setxattr+0x431/0x470
[  608.497378][T13890]  __vfs_setxattr_noperm+0x12d/0x5e0
[  608.502707][T13890]  vfs_setxattr+0x16c/0x2f0
[  608.507256][T13890]  path_setxattr+0x362/0x550
[  608.511891][T13890]  __x64_sys_setxattr+0xbb/0xd0
[  608.516789][T13890]  do_syscall_64+0x55/0xb0
[  608.521250][T13890]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  608.527199][T13890] 
[  608.529546][T13890] The buggy address belongs to the object at ffff88802407d800
[  608.529546][T13890]  which belongs to the cache kmalloc-1k of size 1024
[  608.543635][T13890] The buggy address is located 64 bytes inside of
[  608.543635][T13890]  1024-byte region [ffff88802407d800, ffff88802407dc00)
[  608.556961][T13890] 
[  608.559331][T13890] The buggy address belongs to the physical page:
[  608.565781][T13890] page:ffffea0000901e00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x24078
[  608.575982][T13890] head:ffffea0000901e00 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  608.584957][T13890] anon flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  608.593439][T13890] page_type: 0xffffffff()
[  608.597800][T13890] raw: 00fff00000000840 ffff888017841dc0 0000000000000000 dead000000000001
[  608.606432][T13890] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  608.615061][T13890] page dumped because: kasan: bad access detected
[  608.621520][T13890] page_owner tracks the page as allocated
[  608.627267][T13890] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x152820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 1300, tgid 1300 (kworker/u4:7), ts 585278996818, free_ts 584701101883
[  608.648154][T13890]  post_alloc_hook+0x1cd/0x210
[  608.652964][T13890]  get_page_from_freelist+0x195c/0x19f0
[  608.658542][T13890]  __alloc_pages+0x1e3/0x460
[  608.663140][T13890]  alloc_slab_page+0x5d/0x170
[  608.667830][T13890]  new_slab+0x87/0x2e0
[  608.671909][T13890]  ___slab_alloc+0xc6d/0x1300
[  608.676591][T13890]  __kmem_cache_alloc_node+0x1a2/0x260
[  608.682078][T13890]  __kmalloc+0xa4/0x240
[  608.686244][T13890]  ieee802_11_parse_elems_full+0xb9/0x2080
[  608.692077][T13890]  ieee80211_ibss_rx_queued_mgmt+0x49b/0x2ac0
[  608.698158][T13890]  ieee80211_iface_work+0x717/0xc70
[  608.703378][T13890]  cfg80211_wiphy_work+0x225/0x260
[  608.708502][T13890]  process_scheduled_works+0xa45/0x15b0
[  608.714144][T13890]  worker_thread+0xa55/0xfc0
[  608.718736][T13890]  kthread+0x2fa/0x390
[  608.722812][T13890]  ret_from_fork+0x48/0x80
[  608.727235][T13890] page last free stack trace:
[  608.731907][T13890]  free_unref_page_prepare+0x7ce/0x8e0
[  608.737382][T13890]  free_unref_page+0x32/0x2e0
[  608.742072][T13890]  __unfreeze_partials+0x1cf/0x210
[  608.747195][T13890]  put_cpu_partial+0x17c/0x250
[  608.751970][T13890]  __slab_free+0x31d/0x410
[  608.756415][T13890]  qlist_free_all+0x75/0xe0
[  608.760951][T13890]  kasan_quarantine_reduce+0x143/0x160
[  608.766439][T13890]  __kasan_slab_alloc+0x22/0x80
[  608.771311][T13890]  slab_post_alloc_hook+0x6e/0x4d0
[  608.776433][T13890]  __kmem_cache_alloc_node+0x13e/0x260
[  608.781918][T13890]  __kmalloc+0xa4/0x240
[  608.786097][T13890]  tomoyo_realpath_from_path+0xe3/0x5d0
[  608.791658][T13890]  tomoyo_path_number_perm+0x1ea/0x590
[  608.797153][T13890]  security_file_ioctl+0x70/0xa0
[  608.802131][T13890]  __se_sys_ioctl+0x48/0x170
[  608.806749][T13890]  do_syscall_64+0x55/0xb0
[  608.811207][T13890] 
[  608.813536][T13890] Memory state around the buggy address:
[  608.819180][T13890]  ffff88802407d700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  608.827254][T13890]  ffff88802407d780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  608.835330][T13890] >ffff88802407d800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  608.843432][T13890]                                            ^
[  608.849582][T13890]  ffff88802407d880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  608.857690][T13890]  ffff88802407d900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  608.865778][T13890] ==================================================================
