last executing test programs:

8m53.634796262s ago: executing program 5 (id=39):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0x0, @ANYBLOB="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"/288], 0x3, 0x36c, &(0x7f00000006c0)="$eJzs3T2IXFUUAOAzefuXYNwthKAgjHaCLknEQm02yAaC26gM/hTiYDYqM2tkBweTIpOtxEoES63sLFSwsBYLETsLW1NIVCw0XSDBK+9nfnc22Yi7ifh9RTg595y59+08dt6+2bn7ykq0Ts/GmStXLsfCQi1mVp5aiau1WIosIuYidzG2K0ciTRkCAO5wV1OKP1Nply21PV4SALDHitf/1w6PZL6460b1yas/APznVT//H5zMl6/zteLfhZ2az+7x4gCAPbHt/v+DY8Nzw7f6czPFbwW8td+LBAD+Vc+9+NLTJ9Yinq3XFyI23u02uo14Yjh+4ky8Ee1Yj6OxGNcj8uuE96v3APL45Km11aP1er0XvyxFI892GxEbvW4jK/uzon8+jsViLJU9/auNlFJ28su11WP1QkRc7BXzx0at25iNQ9X8Px2K9Tge9bhnrH+2mODU2urxlMoHaGz0+3sRW8P7Fvn6l2Mxfng1zkY7Thdr71/WrK1eOPZkFQ/7u435oq604x0QAAAAAAAAAAAAAAAAAAAAAAD4R5brA0uD/XPScP+e5eUp48X+OGV/tT/QVrk/UJpPkdIf7zzSeC8b3x9ocn+ebmMmDtzeQwcAAAAAAAAAAAAAAAAAAIA7RufcXDTb7fXNzrnzrdGgt9k5dyAi8syb3332zcHYXnOTYKaaY2SoXqXOt5op6xenbKymCrJ88n7m068GKx6tmR8cxdRlzO881G4ffuDnj4aZ+7P+I/81rMli+gFmE8sYDTbuLpd0K1+oQXD8JjWXUko7tV94eXtX1CJmbv2Ju3GQ8uDby6/f+2jnyGNF5utUeujhxecvffjJb61mO585imdwbrNzPbWa1f+nn2w7B9nI+VOLMqiNngkzN2rfGs80sx9/f+G+D77f3expNPP2lJqsPJzPJ4fmyiBf5sTQwfEzvAxmp5z8exAc+Xglf45+3W3XyDcJG3UAAAAAAAAAAAAAAAAAAMC+GPmseKX6sO9sbVvt7CB6/Jl9Wh4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7Ivh3/8fCbYGmQNV2WTNtespTXZd68VEptVsz69vdiLmbvNRAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwf/d3AAAA//9Q9GiN")
socket$pppl2tp(0x18, 0x1, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@newlink={0x48, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x10, 0x2, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x4}, @IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r4}]}, 0x48}, 0x1, 0x0, 0x0, 0x600}, 0x0)
r5 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r5, 0x0, 0x0, 0x1001f0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)

8m51.3356041s ago: executing program 5 (id=42):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800004e9d00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
io_setup(0xfb, &(0x7f0000000140))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x2d, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1fd2, 0x6007, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)

8m41.242173321s ago: executing program 5 (id=52):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000240), &(0x7f0000000040)='.\x00', &(0x7f0000000140)='f2fs\x00', 0x0, 0x0)

8m34.309804161s ago: executing program 4 (id=67):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2200050, &(0x7f0000000000)=ANY=[], 0x1, 0x1516, &(0x7f0000003140)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffe01)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lsetxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r4 = socket(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r5, &(0x7f0000000080)={0xa, 0xfe, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0)
sendto$inet6(r5, &(0x7f0000000440)="bb699ad135cc241d3bebde2c24cb27cb9fe9ee0c34e804a364fc0eb46ff49fe5561375eac2516ac7ed1d57cad8df2a2e42927453480cc6c40a2287d46723d368104e43d2fb1c4ff855377f4e24d7d4a746f0cf7265cb4d4e9e10422c307254b6d8eac510b1b2c19bcee483019731a9eb03de7e6541e527f2021644e1527fb2d278753b3ae2f47ee3312d06a47b38412fbabe447a8c6d1b3fb67e6f5f3a21fc08407b3153d8a76e73491379cfe5f5f639db801f52174c742639a8a96f257a55acdee4ab551b1a84c003d1bde109972a1794e7eadb2d4bc27d2a50a0dac7e46a32e3d13cc0b8c5221b514720d094ebe88c63e07fa8aaacc9135c9f1f1b4c2cb6c7cc636fd0548fc1a0b807b800f3dd92cd4e06013891ecd5a72ee4622dbca8bcd7772f2715c6047ce8b30b7a4a7dbffe607494dd8bdc50c2b9428ddfb0d00a1b76ec88be09e6d4fe113d1549d50f52c149a0a25de0c383f32eb8d89e7df23831a7aa8ed93aa1f48c3c0d4df42d229fab2ccd5c473ccfa226519714536a8d0bdb1255a399b547887beeef8dd6b18d68f484edb2514b5e5fdc2f328e3160246fb0065e9958e51745d96bf501855d13b51ff03e2fa0c40d0530349a92888712d5", 0xfff4, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000001380)=""/4080, 0xff0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)

8m30.421102163s ago: executing program 4 (id=70):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020701200000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
lseek(0xffffffffffffffff, 0xfffffffffffffff5, 0x1)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendfile(r5, r4, 0x0, 0x1000)

8m30.112246062s ago: executing program 5 (id=73):
getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000080)=""/197, &(0x7f0000000180)=0xc5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000010000/0x1000)=nil, 0x1000, &(0x7f0000000180)='\x00')
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r2, &(0x7f0000000000)={0x18, 0x2, {0x0, @dev={0xac, 0x14, 0x14, 0x11}}}, 0x1e)
connect$pptp(r2, &(0x7f0000000040)={0x18, 0x2, {0x0, @multicast1}}, 0x1e)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000300), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
writev(r3, &(0x7f0000000680)=[{&(0x7f00000002c0)="2614", 0xf00}], 0x1)

8m28.920922139s ago: executing program 4 (id=75):
socket$inet(0x2, 0x1, 0x8000002)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="8b3300000000000000001500007df2686cb865e4148008000d8004000300"], 0x24}}, 0x0)
socket(0x10, 0x2, 0xff)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x2}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x48000}, 0x20000800)
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newqdisc={0x24, 0x29, 0xa19702d202eff97b, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)
socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='mm_page_alloc\x00', r6}, 0x10)
r7 = creat(&(0x7f0000000200)='./bus\x00', 0xaa)
fsetxattr$system_posix_acl(r7, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000020"], 0xfe44, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r8, 0x4018620d, &(0x7f0000000100))
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
dup3(r9, r8, 0x80000)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r10, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r10, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f0000000680)={0x4, 0x0, &(0x7f0000000640)=[@enter_looper={0x40086303}], 0xfcff, 0x1000000000000, 0x0})

8m28.1784796s ago: executing program 5 (id=80):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x2, 0xb, 0xa0, 0x9, 0x2, 0x0, 0x70bd25, 0x25dfdbfe}, 0x10}}, 0x4000000)

8m27.298706177s ago: executing program 4 (id=82):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
setresgid(0x0, 0xffffffffffffffff, 0x0)

8m27.118640757s ago: executing program 4 (id=83):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000240)={'bond_slave_0\x00', {0x2, 0x4e21, @empty}})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r4, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, 0x0)
r7 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r7, &(0x7f0000000040)={0x24, @long={0x3, 0x1fffe, {0xaaaaaaaaaaaa0202}}}, 0x14)

8m25.596097513s ago: executing program 5 (id=84):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486"], 0xfdef)

8m23.946187267s ago: executing program 4 (id=85):
symlink(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
syz_emit_ethernet(0xfdef, &(0x7f0000000640)=ANY=[], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
unshare(0x64000600)

8m10.487152207s ago: executing program 32 (id=84):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486"], 0xfdef)

8m8.870003793s ago: executing program 33 (id=85):
symlink(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
syz_emit_ethernet(0xfdef, &(0x7f0000000640)=ANY=[], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
unshare(0x64000600)

8m4.300368252s ago: executing program 1 (id=123):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000040)={0x24, @long={0x3, 0x1fffe, {0xaaaaaaaaaaaa0202}}}, 0x14)

8m4.226792305s ago: executing program 1 (id=124):
socket$inet(0x2, 0x1, 0x8000002)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="8b3300000000000000001500007df2686cb865e4148008000d8004000300"], 0x24}}, 0x0)
socket(0x10, 0x2, 0xff)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x2}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x48000}, 0x20000800)
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newqdisc={0x24, 0x29, 0xa19702d202eff97b, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)
socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='mm_page_alloc\x00', r6}, 0x10)
r7 = creat(&(0x7f0000000200)='./bus\x00', 0xaa)
fsetxattr$system_posix_acl(r7, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000020"], 0xfe44, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r8, 0x4018620d, &(0x7f0000000100))
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
dup3(r9, r8, 0x80000)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r10, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r10, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f0000000680)={0x4, 0x0, &(0x7f0000000640)=[@enter_looper={0x40086303}], 0xfcff, 0x1000000000000, 0x0})

8m3.218637264s ago: executing program 1 (id=126):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000000)={{0x3}})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0xe4428, &(0x7f0000000080)=ANY=[@ANYBLOB])
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
ioctl$SNDRV_TIMER_IOCTL_STATUS64(r3, 0x80e85411, &(0x7f00000022c0))
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000700)=ANY=[], 0x64}}, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000000)=0x2, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800000, @void, @value}, 0x94)

8m1.974048477s ago: executing program 1 (id=127):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=@ipv6_delrule={0x24, 0x21, 0x121, 0x70bd2a, 0x0, {0xa, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x18}, [@FIB_RULE_POLICY=@FRA_FWMASK={0x8, 0x10, 0xfffffffb}]}, 0x24}, 0x1, 0x0, 0x0, 0x2000c045}, 0x80c4)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc90}, [@printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000240)={'wg1\x00', <r8=>0x0})
sendmsg$ETHTOOL_MSG_TSINFO_GET(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)={0x20, r6, 0x1, 0x0, 0x0, {0x10}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}]}, 0x20}}, 0x0)
memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xf3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@4q\xebw\xf5\xff\xff\xff\xff\xff\xff\xac\xd3q\xe4vPGU', 0x0)
r9 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000340), 0x1, 0x0)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0008b0cf8098a954f0c13d46c5f2da99dd78517bdc8c78047b090ec8e43f7def3d6e7ff57769de041cb1ee36eb9ef08355f53fb91f02fc63278f3613aa6fba7e9b000800008a4f6d9dbe20a5c5b893c3751e0d41a772d4e6963860d07e3f3f06b10f3eeb3aa2324f6e3d348cf3fa4536d200214110447005e899317ac49bdb087c7ee9c6a7f01bf8f94692bfa45daf2423901aa20a1e0b8736e57abc12ff197cc72bc4b25cfc4ae212b63861ba8545d2"], 0x1, 0x14d1, &(0x7f00000015c0)="$eJzs3AlwlcW2KOBe3f1DiBG3EZl79fphiwGaiIjIICIyiIiICIjMIiBiRERERISATCICIgIyRkSGEAGRIUDEMM/zPBg5iIiIyCSTQL/C47ncczy3uO+8cy+vKuur6kqv/Hut3Z1VyT9UZf/UdViNxjWrNiAi8a9Qf5vAX78kCyFihBADhRC3CSECIUTZ+LLx147nUpD8L70J+x/SMPVmr4DdTNz/7I37n71x/7M37n/2xv3P3rj/2Rv3P3vj/jOWraUVuJ1H9h38/D874/N/9sb9z964/9kb9z974/5nb9z/7I37n71x/7M37j9j2dr/B8+gedzEwRhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOM/S+44K/TQoi/zW/2uhhjjDHGGGOMMfbv43Pe7BUwxhhjjDHGGGPsfx4IKZTQIhA5RE4RI3KJWHGLiBO3itziNhERt4t4cYfII+4UeUU+kV8UEAVFIVFYGIHCChKhKCKKiqi4SxQTd4sEUVyUECWFE6VEorhHlBb3ijLiPlFW3C/KiQdEeVFBVBSVxIOisnhIVBEPi6riEVFNVBc1RE3xqKglHhO1xeOijnhC1BVPinriKVFfPC0aiIaikXhGNBbPiiaiqWgmmosWoqVo9S/lvyV6iLdFT9FLJIveoo94R/QV/UR/MUAMFO+KQeI9MVi8L4aIoWKY+EAMFx+KEeIjMVKMEqPFx2KMGCvGifFigpgoUsQnYpL4VEwWn4kpYqqYJqaLVDFDpInPxUwxS8wWX4g54ksxV8wT88UCkS4WikViscgQX4kl4muRKZaKZWK5WCFWilVitVgj1op1Yr3YIDaKTWKz2CK2im1iu9ghdopdYrfYI/aKfWK/OCC+EVni2//L/PP/kN8NBAiQIEGDhhyQA2IgBmIhFuIgDnJDbohABOIhHvJAHsgLeSE/5IeCUBAKQ2FAQCAgKAJFIApRKAbFIAESoASUAAcOEiERSsO9UAbKQFkoC+WgHJSHClABKkElqAyVoQpUgapQFapBNagBNeBReBQeg9pQG+pAHagLdaEe1IP6UB8aQANoBI2gMTSGJtAEmkEzaAEtoBW0gtbQGtpAG2gH7aA9tIcO0AGSIAk6QkfoBJ2gM3SGLtAFukJX6AZvwpvwFrwFb8Pb0Auqyd7QB/pAX+gL/WEADIB3YRC8B+/B+zAEhsIw+AA+gA9hBJyDkTAKRsNoqCzHwjgYDyQnQgqkwCSYBJNhMkyBqTAVpkMqzIA0SIOZMAtmwRcwB76EL2EezIMFkA7psAgWQwZkwBI4D5mwFJbBclgBK2EFrIY1sBrWwXpYBxthI2yGzbAVtsJ22A47YSfsht2wF/bCftgPQyALsuAgHIRDcAgOw2E4AkfgKByFY3AMjsNxOAEn4CScgtNwCs7CWTgH5+ECXIBLcAkuw2W4Clev/fLLa7TUMofMIWNkjIyVsTJOxsncMreMyIiMl/Eyj8wj88q8Mr/MLwvKgrKwLCxRoiQZyiKyiIzKqCwmi8kEmSBLyBLSSScTZaIsLUvLMrKMLCvvl+XkA7K8rCDbukqykqws27kq8mFZVVaV1WR1WUPWlDVlLVlL1pa1ZR1ZR9aVdWU9+ZSsL3tDf2gor3WmsRwKTeQwaCabyxaypfwQnpOt5QhoI9vKdvIFOQpGQgfZ2iXJl2VHOQ46yVfleHhNdpEToat8Q3aTb8ru8i3ZQ7ZxPWUvOQV6yz5yOvSV/WR/OUDOhOryWsdqyPflEDlUDpMfyAXwoRwhP5Ij5Sg5Wn4sx8ixcpwcLyfIiTJFfiInyU/lZPmZnCKnymlyukyVM2Sa/FzOlLPkbPmFnCO/lHPlPDlfLpDpcqFcJBfLDPmVXCK/lplyqVwml8sVcqVcJVfLNXKtXCfXyw1yo9wkN8stcqvcJrfLHXKn3CV3yz1yr9wn98sD8huZJb+VB+Vf5CH5nTwsv5dH5A/yqPxRHpM/yePyZ3lC/iJPylPytDwjz8pf5Tl5Xl6QF+Ul+Zu8LK/Iq9JLoUBJpZRWgcqhcqoYlUvFqltUnLpV5Va3qYi6XcWrO1QedafKq/Kp/KqAKqgKqcLKKFRWkQpVEVVURdVdqpi6WyWo4qqEKqmcKqUS1T2qtLpXlVH3qbLqflVOPaDKqwqqoqqkHlSV1UOqinpYVVWPqGqquqqhaqpHVS31mKqtHld11BOqrnpS1VNPqfrqadVANVSN1DOqsXpWNVFNVTPVXLVQLVUr9ZxqrZ5XbVRb1U69oNqrF1UH9ZJKUi+rjuoV1Um9qjqr11QX9brqqt5Q3dSbqru6oq4qr3qqXipZ9VZ91Duqr+qn+qsBaqB6Vw1S76nB6n01RA1Vw9QHarj6UI1QH6mRapQarT5WY9RYNU6NVxPURJWiPlGT1KdqsvpMTVFT1TQ1XaWqGar/H5Vm/zfyP/0n+YN/f/fNaovaqrap7WqH2ql2qd1qj9qj9ql96oA6oLJUljqoDqpD6pA6rA6rI+qIOqqOqmPqmDqujqsT6oQ6qU6pi+qMOqt+VefUeXVeXVSX1CV1+Y+fgdCgpVZa60Dn0Dl1jM6lY/UtOk7fqnPr23RE367j9R06j75T59X5dH5dQBfUhXRhbTRqq0mHuoguqqP6Ll1M360TdHFdQpfUTpfSifqe/+f8G62vlW6lW+vWuo1uo9vpdrq9bq876A46SSfpjrqj7qQ76c66s+6iu+iuuqvuprvp7rq77qF76J66p07WybqPfkf31f10fz1AD9Tv6kF6kB6sB+sheogepofp4Xq4HqFH6JF6pB6tR+sxeowep8fpCXqCTtEpepKepCfryXqKnqKn6Wk6VafqNJ2mZ+qZeraerefoOXqunqvn6/k6XafrRXqRztAZeoleojP1Ur1UL9fL9Uq9Uq/Wq/VavVav1+v1Rr1RZ+oteoveprfpHXqH3qV36T16j96n9+kD+oDO0ln6oD6oD+lD+rA+rI/oI/qoPqqP6WP6uD6uT+gT+qQ+qU/r0/qsPqvP6XP6gr6gL+lL+rK+rK/qq9cu+wIZyEAHOsgR5AhigpggNogN4oK4IHeQO4gEkSA+iA/yBHcGeYN8Qf6gQFAwKBQUDkyAgQ0oCIMiQdEgGtwVFAvuDhKC4kGJoGTgglJBYnBPUDq4NygT3BeUDe4PygUPBOWDCkHFoFLwYFA5eCioEjwcVA0eCaoF1YMaQc3g0aBW8FhQO3g8qBM8EdQNngzqBU8F9YOngwZBw6BR8EzQOHg2aBI0DZoFzYMWQcug1b+1vvfn8j3veppeJtn0Nn3MO6av6Wf6mwFmoHnXDDLvmcHmfTPEDDXDzAdmuPnQjDAfmZFmlBltPjZjzFgzzow3E8xEk2I+MZPMp2ay+cxMMVPNNDPdpJoZJs18bmaaWWa2+cLMMV+auWaemW8WmHSz0Cwyi02G+cosMV+bTLPULDPLzQqz0qwyq80as9asM+vNBrPRbDKbzRaz1Wwz280Os9PsMrvNHrPX7DP7zQHzjcky35qD5i/mkPnOHDbfmyPmB3PU/GiOmZ/McfOzOWF+MSfNKXPanDFnza/mnDlvLpiL5pL5zVw2V8xV469d3F87vaNGjTkwB8ZgDMZiLMZhHObG3BjBCMZjPObBPJgX82J+zI8FsSAWxsJ4DSFhESyCUYxiMSyGCZiAJbAEOnSYiIlYGktjGSyDZbEslsNyWB7LY0WsiA/ig/gQPoQP48P4CD6C1bE61sSaWAtrYW2sjXWwDtbFulgP62F9rI8NsAE2wkbYGBtjE2yCzbAZtsAW2ApbYWtsjW2wDbbDdtge22MH7IBJmIQdsSN2wk7YGTtjF+yCXbErdsNu2B27Yw/sgT2xJyZjMvbBPtgX+2J/7I8DcSAOwkE4GAfjEByCw3AYDsfhOAJH4EgchaPxYxyDY3EcjscJOBFTMAUn4SScjJNxCk7BaTgNUzEV0zANZ+JMnI2zcQ7Owbk4F+fjfEzHdFyEizADM3AJLsFMzMRluAxX4ApchatwDa7BdbgON+AG3ISbcAtuwW24DXfgDtyFu3AP7sF9uA8P4AHMwiw8iAfxEB7Cw3gYj+ARPIpH8Rgew+N4HE/gCTyJJ/E0nsazeBbP4Tm8gBfwEv6Gl/EKXkWPMTaXjbW32Dh7q81tb7P/GOe3BWxBW8gWtsbmtfn+LkZrbYItbkvYktbZUjbR3vOnuLytYCvaSvZBW9k+ZKv8Ka5lH7O17eO2jn3C1rSP/l1c1z5p69lnbX3b1DawzW0j29I2ts/aJrapbWab2xa2pW1vX7Qd7Es2yb5sO9pX/hQvsovtGrvWrrPr7T67316wF+0x+5O9ZH+zPW0vO9C+awfZ9+xg+74dYof+KR5tP7Zj7Fg7zo63E+zEP8XT7HSbamfYNPu5nWln/SlOtwvtHJth59p5dr5d8Ht8bU0Z9iu7xH5tM+1Su8wutyvsSrvKrv6PtS63G+0mu9nusXvtNrvd7rA77S67+/f42j4O2G9slv3WHrU/2kP2O3vYHrdH7A+/x9f2d9z+bE/YX+xJe8qetmfsWfurPWfP/77/a3s/Y6/Yq9ZbQUCSFGkKKAflpBjKRbF0C8XRrZSbbqMI3U7xdAfloTspL+Wj/FSAClIhKkyGkCwRhVSEilKU7qJidDclUHEqQSXJUSlKpHuoNN1LZeg+Kkv3Uzl6gMpTBapIlehBqkwPURV6mKrSI1SNqlMNqkmPUi16jGrT41SHnqC69CTVo6eoPj1NDaghNaJnqDE9S02oKTWj5tSCWlIreo5a0/PUhtpSO3qB2tOL1IFeoiR6mTrSK9SJXqXO9Bp1odepK71B3ehN6k5vUQ96m3pSL0qm3tSH3qG+1I/60wAaSO/SIHqPBtP7NISG0jD6gIbThzSCPqKRNIpG08c0hsbSOBpPE2gipdAnNIk+pcn0GU2hqTSNplMqzaA0+pxm0iyaTV/QHPqS5tI8mk8LKJ0W0iJaTBn0FS2hrymTltIyWk4raCWtotW0htbSOlpPG2gjbaLNtIW20jbaTjtoJ+2i3bSH9tI+2k8H6BvKom/pIP2FDtF3dJi+pyP0Ax2lH+kY/UTH6Wc6Qb/QSTpFp+kMnaVf6Rydpwt0kS7Rb3SZrtBV8iRCCGWoQh0GYY4wZxgT5gpjw1vCuPDWMHd4WxgJbw/jwzvCPOGdYd4wX5g/LBAWDAuFhUMTYmhDCsOwSFg0jIZ3hcXCu8OEsHhYIiwZurBUmBjeE5YO7w3LhPeFZcP7w3LhA2H5sEJYMawUPhhWDh8Kq4QPh1XDR8JqYfWwRlgzfDSsFT4W1g4fD+uET4RlwifDeuFTYf3w6bBB2DBsFD4TNg6fDZuETcNmYfOwRdgybBU+F7YOnw/bhG3DduELYfvwxbBD+FKYFL4cdgxfueHx5LB32Cd8J3wn9P5xNT+6IJoeXRhdFF0czYh+FV0S/TqaGV0aXRZdHl0RXRldFV0dXRNdG10XXR/dEN0Y3RTdHPW+Zk7hwEmnnHaBy+FyuhiXy8W6W1ycu9Xldre5iLvdxbs7XB53p8vr8rn8roAr6Aq5ws44dNaRC10RV9RF3V2umLvbJbjiroQr6Zwr5RJdS9fKtXKt3fOujWvr2rkX3AvuRfeie8m95F52Hd0rrpN71XV2r7ku7nX3unvDdXNvuu7uLdfDve16ul4u2SW7Pq6P6+v6uv6uvxvoBrpBbpAb7Aa7IW6IG+aGueFuuBvhRriRbqQb7Ua7MW6MG+fGuQlugktxKW6Sm+Qmu8luipviprlpLtWlujSX5ma6mW62m+3muDlurpvr5rv5Lt2lu0VukctwGW6JW+IyXaZb5pa5FW6FW+VWuTVujVvn1rkNboPb5Da5LW6L2+a2uR1uh9vldrk9bo/b5/a5A+6Ay3JZ7qA76A65Q+6w+94dcT+4o+5Hd8z95I67n90J94s76U650+6MO+t+defceXfBXXSX3G/usrvirjrvUiKfRCZFPo1MjnwWmRKZGpkWmR5JjcyIpEU+j8yMzIrMjnwRmRP5MjI3Mi8yP7Igkh5ZGFkUWRzJiHwVWRL5OpIZWRpZFlkeWRFZGfG+0LbQF/FFfdTf5Yv5u32CL+5L+JLe+VI+0d/jS/t7fRl/ny/r7/fl/AO+vK/gK/qmvplv7lv4lr6Vf8639s/7Nr6tb+df8O39i76Df8kn+Zd9R/+K7+Rf9Z39a76Lf9139W/4bv5N392/5Xv4t31P38sn+96+j3/H9/X9fH8/wA/07/pB/j0/2L/vh/ihfpj/wA/3H/oR/iM/0o/yo/3Hfowf68f58X6Cn+hT/Cd+kv/UT/af+Sl+qp/mp/tUP8On+c/9TD/Lz/Zf+Dn+Sz/Xz/Pz/QKf7hf6RX6xz/Bf+SX+a5/pl/plfrlf4Vf6VX61X+PX+nV+vd/gN/pNfrPf4rf6bX673+F3+l1+t9/j9/p9fr8/4L/xWf5bf9D/xR/y3/nD/nt/xP/gj/of/TH/kz/uf/Yn/C/+pD/lT/sz/qz/1Z/z5/0Ff9Ff8r/5y/6Kv8r/s8YYY4wx9t+ibnC89z/5nvxjXNNHCHHr9gJH/rHmhrx/nfeT+zpGhBAv9+ra8G+jYcPk5OQ/XpupRFB0nhAicj0/h7geLxXtxIsiSbQVpf/p+vrJikA3qB+9X4jY/5QTI67H1+vf+1/Ub7rwhvXnCZFQ9HpOLnE9vl6/zH9Rf3f7G9TP9V2KEG3+U06cuB5fr58onheviKS/eyVjjDHGGGOMMfZX/eSlbje6v712f15QX8/JKa7HN7o/Z4wxxhhjjDHG2M332pvdX3ouKaltZ57whCc8+Y/Jzf7LxBhjjDHGGPt3u37Rf7NXwhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMZV//Gx8ndrP3yBhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjN1s/ycAAP//fMhn/w==")
write$binfmt_register(r9, &(0x7f0000000040)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x0, 0x3a, '\x02', 0x3a, ']', 0x3a, './file0/file0', 0x3a, [0x46]}, 0x30)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000240), 0x1, 0x526, &(0x7f0000001b40)="$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")

