last executing test programs:

45.496033908s ago: executing program 3 (id=717):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_netdev_private(r0, 0x8914, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = accept(r2, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r3, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4112, 0x0, 0x0)

44.633360141s ago: executing program 3 (id=756):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
getpgid(0xffffffffffffffff)

44.632563901s ago: executing program 3 (id=757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000ddff00850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setrlimit(0x40000000000008, &(0x7f0000000000))

44.572356552s ago: executing program 3 (id=758):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@minixdf}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8005, 0x0, 0x0, 0x15, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x40000204]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)

44.479855464s ago: executing program 3 (id=762):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0)

43.766344345s ago: executing program 3 (id=777):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r2, 0x4b66, &(0x7f0000000040)={0x0, 0x0})

43.702187916s ago: executing program 32 (id=777):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r2, 0x4b66, &(0x7f0000000040)={0x0, 0x0})

3.432209018s ago: executing program 5 (id=1606):
r0 = socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000bc0)=ANY=[@ANYRES32=r0, @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000c9e2a84ab70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000640)={r3, r1}, 0xc)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3ffffffffffff14, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000050000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='sched_switch\x00', r7, 0x0, 0x5}, 0x18)
r8 = gettid()
rt_sigqueueinfo(r8, 0x11, &(0x7f00000004c0)={0x1c, 0x8, 0x5})
waitid(0x2, 0x0, &(0x7f0000000380), 0x20000000, &(0x7f0000000b00))
lchown(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x4fa, &(0x7f00000005c0)="$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")
openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f0000000040), 0x208e24b)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r10, 0x400454c9, 0x1)

2.544880062s ago: executing program 5 (id=1622):
r0 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
unshare(0x80)
write$binfmt_misc(r0, &(0x7f0000000180)="e502", 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0, 0x6}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
openat$snapshot(0xffffffffffffff9c, 0x0, 0x200, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000020000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kfree\x00', r4, 0x0, 0x9}, 0x18)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2.522963092s ago: executing program 5 (id=1623):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x189002, 0x181)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vxcan1\x00'})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1}, './bus\x00'})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000001214010002000000fcdbdf2508004b002c000000080001000000000008004f00000000000800150004000000080003"], 0x38}}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r6}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x13, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES32=r4, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffd79)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r8, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRES32=r6, @ANYRES64=0x0], 0x50)
sendfile(r3, r2, 0x0, 0x7ffff000)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x6}, 0x20, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000100)=ANY=[@ANYRESOCT], 0x2000, 0x0)

2.064540569s ago: executing program 0 (id=1634):
r0 = socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000bc0)=ANY=[@ANYRES32=r0, @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000c9e2a84ab70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000640)={r3, r1}, 0xc)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3ffffffffffff14, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000050000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='sched_switch\x00', r7, 0x0, 0x5}, 0x18)
r8 = gettid()
rt_sigqueueinfo(r8, 0x11, &(0x7f00000004c0)={0x1c, 0x8, 0x5})
waitid(0x2, 0x0, &(0x7f0000000380), 0x20000000, &(0x7f0000000b00))
lchown(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f0000000040), 0x208e24b)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r10, 0x400454c9, 0x1)

1.406810689s ago: executing program 4 (id=1641):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1700000000000000040000"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket$key(0xf, 0x3, 0x2)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_WRITE={0x17, 0x40, 0x4004, @fd=r4, 0x6, &(0x7f0000000340)="c1f6e4dbd143b8d8fabba2b487c81f57b3e3b02c9b8de6b92f372d1531b146f67aa7f9d5a3411f7bb84f76778de097e0b2215c61c0aea7b7569844749d815f6a658f36ac518a82c44857c10c7807e5d59a96f10ca87ef65702ca4945b2beb8d80fb130f184faccef8b27c1a75353758b922d17f79c24578d6340399b8cdb75c1c131f6fce87824a3baa263545bf7f8d25326af94a39090efc6a8cf", 0x9b, 0x1a, 0x1, {0x0, r5}})
r6 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r7, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$tipc(r4, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x2}}, 0x10, 0x0}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r4, 0x10f, 0x88)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bond0\x00'})
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x30, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x10000017}, 0x0)

1.281025351s ago: executing program 4 (id=1646):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000005b80)={@empty, 0x33, r1})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x6, &(0x7f00000009c0))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000001340)=@framed={{0xbe, 0xa, 0xa, 0x0, 0x0, 0x79, 0x10, 0x18}}, &(0x7f0000000480)='syzkaller\x00'}, 0x94)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x3938700}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600c0a3500280600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="a00200009000001312c855727ba6095218cb330344f749df1c0000"], 0x0)
prctl$PR_SET_SECCOMP(0x3d, 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = io_uring_setup(0x4d3f, &(0x7f0000000240)={0x0, 0xca6a, 0x40, 0x1, 0x6})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r3, 0xb, &(0x7f0000000500), 0x66)

1.026372005s ago: executing program 0 (id=1647):
r0 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
unshare(0x80)
write$binfmt_misc(r0, &(0x7f0000000180)="e502", 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0, 0x6}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
openat$snapshot(0xffffffffffffff9c, 0x0, 0x200, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000020000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kfree\x00', r4, 0x0, 0x9}, 0x18)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

1.004876755s ago: executing program 4 (id=1648):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_netdev_private(r0, 0x8914, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, 0x0, 0x0)
accept(r2, 0x0, 0x0)

952.941306ms ago: executing program 0 (id=1649):
r0 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
unshare(0x80)
write$binfmt_misc(r0, &(0x7f0000000180)="e502", 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0, 0x6}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x7}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000020000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x5, &(0x7f00000001c0)=0x5, 0x7e, 0x2)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

891.782457ms ago: executing program 0 (id=1650):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
getpgid(0xffffffffffffffff)

869.322147ms ago: executing program 0 (id=1651):
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet(0x2, 0x5, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x41}}, 0x42)

768.407859ms ago: executing program 2 (id=1652):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0}, &(0x7f00000002c0), &(0x7f0000000500)='%pK    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

733.598389ms ago: executing program 2 (id=1653):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
lseek(0xffffffffffffffff, 0x2000, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xfffff000)

716.75778ms ago: executing program 2 (id=1654):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b000085"], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x200000001, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x111, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f00000001c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f00000000c0)=0x1, r2, 0x0, 0x2, 0x4}}, 0x20)

654.93027ms ago: executing program 2 (id=1655):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
syz_emit_ethernet(0x3e, &(0x7f00000004c0)=ANY=[@ANYBLOB="ffffffffffffffebfffffdff86dd60000010815d71782b690fa5af3da35cd86dd40008"], 0x0)

654.560201ms ago: executing program 2 (id=1656):
io_uring_setup(0x560e, &(0x7f0000000a40)={0x0, 0xb589, 0x800, 0xfffffffe, 0x3bd})
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={0xffffffffffffffff, &(0x7f00000000c0)="7f91916d219a563c1701b1d32353a5f4c947fb808b3c900125835e555a95a2a0b9a350b6127f143edb617e80c85d3449a7e4bab4603edfb9bea708be499b90b43c246acfdda688b7dcc761b65dc820e5cd1a57b5d3522556eccb8503d69a673d605542cbe66c1b3d5b83946d0f33c4991728a24b194d20a6cd7a3573b46b5cfe8774e4e511e22be947a126edffda02c2702a0861a691a0e3c5f357d74e96809191854ffef7b494", &(0x7f0000000180)=""/36}, 0x20)

654.029861ms ago: executing program 2 (id=1657):
r0 = socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000bc0)=ANY=[@ANYRES32=r0, @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000c9e2a84ab70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000640)={r3, r1}, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3ffffffffffff14, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000050000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='sched_switch\x00', r7, 0x0, 0x5}, 0x18)
r8 = gettid()
rt_sigqueueinfo(r8, 0x11, &(0x7f00000004c0)={0x1c, 0x8, 0x5})
waitid(0x2, 0x0, &(0x7f0000000380), 0x20000000, &(0x7f0000000b00))
lchown(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f0000000040), 0x208e24b)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r10, 0x400454c9, 0x1)

555.631882ms ago: executing program 5 (id=1658):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1700000000000000040000"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket$key(0xf, 0x3, 0x2)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_WRITE={0x17, 0x40, 0x4004, @fd=r4, 0x6, &(0x7f0000000340)="c1f6e4dbd143b8d8fabba2b487c81f57b3e3b02c9b8de6b92f372d1531b146f67aa7f9d5a3411f7bb84f76778de097e0b2215c61c0aea7b7569844749d815f6a658f36ac518a82c44857c10c7807e5d59a96f10ca87ef65702ca4945b2beb8d80fb130f184faccef8b27c1a75353758b922d17f79c24578d6340399b8cdb75c1c131f6fce87824a3baa263545bf7f8d25326af94a39090efc6a8cf", 0x9b, 0x1a, 0x1, {0x0, r5}})
r6 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r7, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$tipc(r4, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x2}}, 0x10, 0x0}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r4, 0x10f, 0x88)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bond0\x00'})
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x30, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x10000017}, 0x0)

470.550033ms ago: executing program 5 (id=1659):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000005b80)={@empty, 0x33, r1})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x6, &(0x7f00000009c0))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000001340)=@framed={{0xbe, 0xa, 0xa, 0x0, 0x0, 0x79, 0x10, 0x18}}, &(0x7f0000000480)='syzkaller\x00'}, 0x94)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x3938700}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600c0a3500280600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="a00200009000001312c855727ba6095218cb330344f749df1c0000"], 0x0)
prctl$PR_SET_SECCOMP(0x3d, 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = io_uring_setup(0x4d3f, &(0x7f0000000240)={0x0, 0xca6a, 0x40, 0x1, 0x6})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r3, 0xb, &(0x7f0000000500), 0x66)

388.493555ms ago: executing program 5 (id=1661):
r0 = socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000bc0)=ANY=[@ANYRES32=r0, @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000c9e2a84ab70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000640)={r3, r1}, 0xc)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3ffffffffffff14, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='sched_switch\x00', r6, 0x0, 0x5}, 0x18)
r7 = gettid()
rt_sigqueueinfo(r7, 0x11, &(0x7f00000004c0)={0x1c, 0x8, 0x5})
waitid(0x2, 0x0, &(0x7f0000000380), 0x20000000, &(0x7f0000000b00))
lchown(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000040), 0x208e24b)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r9, 0x400454c9, 0x1)

347.185945ms ago: executing program 1 (id=1662):
r0 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
unshare(0x80)
write$binfmt_misc(r0, &(0x7f0000000180)="e502", 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0, 0x6}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x7}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000020000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x5, &(0x7f00000001c0)=0x5, 0x7e, 0x2)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

282.607996ms ago: executing program 1 (id=1663):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000", @ANYRES32=r0], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
getpgid(0xffffffffffffffff)

264.207136ms ago: executing program 1 (id=1664):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0}, &(0x7f00000002c0), &(0x7f0000000500)='%pK    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

248.633536ms ago: executing program 1 (id=1665):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
lseek(0xffffffffffffffff, 0x2000, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xfffff000)

232.334497ms ago: executing program 1 (id=1666):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d00000085"], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x200000001, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x111, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f00000001c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f00000000c0)=0x1, r2, 0x0, 0x2, 0x4}}, 0x20)

178.745677ms ago: executing program 1 (id=1667):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x189002, 0x181)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vxcan1\x00'})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1}, './bus\x00'})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000001214010002000000fcdbdf2508004b002c000000080001000000000008004f00000000000800150004000000080003"], 0x38}}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r6}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x13, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES32=r4, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffd79)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r8, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRES32=r6, @ANYRES64=0x0], 0x50)
sendfile(r3, r2, 0x0, 0x7ffff000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='xprtrdma_reply\x00', r5}, 0x18)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x6}, 0x20, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000100)=ANY=[@ANYRESOCT], 0x2000, 0x0)

150.946748ms ago: executing program 4 (id=1668):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
syz_emit_ethernet(0x3e, &(0x7f00000004c0)=ANY=[@ANYBLOB="ffffffffffffffebfffffdff86dd60000010815d71782b690fa5af3da35cd86dd400083c0020010000010000000000000000091eca"], 0x0)

