last executing test programs:

1m11.180163976s ago: executing program 32 (id=90):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r2 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40088a01, &(0x7f0000000e80)=0x100)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040))
ioctl$TCXONC(r0, 0x540a, 0x3)

1m10.545282509s ago: executing program 33 (id=102):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x15, 0x10, &(0x7f0000000040)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffff5}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000240)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, @sk_reuseport, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

1m9.467905235s ago: executing program 34 (id=133):
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000080000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
sendto$inet6(r0, &(0x7f0000000000)="7800000018002507b9409b14ffff00000204be04020506050e0204094300080004000000040010000d0068d0bf46d32345653600648d0a0012000200000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f25232500000", 0x78, 0x0, 0x0, 0x0)

51.394919182s ago: executing program 2 (id=725):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read(r0, &(0x7f0000000040)=""/148, 0xffffff96)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'nr0\x00', 0xe43986f95b0e4309})
ioctl$TUNGETSNDBUF(r1, 0x400454dc, &(0x7f0000001700))

50.937420554s ago: executing program 2 (id=743):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='skb_copy_datagram_iovec\x00', r0}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r1, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0)

50.888129644s ago: executing program 2 (id=748):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000015000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{}, [@TCA_NETEM_LOSS={0x4, 0xd}]}}}]}, 0x50}}, 0x0)

50.836950595s ago: executing program 2 (id=750):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000005a00), 0x1, 0x42f, &(0x7f0000000940)="$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")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb9388c3c955fae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110f80007639c2eb4b78c66ee677df701905b9aafab4afaaf755a3f6a004", "cba3d62578038259ca171ce1a311ef97e4298d1e14ef01060017e92996005303f56f0000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000", [0xffffffffffffffff]})
lsetxattr$security_ima(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100), &(0x7f0000000140)=@sha1={0x1, "2753c819c91ebe9706b50525b88b1f5ebbecc5b3"}, 0x1001, 0x1)

50.462942996s ago: executing program 2 (id=765):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fgetxattr(r1, &(0x7f0000000000)=@known='security.selinux\x00', 0x0, 0x0)

50.057639338s ago: executing program 2 (id=774):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000100)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x7, 0xc2, 0x0, 0x0, 0x0, {[@mss={0x1e, 0x4, 0x6}, @fastopen={0x22, 0x2}]}}}}}}}}, 0x0)

50.046651828s ago: executing program 35 (id=774):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000100)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x7, 0xc2, 0x0, 0x0, 0x0, {[@mss={0x1e, 0x4, 0x6}, @fastopen={0x22, 0x2}]}}}}}}}}, 0x0)

47.292199222s ago: executing program 7 (id=853):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000100850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000000)="05000806", 0x5e0, 0x0, &(0x7f0000000080)={0x11, 0x8100, r3}, 0x14)

47.291947912s ago: executing program 7 (id=856):
r0 = gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r1, &(0x7f0000000200)=""/213, 0xd5)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x335})
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r1, 0xc058534b, &(0x7f0000000180))
tkill(r0, 0x7)

47.109213233s ago: executing program 7 (id=862):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/anycast6\x00')
close_range(r2, 0xffffffffffffffff, 0x0)

47.077558003s ago: executing program 7 (id=865):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

47.064002733s ago: executing program 7 (id=866):
io_setup(0x7, &(0x7f00000000c0)=<r0=>0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000000)={0x0, 0xea60}, 0x10)
io_submit(r0, 0x2, &(0x7f0000000140)=[&(0x7f00000001c0)={0x0, 0x4, 0x0, 0x0, 0x0, r2, &(0x7f0000000100)="02", 0x1}, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x5, 0x0, r1, 0x0, 0x0, 0x1}])
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

46.969878283s ago: executing program 7 (id=870):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000300)={0x0, 0xffffffffffffff20, &(0x7f00000002c0)={&(0x7f0000001740)={0x2c, r2, 0x701, 0x0, 0x0, {{}, {@void, @void, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8}, @NL80211_ATTR_VENDOR_SUBCMD={0x8}]}, 0x2c}}, 0x0)

46.969785253s ago: executing program 36 (id=870):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000300)={0x0, 0xffffffffffffff20, &(0x7f00000002c0)={&(0x7f0000001740)={0x2c, r2, 0x701, 0x0, 0x0, {{}, {@void, @void, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8}, @NL80211_ATTR_VENDOR_SUBCMD={0x8}]}, 0x2c}}, 0x0)

44.252201146s ago: executing program 0 (id=936):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x21, 0x1, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000040)='cpu~00||!')

44.067100157s ago: executing program 0 (id=945):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = dup2(r1, r1)
connect$pppl2tp(r2, &(0x7f00000000c0)=@pppol2tp={0xa, 0x1, {0xffff0000, 0xffffffffffffffff, {0x2, 0x0, @multicast1}, 0x0, 0xffde}}, 0x26)
sendmsg$netlink(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000009940)=ANY=[], 0x290}, {&(0x7f0000001600)=ANY=[@ANYBLOB="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"], 0x8bc}, {0x0, 0x145}], 0x3}, 0x80)

44.047577297s ago: executing program 0 (id=946):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000180)='mm_page_alloc\x00', r1}, 0x18)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})

43.985785628s ago: executing program 0 (id=949):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000300)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='sysfs\x00', 0x0, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fchdir(r0)
close(r0)
chroot(&(0x7f0000000340)='./file0/../file0/../file0\x00')

43.878977738s ago: executing program 0 (id=955):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1}}], 0x90}, 0x0)

43.60901748s ago: executing program 0 (id=970):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
fchownat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)

43.57920572s ago: executing program 37 (id=970):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
fchownat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)

41.46197751s ago: executing program 3 (id=1055):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
setresuid(0xee01, 0xee00, 0x0)
setfsuid(0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000540)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000001100), 0x12)

41.44491951s ago: executing program 3 (id=1056):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000ac0)=@filter={'filter\x00', 0xe, 0x4, 0x260, 0xffffffff, 0x98, 0x0, 0x98, 0xffffffff, 0xffffffff, 0x1c8, 0x1c8, 0x1c8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x7}}}, {{@ip={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0xffffffff, 'pim6reg0\x00', 'syzkaller1\x00', {0xff}, {0xff}, 0x21, 0x1, 0x4d}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0)

41.38469662s ago: executing program 3 (id=1058):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000001000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x12, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a0001"], 0x118}}, 0x0)

41.268057271s ago: executing program 3 (id=1062):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000300)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='sysfs\x00', 0x0, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fchdir(r0)
close(r0)
chroot(&(0x7f0000000340)='./file0/../file0/../file0\x00')

41.245271331s ago: executing program 3 (id=1065):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
mkdir(0x0, 0x70)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000100)={0x0, 0x1, 0x6b66})

39.41587812s ago: executing program 3 (id=1146):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a00", @ANYRES32], 0x44}}, 0x24048010)

39.41571039s ago: executing program 38 (id=1146):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a00", @ANYRES32], 0x44}}, 0x24048010)

38.633954284s ago: executing program 5 (id=1154):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)

38.542695714s ago: executing program 5 (id=1155):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0xfff, 0x4, 0x105, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x9}]}], {0x14}}, 0x64}}, 0x0)

38.471901135s ago: executing program 5 (id=1159):
unshare(0x2a020400)
r0 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000000)='cgroup.stat\x00', 0x5000000, 0x0)
readv(r2, &(0x7f00000012c0)=[{&(0x7f0000000100)=""/4096, 0x1000}], 0x1)

38.453227025s ago: executing program 5 (id=1161):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0xfe, 0x56a, &(0x7f00000015c0)="$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")
r0 = open(&(0x7f0000000140)='./bus\x00', 0x147142, 0x89)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001"})
fsetxattr$trusted_overlay_opaque(r0, &(0x7f00000000c0), 0x0, 0x0, 0x2)

38.281669585s ago: executing program 5 (id=1170):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000780)="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", 0x45d)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)=[0x7f], 0x0, 0x0, 0x1, 0x1}}, 0x40)

37.28263773s ago: executing program 5 (id=1190):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r2)

37.25916664s ago: executing program 39 (id=1190):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r2)

1.814747981s ago: executing program 9 (id=2627):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000000)='inet_sock_set_state\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000000)='inet_sock_set_state\x00', r2}, 0x10)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x30004001)

1.814378442s ago: executing program 9 (id=2629):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r0}, 0x18)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce81ea03"], 0xfdef)

1.814172561s ago: executing program 9 (id=2630):
r0 = syz_clone(0x0, 0x0, 0xd, 0xfffffffffffffffd, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_freezer_state(r1, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r2, &(0x7f0000000400)='FROZEN\x00', 0x7)
r3 = openat$cgroup_procs(r1, &(0x7f0000000200)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000340)=r0, 0x12)

1.785999932s ago: executing program 9 (id=2631):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0207a20802"], 0x10}}, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0x0, 0x9}, {}, 0x0, 0x0, 0x1}, {{@in=@loopback, 0x4d5, 0x32}, 0x0, @in6=@mcast1, 0x0, 0x0, 0x0, 0xb7}}, 0xe8)
sendmmsg(r0, &(0x7f0000000180), 0x400000000000077, 0x0)

1.002651245s ago: executing program 4 (id=2658):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000100)='kfree\x00', r1}, 0x18)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000040)=@gcm_256={{0x304, 0x36}, "1a88ef816c4b42ed", "a5fdeb69a751e94df50ad7e9fb434d1665e9298b01e49419567b443803cf578f", "6d02cd81", "066580001e00"}, 0x38)

967.626115ms ago: executing program 1 (id=2659):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x8, 0x0, 0xfc, 0x0, &(0x7f0000000000))
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r1, 0x0, 0x30, 0x12, @val=@uprobe_multi={&(0x7f00000028c0)='./file0\x00', &(0x7f0000002900)=[0x4], 0x0, 0x4, 0x1}}, 0x40)

958.564106ms ago: executing program 4 (id=2660):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "2af01c3d0040fbffffffffffffff00"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))
ioctl$TCSETS(r1, 0x5402, &(0x7f00000000c0)={0xffffff83, 0x0, 0x0, 0x9, 0x0, "db2d416fbecfb84b5452b768e08ee2df361089"})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000140))

879.948696ms ago: executing program 9 (id=2661):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b00)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x6, 0x0)
syz_clone(0x4023480, 0x0, 0x8637, 0x0, 0x0, 0x0)

872.727516ms ago: executing program 1 (id=2663):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$L2TP_CMD_SESSION_DELETE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f00000000c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0xc5594286d776c8c5}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r3}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0xbd}]}}}]}, 0x44}}, 0x0)
sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x5e13, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @empty}}}], 0x20, 0x74}}], 0x1, 0x0)

829.381196ms ago: executing program 4 (id=2664):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x8000003d)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x8000003d)
close_range(r1, r2, 0x0)

583.954767ms ago: executing program 1 (id=2668):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r2, 0x5453, 0x0)

583.676397ms ago: executing program 4 (id=2677):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, 0xffffffffffffffff, 0x0, 0x10}, 0x18)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$selinux_load(r2, &(0x7f0000000340)={0xf97cff8c, 0x8}, 0x2000)

583.452807ms ago: executing program 9 (id=2670):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, 0x0, 0x2, 0x0, 0x0, 0x0)