7m58.870533938s ago: executing program 1 (id=131):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000}, 0x20)

7m58.128828437s ago: executing program 1 (id=133):
r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x5, 0x103b83)
ioctl$LOOP_CHANGE_FD(r0, 0x301, 0xffffffffffffffff)

7m57.408867432s ago: executing program 34 (id=133):
r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x5, 0x103b83)
ioctl$LOOP_CHANGE_FD(r0, 0x301, 0xffffffffffffffff)

1m5.072858519s ago: executing program 3 (id=2634):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
cachestat(r1, &(0x7f0000000080)={0x9}, &(0x7f0000000180), 0x0)

1m4.903497517s ago: executing program 3 (id=2635):
r0 = semget$private(0x0, 0x4000000009, 0x0)
semop(r0, &(0x7f0000000080)=[{0x4, 0x3}, {0x0, 0xec7b, 0x1000}], 0x2)
semop(r0, &(0x7f0000000140), 0x0)
semctl$GETNCNT(r0, 0x3, 0xe, 0x0)

1m3.233717721s ago: executing program 3 (id=2642):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x40000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x26, &(0x7f0000000000)={0x1})
fcntl$lock(r1, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x80, 0x7})
fcntl$lock(r1, 0x25, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x80000000})
sendto$packet(r1, &(0x7f00000001c0)="df40775d660f742e19d80f1d4f1c0f2047a4eb187674a325aa48b47e9063d4bcfccb28f7352a968d7c7ee08a462cc63a611911d736b83098ea22586e7c725d0d0e29573dfedb57088d458baae7912287ea9afa", 0x53, 0x4000, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000000480)={{0x80, 0x3}, 'port1\x00', 0x85, 0x0, 0x0, 0x67, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f0000000000)={{0x80}, 'port1\x00', 0x0, 0x40409})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000ac31fca"], 0x48)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000180))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xfffffffc, 0xfffffef8, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)

1m2.784916562s ago: executing program 3 (id=2647):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@abort}]}, 0xff, 0x23f, &(0x7f0000000540)="$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")
open(&(0x7f00000003c0)='./bus\x00', 0x143142, 0x1a0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4117639c2eb4b78c66ee677df701905b9aafab4afaaf755a3f6a004", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000"})

1m1.592560662s ago: executing program 3 (id=2649):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20c006, &(0x7f0000000200)={[{@i_version}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@data_err_abort}], [{@seclabel}]}, 0x1, 0x43d, &(0x7f0000000900)="$eJzs281vG0UbAPBn7SR9+/FSU5WPpgUCBRHxkTRpKT1wAYHEASQkOJRjSNIq1G1QEyRaRRAQKkdUiTviiMRfwAkuCDghcYU7qlShXFrgYrTZ3cR27LQOTlzw7ydtMrM7zszj3bFnZ7IB9K2R9EcSsS8ifomI/Vm2scBI9uvmytL0HytL00nUaq//nqyWu7GyNF0ULV63t8gMRJQ+TuJwi3oXLl0+N1Wtzl7M8+OL598ZX7h0+em581NnZ8/OXpg8derE8YlnT04+05U407huDL8/f+TQy29efXX69NW3fvgqKeJviqNLRjY7+Fit1uXqeuv/delkoIcNoSPlrJvG4Gr/3x/lWD95++Olj3raOGBb1Wq12r3tDy/XgP+wJHrdAqA3ii/69P632HZo6HFHuP58dgOUxn0z37IjA1HKyww23d9200hEnF7+8/N0i+2ZhwAAaPBNOv55Kh//NSz8lKJ+XuiufA2lEhF3R8SBiDgZEQcj4p6I1bL3RcT9HdbfvEiycfxTutbhn+xIOv57Ll/bahz/FaO/qJQj/iqGy5UYTM7MVWeP5e/JaAzuSvMTm9Tx7Ys/f9ruWP34L93S+ouxYN6OawO7Gl8zM7U49U9irnf9w4jhgVbxJ2srAellcSgihrdYx9wTXx5pd+zW8Tcaqs90YZ2p9kXE49n5X46m+AvJ5uuT4/+L6uyx8eKq2OjHn6681q7+TuPvtvT872l5/a/FX0nq12sXOq/jyq+ftL2n2er1P5S80bDvvanFxYsTEUPJK1mj6/dPNpWbXC+fxj96tHX/PxDr78ThiEgv4gci4sGIeChv+8MR8UhEHN0k/u9fePTtxj1JB/FvrzT+mY7O/3piKJr3tE6Uz333dUOllegg/vT8n1hNjeZ7bufz73batbWrGQAAAP59ShGxL5LS2Fq6VBoby/6H/2DsKVXnFxafPDP/7oWZ7BmBSgyWipmubD44mw+dyG/ri/xkU/54Pm/8WXn3an5ser460+vgoc/tbdP/U7+Ve906YNt5Xgv6l/4P/Uv/h/6l/0P/atH/d/eiHcDOa/X9/0EP2gHsvKb+b9kP+oj7f+hf+j/0L/0f+tLC7rj1Q/ISEhsSUbojmiGxTYlefzIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB0x98BAAD///1B6is=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pselect6(0x40, &(0x7f0000000540)={0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x3fd, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, 0x6, 0x0, 0x0, 0x100, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x4, 0x0, 0x9, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000700)={[{@grpquota}, {@noload}, {@resuid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x2}}, {@resgid}, {@usrquota}, {@data_err_abort}, {@errors_remount}]}, 0x0, 0x5e5, &(0x7f00000007c0)="$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")

59.498370052s ago: executing program 3 (id=2662):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000000c0)={'ip_vti0\x00', &(0x7f0000000280)={'tunl0\x00', <r1=>0x0, 0x7, 0x10, 0x40, 0x5, {{0x15, 0x4, 0x1, 0x5, 0x54, 0x67, 0x0, 0x5, 0x29, 0x0, @multicast2, @empty, {[@lsrr={0x83, 0xb, 0x4c, [@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2]}, @generic={0x89, 0x8, "ab5de662592a"}, @timestamp_prespec={0x44, 0x2c, 0x3e, 0x3, 0x4, [{@empty, 0xe}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0xede9}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7}, {@private=0xa010101, 0x2}]}, @noop]}}}}})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x12, 0x1cf9, 0x2, 0x7f2, 0x200, r0, 0x4a7, '\x00', r1, 0xffffffffffffffff, 0x0, 0x1, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b921952a9007b2f53fd8b7c1c53000007020000f8ffffffb7030012845e2500b7040005080ef7aa053b2f76296300000000850000000300a099731d52"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r3}, 0x10)
mkdir(&(0x7f0000000140)='./control\x00', 0x92)
close(r0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
close(r4)
close(0xffffffffffffffff)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r5, 0x0)
r6 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r8}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f0000000b00)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff5}]})
r9 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r9, &(0x7f00000005c0)=""/188, 0xbc)
inotify_init1(0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x28, &(0x7f0000000000)='/proc\x00s%nN\xd4\xa2\x88\x00\xd1l,K*\xe4Y\xe1e\xac\x81Z*Q[\x00\x00\x05\x00'/42}, 0x30)
r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r10)
r11 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r11, &(0x7f0000000c80)=""/4079, 0xfef)

59.243329814s ago: executing program 35 (id=2662):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000000c0)={'ip_vti0\x00', &(0x7f0000000280)={'tunl0\x00', <r1=>0x0, 0x7, 0x10, 0x40, 0x5, {{0x15, 0x4, 0x1, 0x5, 0x54, 0x67, 0x0, 0x5, 0x29, 0x0, @multicast2, @empty, {[@lsrr={0x83, 0xb, 0x4c, [@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2]}, @generic={0x89, 0x8, "ab5de662592a"}, @timestamp_prespec={0x44, 0x2c, 0x3e, 0x3, 0x4, [{@empty, 0xe}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0xede9}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7}, {@private=0xa010101, 0x2}]}, @noop]}}}}})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x12, 0x1cf9, 0x2, 0x7f2, 0x200, r0, 0x4a7, '\x00', r1, 0xffffffffffffffff, 0x0, 0x1, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b921952a9007b2f53fd8b7c1c53000007020000f8ffffffb7030012845e2500b7040005080ef7aa053b2f76296300000000850000000300a099731d52"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r3}, 0x10)
mkdir(&(0x7f0000000140)='./control\x00', 0x92)
close(r0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
close(r4)
close(0xffffffffffffffff)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r5, 0x0)
r6 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r8}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f0000000b00)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff5}]})
r9 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r9, &(0x7f00000005c0)=""/188, 0xbc)
inotify_init1(0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x28, &(0x7f0000000000)='/proc\x00s%nN\xd4\xa2\x88\x00\xd1l,K*\xe4Y\xe1e\xac\x81Z*Q[\x00\x00\x05\x00'/42}, 0x30)
r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r10)
r11 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r11, &(0x7f0000000c80)=""/4079, 0xfef)

5.262637126s ago: executing program 2 (id=3041):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
fdatasync(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r0, 0x5)

4.282662432s ago: executing program 8 (id=3042):
setresuid(0xee00, 0x0, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup(r1)
prlimit64(r0, 0x7, 0x0, 0x0)

4.282273468s ago: executing program 7 (id=3043):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000d9d49c4f9b0011424ac0d5aa03a2afc321189ad515c052d95600824e3c1e9703de"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
pwrite64(r0, &(0x7f00000000c0)='a', 0x1, 0x9002)

3.934483657s ago: executing program 9 (id=3048):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000740)=ANY=[], 0x1, 0x17d, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70200001400f400b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
getpid()
read$FUSE(r0, &(0x7f0000000900)={0x2020}, 0x2020)

3.892608172s ago: executing program 8 (id=3050):
getsockopt$nfc_llcp(0xffffffffffffffff, 0x6, 0x12, 0x0, 0x2000e881)
socket$netlink(0x10, 0x3, 0xa)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a000000"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000"], 0x64}}, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x0)
mmap(&(0x7f000001a000/0x3000)=nil, 0x3000, 0xf, 0x11012, r4, 0x0)

3.570349447s ago: executing program 0 (id=3052):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'pimreg\x00', 0x5dcf70ef8daa5d0e})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB, @ANYRES32=0x0, @ANYRES32=r0], 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYRES8=r0, @ANYRES16=r2, @ANYRES8=r1, @ANYBLOB="7ec2a9ccc13b7bb1c0661c2a1e810c617abd75a7f7ffba8dce1a28e95af43a21626e542e20bb15b839a3163d52cba7ba5fef4c555254bcdaf73f08a029ae7ad5a5bb7613430ad1"], 0x7c}}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a88000000060a0b040000000000000000020000005c000480580001800a000100696e6e65720000004800028008000240000000840800034000000007080004400000008f080001400000000024000580090001006d6574610000000014000280eaff024000000010080001400000000e0900010073797a30000000000900020073797a32"], 0xb0}}, 0xc180)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x8, &(0x7f0000000380)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000018f1ff00", @ANYRES32, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, @void, @value}, 0x94)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f0000000240)={'vcan0\x00'})
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r6 = dup(r5)
r7 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_opts(r7, 0x29, 0x3b, &(0x7f0000000e40)=@routing, 0x8)
r8 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r8, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r8, 0x8)
accept4(r8, 0x0, 0x0, 0x0)
setsockopt$inet6_buf(r7, 0x29, 0x39, &(0x7f0000000040)="ff0204000000000100000000000000000000000000000205", 0x18)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000940)=[{0x3, 0x0, [0x7, 0x3, 0xac51, 0xfffffffa, 0x563ece6e, 0x9, 0x3, 0x9, 0x9, 0x69, 0x4, 0x2, 0xd81, 0x9, 0x8, 0x5]}, {0x21, 0x0, [0x50ae, 0x2, 0xa93, 0x10000, 0x8, 0x2, 0x9, 0x9, 0x3, 0x4, 0x7fffffff, 0xc88, 0xc3, 0x80000000, 0x2, 0xd52]}, {0x8, 0x0, [0x2, 0x7ff, 0x0, 0x1, 0x47e, 0x0, 0xffff, 0x0, 0x4, 0x8, 0x1, 0xffff, 0x5, 0x1, 0xfffff0da]}, {0x10, 0x0, [0x46, 0x6, 0xffff281d, 0x6, 0xffff33ec, 0x401, 0x9, 0x1, 0x8, 0xfffff800, 0x9, 0x6, 0x6, 0x7, 0x79, 0xfe000000]}], 0xffffffffffffffff, 0x1, 0x1, 0x120}}, 0x20)
write$binfmt_elf64(r6, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r6])

3.488523153s ago: executing program 2 (id=3053):
r0 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000580)='./file1\x00', 0x40c0, &(0x7f0000002480)=ANY=[], 0x3, 0x11f4, &(0x7f0000001280)="$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")
r1 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a00)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x400, 0x8, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8db48224ad54afa051d875397bdb22d0000b420a100005240f45f819e00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6]}})
mount_setattr(r0, &(0x7f0000000280)='./file1\x00', 0x100, 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000480)={0x0, {}, 0x0, {}, 0x3, 0x0, 0x1e, 0x28, "561bfcadb322e7a648b826f003c1851a9c242527cb3d254dada276366a87ccc588949546a12cc5809eccd37a8564cabfda4c147b3a45b8e943bced07fd3fffbf", "2b416beaef043ee1e602417940bd7c3771390871faaa7103228109660205a039", [0x3, 0x7]})