136.618958ms ago: executing program 4 (id=1669):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1700000000000000040000"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket$key(0xf, 0x3, 0x2)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_WRITE={0x17, 0x40, 0x4004, @fd=r4, 0x6, &(0x7f0000000340)="c1f6e4dbd143b8d8fabba2b487c81f57b3e3b02c9b8de6b92f372d1531b146f67aa7f9d5a3411f7bb84f76778de097e0b2215c61c0aea7b7569844749d815f6a658f36ac518a82c44857c10c7807e5d59a96f10ca87ef65702ca4945b2beb8d80fb130f184faccef8b27c1a75353758b922d17f79c24578d6340399b8cdb75c1c131f6fce87824a3baa263545bf7f8d25326af94a39090efc6a8cf", 0x9b, 0x1a, 0x1, {0x0, r5}})
r6 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r7, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$tipc(r4, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x2}}, 0x10, 0x0}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r4, 0x10f, 0x88)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bond0\x00'})
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x30, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x10000017}, 0x0)

37.93178ms ago: executing program 4 (id=1670):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x189002, 0x181)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vxcan1\x00'})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1}, './bus\x00'})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000001214010002000000fcdbdf2508004b002c000000080001000000000008004f00000000000800150004000000080003"], 0x38}}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r6}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x13, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES32=r4, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffd79)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r8, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRES32=r6, @ANYRES64=0x0], 0x50)
sendfile(r3, r2, 0x0, 0x7ffff000)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x6}, 0x20, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000100)=ANY=[@ANYRESOCT], 0x2000, 0x0)

0s ago: executing program 0 (id=1671):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000640)={r1, r0}, 0xc)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3ffffffffffff14, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000050000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='sched_switch\x00', r5, 0x0, 0x5}, 0x18)
r6 = gettid()
rt_sigqueueinfo(r6, 0x11, &(0x7f00000004c0)={0x1c, 0x8, 0x5})
waitid(0x2, 0x0, &(0x7f0000000380), 0x20000000, &(0x7f0000000b00))
lchown(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x4fa, &(0x7f00000005c0)="$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")
openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000040), 0x208e24b)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r8, 0x400454c9, 0x1)

kernel console output (not intermixed with test programs):