518.505018ms ago: executing program 8 (id=2671):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4a16, &(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYRESDEC, @ANYRESHEX, @ANYRESHEX, @ANYRES32], 0x5, 0x31e, &(0x7f0000000a80)="$eJzs3M9LG1sUwPFjjDGJzySLx3u8Bw8v721eN4OmXZeGolAaqKgp1UJh1EkbMk0kEywppeqq29J9V4UuxKU7ofUfcNNdu+mmOzeFLuqidEomM+anmsZorH4/IHNz7z3m3sxNOBNyZ/fO84fZtKWl9aL4gkp+ExHZE4mJTzx97tHnlANSa1UuDX15/8/07NzNRDI5PqXURGLmclwpFRl58+hJyO22NSg7sXu7n+Ofdv7Y+Wv3+8yDjKUylsrli0pX8/mPRX3eNNRixspqSk2ahm4ZKpOzjEKlPV9pT5v5paWS0nOLw+GlgmFZSs+VVNYoqWJeFQslpd/XMzmlaZoaDguOklqfmtITHQYvdHkwOCGFQkLvF5FQU0tqvScDAgAAPdWY//vKKX1H+b9EnPy/3Lma/2/8u10cur0ZcfP/rUCr/P/Kh8r/qsv/gyLSSf7/Un4i/2/OiC6WY+X/OBtGAk1VfXWPyvl/2H3/Otbubow6BfJ/AAAAAAAAAAAAAAAAAAAAAAB+BXu2HbVtO+odvb/qFgL3Mc6lg87/oIgEy2ff5vyfZ9OzcxJ0Nu75IyLms+XUcqpydDtsi4gphoxKVL4568FVLns7j1RZTN6aK278ynKq32lJpCXjxI9JVGKN8bY9cSM5PqYq3Pj9bUrh2vi4ROX31vHx+nj3+QPy/3818ZpE5d2C5MWURWddV+Ofjil1/VayIT7k9AMAAAAA4DzQ1L6W1++adlB75S4j+9fXLb8fqFxfj7a8PvdH//b3evYAAAAAAFwMVulxVjdNo3BIISRH9+m84G+vc6ChZuCwzv01M2x3PAHn9y4ix53XqzZf1bqC90OKuqagW9nZeLz5d+18rdbW+KSNKH/j4EfKFeq44/G+Ngoc8DrLZHOU75CVMNC19fzni9dfu/cGubrprYCjO691+lzBxlXnFAZO47MHAAAAwOmqJv1ezbXa5r6eDAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAvmRG7p11Do9RwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAs+JHAAAA//+3evqP")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
io_setup(0x5ff, &(0x7f0000000040)=<r2=>0x0)
io_submit(r2, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)="96", 0xffffff20, 0x0, 0x0, 0x0, r1}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r0, 0x0, 0x0, 0xffffffffffffffff}])

180.32589ms ago: executing program 8 (id=2672):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
close(r2)

180.07658ms ago: executing program 1 (id=2673):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ppoll(&(0x7f0000000180)=[{r1}], 0x1, 0x0, 0x0, 0x0)
shutdown(r1, 0x0)

179.959369ms ago: executing program 6 (id=2674):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x6, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r3}, 0x10)
fremovexattr(r0, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00')

179.53683ms ago: executing program 4 (id=2683):
syz_emit_ethernet(0x32, &(0x7f0000000000)={@random="e90c630faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x3, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x2, 0x1, 0x3, 0x2, 0x0, @val=0x80}}}}}}}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000000), &(0x7f00000003c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000300)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0xffff, 0x8}}}}}, 0x0)

149.22149ms ago: executing program 6 (id=2675):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000b8e9850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
sendmmsg(r1, &(0x7f0000003b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x0)
dup2(r1, r0)

148.73781ms ago: executing program 1 (id=2676):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000600)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/153}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x1ba7f32}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000000101010200000000008100000a000000180002801400018008000100ac1414bb08010000ac14142b0c0019"], 0x38}}, 0x0)

137.98683ms ago: executing program 4 (id=2678):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
wait4(r0, 0x0, 0x40000000, 0x0)
syz_open_procfs(r0, &(0x7f0000000100)='attr/sockcreate\x00')
syz_open_procfs$namespace(r0, &(0x7f0000000040)='ns/net\x00')

92.09268ms ago: executing program 1 (id=2679):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x4000000}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x58}}, 0x0)

91.91045ms ago: executing program 6 (id=2680):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x38, &(0x7f00000000c0)=[@in6={0xa, 0x4e20, 0x0, @private2}, @in6={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, &(0x7f0000000180)=0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000000)={r2, @in={{0x2, 0x0, @empty}}, 0x27c0}, 0x90)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f00000001c0)={r2, @in={{0x2, 0x0, @empty}}, 0x0, 0xfffe}, 0x90)

91.79256ms ago: executing program 6 (id=2681):
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x20051, 0xffffffffffffffff, 0xce9e1000)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
r1 = fsopen(&(0x7f0000000040)='devpts\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

91.23688ms ago: executing program 8 (id=2682):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000010000008500000086000000"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
listen(0xffffffffffffffff, 0x5)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = gettid()
kcmp(r2, r2, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)

59.37467ms ago: executing program 6 (id=2684):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372"], 0xfc}}, 0x0)

43.9435ms ago: executing program 8 (id=2694):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r2, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)

43.24806ms ago: executing program 6 (id=2685):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000b8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x2}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
close_range(r1, 0xffffffffffffffff, 0x0)

30.04533ms ago: executing program 8 (id=2686):
r0 = socket$tipc(0x1e, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
close(r0)

0s ago: executing program 8 (id=2687):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
write$UHID_CREATE2(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000020000000000000030000000000000000000000004119202532aeecfcdbb73887feb3f14db126c935954a335f6469a793"], 0x138)
write$UHID_DESTROY(r0, &(0x7f0000000340), 0x4)

kernel console output (not intermixed with test programs):