2.150584609s ago: executing program 7 (id=3055):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000100)={0x0, 0x1f, 0x8, 0x1a, 0x200, &(0x7f0000000880)="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"})

2.039666223s ago: executing program 8 (id=3057):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000007c0)=ANY=[@ANYBLOB="01000000000000000a0000000000ff00ff010000000000000000000000000001000001000000000000000000ffff00000000000000bd0000000000000000000000e4ec01000000004000000000fc00000000000000000000000000013da51fd47aa2e2f7000000000000000000000000000000000000000000000000000000000000000600000000000000"], 0x310)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f00000005c0)={0x1, {{0xa, 0x0, 0x9, @mcast1, 0x3}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)

2.03625527s ago: executing program 0 (id=3058):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x8}}}, 0x24}}, 0x1)
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x200, 0xd4d1}}}}]}, 0x44}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000ac0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_TBF={0x3c, 0x1, {0x3ff, 0x5, 0x70, 0x1bf, 0x4, {0x3, 0x1, 0x8000, 0x3571, 0x5, 0x3e1}, {0x2, 0x1, 0x4, 0x0, 0x8, 0x8836}, 0x80000001, 0x0, 0x7}}, @TCA_POLICE_RATE={0x404, 0x2, [0x227, 0x0, 0x3, 0x8001, 0x43b, 0x9, 0x6, 0x16, 0x1, 0x0, 0x9, 0xfffffe01, 0x8, 0x9, 0xb, 0xe, 0x5, 0x5, 0x3, 0x5754, 0x7, 0x5, 0x4, 0x7, 0x67, 0xff, 0x3ff, 0x3, 0x401, 0x3, 0xa159, 0x7, 0x9, 0x4, 0x2, 0x1, 0x0, 0x0, 0x7, 0x1270892f, 0xa9, 0x9, 0x4, 0x9, 0x7fffffff, 0xfffffffb, 0xdd, 0xba6, 0x29, 0x0, 0xf, 0x4, 0xffff, 0x4, 0x0, 0x10, 0x800, 0x4, 0x0, 0x0, 0x0, 0x20, 0x40, 0xfffffff7, 0x6, 0x7, 0x1, 0x1f, 0x50, 0x7, 0xfffffff5, 0x2ddd, 0x7, 0x1, 0x3, 0x9, 0x0, 0x101, 0x8, 0x8, 0x401, 0x9, 0x7, 0x9, 0x4, 0x622, 0x8001, 0x1000, 0x7ff, 0x81, 0x80, 0x4, 0x8, 0x0, 0x4, 0x8, 0xce, 0x1, 0x4, 0x9, 0x404, 0x1, 0x1, 0x0, 0x4, 0x6, 0x3, 0x8, 0x8, 0x3, 0x3, 0x0, 0x1, 0x1, 0x8, 0x5, 0x4, 0x6, 0x9, 0x200, 0x7fff, 0xb163, 0x1, 0x7, 0x2, 0x7fffffff, 0x1, 0x6, 0x6, 0xfffffff9, 0x7, 0x400, 0x1, 0x19d, 0x27b2, 0x7e, 0x9, 0x20, 0x10000, 0x2, 0x4, 0x14a, 0x7, 0xff, 0xfffffff2, 0xa5, 0x0, 0x4, 0x80, 0x9, 0x40, 0x1, 0x6, 0x3, 0x2000006, 0x7ff, 0x0, 0x4, 0x400, 0xfffffffa, 0x1, 0x101, 0x2, 0xda, 0x84e3, 0x6, 0x9, 0x24, 0x101, 0x5, 0xfffffff7, 0x7f, 0x2, 0x101, 0x2, 0x9, 0x8, 0x1, 0x10001, 0x2, 0x8, 0x80000001, 0x5, 0x0, 0x80000001, 0xba6, 0x0, 0x80000001, 0x2, 0x201, 0x0, 0x3, 0x0, 0x8, 0x6, 0x6, 0x4, 0x0, 0x9, 0x8, 0xfffffffe, 0x8, 0x46, 0x2000, 0x7fffffff, 0x7, 0x4, 0x32e, 0x7, 0x9, 0x2, 0xe, 0x9, 0x3, 0xa2, 0xc, 0x9, 0x1ff, 0xb, 0x0, 0x8, 0xffffffff, 0xfffffff1, 0x6, 0x1, 0x5, 0xffffffff, 0x2, 0x7, 0x3, 0x4, 0xb7, 0x6, 0xfff, 0x7, 0x1, 0x3, 0x8, 0x10000, 0x193, 0x2, 0xffff, 0x4, 0x8, 0x80000001, 0x35f, 0x0, 0x2, 0x8001, 0xc, 0x3, 0xfffffffe, 0xb4d, 0x3, 0x7ce9, 0xb]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x200, 0x8, 0x40000, 0x6, 0x3, 0xa, 0x9, 0xff, 0x9, 0x5, 0x0, 0x1, 0x6, 0x7f, 0x6, 0x5, 0x715, 0x7, 0x8, 0x7f, 0x3ff, 0xfffffffd, 0x5fc, 0xfffffffb, 0xb, 0x78, 0x1, 0xffffffff, 0x8, 0x8, 0x10001, 0x5482, 0xfffffffb, 0x4, 0x4fa6, 0x28, 0x8, 0xdf3b, 0x8000, 0x9, 0xef1a, 0xb1, 0x3, 0x3, 0x2, 0x2, 0x9, 0x7, 0x5, 0x9, 0xae0, 0x0, 0x8f, 0x1aa2, 0x3, 0xff, 0x400, 0x4, 0x1, 0x69, 0x56, 0x8, 0x9, 0x9, 0x2, 0x4, 0x2, 0x15d, 0x400, 0x7fff, 0x3, 0x1, 0x52, 0x9, 0x1, 0x0, 0x37fe, 0x7, 0x1f43, 0x9, 0x5, 0x6, 0x5, 0xa72, 0x8001, 0x10001, 0x700000, 0x1f1b, 0x480, 0x2452, 0x2, 0x0, 0x6, 0x40, 0x0, 0x7, 0x3, 0x0, 0x7fff, 0x2a36, 0x3, 0x10000, 0x7ff, 0x8001, 0xaf93, 0x6, 0x3, 0x7, 0x239, 0x7, 0x3, 0x4, 0x3, 0x5, 0x9, 0xd, 0x2, 0x5, 0x2, 0x3, 0x0, 0x625e, 0x0, 0x8000, 0x9, 0x2, 0xb, 0x0, 0x1ff, 0x9, 0x8, 0x7, 0x6c7f, 0x4, 0xa4c3, 0x400, 0x0, 0x1, 0x2f85, 0x78, 0x7, 0x101, 0x6, 0x1, 0x9, 0x4, 0x4, 0x2, 0x5, 0x3, 0x0, 0x4, 0x7, 0xe53, 0xf19, 0x10001, 0x8d6, 0x9, 0x1, 0x10000, 0x8, 0x8, 0x6, 0x9, 0x7d94, 0xe250, 0xdf8c, 0x9, 0x1ff, 0x7, 0x3, 0x3, 0xfb3, 0x6, 0x0, 0x4, 0x3, 0x4, 0x6b, 0x80, 0x1, 0x1, 0xb67f, 0x8, 0x6, 0x400, 0x8dc, 0x7, 0x10001, 0x6, 0x7, 0x6, 0x7f, 0x7fffffff, 0x5, 0x77, 0x5, 0x4, 0x1, 0xec5d, 0x3ff, 0x80, 0x8, 0xffffffff, 0x2, 0x0, 0xe, 0x0, 0x400, 0x7, 0x55, 0x81, 0x4, 0x7, 0xffffff01, 0x4, 0x80, 0x5, 0x1, 0x4, 0xfffffffb, 0x400, 0xa, 0x8, 0x1, 0x4, 0xa, 0x7, 0x3, 0x800, 0x100, 0x1588, 0x8, 0x5, 0x6, 0x5, 0x8, 0x4, 0x1, 0x6, 0xc, 0xff, 0x6, 0x3, 0x4, 0xa, 0x5, 0x7, 0x7, 0x80000000, 0x1ff, 0x9, 0xfffff558, 0x7, 0x8001, 0x3]}]}]}}]}, 0x87c}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.915122364s ago: executing program 9 (id=3059):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000200)=0x1, 0x4)
recvmmsg$unix(r0, &(0x7f00000001c0), 0x4000000000000bd, 0x2, 0x0)

1.822664958s ago: executing program 8 (id=3061):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB='b'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmmsg$unix(r0, &(0x7f0000005980)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000002500)="99", 0x1}, {&(0x7f0000003500)="1546d2efb923fb47fef5b19534cd8a2148e0f8506da065247d9df9f9dc31048a6ec81057cad55cfc852de5d110b48b2fafb39ac6f4f203999f58589cd6d73641125c1626eed11f6507d9223305aaf34068da38328676fa89cf571ba06c13c2c2130552c8a221c70879f3cfb2dd09bc6dd9a5da7465be990838c1f32d0b751b2e9c6c3e61563baae5127b175233bc186ae07721a1a031e696e6b4045c4d5f75693649efb709175a4d67706b28c60d2cc680ccb1702700af0cf9afd5d5624a3a4c725cd310d51bcc50305f53f350a0f5e8a8153737d480ad526a6de0687bd979cf2ac2e67b95a8fed0ab139db6caac24424962b75efcc52bebb184a71a524d45d522a3fc148fee440fb50ccb175d0e073be0c088e93002a7c035d1275a1f3eb866befd69a66e5a0d2bd45431fd2cdbf07d11bdfc1b63f0eff656b058dac782ea734aa24b5190d046e964c54f7eccd3de0254b3ecc0322c761b68f9077c07ac4fb922a291d34d761e22e7e9a4f8eabb202d573fe1620e7f22d7bbf88ff91f8b02c02f9154898f73ff91589e8a7c7466facd25162dbd6bec60c16ef772b1ada065fa03d829de6afd32fc8f7facd706bf520fc403df237189438d5b86975d844c0528399e7e0b1f26e8905aca9ac8b46a105f3726f2c42007ea7bdbf9822a95eaa462c6db4e1e72815f893590923ffe59b66e593008a24c37b4a976bb1d1bd375050897c65101982a804d6ea2a14e3be2fcbffee77f7ec03140491a45507386eaec45096da818699fe166190d374aa215209497b816831d5572cbba8a03d14ea08ba3075e3cc4fe83293617551431e44887af18ec351a21392917dc2dc04f83504df34927a2a5e32e7475101a8f3c4a92ce97991bf2ff73b39a9bc0e1e3802aef458ef66897ab386a7ca805a0c99faeabbbb273ca58487b930d9eeab03b6053aaa80c293c3d1b8e8b52679b912a785ba0e0cdd43c0bb05465860154aa1f19eac982661516cb82453991bc802b39756640badfce1312e3c9b82f20524ef7a63dd098accc76884900cbecfcf6f34cb6e7ad5584d9e87cee505818453d39ede09e74c3edb848e811baa6841c19e2e3e328003c85d54836790247367afd44780498762e6f1cd1f8559a8d8271a96e38a0147cd3955b40a57c9817f24bd4fa76b2241be44a567e34ac2b1c251ddf5740ce7d73e2d506bfbc39892a6edabbbe6f677f291eaa531500c4096649de23a7441e5e8b8c2db4d111d3a88beeaa473774af7a02f98d9503c1615980df6ef0f2de0f5c1a6d574bf283fa9c2761d3595d7b9122991e0554be1be819c17d7264392e083432acfdbf15fc6f4805a6ba61a30d3124aa590370660f592673876eebf8a30ad40bf6daa5f679da0168104db5102458006901ea70229da257c84a87bfdcca6c0c379dbdc3f933f336608c5bf369a4f9564ca7585d03c6e6eb8354a7c5ea11f39ff18387f0986c599bfd34dfa3b13f68302e287523535456a0ebd89144970c2d6fa8d665950f96195c84085d6b2b98ce8bb9de9970a95f18fef8a127dc6739750cdb8a3e7a5f2180e3e0c59cd9fc721444827c7a9b58c155630a77dd7d5d0dab497ce91c92d393c0f54aaf6324741bcb084ad0959b5cea7a728af208b87e8217c49a979045ac86dfb6cb4b99f8f4c32dafe7be75b587b6827ec55e78286e8f5fd9aa4937f28ad93c2142d959a02489b2588126f62462bbdf9ebc7bb7d4f0df57c4f342f31f6365830cc00e484fce78cdfa1a99ed423ca1b1447e1016ee7eb0d304bb1b74b4c86b193565673538fa3d1e17b443c6f90015c27f88c828ec1ee1009a371a7b9568b41b4b7285a952e503fcbc2257989ebc1bb1922db9b40bdc27a6a9ea0df78936371d0ecf0c2adf3c3e49fd0755a3dc1d5897e44981ff51b7e17f7be03db882ec97af70173ede61c947d8e9d0c843866271db2667fcdf7ebce09a14800851c2d2d1c49d9a847421f661a62278eb05ed8a282e4e77bb58d15c143047dbdf2bd541d9839264d6c7022e31a633a9e4ee0f7958b2fcdce92af039c240a192bdc43472c140aceda0193798d50f88f8549d4cf24ee2a26b21fc01e442e73ee4afdac73535646b8c67c2ef49a05a5abd80d8f6e1c4bf03eb2eff3a2eded5e86871e5dfc6373dd9a55169746910d26c22c17033cfb185dbb2d7cc6e66027150c4b103dcf6705dc7264229cbfa4f06aaf33a8ae1a5c2da8ed3e070a1f6f0d807b3fcfc8e17961d19a37a6ec53035270faad47d1927d88ee65957cb06aaa84a819ac5189c0f118ef771a57468f5b138cc23399bbb49d38333c5bf03c972bce7c96c58b9dbf3bb0cd85a479f90be2410c83df62ca4162872af752cc80c2e23d04ef8de811484a385b256d527836a2ba0e9257550d43559d87b338cb22e3ca43e82bde75f4d31f93b92c178c227634e07c31d0c581df5c7244a24cb1d7745431f8b7114e670e0b3442c51ce45711cb04b320e7a4a36b1b0a8ee5d951f41716064f4f24ec5847dc17a8a4f8427f3fd5c8ebda7dd276c9648b503381e79d703c9ea7db559b3fa0c0cd2c7b40c77f1f8195bf276bad66698d60e1a43dd171aab5213f9ede75aed4728ce9a9d1b2f3f1ac3ebf2a1a03f3930c9db9b2ab969ed750339e32a1e894685400ef44e8e8fc543c8c0ffc561bf18b2d19017c099929249f54b6fe69ecf046f641ff5b86e11e8cd6e790a2005f676f7a44d39920f527bb864cdfad6357f62dc343741bba00b054a7720d8a39bba9f6d1b87cf335526df65eaa68127ddf83d6ce5caefb912ed7b76158d0e4b016ec1be0c20a28ea0f67f07fe6388cc6ecf2aeeb965bfcf99ec14d8eb659877770271980e01bbe8aaa0a2864cf727123a508c1034420dc524974e7218930dd9e05d3fdc30bd57747a7561b63efd207a6c11992dd6f5a2a3525611ad1252e2d152a6a548efae3de9b10d5c34e0573fa151810b9cfd419a8105cd60ba05acd07ac5dd3bb2062bb9c99d555e1defac5364868005716ea381ec942dd3fe486f5ca49b5258f70a1cc1cb1afdf6c8b51984b1c93eb5880f99b659e9658ce250a03faa708074c64af3f2d5291008d9a6752c071d930d0d14bef1b400d482b1df7377cf534fa73b6b1a909987a7b6ad95f9ba9ebc38cab0fb13f974a8bd1c909db6c9bbc2994110ef188faebddc5f385ddefa6605dd617dcae57be92e31b5a417c7a17ef813e6536168daeb97a61a37a9395e76f88c86141ec157910f2d0bcd26361c9d620e85e6e8b076997752d4f2b19b50f4392d8e3917c27ecf36a1d9afbd011b2dd289076152211a6dc1c99b55cd9ec3f7b8c387598c1c000c2e22290c7f1266baec8833bc44eb9e30a1473ec01efa9f1f404a5bfc2d917a3ef19053baabad53318bf2164e2671db9f666c319ce8c525b557965f64cad2d1cd420bf50f23a7903e882fd68b9729dc94710310def6498e26045ec89c95e5910e05682accc49816cd4657c3", 0x9a1}], 0x2, 0x0, 0x0, 0x4000000}}], 0x1, 0x1)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x1200, 0x0, 0x3)

1.818937217s ago: executing program 0 (id=3062):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.733517359s ago: executing program 2 (id=3063):
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)=ANY=[], 0x1c}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x0, 0x0, @buffer={0x2, 0x51, &(0x7f00000000c0)=""/81}, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0, 0x0})

1.680665777s ago: executing program 6 (id=3064):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x20008040}, 0x20008000)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r3, @ANYBLOB="0100000000000000240012000c000100627269646765000e1400020008000700"], 0x44}}, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0x8100, r3, 0x1, 0x0, 0x6, @dev}, 0x14)

1.680336015s ago: executing program 7 (id=3065):
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000000080)=""/201, 0xc9}, {&(0x7f00000005c0)=""/220, 0xdc}], 0x2, 0x0, 0x0)

1.679789195s ago: executing program 9 (id=3066):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'geneve1\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000080)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendto$inet6(r0, &(0x7f0000000280)="0503092c8f0b480301020d00c52cf7c25975e010b02f0800eb2b2ff0dac8897c6b118777faffffff3066100cb600c5471d130a66321a54e7df305f80a88161b6fd8f24286a57c3feffff", 0xfc13, 0x800, 0x0, 0x2f)

1.57858386s ago: executing program 0 (id=3067):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r0, 0x0, 0xf, 0x0, &(0x7f00000006c0)="f6f4e9a1d78ad62ceef1884366a578", 0x0, 0x0, 0x0, 0x31, 0x0, &(0x7f0000000700)="49723b3ab53a13274c56e00d5be19f87e669877bbc7b7c0cb48fd1bbea1e688e7c84ccfb034a845b4493c90e1785234592", 0x0}, 0x50)

1.484058437s ago: executing program 0 (id=3068):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010125bd70000000000000000000", @ANYRES32=r4], 0x20}}, 0x0)

1.48371929s ago: executing program 6 (id=3069):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x7, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000064279a3f1c155f6f340f00000000000000c1f6126ea0fa8dd1"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x8000000000000000}, 0x18)
process_madvise(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000000)='8', 0x1}], 0x20, 0x14, 0x0)

1.415916134s ago: executing program 7 (id=3070):
getsockopt$nfc_llcp(0xffffffffffffffff, 0x6, 0x12, 0x0, 0x2000e881)
socket$netlink(0x10, 0x3, 0xa)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a000000"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000"], 0x64}}, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x0)
mmap(&(0x7f000001a000/0x3000)=nil, 0x3000, 0xf, 0x11012, r4, 0x0)

1.415480544s ago: executing program 6 (id=3071):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000002cc0)=[{{&(0x7f0000000100)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}], 0x1, 0x240080e4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
sendto$inet(r0, 0x0, 0x0, 0x20000000, 0x0, 0x0)
syz_extract_tcp_res(0x0, 0x7, 0x9)

1.387024302s ago: executing program 2 (id=3072):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@bloom_filter={0x1e, 0x8, 0x8001, 0x6, 0xa0, 0xffffffffffffffff, 0x70000000, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x3, 0xe, @void, @value, @void, @value}, 0x50)
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x40)
fsetxattr$system_posix_acl(r0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02"], 0xfe44, 0x0)

1.322613976s ago: executing program 9 (id=3073):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000007c0)=ANY=[@ANYBLOB="01000000000000000a0000000000ff00ff010000000000000000000000000001000001000000000000000000ffff00000000000000bd0000000000000000000000e4ec01000000004000000000fc00000000000000000000000000013da51fd47aa2e2f7000000000000000000000000000000000000000000000000000000000000000600000000000000"], 0x310)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f00000005c0)={0x1, {{0xa, 0x0, 0x9, @mcast1, 0x3}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)