rsing attributes in process `syz.0.91'.
[   34.678492][ T3797] dummy0: entered promiscuous mode
[   34.688496][ T3797] bridge0: port 1(dummy0) entered blocking state
[   34.695004][ T3797] bridge0: port 1(dummy0) entered disabled state
[   34.714374][ T3797] dummy0: entered allmulticast mode
[   34.837897][    C1] hrtimer: interrupt took 24039 ns
[   34.866356][ T3812] mmap: syz.1.96 (3812) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   34.878570][ T3802] loop2: detected capacity change from 0 to 512
[   34.894488][ T3808] loop1: detected capacity change from 0 to 1024
[   34.902158][ T3802] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   34.911435][ T3808] =======================================================
[   34.911435][ T3808] WARNING: The mand mount option has been deprecated and
[   34.911435][ T3808]          and is ignored by this kernel. Remove the mand
[   34.911435][ T3808]          option from the mount to silence this warning.
[   34.911435][ T3808] =======================================================
[   34.987904][ T3808] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   34.998390][ T3808] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   35.016913][ T3802] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.020208][ T3808] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e01c, mo2=0000]
[   35.031205][ T3802] ext4 filesystem being mounted at /19/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   35.053763][ T3808] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.96: lblock 2 mapped to illegal pblock 2 (length 1)
[   35.163691][ T3808] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 48: comm syz.1.96: lblock 0 mapped to illegal pblock 48 (length 1)
[   35.179944][ T3808] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.96: Failed to acquire dquot type 0
[   35.191776][ T3808] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   35.201613][ T3808] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.96: mark_inode_dirty error
[   35.214289][ T3808] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   35.224977][ T3808] EXT4-fs (loop1): 1 orphan inode deleted
[   35.231478][ T3808] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.244284][  T402] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   35.260335][  T402] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[   35.273408][ T3808] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.284233][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.307435][ T3808] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.96: Invalid inode table block 1 in block_group 0
[   35.320103][ T3808] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   35.329935][ T3808] EXT4-fs error (device loop1): ext4_quota_off:7217: inode #3: comm syz.1.96: mark_inode_dirty error
[   35.666647][ T3828] loop4: detected capacity change from 0 to 512
[   35.696176][ T3828] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.720356][ T3830] netlink: 4 bytes leftover after parsing attributes in process `syz.0.102'.
[   35.744083][ T3828] ext4 filesystem being mounted at /19/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   35.773568][ T3833] pim6reg1: entered promiscuous mode
[   35.778912][ T3833] pim6reg1: entered allmulticast mode
[   35.925655][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.946717][ T3837] loop0: detected capacity change from 0 to 512
[   35.972663][ T3837] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.104: bg 0: block 248: padding at end of block bitmap is not set
[   35.998388][ T3837] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.104: Failed to acquire dquot type 1
[   36.021213][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.040747][ T3845] netlink: 'syz.4.108': attribute type 10 has an invalid length.
[   36.048512][ T3845] netlink: 40 bytes leftover after parsing attributes in process `syz.4.108'.
[   36.059504][ T3837] EXT4-fs (loop0): 1 truncate cleaned up
[   36.065631][ T3837] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.086972][ T3845] dummy0: entered promiscuous mode
[   36.110773][ T3837] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   36.121920][ T3845] bridge0: port 1(dummy0) entered blocking state
[   36.128272][ T3845] bridge0: port 1(dummy0) entered disabled state
[   36.150462][ T3845] dummy0: entered allmulticast mode
[   36.174517][ T3845] bridge0: port 1(dummy0) entered blocking state
[   36.180942][ T3845] bridge0: port 1(dummy0) entered forwarding state
[   36.195775][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.241932][ T3858] Cannot find add_set index 0 as target
[   36.384787][ T3877] loop0: detected capacity change from 0 to 512
[   36.403779][ T3877] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.428989][ T3877] ext4 filesystem being mounted at /29/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   36.503292][ T3885] FAULT_INJECTION: forcing a failure.
[   36.503292][ T3885] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   36.516428][ T3885] CPU: 0 UID: 0 PID: 3885 Comm: syz.4.122 Not tainted 6.16.0-rc6-syzkaller-00037-ge2291551827f #0 PREEMPT(voluntary) 
[   36.516514][ T3885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   36.516527][ T3885] Call Trace:
[   36.516534][ T3885]  <TASK>
[   36.516542][ T3885]  __dump_stack+0x1d/0x30
[   36.516564][ T3885]  dump_stack_lvl+0xe8/0x140
[   36.516584][ T3885]  dump_stack+0x15/0x1b
[   36.516637][ T3885]  should_fail_ex+0x265/0x280
[   36.516663][ T3885]  should_fail+0xb/0x20
[   36.516689][ T3885]  should_fail_usercopy+0x1a/0x20
[   36.516773][ T3885]  strncpy_from_user+0x25/0x230
[   36.516797][ T3885]  ? kmem_cache_alloc_noprof+0x186/0x310
[   36.516819][ T3885]  ? getname_flags+0x80/0x3b0
[   36.516837][ T3885]  getname_flags+0xae/0x3b0
[   36.516855][ T3885]  do_sys_openat2+0x60/0x110
[   36.516931][ T3885]  __x64_sys_openat+0xf2/0x120
[   36.516958][ T3885]  x64_sys_call+0x1af/0x2fb0
[   36.516981][ T3885]  do_syscall_64+0xd2/0x200
[   36.517047][ T3885]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   36.517085][ T3885]  ? clear_bhb_loop+0x40/0x90
[   36.517108][ T3885]  ? clear_bhb_loop+0x40/0x90
[   36.517130][ T3885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   36.517153][ T3885] RIP: 0033:0x7fc17dfbd290
[   36.517252][ T3885] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   36.517314][ T3885] RSP: 002b:00007fc17c61eb70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   36.517331][ T3885] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc17dfbd290
[   36.517344][ T3885] RDX: 0000000000000000 RSI: 00007fc17c61ec10 RDI: 00000000ffffff9c
[   36.517356][ T3885] RBP: 00007fc17c61ec10 R08: 0000000000000000 R09: 0000000000000000
[   36.517369][ T3885] R10: 0000000000000000 R11: 0000000000000293 R12: cccccccccccccccd
[   36.517381][ T3885] R13: 0000000000000001 R14: 00007fc17e1e5fa0 R15: 00007ffd71f7a778
[   36.517400][ T3885]  </TASK>
[   36.754671][ T3889] netlink: 'syz.4.124': attribute type 10 has an invalid length.
[   36.762571][ T3889] netlink: 40 bytes leftover after parsing attributes in process `syz.4.124'.
[   36.816920][ T3895] xt_CT: You must specify a L4 protocol and not use inversions on it
[   37.211930][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.237600][ T3908] loop2: detected capacity change from 0 to 512
[   37.245536][ T3908] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   37.258621][ T3908] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   37.362273][ T3908] EXT4-fs (loop2): 1 truncate cleaned up
[   37.369973][ T3908] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   37.402837][ T3921] netlink: 'syz.3.136': attribute type 10 has an invalid length.
[   37.410730][ T3921] netlink: 40 bytes leftover after parsing attributes in process `syz.3.136'.
[   37.419816][ T3921] dummy0: entered promiscuous mode
[   37.490224][ T3921] bridge0: port 3(dummy0) entered blocking state
[   37.496650][ T3921] bridge0: port 3(dummy0) entered disabled state
[   37.505746][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.528200][ T3921] dummy0: entered allmulticast mode
[   37.573859][ T3921] bridge0: port 3(dummy0) entered blocking state
[   37.580326][ T3921] bridge0: port 3(dummy0) entered forwarding state
[   37.955336][   T29] kauditd_printk_skb: 364 callbacks suppressed
[   37.955349][   T29] audit: type=1326 audit(1752774359.448:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   37.989561][   T29] audit: type=1326 audit(1752774359.448:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   38.012923][   T29] audit: type=1326 audit(1752774359.448:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   38.036151][   T29] audit: type=1326 audit(1752774359.448:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   38.059410][   T29] audit: type=1326 audit(1752774359.448:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   38.082746][   T29] audit: type=1326 audit(1752774359.448:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   38.105999][   T29] audit: type=1326 audit(1752774359.458:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   38.129220][   T29] audit: type=1326 audit(1752774359.458:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   38.152434][   T29] audit: type=1326 audit(1752774359.458:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   38.162202][ T3942] loop3: detected capacity change from 0 to 512
[   38.175675][   T29] audit: type=1326 audit(1752774359.458:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3936 comm="syz.4.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   38.275516][ T3942] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.303796][ T3942] ext4 filesystem being mounted at /29/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   38.477185][ T3960] netlink: 'syz.1.150': attribute type 10 has an invalid length.
[   38.485061][ T3960] netlink: 40 bytes leftover after parsing attributes in process `syz.1.150'.
[   38.519636][ T3960] dummy0: entered promiscuous mode
[   38.525411][ T3960] bridge0: port 1(dummy0) entered blocking state
[   38.531802][ T3960] bridge0: port 1(dummy0) entered disabled state
[   38.541731][ T3960] dummy0: entered allmulticast mode
[   38.549605][ T3960] bridge0: port 1(dummy0) entered blocking state
[   38.555987][ T3960] bridge0: port 1(dummy0) entered forwarding state
[   38.594693][ T3970] loop1: detected capacity change from 0 to 512
[   38.609885][ T3970] EXT4-fs: Ignoring removed nobh option
[   38.616972][ T3970] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.154: iget: bad i_size value: 38620345925642
[   38.639727][ T3970] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.154: couldn't read orphan inode 15 (err -117)
[   38.652953][ T3970] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.654126][ T3977] netlink: 4 bytes leftover after parsing attributes in process `syz.2.156'.
[   38.682841][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.754305][ T3982] loop4: detected capacity change from 0 to 1024
[   38.786264][ T3982] EXT4-fs: Ignoring removed bh option
[   38.813572][ T3982] EXT4-fs: Ignoring removed nobh option
[   38.847641][ T3982] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.891827][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.902530][ T3982] EXT4-fs warning (device loop4): ext4_resize_begin:72: won't resize using backup superblock at 1
[   38.923268][ T3997] loop3: detected capacity change from 0 to 128
[   38.933756][ T3998] netlink: 4 bytes leftover after parsing attributes in process `syz.4.158'.
[   39.021175][ T4003] netlink: 'syz.2.165': attribute type 10 has an invalid length.
[   39.048039][ T4003] dummy0: entered promiscuous mode
[   39.071763][ T4003] bridge0: port 1(dummy0) entered blocking state
[   39.078264][ T4003] bridge0: port 1(dummy0) entered disabled state
[   39.159831][ T4003] dummy0: entered allmulticast mode
[   39.166082][ T4003] bridge0: port 1(dummy0) entered blocking state
[   39.172556][ T4003] bridge0: port 1(dummy0) entered forwarding state
[   39.290926][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.302994][ T4012] loop3: detected capacity change from 0 to 128
[   39.433086][ T4022] loop4: detected capacity change from 0 to 512
[   39.452398][ T4022] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.481019][ T4022] ext4 filesystem being mounted at /41/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.781210][ T4028] __nla_validate_parse: 1 callbacks suppressed
[   39.781224][ T4028] netlink: 80 bytes leftover after parsing attributes in process `syz.1.173'.
[   39.819911][ T4028] netlink: 8 bytes leftover after parsing attributes in process `syz.1.173'.
[   39.968182][ T4032] dummy0: left allmulticast mode
[   39.973414][ T4032] bridge0: port 1(dummy0) entered disabled state
[   40.181478][ T4047] sit0: entered promiscuous mode
[   40.195338][ T4047] netlink: 'syz.3.182': attribute type 1 has an invalid length.
[   40.203102][ T4047] netlink: 1 bytes leftover after parsing attributes in process `syz.3.182'.
[   40.231054][ T4056] netlink: 'syz.1.185': attribute type 10 has an invalid length.
[   40.238842][ T4056] netlink: 40 bytes leftover after parsing attributes in process `syz.1.185'.
[   40.248215][ T4056] bridge0: port 1(dummy0) entered blocking state
[   40.254687][ T4056] bridge0: port 1(dummy0) entered disabled state
[   40.261337][ T4056] dummy0: entered allmulticast mode
[   40.269632][ T4056] bridge0: port 1(dummy0) entered blocking state
[   40.276021][ T4056] bridge0: port 1(dummy0) entered forwarding state
[   40.290290][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.363909][ T4069] loop1: detected capacity change from 0 to 512
[   40.382473][ T4068] dummy0: left allmulticast mode
[   40.387960][ T4068] bridge0: port 1(dummy0) entered disabled state
[   40.393173][ T4069] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.407078][ T4069] ext4 filesystem being mounted at /35/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   40.996430][ T4106] dummy0: left allmulticast mode
[   41.001482][ T4106] bridge0: port 3(dummy0) entered disabled state
[   41.013220][ T4106] bridge_slave_0: left allmulticast mode
[   41.018933][ T4106] bridge_slave_0: left promiscuous mode
[   41.024663][ T4106] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.034949][ T4106] bridge_slave_1: left allmulticast mode
[   41.040665][ T4106] bridge_slave_1: left promiscuous mode
[   41.046378][ T4106] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.056836][ T4106] bond0: (slave bond_slave_0): Releasing backup interface
[   41.068886][ T4106] bond0: (slave bond_slave_1): Releasing backup interface
[   41.082501][ T4106] team0: Port device team_slave_0 removed
[   41.092044][ T4106] team0: Port device team_slave_1 removed
[   41.098892][ T4106] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   41.106545][ T4106] batman_adv: batadv0: Removing interface: batadv_slave_0
[   41.115603][ T4106] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   41.123107][ T4106] batman_adv: batadv0: Removing interface: batadv_slave_1
[   41.207819][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.489879][ T4157] loop1: detected capacity change from 0 to 512
[   41.514787][ T4157] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.528415][ T4157] ext4 filesystem being mounted at /42/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   41.615619][ T4177] Zero length message leads to an empty skb
[   42.056886][ T4216] dummy0: left allmulticast mode
[   42.062006][ T4216] bridge0: port 1(dummy0) entered disabled state
[   42.298600][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.356918][ T4246] dummy0: left allmulticast mode
[   42.362262][ T4246] bridge0: port 1(dummy0) entered disabled state
[   42.852550][ T4275] loop4: detected capacity change from 0 to 512
[   42.871291][ T4275] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.883834][ T4275] ext4 filesystem being mounted at /69/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   43.061069][ T4280] dummy0: left allmulticast mode
[   43.066291][ T4280] bridge0: port 1(dummy0) entered disabled state
[   43.100660][   T29] kauditd_printk_skb: 207 callbacks suppressed
[   43.100674][   T29] audit: type=1326 audit(1752774364.598:1071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.130385][   T29] audit: type=1326 audit(1752774364.598:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.155491][   T29] audit: type=1326 audit(1752774364.598:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.179052][   T29] audit: type=1326 audit(1752774364.598:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.202476][   T29] audit: type=1326 audit(1752774364.598:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.226182][   T29] audit: type=1326 audit(1752774364.598:1076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.250169][   T29] audit: type=1326 audit(1752774364.598:1077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.273637][   T29] audit: type=1326 audit(1752774364.598:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.297003][   T29] audit: type=1326 audit(1752774364.598:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.320305][   T29] audit: type=1326 audit(1752774364.598:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4289 comm="syz.3.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb245a5e929 code=0x7ffc0000