nd1 (unregistering): Released all slaves
[   59.259881][ T6351] bond1: entered promiscuous mode
[   59.265054][ T6351] bond1: entered allmulticast mode
[   59.272039][ T6351] 8021q: adding VLAN 0 to HW filter on device bond1
[   59.436795][ T6363] loop8: detected capacity change from 0 to 1024
[   59.449367][ T6363] EXT4-fs (loop8): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   59.475696][ T6364] vhci_hcd: default hub control req: 2313 v0018 i0001 l0
[   59.478140][ T6363] EXT4-fs error (device loop8): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.8.1091: corrupted in-inode xattr: bad magic number in in-inode xattr
[   59.533404][ T6368] netlink: 'syz.9.1093': attribute type 1 has an invalid length.
[   59.542679][ T6368] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   59.549988][ T6368] IPv6: NLM_F_CREATE should be set when creating new route
[   59.570567][ T6368] netlink: 'syz.9.1093': attribute type 1 has an invalid length.
[   59.579376][ T6368] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   59.676746][ T6382] rdma_op ffff888116d24980 conn xmit_rdma 0000000000000000
[   59.736141][ T6385] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[   59.736192][ T6384] IPVS: stopping master sync thread 6385 ...
[   59.758701][ T6387] syz.8.1102[6387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.758805][ T6387] syz.8.1102[6387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.771583][ T6387] syz.8.1102[6387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.892196][ T6395] netem: change failed
[   60.035184][ T6418] atomic_op ffff88811f6f0928 conn xmit_atomic 0000000000000000
[   60.093429][ T6425] loop5: detected capacity change from 0 to 128
[   60.095065][ T6426] loop9: detected capacity change from 0 to 2048
[   60.110540][ T6425] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   60.122896][ T6425] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.189081][ T6444] loop8: detected capacity change from 0 to 2048
[   60.198821][ T2244] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.208192][ T6443] netlink: 'syz.6.1126': attribute type 1 has an invalid length.
[   60.216010][ T6443] netlink: 'syz.6.1126': attribute type 4 has an invalid length.
[   60.231469][ T6444]  loop8: p1 < > p3 < > p4 < >
[   60.236370][ T6444] loop8: partition table partially beyond EOD, truncated
[   60.258921][ T6444] loop8: p3 start 4284289 is beyond EOD, truncated
[   60.288021][ T6454] loop5: detected capacity change from 0 to 512
[   60.295197][ T6454] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[   60.318468][ T6454] EXT4-fs: error: could not find journal device path
[   60.323001][ T6455] lo speed is unknown, defaulting to 1000
[   60.352717][ T6459] ref_ctr_offset mismatch. inode: 0x3d1 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[   60.377646][ T6461] lo speed is unknown, defaulting to 1000
[   60.379803][    T9] IPVS: starting estimator thread 0...
[   60.390905][ T6455] IPVS: ovf: UDP 127.0.0.1:19999 - no destination available
[   60.418581][ T6467] program syz.6.1137 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   60.475047][ T6462] IPVS: using max 2928 ests per chain, 146400 per kthread
[   60.625936][ T6490] lo speed is unknown, defaulting to 1000
[   60.665680][ T2246] IPVS: stop unused estimator thread 0...
[   60.666243][ T6490] IPVS: ovf: UDP 127.0.0.1:19999 - no destination available
[   60.678912][    T9] IPVS: starting estimator thread 0...
[   60.728217][ T2244] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.759629][ T6491] lo speed is unknown, defaulting to 1000
[   60.783760][ T6498] IPVS: using max 3072 ests per chain, 153600 per kthread
[   60.805946][ T6491] chnl_net:caif_netlink_parms(): no params data found
[   60.839259][ T6491] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.846448][ T6491] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.853793][ T6491] bridge_slave_0: entered allmulticast mode
[   60.860228][ T6491] bridge_slave_0: entered promiscuous mode
[   60.866924][ T6491] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.873984][ T6491] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.881223][ T6491] bridge_slave_1: entered allmulticast mode
[   60.887896][ T6491] bridge_slave_1: entered promiscuous mode
[   60.904245][ T6491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.914492][ T6491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.932827][ T6491] team0: Port device team_slave_0 added
[   60.939477][ T6491] team0: Port device team_slave_1 added
[   60.955195][ T6491] batman_adv: batadv0: Adding interface: batadv_slave_0
[   60.962180][ T6491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.988280][ T6491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   60.999624][ T6491] batman_adv: batadv0: Adding interface: batadv_slave_1
[   61.006647][ T6491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.032636][ T6491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   61.058885][ T6491] hsr_slave_0: entered promiscuous mode
[   61.065670][ T6491] hsr_slave_1: entered promiscuous mode
[   61.071529][ T6491] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   61.079123][ T6491] Cannot create hsr debugfs directory
[   61.126497][ T6491] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.156111][ T6491] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.205694][ T6491] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.246159][ T6491] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.306359][ T6491] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   61.314900][ T6491] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   61.323155][ T6491] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   61.332523][ T6491] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   61.354018][ T6491] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.361188][ T6491] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.368469][ T6491] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.375542][ T6491] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.386000][ T6521] ref_ctr_offset mismatch. inode: 0x18e offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[   61.410613][ T6523] __nla_validate_parse: 9 callbacks suppressed
[   61.410628][ T6523] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1155'.
[   61.420977][ T6491] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.443603][ T2246] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.454444][ T2246] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.467169][ T6491] 8021q: adding VLAN 0 to HW filter on device team0
[   61.470786][ T6528] loop9: detected capacity change from 0 to 512
[   61.489543][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.496647][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.509411][ T6528] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.513795][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.526951][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.542496][ T6535] loop5: detected capacity change from 0 to 1024
[   61.551107][ T6535] EXT4-fs: Ignoring removed orlov option
[   61.556872][ T6535] EXT4-fs: Ignoring removed nomblk_io_submit option
[   61.577420][ T6491] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   61.587916][ T6491] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   61.643811][ T6535] loop5: detected capacity change from 1024 to 64
[   61.657772][ T6491] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.694564][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   61.708499][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   61.759983][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   61.783477][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   61.903413][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   61.945112][   T29] kauditd_printk_skb: 182 callbacks suppressed
[   61.945127][   T29] audit: type=1326 audit(1732589112.836:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6576 comm="syz.6.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   61.974758][   T29] audit: type=1326 audit(1732589112.836:1656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6576 comm="syz.6.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   62.063561][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   62.077316][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   62.090807][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   62.104264][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   62.117674][ T3661] EXT4-fs warning (device loop5): ext4_empty_dir:3097: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[   62.209334][ T6540] kmmpd-loop5: attempt to access beyond end of device
[   62.209334][ T6540] loop5: rw=14337, sector=128, nr_sectors = 2 limit=64
[   62.222891][ T6540] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[   62.232860][ T6491] veth0_vlan: entered promiscuous mode
[   62.256322][ T6591] IPVS: stopping master sync thread 6592 ...
[   62.258689][ T6592] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[   62.266285][ T6491] veth1_vlan: entered promiscuous mode
[   62.280298][   T29] audit: type=1400 audit(1732589113.166:1657): avc:  denied  { write } for  pid=6593 comm="syz.6.1182" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   62.327775][ T6491] veth0_macvtap: entered promiscuous mode
[   62.336410][ T6598] syz.8.1183[6598] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.336524][ T6598] syz.8.1183[6598] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.346042][ T2244] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.348542][ T6598] syz.8.1183[6598] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.372163][ T6491] veth1_macvtap: entered promiscuous mode
[   62.397698][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.408245][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.418068][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.428560][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.438393][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.448928][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.458833][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.469371][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.479239][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.489696][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.499574][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.510096][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.519942][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.530395][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.541648][ T6491] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.551706][   T29] audit: type=1400 audit(1732589113.426:1658): avc:  denied  { create } for  pid=6603 comm="syz.9.1186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[   62.571699][   T29] audit: type=1400 audit(1732589113.436:1659): avc:  denied  { sys_admin } for  pid=6603 comm="syz.9.1186" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[   62.597866][ T2244] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.612372][ T6609] lo speed is unknown, defaulting to 1000
[   62.612811][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.628754][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.638585][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.649038][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.658944][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.669438][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.679269][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.689742][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.699667][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.710111][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.720048][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.730534][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.740386][ T6491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.750846][ T6491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.761597][ T6491] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.769907][ T6491] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.778698][ T6491] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.787464][ T6491] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.796263][ T6491] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.810692][ T2244] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.872213][ T2244] bridge_slave_1: left allmulticast mode
[   62.878029][ T2244] bridge_slave_1: left promiscuous mode
[   62.883681][ T2244] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.893266][ T2244] bridge_slave_0: left allmulticast mode
[   62.899004][ T2244] bridge_slave_0: left promiscuous mode
[   62.904871][ T2244] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.946468][   T29] audit: type=1326 audit(1732589113.836:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6625 comm="syz.4.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   62.970083][   T29] audit: type=1326 audit(1732589113.836:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6625 comm="syz.4.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   63.043543][   T29] audit: type=1326 audit(1732589113.836:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6625 comm="syz.4.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   63.067194][   T29] audit: type=1326 audit(1732589113.896:1663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6625 comm="syz.4.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   63.090678][   T29] audit: type=1326 audit(1732589113.896:1664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6625 comm="syz.4.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   63.129659][ T6632] loop4: detected capacity change from 0 to 2048
[   63.150772][ T2244] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   63.161261][ T2244] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   63.164266][ T6632]  loop4: p1 < > p3 < > p4 < >
[   63.174639][ T6632] loop4: partition table partially beyond EOD, truncated
[   63.182259][ T6632] loop4: p3 start 4284289 is beyond EOD, truncated
[   63.182766][ T2244] bond0 (unregistering): Released all slaves
[   63.202894][ T6623] IPVS: Error connecting to the multicast addr
[   63.236828][ T6613] lo speed is unknown, defaulting to 1000
[   63.263984][ T2244] hsr_slave_0: left promiscuous mode
[   63.272623][ T2244] hsr_slave_1: left promiscuous mode
[   63.279923][ T2244] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.287398][ T2244] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.296690][ T2244] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.304328][ T2244] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.323519][ T2244] veth1_macvtap: left promiscuous mode
[   63.329130][ T2244] veth0_macvtap: left promiscuous mode
[   63.334735][ T2244] veth1_vlan: left promiscuous mode
[   63.339980][ T2244] veth0_vlan: left promiscuous mode
[   63.434683][ T2244] team0 (unregistering): Port device team_slave_1 removed
[   63.442005][ T6665] loop9: detected capacity change from 0 to 1024
[   63.449319][ T6665] EXT4-fs (loop9): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   63.450290][ T2244] team0 (unregistering): Port device team_slave_0 removed
[   63.479682][ T6665] EXT4-fs error (device loop9): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.9.1203: corrupted in-inode xattr: bad magic number in in-inode xattr
[   63.540285][ T6675] capability: warning: `syz.9.1204' uses 32-bit capabilities (legacy support in use)
[   63.560168][ T6613] chnl_net:caif_netlink_parms(): no params data found
[   63.579629][ T6677] lo speed is unknown, defaulting to 1000
[   63.630813][ T6613] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.637959][ T6613] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.647295][ T6613] bridge_slave_0: entered allmulticast mode
[   63.654055][ T6613] bridge_slave_0: entered promiscuous mode