1.315668052s ago: executing program 2 (id=3074):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fcae68da850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
close_range(r2, 0xffffffffffffffff, 0x0)

1.144166249s ago: executing program 8 (id=3075):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x10b}], {0x14}}, 0x5c}}, 0x0)

1.063206192s ago: executing program 2 (id=3076):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x1})
fcntl$lock(r0, 0x25, &(0x7f0000000040)={0x2, 0x0, 0x80, 0x7})
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0xa031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
mlockall(0x1)
mlockall(0x6)
syz_emit_ethernet(0x10a, &(0x7f0000000100)={@random="8fb1c3d7c6ad", @remote, @void, {@generic={0x88be, "4a9203560179e0d5338c91345c3c2857754f22e5d35b63c5d13ced9890444d00c3090aa5517122a91d50e653dd69000010ceff732b7b992a174e35a9f0d696c19718b1908247b6ce3fb2284e04bac062a08affbde553ea0d6eb42c843ae963ef2a387e35d3fa28fe765e2e8caefce5a7537c14cc6ec184535e59aee642bc5c2da091f4ca6a90ca74bc0f2a2dbc2305f074802640934160b274f50823bff2ff5d54cea9db228726c73affdb09ec04b4c185f817f83106a6755e42124bb7e7bbcff3daca63f66ce5c7af5911467ace73a8c4838777dd92fb7cfd800856af57f8589af7fa9f22dc4258b9cd881f07aef6ec10a4e708d77ca03a0826bc9f"}}}, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x1, 0x1000)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000440)={{0x1, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, 0x0, 0x800000000000000, 0x400000000000000, 0x2, 0x0, 0x3, 0xe8, 0x0, 0x0, 0x0, 0xffffffffffffffff})
msgsnd(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0xae, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x1b, &(0x7f00000002c0), 0x4)
sendmsg$NLBL_MGMT_C_ADD(r2, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="010029bd7000ffdbdf250100000008000700e0000001080002000500000008000800001e01010c0001006e6c3830"], 0x38}, 0x1, 0x0, 0x0, 0x40010}, 0x80)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)

1.062454976s ago: executing program 0 (id=3077):
r0 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000580)='./file1\x00', 0x40c0, &(0x7f0000002480)=ANY=[], 0x3, 0x11f4, &(0x7f0000001280)="$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")
r1 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a00)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x400, 0x8, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8db48224ad54afa051d875397bdb22d0000b420a100005240f45f819e00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6]}})
mount_setattr(r0, &(0x7f0000000280)='./file1\x00', 0x100, 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000480)={0x0, {}, 0x0, {}, 0x3, 0x0, 0x1e, 0x28, "561bfcadb322e7a648b826f003c1851a9c242527cb3d254dada276366a87ccc588949546a12cc5809eccd37a8564cabfda4c147b3a45b8e943bced07fd3fffbf", "2b416beaef043ee1e602417940bd7c3771390871faaa7103228109660205a039", [0x3, 0x7]})

986.52628ms ago: executing program 9 (id=3078):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)

986.236849ms ago: executing program 6 (id=3079):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

205.718364ms ago: executing program 7 (id=3080):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r0, 0x0, 0xf, 0x0, &(0x7f00000006c0)="f6f4e9a1d78ad62ceef1884366a578", 0x0, 0x0, 0x0, 0x31, 0x0, &(0x7f0000000700)="49723b3ab53a13274c56e00d5be19f87e669877bbc7b7c0cb48fd1bbea1e688e7c84ccfb034a845b4493c90e1785234592", 0x0}, 0x50)

160.919733ms ago: executing program 9 (id=3081):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000700)="6a8fa35a5ac69c3f3504610b7a65154b8a319d412cae86d445126356a7ea73e2cc334fba45667941bdeaebee3915c7685d4a2c125a1898bb727147075b79a19e162ca01c17cdb0398d7303a2955433e8f9de6d144dddc2ca170b10d505c3eb024dcacee0c139b5a9044f1f3a0fd4e958406a6ba551007ed89e2312e678f38707c8f37e5c8fe3cb977b7035046ea60fc263c1f72c13c1c7be3f14407e96c832dd5b10a03966185a38402e2cf26722ddeb0ef8", 0xb2}], 0x1}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000001bc0)="5c89eeb1aa86c6f680f09cc1c1d4bc5fc6a067d295afd3aa97af3d777b81db48f9ceb270e506af840503c6fbf20760e4cd8df9c220cd0728585229123d5c61507d00561b8f1a15e64fa2779be424fdeff46058eaee7acfc80b2ae9840e9ac1e33ac8378c98695a08bdb8f2a756b1704c036e3b0ff2d1e9d397a82e24debd371e6855b7dc2dea47d57a9dfbf4fb2ccb3f975c3851c6b5399ab80c4ba95604f70a69674cfe820d82fb06b243625a8a9e4ee52e7c2ec4d63241fb00efd1a485a36dfb4a7dd573c6584c4afc55b3ff0a93509fe41aa0e8892c95ccad3e0435071aff78177e946cf231de4f389b695c5f49772b8abb6b88226fd4c2b0c57d47b98f2aa1b2ec38c4a97f3783023f04cdb380dd6a00d2fc63c932a9876863728e1fcb245109713c16375ffc68b041b86f737c41233cf2a05e51699db6a0e3c4b82b", 0x13e}], 0x1}}], 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

160.488709ms ago: executing program 6 (id=3082):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x20008040}, 0x20008000)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r3, @ANYBLOB="0100000000000000240012000c000100627269646765000e1400020008000700"], 0x44}}, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0x8100, r3, 0x1, 0x0, 0x6, @dev}, 0x14)

38.686492ms ago: executing program 7 (id=3083):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0x0)

23.090024ms ago: executing program 6 (id=3084):
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)=ANY=[], 0x1c}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x3, 0x0, @buffer={0x2, 0x51, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374", 0x0, 0x0, 0x0, 0x0, 0x0})

0s ago: executing program 8 (id=3085):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x38, r5, 0x1, 0x0, 0x0, {{}, {}, {0x1c, 0x17, {0x7, 0x0, @l2={'eth', 0x3a, 'syzkaller0\x00'}}}}}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @local})

kernel console output (not intermixed with test programs):