[   43.669067][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.016044][ T4378] loop0: detected capacity change from 0 to 512
[   44.032249][ T4378] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.044880][ T4378] ext4 filesystem being mounted at /37/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   44.853874][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.163223][ T4520] loop3: detected capacity change from 0 to 512
[   45.185633][ T4520] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.201219][ T4520] ext4 filesystem being mounted at /68/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   46.013548][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.313989][ T4661] loop3: detected capacity change from 0 to 512
[   46.332387][ T4661] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.345392][ T4661] ext4 filesystem being mounted at /78/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   47.162469][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.399813][ T4771] loop1: detected capacity change from 0 to 512
[   47.411522][ T4771] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.425344][ T4771] ext4 filesystem being mounted at /101/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   48.218020][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.309376][   T29] kauditd_printk_skb: 370 callbacks suppressed
[   48.309389][   T29] audit: type=1326 audit(1752774369.798:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.342227][   T29] audit: type=1326 audit(1752774369.798:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.365669][   T29] audit: type=1326 audit(1752774369.798:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.389042][   T29] audit: type=1326 audit(1752774369.798:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.412416][   T29] audit: type=1326 audit(1752774369.798:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.435850][   T29] audit: type=1326 audit(1752774369.798:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.459217][   T29] audit: type=1326 audit(1752774369.798:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.482531][   T29] audit: type=1326 audit(1752774369.798:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.506104][   T29] audit: type=1326 audit(1752774369.798:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.529432][   T29] audit: type=1326 audit(1752774369.798:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4838 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   48.640353][ T4864] loop3: detected capacity change from 0 to 512
[   48.651905][ T4864] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.664837][ T4864] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   49.507150][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.698733][ T5033] loop3: detected capacity change from 0 to 512
[   49.724404][ T5033] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.737258][ T5033] ext4 filesystem being mounted at /101/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   49.877390][ T5066] netlink: 71 bytes leftover after parsing attributes in process `syz.0.596'.
[   49.916040][ T5074] loop0: detected capacity change from 0 to 128
[   50.225547][ T5121] loop0: detected capacity change from 0 to 512
[   50.232794][ T5121] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   50.252381][ T5121] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.265074][ T5121] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.290412][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.301225][ T5129] netlink: 8 bytes leftover after parsing attributes in process `syz.4.621'.
[   50.513201][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.591908][ T5192] loop1: detected capacity change from 0 to 1024
[   50.599065][ T5192] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   50.611515][ T5192] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #11: comm syz.1.648: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   50.638309][ T5192] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.648: couldn't read orphan inode 11 (err -117)
[   50.651522][ T5192] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.675923][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.728890][ T5212] loop4: detected capacity change from 0 to 512
[   50.743624][ T5212] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.758300][ T5212] ext4 filesystem being mounted at /196/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   50.901841][ T5245] FAULT_INJECTION: forcing a failure.
[   50.901841][ T5245] name failslab, interval 1, probability 0, space 0, times 1
[   50.914563][ T5245] CPU: 0 UID: 0 PID: 5245 Comm: syz.1.668 Not tainted 6.16.0-rc6-syzkaller-00037-ge2291551827f #0 PREEMPT(voluntary) 
[   50.914653][ T5245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   50.914664][ T5245] Call Trace:
[   50.914671][ T5245]  <TASK>
[   50.914679][ T5245]  __dump_stack+0x1d/0x30
[   50.914699][ T5245]  dump_stack_lvl+0xe8/0x140
[   50.914749][ T5245]  dump_stack+0x15/0x1b
[   50.914766][ T5245]  should_fail_ex+0x265/0x280
[   50.914793][ T5245]  ? __se_sys_mount+0xef/0x2e0
[   50.914823][ T5245]  should_failslab+0x8c/0xb0
[   50.914906][ T5245]  __kmalloc_cache_noprof+0x4c/0x320
[   50.914934][ T5245]  ? memdup_user+0x99/0xd0
[   50.914958][ T5245]  __se_sys_mount+0xef/0x2e0
[   50.915050][ T5245]  ? fput+0x8f/0xc0
[   50.915072][ T5245]  ? ksys_write+0x192/0x1a0
[   50.915098][ T5245]  __x64_sys_mount+0x67/0x80
[   50.915126][ T5245]  x64_sys_call+0xd36/0x2fb0
[   50.915204][ T5245]  do_syscall_64+0xd2/0x200
[   50.915223][ T5245]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.915260][ T5245]  ? clear_bhb_loop+0x40/0x90
[   50.915278][ T5245]  ? clear_bhb_loop+0x40/0x90
[   50.915315][ T5245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.915338][ T5245] RIP: 0033:0x7fac1a02e929
[   50.915352][ T5245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.915367][ T5245] RSP: 002b:00007fac18697038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   50.915383][ T5245] RAX: ffffffffffffffda RBX: 00007fac1a255fa0 RCX: 00007fac1a02e929
[   50.915395][ T5245] RDX: 0000200000000100 RSI: 0000200000000280 RDI: 0000000000000000
[   50.915448][ T5245] RBP: 00007fac18697090 R08: 0000200000000140 R09: 0000000000000000
[   50.915505][ T5245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.915518][ T5245] R13: 0000000000000000 R14: 00007fac1a255fa0 R15: 00007ffcf8412f08
[   50.915559][ T5245]  </TASK>
[   51.307211][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2568 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.319836][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2578 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.332513][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.345175][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2572 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.357768][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2582 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.370382][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.382964][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.395531][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.408138][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.420667][ T5280] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2580 sclass=netlink_route_socket pid=5280 comm=syz.1.680
[   51.557323][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.613614][ T5321] can0: slcan on ttyS3.
[   51.659863][ T5321] can0 (unregistered): slcan off ttyS3.
[   51.777195][ T5344] loop2: detected capacity change from 0 to 512
[   51.792478][ T5344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.806633][ T5344] ext4 filesystem being mounted at /128/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   52.318849][ T5393] loop1: detected capacity change from 0 to 512
[   52.325970][ T5393] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   52.341225][ T5393] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.354035][ T5393] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.424245][ T5400] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   52.476828][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.608938][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.804215][ T5464] loop3: detected capacity change from 0 to 512
[   52.811252][ T5464] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   52.822373][ T5464] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   52.835721][ T5464] EXT4-fs (loop3): 1 truncate cleaned up
[   52.841576][ T5466] loop4: detected capacity change from 0 to 512
[   52.842967][ T5464] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.871236][ T5466] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.884940][ T5466] ext4 filesystem being mounted at /210/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   52.941241][ T3311] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /131/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   52.964699][ T3311] EXT4-fs error (device loop3): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   52.985081][ T3311] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /131/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   53.006858][ T3311] EXT4-fs error (device loop3): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   53.028216][ T3311] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /131/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   53.051456][ T3311] EXT4-fs error (device loop3): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   53.071885][ T3311] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /131/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   53.094078][ T3311] EXT4-fs error (device loop3): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   53.114303][ T3311] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /131/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   53.136503][ T3311] EXT4-fs error (device loop3): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   53.337906][   T29] kauditd_printk_skb: 544 callbacks suppressed
[   53.337919][   T29] audit: type=1326 audit(1752774374.828:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.367559][   T29] audit: type=1326 audit(1752774374.828:2006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.390961][   T29] audit: type=1326 audit(1752774374.828:2007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.414331][   T29] audit: type=1326 audit(1752774374.828:2008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.437728][   T29] audit: type=1326 audit(1752774374.828:2009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.461149][   T29] audit: type=1326 audit(1752774374.828:2010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.484525][   T29] audit: type=1326 audit(1752774374.838:2011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.507977][   T29] audit: type=1326 audit(1752774374.838:2012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.531274][   T29] audit: type=1326 audit(1752774374.838:2013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.554607][   T29] audit: type=1326 audit(1752774374.838:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   53.621479][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.640081][  T402] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.655347][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.732333][  T402] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.812333][  T402] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.837635][ T5519] lo speed is unknown, defaulting to 1000
[   53.850729][ T5536] loop4: detected capacity change from 0 to 512
[   53.861951][ T5536] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[   53.872576][ T5536] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.786: invalid indirect mapped block 2683928664 (level 1)
[   53.887774][ T5536] EXT4-fs (loop4): Remounting filesystem read-only
[   53.894760][ T5536] EXT4-fs (loop4): 1 truncate cleaned up
[   53.900925][ T5536] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.914115][  T402] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.947927][ T5519] chnl_net:caif_netlink_parms(): no params data found
[   53.956138][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.998189][ T5519] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.005434][ T5519] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.012719][ T5519] bridge_slave_0: entered allmulticast mode
[   54.019378][ T5519] bridge_slave_0: entered promiscuous mode
[   54.029323][ T5519] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.036430][ T5519] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.043788][ T5556] loop4: detected capacity change from 0 to 512
[   54.043788][ T5519] bridge_slave_1: entered allmulticast mode
[   54.056743][ T5519] bridge_slave_1: entered promiscuous mode
[   54.071509][ T5556] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.084371][ T5556] ext4 filesystem being mounted at /216/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   54.181328][  T402] bond0 (unregistering): Released all slaves
[   54.226028][ T5519] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.237790][  T402] hsr_slave_0: left promiscuous mode
[   54.245255][  T402] hsr_slave_1: left promiscuous mode
[   54.253834][  T402] veth1_macvtap: left promiscuous mode
[   54.259463][  T402] veth0_macvtap: left promiscuous mode
[   54.266882][  T402] veth1_vlan: left promiscuous mode
[   54.272398][  T402] veth0_vlan: left promiscuous mode
[   54.365143][ T5581] netlink: 14 bytes leftover after parsing attributes in process `syz.2.796'.
[   54.383093][ T5519] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.416436][ T5581] bond0 (unregistering): Released all slaves
[   54.458638][ T5519] team0: Port device team_slave_0 added
[   54.465583][ T5519] team0: Port device team_slave_1 added
[   54.480215][ T5519] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.487185][ T5519] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.513155][ T5519] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.524356][ T5519] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.531354][ T5519] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.557398][ T5519] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.594843][ T5519] hsr_slave_0: entered promiscuous mode
[   54.600991][ T5519] hsr_slave_1: entered promiscuous mode
[   54.684822][ T5519] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   54.694139][ T5519] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   54.703830][ T5519] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   54.751484][ T5519] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   54.785685][ T5519] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.794337][ T5623] netlink: 'syz.2.814': attribute type 10 has an invalid length.
[   54.796756][ T5519] 8021q: adding VLAN 0 to HW filter on device team0
[   54.812219][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.819248][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.832078][  T402] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.839181][  T402] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.856058][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.925655][ T5629] netlink: 8 bytes leftover after parsing attributes in process `syz.4.815'.
[   54.933621][ T5519] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.070695][ T5519] veth0_vlan: entered promiscuous mode
[   55.078762][ T5519] veth1_vlan: entered promiscuous mode
[   55.112534][ T5519] veth0_macvtap: entered promiscuous mode
[   55.126791][ T5519] veth1_macvtap: entered promiscuous mode
[   55.162581][ T5519] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.175295][ T5519] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.186083][ T5519] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.194912][ T5519] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.203760][ T5519] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.212704][ T5519] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.313072][ T5673] 9p: Unknown access argument �: -22
[   55.361843][ T5673] loop1: detected capacity change from 0 to 512
[   55.369229][ T5676] loop5: detected capacity change from 0 to 512