[   63.662208][ T6613] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.669494][ T6613] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.677427][ T6613] bridge_slave_1: entered allmulticast mode
[   63.683595][ T6613] bridge_slave_1: entered promiscuous mode
[   63.699956][ T6613] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.712277][ T6613] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.731447][ T6613] team0: Port device team_slave_0 added
[   63.738307][ T6613] team0: Port device team_slave_1 added
[   63.754234][ T6613] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.761199][ T6613] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.787232][ T6613] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.798479][ T6613] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.805593][ T6613] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.831642][ T6613] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.844366][ T2244] IPVS: stop unused estimator thread 0...
[   63.865380][ T6613] hsr_slave_0: entered promiscuous mode
[   63.871362][ T6613] hsr_slave_1: entered promiscuous mode
[   63.877553][ T6613] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   63.885194][ T6613] Cannot create hsr debugfs directory
[   64.153115][ T6693] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[   64.153909][ T6690] IPVS: stopping master sync thread 6693 ...
[   64.208966][ T6613] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   64.244044][ T6613] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   64.256754][ T6613] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   64.281871][ T6613] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   64.314756][ T6710] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[   64.348095][ T6613] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.362968][ T6613] 8021q: adding VLAN 0 to HW filter on device team0
[   64.373929][ T3726] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.381009][ T3726] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.394463][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.401623][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   64.407357][ T6721] raw_sendmsg: syz.8.1221 forgot to set AF_INET. Fix it!
[   64.475343][ T6725] netlink: 'syz.9.1233': attribute type 13 has an invalid length.
[   64.483276][ T6725] netlink: 152 bytes leftover after parsing attributes in process `syz.9.1233'.
[   64.512801][ T6725] syz_tun: refused to change device tx_queue_len
[   64.519309][ T6725] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   64.558780][ T6613] 8021q: adding VLAN 0 to HW filter on device batadv0
[   64.617973][ T6613] veth0_vlan: entered promiscuous mode
[   64.626058][ T6613] veth1_vlan: entered promiscuous mode
[   64.641733][ T6613] veth0_macvtap: entered promiscuous mode
[   64.649246][ T6613] veth1_macvtap: entered promiscuous mode
[   64.660065][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.670525][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.680382][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.690891][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.700802][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.711238][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.721050][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.731534][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.741344][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.751796][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.761610][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.772022][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.781844][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.792259][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.802959][ T6613] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.814141][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.824665][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.834558][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.845079][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.854907][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.865324][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.875141][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.885554][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.895356][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.905985][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.915951][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.926368][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.936184][ T6613] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.946704][ T6613] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.957708][ T6613] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.968487][ T6613] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.977264][ T6613] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.986564][ T6613] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.995558][ T6613] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.048623][ T6747] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   65.060943][ T6747] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   65.098352][ T6752] loop8: detected capacity change from 0 to 512
[   65.113929][ T6757] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[   65.117193][ T6752] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[   65.136625][ T6750] IPVS: stopping master sync thread 6757 ...
[   65.177027][ T6752] EXT4-fs (loop8): 1 truncate cleaned up
[   65.209854][ T6770] loop6: detected capacity change from 0 to 512
[   65.218104][ T6770] EXT4-fs: Ignoring removed oldalloc option
[   65.227970][ T6770] EXT4-fs error (device loop6): ext4_xattr_inode_iget:436: comm syz.6.1241: Parent and EA inode have the same ino 15
[   65.251976][ T6770] EXT4-fs (loop6): Remounting filesystem read-only
[   65.258625][ T6770] EXT4-fs warning (device loop6): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   65.269699][ T6770] EXT4-fs (loop6): 1 orphan inode deleted
[   65.276015][ T6770] SELinux: (dev loop6, type ext4) getxattr errno 5
[   65.288274][ T6779] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   65.310605][ T6777] xt_NFQUEUE: number of queues (1280) out of range (got 65792)
[   65.390837][ T6789] Cannot find set identified by id 0 to match
[   65.411493][ T6797] hub 9-0:1.0: USB hub found
[   65.416606][ T6797] hub 9-0:1.0: 8 ports detected
[   65.461714][ T6807] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   65.501901][ T6813] netlink: 'syz.1.1259': attribute type 21 has an invalid length.
[   65.510958][ T6811] loop6: detected capacity change from 0 to 2048
[   65.511458][ T6813] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1259'.
[   65.562736][ T6811] EXT4-fs mount: 36 callbacks suppressed
[   65.562751][ T6811] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.593223][ T6822] loop8: detected capacity change from 0 to 512
[   65.599740][ T6811] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   65.625634][ T3707] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.636512][ T6822] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.649319][ T6822] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.661937][ T6822] netlink: 268 bytes leftover after parsing attributes in process `syz.8.1263'.
[   65.687592][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.749348][ T6843] lo speed is unknown, defaulting to 1000
[   65.816769][ T6856] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1277'.
[   65.902090][ T6873] loop6: detected capacity change from 0 to 512
[   65.917808][ T6873] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.930361][ T6873] ext4 filesystem being mounted at /190/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.956505][ T3707] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.984918][ T6879] lo speed is unknown, defaulting to 1000
[   66.121635][ T6901] syz.6.1294[6901] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   66.121714][ T6901] syz.6.1294[6901] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   66.135046][ T6901] syz.6.1294[6901] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   66.603386][ T6937] loop6: detected capacity change from 0 to 512
[   66.623890][ T6937] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[   66.636957][ T6937] EXT4-fs (loop6): 1 truncate cleaned up
[   66.644445][ T6937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.691117][ T3707] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.718607][ T6942] loop8: detected capacity change from 0 to 512
[   66.729409][ T6942] EXT4-fs: Ignoring removed i_version option
[   66.735862][ T6944] netdevsim netdevsim6: loading /lib/firmware/. failed with error -22
[   66.744103][ T6944] netdevsim netdevsim6: Direct firmware load for . failed with error -22
[   66.766398][ T6942] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a856c018, mo2=0002]
[   66.774689][ T6942] System zones: 0-2, 18-18, 34-35
[   66.784250][ T6942] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.804823][ T6942] ext4 filesystem being mounted at /110/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.831654][ T6942] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   66.890546][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.956074][   T29] kauditd_printk_skb: 266 callbacks suppressed
[   66.956089][   T29] audit: type=1400 audit(1732589117.846:1931): avc:  denied  { unmount } for  pid=5551 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   67.016714][   T29] audit: type=1400 audit(1732589117.906:1932): avc:  denied  { write } for  pid=6966 comm="syz.6.1317" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   67.064849][   T29] audit: type=1326 audit(1732589117.936:1933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6969 comm="syz.8.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   67.088380][   T29] audit: type=1326 audit(1732589117.936:1934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6969 comm="syz.8.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   67.088404][   T29] audit: type=1326 audit(1732589117.936:1935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6969 comm="syz.8.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   67.088424][   T29] audit: type=1326 audit(1732589117.936:1936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6969 comm="syz.8.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   67.158671][   T29] audit: type=1326 audit(1732589117.936:1937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6969 comm="syz.8.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   67.182190][   T29] audit: type=1326 audit(1732589117.946:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6969 comm="syz.8.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   67.205816][   T29] audit: type=1326 audit(1732589117.946:1939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6969 comm="syz.8.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   67.229314][   T29] audit: type=1326 audit(1732589117.946:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6969 comm="syz.8.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   67.359408][ T6997] netlink: 'syz.8.1328': attribute type 4 has an invalid length.
[   67.377005][ T6999] x_tables: duplicate underflow at hook 2
[   67.386432][ T6997] netlink: 'syz.8.1328': attribute type 4 has an invalid length.
[   67.469099][ T7015] vhci_hcd: invalid port number 9
[   67.474258][ T7015] vhci_hcd: default hub control req: 8010 vffff i0009 l0
[   67.518227][ T7021] loop4: detected capacity change from 0 to 512
[   67.534105][ T7021] EXT4-fs: Ignoring removed i_version option
[   67.565579][ T7021] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a856c018, mo2=0002]
[   67.585751][ T7021] System zones: 0-2, 18-18, 34-35
[   67.605692][ T7021] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.653265][ T7021] ext4 filesystem being mounted at /19/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.689036][ T7040] Cannot find set identified by id 0 to match
[   67.718007][ T7021] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   67.766579][ T7046] usb usb1: usbfs: process 7046 (syz.1.1353) did not claim interface 0 before use
[   67.805765][ T6491] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.824526][ T7052] loop8: detected capacity change from 0 to 2048
[   67.854669][ T7058] loop4: detected capacity change from 0 to 512
[   67.875148][ T7052] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.875333][ T7058] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.906228][ T7052] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   67.916572][ T7058] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.942842][ T7069] loop6: detected capacity change from 0 to 128
[   67.972846][ T7072] loop6: detected capacity change from 0 to 256
[   67.986320][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.999571][ T7074] loop9: detected capacity change from 0 to 512
[   68.027970][ T7077] Cannot find set identified by id 0 to match
[   68.028836][ T7072] FAT-fs (loop6): Directory bread(block 64) failed
[   68.057890][ T7072] FAT-fs (loop6): Directory bread(block 65) failed
[   68.073224][ T7072] FAT-fs (loop6): Directory bread(block 66) failed
[   68.079834][ T7072] FAT-fs (loop6): Directory bread(block 67) failed
[   68.083094][ T7079] hub 9-0:1.0: USB hub found
[   68.087141][ T7072] FAT-fs (loop6): Directory bread(block 68) failed
[   68.097560][ T7072] FAT-fs (loop6): Directory bread(block 69) failed
[   68.101405][ T7079] hub 9-0:1.0: 8 ports detected
[   68.107108][ T7072] FAT-fs (loop6): Directory bread(block 70) failed
[   68.116100][ T7072] FAT-fs (loop6): Directory bread(block 71) failed
[   68.123036][ T7072] FAT-fs (loop6): Directory bread(block 72) failed
[   68.130320][ T7072] FAT-fs (loop6): Directory bread(block 73) failed
[   68.185736][ T7074] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.199702][ T7074] ext4 filesystem being mounted at /97/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   68.221929][ T7072] syz.6.1364: attempt to access beyond end of device
[   68.221929][ T7072] loop6: rw=0, sector=1768, nr_sectors = 4 limit=256
[   68.234580][ T6491] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.315218][ T7098] rdma_op ffff888113067d80 conn xmit_rdma 0000000000000000
[   68.323551][ T7101] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1375'.
[   68.359706][ T7107] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   68.378407][ T7107] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   68.391612][ T5807] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.398159][ T7109] loop8: detected capacity change from 0 to 4096
[   68.422277][ T7109] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.463242][ T7109] EXT4-fs error (device loop8): ext4_do_update_inode:5153: inode #15: comm syz.8.1378: corrupted inode contents
[   68.491871][ T7109] EXT4-fs error (device loop8): ext4_dirty_inode:6041: inode #15: comm syz.8.1378: mark_inode_dirty error
[   68.515870][ T7118] ebt_among: dst integrity fail: 36d
[   68.521588][ T7109] EXT4-fs error (device loop8): ext4_do_update_inode:5153: inode #15: comm syz.8.1378: corrupted inode contents
[   68.543151][ T7109] EXT4-fs error (device loop8): __ext4_ext_dirty:207: inode #15: comm syz.8.1378: mark_inode_dirty error
[   68.586822][ T7109] EXT4-fs error (device loop8): ext4_do_update_inode:5153: inode #15: comm syz.8.1378: corrupted inode contents
[   68.613698][ T7109] EXT4-fs error (device loop8): __ext4_ext_dirty:207: inode #15: comm syz.8.1378: mark_inode_dirty error
[   68.636812][ T7109] EXT4-fs error (device loop8): ext4_do_update_inode:5153: inode #15: comm syz.8.1378: corrupted inode contents
[   68.662685][ T7109] EXT4-fs error (device loop8): ext4_truncate:4240: inode #15: comm syz.8.1378: mark_inode_dirty error
[   68.665548][ T7128] smc: net device bond0 applied user defined pnetid SYZ0