cutor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  512.761048][T12576] 9pnet: Could not find request transport: xen
[  512.832830][T12589] tipc: Started in network mode
[  512.840580][   T29] audit: type=1326 audit(499.504:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.0.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  512.872522][T12589] tipc: Node identity 3e946837d05f, cluster identity 4711
[  512.879957][T12589] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  512.885618][T12591] loop0: detected capacity change from 0 to 164
[  512.901500][T12588] tipc: Disabling bearer <eth:syzkaller0>
[  512.907407][   T29] audit: type=1326 audit(499.504:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.0.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  512.918913][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  512.952077][T12591] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  512.976003][T12591] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  513.002904][T12591] iso9660: Corrupted directory entry in block 4 of inode 1792
[  513.046081][   T29] audit: type=1326 audit(499.869:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12593 comm="syz.7.2140" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a94985d19 code=0x0
[  513.151697][   T29] audit: type=1326 audit(499.963:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12596 comm="syz.8.2143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b84585d19 code=0x7ffc0000
[  513.212239][   T29] audit: type=1326 audit(499.991:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12596 comm="syz.8.2143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b84585d19 code=0x7ffc0000
[  513.261928][   T29] audit: type=1326 audit(499.991:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12596 comm="syz.8.2143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b84585d19 code=0x7ffc0000
[  513.329754][   T29] audit: type=1326 audit(499.991:1366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12596 comm="syz.8.2143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b84585d19 code=0x7ffc0000
[  513.697644][    C1] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  513.711992][T12624] loop6: detected capacity change from 0 to 512
[  513.806834][T12624] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  513.903207][T12631] loop0: detected capacity change from 0 to 164
[  513.947292][T12631] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  514.000307][T12624] 9pnet: Could not find request transport: xen
[  514.009628][T12631] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  514.246168][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  514.277842][T12583] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  514.310985][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  514.366481][T12631] iso9660: Corrupted directory entry in block 4 of inode 1792
[  514.842128][ T6317] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.047812][ T5956] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  515.063646][ T5956] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  515.071995][T12657] loop6: detected capacity change from 0 to 128
[  515.111766][T12659] syz.8.2165[12659] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  515.111862][T12659] syz.8.2165[12659] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  515.113107][T12656] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2167'.
[  515.166067][T12659] syz.8.2165[12659] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  515.184007][T12657] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  515.309155][    C0] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  515.332624][ T6317] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  515.357469][T12669] loop0: detected capacity change from 0 to 512
[  515.414051][T12670] loop3: detected capacity change from 0 to 1024
[  515.469329][T12670] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840c01c, mo2=0003]
[  515.482666][T12679] loop7: detected capacity change from 0 to 164
[  515.485769][T12670] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  515.496823][T12677] x_tables: ip_tables: osf match: only valid for protocol 6
[  515.533321][T12669] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  515.537704][T12681] macsec1: entered allmulticast mode
[  515.566142][T12679] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  515.618734][T12679] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  515.629434][T12679] iso9660: Corrupted directory entry in block 4 of inode 1792
[  515.648959][T12669] 9pnet: Could not find request transport: xen
[  515.724916][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.758541][ T5833] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.921427][T12696] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2181'.
[  515.955527][T12695] loop0: detected capacity change from 0 to 512
[  516.017889][T12695] EXT4-fs: Ignoring removed i_version option
[  516.023954][T12695] EXT4-fs: Ignoring removed mblk_io_submit option
[  516.056294][T12699] loop3: detected capacity change from 0 to 512
[  516.063143][T12695] ext4: Unknown parameter 'seclabel'
[  516.186237][T12699] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.2183: casefold flag without casefold feature
[  516.206526][T12710] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2186'.
[  516.282669][T12699] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2183: couldn't read orphan inode 15 (err -117)
[  516.333598][T12713] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2187'.
[  516.380456][T12699] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  516.498187][T12721] loop7: detected capacity change from 0 to 512
[  516.544608][T12721] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  516.686950][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  516.731198][T12729] loop0: detected capacity change from 0 to 1024
[  516.767467][T12721] 9pnet: Could not find request transport: xen
[  516.855862][T12729] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  516.888385][T12728] loop6: detected capacity change from 0 to 164
[  516.916007][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  516.958943][T12728] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  517.069597][T12745] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2199'.
[  517.083581][T12743] ip6erspan0: entered promiscuous mode
[  517.108340][T12743] ip6erspan0: entered allmulticast mode
[  517.112098][T12728] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  517.120341][T12745] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  517.185907][T12728] iso9660: Corrupted directory entry in block 4 of inode 1792
[  517.194480][T12745] batman_adv: batadv0: Removing interface: batadv_slave_0
[  517.196490][T12750] 9pnet_fd: Insufficient options for proto=fd
[  517.251131][T12745] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  517.258806][T12745] batman_adv: batadv0: Removing interface: batadv_slave_1
[  517.401619][T12760] netlink: 'syz.6.2203': attribute type 1 has an invalid length.
[  517.421041][T12760] netlink: 83992 bytes leftover after parsing attributes in process `syz.6.2203'.
[  518.112876][ T5833] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  518.253912][T12783] loop7: detected capacity change from 0 to 128
[  519.267086][   T29] kauditd_printk_skb: 44 callbacks suppressed
[  519.267109][   T29] audit: type=1800 audit(761.095:1411): pid=12787 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2216" name="bus" dev="loop7" ino=1048679 res=0 errno=0
[  519.446560][   T29] audit: type=1326 audit(761.843:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12784 comm="syz.0.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  519.485151][   T29] audit: type=1326 audit(761.871:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12784 comm="syz.0.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  519.507248][    C1] vkms_vblank_simulate: vblank timer overrun
[  519.555482][   T29] audit: type=1326 audit(761.881:1414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12784 comm="syz.0.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  519.629606][   T29] audit: type=1326 audit(761.881:1415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12784 comm="syz.0.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  519.652086][   T29] audit: type=1326 audit(761.881:1416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12784 comm="syz.0.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  519.684819][T12797] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2217'.
[  519.691822][   T29] audit: type=1326 audit(761.881:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12784 comm="syz.0.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  519.764641][   T29] audit: type=1326 audit(761.881:1418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12784 comm="syz.0.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  519.818219][   T29] audit: type=1326 audit(761.881:1419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12784 comm="syz.0.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  519.872384][   T29] audit: type=1326 audit(761.881:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12784 comm="syz.0.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  520.058216][T12812] netlink: 'syz.3.2226': attribute type 7 has an invalid length.
[  520.067402][T12812] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2226'.
[  521.488710][T12847] netlink: 'syz.3.2241': attribute type 7 has an invalid length.
[  521.789516][T12847] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2241'.
[  521.816676][T12848] loop7: detected capacity change from 0 to 512
[  521.851939][T12848] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  521.955265][T12848] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[  521.964464][T12848] System zones: 1-12
[  521.969493][T12848] EXT4-fs (loop7): orphan cleanup on readonly fs
[  521.998844][T12848] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.2242: bg 0: block 361: padding at end of block bitmap is not set
[  522.044115][T12848] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  522.061805][T12848] EXT4-fs error (device loop7): ext4_clear_blocks:876: inode #11: comm syz.7.2242: attempt to clear invalid blocks 33619980 len 1
[  522.101153][T12848] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.2242: invalid indirect mapped block 1811939328 (level 0)
[  522.159884][T12848] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.2242: invalid indirect mapped block 2 (level 2)
[  522.176732][T12848] EXT4-fs (loop7): 1 truncate cleaned up
[  522.188133][T12848] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  522.611149][T12877] loop3: detected capacity change from 0 to 764
[  522.683928][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  522.719502][T12877] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  522.756402][T12889] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2261'.
[  522.889318][T12893] netlink: 'syz.7.2259': attribute type 7 has an invalid length.
[  522.911870][T12893] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2259'.
[  522.948399][T12896] loop2: detected capacity change from 0 to 512
[  523.004900][T12896] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  523.030060][T12896] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2262'.
[  523.079618][T12896] 9pnet: Could not find request transport: xen
[  523.222164][ T5836] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  523.257879][T12913] atomic_op ffff888058dad198 conn xmit_atomic 0000000000000000
[  523.591376][T12936] loop2: detected capacity change from 0 to 512
[  523.651334][T12942] netlink: 'syz.3.2282': attribute type 7 has an invalid length.
[  523.659557][T12942] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2282'.
[  523.684314][T12936] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  523.709635][T12936] EXT4-fs (loop2): mount failed
[  523.803385][T12946] loop3: detected capacity change from 0 to 256
[  523.849951][T12946] FAT-fs (loop3): Directory bread(block 64) failed
[  523.878377][T12946] FAT-fs (loop3): Directory bread(block 65) failed
[  523.903738][T12946] FAT-fs (loop3): Directory bread(block 66) failed
[  523.923589][T12946] FAT-fs (loop3): Directory bread(block 67) failed
[  523.953686][T12946] FAT-fs (loop3): Directory bread(block 68) failed
[  523.964377][T12946] FAT-fs (loop3): Directory bread(block 69) failed
[  523.983961][T12946] FAT-fs (loop3): Directory bread(block 70) failed
[  523.990530][T12946] FAT-fs (loop3): Directory bread(block 71) failed
[  524.014244][T12946] FAT-fs (loop3): Directory bread(block 72) failed
[  524.027855][T12946] FAT-fs (loop3): Directory bread(block 73) failed
[  524.649198][T12969] netlink: 'syz.7.2295': attribute type 7 has an invalid length.
[  524.662101][T12969] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2295'.
[  525.743381][T12932] warn_alloc: 1 callbacks suppressed
[  525.743403][T12932] syz.0.2280: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  525.789674][T12978] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  525.796387][T12932] CPU: 0 UID: 0 PID: 12932 Comm: syz.0.2280 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  525.809082][T12932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  525.819158][T12932] Call Trace:
[  525.822451][T12932]  <TASK>
[  525.825393][T12932]  dump_stack_lvl+0x241/0x360
[  525.830109][T12932]  ? __pfx_dump_stack_lvl+0x10/0x10
[  525.835341][T12932]  ? __pfx__printk+0x10/0x10
[  525.839961][T12932]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  525.846408][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  525.852054][T12932]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  525.858578][T12932]  warn_alloc+0x278/0x410
[  525.862928][T12932]  ? __pfx_warn_alloc+0x10/0x10
[  525.867791][T12932]  ? hash_netiface_create+0x356/0x1040
[  525.873258][T12932]  ? __get_vm_area_node+0x1c8/0x2d0
[  525.878471][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  525.884108][T12932]  ? __get_vm_area_node+0x25c/0x2d0
[  525.889330][T12932]  __vmalloc_node_range_noprof+0x62f/0x1380
[  525.895257][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  525.900894][T12932]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  525.907242][T12932]  ? hash_netiface_create+0x356/0x1040
[  525.912704][T12932]  ? __get_vm_area_node+0x1c8/0x2d0
[  525.917916][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  525.923552][T12932]  ? __get_vm_area_node+0x25c/0x2d0
[  525.928946][T12932]  __vmalloc_node_range_noprof+0x53a/0x1380
[  525.934844][T12932]  ? hash_netiface_create+0x356/0x1040
[  525.940315][T12932]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  525.946071][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  525.951711][T12932]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  525.958064][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  525.963714][T12932]  ? rcu_is_watching+0x15/0xb0
[  525.968499][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  525.974143][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  525.979784][T12932]  ? __kmalloc_node_noprof+0x2ad/0x4d0
[  525.985259][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  525.990895][T12932]  ? __kvmalloc_node_noprof+0x72/0x190
[  525.996373][T12932]  __kvmalloc_node_noprof+0x142/0x190
[  526.001750][T12932]  ? hash_netiface_create+0x356/0x1040
[  526.007218][T12932]  hash_netiface_create+0x356/0x1040
[  526.012689][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.018332][T12932]  ? __pfx_hash_netiface_create+0x10/0x10
[  526.024068][T12932]  ip_set_create+0xa33/0x18b0
[  526.028931][T12932]  ? ip_set_create+0x424/0x18b0
[  526.033810][T12932]  ? srso_alias_safe_ret+0x6/0x7
[  526.038772][T12932]  ? __pfx_ip_set_create+0x10/0x10
[  526.043933][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.049573][T12932]  ? nfnetlink_rcv_msg+0x225/0x1180
[  526.054783][T12932]  nfnetlink_rcv_msg+0xbee/0x1180
[  526.059819][T12932]  ? nfnetlink_rcv_msg+0x225/0x1180
[  526.065045][T12932]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  526.070517][T12932]  ? stack_trace_save+0x118/0x1d0
[  526.075569][T12932]  ? dev_hard_start_xmit+0x27c/0x7d0
[  526.080862][T12932]  ? __dev_queue_xmit+0x1b73/0x3f50
[  526.086074][T12932]  ? __netlink_deliver_tap+0x56b/0x7f0
[  526.091537][T12932]  ? netlink_deliver_tap+0x19d/0x1b0
[  526.096833][T12932]  ? netlink_unicast+0x7c4/0x990
[  526.101784][T12932]  ? netlink_sendmsg+0x8e4/0xcb0
[  526.106728][T12932]  ? __sock_sendmsg+0x223/0x270
[  526.111589][T12932]  ? ____sys_sendmsg+0x52a/0x7e0
[  526.116530][T12932]  ? __sys_sendmsg+0x269/0x350
[  526.121317][T12932]  netlink_rcv_skb+0x1e5/0x430
[  526.126090][T12932]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  526.131557][T12932]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  526.136858][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.142495][T12932]  ? apparmor_capable+0x13b/0x1b0
[  526.147530][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.153163][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.158826][T12932]  ? security_capable+0x7e/0x2d0
[  526.163791][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.169435][T12932]  nfnetlink_rcv+0x297/0x2ab0
[  526.174126][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.179768][T12932]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  526.185512][T12932]  ? __dev_queue_xmit+0x2f4/0x3f50
[  526.190725][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.196363][T12932]  ? __dev_queue_xmit+0x1775/0x3f50
[  526.201568][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.207203][T12932]  ? kasan_save_track+0x51/0x80
[  526.212151][T12932]  ? ____sys_sendmsg+0x52a/0x7e0
[  526.217114][T12932]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  526.222241][T12932]  ? __dev_queue_xmit+0x2f4/0x3f50
[  526.227365][T12932]  ? __pfx___dev_queue_xmit+0x10/0x10
[  526.232849][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.238483][T12932]  ? ref_tracker_free+0x643/0x7e0
[  526.243514][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.249153][T12932]  ? __asan_memcpy+0x40/0x70
[  526.253747][T12932]  ? __pfx_ref_tracker_free+0x10/0x10
[  526.259124][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.264766][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.270414][T12932]  ? netlink_deliver_tap+0x2e/0x1b0
[  526.275791][T12932]  ? skb_clone+0x240/0x390
[  526.280220][T12932]  ? __pfx_lock_release+0x10/0x10
[  526.285258][T12932]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  526.290732][T12932]  ? netlink_deliver_tap+0x2e/0x1b0
[  526.295944][T12932]  netlink_unicast+0x7f8/0x990
[  526.300919][T12932]  ? __pfx_netlink_unicast+0x10/0x10
[  526.306220][T12932]  ? __virt_addr_valid+0x45f/0x530
[  526.311348][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.316988][T12932]  ? __phys_addr_symbol+0x2f/0x70
[  526.322030][T12932]  ? __check_object_size+0x47a/0x730
[  526.327345][T12932]  netlink_sendmsg+0x8e4/0xcb0
[  526.332131][T12932]  ? __pfx_netlink_sendmsg+0x10/0x10
[  526.337425][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.343064][T12932]  ? aa_sock_msg_perm+0x91/0x160
[  526.348182][T12932]  ? srso_alias_return_thunk+0x5/0xfbef5
[  526.353821][T12932]  ? __pfx_netlink_sendmsg+0x10/0x10
[  526.359109][T12932]  __sock_sendmsg+0x223/0x270
[  526.363804][T12932]  ____sys_sendmsg+0x52a/0x7e0
[  526.368585][T12932]  ? __pfx_____sys_sendmsg+0x10/0x10
[  526.373875][T12932]  ? __fget_files+0x2a/0x410
[  526.378482][T12932]  ? __fget_files+0x2a/0x410
[  526.383099][T12932]  __sys_sendmsg+0x269/0x350
[  526.387705][T12932]  ? __pfx___sys_sendmsg+0x10/0x10
[  526.392865][T12932]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  526.399204][T12932]  ? do_syscall_64+0x100/0x230
[  526.404076][T12932]  ? do_syscall_64+0xb6/0x230
[  526.408776][T12932]  do_syscall_64+0xf3/0x230
[  526.413313][T12932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.419226][T12932] RIP: 0033:0x7f3ecb985d19
[  526.423644][T12932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.443253][T12932] RSP: 002b:00007f3ecc70a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  526.451675][T12932] RAX: ffffffffffffffda RBX: 00007f3ecbb75fa0 RCX: 00007f3ecb985d19
[  526.459652][T12932] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  526.467625][T12932] RBP: 00007f3ecba01a20 R08: 0000000000000000 R09: 0000000000000000
[  526.475597][T12932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  526.483574][T12932] R13: 0000000000000000 R14: 00007f3ecbb75fa0 R15: 00007fff8fdad7f8
[  526.491566][T12932]  </TASK>
[  526.589187][T12980] loop7: detected capacity change from 0 to 256
[  526.596167][T12980] vfat: Unknown parameter 'ÿÿYÿ
/ Óf—7«&&"Cº18446744073709551615'
[  526.647345][T12932] Mem-Info:
[  526.657380][T12932] active_anon:10110 inactive_anon:0 isolated_anon:0
[  526.657380][T12932]  active_file:3029 inactive_file:55699 isolated_file:0
[  526.657380][T12932]  unevictable:768 dirty:449 writeback:0
[  526.657380][T12932]  slab_reclaimable:11206 slab_unreclaimable:102792
[  526.657380][T12932]  mapped:39067 shmem:5627 pagetables:1084
[  526.657380][T12932]  sec_pagetables:0 bounce:0
[  526.657380][T12932]  kernel_misc_reclaimable:0
[  526.657380][T12932]  free:1264580 free_pcp:3323 free_cma:0
[  526.800703][   T29] kauditd_printk_skb: 62 callbacks suppressed
[  526.800725][   T29] audit: type=1326 audit(768.728:1482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12981 comm="syz.8.2300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b84585d19 code=0x7ffc0000
[  527.334197][T12932] Node 0 active_anon:46940kB inactive_anon:0kB active_file:12116kB inactive_file:222720kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:162768kB dirty:1792kB writeback:0kB shmem:27472kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11928kB pagetables:4336kB sec_pagetables:0kB all_unreclaimable? no
[  527.349250][   T29] audit: type=1326 audit(768.728:1483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12981 comm="syz.8.2300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f8b84585d19 code=0x7ffc0000
[  527.367147][T12932] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  527.422560][   T29] audit: type=1326 audit(768.728:1484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12981 comm="syz.8.2300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b84585d19 code=0x7ffc0000
[  527.497244][T12932] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  527.554785][T12932] lowmem_reserve[]: 0 2465 2466 0 0
[  527.560931][T12932] Node 0 DMA32 free:1106492kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:35212kB inactive_anon:0kB active_file:12116kB inactive_file:222040kB unevictable:1536kB writepending:1872kB present:3129332kB managed:2552780kB mlocked:0kB bounce:0kB free_pcp:23652kB local_pcp:13656kB free_cma:0kB
[  527.592419][T12932] lowmem_reserve[]: 0 0 0 0 0
[  527.597324][T12932] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:828kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  527.630262][T12932] lowmem_reserve[]: 0 0 0 0 0
[  527.635130][T12932] Node 1 Normal free:3911184kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  527.664803][T12932] lowmem_reserve[]: 0 0 0 0 0
[  527.669707][T12932] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  527.682723][T12932] Node 0 DMA32: 13*4kB (UM) 34*8kB (M) 188*16kB (ME) 3*32kB (UM) 4*64kB (ME) 2*128kB (ME) 18*256kB (ME) 15*512kB (UM) 19*1024kB (UME) 9*2048kB (ME) 255*4096kB (UM) = 1098596kB
[  527.708297][T12932] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  527.720184][T12932] Node 1 Normal: 202*4kB (U) 61*8kB (UME) 42*16kB (UME) 193*32kB (UME) 99*64kB (UME) 21*128kB (UME) 15*256kB (UM) 12*512kB (UME) 7*1024kB (UME) 3*2048kB (UE) 945*4096kB (M) = 3911184kB
[  527.876949][T12932] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  527.889075][T12932] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  527.938959][T12932] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  527.965361][T12932] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  527.965392][T12932] 63141 total pagecache pages
[  527.965406][T12932] 0 pages in swap cache
[  527.965417][T12932] Free swap  = 124488kB
[  527.965430][T12932] Total swap = 124996kB
[  527.965443][T12932] 2097051 pages RAM
[  527.965455][T12932] 0 pages HighMem/MovableOnly
[  527.965467][T12932] 427006 pages reserved
[  527.965479][T12932] 0 pages cma reserved
[  528.100080][   T52] kworker/u8:3: attempt to access beyond end of device
[  528.100080][   T52] loop3: rw=1, sector=1224, nr_sectors = 608 limit=256
[  528.103102][   T52] kworker/u8:3: attempt to access beyond end of device
[  528.103102][   T52] loop3: rw=1, sector=1864, nr_sectors = 1444 limit=256
[  528.416965][T12997] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2303'.
[  528.534408][T12997] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[  528.534484][T12997] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  528.536528][T12997] vhci_hcd vhci_hcd.0: Device attached
[  528.602857][   T29] audit: type=1326 audit(770.412:1485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.3.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6d4385d19 code=0x7ffc0000
[  528.607738][   T29] audit: type=1326 audit(770.412:1486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.3.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6d4385d19 code=0x7ffc0000
[  528.607784][   T29] audit: type=1326 audit(770.412:1487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.3.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa6d4385d19 code=0x7ffc0000
[  528.607826][   T29] audit: type=1326 audit(770.412:1488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.3.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6d4385d19 code=0x7ffc0000
[  528.607868][   T29] audit: type=1326 audit(770.412:1489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.3.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6d4385d19 code=0x7ffc0000
[  528.608861][   T29] audit: type=1326 audit(770.412:1490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.3.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa6d4385d19 code=0x7ffc0000
[  528.612046][   T29] audit: type=1326 audit(770.421:1491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.3.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6d4385d19 code=0x7ffc0000
[  528.705909][T13019] loop3: detected capacity change from 0 to 512
[  528.762419][T13019] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  528.762710][T13019] EXT4-fs (loop3): orphan cleanup on readonly fs
[  528.763181][T13019] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  528.763766][T13019] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  528.764125][T13019] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #16: comm syz.3.2308: iget: immutable or append flags not allowed on symlinks
[  528.764565][T13019] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2308: couldn't read orphan inode 16 (err -117)
[  528.765917][T13019] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  528.794836][T13019] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  528.822941][    T9] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  528.867879][T13022] netlink: 'syz.8.2309': attribute type 7 has an invalid length.
[  528.867996][T13022] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2309'.
[  529.017024][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  530.578880][T12996] tty tty4: ldisc open failed (-12), clearing slot 3
[  530.579407][T13010] vhci_hcd: connection reset by peer
[  530.601450][   T52] vhci_hcd: stop threads
[  530.632191][   T52] vhci_hcd: release socket
[  530.647409][   T52] vhci_hcd: disconnect device
[  530.874238][T13053] loop2: detected capacity change from 0 to 16
[  530.918781][T13057] netlink: 'syz.3.2324': attribute type 7 has an invalid length.
[  530.926953][T13057] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2324'.
[  530.957206][T13053] erofs (device loop2): mounted with root inode @ nid 36.
[  531.015337][ T5850] erofs (device loop2): failed to decompress -26 in[46, 0] out[9000]
[  531.096963][T13053] erofs (device loop2): failed to decompress -26 in[46, 4050] out[8192]
[  531.121672][T13053] erofs (device loop2): read error -117 @ 0 of nid 89
[  531.288254][T13064] netlink: 116 bytes leftover after parsing attributes in process `syz.7.2327'.
[  531.473071][T13065] erofs (device loop2): failed to decompress -26 in[46, 4050] out[8192]
[  531.481939][T13065] erofs (device loop2): read error -117 @ 0 of nid 89
[  533.193754][T13090] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2337'.
[  533.771368][   T29] kauditd_printk_skb: 61 callbacks suppressed