[   55.376890][ T5673] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   55.386077][ T5673] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   55.401666][ T5673] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[   55.411601][ T5673] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   55.412187][ T5676] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.420232][ T5673] System zones: 0-2, 18-18, 34-34
[   55.437729][ T5673] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.826: couldn't read orphan inode 15 (err -116)
[   55.457088][ T5673] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.496654][ T5676] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   55.508957][ T5673] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.826: bg 0: block 80: padding at end of block bitmap is not set
[   55.622063][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.749236][ T5709] netlink: 8 bytes leftover after parsing attributes in process `syz.4.837'.
[   55.845474][ T5723] netlink: 132 bytes leftover after parsing attributes in process `syz.4.844'.
[   55.912887][ T5730] random: crng reseeded on system resumption
[   56.023705][ T5741] pim6reg1: entered promiscuous mode
[   56.032389][ T5741] FAULT_INJECTION: forcing a failure.
[   56.032389][ T5741] name failslab, interval 1, probability 0, space 0, times 0
[   56.045208][ T5741] CPU: 1 UID: 0 PID: 5741 Comm: syz.2.851 Not tainted 6.16.0-rc6-syzkaller-00037-ge2291551827f #0 PREEMPT(voluntary) 
[   56.045235][ T5741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.045248][ T5741] Call Trace:
[   56.045254][ T5741]  <TASK>
[   56.045262][ T5741]  __dump_stack+0x1d/0x30
[   56.045346][ T5741]  dump_stack_lvl+0xe8/0x140
[   56.045437][ T5741]  dump_stack+0x15/0x1b
[   56.045473][ T5741]  should_fail_ex+0x265/0x280
[   56.045490][ T5741]  should_failslab+0x8c/0xb0
[   56.045511][ T5741]  __kmalloc_noprof+0xa5/0x3e0
[   56.045524][ T5741]  ? security_inode_init_security+0xc5/0x330
[   56.045541][ T5741]  ? current_umask+0x2f/0x40
[   56.045592][ T5741]  security_inode_init_security+0xc5/0x330
[   56.045608][ T5741]  ? __pfx_shmem_initxattrs+0x10/0x10
[   56.045621][ T5741]  shmem_mknod+0xad/0x180
[   56.045632][ T5741]  shmem_mkdir+0x33/0x70
[   56.045703][ T5741]  vfs_mkdir+0x213/0x340
[   56.045731][ T5741]  do_mkdirat+0x132/0x3f0
[   56.045747][ T5741]  __x64_sys_mkdir+0x42/0x50
[   56.045841][ T5741]  x64_sys_call+0x2289/0x2fb0
[   56.045854][ T5741]  do_syscall_64+0xd2/0x200
[   56.045864][ T5741]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.045957][ T5741]  ? clear_bhb_loop+0x40/0x90
[   56.045969][ T5741]  ? clear_bhb_loop+0x40/0x90
[   56.045981][ T5741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.046005][ T5741] RIP: 0033:0x7f413796e929
[   56.046015][ T5741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.046025][ T5741] RSP: 002b:00007f4135fd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   56.046078][ T5741] RAX: ffffffffffffffda RBX: 00007f4137b95fa0 RCX: 00007f413796e929
[   56.046085][ T5741] RDX: 0000000000000000 RSI: 00000000000000aa RDI: 0000200000000580
[   56.046092][ T5741] RBP: 00007f4135fd7090 R08: 0000000000000000 R09: 0000000000000000
[   56.046099][ T5741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.046129][ T5741] R13: 0000000000000000 R14: 00007f4137b95fa0 R15: 00007fff1a5166e8
[   56.046139][ T5741]  </TASK>
[   56.312064][ T5519] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.332488][ T5745] loop2: detected capacity change from 0 to 512
[   56.352478][ T5745] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   56.368399][ T5745] EXT4-fs (loop2): mount failed
[   56.466883][ T5767] bridge_slave_0: left allmulticast mode
[   56.472572][ T5767] bridge_slave_0: left promiscuous mode
[   56.478210][ T5767] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.487060][ T5767] bridge_slave_1: left allmulticast mode
[   56.492791][ T5767] bridge_slave_1: left promiscuous mode
[   56.498459][ T5767] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.507902][ T5767] bond0: (slave bond_slave_0): Releasing backup interface
[   56.517790][ T5767] bond0: (slave bond_slave_1): Releasing backup interface
[   56.528837][ T5767] team0: Port device team_slave_0 removed
[   56.534226][ T5770] netlink: 24 bytes leftover after parsing attributes in process `syz.2.854'.
[   56.545479][ T5767] team0: Port device team_slave_1 removed
[   56.553373][ T5767] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   56.560860][ T5767] batman_adv: batadv0: Removing interface: batadv_slave_0
[   56.575579][ T5767] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   56.583261][ T5767] batman_adv: batadv0: Removing interface: batadv_slave_1
[   56.606192][ T5772] loop2: detected capacity change from 0 to 8192
[   56.640702][ T5772]  loop2: p1 p2 p3 p4
[   56.645052][ T5772] loop2: p1 size 65536 extends beyond EOD, truncated
[   56.667958][ T5779] loop1: detected capacity change from 0 to 512
[   56.677944][ T5772] loop2: p2 start 861536256 is beyond EOD, truncated
[   56.684787][ T5772] loop2: p3 start 51183616 is beyond EOD, truncated
[   56.691414][ T5772] loop2: p4 size 65536 extends beyond EOD, truncated
[   56.709183][ T5779] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.731208][ T5787] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   56.765175][ T5779] ext4 filesystem being mounted at /201/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.826182][ T5802] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.882588][ T5802] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.961294][ T5802] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.976885][ T5817] FAULT_INJECTION: forcing a failure.
[   56.976885][ T5817] name failslab, interval 1, probability 0, space 0, times 0
[   56.989771][ T5817] CPU: 1 UID: 0 PID: 5817 Comm: syz.4.879 Not tainted 6.16.0-rc6-syzkaller-00037-ge2291551827f #0 PREEMPT(voluntary) 
[   56.989798][ T5817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.989811][ T5817] Call Trace:
[   56.989817][ T5817]  <TASK>
[   56.989824][ T5817]  __dump_stack+0x1d/0x30
[   56.989850][ T5817]  dump_stack_lvl+0xe8/0x140
[   56.989868][ T5817]  dump_stack+0x15/0x1b
[   56.989886][ T5817]  should_fail_ex+0x265/0x280
[   56.989916][ T5817]  ? tty_open+0x81/0xaf0
[   56.989931][ T5817]  should_failslab+0x8c/0xb0
[   56.989951][ T5817]  __kmalloc_cache_noprof+0x4c/0x320
[   56.990063][ T5817]  tty_open+0x81/0xaf0
[   56.990080][ T5817]  ? kobj_lookup+0x276/0x280
[   56.990150][ T5817]  ? __pfx_exact_match+0x10/0x10
[   56.990168][ T5817]  chrdev_open+0x2e8/0x3a0
[   56.990185][ T5817]  do_dentry_open+0x649/0xa20
[   56.990205][ T5817]  ? __pfx_chrdev_open+0x10/0x10
[   56.990227][ T5817]  vfs_open+0x37/0x1e0
[   56.990278][ T5817]  dentry_open+0x4a/0x90
[   56.990301][ T5817]  ptm_open_peer+0x113/0x180
[   56.990401][ T5817]  tty_ioctl+0x3bc/0xb80
[   56.990429][ T5817]  ? __pfx_tty_ioctl+0x10/0x10
[   56.990453][ T5817]  __se_sys_ioctl+0xcb/0x140
[   56.990554][ T5817]  __x64_sys_ioctl+0x43/0x50
[   56.990582][ T5817]  x64_sys_call+0x19a8/0x2fb0
[   56.990662][ T5817]  do_syscall_64+0xd2/0x200
[   56.990680][ T5817]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.990706][ T5817]  ? clear_bhb_loop+0x40/0x90
[   56.990727][ T5817]  ? clear_bhb_loop+0x40/0x90
[   56.990742][ T5817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.990756][ T5817] RIP: 0033:0x7fc17dfbe929
[   56.990765][ T5817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.990775][ T5817] RSP: 002b:00007fc17c61f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   56.990786][ T5817] RAX: ffffffffffffffda RBX: 00007fc17e1e5fa0 RCX: 00007fc17dfbe929
[   56.990793][ T5817] RDX: 0000000000000401 RSI: 0000000000005441 RDI: 0000000000000006
[   56.990865][ T5817] RBP: 00007fc17c61f090 R08: 0000000000000000 R09: 0000000000000000
[   56.990872][ T5817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.990878][ T5817] R13: 0000000000000000 R14: 00007fc17e1e5fa0 R15: 00007ffd71f7a778
[   56.990889][ T5817]  </TASK>
[   57.254886][ T5802] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.338667][ T5802] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.362542][ T5802] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.377764][ T5802] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.389328][ T5802] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.422896][ T5848] loop2: detected capacity change from 0 to 512
[   57.429889][ T5848] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   57.442902][ T5848] EXT4-fs (loop2): 1 truncate cleaned up
[   57.448925][ T5848] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.527454][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.710302][ T5873] lo speed is unknown, defaulting to 1000
[   57.912870][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.953736][ T5892] loop1: detected capacity change from 0 to 512
[   57.971089][ T5892] ext4 filesystem being mounted at /210/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.722257][   T29] kauditd_printk_skb: 570 callbacks suppressed
[   58.722271][   T29] audit: type=1326 audit(1752774380.218:2584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   58.837219][   T29] audit: type=1326 audit(1752774380.248:2585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   58.860667][   T29] audit: type=1326 audit(1752774380.258:2586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   58.884002][   T29] audit: type=1326 audit(1752774380.258:2587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   58.907434][   T29] audit: type=1326 audit(1752774380.258:2588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   58.930969][   T29] audit: type=1326 audit(1752774380.258:2589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   58.954385][   T29] audit: type=1326 audit(1752774380.258:2590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   58.977818][   T29] audit: type=1326 audit(1752774380.258:2591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   59.001244][   T29] audit: type=1326 audit(1752774380.258:2592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   59.024576][   T29] audit: type=1326 audit(1752774380.258:2593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5911 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec271be929 code=0x7ffc0000
[   59.064604][ T5942] netlink: 8 bytes leftover after parsing attributes in process `syz.0.926'.
[   59.165969][ T5954] pim6reg1: entered promiscuous mode
[   59.175058][ T5955] loop2: detected capacity change from 0 to 512
[   59.191209][ T5955] ext4 filesystem being mounted at /174/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   59.431872][ T5984] netlink: 16 bytes leftover after parsing attributes in process `syz.5.944'.
[   59.740840][ T6003] loop1: detected capacity change from 0 to 512
[   59.748601][ T6003] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.951: casefold flag without casefold feature
[   59.761365][ T6003] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.951: couldn't read orphan inode 15 (err -117)
[   59.830198][ T6003] netlink: 12 bytes leftover after parsing attributes in process `syz.1.951'.
[   59.881583][ T6013] loop1: detected capacity change from 0 to 1024
[   59.888518][ T6013] EXT4-fs: Ignoring removed nobh option
[   59.894211][ T6013] EXT4-fs: Ignoring removed bh option
[   60.054979][ T6036] loop4: detected capacity change from 0 to 8192
[   60.062896][ T6036] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   60.076453][ T6036] netlink: 36 bytes leftover after parsing attributes in process `syz.4.964'.
[   60.095458][ T6046] FAULT_INJECTION: forcing a failure.
[   60.095458][ T6046] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   60.108826][ T6046] CPU: 0 UID: 0 PID: 6046 Comm: syz.2.968 Not tainted 6.16.0-rc6-syzkaller-00037-ge2291551827f #0 PREEMPT(voluntary) 
[   60.108925][ T6046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   60.108938][ T6046] Call Trace:
[   60.108944][ T6046]  <TASK>
[   60.108952][ T6046]  __dump_stack+0x1d/0x30
[   60.108971][ T6046]  dump_stack_lvl+0xe8/0x140
[   60.108987][ T6046]  dump_stack+0x15/0x1b
[   60.109001][ T6046]  should_fail_ex+0x265/0x280
[   60.109061][ T6046]  should_fail_alloc_page+0xf2/0x100
[   60.109087][ T6046]  __alloc_frozen_pages_noprof+0xff/0x360
[   60.109138][ T6046]  alloc_pages_mpol+0xb3/0x250
[   60.109162][ T6046]  folio_alloc_mpol_noprof+0x39/0x80
[   60.109188][ T6046]  shmem_get_folio_gfp+0x3cf/0xd60
[   60.109266][ T6046]  shmem_fallocate+0x57c/0x840
[   60.109295][ T6046]  vfs_fallocate+0x413/0x450
[   60.109316][ T6046]  __x64_sys_fallocate+0x7a/0xd0
[   60.109365][ T6046]  x64_sys_call+0x2b88/0x2fb0
[   60.109384][ T6046]  do_syscall_64+0xd2/0x200
[   60.109469][ T6046]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.109503][ T6046]  ? clear_bhb_loop+0x40/0x90
[   60.109562][ T6046]  ? clear_bhb_loop+0x40/0x90
[   60.109655][ T6046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.109673][ T6046] RIP: 0033:0x7f413796e929
[   60.109685][ T6046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.109703][ T6046] RSP: 002b:00007f4135fd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[   60.109722][ T6046] RAX: ffffffffffffffda RBX: 00007f4137b95fa0 RCX: 00007f413796e929
[   60.109735][ T6046] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[   60.109748][ T6046] RBP: 00007f4135fd7090 R08: 0000000000000000 R09: 0000000000000000
[   60.109838][ T6046] R10: 00000000001001f0 R11: 0000000000000246 R12: 0000000000000001
[   60.109851][ T6046] R13: 0000000000000000 R14: 00007f4137b95fa0 R15: 00007fff1a5166e8
[   60.109870][ T6046]  </TASK>
[   60.441056][ T6075] loop4: detected capacity change from 0 to 512
[   60.451536][ T6074] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   60.478959][ T6075] ext4 filesystem being mounted at /253/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   61.808329][ T6092] lo speed is unknown, defaulting to 1000
[   61.853745][ T6092] loop2: detected capacity change from 0 to 512
[   61.860350][ T6092] EXT4-fs: Ignoring removed mblk_io_submit option
[   61.866814][ T6092] EXT4-fs: Ignoring removed bh option
[   61.874042][ T6092] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   61.892690][ T6092] EXT4-fs (loop2): 1 truncate cleaned up
[   62.126283][ T6120] netlink: 'syz.2.997': attribute type 5 has an invalid length.
[   62.204525][ T6128] loop5: detected capacity change from 0 to 1024
[   62.211583][ T6128] EXT4-fs: Ignoring removed nobh option
[   62.217189][ T6128] EXT4-fs: Ignoring removed bh option
[   62.390405][ T6148] loop1: detected capacity change from 0 to 512
[   62.403409][ T6148] ext4 filesystem being mounted at /227/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.605771][ T6172] netlink: 'syz.5.1014': attribute type 5 has an invalid length.
[   62.744524][ T6184] loop5: detected capacity change from 0 to 512
[   62.753877][ T6184] EXT4-fs error (device loop5): ext4_orphan_get:1393: inode #15: comm syz.5.1019: casefold flag without casefold feature
[   62.766758][ T6184] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.1019: couldn't read orphan inode 15 (err -117)
[   62.811697][ T6190] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1021'.
[   62.816865][ T6188] vhci_hcd: invalid port number 96
[   62.825840][ T6188] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   62.861479][ T6190] netlink: 'syz.5.1021': attribute type 27 has an invalid length.
[   62.949773][ T6190] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   62.958753][ T6190] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   62.967712][ T6190] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   62.976768][ T6190] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   63.063395][ T6206] loop4: detected capacity change from 0 to 512
[   63.082881][ T6206] ext4 filesystem being mounted at /256/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.181864][ T6222] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1033'.
[   63.227189][ T6226] loop1: detected capacity change from 0 to 512
[   63.241384][ T6226] ext4 filesystem being mounted at /228/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.919591][ T6240] loop1: detected capacity change from 0 to 512
[   63.931711][ T6240] ext4 filesystem being mounted at /229/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.023574][   T29] kauditd_printk_skb: 228 callbacks suppressed