[   68.675957][ T7109] EXT4-fs error (device loop8) in ext4_setattr:5568: Corrupt filesystem
[   68.690180][ T7119] EXT4-fs error (device loop8): ext4_do_update_inode:5153: inode #15: comm syz.8.1378: corrupted inode contents
[   68.714868][ T7128] smc: net device bond0 erased user defined pnetid SYZ0
[   68.732713][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.775361][ T7131] Cannot find del_set index 0 as target
[   68.830133][ T7140] loop8: detected capacity change from 0 to 512
[   68.856592][ T7140] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.869262][ T7140] ext4 filesystem being mounted at /131/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   68.892588][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.951171][ T7155] loop6: detected capacity change from 0 to 512
[   68.959608][ T7155] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.1396: corrupted in-inode xattr: invalid ea_ino
[   68.973637][ T7155] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.1396: couldn't read orphan inode 15 (err -117)
[   68.986249][ T7155] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.015062][ T3707] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.055807][ T7167] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1402'.
[   69.145359][ T7188] loop8: detected capacity change from 0 to 128
[   69.156553][ T7188] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[   69.192586][ T7188] syz.8.1410: attempt to access beyond end of device
[   69.192586][ T7188] loop8: rw=2049, sector=216, nr_sectors = 1 limit=128
[   69.206112][ T7188] Buffer I/O error on dev loop8, logical block 216, lost async page write
[   69.214734][ T7188] syz.8.1410: attempt to access beyond end of device
[   69.214734][ T7188] loop8: rw=2049, sector=217, nr_sectors = 1 limit=128
[   69.228391][ T7188] Buffer I/O error on dev loop8, logical block 217, lost async page write
[   69.302338][ T7206] loop9: detected capacity change from 0 to 164
[   69.334322][   T11] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[   69.349840][ T7212] netlink: 'syz.9.1421': attribute type 1 has an invalid length.
[   69.430472][ T7227] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1429'.
[   69.443470][ T7227] bridge0: entered promiscuous mode
[   69.450618][ T7227] macsec1: entered promiscuous mode
[   69.456005][ T7227] macsec1: entered allmulticast mode
[   69.461352][ T7227] bridge0: entered allmulticast mode
[   69.468861][ T7228] lo speed is unknown, defaulting to 1000
[   69.475896][ T7232] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1432'.
[   69.518006][ T7235] loop9: detected capacity change from 0 to 1024
[   69.585612][ T7235] EXT4-fs error (device loop9): ext4_acquire_dquot:6938: comm syz.9.1433: Failed to acquire dquot type 0
[   69.599114][ T7235] EXT4-fs error (device loop9): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   69.615449][ T7235] EXT4-fs error (device loop9): ext4_do_update_inode:5153: inode #13: comm syz.9.1433: corrupted inode contents
[   69.628210][ T7235] EXT4-fs error (device loop9): ext4_dirty_inode:6041: inode #13: comm syz.9.1433: mark_inode_dirty error
[   69.650199][ T7235] EXT4-fs error (device loop9): ext4_do_update_inode:5153: inode #13: comm syz.9.1433: corrupted inode contents
[   69.662749][ T7235] EXT4-fs error (device loop9): __ext4_ext_dirty:207: inode #13: comm syz.9.1433: mark_inode_dirty error
[   69.674526][ T7235] EXT4-fs error (device loop9): ext4_do_update_inode:5153: inode #13: comm syz.9.1433: corrupted inode contents
[   69.689798][ T7235] EXT4-fs error (device loop9) in ext4_orphan_del:305: Corrupt filesystem
[   69.698880][ T7235] EXT4-fs error (device loop9): ext4_do_update_inode:5153: inode #13: comm syz.9.1433: corrupted inode contents
[   69.700866][ T7246] netlink: 108 bytes leftover after parsing attributes in process `syz.6.1437'.
[   69.713905][ T7235] EXT4-fs error (device loop9): ext4_truncate:4240: inode #13: comm syz.9.1433: mark_inode_dirty error
[   69.720663][ T7246] netlink: 108 bytes leftover after parsing attributes in process `syz.6.1437'.
[   69.733538][ T7235] EXT4-fs error (device loop9) in ext4_process_orphan:347: Corrupt filesystem
[   69.740490][ T7246] netlink: 84 bytes leftover after parsing attributes in process `syz.6.1437'.
[   69.752034][ T7235] EXT4-fs (loop9): 1 truncate cleaned up
[   69.764550][ T7235] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.832130][ T5807] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.873881][ T3396] kernel write not supported for file bpf-prog (pid: 3396 comm: kworker/1:4)
[   69.951671][ T7277] loop1: detected capacity change from 0 to 512
[   69.958397][ T7277] EXT4-fs: Ignoring removed orlov option
[   69.965573][ T7277] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   69.986113][ T7277] EXT4-fs (loop1): orphan cleanup on readonly fs
[   69.992970][ T7277] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1451: bg 0: block 248: padding at end of block bitmap is not set
[   70.009183][ T7277] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1451: Failed to acquire dquot type 1
[   70.017401][ T7285] loop6: detected capacity change from 0 to 2048
[   70.021151][ T7277] EXT4-fs (loop1): 1 truncate cleaned up
[   70.045157][ T7277] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.058196][ T7285]  loop6: p2 < >
[   70.061943][ T7277] syz.1.1451 (7277) used greatest stack depth: 9304 bytes left
[   70.072361][ T6613] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.155213][ T7299] loop1: detected capacity change from 0 to 128
[   70.162008][ T7299] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[   70.200314][ T7299] syz.1.1461: attempt to access beyond end of device
[   70.200314][ T7299] loop1: rw=2049, sector=216, nr_sectors = 1 limit=128
[   70.213841][ T7299] Buffer I/O error on dev loop1, logical block 216, lost async page write
[   70.222823][ T7299] syz.1.1461: attempt to access beyond end of device
[   70.222823][ T7299] loop1: rw=2049, sector=217, nr_sectors = 1 limit=128
[   70.236460][ T7299] Buffer I/O error on dev loop1, logical block 217, lost async page write
[   70.267412][ T7309] smc: net device bond0 applied user defined pnetid SYZ0
[   70.276087][ T7309] smc: net device bond0 erased user defined pnetid SYZ0
[   70.314312][ T3726] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[   70.358281][ T7321] loop6: detected capacity change from 0 to 164
[   70.414172][ T7328] SELinux: security_context_str_to_sid (u) failed with errno=-22
[   70.675445][ T7351] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   70.796767][ T7364] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1491'.
[   70.898903][ T7379] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1498'.
[   70.955603][ T7392] loop9: detected capacity change from 0 to 128
[   70.972482][ T7390] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(6)
[   70.979068][ T7390] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   70.986731][ T7390] vhci_hcd vhci_hcd.0: Device attached
[   71.003151][ T7395] vhci_hcd: connection closed
[   71.003423][ T2244] vhci_hcd: stop threads
[   71.012404][ T2244] vhci_hcd: release socket
[   71.016944][ T2244] vhci_hcd: disconnect device
[   71.092149][ T7405] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1509'.
[   71.240102][    C0] hrtimer: interrupt took 37625 ns
[   71.397434][ T7431] loop6: detected capacity change from 0 to 512
[   71.404125][ T7431] EXT4-fs: Ignoring removed nobh option
[   71.410092][ T7431] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[   71.425777][ T7431] EXT4-fs (loop6): 1 truncate cleaned up
[   71.436040][ T7431] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.485317][ T3707] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.711527][ T7455] loop6: detected capacity change from 0 to 512
[   71.735806][ T7455] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   71.775358][ T7459] atomic_op ffff8881185ead28 conn xmit_atomic 0000000000000000
[   71.786037][ T7455] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1531: bg 0: block 248: padding at end of block bitmap is not set
[   71.835554][ T7455] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.1531: Failed to acquire dquot type 1
[   71.876475][ T7455] EXT4-fs (loop6): 1 truncate cleaned up
[   71.906402][ T7455] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.920539][ T7455] ext4 filesystem being mounted at /264/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.962214][ T7455] syz.6.1531 (7455) used greatest stack depth: 9296 bytes left
[   71.985181][ T3707] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.994285][   T11] __quota_error: 305 callbacks suppressed
[   71.994298][   T11] Quota error (device loop6): do_check_range: Getting block 0 out of range 1-5
[   72.009126][   T11] EXT4-fs error (device loop6): ext4_release_dquot:6961: comm kworker/u8:0: Failed to release dquot type 1
[   72.076539][ T7490] atomic_op ffff888117b67128 conn xmit_atomic 0000000000000000
[   72.097315][ T7482] hub 2-0:1.0: USB hub found
[   72.102021][ T7482] hub 2-0:1.0: 8 ports detected
[   72.128857][ T7498] loop8: detected capacity change from 0 to 128
[   72.136015][ T7498] EXT4-fs: Ignoring removed nobh option
[   72.160612][ T7498] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   72.174417][ T7498] ext4 filesystem being mounted at /161/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   72.198002][ T5551] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   72.219612][   T29] audit: type=1400 audit(1732589123.106:2240): avc:  denied  { getopt } for  pid=7505 comm="syz.1.1555" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   72.282163][   T29] audit: type=1326 audit(1732589123.166:2241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7515 comm="syz.4.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   72.302266][ T7512] loop8: detected capacity change from 0 to 512
[   72.349264][ T7527] loop4: detected capacity change from 0 to 1024
[   72.355727][   T29] audit: type=1326 audit(1732589123.196:2242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7515 comm="syz.4.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   72.356774][ T7512] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.379171][   T29] audit: type=1326 audit(1732589123.196:2243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7515 comm="syz.4.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   72.415256][   T29] audit: type=1326 audit(1732589123.196:2244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7515 comm="syz.4.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   72.425632][ T7512] ext4 filesystem being mounted at /162/�q�Y�3aK supports timestamps until 2038-01-19 (0x7fffffff)
[   72.438764][   T29] audit: type=1326 audit(1732589123.196:2245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7515 comm="syz.4.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   72.454109][ T7527] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.472989][   T29] audit: type=1326 audit(1732589123.196:2246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7515 comm="syz.4.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   72.508972][   T29] audit: type=1326 audit(1732589123.196:2247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7515 comm="syz.4.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   72.532366][   T29] audit: type=1326 audit(1732589123.196:2248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7515 comm="syz.4.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedcd8be819 code=0x7ffc0000
[   72.578795][ T7512] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   72.593456][ T7545] loop9: detected capacity change from 0 to 512
[   72.596763][ T7512] EXT4-fs error (device loop8): ext4_acquire_dquot:6938: comm syz.8.1565: Failed to acquire dquot type 1
[   72.600214][ T6491] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.621016][ T7545] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[   72.631968][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.640948][ T7547] syz.4.1563[7547] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.641305][ T7547] syz.4.1563[7547] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.652915][ T7547] syz.4.1563[7547] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.672887][ T7545] EXT4-fs (loop9): 1 truncate cleaned up
[   72.683038][ T7552] syz.4.1567[7552] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.686376][ T7545] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.689934][ T7552] syz.4.1567[7552] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.714860][ T7552] syz.4.1567[7552] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.730721][ T5807] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.076779][ T7580] loop4: detected capacity change from 0 to 8192
[   73.358349][ T7609] loop9: detected capacity change from 0 to 128
[   73.387389][ T7609] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   73.405226][ T7609] ext4 filesystem being mounted at /141/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   73.520016][ T5807] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   73.663416][ T7642] loop8: detected capacity change from 0 to 512
[   73.670808][ T7642] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[   73.681861][ T7644] __nla_validate_parse: 5 callbacks suppressed
[   73.681873][ T7644] netlink: 16402 bytes leftover after parsing attributes in process `syz.9.1606'.
[   73.683340][ T7642] EXT4-fs (loop8): 1 truncate cleaned up
[   73.692495][ T7640] netlink: 16402 bytes leftover after parsing attributes in process `syz.9.1606'.
[   73.697864][ T7642] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.812630][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.850024][ T7654] loop9: detected capacity change from 0 to 512
[   73.858039][ T7656] loop8: detected capacity change from 0 to 256
[   73.883865][ T7654] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[   73.915499][ T7654] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002]
[   73.923472][ T7654] System zones: 1-12
[   73.929892][ T7654] EXT4-fs (loop9): 1 truncate cleaned up
[   73.936015][ T7654] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.959163][ T7654] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   74.007349][ T5807] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.023455][ T7663] loop8: detected capacity change from 0 to 1764
[   74.065038][ T7670] netlink: 332 bytes leftover after parsing attributes in process `syz.9.1617'.
[   74.134347][ T7674] pim6reg1: entered promiscuous mode
[   74.139679][ T7674] pim6reg1: entered allmulticast mode
[   74.165864][ T7678] loop9: detected capacity change from 0 to 1024
[   74.172473][ T7678] EXT4-fs: Ignoring removed nomblk_io_submit option
[   74.201409][ T7678] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.231539][ T5807] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.308617][ T7694] loop6: detected capacity change from 0 to 512
[   74.316388][ T7694] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[   74.328442][ T7694] EXT4-fs (loop6): 1 truncate cleaned up
[   74.333541][ T7697] loop8: detected capacity change from 0 to 512
[   74.335418][ T7694] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.341127][ T7697] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[   74.370343][ T3707] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.380800][ T7697] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[   74.395382][ T7697] EXT4-fs error (device loop8): ext4_xattr_ibody_find:2240: inode #15: comm syz.8.1629: corrupted in-inode xattr: e_value size too large
[   74.404619][ T7704] loop6: detected capacity change from 0 to 736
[   74.412099][ T7697] EXT4-fs error (device loop8): ext4_orphan_get:1394: comm syz.8.1629: couldn't read orphan inode 15 (err -117)
[   74.428312][ T7697] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.442810][ T7704] rock: directory entry would overflow storage