[  533.771391][   T29] audit: type=1326 audit(775.248:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13111 comm="syz.2.2347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  533.845573][   T29] audit: type=1326 audit(775.248:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13111 comm="syz.2.2347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  533.882628][   T29] audit: type=1326 audit(775.285:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13111 comm="syz.2.2347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  533.958313][   T29] audit: type=1326 audit(775.285:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13111 comm="syz.2.2347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  534.761378][T13116] loop6: detected capacity change from 0 to 512
[  534.801370][   T29] audit: type=1326 audit(776.155:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.6.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  534.824608][   T29] audit: type=1326 audit(776.155:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.6.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  534.847525][   T29] audit: type=1326 audit(776.155:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.6.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1d65b85d53 code=0x7ffc0000
[  534.869595][   T29] audit: type=1326 audit(776.174:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.6.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1d65b847cf code=0x7ffc0000
[  534.871592][T13116] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  534.891349][    T9] vhci_hcd: vhci_device speed not set
[  534.953344][   T29] audit: type=1326 audit(776.174:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.6.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1d65b85da7 code=0x7ffc0000
[  535.032912][   T29] audit: type=1326 audit(776.174:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13114 comm="syz.6.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1d65b84680 code=0x7ffc0000
[  535.064921][T13116] EXT4-fs (loop6): invalid journal inode
[  535.081919][T13116] EXT4-fs (loop6): can't get journal size
[  535.392044][T13116] EXT4-fs (loop6): 1 truncate cleaned up
[  535.398883][T13116] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  536.390790][ T6317] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  536.642667][T13157] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  536.680031][T13163] netlink: 72 bytes leftover after parsing attributes in process `syz.6.2364'.
[  536.847674][T13171] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2368'.
[  537.247813][T13181] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  537.809172][T13180] tipc: Disabling bearer <eth:syzkaller0>
[  538.215148][T13195] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2378'.
[  538.544385][T13206] loop3: detected capacity change from 0 to 512
[  538.573299][T13206] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  538.594436][T13206] EXT4-fs (loop3): orphan cleanup on readonly fs
[  538.603666][T13206] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  538.636115][T13206] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  538.645238][T13206] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #16: comm syz.3.2383: iget: immutable or append flags not allowed on symlinks
[  538.660175][T13206] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2383: couldn't read orphan inode 16 (err -117)
[  538.676044][T13206] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  538.699403][T13206] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  538.765369][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  538.804747][T13212] loop8: detected capacity change from 0 to 1024
[  538.830929][T13212] EXT4-fs (loop8): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  538.848129][T13210] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2384'.
[  538.936501][   T81] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  538.948818][T13212] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  538.968358][   T81] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  538.972647][T13223] loop6: detected capacity change from 0 to 128
[  539.069411][T13225] loop3: detected capacity change from 0 to 2048
[  539.087352][T13212] EXT4-fs error (device loop8): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.8.2385: corrupted in-inode xattr: bad magic number in in-inode xattr
[  539.121712][T13227] syz.2.2388[13227] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  539.121820][T13227] syz.2.2388[13227] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  539.133741][T13227] syz.2.2388[13227] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  539.233652][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  539.291047][T13225] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  539.438779][   T29] kauditd_printk_skb: 83 callbacks suppressed
[  539.438832][   T29] audit: type=1800 audit(780.514:1644): pid=13235 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2389" name="bus" dev="loop6" ino=1048681 res=0 errno=0
[  539.961069][   T29] audit: type=1800 audit(780.804:1645): pid=13225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2387" name="bus" dev="loop3" ino=18 res=0 errno=0
[  540.233225][T13242] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  540.270202][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  540.281501][T13242] tipc: Enabled bearer <udp:syz1>, priority 10
[  541.180169][T13268] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2406'.
[  541.281023][T13273] loop2: detected capacity change from 0 to 164
[  541.302735][T13273] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  541.324908][T13273] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  541.334978][   T29] audit: type=1326 audit(782.329:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13271 comm="syz.7.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a94985d19 code=0x7ffc0000
[  541.362532][T13273] iso9660: Corrupted directory entry in block 4 of inode 1792
[  541.381013][   T29] audit: type=1326 audit(782.329:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13271 comm="syz.7.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a94985d19 code=0x7ffc0000
[  541.427896][   T29] audit: type=1326 audit(782.329:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13271 comm="syz.7.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f1a94985d19 code=0x7ffc0000
[  541.451365][   T29] audit: type=1326 audit(782.329:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13271 comm="syz.7.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a94985d19 code=0x7ffc0000
[  541.469981][T13027] tipc: Node number set to 4006307895
[  541.538121][T13282] loop0: detected capacity change from 0 to 512
[  541.546662][   T29] audit: type=1326 audit(782.329:1650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13271 comm="syz.7.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a94985d19 code=0x7ffc0000
[  541.572758][   T29] audit: type=1326 audit(782.394:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13277 comm="syz.0.2410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  541.597333][   T29] audit: type=1326 audit(782.394:1652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13277 comm="syz.0.2410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  541.622923][   T29] audit: type=1326 audit(782.394:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13277 comm="syz.0.2410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  541.679534][T13282] EXT4-fs (loop0): too many log groups per flexible block group
[  541.690257][T13282] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  541.697734][T13282] EXT4-fs (loop0): mount failed
[  541.988873][T13304] loop3: detected capacity change from 0 to 512
[  542.001152][T13300] loop8: detected capacity change from 0 to 2048
[  542.048564][T13304] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  542.062713][T13300] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  542.099950][T13306] syzkaller0: entered promiscuous mode
[  542.110901][T13306] syzkaller0: entered allmulticast mode
[  542.138394][T13304] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2420'.
[  542.246304][T13304] 9pnet: Could not find request transport: xen
[  542.321367][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  542.337053][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  544.022040][T13348] loop3: detected capacity change from 0 to 512
[  544.029653][T13348] ext4: Unknown parameter 'noacl'
[  544.126228][T13351] loop3: detected capacity change from 0 to 512
[  544.170463][T13351] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  544.181493][T13355] loop2: detected capacity change from 0 to 1024
[  544.247272][T13355] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  544.304110][T13355] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 46 with max blocks 1 with error 28
[  544.325968][T13355] EXT4-fs (loop2): This should not happen!! Data will be lost
[  544.325968][T13355] 
[  544.347557][T13355] EXT4-fs (loop2): Total free blocks count 0
[  544.353696][T13355] EXT4-fs (loop2): Free/Dirty block details
[  544.366417][T13355] EXT4-fs (loop2): free_blocks=0
[  544.371581][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  544.393210][T13355] EXT4-fs (loop2): dirty_blocks=0
[  544.398373][T13355] EXT4-fs (loop2): Block reservation details
[  544.410427][T13355] EXT4-fs (loop2): i_reserved_data_blocks=0
[  544.435807][T13359] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 47 with max blocks 1 with error 28
[  544.528745][T13363] loop3: detected capacity change from 0 to 512
[  544.536277][T13363] EXT4-fs: Ignoring removed i_version option
[  544.551408][T13363] EXT4-fs: Ignoring removed mblk_io_submit option
[  544.565599][T13363] ext4: Unknown parameter 'seclabel'
[  544.975649][T13371] loop3: detected capacity change from 0 to 1024
[  545.003591][T13371] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  545.832660][T13376] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  545.922911][T13375] tipc: Disabling bearer <eth:syzkaller0>
[  546.007244][T13382] loop7: detected capacity change from 0 to 764
[  546.018353][ T5834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  546.231314][T13392] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2453'.
[  546.257522][    C1] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  546.263275][T13392] bridge_slave_1: left allmulticast mode
[  546.281885][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  546.281906][   T29] audit: type=1326 audit(1042.953:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13394 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  546.317840][T13392] bridge_slave_1: left promiscuous mode
[  546.331081][T13392] bridge0: port 2(bridge_slave_1) entered disabled state
[  546.378600][T13392] bridge_slave_0: left allmulticast mode
[  546.379652][   T29] audit: type=1326 audit(1042.953:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13394 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  546.398440][T13392] bridge_slave_0: left promiscuous mode
[  546.450077][T13392] bridge0: port 1(bridge_slave_0) entered disabled state
[  546.496200][   T29] audit: type=1326 audit(1042.953:1663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13394 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  546.531530][   T29] audit: type=1326 audit(1043.019:1664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13394 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  546.675510][T13417] sch_tbf: burst 1 is lower than device lo mtu (65550) !
[  546.819106][T13426] netlink: 48 bytes leftover after parsing attributes in process `syz.8.2464'.
[  546.863147][T13428] tipc: Started in network mode
[  546.868340][T13428] tipc: Node identity f2c014e5e8d, cluster identity 4711
[  546.876513][T13428] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  546.948947][T13428] ªªªªªª: renamed from syzkaller0
[  546.959976][T13428] tipc: Disabling bearer <eth:syzkaller0>
[  547.683342][T13455] loop7: detected capacity change from 0 to 256
[  548.131636][T13469] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  548.144119][T13469] ªªªªªª: renamed from syzkaller0
[  548.155561][T13469] tipc: Disabling bearer <eth:syzkaller0>
[  548.389622][   T29] audit: type=1326 audit(1044.918:1665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13476 comm="syz.2.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  548.468880][T13479] 9pnet_fd: Insufficient options for proto=fd
[  548.476633][   T29] audit: type=1326 audit(1044.918:1666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13476 comm="syz.2.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  548.551537][   T29] audit: type=1326 audit(1044.955:1667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13476 comm="syz.2.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  548.646472][   T29] audit: type=1326 audit(1044.955:1668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13476 comm="syz.2.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  548.718201][   T29] audit: type=1326 audit(1044.955:1669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13476 comm="syz.2.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  548.796177][   T29] audit: type=1326 audit(1044.955:1670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13476 comm="syz.2.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  548.968201][T13496] wireguard0: entered promiscuous mode
[  548.973897][T13496] wireguard0: entered allmulticast mode
[  550.619262][T13537] loop7: detected capacity change from 0 to 764
[  551.548590][T13540] 9pnet_fd: Insufficient options for proto=fd
[  551.802632][T13549] netlink: 596 bytes leftover after parsing attributes in process `syz.3.2514'.
[  551.861251][   T29] kauditd_printk_skb: 6 callbacks suppressed
[  551.861273][   T29] audit: type=1326 audit(1048.145:1677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  551.931101][   T29] audit: type=1326 audit(1048.163:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  552.347750][   T29] audit: type=1326 audit(1048.163:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  552.690144][   T29] audit: type=1326 audit(1048.163:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  552.772508][   T29] audit: type=1326 audit(1048.163:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  552.894538][   T29] audit: type=1326 audit(1048.163:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  552.984149][   T29] audit: type=1326 audit(1048.163:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  553.014915][   T29] audit: type=1326 audit(1048.163:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  553.039462][   T29] audit: type=1326 audit(1048.163:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  553.102542][   T29] audit: type=1326 audit(1048.163:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13550 comm="syz.6.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  553.155729][T13584] netlink: 36 bytes leftover after parsing attributes in process `syz.7.2526'.
[  553.380011][T13590] loop3: detected capacity change from 0 to 2048
[  553.588900][T13590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  553.612055][T13590] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  553.650212][T13590] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 28
[  553.700812][T13590] EXT4-fs (loop3): This should not happen!! Data will be lost
[  553.700812][T13590] 
[  553.749689][T13590] EXT4-fs (loop3): Total free blocks count 0
[  553.775413][T13590] EXT4-fs (loop3): Free/Dirty block details
[  553.797188][T13590] EXT4-fs (loop3): free_blocks=4096
[  553.810620][T13590] EXT4-fs (loop3): dirty_blocks=16
[  553.822446][T13590] EXT4-fs (loop3): Block reservation details
[  553.832728][T13590] EXT4-fs (loop3): i_reserved_data_blocks=1
[  553.844656][T13616] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 28
[  554.014759][T13624] netlink: 'syz.7.2541': attribute type 2 has an invalid length.
[  554.037217][T13624] netlink: 'syz.7.2541': attribute type 1 has an invalid length.
[  554.588806][T13652] loop6: detected capacity change from 0 to 2048
[  554.607120][T13653] random: crng reseeded on system resumption
[  554.743275][T13661] loop8: detected capacity change from 0 to 16
[  554.752465][T13662] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  554.774629][T13661] erofs (device loop8): mounted with root inode @ nid 36.
[  554.792192][ T5850] erofs (device loop8): failed to decompress -26 in[46, 0] out[9000]
[  554.827818][T13661] erofs (device loop8): failed to decompress -26 in[46, 4050] out[8192]
[  554.837707][T13661] erofs (device loop8): read error -117 @ 0 of nid 89
[  554.847156][T13652] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  555.019253][ T6317] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  555.129145][T13661] erofs (device loop8): failed to decompress -26 in[46, 4050] out[8192]
[  555.137612][T13661] erofs (device loop8): read error -117 @ 0 of nid 89
[  555.747828][T13686] loop8: detected capacity change from 0 to 1024
[  555.834484][T13686] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  555.907693][T13686] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  555.917804][T13686] EXT4-fs (loop8): orphan cleanup on readonly fs
[  555.936171][T13686] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  555.973942][T13686] EXT4-fs (loop8): Remounting filesystem read-only
[  555.989998][T13686] EXT4-fs (loop8): 1 orphan inode deleted
[  556.567002][T13686] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  556.940968][T13686] syz.8.2563 (13686) used greatest stack depth: 18032 bytes left
[  557.169685][T13695] loop6: detected capacity change from 0 to 164
[  557.233623][T13695] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  558.522530][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  558.748342][T13711] syz.7.2575[13711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  558.748436][T13711] syz.7.2575[13711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  558.794595][T13711] syz.7.2575[13711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  558.826502][T13714] loop8: detected capacity change from 0 to 512
[  558.866844][   T29] kauditd_printk_skb: 50 callbacks suppressed
[  558.866864][   T29] audit: type=1326 audit(1054.721:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  558.895237][T13714] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  558.924956][   T29] audit: type=1326 audit(1054.721:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  558.961891][T13719] netlink: 'syz.3.2577': attribute type 1 has an invalid length.
[  558.993889][T13714] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  559.010465][   T29] audit: type=1326 audit(1054.721:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1d65b84680 code=0x7ffc0000
[  559.017214][T13714] System zones: 
[  559.034159][   T29] audit: type=1326 audit(1054.721:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f1d65b87547 code=0x7ffc0000
[  559.059978][   T29] audit: type=1326 audit(1054.721:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  559.082259][   T29] audit: type=1326 audit(1054.721:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f1d65b87547 code=0x7ffc0000
[  559.105843][   T29] audit: type=1326 audit(1054.721:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1d65b8497a code=0x7ffc0000
[  559.118028][T13714] 1-12
[  559.162921][   T29] audit: type=1326 audit(1054.721:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  559.199234][T13714] EXT4-fs (loop8): 1 truncate cleaned up
[  559.212962][T13714] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  559.227284][   T29] audit: type=1326 audit(1054.721:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  559.288280][   T29] audit: type=1326 audit(1054.721:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13712 comm="syz.6.2576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  559.431687][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  559.745438][T13759] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  559.760688][T13759] ªªªªªª: renamed from syzkaller0
[  559.766290][    C0] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  559.788060][T13759] tipc: Disabling bearer <eth:syzkaller0>
[  560.065710][T13773] loop6: detected capacity change from 0 to 2048
[  560.098646][T13773] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  560.295019][ T6317] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  560.488665][T13802] loop2: detected capacity change from 0 to 512
[  560.522668][T13802] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  560.528746][T13803] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  560.530916][T13802] EXT4-fs (loop2): orphan cleanup on readonly fs
[  560.554074][T13802] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  560.569656][T13803] ªªªªªª: renamed from syzkaller0
[  560.571806][T13802] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  560.582272][T13802] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #16: comm syz.2.2608: iget: immutable or append flags not allowed on symlinks
[  560.607466][T13802] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.2608: couldn't read orphan inode 16 (err -117)
[  560.647516][T13803] tipc: Disabling bearer <eth:syzkaller0>
[  560.655196][T13802] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  560.709619][ T5836] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  560.835355][T13815] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2615'.
[  560.869321][T13819] loop8: detected capacity change from 0 to 16
[  560.880882][T13819] erofs (device loop8): mounted with root inode @ nid 36.
[  560.891365][ T5850] erofs (device loop8): failed to decompress -26 in[46, 0] out[9000]
[  560.908010][T13819] erofs (device loop8): failed to decompress -26 in[46, 4050] out[8192]
[  560.919090][T13819] erofs (device loop8): read error -117 @ 0 of nid 89
[  561.140427][T13822] loop3: detected capacity change from 0 to 1764
[  561.200702][T13822] ISOFS: unable to read i-node block
[  561.224494][T13822] isofs_fill_super: get root inode failed
[  561.235845][ T5893] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  561.244839][ T5893] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  561.285130][T13835] netlink: 'syz.6.2622': attribute type 7 has an invalid length.
[  561.307002][T13836] erofs (device loop8): failed to decompress -26 in[46, 4050] out[8192]
[  561.315936][T13836] erofs (device loop8): read error -117 @ 0 of nid 89
[  561.351340][T13835] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2622'.
[  561.441507][T13838] syz.2.2621[13838] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  561.441615][T13838] syz.2.2621[13838] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  561.479524][T13838] syz.2.2621[13838] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  561.744717][T13845] loop6: detected capacity change from 0 to 128
[  561.914082][T13850] loop8: detected capacity change from 0 to 512
[  561.925933][T13850] EXT4-fs: Ignoring removed i_version option
[  561.936385][T13850] EXT4-fs: Ignoring removed mblk_io_submit option
[  561.944861][T13850] ext4: Unknown parameter 'seclabel'
[  562.234923][T13855] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2629'.
[  562.327818][T13858] loop8: detected capacity change from 0 to 1024
[  562.421724][T13860] syzkaller0: entered promiscuous mode
[  562.428595][T13860] syzkaller0: entered allmulticast mode
[  562.671403][T13866] loop2: detected capacity change from 0 to 2048
[  562.727252][T13858] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  562.775571][T13866] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  562.970204][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.083092][ T5836] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  564.553543][T13899] loop3: detected capacity change from 0 to 128
[  564.593192][T13890] loop6: detected capacity change from 0 to 256
[  564.613607][T13899] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  564.820345][ T5834] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  564.952891][T13912] loop3: detected capacity change from 0 to 128
[  564.975114][T13912] EXT4-fs: Ignoring removed nobh option
[  565.006754][T13912] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  565.282199][T13912] loop3: detected capacity change from 128 to 64
[  566.249518][   T29] kauditd_printk_skb: 255 callbacks suppressed
[  566.249541][   T29] audit: type=1326 audit(1317.627:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  566.281258][   T29] audit: type=1326 audit(1317.646:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  566.303157][    C1] vkms_vblank_simulate: vblank timer overrun
[  566.316259][   T29] audit: type=1326 audit(1317.646:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  566.338157][    C1] vkms_vblank_simulate: vblank timer overrun
[  566.352771][   T29] audit: type=1326 audit(1317.646:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  566.374687][    C1] vkms_vblank_simulate: vblank timer overrun
[  566.387478][   T29] audit: type=1326 audit(1317.646:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  566.409378][    C1] vkms_vblank_simulate: vblank timer overrun
[  566.417835][   T29] audit: type=1326 audit(1317.646:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  566.442125][   T29] audit: type=1326 audit(1317.646:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  566.464021][    C1] vkms_vblank_simulate: vblank timer overrun
[  566.479899][   T29] audit: type=1326 audit(1317.646:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  566.506087][   T29] audit: type=1326 audit(1317.646:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  566.531376][   T29] audit: type=1326 audit(1317.646:2006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13921 comm="syz.0.2651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  567.882767][ T5834] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  568.030481][T13941] loop2: detected capacity change from 0 to 512
[  568.116837][T13941] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  568.165688][T13692] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  568.198013][T13953] netlink: 'syz.7.2663': attribute type 10 has an invalid length.
[  568.328548][ T5836] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  568.365027][T13692] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  568.519093][T13964] 9pnet_fd: Insufficient options for proto=fd
[  568.778323][ T5840] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  568.790766][ T5840] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  568.803412][ T5840] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  568.830431][ T5840] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  568.843568][ T5840] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  568.845814][T13692] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  568.861108][ T5840] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  568.985747][T13692] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  569.006736][T13976] loop7: detected capacity change from 0 to 512
[  569.077706][T13976] EXT4-fs (loop7): blocks per group (95) and clusters per group (32768) inconsistent
[  569.150318][T13980] loop8: detected capacity change from 0 to 512
[  569.172746][T13980] EXT4-fs: Ignoring removed i_version option
[  569.188892][T13980] EXT4-fs: Ignoring removed mblk_io_submit option
[  569.217626][T13980] ext4: Unknown parameter 'seclabel'
[  569.552912][T13692] bridge_slave_1: left allmulticast mode
[  569.563380][T13692] bridge_slave_1: left promiscuous mode
[  569.589567][T13692] bridge0: port 2(bridge_slave_1) entered disabled state
[  569.622563][T13692] bridge_slave_0: left allmulticast mode
[  569.628270][T13692] bridge_slave_0: left promiscuous mode
[  569.651897][T13692] bridge0: port 1(bridge_slave_0) entered disabled state
[  569.669634][T13987] loop8: detected capacity change from 0 to 1024
[  569.715233][T13987] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  570.121423][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  570.321818][T14002] loop0: detected capacity change from 0 to 2048
[  570.402674][T14000] loop2: detected capacity change from 0 to 256
[  570.434962][T14002] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  570.507414][T14000] FAT-fs (loop2): Directory bread(block 64) failed
[  570.530645][T14000] FAT-fs (loop2): Directory bread(block 65) failed
[  570.572580][T14000] FAT-fs (loop2): Directory bread(block 66) failed
[  570.601180][T14000] FAT-fs (loop2): Directory bread(block 67) failed
[  570.621010][T14000] FAT-fs (loop2): Directory bread(block 68) failed
[  570.632808][T13692] bridge0 (unregistering): left promiscuous mode
[  570.662557][T14000] FAT-fs (loop2): Directory bread(block 69) failed
[  570.681944][T14000] FAT-fs (loop2): Directory bread(block 70) failed
[  570.696819][T14000] FAT-fs (loop2): Directory bread(block 71) failed
[  570.727283][T14000] FAT-fs (loop2): Directory bread(block 72) failed
[  570.757750][T14000] FAT-fs (loop2): Directory bread(block 73) failed
[  570.769649][ T5833] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  571.083191][ T5840] Bluetooth: hci2: command tx timeout