[  608.885346][T13890] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  608.892628][T13890] CPU: 0 PID: 13890 Comm: syz.7.1816 Not tainted syzkaller #0
[  608.900126][T13890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  608.910237][T13890] Call Trace:
[  608.913569][T13890]  <TASK>
[  608.916540][T13890]  dump_stack_lvl+0x16c/0x230
[  608.921271][T13890]  ? show_regs_print_info+0x20/0x20
[  608.926524][T13890]  ? load_image+0x3b0/0x3b0
[  608.931081][T13890]  panic+0x2c0/0x710
[  608.935019][T13890]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  608.941229][T13890]  ? bpf_jit_dump+0xd0/0xd0
[  608.945785][T13890]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  608.951737][T13890]  ? _raw_spin_unlock+0x40/0x40
[  608.956628][T13890]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  608.962139][T13890]  check_panic_on_warn+0x84/0xa0
[  608.967132][T13890]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  608.972641][T13890]  end_report+0x6f/0x140
[  608.976927][T13890]  kasan_report+0x128/0x150
[  608.981465][T13890]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  608.986961][T13890]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  608.992447][T13890]  kasan_check_range+0x288/0x290
[  608.997405][T13890]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  609.002885][T13890]  __asan_memmove+0x29/0x70
[  609.007407][T13890]  ext4_xattr_set_entry+0x94b/0x1e90
[  609.012724][T13890]  ext4_xattr_block_set+0xae3/0x32a0
[  609.018023][T13890]  ? ext4_destroy_inode+0x200/0x200
[  609.023239][T13890]  ? proc_nr_inodes+0x230/0x230
[  609.028123][T13890]  ? do_raw_spin_unlock+0x121/0x230
[  609.033341][T13890]  ? _raw_spin_unlock+0x28/0x40
[  609.038215][T13890]  ? ext4_xattr_block_find+0x350/0x350
[  609.043692][T13890]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  609.049084][T13890]  ext4_xattr_set_handle+0xbff/0x1290
[  609.054482][T13890]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  609.060498][T13890]  ? __ext4_journal_start_sb+0x259/0x570
[  609.066157][T13890]  ext4_xattr_set+0x22d/0x320
[  609.070852][T13890]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  609.076416][T13890]  ? evm_protected_xattr_common+0x170/0x190
[  609.082345][T13890]  ? evm_protect_xattr+0x534/0x7a0
[  609.087490][T13890]  ? ext4_xattr_security_get+0x40/0x40
[  609.092971][T13890]  __vfs_setxattr+0x431/0x470
[  609.097668][T13890]  __vfs_setxattr_noperm+0x12d/0x5e0
[  609.102974][T13890]  vfs_setxattr+0x16c/0x2f0
[  609.107493][T13890]  ? xattr_permission+0x470/0x470
[  609.112530][T13890]  ? __mnt_want_write+0x223/0x2a0
[  609.117600][T13890]  ? path_setxattr+0x314/0x550
[  609.122415][T13890]  path_setxattr+0x362/0x550
[  609.127019][T13890]  ? simple_xattrs_free+0x150/0x150
[  609.132240][T13890]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  609.138237][T13890]  ? lock_chain_count+0x20/0x20
[  609.143098][T13890]  __x64_sys_setxattr+0xbb/0xd0
[  609.147961][T13890]  do_syscall_64+0x55/0xb0
[  609.152410][T13890]  ? clear_bhb_loop+0x40/0x90
[  609.157085][T13890]  ? clear_bhb_loop+0x40/0x90
[  609.161785][T13890]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  609.167770][T13890] RIP: 0033:0x7f1247f8f6c9
[  609.172277][T13890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  609.191976][T13890] RSP: 002b:00007f1248d80038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  609.200402][T13890] RAX: ffffffffffffffda RBX: 00007f12481e5fa0 RCX: 00007f1247f8f6c9
[  609.208379][T13890] RDX: 00002000000013c0 RSI: 0000200000000140 RDI: 0000200000000100
[  609.216359][T13890] RBP: 00007f1248011f91 R08: 0000000000000000 R09: 0000000000000000
[  609.224334][T13890] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000
[  609.232312][T13890] R13: 00007f12481e6038 R14: 00007f12481e5fa0 R15: 00007ffc0aae9a58
[  609.240292][T13890]  </TASK>
[  609.243671][T13890] Kernel Offset: disabled
[  609.248006][T13890] Rebooting in 86400 seconds..