[   74.449052][ T7704] rock: sig=0x3b10, size=4, remaining=3
[   74.499679][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.518723][ T7711] syz.6.1636[7711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.518818][ T7711] syz.6.1636[7711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.550393][ T7711] syz.6.1636[7711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.582616][ T7717] No such timeout policy "syz0"
[   74.685784][ T7734] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1646'.
[   74.818286][ T7761] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1659'.
[   74.935847][ T7781] loop6: detected capacity change from 0 to 512
[   74.942688][ T7781] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[   74.967873][ T7781] EXT4-fs (loop6): 1 truncate cleaned up
[   74.975021][ T7781] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.994249][ T7781] Process accounting resumed
[   74.999591][ T7781] Invalid ELF header magic: != ELF
[   75.005481][ T7785] loop8: detected capacity change from 0 to 512
[   75.020339][ T3707] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.030723][ T7785] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.092306][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.104769][ T7794] IPv6: Can't replace route, no match found
[   75.129226][ T7798] netem: change failed
[   75.254960][ T7811] loop6: detected capacity change from 0 to 8192
[   75.256059][ T7817] loop9: detected capacity change from 0 to 512
[   75.271123][ T7819] veth0_virt_wifi: entered promiscuous mode
[   75.278883][ T7817] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   75.288545][ T7819] netdevsim netdevsim8 netdevsim0: entered promiscuous mode
[   75.306211][ T7817] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.1684: bg 0: block 248: padding at end of block bitmap is not set
[   75.335050][ T7817] EXT4-fs error (device loop9): ext4_acquire_dquot:6938: comm syz.9.1684: Failed to acquire dquot type 1
[   75.374860][ T7817] EXT4-fs (loop9): 1 truncate cleaned up
[   75.388176][ T7817] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.409124][ T7817] ext4 filesystem being mounted at /156/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   75.456241][ T5807] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.465503][ T2246] EXT4-fs error (device loop9): ext4_release_dquot:6961: comm kworker/u8:7: Failed to release dquot type 1
[   75.565886][ T7847] loop1: detected capacity change from 0 to 8192
[   75.643476][ T7865] loop1: detected capacity change from 0 to 512
[   75.659942][ T7865] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   75.666191][ T7859] loop6: detected capacity change from 0 to 8192
[   75.686540][ T7865] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1705: bg 0: block 248: padding at end of block bitmap is not set
[   75.701778][ T7865] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1705: Failed to acquire dquot type 1
[   75.715683][ T7865] EXT4-fs (loop1): 1 truncate cleaned up
[   75.721659][ T7865] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.734561][ T7865] ext4 filesystem being mounted at /105/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   75.761542][ T6613] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.773111][ T2246] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:7: Failed to release dquot type 1
[   76.310950][ T7904] netlink: 'syz.8.1721': attribute type 32 has an invalid length.
[   76.635371][ T7931] No such timeout policy "syz0"
[   76.680223][ T7935] vcan0: tx drop: invalid sa for name 0xfffffffffffffffc
[   76.729750][ T7941] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1740'.
[   76.738859][ T7941] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1740'.
[   76.756131][ T7941] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1740'.
[   76.765147][ T7941] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1740'.
[   76.811324][ T7947] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   76.858908][ T7957] loop6: detected capacity change from 0 to 512
[   76.879565][ T7957] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.892408][ T7964] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1745'.
[   76.892745][ T7957] ext4 filesystem being mounted at /308/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   76.943787][ T7967] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   76.956173][ T7967] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   77.032298][ T3707] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.035213][ T7973] loop9: detected capacity change from 0 to 2048
[   77.055976][ T7973] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.076871][ T7973] EXT4-fs error (device loop9): ext4_ext_precache:631: inode #2: comm +}[@: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   77.102072][ T7973] EXT4-fs (loop9): Remounting filesystem read-only
[   77.107878][ T7982] netlink: 'syz.4.1756': attribute type 4 has an invalid length.
[   77.125516][ T7982] netlink: 'syz.4.1756': attribute type 4 has an invalid length.
[   77.136467][ T5807] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.205654][ T7994] syz.9.1762[7994] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.211814][   T29] kauditd_printk_skb: 253 callbacks suppressed
[   77.211828][   T29] audit: type=1400 audit(1732589128.096:2494): avc:  denied  { write } for  pid=7995 comm="syz.4.1763" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   77.360060][   T29] audit: type=1400 audit(1732589128.246:2495): avc:  denied  { audit_write } for  pid=8010 comm="syz.6.1769" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   77.381346][   T29] audit: type=1107 audit(1732589128.246:2496): pid=8010 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   77.427133][ T8023] loop8: detected capacity change from 0 to 164
[   77.496398][ T8038] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   77.527489][   T29] audit: type=1326 audit(1732589128.416:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.9.1785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f530d51e819 code=0x7ffc0000
[   77.553972][   T29] audit: type=1326 audit(1732589128.446:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.9.1785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f530d51e819 code=0x7ffc0000
[   77.580521][   T29] audit: type=1326 audit(1732589128.446:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.9.1785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f530d51e819 code=0x7ffc0000
[   77.603981][   T29] audit: type=1326 audit(1732589128.446:2500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.9.1785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f530d51e819 code=0x7ffc0000
[   77.627442][   T29] audit: type=1326 audit(1732589128.446:2501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.9.1785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f530d51e819 code=0x7ffc0000
[   77.650932][   T29] audit: type=1326 audit(1732589128.446:2502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.9.1785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f530d51e819 code=0x7ffc0000
[   77.674392][   T29] audit: type=1326 audit(1732589128.446:2503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8042 comm="syz.9.1785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f530d51e819 code=0x7ffc0000
[   77.753051][ T8055] loop6: detected capacity change from 0 to 512
[   77.759709][ T8055] EXT4-fs: Ignoring removed i_version option
[   77.769015][ T8055] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[   77.781702][ T8055] EXT4-fs (loop6): 1 truncate cleaned up
[   77.825268][ T8070] loop1: detected capacity change from 0 to 1024
[   77.832135][ T8070] EXT4-fs: Ignoring removed orlov option
[   77.837865][ T8070] EXT4-fs: Ignoring removed nomblk_io_submit option
[   77.885382][ T8085] loop6: detected capacity change from 0 to 128
[   77.911306][ T8085] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[   77.919228][ T8085] FAT-fs (loop6): Filesystem has been set read-only
[   77.929552][ T8085] syz.6.1802: attempt to access beyond end of device
[   77.929552][ T8085] loop6: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   77.948088][ T8085] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[   77.956041][ T8085] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[   77.967657][ T8085] syz.6.1802: attempt to access beyond end of device
[   77.967657][ T8085] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[   77.982454][ T8085] syz.6.1802: attempt to access beyond end of device
[   77.982454][ T8085] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[   78.033363][ T8097] loop8: detected capacity change from 0 to 128
[   78.149841][ T8117] lo speed is unknown, defaulting to 1000
[   78.157299][ T8117] lo speed is unknown, defaulting to 1000
[   78.169811][ T8117] lo speed is unknown, defaulting to 1000
[   78.177966][ T8117] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   78.196247][ T8117] lo speed is unknown, defaulting to 1000
[   78.206511][ T8117] lo speed is unknown, defaulting to 1000
[   78.219347][ T8117] lo speed is unknown, defaulting to 1000
[   78.225670][ T8117] lo speed is unknown, defaulting to 1000
[   78.231860][ T8117] lo speed is unknown, defaulting to 1000
[   78.249748][ T8117] lo speed is unknown, defaulting to 1000
[   78.256156][ T8117] lo speed is unknown, defaulting to 1000
[   78.262280][ T8117] lo speed is unknown, defaulting to 1000
[   78.270720][ T8117] lo speed is unknown, defaulting to 1000
[   78.353689][ T8138] loop1: detected capacity change from 0 to 164
[   78.363668][ T8138] Unable to read rock-ridge attributes
[   78.375067][ T8138] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   78.383881][ T8138] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   78.392662][ T8138] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   78.396221][ T8145] loop9: detected capacity change from 0 to 512
[   78.401464][ T8138] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   78.409981][ T8145] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[   78.417174][ T8138] vxlan0: entered promiscuous mode
[   78.431461][ T8138] vxlan0: entered allmulticast mode
[   78.438629][ T8138] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   78.443912][ T8145] EXT4-fs (loop9): 1 truncate cleaned up
[   78.447653][ T8138] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   78.462291][ T8138] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   78.471331][ T8138] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   78.477079][ T8145] Process accounting resumed
[   78.489246][ T8145] Invalid ELF header magic: != ELF
[   78.559339][ T8151] loop9: detected capacity change from 0 to 8192
[   78.749947][ T8169] loop4: detected capacity change from 0 to 2048
[   78.780002][ T8169] EXT4-fs error (device loop4): ext4_ext_precache:631: inode #2: comm +}[@: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   78.841023][ T8169] EXT4-fs (loop4): Remounting filesystem read-only
[   78.940720][ T8192] loop4: detected capacity change from 0 to 8192
[   78.979085][ T8198] loop1: detected capacity change from 0 to 512
[   78.996034][ T8198] ext4 filesystem being mounted at /132/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   79.073223][ T8186] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   79.081886][ T8186] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   79.190813][ T8212] loop8: detected capacity change from 0 to 2048
[   79.219468][ T8212] EXT4-fs error (device loop8): ext4_ext_precache:631: inode #2: comm +}[@: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   79.237692][ T8212] EXT4-fs (loop8): Remounting filesystem read-only
[   79.257913][ T8216] netlink: 'syz.1.1859': attribute type 4 has an invalid length.
[   79.268239][    T9] lo speed is unknown, defaulting to 1000
[   79.276168][ T8216] netlink: 'syz.1.1859': attribute type 4 has an invalid length.
[   79.288206][    T8] lo speed is unknown, defaulting to 1000
[   79.342233][ T8224] bpf_get_probe_write_proto: 2 callbacks suppressed
[   79.342248][ T8224] syz.1.1862[8224] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.349340][ T8224] syz.1.1862[8224] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.361403][ T8224] syz.1.1862[8224] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.544422][ T8230] __nla_validate_parse: 4 callbacks suppressed
[   79.544434][ T8230] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1864'.
[   79.573465][ T8227] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1864'.
[   79.637838][ T8237] loop9: detected capacity change from 0 to 512
[   79.670610][ T8237] ext4 filesystem being mounted at /195/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   79.749635][ T8247] syz.6.1870[8247] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.749761][ T8247] syz.6.1870[8247] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.763142][ T8247] syz.6.1870[8247] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.809546][ T8251] loop6: detected capacity change from 0 to 512
[   79.830091][ T8251] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[   79.839224][ T8251] EXT4-fs (loop6): invalid journal inode
[   79.850574][ T8251] EXT4-fs (loop6): can't get journal size
[   79.863459][ T8251] EXT4-fs (loop6): 1 truncate cleaned up
[   79.966393][ T8276] loop9: detected capacity change from 0 to 128
[   79.976241][ T8274] loop4: detected capacity change from 0 to 1024
[   79.982896][ T8274] EXT4-fs: Ignoring removed orlov option
[   79.988623][ T8274] EXT4-fs: Ignoring removed nomblk_io_submit option
[   79.999063][ T8278] loop6: detected capacity change from 0 to 256
[   80.047927][ T8285] loop6: detected capacity change from 0 to 512
[   80.057145][ T8285] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[   80.068728][ T8285] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002]
[   80.078356][ T8285] System zones: 1-12
[   80.082608][ T8285] EXT4-fs (loop6): 1 truncate cleaned up
[   80.093109][ T8285] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   80.427427][ T8317] loop8: detected capacity change from 0 to 512
[   80.434486][ T8317] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[   80.445184][ T8317] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002]
[   80.453180][ T8317] System zones: 1-12
[   80.458308][ T8317] EXT4-fs (loop8): 1 truncate cleaned up
[   80.467452][ T8317] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   81.015992][ T8340] loop4: detected capacity change from 0 to 512
[   81.022867][ T8340] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   81.033692][ T8340] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002]
[   81.041756][ T8340] System zones: 1-12
[   81.045949][ T8340] EXT4-fs (loop4): 1 truncate cleaned up
[   81.056053][ T8340] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   81.143562][ T8345] loop4: detected capacity change from 0 to 164
[   81.151025][ T8345] Unable to read rock-ridge attributes
[   81.152938][ T8343] loop9: detected capacity change from 0 to 8192
[   81.162297][ T8345] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   81.171751][ T8345] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   81.180503][ T8345] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   81.189219][ T8345] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   81.198192][ T8345] vxlan0: entered promiscuous mode
[   81.203366][ T8345] vxlan0: entered allmulticast mode
[   81.210590][ T8345] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   81.219519][ T8345] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   81.228502][ T8345] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   81.237504][ T8345] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   81.290652][ T8361] loop9: detected capacity change from 0 to 256
[   81.298404][ T8361] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   81.339342][ T8367] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1920'.