[  571.971320][T13692] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  572.008612][T13692] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  572.050921][T13692] bond0 (unregistering): Released all slaves
[  572.112709][T13692] bond1 (unregistering): Released all slaves
[  572.173964][T13966] chnl_net:caif_netlink_parms(): no params data found
[  572.460277][T14026] loop8: detected capacity change from 0 to 512
[  572.471753][   T11] kworker/u8:0: attempt to access beyond end of device
[  572.471753][   T11] loop2: rw=1, sector=1224, nr_sectors = 608 limit=256
[  572.516168][T14026] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  572.522094][   T11] kworker/u8:0: attempt to access beyond end of device
[  572.522094][   T11] loop2: rw=1, sector=1864, nr_sectors = 1444 limit=256
[  572.539093][T14026] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[  572.539105][T13692] tipc: Disabling bearer <udp:syz2>
[  572.758311][T14026] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  572.812554][T13692] tipc: Left network mode
[  572.824268][T14026] System zones: 0-2, 18-18, 34-34
[  573.024923][T13692] IPVS: stopping master sync thread 9095 ...
[  573.252427][T14026] EXT4-fs warning (device loop8): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  573.307081][ T5840] Bluetooth: hci2: command tx timeout
[  573.332825][T14026] EXT4-fs (loop8): 1 truncate cleaned up
[  573.384338][T14026] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  574.008815][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.401770][T13966] bridge0: port 1(bridge_slave_0) entered blocking state
[  574.433973][T13966] bridge0: port 1(bridge_slave_0) entered disabled state
[  574.462521][T13966] bridge_slave_0: entered allmulticast mode
[  574.493162][T13966] bridge_slave_0: entered promiscuous mode
[  574.523850][T13966] bridge0: port 2(bridge_slave_1) entered blocking state
[  574.577318][T13966] bridge0: port 2(bridge_slave_1) entered disabled state
[  574.609124][T13966] bridge_slave_1: entered allmulticast mode
[  574.622642][T13966] bridge_slave_1: entered promiscuous mode
[  574.897545][T13966] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  574.933764][T13966] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  575.240177][T13966] team0: Port device team_slave_0 added
[  575.268392][T13966] team0: Port device team_slave_1 added
[  575.307790][T13692] batadv_slave_1: left promiscuous mode
[  575.530397][ T5840] Bluetooth: hci2: command tx timeout
[  576.036587][T13692] hsr_slave_0: left promiscuous mode
[  576.060384][T13692] hsr_slave_1: left promiscuous mode
[  576.085475][T13692] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  576.106888][T13692] batman_adv: batadv0: Removing interface: batadv_slave_0
[  576.129467][T13692] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  576.136882][T13692] batman_adv: batadv0: Removing interface: batadv_slave_1
[  576.168114][T13692] veth1_macvtap: left promiscuous mode
[  576.174099][T13692] veth0_macvtap: left promiscuous mode
[  576.179693][T13692] veth1_vlan: left promiscuous mode
[  577.759712][ T5840] Bluetooth: hci2: command tx timeout
[  577.935155][T14092] loop6: detected capacity change from 0 to 512
[  578.014922][T14094] loop2: detected capacity change from 0 to 512
[  578.029369][T14092] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  578.088718][T14092] syz.6.2714[14092] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  578.088825][T14092] syz.6.2714[14092] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  578.101302][T14092] syz.6.2714[14092] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  578.124508][T14094] EXT4-fs error (device loop2): ext4_get_branch:178: inode #13: block 1024: comm syz.2.2715: invalid block
[  578.195527][T14094] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.2715: invalid indirect mapped block 1024 (level 0)
[  578.211601][T14094] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2715: bg 0: block 35: padding at end of block bitmap is not set
[  578.228593][T14094] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  578.239400][T14094] EXT4-fs (loop2): 1 truncate cleaned up
[  578.239554][ T6317] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  578.246569][T14094] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  578.271412][T14094] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  578.302741][T14104] loop7: detected capacity change from 0 to 256
[  578.355812][T14104] FAT-fs (loop7): Directory bread(block 64) failed
[  578.362579][T14104] FAT-fs (loop7): Directory bread(block 65) failed
[  578.374344][T14104] FAT-fs (loop7): Directory bread(block 66) failed
[  578.381383][T14104] FAT-fs (loop7): Directory bread(block 67) failed
[  578.400347][T14104] FAT-fs (loop7): Directory bread(block 68) failed
[  578.411374][T14104] FAT-fs (loop7): Directory bread(block 69) failed
[  578.418711][T14104] FAT-fs (loop7): Directory bread(block 70) failed
[  578.425547][T14104] FAT-fs (loop7): Directory bread(block 71) failed
[  578.432855][T14104] FAT-fs (loop7): Directory bread(block 72) failed
[  578.439779][T14104] FAT-fs (loop7): Directory bread(block 73) failed
[  578.928298][T13692] team0 (unregistering): Port device team_slave_1 removed
[  579.108634][T13692] team0 (unregistering): Port device team_slave_0 removed
[  579.895679][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  579.903564][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  580.424257][T14122] loop2: detected capacity change from 0 to 2048
[  580.481184][ T3520] kworker/u8:8: attempt to access beyond end of device
[  580.481184][ T3520] loop7: rw=1, sector=1224, nr_sectors = 608 limit=256
[  580.481893][T13966] batman_adv: batadv0: Adding interface: batadv_slave_0
[  580.503351][T13966] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  580.516608][    T9] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  580.540685][ T3520] kworker/u8:8: attempt to access beyond end of device
[  580.540685][ T3520] loop7: rw=1, sector=1864, nr_sectors = 1444 limit=256
[  580.542756][T14128] syz.6.2725[14128] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  580.559827][T14128] syz.6.2725[14128] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  580.560784][T14122] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.573170][T13966] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  580.598460][T14128] syz.6.2725[14128] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  580.628648][    T9] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  580.663344][ T5836] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.692986][T14132] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2726'.
[  580.714612][T13966] batman_adv: batadv0: Adding interface: batadv_slave_1
[  580.735560][T13966] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  580.828336][T13966] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  580.932446][    C0] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  580.956664][T14139] batman_adv: batadv0: Adding interface: dummy0
[  580.971440][T14139] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  581.043916][T14139] batman_adv: batadv0: Interface activated: dummy0
[  581.084918][T14141] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2730'.
[  581.682582][T14140] bond0: (slave bond_slave_0): Releasing backup interface
[  581.695072][   T29] kauditd_printk_skb: 42 callbacks suppressed
[  581.695090][   T29] audit: type=1326 audit(1588.043:2049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  581.740799][T14140] bond0: (slave bond_slave_1): Releasing backup interface
[  581.837701][   T29] audit: type=1326 audit(1588.043:2050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  582.227384][   T29] audit: type=1326 audit(1588.043:2051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  582.444175][T14140] team0: Port device team_slave_0 removed
[  582.452571][   T29] audit: type=1326 audit(1588.043:2052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  582.522953][T14140] team0: Port device team_slave_1 removed
[  582.541552][   T29] audit: type=1326 audit(1588.043:2053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  582.594385][   T29] audit: type=1326 audit(1588.043:2054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  582.617047][   T29] audit: type=1326 audit(1588.043:2055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  582.617525][T14140] bond0: (slave bond1): Releasing backup interface
[  582.659532][T14165] netlink: 596 bytes leftover after parsing attributes in process `syz.7.2737'.
[  582.669228][   T29] audit: type=1326 audit(1588.043:2056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  582.716298][   T29] audit: type=1326 audit(1588.043:2057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  582.739365][   T29] audit: type=1326 audit(1588.062:2058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14137 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  582.866961][T14171] loop7: detected capacity change from 0 to 256
[  583.118434][T13966] hsr_slave_0: entered promiscuous mode
[  583.143583][T14175] sd 0:0:1:0: device reset
[  583.270562][T13966] hsr_slave_1: entered promiscuous mode
[  583.360898][T13966] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  583.368654][T13966] Cannot create hsr debugfs directory
[  583.393816][    C1] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  583.432460][T14183] IPv6: Can't replace route, no match found
[  583.450184][T14187] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  584.632341][T14205] loop8: detected capacity change from 0 to 164
[  584.657976][T14205] +}[@: attempt to access beyond end of device
[  584.657976][T14205] loop8: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  584.672392][T14205] +}[@: attempt to access beyond end of device
[  584.672392][T14205] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  584.689539][T14205] +}[@: attempt to access beyond end of device
[  584.689539][T14205] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  584.703677][T14205] +}[@: attempt to access beyond end of device
[  584.703677][T14205] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  584.717902][T14205] +}[@: attempt to access beyond end of device
[  584.717902][T14205] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  584.731097][T14205] +}[@: attempt to access beyond end of device
[  584.731097][T14205] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  584.744625][T14205] +}[@: attempt to access beyond end of device
[  584.744625][T14205] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  584.758265][T14205] +}[@: attempt to access beyond end of device
[  584.758265][T14205] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  584.863776][T14203] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2757'.
[  585.045439][T14213] loop0: detected capacity change from 0 to 512
[  585.054635][T14213] EXT4-fs (loop0): blocks per group (95) and clusters per group (32768) inconsistent
[  585.133247][T13966] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  585.175581][T13966] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  585.240163][T13966] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  585.317790][T13966] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  585.635272][T14218] loop6: detected capacity change from 0 to 16
[  585.692516][T14218] erofs (device loop6): mounted with root inode @ nid 36.
[  585.745906][T14221] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  585.768755][ T5840] erofs (device loop6): failed to decompress -26 in[46, 0] out[9000]
[  585.779257][T14218] erofs (device loop6): failed to decompress -26 in[46, 4050] out[8192]
[  585.844682][T14205] bio_check_eod: 1339 callbacks suppressed
[  585.844706][T14205] +}[@: attempt to access beyond end of device
[  585.844706][T14205] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  585.875902][T13966] 8021q: adding VLAN 0 to HW filter on device bond0
[  586.129540][T14218] erofs (device loop6): read error -117 @ 0 of nid 89
[  586.233108][T14218] erofs (device loop6): failed to decompress -26 in[46, 4050] out[8192]
[  586.241512][T14218] erofs (device loop6): read error -117 @ 0 of nid 89
[  586.293654][T13966] 8021q: adding VLAN 0 to HW filter on device team0
[  586.356724][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  586.363950][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  586.452607][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  586.459830][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  586.573232][T13966] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  586.617969][T13966] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  588.096497][T14254] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2774'.
[  588.152163][T14259] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  588.269327][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x4
[  588.296874][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x2
[  588.304586][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.325397][T13966] 8021q: adding VLAN 0 to HW filter on device batadv0
[  588.334389][T14266] program syz.8.2779 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  588.337504][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.367676][T14265] loop0: detected capacity change from 0 to 1024
[  588.372198][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.380335][T14269] loop2: detected capacity change from 0 to 128
[  588.396672][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.416595][T14269] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  588.428145][T14265] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  588.451876][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.491523][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.527875][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.584574][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.593279][T14279] veth0_to_hsr: entered promiscuous mode
[  588.616400][T14282] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2784'.
[  588.618957][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.662922][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.689107][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.708683][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.727143][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.732735][ T5833] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  588.748014][ T5893] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  588.766501][ T5893] hid-generic 0000:3000000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  588.886937][T14279] hsr_slave_0 (unregistering): left promiscuous mode
[  588.939491][   T29] kauditd_printk_skb: 30 callbacks suppressed
[  588.939514][   T29] audit: type=1326 audit(1594.853:2089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14286 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  589.001172][   T29] audit: type=1326 audit(1594.853:2090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14286 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  589.086059][   T29] audit: type=1326 audit(1594.881:2091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14286 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  589.153579][T13966] veth0_vlan: entered promiscuous mode
[  589.164614][ T5836] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  589.169639][   T29] audit: type=1326 audit(1594.881:2092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14286 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  589.212425][T13966] veth1_vlan: entered promiscuous mode
[  589.275738][T13966] veth0_macvtap: entered promiscuous mode
[  589.283442][   T29] audit: type=1326 audit(1594.881:2093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14286 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  589.328698][T13966] veth1_macvtap: entered promiscuous mode
[  589.368562][   T29] audit: type=1326 audit(1594.947:2094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14286 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  589.398929][T13966] batman_adv: batadv0: Interface activated: batadv_slave_0
[  589.421896][   T29] audit: type=1326 audit(1594.947:2095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14286 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  589.424924][T14304] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2792'.
[  589.464235][T13966] batman_adv: batadv0: Interface activated: batadv_slave_1
[  589.486255][T13966] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  589.512318][T14307] loop6: detected capacity change from 0 to 512
[  589.516858][T13966] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  589.538513][T13966] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  589.558666][T13966] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  589.592237][T14307] EXT4-fs (loop6): blocks per group (95) and clusters per group (32768) inconsistent
[  589.732416][T14313] loop8: detected capacity change from 0 to 1024
[  589.766993][T14313] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  589.773669][ T3555] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  589.773693][ T3555] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  589.810090][ T3555] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  589.810120][ T3555] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  589.884098][T14321] loop2: detected capacity change from 0 to 512
[  589.964040][   T29] audit: type=1326 audit(1595.807:2096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.9.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc970385d19 code=0x7ffc0000
[  589.990715][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.009220][T14321] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  590.047251][T14321] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  590.049917][   T29] audit: type=1326 audit(1595.807:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.9.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc970385d19 code=0x7ffc0000
[  590.100565][T14321] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  590.109314][T14321] System zones: 0-2, 18-18, 34-34
[  590.115307][   T29] audit: type=1326 audit(1595.807:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.9.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc970385d19 code=0x7ffc0000
[  590.139569][T14321] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  590.207932][T14330] loop8: detected capacity change from 0 to 2048
[  590.234884][T14321] EXT4-fs (loop2): 1 truncate cleaned up
[  590.245880][T14321] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  590.358003][ T5836] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.619828][T14330] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  590.794323][T14347] netlink: 'syz.0.2807': attribute type 7 has an invalid length.
[  590.802468][T14347] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2807'.
[  592.367663][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  593.255577][T14368] program syz.2.2817 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  593.446101][T14372] loop9: detected capacity change from 0 to 1024
[  593.496143][T14377] syz.0.2819[14377] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  593.496243][T14377] syz.0.2819[14377] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  593.499489][T14372] EXT4-fs (loop9): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  593.554362][T14377] syz.0.2819[14377] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  593.626264][T14372] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  593.717406][T14372] JBD2: no valid journal superblock found
[  593.756921][T14372] EXT4-fs (loop9): Could not load journal inode
[  593.927684][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x4
[  593.944889][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x2
[  593.959681][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  593.974510][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  593.990480][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.009606][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.024871][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.043528][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.064394][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.083280][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.099720][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.115734][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.131811][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.150150][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.169307][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.185324][ T5913] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0
[  594.205080][ T5913] hid-generic 0000:3000000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  594.716093][T14389] netlink: 596 bytes leftover after parsing attributes in process `syz.6.2825'.
[  595.564965][T14397] loop0: detected capacity change from 0 to 1024
[  595.606765][T14401] loop8: detected capacity change from 0 to 1024
[  595.622350][T14397] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  595.645395][T14397] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  595.653776][T14397] EXT4-fs (loop0): orphan cleanup on readonly fs
[  595.670338][T14397] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  595.689678][T14397] EXT4-fs (loop0): Remounting filesystem read-only
[  595.699472][T14397] __quota_error: 63 callbacks suppressed
[  595.699489][T14397] Quota error (device loop0): write_blk: dquota write failed
[  595.703010][T14401] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  595.709617][T14397] Quota error (device loop0): write_blk: dquota write failed
[  595.788080][T14397] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  595.801176][T14397] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  595.820639][T14397] EXT4-fs (loop0): 1 orphan inode deleted
[  595.827883][T14397] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  596.080131][T14409] ebtables: ebtables: counters copy to user failed while replacing table
[  596.605811][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  596.810074][T14425] loop8: detected capacity change from 0 to 1024
[  596.854299][T14425] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  597.089715][T14386] netlink: 'syz.6.2825': attribute type 29 has an invalid length.
[  597.115862][T14397] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2826'.
[  597.357983][T14437] syz.2.2838[14437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  597.358094][T14437] syz.2.2838[14437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  597.414220][T14437] syz.2.2838[14437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  597.537529][   T29] audit: type=1326 audit(1602.898:2162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14443 comm="syz.6.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  597.620574][T14447] loop9: detected capacity change from 0 to 512
[  597.628071][   T29] audit: type=1326 audit(1602.898:2163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14443 comm="syz.6.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  597.660379][T14447] EXT4-fs: Ignoring removed i_version option
[  597.674161][   T29] audit: type=1326 audit(1602.907:2164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14443 comm="syz.6.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  597.677735][T14447] EXT4-fs: Ignoring removed mblk_io_submit option
[  597.706819][T14447] ext4: Unknown parameter 'seclabel'
[  597.765990][   T29] audit: type=1326 audit(1602.907:2165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14443 comm="syz.6.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  597.889038][   T29] audit: type=1326 audit(1602.907:2166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14443 comm="syz.6.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  597.980715][   T29] audit: type=1326 audit(1602.907:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14443 comm="syz.6.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  598.164524][T14452] loop9: detected capacity change from 0 to 1024
[  598.473065][T14452] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  598.825639][ T5833] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.837971][T13966] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.951092][    C0] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  599.278553][T14470] loop7: detected capacity change from 0 to 2048
[  599.424855][T14470] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  599.624343][T14490] loop2: detected capacity change from 0 to 512
[  599.656637][ T6333] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  599.703694][T14490] EXT4-fs: Ignoring removed i_version option
[  599.713599][T14490] EXT4-fs: Ignoring removed mblk_io_submit option
[  599.720179][T14490] ext4: Unknown parameter 'seclabel'
[  599.730168][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.217121][T14501] loop2: detected capacity change from 0 to 1024
[  600.437306][T14501] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  600.834276][ T5836] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.894425][    C1] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  601.033223][T14510] loop6: detected capacity change from 0 to 1024
[  601.075912][T14514] loop2: detected capacity change from 0 to 164
[  601.275433][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.315108][T14510] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  601.384617][T14525] loop7: detected capacity change from 0 to 2048
[  601.435586][   T29] kauditd_printk_skb: 12 callbacks suppressed
[  601.435608][   T29] audit: type=1326 audit(2118.543:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14522 comm="syz.2.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  601.483795][   T29] audit: type=1326 audit(2118.543:2181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14522 comm="syz.2.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  601.507685][   T29] audit: type=1326 audit(2118.543:2182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14522 comm="syz.2.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  601.545394][T14523] loop2: detected capacity change from 0 to 512
[  601.545957][   T29] audit: type=1326 audit(2118.571:2183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14509 comm="syz.6.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  601.592615][T14525] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  601.655379][   T29] audit: type=1326 audit(2118.571:2184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14509 comm="syz.6.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  601.677901][   T29] audit: type=1326 audit(2118.571:2185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14522 comm="syz.2.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  601.677997][   T29] audit: type=1326 audit(2118.571:2186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14522 comm="syz.2.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  601.678093][   T29] audit: type=1326 audit(2118.571:2187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14522 comm="syz.2.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  601.678188][   T29] audit: type=1326 audit(2118.571:2188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14522 comm="syz.2.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  601.678281][   T29] audit: type=1326 audit(2118.571:2189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14522 comm="syz.2.2872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be9385d19 code=0x7ffc0000
[  601.717554][T14523] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  601.717826][T14523] EXT4-fs (loop2): orphan cleanup on readonly fs
[  601.719916][T14523] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  601.722264][T14523] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  601.724774][T14523] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #16: comm syz.2.2872: iget: immutable or append flags not allowed on symlinks
[  601.732500][T14523] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.2872: couldn't read orphan inode 16 (err -117)
[  601.736672][T14523] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  601.744587][T14523] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  601.828085][ T6671] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  601.833916][ T5836] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.850499][ T6671] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28
[  602.035777][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  602.074943][ T6671] EXT4-fs (loop6): This should not happen!! Data will be lost
[  602.074943][ T6671] 
[  602.109624][ T6671] EXT4-fs (loop6): Total free blocks count 0
[  602.115782][ T6671] EXT4-fs (loop6): Free/Dirty block details
[  602.133427][ T6671] EXT4-fs (loop6): free_blocks=68451041280
[  602.149993][ T6671] EXT4-fs (loop6): dirty_blocks=64
[  602.155140][ T6671] EXT4-fs (loop6): Block reservation details