[   64.023586][   T29] audit: type=1326 audit(1752774385.518:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.055172][   T29] audit: type=1326 audit(1752774385.518:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.078829][   T29] audit: type=1326 audit(1752774385.518:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.102547][   T29] audit: type=1326 audit(1752774385.518:2825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.125966][   T29] audit: type=1326 audit(1752774385.518:2826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.149396][   T29] audit: type=1326 audit(1752774385.518:2827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.172841][   T29] audit: type=1326 audit(1752774385.518:2828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.196275][   T29] audit: type=1326 audit(1752774385.518:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.219763][   T29] audit: type=1326 audit(1752774385.518:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.243327][   T29] audit: type=1326 audit(1752774385.518:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.4.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   64.362865][ T6270] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1051'.
[   64.375873][ T6269] loop4: detected capacity change from 0 to 512
[   64.387188][ T6277] loop2: detected capacity change from 0 to 512
[   64.397931][ T6277] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.1054: casefold flag without casefold feature
[   64.410932][ T6277] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.1054: couldn't read orphan inode 15 (err -117)
[   64.424102][ T6269] ext4 filesystem being mounted at /261/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.481276][ T6270] netlink: 'syz.1.1051': attribute type 27 has an invalid length.
[   64.512260][ T6270] dummy0: left promiscuous mode
[   64.564660][ T6270] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   64.573714][ T6270] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   64.582722][ T6270] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   64.591667][ T6270] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   64.712832][ T6304] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1062'.
[   64.812670][ T6317] loop1: detected capacity change from 0 to 512
[   64.821560][ T6317] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.1068: casefold flag without casefold feature
[   64.834512][ T6317] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1068: couldn't read orphan inode 15 (err -117)
[   64.873959][ T6323] loop4: detected capacity change from 0 to 512
[   64.901598][ T6323] ext4 filesystem being mounted at /267/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.258297][ T6340] lo speed is unknown, defaulting to 1000
[   65.391046][ T6341] loop1: detected capacity change from 0 to 512
[   65.397754][ T6341] EXT4-fs: Ignoring removed mblk_io_submit option
[   65.404212][ T6341] EXT4-fs: Ignoring removed bh option
[   65.410797][ T6341] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   65.492164][ T6341] EXT4-fs (loop1): 1 truncate cleaned up
[   65.498785][ T6341] EXT4-fs mount: 31 callbacks suppressed
[   65.498796][ T6341] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.623457][ T6361] loop5: detected capacity change from 0 to 512
[   65.641628][ T6361] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.658043][ T6361] ext4 filesystem being mounted at /67/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.733016][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.936449][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.178833][ T6402] loop1: detected capacity change from 0 to 512
[   66.191091][ T6402] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.203679][ T6402] ext4 filesystem being mounted at /253/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.449411][ T5519] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.576857][ T6419] loop2: detected capacity change from 0 to 512
[   66.592318][ T6419] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.605219][ T6419] ext4 filesystem being mounted at /212/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.632727][ T6424] vhci_hcd: invalid port number 96
[   66.637929][ T6424] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   66.688890][ T6428] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   66.697432][ T6415] loop5: detected capacity change from 0 to 8192
[   66.704287][ T6428] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   66.722921][ T6428] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1109'.
[   66.723883][ T6430] loop0: detected capacity change from 0 to 1024
[   66.731946][ T6428] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1109'.
[   66.747660][ T6415]  loop5: p1 p2 p3 p4
[   66.749257][ T6430] EXT4-fs: Ignoring removed bh option
[   66.757840][ T6415] loop5: p1 size 65536 extends beyond EOD, truncated
[   66.766642][ T6415] loop5: p2 start 861536256 is beyond EOD, truncated
[   66.773413][ T6415] loop5: p3 start 51183616 is beyond EOD, truncated
[   66.780080][ T6415] loop5: p4 size 65536 extends beyond EOD, truncated
[   66.788412][ T6430] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[   66.810500][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.874670][ T6437] netlink: 'syz.0.1110': attribute type 3 has an invalid length.
[   66.882471][ T6437] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1110'.
[   66.883200][ T6438] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1112'.
[   66.909496][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[   66.925400][ T6440] loop0: detected capacity change from 0 to 512
[   66.933310][ T6440] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[   66.941862][ T6440] EXT4-fs (loop0): 1 truncate cleaned up
[   66.948265][ T6440] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.972424][ T6442] lo speed is unknown, defaulting to 1000
[   66.981386][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.020941][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.038264][ T6447] loop0: detected capacity change from 0 to 512
[   67.051574][ T6447] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1116: bg 0: block 248: padding at end of block bitmap is not set
[   67.066681][ T6447] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1116: Failed to acquire dquot type 1
[   67.079636][ T6447] EXT4-fs (loop0): 1 truncate cleaned up
[   67.085613][ T6447] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.099426][ T6447] ext4 filesystem being mounted at /167/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.172205][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.223157][ T6455] netlink: 'syz.0.1117': attribute type 21 has an invalid length.
[   67.232114][ T6455] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1117'.
[   67.244394][ T6455] tmpfs: Bad value for 'mpol'
[   67.267012][ T6457] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1118'.
[   67.283281][ T6457] loop0: detected capacity change from 0 to 1024
[   67.297407][ T6457] EXT4-fs: Ignoring removed bh option
[   67.303380][ T6457] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   67.332723][ T6457] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.356565][ T6457] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.464499][ T6467] loop0: detected capacity change from 0 to 164
[   67.472776][ T6467] ISOFS: unable to read i-node block
[   67.478235][ T6467] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   67.565482][ T6473] loop0: detected capacity change from 0 to 512
[   67.572714][ T6473] EXT4-fs: Ignoring removed i_version option
[   67.588884][ T6473] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.623590][ T6473] ext4 filesystem being mounted at /172/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   67.641797][ T6473] EXT4-fs error (device loop0): ext4_get_first_dir_block:3533: inode #12: block 32: comm syz.0.1123: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[   67.665893][ T6473] EXT4-fs error (device loop0): ext4_get_first_dir_block:3536: inode #12: comm syz.0.1123: directory missing '.'
[   67.688049][ T6473] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1123'.
[   67.697080][ T6473] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1123'.
[   67.706117][ T6473] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1123'.
[   67.715362][ T6473] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1123'.
[   67.724443][ T6473] netlink: 'syz.0.1123': attribute type 6 has an invalid length.
[   67.732453][ T6477] loop4: detected capacity change from 0 to 512
[   67.777210][ T6449] syz.1.1115 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   67.791377][ T6449] CPU: 1 UID: 0 PID: 6449 Comm: syz.1.1115 Not tainted 6.16.0-rc6-syzkaller-00037-ge2291551827f #0 PREEMPT(voluntary) 
[   67.791404][ T6449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   67.791416][ T6449] Call Trace:
[   67.791421][ T6449]  <TASK>
[   67.791427][ T6449]  __dump_stack+0x1d/0x30
[   67.791512][ T6449]  dump_stack_lvl+0xe8/0x140
[   67.791531][ T6449]  dump_stack+0x15/0x1b
[   67.791549][ T6449]  dump_header+0x81/0x220
[   67.791584][ T6449]  oom_kill_process+0x334/0x3f0
[   67.791676][ T6449]  out_of_memory+0x979/0xb80
[   67.791768][ T6449]  try_charge_memcg+0x5e6/0x9e0
[   67.791805][ T6449]  obj_cgroup_charge_pages+0xa6/0x150
[   67.791929][ T6449]  __memcg_kmem_charge_page+0x9f/0x170
[   67.791997][ T6449]  __alloc_frozen_pages_noprof+0x188/0x360
[   67.792074][ T6449]  alloc_pages_mpol+0xb3/0x250
[   67.792204][ T6449]  alloc_pages_noprof+0x90/0x130
[   67.792275][ T6449]  __vmalloc_node_range_noprof+0x6f2/0xe00
[   67.792316][ T6449]  __kvmalloc_node_noprof+0x30f/0x4e0
[   67.792423][ T6449]  ? ip_set_alloc+0x1f/0x30
[   67.792449][ T6449]  ? ip_set_alloc+0x1f/0x30
[   67.792551][ T6449]  ? __kmalloc_cache_noprof+0x189/0x320
[   67.792580][ T6449]  ip_set_alloc+0x1f/0x30
[   67.792609][ T6449]  hash_netiface_create+0x282/0x740
[   67.792646][ T6449]  ? __pfx_hash_netiface_create+0x10/0x10
[   67.792678][ T6449]  ip_set_create+0x3c9/0x960
[   67.792755][ T6449]  ? __nla_parse+0x40/0x60
[   67.792826][ T6449]  nfnetlink_rcv_msg+0x4c3/0x590
[   67.792920][ T6449]  ? selinux_capable+0x1f9/0x270
[   67.792946][ T6449]  netlink_rcv_skb+0x120/0x220
[   67.792979][ T6449]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   67.793039][ T6449]  nfnetlink_rcv+0x16b/0x1690
[   67.793068][ T6449]  ? put_dec+0xd3/0xe0
[   67.793090][ T6449]  ? xas_load+0x413/0x430
[   67.793198][ T6449]  ? should_fail_ex+0x30/0x280
[   67.793295][ T6449]  ? __rcu_read_unlock+0x34/0x70
[   67.793319][ T6449]  ? context_to_sid+0x2da/0x310
[   67.793413][ T6449]  ? sidtab_context_to_sid+0x5d/0x5e0
[   67.793436][ T6449]  ? mls_compute_sid+0x139/0x560
[   67.793531][ T6449]  ? mls_context_isvalid+0x85/0x1f0
[   67.793559][ T6449]  ? ebitmap_destroy+0x7d/0xa0
[   67.793621][ T6449]  ? should_fail_ex+0x30/0x280
[   67.793697][ T6449]  ? selinux_nlmsg_lookup+0x99/0x890
[   67.793725][ T6449]  ? selinux_netlink_send+0x59f/0x5f0
[   67.793757][ T6449]  ? __rcu_read_unlock+0x34/0x70
[   67.793808][ T6449]  ? __netlink_lookup+0x266/0x2a0
[   67.793827][ T6449]  netlink_unicast+0x5a5/0x680
[   67.793868][ T6449]  netlink_sendmsg+0x58b/0x6b0
[   67.793900][ T6449]  ? __pfx_netlink_sendmsg+0x10/0x10
[   67.793917][ T6449]  __sock_sendmsg+0x145/0x180
[   67.793941][ T6449]  ____sys_sendmsg+0x31e/0x4e0
[   67.793984][ T6449]  ___sys_sendmsg+0x17b/0x1d0
[   67.794033][ T6449]  __x64_sys_sendmsg+0xd4/0x160
[   67.794066][ T6449]  x64_sys_call+0x2999/0x2fb0
[   67.794086][ T6449]  do_syscall_64+0xd2/0x200
[   67.794176][ T6449]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   67.794202][ T6449]  ? clear_bhb_loop+0x40/0x90
[   67.794220][ T6449]  ? clear_bhb_loop+0x40/0x90
[   67.794239][ T6449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.794332][ T6449] RIP: 0033:0x7fac1a02e929
[   67.794350][ T6449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.794369][ T6449] RSP: 002b:00007fac18697038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.794390][ T6449] RAX: ffffffffffffffda RBX: 00007fac1a255fa0 RCX: 00007fac1a02e929
[   67.794404][ T6449] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000005
[   67.794415][ T6449] RBP: 00007fac1a0b0ca1 R08: 0000000000000000 R09: 0000000000000000
[   67.794425][ T6449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   67.794472][ T6449] R13: 0000000000000000 R14: 00007fac1a255fa0 R15: 00007ffcf8412f08
[   67.794571][ T6449]  </TASK>
[   67.794576][ T6449] memory: usage 307200kB, limit 307200kB, failcnt 229
[   67.822838][ T6485] siw: device registration error -23
[   67.823768][ T6449] memory+swap: usage 307424kB, limit 9007199254740988kB, failcnt 0
[   67.823788][ T6449] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   67.867533][ T6486] loop5: detected capacity change from 0 to 512
[   67.872305][ T6449] Memory cgroup stats for /syz1:
[   67.872776][ T6449] cache 0
[   67.948195][ T6477] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.952789][ T6449] rss 0
[   67.952798][ T6449] shmem 0
[   67.952807][ T6449] mapped_file 0
[   67.952812][ T6449] dirty 0
[   67.952819][ T6449] writeback 0
[   67.958659][ T6477] ext4 filesystem being mounted at /274/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   67.961540][ T6449] workingset_refault_anon 103
[   67.967376][ T6486] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.970608][ T6449] workingset_refault_file 137
[   67.970617][ T6449] swap 229376
[   67.970623][ T6449] swapcached 0
[   67.970629][ T6449] pgpgin 25405
[   67.970635][ T6449] pgpgout 25405
[   67.970640][ T6449] pgfault 37548
[   67.975595][ T6486] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   67.980407][ T6449] pgmajfault 72
[   67.980415][ T6449] inactive_anon 0
[   67.980421][ T6449] active_anon 0
[   67.980427][ T6449] inactive_file 0
[   67.980433][ T6449] active_file 0
[   67.980471][ T6449] unevictable 0
[   67.980477][ T6449] hierarchical_memory_limit 314572800
[   68.320485][ T6449] hierarchical_memsw_limit 9223372036854771712
[   68.326657][ T6449] total_cache 0
[   68.330141][ T6449] total_rss 0
[   68.333406][ T6449] total_shmem 0
[   68.336927][ T6449] total_mapped_file 0
[   68.340911][ T6449] total_dirty 0
[   68.344401][ T6449] total_writeback 0
[   68.348188][ T6449] total_workingset_refault_anon 103
[   68.353388][ T6449] total_workingset_refault_file 137
[   68.358559][ T6449] total_swap 229376
[   68.362351][ T6449] total_swapcached 0
[   68.366354][ T6449] total_pgpgin 25405
[   68.370239][ T6449] total_pgpgout 25405
[   68.374266][ T6449] total_pgfault 37548
[   68.378216][ T6449] total_pgmajfault 72
[   68.382187][ T6449] total_inactive_anon 0
[   68.386313][ T6449] total_active_anon 0
[   68.390300][ T6449] total_inactive_file 0
[   68.394516][ T6449] total_active_file 0
[   68.398484][ T6449] total_unevictable 0
[   68.402456][ T6449] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1115,pid=6448,uid=0
[   68.417093][ T6449] Memory cgroup out of memory: Killed process 6448 (syz.1.1115) total-vm:83656kB, anon-rss:944kB, file-rss:22240kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   68.437694][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.503513][ T6497] vhci_hcd: invalid port number 96
[   68.508663][ T6497] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   68.526758][ T5519] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.541859][ T6498] loop0: detected capacity change from 0 to 512
[   68.557876][ T6500] loop5: detected capacity change from 0 to 512
[   68.585008][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.596038][ T6500] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1130: bg 0: block 248: padding at end of block bitmap is not set
[   68.620805][ T6498] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.633561][ T6500] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1130: Failed to acquire dquot type 1
[   68.645574][ T6498] ext4 filesystem being mounted at /173/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   68.658900][ T6500] EXT4-fs (loop5): 1 truncate cleaned up
[   68.670029][ T6500] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.687338][ T6500] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.716234][ T6515] loop1: detected capacity change from 0 to 512
[   68.724796][ T5519] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.737558][ T6515] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.759700][ T6515] ext4 filesystem being mounted at /255/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   68.815774][ T6514] loop2: detected capacity change from 0 to 512
[   68.824863][ T6514] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   68.859915][ T6514] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.879641][ T6514] ext4 filesystem being mounted at /218/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.916420][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.981645][ T6538] loop4: detected capacity change from 0 to 512
[   69.022923][ T6538] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1138: bg 0: block 248: padding at end of block bitmap is not set