[   81.414389][ T8384] SELinux: +}[@ (8384) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   81.435077][ T8386] bond2: entered promiscuous mode
[   81.440174][ T8386] bond2: entered allmulticast mode
[   81.445715][ T8386] 8021q: adding VLAN 0 to HW filter on device bond2
[   81.456507][ T8386] bond2 (unregistering): Released all slaves
[   81.568457][ T8406] loop1: detected capacity change from 0 to 512
[   81.575690][ T8406] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   81.596403][ T8406] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[   81.606684][ T8406] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1946: corrupted in-inode xattr: e_value size too large
[   81.620986][ T8406] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1946: couldn't read orphan inode 15 (err -117)
[   81.779952][ T8434] pim6reg1: entered promiscuous mode
[   81.785496][ T8434] pim6reg1: entered allmulticast mode
[   81.916805][ T8458] loop8: detected capacity change from 0 to 256
[   81.927635][ T8458] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   81.975828][ T8468] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   81.986480][ T8468] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   82.051433][ T8481] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   82.059933][ T8481] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   82.239788][ T8483] loop6: detected capacity change from 0 to 1024
[   82.246866][ T8483] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   82.257910][ T8483] EXT4-fs (loop6): revision level too high, forcing read-only mode
[   82.266068][ T8483] EXT4-fs (loop6): orphan cleanup on readonly fs
[   82.272812][ T8483] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   82.282381][ T8483] EXT4-fs error (device loop6): ext4_dirty_inode:6041: inode #3: comm syz.6.1959: mark_inode_dirty error
[   82.294060][ T8483] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.1959: Invalid block bitmap block 3 in block_group 0
[   82.307722][ T8483] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.1959: Invalid block bitmap block 3 in block_group 0
[   82.321318][ T8483] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.1959: Invalid block bitmap block 3 in block_group 0
[   82.334915][ T8483] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   82.344820][ T8483] EXT4-fs error (device loop6): ext4_dirty_inode:6041: inode #3: comm syz.6.1959: mark_inode_dirty error
[   82.356863][ T8483] __quota_error: 129 callbacks suppressed
[   82.356886][ T8483] Quota error (device loop6): write_blk: dquota write failed
[   82.370103][ T8483] EXT4-fs error (device loop6): ext4_map_blocks:671: inode #3: block 1: comm syz.6.1959: lblock 6 mapped to illegal pblock 1 (length 1)
[   82.384483][ T8483] Quota error (device loop6): write_blk: dquota write failed
[   82.391961][ T8483] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[   82.401888][ T8483] EXT4-fs error (device loop6): ext4_map_blocks:671: inode #3: block 48: comm syz.6.1959: lblock 0 mapped to illegal pblock 48 (length 1)
[   82.416582][ T8483] Quota error (device loop6): v2_write_file_info: Can't write info structure
[   82.425419][ T8483] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.1959: Failed to acquire dquot type 0
[   82.437116][ T8483] EXT4-fs error (device loop6): ext4_map_blocks:671: inode #3: block 49: comm syz.6.1959: lblock 1 mapped to illegal pblock 49 (length 1)
[   82.451398][ T8483] Quota error (device loop6): do_insert_tree: Can't read tree quota block 1
[   82.460133][ T8483] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[   82.470052][ T8483] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.1959: Failed to acquire dquot type 0
[   82.483856][ T8483] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   82.493550][ T8483] EXT4-fs error (device loop6): ext4_evict_inode:256: inode #15: comm syz.6.1959: mark_inode_dirty error
[   82.506467][ T8483] EXT4-fs warning (device loop6): ext4_evict_inode:259: couldn't mark inode dirty (err -117)
[   82.518498][ T8483] EXT4-fs (loop6): 1 orphan inode deleted
[   82.528423][ T8483] syz.6.1959 (8483) used greatest stack depth: 8944 bytes left
[   82.536698][   T29] audit: type=1326 audit(1732589133.416:2633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8489 comm="syz.8.1962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   82.560163][   T29] audit: type=1326 audit(1732589133.416:2634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8489 comm="syz.8.1962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   82.583577][   T29] audit: type=1326 audit(1732589133.416:2635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8489 comm="syz.8.1962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   82.606967][   T29] audit: type=1326 audit(1732589133.416:2636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8489 comm="syz.8.1962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d8a6fe819 code=0x7ffc0000
[   82.690788][ T8506] netlink: 'syz.4.1980': attribute type 10 has an invalid length.
[   82.698689][ T8506] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1980'.
[   82.736352][ T8506] team0: entered promiscuous mode
[   82.741410][ T8506] team_slave_0: entered promiscuous mode
[   82.747170][ T8506] team_slave_1: entered promiscuous mode
[   82.763951][ T8506] bridge0: port 3(team0) entered blocking state
[   82.770267][ T8506] bridge0: port 3(team0) entered disabled state
[   82.779043][ T8506] team0: entered allmulticast mode
[   82.784243][ T8506] team_slave_0: entered allmulticast mode
[   82.790012][ T8506] team_slave_1: entered allmulticast mode
[   82.798189][ T8506] bridge0: port 3(team0) entered blocking state
[   82.804540][ T8506] bridge0: port 3(team0) entered forwarding state
[   82.815901][ T8517] pim6reg1: entered promiscuous mode
[   82.821263][ T8517] pim6reg1: entered allmulticast mode
[   82.848431][ T8520] loop6: detected capacity change from 0 to 8192
[   82.996331][ T8550] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1990'.
[   83.005540][ T8554] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[   83.006032][ T8550] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1990'.
[   83.095847][ T8568] pim6reg1: entered promiscuous mode
[   83.101186][ T8568] pim6reg1: entered allmulticast mode
[   83.206328][ T8590] netlink: 'syz.6.2011': attribute type 1 has an invalid length.
[   83.214187][ T8590] netlink: 'syz.6.2011': attribute type 4 has an invalid length.
[   83.221957][ T8590] netlink: 15334 bytes leftover after parsing attributes in process `syz.6.2011'.
[   83.313540][ T8600] loop6: detected capacity change from 0 to 2048
[   83.328190][ T8600] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2015: bg 0: block 234: padding at end of block bitmap is not set
[   83.343083][ T8600] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 117
[   83.355488][ T8600] EXT4-fs (loop6): This should not happen!! Data will be lost
[   83.355488][ T8600] 
[   83.660551][ T8609] loop6: detected capacity change from 0 to 1024
[   83.670981][ T8609] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.2018: Failed to acquire dquot type 0
[   83.685416][ T8609] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   83.700700][ T8609] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #13: comm syz.6.2018: corrupted inode contents
[   83.716037][ T8609] EXT4-fs error (device loop6): ext4_dirty_inode:6041: inode #13: comm syz.6.2018: mark_inode_dirty error
[   83.731370][ T8609] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #13: comm syz.6.2018: corrupted inode contents
[   83.744511][ T8609] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #13: comm syz.6.2018: mark_inode_dirty error
[   83.756076][ T8609] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #13: comm syz.6.2018: corrupted inode contents
[   83.768971][ T8609] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[   83.777759][ T8609] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #13: comm syz.6.2018: corrupted inode contents
[   83.792104][ T8609] EXT4-fs error (device loop6): ext4_truncate:4240: inode #13: comm syz.6.2018: mark_inode_dirty error
[   83.820170][ T8609] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[   83.831162][ T8609] EXT4-fs (loop6): 1 truncate cleaned up
[   83.862151][ T8609] bond1: entered promiscuous mode
[   83.867499][ T8609] bond1: entered allmulticast mode
[   83.875350][ T8609] 8021q: adding VLAN 0 to HW filter on device bond1
[   83.892479][ T8609] bond1 (unregistering): Released all slaves
[   83.932035][ T8645] netlink: 'syz.9.2027': attribute type 1 has an invalid length.
[   84.198053][ T8703] loop6: detected capacity change from 0 to 512
[   84.212289][ T8705] loop8: detected capacity change from 0 to 512
[   84.230327][ T8703] ext4 filesystem being mounted at /382/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.244820][ T8705] EXT4-fs error (device loop8): ext4_xattr_ibody_find:2240: inode #15: comm syz.8.2046: corrupted in-inode xattr: invalid ea_ino
[   84.250850][ T8713] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   84.271267][ T8705] EXT4-fs error (device loop8): ext4_orphan_get:1394: comm syz.8.2046: couldn't read orphan inode 15 (err -117)
[   84.318554][ T8705] EXT4-fs (loop8): re-mounted 00000007-0000-0000-0000-000000000000 ro. Quota mode: none.
[   84.410080][ T8731] netlink: 'syz.4.2066': attribute type 10 has an invalid length.
[   84.436651][ T8731] bridge0: port 3(team0) entered disabled state
[   84.463011][ T8746] netlink: 'syz.4.2066': attribute type 10 has an invalid length.
[   84.470925][ T8746] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2066'.
[   84.480066][ T8731] team0: left allmulticast mode
[   84.484992][ T8731] team_slave_0: left allmulticast mode
[   84.490550][ T8731] team_slave_1: left allmulticast mode
[   84.496036][ T8731] team0: left promiscuous mode
[   84.500801][ T8731] team_slave_0: left promiscuous mode
[   84.506245][ T8731] team_slave_1: left promiscuous mode
[   84.512010][ T8731] bridge0: port 3(team0) entered disabled state
[   84.534836][ T8731] batman_adv: batadv0: Adding interface: team0
[   84.541047][ T8731] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.542039][ T8742] loop1: detected capacity change from 0 to 8192
[   84.566208][ T8731] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   84.597841][ T8746] team0: entered promiscuous mode
[   84.602916][ T8746] team_slave_0: entered promiscuous mode
[   84.608716][ T8746] team_slave_1: entered promiscuous mode
[   84.618972][ T8746] 8021q: adding VLAN 0 to HW filter on device team0
[   84.656047][ T8746] batman_adv: batadv0: Interface activated: team0
[   84.662578][ T8746] batman_adv: batadv0: Interface deactivated: team0
[   84.669269][ T8746] batman_adv: batadv0: Removing interface: team0
[   84.680609][ T8746] bridge0: port 3(team0) entered blocking state
[   84.686990][ T8746] bridge0: port 3(team0) entered disabled state
[   84.693737][ T8765] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   84.704817][ T8746] team0: entered allmulticast mode
[   84.709962][ T8746] team_slave_0: entered allmulticast mode
[   84.715720][ T8746] team_slave_1: entered allmulticast mode
[   84.722409][ T8746] bridge0: port 3(team0) entered blocking state
[   84.728814][ T8746] bridge0: port 3(team0) entered forwarding state
[   84.875285][ T8799] netlink: 'syz.9.2075': attribute type 3 has an invalid length.
[   84.879887][ T8795] loop1: detected capacity change from 0 to 512
[   84.894670][ T8795] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   84.912267][ T8795] EXT4-fs (loop1): 1 orphan inode deleted
[   84.918062][ T8795] EXT4-fs (loop1): 1 truncate cleaned up
[   84.932618][ T8795] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   85.056101][ T8834] netlink: 44 bytes leftover after parsing attributes in process `syz.8.2088'.
[   85.522568][ T8892] loop9: detected capacity change from 0 to 1024
[   85.530328][ T8892] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   85.577971][ T8892] EXT4-fs (loop9): revision level too high, forcing read-only mode
[   85.586768][ T8892] EXT4-fs (loop9): orphan cleanup on readonly fs
[   85.593479][ T8892] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   85.605412][ T8892] EXT4-fs error (device loop9): ext4_dirty_inode:6041: inode #3: comm syz.9.2104: mark_inode_dirty error
[   85.617184][ T8892] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:483: comm syz.9.2104: Invalid block bitmap block 3 in block_group 0
[   85.636550][ T8892] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:483: comm syz.9.2104: Invalid block bitmap block 3 in block_group 0
[   85.650414][ T8892] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:483: comm syz.9.2104: Invalid block bitmap block 3 in block_group 0
[   85.664181][ T8892] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   85.674208][ T8892] EXT4-fs error (device loop9): ext4_dirty_inode:6041: inode #3: comm syz.9.2104: mark_inode_dirty error
[   85.686381][ T8892] EXT4-fs error (device loop9): ext4_map_blocks:671: inode #3: block 1: comm syz.9.2104: lblock 6 mapped to illegal pblock 1 (length 1)
[   85.701172][ T8892] EXT4-fs error (device loop9): ext4_map_blocks:671: inode #3: block 48: comm syz.9.2104: lblock 0 mapped to illegal pblock 48 (length 1)
[   85.706978][ T8899] syz.8.2106[8899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.715603][ T8899] syz.8.2106[8899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.716105][ T8892] EXT4-fs error (device loop9): ext4_acquire_dquot:6938: comm syz.9.2104: Failed to acquire dquot type 0
[   85.727255][ T8899] syz.8.2106[8899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.738607][ T8892] EXT4-fs error (device loop9): ext4_map_blocks:671: inode #3: block 49: comm syz.9.2104: lblock 1 mapped to illegal pblock 49 (length 1)
[   85.765713][ T8899] loop8: detected capacity change from 0 to 512
[   85.781639][ T8899] EXT4-fs: Ignoring removed orlov option
[   85.788395][ T8899] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[   85.799034][ T8892] EXT4-fs error (device loop9): ext4_acquire_dquot:6938: comm syz.9.2104: Failed to acquire dquot type 0
[   85.811148][ T8892] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   85.821837][ T8892] EXT4-fs error (device loop9): ext4_evict_inode:256: inode #15: comm syz.9.2104: mark_inode_dirty error
[   85.834053][ T8899] EXT4-fs (loop8): 1 orphan inode deleted
[   85.839797][ T8899] EXT4-fs (loop8): 1 truncate cleaned up
[   85.847610][ T8899] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   85.851077][ T8892] EXT4-fs warning (device loop9): ext4_evict_inode:259: couldn't mark inode dirty (err -117)
[   85.878601][ T8892] EXT4-fs (loop9): 1 orphan inode deleted
[   85.947389][ T8910] loop6: detected capacity change from 0 to 256
[   85.958623][ T8910] vfat: Unknown parameter '���������������'
[   86.358833][ T8997] netlink: 'syz.1.2129': attribute type 10 has an invalid length.
[   86.378086][ T8997] batman_adv: batadv0: Adding interface: team0
[   86.384321][ T8997] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.393854][ T9001] loop6: detected capacity change from 0 to 512
[   86.409462][ T8997] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   86.418762][ T8897] 9pnet_fd: p9_fd_create_tcp (8897): problem connecting socket to 127.0.0.1
[   86.426494][ T9003] netlink: 'syz.1.2129': attribute type 10 has an invalid length.
[   86.442015][ T9003] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2129'.
[   86.453210][ T9001] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.2132: corrupted in-inode xattr: invalid ea_ino
[   86.464088][ T9003] team0: entered promiscuous mode
[   86.471615][ T9003] team_slave_0: entered promiscuous mode
[   86.477472][ T9003] team_slave_1: entered promiscuous mode
[   86.478993][ T9001] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.2132: couldn't read orphan inode 15 (err -117)
[   86.494865][ T9003] 8021q: adding VLAN 0 to HW filter on device team0