[  602.171424][ T6671] EXT4-fs (loop6): i_reserved_data_blocks=4
[  602.211350][ T6317] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.617182][T14574] loop2: detected capacity change from 0 to 1024
[  603.632390][T14572] loop9: detected capacity change from 0 to 2048
[  603.719088][T14572] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  603.786932][T14574] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  603.933164][T13966] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  604.102890][ T9171] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  604.179681][ T5893] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  604.183518][ T9171] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28
[  604.200010][ T9171] EXT4-fs (loop2): This should not happen!! Data will be lost
[  604.200010][ T9171] 
[  604.237759][ T9171] EXT4-fs (loop2): Total free blocks count 0
[  604.239017][T14596] loop6: detected capacity change from 0 to 1024
[  604.254568][T14597] syz.8.2898[14597] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  604.254683][T14597] syz.8.2898[14597] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  604.266755][ T9171] EXT4-fs (loop2): Free/Dirty block details
[  604.266812][T14597] syz.8.2898[14597] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  605.275141][T14601] loop9: detected capacity change from 0 to 512
[  605.277912][ T5893] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  605.432186][ T9171] EXT4-fs (loop2): free_blocks=68451041280
[  605.438064][ T9171] EXT4-fs (loop2): dirty_blocks=64
[  605.443446][ T9171] EXT4-fs (loop2): Block reservation details
[  605.450212][ T9171] EXT4-fs (loop2): i_reserved_data_blocks=4
[  605.484617][ T5836] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.491406][T14596] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  605.511128][T14601] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  605.545717][T14596] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 44 with error 28
[  605.559137][T14596] EXT4-fs (loop6): This should not happen!! Data will be lost
[  605.559137][T14596] 
[  605.569456][T14596] EXT4-fs (loop6): Total free blocks count 0
[  605.575610][T14596] EXT4-fs (loop6): Free/Dirty block details
[  605.581926][T14596] EXT4-fs (loop6): free_blocks=0
[  605.586968][T14596] EXT4-fs (loop6): dirty_blocks=0
[  605.592028][T14596] EXT4-fs (loop6): Block reservation details
[  605.598457][T14596] EXT4-fs (loop6): i_reserved_data_blocks=0
[  605.675310][ T6317] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.841981][T14624] loop8: detected capacity change from 0 to 2048
[  605.897285][T13966] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.907803][T14624] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  606.092826][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.158328][T14639] loop9: detected capacity change from 0 to 2048
[  606.258854][T14639] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  606.458840][T14663] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  606.670530][T13966] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.818527][T14673] loop0: detected capacity change from 0 to 2048
[  606.858494][T14673] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  607.008440][ T5833] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  607.077225][   T29] kauditd_printk_skb: 99 callbacks suppressed
[  607.077245][   T29] audit: type=1326 audit(2123.819:2288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14687 comm="syz.8.2935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b84585d19 code=0x7ffc0000
[  607.123375][   T29] audit: type=1326 audit(2123.847:2289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14687 comm="syz.8.2935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f8b84585d19 code=0x7ffc0000
[  607.324224][   T29] audit: type=1326 audit(2124.052:2290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14696 comm="syz.0.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  607.346168][    C0] vkms_vblank_simulate: vblank timer overrun
[  607.376431][   T29] audit: type=1326 audit(2124.052:2291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14696 comm="syz.0.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  607.398388][    C0] vkms_vblank_simulate: vblank timer overrun
[  607.405654][   T29] audit: type=1326 audit(2124.052:2292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14696 comm="syz.0.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  607.435795][T14702] syz.9.2942[14702] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  607.435903][T14702] syz.9.2942[14702] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  607.448539][T14702] syz.9.2942[14702] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  607.460360][   T29] audit: type=1326 audit(2124.052:2293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14696 comm="syz.0.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  607.519788][   T29] audit: type=1326 audit(2124.052:2294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14696 comm="syz.0.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  607.541708][    C0] vkms_vblank_simulate: vblank timer overrun
[  607.564731][   T29] audit: type=1326 audit(2124.052:2295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14696 comm="syz.0.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  607.614582][   T29] audit: type=1326 audit(2124.099:2296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14695 comm="syz.6.2938" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x0
[  607.682785][   T29] audit: type=1326 audit(2124.099:2297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14696 comm="syz.0.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ecb985d19 code=0x7ffc0000
[  607.929672][T14722] loop9: detected capacity change from 0 to 512
[  607.979790][T14722] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.2949: invalid indirect mapped block 256 (level 2)
[  608.009547][T14722] EXT4-fs (loop9): 2 truncates cleaned up
[  608.016461][T14722] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.123911][T13966] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.367833][T14746] loop7: detected capacity change from 0 to 1024
[  608.390144][T14746] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  608.443939][T14746] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 44 with error 28
[  608.461053][T14746] EXT4-fs (loop7): This should not happen!! Data will be lost
[  608.461053][T14746] 
[  608.470883][T14746] EXT4-fs (loop7): Total free blocks count 0
[  608.476872][T14746] EXT4-fs (loop7): Free/Dirty block details
[  608.483290][T14746] EXT4-fs (loop7): free_blocks=0
[  608.488230][T14746] EXT4-fs (loop7): dirty_blocks=0
[  608.493364][T14746] EXT4-fs (loop7): Block reservation details
[  608.499364][T14746] EXT4-fs (loop7): i_reserved_data_blocks=0
[  608.559410][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.931294][T14765] loop7: detected capacity change from 0 to 1024
[  609.008859][T14765] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  609.137041][T13692] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  609.177313][T13692] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28
[  609.210357][T13692] EXT4-fs (loop7): This should not happen!! Data will be lost
[  609.210357][T13692] 
[  609.232036][T13692] EXT4-fs (loop7): Total free blocks count 0
[  609.246985][T13692] EXT4-fs (loop7): Free/Dirty block details
[  609.254066][T13692] EXT4-fs (loop7): free_blocks=68451041280
[  609.263453][T13692] EXT4-fs (loop7): dirty_blocks=64
[  609.268789][T13692] EXT4-fs (loop7): Block reservation details
[  609.275006][T13692] EXT4-fs (loop7): i_reserved_data_blocks=4
[  609.289409][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  609.910561][T14802] loop7: detected capacity change from 0 to 2048
[  610.648372][T14809] xt_nat: multiple ranges no longer supported
[  611.343083][T14802] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  611.412588][T14802] EXT4-fs error (device loop7): ext4_find_extent:938: inode #2: comm syz.7.2985: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  611.483971][T14802] EXT4-fs (loop7): Remounting filesystem read-only
[  611.787400][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  611.802630][T14826] program syz.9.2992 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  612.894769][   T29] kauditd_printk_skb: 16 callbacks suppressed
[  612.894792][   T29] audit: type=1326 audit(2129.225:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  612.939896][   T29] audit: type=1326 audit(2129.225:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  613.118478][   T29] audit: type=1326 audit(2129.272:2316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  613.186561][   T29] audit: type=1326 audit(2129.272:2317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  613.341186][   T29] audit: type=1326 audit(2129.272:2318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  613.341239][   T29] audit: type=1326 audit(2129.272:2319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  613.341284][   T29] audit: type=1326 audit(2129.272:2320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  613.341327][   T29] audit: type=1326 audit(2129.272:2321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  613.341372][   T29] audit: type=1326 audit(2129.272:2322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  613.341414][   T29] audit: type=1326 audit(2129.272:2323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14816 comm="syz.6.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d65b85d19 code=0x7ffc0000
[  613.480986][T14832] loop6: detected capacity change from 0 to 256
[  613.559443][T14850] loop8: detected capacity change from 0 to 2048
[  613.616619][T14850] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  614.013236][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  614.031829][T14861] block device autoloading is deprecated and will be removed.
[  614.073589][T14861] syz.9.3003: attempt to access beyond end of device
[  614.073589][T14861] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  615.411812][T14879] program syz.2.3009 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  617.978209][T14898] loop6: detected capacity change from 0 to 512
[  618.110020][T14898] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  618.203922][T14898] EXT4-fs warning (device loop6): dx_probe:869: inode #2: comm syz.6.3013: Unimplemented hash flags: 0x0001
[  618.263312][T14898] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.3013: Corrupt directory, running e2fsck is recommended
[  618.279568][T14898] EXT4-fs error (device loop6): ext4_readdir:261: inode #2: block 3: comm syz.6.3013: path /450/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[  619.140766][T14918] loop7: detected capacity change from 0 to 2048
[  619.197504][T14918] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  619.240366][ T6317] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  619.296734][T14926] program syz.0.3027 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  619.645088][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  623.284167][T14965] loop2: detected capacity change from 0 to 128
[  623.447445][T14971] syz.2.3041: attempt to access beyond end of device
[  623.447445][T14971] loop2: rw=2049, sector=145, nr_sectors = 696 limit=128
[  623.552534][   T29] kauditd_printk_skb: 52 callbacks suppressed
[  623.552557][   T29] audit: type=1326 audit(2139.225:2376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a94985d19 code=0x7ffc0000
[  623.659467][   T29] audit: type=1326 audit(2139.262:2377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a94985d19 code=0x7ffc0000
[  623.736699][T14975] loop7: detected capacity change from 0 to 4096
[  623.759949][   T29] audit: type=1326 audit(2139.271:2378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1a94985d19 code=0x7ffc0000
[  623.782622][   T29] audit: type=1326 audit(2139.271:2379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1a94985d53 code=0x7ffc0000
[  623.789455][T14985] loop9: detected capacity change from 0 to 16
[  623.804723][   T29] audit: type=1326 audit(2139.299:2380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1a949847cf code=0x7ffc0000
[  623.842911][   T29] audit: type=1326 audit(2139.393:2381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1a94985da7 code=0x7ffc0000
[  623.871780][   T29] audit: type=1326 audit(2139.402:2382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1a94984680 code=0x7ffc0000
[  623.894351][   T29] audit: type=1326 audit(2139.402:2383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1a9498591b code=0x7ffc0000
[  623.916776][   T29] audit: type=1326 audit(2139.402:2384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1a9498497a code=0x7ffc0000
[  623.938626][   T29] audit: type=1326 audit(2139.402:2385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.7.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1a9498497a code=0x7ffc0000
[  624.092732][T14985] erofs (device loop9): mounted with root inode @ nid 36.
[  624.106629][ T5840] erofs (device loop9): failed to decompress -26 in[46, 0] out[9000]
[  624.384581][T14982] erofs (device loop9): failed to decompress -26 in[46, 4050] out[8192]
[  624.393623][T14982] erofs (device loop9): read error -117 @ 0 of nid 89
[  624.998046][T14982] erofs (device loop9): failed to decompress -26 in[46, 4050] out[8192]
[  625.006541][T14982] erofs (device loop9): read error -117 @ 0 of nid 89
[  625.195639][T14975] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  625.477405][ T6333] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  625.555876][T15002] loop2: detected capacity change from 0 to 8192
[  625.658976][T15002] loop9: detected capacity change from 16 to 15
[  625.675570][T15002] Dev loop9: unable to read RDB block 15
[  625.688127][T15002]  loop9: unable to read partition table
[  625.705296][T15002] loop9: partition table beyond EOD, truncated
[  625.728115][T15002] loop_reread_partitions: partition scan of loop9 (Vü­³"ç¦H¸&ðÁ…œ$%'Ë=%M­¢v6j‡Ìň”•F¡,Å€žÌÓz…dÊ¿ÚL{:E¸éC¼íý?ÿ) failed (rc=-5)
[  625.954838][T15019] loop8: detected capacity change from 0 to 2048
[  626.008701][T15022] netlink: 'syz.6.3064': attribute type 7 has an invalid length.
[  626.021300][T15019] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  626.044766][T15022] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3064'.
[  626.485182][ T6424] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  627.504117][T15068] netlink: 'syz.6.3082': attribute type 7 has an invalid length.
[  627.515534][T15068] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3082'.
[  627.551539][T15054] loop0: detected capacity change from 0 to 8192
[  627.651911][T15054] 
[  627.654272][T15054] ======================================================
[  627.661296][T15054] WARNING: possible circular locking dependency detected
[  627.668316][T15054] 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0 Not tainted
[  627.675428][T15054] ------------------------------------------------------
[  627.682448][T15054] syz.0.3077/15054 is trying to acquire lock:
[  627.688774][T15054] ffff8880579fe0c0 (&sb->s_type->i_mutex_key#21){++++}-{4:4}, at: __generic_file_fsync+0x97/0x1a0
[  627.699451][T15054] 
[  627.699451][T15054] but task is already holding lock:
[  627.706826][T15054] ffff88802504f608 (&q->q_usage_counter(io)#26){++++}-{0:0}, at: loop_set_status+0x1e4/0x8f0
[  627.717066][T15054] 
[  627.717066][T15054] which lock already depends on the new lock.
[  627.717066][T15054] 
[  627.727470][T15054] 
[  627.727470][T15054] the existing dependency chain (in reverse order) is:
[  627.736483][T15054] 
[  627.736483][T15054] -> #4 (&q->q_usage_counter(io)#26){++++}-{0:0}:
[  627.745251][T15054]        lock_acquire+0x1ed/0x550
[  627.750302][T15054]        blk_mq_submit_bio+0x1536/0x2390
[  627.755949][T15054]        __submit_bio+0x2c6/0x560
[  627.760990][T15054]        submit_bio_noacct_nocheck+0x4d3/0xe30
[  627.767156][T15054]        ext4_read_block_bitmap_nowait+0x7c5/0xa80
[  627.773679][T15054]        ext4_mb_prefetch+0x240/0x380
[  627.779066][T15054]        ext4_mb_regular_allocator+0xb44/0x3bb0
[  627.785325][T15054]        ext4_mb_new_blocks+0x10a8/0x4e00
[  627.791067][T15054]        ext4_ext_map_blocks+0x1be0/0x7d30
[  627.796908][T15054]        ext4_map_blocks+0x8bf/0x1990
[  627.802298][T15054]        ext4_iomap_begin+0x8e6/0xd30
[  627.807687][T15054]        iomap_iter+0x699/0xf60
[  627.812560][T15054]        __iomap_dio_rw+0xeb9/0x25b0
[  627.817859][T15054]        iomap_dio_rw+0x46/0xa0
[  627.822719][T15054]        ext4_file_write_iter+0x17aa/0x1c50
[  627.828622][T15054]        do_iter_readv_writev+0x602/0x880
[  627.834344][T15054]        vfs_writev+0x376/0xba0
[  627.839205][T15054]        __se_sys_pwritev2+0x196/0x2b0
[  627.844671][T15054]        do_syscall_64+0xf3/0x230
[  627.849704][T15054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  627.856127][T15054] 
[  627.856127][T15054] -> #3 (&ei->i_data_sem){++++}-{4:4}:
[  627.863792][T15054]        lock_acquire+0x1ed/0x550
[  627.868818][T15054]        down_write+0x99/0x220
[  627.873593][T15054]        ext4_map_blocks+0x7a6/0x1990
[  627.878966][T15054]        ext4_do_writepages+0x21c7/0x3df0
[  627.884688][T15054]        ext4_writepages+0x213/0x3c0
[  627.890096][T15054]        do_writepages+0x361/0x880
[  627.895222][T15054]        __writeback_single_inode+0x14f/0x10d0
[  627.901376][T15054]        writeback_sb_inodes+0x820/0x1360
[  627.907093][T15054]        __writeback_inodes_wb+0x11b/0x260
[  627.912898][T15054]        wb_writeback+0x427/0xb80
[  627.917926][T15054]        wb_workfn+0xc4b/0x1080
[  627.922788][T15054]        process_scheduled_works+0xa68/0x1840
[  627.928856][T15054]        worker_thread+0x870/0xd30
[  627.933966][T15054]        kthread+0x2f2/0x390
[  627.938568][T15054]        ret_from_fork+0x4d/0x80
[  627.943502][T15054]        ret_from_fork_asm+0x1a/0x30
[  627.948784][T15054] 
[  627.948784][T15054] -> #2 (jbd2_handle){++++}-{0:0}:
[  627.956099][T15054]        lock_acquire+0x1ed/0x550
[  627.961224][T15054]        start_this_handle+0x1eb4/0x2110
[  627.966860][T15054]        jbd2__journal_start+0x2da/0x5d0
[  627.972491][T15054]        __ext4_journal_start_sb+0x239/0x600
[  627.978485][T15054]        ext4_dirty_inode+0x92/0x110
[  627.984050][T15054]        __mark_inode_dirty+0x2f0/0xe90
[  627.989603][T15054]        touch_atime+0x413/0x690
[  627.994549][T15054]        ext4_file_mmap+0x18c/0x540
[  627.999755][T15054]        __mmap_region+0x2206/0x2cd0
[  628.005057][T15054]        mmap_region+0x226/0x2c0
[  628.010051][T15054]        do_mmap+0x8f0/0x1000
[  628.014737][T15054]        vm_mmap_pgoff+0x1dd/0x3d0
[  628.019846][T15054]        ksys_mmap_pgoff+0x4eb/0x720
[  628.025150][T15054]        do_syscall_64+0xf3/0x230
[  628.030185][T15054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.036609][T15054] 
[  628.036609][T15054] -> #1 (&mm->mmap_lock){++++}-{4:4}:
[  628.044185][T15054]        lock_acquire+0x1ed/0x550
[  628.049215][T15054]        gup_fast_fallback+0x25f/0x29c0
[  628.054757][T15054]        pin_user_pages_fast+0xcc/0x160
[  628.060299][T15054]        iov_iter_extract_pages+0x3bb/0x5c0
[  628.066206][T15054]        __blockdev_direct_IO+0x1443/0x4890
[  628.072095][T15054]        fat_direct_IO+0x1ba/0x300
[  628.077217][T15054]        generic_file_direct_write+0x1e8/0x400
[  628.083381][T15054]        __generic_file_write_iter+0x126/0x230
[  628.089535][T15054]        generic_file_write_iter+0xae/0x310
[  628.095428][T15054]        aio_write+0x56d/0x7c0
[  628.100193][T15054]        io_submit_one+0x8a7/0x18a0
[  628.105391][T15054]        __se_sys_io_submit+0x171/0x2e0
[  628.110951][T15054]        do_syscall_64+0xf3/0x230
[  628.115994][T15054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.122423][T15054] 
[  628.122423][T15054] -> #0 (&sb->s_type->i_mutex_key#21){++++}-{4:4}:
[  628.131145][T15054]        validate_chain+0x18ef/0x5920
[  628.136530][T15054]        __lock_acquire+0x1397/0x2100
[  628.141903][T15054]        lock_acquire+0x1ed/0x550
[  628.146927][T15054]        down_write+0x99/0x220
[  628.151701][T15054]        __generic_file_fsync+0x97/0x1a0
[  628.157333][T15054]        fat_file_fsync+0x7b/0x190
[  628.162446][T15054]        __loop_update_dio+0x1a4/0x500
[  628.167904][T15054]        loop_set_status+0x62b/0x8f0
[  628.173186][T15054]        lo_ioctl+0xcbc/0x1f50
[  628.177943][T15054]        blkdev_ioctl+0x57f/0x6a0
[  628.182962][T15054]        __se_sys_ioctl+0xf7/0x170
[  628.188070][T15054]        do_syscall_64+0xf3/0x230
[  628.193104][T15054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.199529][T15054] 
[  628.199529][T15054] other info that might help us debug this:
[  628.199529][T15054] 
[  628.209918][T15054] Chain exists of:
[  628.209918][T15054]   &sb->s_type->i_mutex_key#21 --> &ei->i_data_sem --> &q->q_usage_counter(io)#26
[  628.209918][T15054] 
[  628.224998][T15054]  Possible unsafe locking scenario:
[  628.224998][T15054] 
[  628.232439][T15054]        CPU0                    CPU1
[  628.237793][T15054]        ----                    ----
[  628.243147][T15054]   lock(&q->q_usage_counter(io)#26);
[  628.248540][T15054]                                lock(&ei->i_data_sem);
[  628.255475][T15054]                                lock(&q->q_usage_counter(io)#26);
[  628.263399][T15054]   lock(&sb->s_type->i_mutex_key#21);
[  628.268874][T15054] 
[  628.268874][T15054]  *** DEADLOCK ***
[  628.268874][T15054] 
[  628.277005][T15054] 3 locks held by syz.0.3077/15054:
[  628.282196][T15054]  #0: ffff8880251a3b60 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2a/0x8f0
[  628.291631][T15054]  #1: ffff88802504f608 (&q->q_usage_counter(io)#26){++++}-{0:0}, at: loop_set_status+0x1e4/0x8f0
[  628.302284][T15054]  #2: ffff88802504f640 (&q->q_usage_counter(queue)#10){+.+.}-{0:0}, at: loop_set_status+0x1e4/0x8f0
[  628.313200][T15054] 
[  628.313200][T15054] stack backtrace:
[  628.319078][T15054] CPU: 1 UID: 0 PID: 15054 Comm: syz.0.3077 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[  628.329832][T15054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  628.339880][T15054] Call Trace:
[  628.343156][T15054]  <TASK>
[  628.346081][T15054]  dump_stack_lvl+0x241/0x360
[  628.350771][T15054]  ? __pfx_dump_stack_lvl+0x10/0x10
[  628.355977][T15054]  ? __pfx__printk+0x10/0x10
[  628.360663][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.366299][T15054]  print_circular_bug+0x13a/0x1b0
[  628.371335][T15054]  check_noncircular+0x36a/0x4a0
[  628.376287][T15054]  ? __pfx_check_noncircular+0x10/0x10
[  628.381753][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.387390][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.393027][T15054]  validate_chain+0x18ef/0x5920
[  628.397887][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.403514][T15054]  ? __lock_acquire+0x1397/0x2100
[  628.408551][T15054]  ? __pfx_validate_chain+0x10/0x10
[  628.413756][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.419387][T15054]  ? mark_lock+0x9a/0x360
[  628.423724][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.429358][T15054]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  628.435349][T15054]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  628.441337][T15054]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  628.447672][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.453308][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.458937][T15054]  ? mark_lock+0x9a/0x360
[  628.463277][T15054]  __lock_acquire+0x1397/0x2100
[  628.468143][T15054]  lock_acquire+0x1ed/0x550
[  628.472652][T15054]  ? __generic_file_fsync+0x97/0x1a0
[  628.477954][T15054]  ? __pfx_lock_acquire+0x10/0x10
[  628.482982][T15054]  ? __pfx___might_resched+0x10/0x10
[  628.488268][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.493922][T15054]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  628.499929][T15054]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  628.506266][T15054]  down_write+0x99/0x220
[  628.510522][T15054]  ? __generic_file_fsync+0x97/0x1a0
[  628.515815][T15054]  ? __pfx_down_write+0x10/0x10
[  628.520674][T15054]  ? lockdep_hardirqs_on+0x99/0x150
[  628.525881][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.531515][T15054]  ? kobject_uevent_env+0x54d/0x8e0
[  628.536715][T15054]  __generic_file_fsync+0x97/0x1a0
[  628.541832][T15054]  fat_file_fsync+0x7b/0x190
[  628.546432][T15054]  __loop_update_dio+0x1a4/0x500
[  628.551374][T15054]  loop_set_status+0x62b/0x8f0
[  628.556159][T15054]  lo_ioctl+0xcbc/0x1f50
[  628.560405][T15054]  ? mark_lock+0x9a/0x360
[  628.564743][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.570374][T15054]  ? validate_chain+0x11e/0x5920
[  628.575322][T15054]  ? __pfx_lo_ioctl+0x10/0x10
[  628.579997][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.585637][T15054]  ? mark_lock+0x9a/0x360
[  628.589975][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.595612][T15054]  ? __lock_acquire+0x1397/0x2100
[  628.600651][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.606289][T15054]  ? __pfx_lock_acquire+0x10/0x10
[  628.611320][T15054]  ? is_bpf_text_address+0x26/0x2a0
[  628.616526][T15054]  ? __pfx_lock_release+0x10/0x10
[  628.621558][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.627187][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.632820][T15054]  ? preempt_count_add+0x93/0x190
[  628.637857][T15054]  ? 0xffffffffa0000818
[  628.642017][T15054]  ? 0xffffffffa0000818
[  628.646170][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.651803][T15054]  ? is_bpf_text_address+0x285/0x2a0
[  628.657095][T15054]  ? is_bpf_text_address+0x26/0x2a0
[  628.662308][T15054]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  628.668464][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.674098][T15054]  ? kernel_text_address+0xa7/0xe0
[  628.679227][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.684859][T15054]  ? __kernel_text_address+0xd/0x40
[  628.690066][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.695697][T15054]  ? unwind_get_return_address+0x4d/0x90
[  628.701331][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.706963][T15054]  ? arch_stack_walk+0xfd/0x150
[  628.711833][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.717464][T15054]  ? stack_trace_save+0x118/0x1d0
[  628.722493][T15054]  ? __pfx_stack_trace_save+0x10/0x10
[  628.727868][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.733499][T15054]  ? stack_depot_save_flags+0x37/0x940
[  628.738968][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.744609][T15054]  ? do_vfs_ioctl+0xf07/0x2e40
[  628.749477][T15054]  ? tomoyo_path_number_perm+0x206/0x860
[  628.755121][T15054]  ? __pfx_lock_release+0x10/0x10
[  628.760155][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.765790][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.771426][T15054]  ? tomoyo_path_number_perm+0x679/0x860
[  628.777072][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.782705][T15054]  ? tomoyo_path_number_perm+0x679/0x860
[  628.788348][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.793982][T15054]  ? blkdev_common_ioctl+0xfb2/0x2460
[  628.799362][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.804999][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.810638][T15054]  ? __lock_acquire+0x1397/0x2100
[  628.815668][T15054]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  628.821300][T15054]  ? tomoyo_path_number_perm+0x206/0x860
[  628.826947][T15054]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  628.832959][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.838590][T15054]  ? file_to_blk_mode+0xcc/0x140
[  628.843532][T15054]  ? __pfx_lo_ioctl+0x10/0x10
[  628.848212][T15054]  blkdev_ioctl+0x57f/0x6a0
[  628.852716][T15054]  ? __pfx_blkdev_ioctl+0x10/0x10
[  628.857743][T15054]  ? srso_alias_return_thunk+0x5/0xfbef5
[  628.863375][T15054]  ? __pfx_blkdev_ioctl+0x10/0x10
[  628.868399][T15054]  __se_sys_ioctl+0xf7/0x170
[  628.872990][T15054]  do_syscall_64+0xf3/0x230
[  628.877604][T15054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.883506][T15054] RIP: 0033:0x7f3ecb985d19
[  628.888094][T15054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  628.907704][T15054] RSP: 002b:00007f3ecc70a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  628.916123][T15054] RAX: ffffffffffffffda RBX: 00007f3ecbb75fa0 RCX: 00007f3ecb985d19
[  628.924100][T15054] RDX: 0000000020000480 RSI: 0000000000004c02 RDI: 0000000000000004
[  628.932073][T15054] RBP: 00007f3ecba01a20 R08: 0000000000000000 R09: 0000000000000000
[  628.940040][T15054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  628.948018][T15054] R13: 0000000000000000 R14: 00007f3ecbb75fa0 R15: 00007fff8fdad7f8
[  628.956024][T15054]  </TASK>
[  628.959161][    C1] vkms_vblank_simulate: vblank timer overrun
[  629.120768][T15083] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  629.135787][T15083] ªªªªªª: renamed from syzkaller0
[  629.142735][T15083] tipc: Disabling bearer <eth:syzkaller0>