[   69.102178][ T6538] __quota_error: 440 callbacks suppressed
[   69.102223][ T6538] Quota error (device loop4): write_blk: dquota write failed
[   69.115431][ T6538] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[   69.126489][ T6538] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1138: Failed to acquire dquot type 1
[   69.138297][ T6538] EXT4-fs (loop4): 1 truncate cleaned up
[   69.145094][ T6538] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.180547][ T6538] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.214094][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.235605][ T6543] loop2: detected capacity change from 0 to 1024
[   69.242801][ T6543] EXT4-fs: Ignoring removed orlov option
[   69.250923][ T6543] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.252951][   T29] audit: type=1400 audit(1752774390.748:3268): avc:  denied  { cpu } for  pid=6544 comm="syz.4.1141" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   69.299612][   T29] audit: type=1400 audit(1752774390.778:3269): avc:  denied  { ioctl } for  pid=6544 comm="syz.4.1141" path="socket:[13992]" dev="sockfs" ino=13992 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   69.361064][ T6545] pim6reg1: entered promiscuous mode
[   69.366405][ T6545] pim6reg1: entered allmulticast mode
[   69.440876][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.467725][ T6551] loop0: detected capacity change from 0 to 512
[   69.489761][ T6551] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.502414][ T6551] ext4 filesystem being mounted at /174/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.588719][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.639584][   T29] audit: type=1400 audit(1752774391.128:3270): avc:  denied  { read write } for  pid=3312 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   69.664134][   T29] audit: type=1400 audit(1752774391.128:3271): avc:  denied  { open } for  pid=3312 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   69.688331][   T29] audit: type=1400 audit(1752774391.128:3272): avc:  denied  { ioctl } for  pid=3312 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   69.807515][   T29] audit: type=1400 audit(1752774391.138:3273): avc:  denied  { prog_load } for  pid=6557 comm="syz.1.1145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   69.826659][   T29] audit: type=1400 audit(1752774391.138:3274): avc:  denied  { bpf } for  pid=6557 comm="syz.1.1145" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   69.847218][   T29] audit: type=1400 audit(1752774391.138:3275): avc:  denied  { perfmon } for  pid=6557 comm="syz.1.1145" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   69.891117][ T6561] loop4: detected capacity change from 0 to 512
[   69.922066][ T6561] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.936792][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.947447][ T6561] ext4 filesystem being mounted at /281/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.085941][ T6573] loop0: detected capacity change from 0 to 512
[   70.092395][ T6570] 9pnet: Could not find request transport: ff
[   70.104179][ T6570] loop9: detected capacity change from 0 to 7
[   70.110522][ T6570] Buffer I/O error on dev loop9, logical block 0, async page read
[   70.118370][ T6570] Buffer I/O error on dev loop9, logical block 0, async page read
[   70.126316][ T6570]  loop9: unable to read partition table
[   70.144859][ T6574] loop1: detected capacity change from 0 to 512
[   70.154674][ T6570] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[   70.154674][ T6570] 
) failed (rc=-5)
[   70.200676][ T6573] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1150: bg 0: block 248: padding at end of block bitmap is not set
[   70.227475][ T6574] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.245464][ T6573] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1150: Failed to acquire dquot type 1
[   70.260500][ T6573] EXT4-fs (loop0): 1 truncate cleaned up
[   70.266492][ T6573] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.299803][ T6573] ext4 filesystem being mounted at /176/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.310527][ T6574] ext4 filesystem being mounted at /257/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.325755][ T6584] loop5: detected capacity change from 0 to 128
[   70.364818][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.395739][ T6588] xt_CT: You must specify a L4 protocol and not use inversions on it
[   70.558300][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.578618][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.636414][ T6597] loop4: detected capacity change from 0 to 512
[   70.644430][ T6597] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   70.674686][ T6597] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.687977][ T6597] ext4 filesystem being mounted at /282/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.731596][ T6602] loop2: detected capacity change from 0 to 1024
[   70.738859][ T6602] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   70.747655][ T6602] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   70.762713][ T6602] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e01c, mo2=0000]
[   70.771676][ T6602] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 2: comm syz.2.1156: lblock 2 mapped to illegal pblock 2 (length 1)
[   70.786752][ T6602] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 48: comm syz.2.1156: lblock 0 mapped to illegal pblock 48 (length 1)
[   70.801213][ T6602] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1156: Failed to acquire dquot type 0
[   70.803273][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.821807][ T6602] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   70.832001][ T6602] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.1156: mark_inode_dirty error
[   70.843622][ T6602] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   70.853944][ T6602] EXT4-fs (loop2): 1 orphan inode deleted
[   70.860616][ T6602] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.872891][   T51] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[   70.888226][   T51] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[   70.900898][ T6602] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.910530][ T6602] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.1156: Invalid inode table block 1 in block_group 0
[   70.923439][ T6602] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   70.933071][ T6602] EXT4-fs error (device loop2): ext4_quota_off:7217: inode #3: comm syz.2.1156: mark_inode_dirty error
[   70.968131][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.035014][ T6611] vhci_hcd: invalid port number 96
[   71.040206][ T6611] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   71.090131][ T6615] loop4: detected capacity change from 0 to 512
[   71.100898][ T6615] EXT4-fs error (device loop4): __ext4_iget:5379: inode #4: block 193290: comm syz.4.1161: invalid block
[   71.112664][ T6615] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.1161: Bad quota inode: 4, type: 1
[   71.124699][ T6615] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   71.140107][ T6615] EXT4-fs (loop4): mount failed
[   71.345052][ T6641] loop0: detected capacity change from 0 to 512
[   71.462185][ T6641] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.527199][ T6641] ext4 filesystem being mounted at /180/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.988592][ T6656] __nla_validate_parse: 2 callbacks suppressed
[   71.988604][ T6656] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1175'.
[   72.042530][ T6658] pim6reg1: entered promiscuous mode
[   72.047887][ T6658] pim6reg1: entered allmulticast mode
[   72.060274][ T6654] loop4: detected capacity change from 0 to 1024
[   72.067222][ T6654] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.075812][ T6654] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   72.087261][ T6654] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e01c, mo2=0000]
[   72.096442][ T6654] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 2: comm syz.4.1174: lblock 2 mapped to illegal pblock 2 (length 1)
[   72.110677][ T6654] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 48: comm syz.4.1174: lblock 0 mapped to illegal pblock 48 (length 1)
[   72.125025][ T6654] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1174: Failed to acquire dquot type 0
[   72.136480][ T6654] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   72.146020][ T6654] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.1174: mark_inode_dirty error
[   72.157909][ T6654] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   72.168198][ T6654] EXT4-fs (loop4): 1 orphan inode deleted
[   72.174483][ T6654] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.186576][   T51] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[   72.201358][   T51] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[   72.213770][ T6654] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.214254][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.235369][ T6654] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.1174: Invalid inode table block 1 in block_group 0
[   72.249325][ T6654] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   72.259457][ T6654] EXT4-fs error (device loop4): ext4_quota_off:7217: inode #3: comm syz.4.1174: mark_inode_dirty error
[   72.294485][ T6667] loop5: detected capacity change from 0 to 1024
[   72.303378][ T6667] EXT4-fs: Ignoring removed orlov option
[   72.313955][ T6670] loop4: detected capacity change from 0 to 1024
[   72.320848][ T6670] EXT4-fs: Ignoring removed orlov option
[   72.321940][ T6667] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.341934][ T6670] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.364215][ T6665] loop0: detected capacity change from 0 to 8192
[   72.412728][ T6679] syz.2.1181 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   72.491411][ T6665] netlink: 'syz.0.1186': attribute type 1 has an invalid length.
[   72.552123][ T6679] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1181'.
[   72.638590][ T5519] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.685718][ T6679] loop2: detected capacity change from 0 to 8192
[   72.741192][ T6679] netlink: 'syz.2.1181': attribute type 1 has an invalid length.
[   72.757555][ T6690] loop5: detected capacity change from 0 to 512
[   72.795940][ T6690] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.824965][ T6690] ext4 filesystem being mounted at /84/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.867564][ T6695] xfrm0: entered promiscuous mode
[   72.872682][ T6695] xfrm0: entered allmulticast mode
[   73.186963][ T6719] loop2: detected capacity change from 0 to 4096
[   73.197207][ T6721] netlink: 'syz.1.1194': attribute type 5 has an invalid length.
[   73.207066][ T6719] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.245533][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.367532][ T6729] loop2: detected capacity change from 0 to 512
[   73.382642][ T6729] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.412091][ T6729] ext4 filesystem being mounted at /237/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   73.581453][ T5519] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.773660][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.883976][ T6763] loop4: detected capacity change from 0 to 1024
[   73.890901][ T6763] EXT4-fs: Ignoring removed orlov option
[   73.898388][ T6763] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.952117][ T6767] loop5: detected capacity change from 0 to 512
[   73.971217][ T6767] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.984777][ T6767] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   74.061629][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.140313][ T6784] loop1: detected capacity change from 0 to 1024
[   74.146988][ T6784] EXT4-fs: Ignoring removed orlov option
[   74.155645][ T6784] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.421989][ T6807] netlink: 'syz.2.1222': attribute type 5 has an invalid length.
[   74.449512][   T29] kauditd_printk_skb: 321 callbacks suppressed
[   74.452546][ T6809] loop4: detected capacity change from 0 to 1024
[   74.455740][   T29] audit: type=1326 audit(1752774395.938:3589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.479898][ T6809] EXT4-fs: Ignoring removed orlov option
[   74.511286][   T29] audit: type=1326 audit(1752774395.978:3590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.534801][   T29] audit: type=1326 audit(1752774395.978:3591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.558485][   T29] audit: type=1326 audit(1752774395.978:3592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.582025][   T29] audit: type=1326 audit(1752774395.978:3593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.605486][   T29] audit: type=1326 audit(1752774395.978:3594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.628904][   T29] audit: type=1326 audit(1752774395.978:3595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.652451][   T29] audit: type=1326 audit(1752774395.978:3596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.675842][   T29] audit: type=1326 audit(1752774395.978:3597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.699327][   T29] audit: type=1326 audit(1752774395.978:3598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm="syz.2.1224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   74.870143][ T6831] loop2: detected capacity change from 0 to 512
[   74.905107][ T6831] ext4 filesystem being mounted at /242/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   74.978421][ T6843] netlink: 'syz.0.1236': attribute type 5 has an invalid length.
[   75.404229][ T6864] loop4: detected capacity change from 0 to 512
[   75.440989][ T6864] ext4 filesystem being mounted at /305/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   75.491996][ T6868] loop1: detected capacity change from 0 to 1024
[   75.498633][ T6868] EXT4-fs: Ignoring removed orlov option
[   75.800968][ T6895] loop5: detected capacity change from 0 to 1024
[   75.807652][ T6895] EXT4-fs: Ignoring removed orlov option
[   75.903101][ T6908] loop0: detected capacity change from 0 to 512
[   75.954178][ T6911] loop2: detected capacity change from 0 to 1024
[   75.975890][ T6908] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   76.010201][ T6911] EXT4-fs: Ignoring removed orlov option
[   76.513422][ T6962] loop2: detected capacity change from 0 to 512
[   76.521413][ T6963] loop1: detected capacity change from 0 to 1024
[   76.528180][ T6963] EXT4-fs: Ignoring removed orlov option
[   76.541688][ T6962] ext4 filesystem being mounted at /253/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   77.168335][ T7002] loop1: detected capacity change from 0 to 512
[   77.193683][ T7002] ext4 filesystem being mounted at /304/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   77.371721][ T7011] loop2: detected capacity change from 0 to 1024
[   77.378449][ T7011] EXT4-fs: Ignoring removed orlov option
[   77.644982][ T7043] loop0: detected capacity change from 0 to 512
[   77.671987][ T7043] ext4 filesystem being mounted at /195/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   77.740735][ T7051] loop5: detected capacity change from 0 to 1024
[   77.753648][ T7051] EXT4-fs: Ignoring removed orlov option
[   78.242023][ T7083] loop1: detected capacity change from 0 to 1024
[   78.248689][ T7083] EXT4-fs: Ignoring removed orlov option
[   78.497419][ T7093] loop1: detected capacity change from 0 to 512
[   78.523772][ T7093] ext4 filesystem being mounted at /313/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   78.784451][ T7118] loop4: detected capacity change from 0 to 1024
[   78.792036][ T7118] EXT4-fs: Ignoring removed orlov option
[   79.069847][ T7131] loop4: detected capacity change from 0 to 512
[   79.091867][ T7131] ext4 filesystem being mounted at /319/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   79.270507][ T7154] loop5: detected capacity change from 0 to 1024
[   79.277225][ T7154] EXT4-fs: Ignoring removed orlov option
[   79.305870][ T7160] loop2: detected capacity change from 0 to 1024
[   79.312591][ T7160] EXT4-fs: Ignoring removed orlov option
[   79.642878][   T29] kauditd_printk_skb: 320 callbacks suppressed
[   79.642890][   T29] audit: type=1326 audit(1752774401.138:3919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   79.702880][   T29] audit: type=1326 audit(1752774401.178:3920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   79.726387][   T29] audit: type=1326 audit(1752774401.178:3921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   79.750019][   T29] audit: type=1326 audit(1752774401.178:3922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   79.773502][   T29] audit: type=1326 audit(1752774401.178:3923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   79.796898][   T29] audit: type=1326 audit(1752774401.178:3924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   79.820345][   T29] audit: type=1326 audit(1752774401.188:3925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   79.843853][   T29] audit: type=1326 audit(1752774401.188:3926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   79.867292][   T29] audit: type=1326 audit(1752774401.188:3927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   79.890802][   T29] audit: type=1326 audit(1752774401.188:3928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7180 comm="syz.1.1358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1a02e929 code=0x7ffc0000
[   80.070812][ T7204] loop1: detected capacity change from 0 to 512
[   80.084992][ T7204] ext4 filesystem being mounted at /322/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   80.723625][ T7240] loop4: detected capacity change from 0 to 512
[   80.743486][ T7240] ext4 filesystem being mounted at /327/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   80.971173][ T7256] loop1: detected capacity change from 0 to 1024
[   81.014155][ T7256] EXT4-fs: Ignoring removed orlov option
[   81.105809][ T7270] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1391'.
[   81.146436][ T7270] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1391'.
[   81.202446][ T7273] sit0: entered promiscuous mode
[   81.207649][ T7273] netlink: 'syz.5.1392': attribute type 1 has an invalid length.
[   81.215439][ T7273] netlink: 1 bytes leftover after parsing attributes in process `syz.5.1392'.
[   81.260777][ T7279] loop0: detected capacity change from 0 to 512
[   81.328851][ T7279] ext4 filesystem being mounted at /212/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   81.538658][ T7291] loop5: detected capacity change from 0 to 512
[   81.551114][ T7291] ext4 filesystem being mounted at /121/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   81.852337][ T7311] loop4: detected capacity change from 0 to 1024
[   81.859146][ T7311] EXT4-fs: Ignoring removed orlov option
[   82.513607][ T7331] loop0: detected capacity change from 0 to 512
[   82.556667][ T7331] ext4 filesystem being mounted at /215/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   82.952014][ T7362] loop2: detected capacity change from 0 to 512
[   82.973000][ T7362] ext4 filesystem being mounted at /282/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   83.581099][ T7387] loop0: detected capacity change from 0 to 1024
[   83.587868][ T7387] EXT4-fs: Ignoring removed orlov option
[   83.813319][ T7402] loop5: detected capacity change from 0 to 512
[   83.851715][ T7402] ext4 filesystem being mounted at /129/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   84.023313][ T7422] loop1: detected capacity change from 0 to 1024
[   84.030349][ T7422] EXT4-fs: Ignoring removed orlov option
[   84.514949][ T7443] loop4: detected capacity change from 0 to 512
[   84.543548][ T7443] ext4 filesystem being mounted at /346/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   84.785485][   T29] kauditd_printk_skb: 312 callbacks suppressed
[   84.785501][   T29] audit: type=1326 audit(1752774406.278:4241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   84.821781][   T29] audit: type=1326 audit(1752774406.278:4242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   84.845245][   T29] audit: type=1326 audit(1752774406.278:4243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   84.868705][   T29] audit: type=1326 audit(1752774406.278:4244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   84.892317][   T29] audit: type=1326 audit(1752774406.278:4245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   84.915867][   T29] audit: type=1326 audit(1752774406.278:4246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   84.939376][   T29] audit: type=1326 audit(1752774406.278:4247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   84.962781][   T29] audit: type=1326 audit(1752774406.278:4248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   84.986307][   T29] audit: type=1326 audit(1752774406.278:4249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   85.009770][   T29] audit: type=1326 audit(1752774406.278:4250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7453 comm="syz.5.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc32f0ae929 code=0x7ffc0000
[   85.388493][ T7467] loop2: detected capacity change from 0 to 512
[   85.419729][ T7467] ext4 filesystem being mounted at /290/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.777471][ T7503] loop2: detected capacity change from 0 to 1024
[   85.783101][ T7506] loop1: detected capacity change from 0 to 512
[   85.785699][ T7503] EXT4-fs: Ignoring removed orlov option
[   85.799922][ T7507] loop5: detected capacity change from 0 to 512
[   85.831394][ T7506] ext4 filesystem being mounted at /333/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.842714][ T7507] ext4 filesystem being mounted at /136/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.046755][ T7532] loop1: detected capacity change from 0 to 1024
[   86.054016][ T7532] EXT4-fs: Ignoring removed orlov option
[   86.574127][ T7558] loop0: detected capacity change from 0 to 512
[   86.672050][ T7558] ext4 filesystem being mounted at /227/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   87.277567][ T7592] loop5: detected capacity change from 0 to 512
[   87.305380][ T7592] ext4 filesystem being mounted at /145/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   87.562710][ T7606] loop2: detected capacity change from 0 to 512
[   87.581039][ T7606] ext4 filesystem being mounted at /293/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   87.750117][ T7623] loop1: detected capacity change from 0 to 1024
[   87.756867][ T7623] EXT4-fs: Ignoring removed orlov option
[   87.825935][ T7633] loop0: detected capacity change from 0 to 1024
[   87.833271][ T7633] EXT4-fs: Ignoring removed orlov option
[   88.712369][ T7673] loop2: detected capacity change from 0 to 512
[   88.743756][ T7673] ext4 filesystem being mounted at /300/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.333484][ T7690] loop5: detected capacity change from 0 to 512
[   89.362924][ T7690] ext4 filesystem being mounted at /151/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.668082][ T7727] loop0: detected capacity change from 0 to 1024
[   89.674555][ T7729] loop4: detected capacity change from 0 to 1024
[   89.674866][ T7727] EXT4-fs: Ignoring removed orlov option
[   89.681543][ T7729] EXT4-fs: Ignoring removed orlov option
[   90.229601][ T7742] loop5: detected capacity change from 0 to 512
[   90.242891][ T7742] ext4 filesystem being mounted at /153/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.437454][   T29] kauditd_printk_skb: 350 callbacks suppressed
[   90.437469][   T29] audit: type=1326 audit(1752774411.928:4601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.470075][   T29] audit: type=1326 audit(1752774411.968:4602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.493642][   T29] audit: type=1326 audit(1752774411.968:4603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.517196][   T29] audit: type=1326 audit(1752774411.968:4604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.540822][   T29] audit: type=1326 audit(1752774411.968:4605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.564227][   T29] audit: type=1326 audit(1752774411.968:4606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.587846][   T29] audit: type=1326 audit(1752774411.968:4607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.615439][   T29] audit: type=1326 audit(1752774412.058:4608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.638958][   T29] audit: type=1326 audit(1752774412.058:4609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.662746][   T29] audit: type=1326 audit(1752774412.108:4610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7751 comm="syz.2.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f413796e929 code=0x7ffc0000
[   90.952983][ T7767] loop2: detected capacity change from 0 to 512
[   90.979775][ T7767] ext4 filesystem being mounted at /307/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   91.818753][ T7807] loop4: detected capacity change from 0 to 1024
[   91.825506][ T7807] EXT4-fs: Ignoring removed orlov option
[   91.855872][ T7810] loop2: detected capacity change from 0 to 512
[   91.881187][ T7810] ext4 filesystem being mounted at /310/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   91.950244][ T7821] loop0: detected capacity change from 0 to 512
[   92.043590][ T7821] ext4 filesystem being mounted at /243/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   92.072127][ T7829] loop1: detected capacity change from 0 to 1024
[   92.105266][ T7829] EXT4-fs: Ignoring removed orlov option
[   92.312144][ T7845] loop5: detected capacity change from 0 to 512
[   92.342041][ T7845] ext4 filesystem being mounted at /160/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   92.480905][ T7851] loop0: detected capacity change from 0 to 512
[   92.522600][ T7851] ext4 filesystem being mounted at /246/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   93.201993][ T7861] loop2: detected capacity change from 0 to 512
[   93.232500][ T7861] ext4 filesystem being mounted at /311/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   94.045868][ T7888] loop5: detected capacity change from 0 to 512
[   94.055553][ T7889] loop1: detected capacity change from 0 to 512
[   94.071420][ T7888] ext4 filesystem being mounted at /162/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   94.085065][ T7889] ext4 filesystem being mounted at /361/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   94.360198][ T7917] loop2: detected capacity change from 0 to 1024
[   94.366725][ T7917] EXT4-fs: Ignoring removed orlov option
[   94.675090][ T7923] loop4: detected capacity change from 0 to 512
[   94.693289][ T7923] ext4 filesystem being mounted at /390/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   94.921563][ T7929] loop5: detected capacity change from 0 to 1024
[   94.928222][ T7929] EXT4-fs: Ignoring removed orlov option
[   95.422775][ T7958] loop0: detected capacity change from 0 to 512
[   95.472024][ T7958] ext4 filesystem being mounted at /255/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   95.501444][ T3305] EXT4-fs unmount: 119 callbacks suppressed
[   95.501513][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.713270][   T29] kauditd_printk_skb: 369 callbacks suppressed
[   95.713285][   T29] audit: type=1326 audit(1752774417.208:4980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   95.743047][   T29] audit: type=1326 audit(1752774417.208:4981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   95.834619][   T29] audit: type=1326 audit(1752774417.268:4982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   95.858166][   T29] audit: type=1326 audit(1752774417.268:4983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   95.881589][   T29] audit: type=1326 audit(1752774417.268:4984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   96.145049][   T29] audit: type=1326 audit(1752774417.638:4985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7987 comm="syz.4.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   96.198424][ T7990] loop1: detected capacity change from 0 to 512
[   96.209581][   T29] audit: type=1326 audit(1752774417.638:4986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7987 comm="syz.4.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   96.233062][   T29] audit: type=1326 audit(1752774417.638:4987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7987 comm="syz.4.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   96.256628][   T29] audit: type=1326 audit(1752774417.638:4988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7987 comm="syz.4.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   96.280007][   T29] audit: type=1326 audit(1752774417.638:4989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7987 comm="syz.4.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc17dfbe929 code=0x7ffc0000
[   96.362618][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.430894][ T7990] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.469740][ T7990] ext4 filesystem being mounted at /371/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   96.647654][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.808399][ T8018] loop2: detected capacity change from 0 to 512
[   96.822755][ T8018] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.835515][ T8018] ext4 filesystem being mounted at /326/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   96.859877][ T5519] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.009092][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.087762][ T8033] loop5: detected capacity change from 0 to 512
[   97.100762][ T8033] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.113292][ T8033] ext4 filesystem being mounted at /167/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   97.206325][ T8045] loop1: detected capacity change from 0 to 1024
[   97.213118][ T8045] EXT4-fs: Ignoring removed orlov option
[   97.220639][ T8045] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.387172][ T8055] loop4: detected capacity change from 0 to 1024
[   97.394180][ T8055] EXT4-fs: Ignoring removed orlov option
[   97.402491][ T8055] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.492011][ T8060] loop0: detected capacity change from 0 to 512
[   97.522543][ T8060] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.540353][ T8060] ext4 filesystem being mounted at /260/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   97.619677][ T8055] ==================================================================
[   97.627801][ T8055] BUG: KCSAN: data-race in __mark_inode_dirty / writeback_single_inode
[   97.636055][ T8055] 
[   97.638377][ T8055] write to 0xffff888106bb0ea8 of 4 bytes by task 8063 on cpu 1:
[   97.646007][ T8055]  writeback_single_inode+0x14a/0x3e0
[   97.651394][ T8055]  sync_inode_metadata+0x5b/0x90
[   97.656335][ T8055]  generic_buffers_fsync_noflush+0xd9/0x120
[   97.662243][ T8055]  ext4_sync_file+0x1ab/0x690
[   97.666922][ T8055]  vfs_fsync_range+0x10d/0x130
[   97.671719][ T8055]  ext4_buffered_write_iter+0x34f/0x3c0
[   97.677272][ T8055]  ext4_file_write_iter+0x383/0xf00
[   97.682473][ T8055]  iter_file_splice_write+0x5f2/0x970
[   97.687859][ T8055]  direct_splice_actor+0x156/0x2a0
[   97.692987][ T8055]  splice_direct_to_actor+0x312/0x680
[   97.698370][ T8055]  do_splice_direct+0xda/0x150
[   97.703146][ T8055]  do_sendfile+0x380/0x650
[   97.707576][ T8055]  __x64_sys_sendfile64+0x105/0x150
[   97.712777][ T8055]  x64_sys_call+0xb39/0x2fb0
[   97.717379][ T8055]  do_syscall_64+0xd2/0x200
[   97.721880][ T8055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.727789][ T8055] 
[   97.730107][ T8055] read to 0xffff888106bb0ea8 of 4 bytes by task 8055 on cpu 0:
[   97.737651][ T8055]  __mark_inode_dirty+0x52/0x760
[   97.742594][ T8055]  ext4_write_inline_data_end+0x3e5/0x5f0
[   97.748330][ T8055]  ext4_write_end+0x4cd/0x730
[   97.753023][ T8055]  generic_perform_write+0x30f/0x490
[   97.758314][ T8055]  ext4_buffered_write_iter+0x1ee/0x3c0
[   97.763877][ T8055]  ext4_file_write_iter+0x383/0xf00
[   97.769084][ T8055]  iter_file_splice_write+0x5f2/0x970
[   97.774466][ T8055]  direct_splice_actor+0x156/0x2a0
[   97.779598][ T8055]  splice_direct_to_actor+0x312/0x680
[   97.784993][ T8055]  do_splice_direct+0xda/0x150
[   97.789769][ T8055]  do_sendfile+0x380/0x650
[   97.794197][ T8055]  __x64_sys_sendfile64+0x105/0x150
[   97.799408][ T8055]  x64_sys_call+0xb39/0x2fb0
[   97.804004][ T8055]  do_syscall_64+0xd2/0x200
[   97.808512][ T8055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.814407][ T8055] 
[   97.816726][ T8055] value changed: 0x00000038 -> 0x00000002
[   97.822441][ T8055] 
[   97.824760][ T8055] Reported by Kernel Concurrency Sanitizer on:
[   97.830910][ T8055] CPU: 0 UID: 0 PID: 8055 Comm: syz.4.1670 Not tainted 6.16.0-rc6-syzkaller-00037-ge2291551827f #0 PREEMPT(voluntary) 
[   97.843338][ T8055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   97.853407][ T8055] ==================================================================
[   97.877862][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.932461][ T5519] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.312157][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.326320][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.009489][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.