[   86.501876][ T9003] batman_adv: batadv0: Interface activated: team0
[   86.506611][ T8999] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[   86.508526][ T9003] batman_adv: batadv0: Interface deactivated: team0
[   86.523471][ T9003] batman_adv: batadv0: Removing interface: team0
[   86.529932][ T8999] SELinux: failed to load policy
[   86.536981][ T9003] bridge0: port 3(team0) entered blocking state
[   86.543271][ T9003] bridge0: port 3(team0) entered disabled state
[   86.553906][ T9003] team0: entered allmulticast mode
[   86.559164][ T9003] team_slave_0: entered allmulticast mode
[   86.564931][ T9003] team_slave_1: entered allmulticast mode
[   86.575090][ T9003] bridge0: port 3(team0) entered blocking state
[   86.581382][ T9003] bridge0: port 3(team0) entered forwarding state
[   86.612893][ T9001] EXT4-fs (loop6): re-mounted 00000007-0000-0000-0000-000000000000 ro. Quota mode: none.
[   86.649114][ T9020] netlink: 332 bytes leftover after parsing attributes in process `syz.4.2137'.
[   86.767498][ T9046] loop6: detected capacity change from 0 to 128
[   86.782673][ T9049] loop1: detected capacity change from 0 to 512
[   86.806651][ T9049] ext4 filesystem being mounted at /180/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.823485][ T9046] syz.6.2146: attempt to access beyond end of device
[   86.823485][ T9046] loop6: rw=2049, sector=145, nr_sectors = 896 limit=128
[   86.870735][ T9046] syz.6.2146: attempt to access beyond end of device
[   86.870735][ T9046] loop6: rw=0, sector=177, nr_sectors = 1 limit=128
[   87.079876][ T9110] loop1: detected capacity change from 0 to 128
[   87.189007][ T9134] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2170'.
[   87.388408][   T29] kauditd_printk_skb: 460 callbacks suppressed
[   87.388422][   T29] audit: type=1400 audit(1732589138.120:3089): avc:  denied  { bind } for  pid=9164 comm="syz.1.2176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   87.413924][   T29] audit: type=1400 audit(1732589138.120:3090): avc:  denied  { name_bind } for  pid=9164 comm="syz.1.2176" src=512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[   87.434775][   T29] audit: type=1400 audit(1732589138.120:3091): avc:  denied  { node_bind } for  pid=9164 comm="syz.1.2176" src=512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[   87.458818][   T29] audit: type=1400 audit(1732589138.170:3092): avc:  denied  { write } for  pid=9164 comm="syz.1.2176" name="icmp6" dev="proc" ino=4026534599 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   87.481674][   T29] audit: type=1400 audit(1732589138.190:3093): avc:  denied  { read } for  pid=9169 comm="syz.9.2177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   87.530892][   T29] audit: type=1400 audit(1732589138.260:3094): avc:  denied  { read } for  pid=9174 comm="syz.9.2179" name="event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   87.554188][   T29] audit: type=1400 audit(1732589138.260:3095): avc:  denied  { open } for  pid=9174 comm="syz.9.2179" path="/dev/input/event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   87.585148][ T9181] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2182'.
[   87.602899][ T9183] loop8: detected capacity change from 0 to 512
[   87.612063][ T9187] 9pnet: p9_errstr2errno: server reported unknown error ���׾|��n���t�M�7�
[   87.612641][   T29] audit: type=1400 audit(1732589138.340:3096): avc:  denied  { mounton } for  pid=9186 comm="syz.1.2185" path="/194/file0" dev="tmpfs" ino=1027 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   87.644788][ T9183] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[   87.667977][ T9183] EXT4-fs: error: could not find journal device path
[   87.696411][   T29] audit: type=1400 audit(1732589138.430:3097): avc:  denied  { bind } for  pid=9192 comm="syz.6.2187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   87.715935][   T29] audit: type=1400 audit(1732589138.430:3098): avc:  denied  { listen } for  pid=9192 comm="syz.6.2187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   87.985100][ T9211] bond1: entered promiscuous mode
[   87.990180][ T9211] bond1: entered allmulticast mode
[   87.995633][ T9211] 8021q: adding VLAN 0 to HW filter on device bond1
[   88.005542][ T9211] bond1 (unregistering): Released all slaves
[   88.281321][ T9219] program syz.9.2200 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   88.353063][ T9227] netlink: 14568 bytes leftover after parsing attributes in process `syz.4.2205'.
[   88.396991][ T9229] infiniband syz1: set active
[   88.401728][ T9229] infiniband syz1: added team_slave_0
[   88.423159][ T9229] RDS/IB: syz1: added
[   88.427633][ T9229] smc: adding ib device syz1 with port count 1
[   88.434082][ T9229] smc:    ib device syz1 port 1 has pnetid 
[   88.589048][ T9244] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[   88.621346][ T9248] loop1: detected capacity change from 0 to 128
[   88.632358][ T9247] loop6: detected capacity change from 0 to 128
[   88.650996][ T9247] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[   88.680565][ T9248] syz.1.2214: attempt to access beyond end of device
[   88.680565][ T9248] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128
[   88.713448][ T9250] bond0: entered promiscuous mode
[   88.718637][ T9250] bond_slave_0: entered promiscuous mode
[   88.724435][ T9250] bond_slave_1: entered promiscuous mode
[   88.731927][ T2244] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[   88.752094][ T9248] syz.1.2214: attempt to access beyond end of device
[   88.752094][ T9248] loop1: rw=0, sector=177, nr_sectors = 1 limit=128
[   88.847876][ T9271] loop6: detected capacity change from 0 to 512
[   88.866887][ T9271] EXT4-fs (loop6): revision level too high, forcing read-only mode
[   88.874940][ T9271] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   88.876544][ T9278] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2227'.
[   88.893810][ T9271] System zones: 0-1, 15-15, 18-18, 34-34
[   88.899973][ T9271] EXT4-fs (loop6): orphan cleanup on readonly fs
[   88.913625][ T9271] EXT4-fs warning (device loop6): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   88.928420][ T9271] EXT4-fs (loop6): Cannot turn on quotas: error -22
[   88.936207][ T9271] EXT4-fs error (device loop6): ext4_orphan_get:1415: comm syz.6.2225: bad orphan inode 16
[   88.950815][ T9271] ext4_test_bit(bit=15, block=18) = 1
[   88.956299][ T9271] is_bad_inode(inode)=0
[   88.960743][ T9271] NEXT_ORPHAN(inode)=0
[   88.964939][ T9271] max_ino=32
[   88.968257][ T9271] i_nlink=2
[   89.025284][ T9291] loop9: detected capacity change from 0 to 128
[   89.119923][ T9291] syz.9.2232: attempt to access beyond end of device
[   89.119923][ T9291] loop9: rw=2049, sector=145, nr_sectors = 896 limit=128
[   89.159743][ T9291] syz.9.2232: attempt to access beyond end of device
[   89.159743][ T9291] loop9: rw=0, sector=177, nr_sectors = 1 limit=128
[   89.182589][ T9316] netlink: 'syz.4.2245': attribute type 10 has an invalid length.
[   89.207160][ T9316] syz_tun: entered promiscuous mode
[   89.212788][ T9316] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   90.196507][ T9367] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2275'.
[   90.198280][ T9369] loop8: detected capacity change from 0 to 128
[   90.227743][ T9367] bridge0: port 3(team0) entered disabled state
[   90.234466][ T9369] syz.8.2265: attempt to access beyond end of device
[   90.234466][ T9369] loop8: rw=2049, sector=145, nr_sectors = 896 limit=128
[   90.253128][ T9367] team0 (unregistering): left allmulticast mode
[   90.259517][ T9367] team_slave_0: left allmulticast mode
[   90.259561][ T9369] syz.8.2265: attempt to access beyond end of device
[   90.259561][ T9369] loop8: rw=0, sector=177, nr_sectors = 1 limit=128
[   90.259596][ T9367] team_slave_1: left allmulticast mode
[   90.259636][ T9367] bridge0: port 3(team0) entered disabled state
[   90.297536][ T9374] loop8: detected capacity change from 0 to 2048
[   90.301235][ T9367] team_slave_0: left promiscuous mode
[   90.317841][ T9367] team0 (unregistering): Port device team_slave_0 removed
[   90.325553][ T9367] team_slave_1: left promiscuous mode
[   90.333663][ T9367] team0 (unregistering): Port device team_slave_1 removed
[   90.457429][ T9391] syz.4.2276[9391] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.457489][ T9391] syz.4.2276[9391] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.469630][ T9391] syz.4.2276[9391] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.482258][ T9383] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[   90.531762][ T9392] kernel read not supported for file /policy (pid: 9392 comm: syz.6.2277)
[   90.613280][ T9406] loop8: detected capacity change from 0 to 512
[   90.637900][ T9406] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[   90.661134][ T9406] EXT4-fs: error: could not find journal device path
[   90.847197][ T9439] syz.6.2299[9439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.847281][ T9439] syz.6.2299[9439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.863248][ T9442] sg_write: data in/out 231/14 bytes for SCSI command 0x0-- guessing data in;
[   90.863248][ T9442]    program syz.4.2301 not setting count and/or reply_len properly
[   90.871141][ T9439] syz.6.2299[9439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.109998][ T9475] netlink: 'syz.8.2315': attribute type 10 has an invalid length.
[   91.151655][ T9475] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   91.642495][ T9520] netlink: 'syz.9.2337': attribute type 10 has an invalid length.
[   91.661494][ T9518] loop6: detected capacity change from 0 to 512
[   91.676484][ T9520] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   91.677241][ T9524] loop8: detected capacity change from 0 to 512
[   91.685966][ T9518] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[   91.714514][ T9518] EXT4-fs: error: could not find journal device path
[   91.734806][ T9524] EXT4-fs error (device loop8): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.8.2338: corrupted xattr block 95: invalid header
[   91.751513][ T9524] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.2338: bg 0: block 7: invalid block bitmap
[   91.764201][ T9524] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   91.773420][ T9524] EXT4-fs error (device loop8): ext4_xattr_delete_inode:2977: inode #11: comm syz.8.2338: corrupted xattr block 95: invalid header
[   91.790146][ T9524] EXT4-fs warning (device loop8): ext4_evict_inode:276: xattr delete (err -117)
[   91.801472][ T9524] EXT4-fs (loop8): 1 orphan inode deleted
[   91.859753][ T9533] loop6: detected capacity change from 0 to 2048
[   91.962979][ T9549] syz.8.2350[9549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.963034][ T9549] syz.8.2350[9549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.974844][ T9550] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2349'.
[   91.983310][ T9549] syz.8.2350[9549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.986178][ T9550] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2349'.
[   92.021201][ T9550] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2349'.
[   92.030139][ T9550] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2349'.
[   92.049458][ T9554] netlink: 'syz.1.2351': attribute type 10 has an invalid length.
[   92.062296][ T9554] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   92.128573][ T9556] kernel read not supported for file /policy (pid: 9556 comm: syz.9.2352)
[   92.188876][ T9574] loop8: detected capacity change from 0 to 128
[   92.202888][ T9577] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2363'.
[   92.226780][ T9577] infiniband syz1: set down
[   92.234161][ T9578] loop6: detected capacity change from 0 to 2048
[   92.243061][ T9577] team0 (unregistering): Port device team_slave_0 removed
[   92.256580][ T9574] syz.8.2360: attempt to access beyond end of device
[   92.256580][ T9574] loop8: rw=2049, sector=145, nr_sectors = 896 limit=128
[   92.263551][ T9577] team0 (unregistering): Port device team_slave_1 removed
[   92.285671][ T9574] syz.8.2360: attempt to access beyond end of device
[   92.285671][ T9574] loop8: rw=0, sector=177, nr_sectors = 1 limit=128
[   92.332062][ T9587] smc: net device bond0 applied user defined pnetid SYZ0
[   92.340584][ T9587] smc: ib device syz1 ibport 1 applied user defined pnetid SYZ0
[   92.352243][ T9587] smc: net device bond0 erased user defined pnetid SYZ0
[   92.354371][ T9589] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2368'.
[   92.361512][ T9587] smc: ib device syz1 ibport 1 erased user defined pnetid SYZ0
[   92.441930][   T29] kauditd_printk_skb: 690 callbacks suppressed
[   92.441943][   T29] audit: type=1326 audit(1732589143.170:3788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9602 comm="syz.9.2383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f530d51e819 code=0x7ffc0000
[   92.471773][   T29] audit: type=1326 audit(1732589143.180:3789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f252f76e819 code=0x7ffc0000
[   92.495249][   T29] audit: type=1326 audit(1732589143.180:3790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f252f76e819 code=0x7ffc0000
[   92.518691][   T29] audit: type=1326 audit(1732589143.180:3791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f252f76e819 code=0x7ffc0000
[   92.539938][ T9605] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   92.542129][   T29] audit: type=1326 audit(1732589143.180:3792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f252f76e819 code=0x7ffc0000
[   92.572091][   T29] audit: type=1326 audit(1732589143.180:3793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f252f76e819 code=0x7ffc0000
[   92.595687][   T29] audit: type=1326 audit(1732589143.180:3794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f252f76e819 code=0x7ffc0000
[   92.619107][   T29] audit: type=1326 audit(1732589143.180:3795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f252f76e819 code=0x7ffc0000
[   92.642554][   T29] audit: type=1326 audit(1732589143.180:3796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f252f76e819 code=0x7ffc0000
[   92.666058][   T29] audit: type=1326 audit(1732589143.180:3797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f252f76e819 code=0x7ffc0000
[   93.025019][ T9636] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9636 comm=syz.1.2391
[   93.126400][ T9644] syz.9.2394[9644] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.126468][ T9644] syz.9.2394[9644] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.166676][ T9646] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2395'.
[   93.186953][ T9646] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2395'.
[   93.200058][ T9644] syz.9.2394[9644] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.215656][ T9646] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2395'.
[   93.405861][ T9662] loop9: detected capacity change from 0 to 512
[   93.439635][ T9662] ext4 filesystem being mounted at /310/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.500888][ T9670] loop8: detected capacity change from 0 to 1024
[   93.508379][ T9670] EXT4-fs: Ignoring removed orlov option
[   93.516305][ T9670] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   93.665415][ T9608] syz.6.2377 (9608) used greatest stack depth: 6360 bytes left
[   93.713219][ T9704] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9704 comm=syz.6.2419
[   93.804869][ T9722] serio: Serial port ptm1
[   93.827687][ T9728] program syz.9.2427 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   93.866546][ T9734] syz.4.2430[9734] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.885896][ T9740] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   93.951732][ T9749] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[   93.958273][ T9749] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   93.965878][ T9749] vhci_hcd vhci_hcd.0: Device attached
[   93.980783][ T9755] loop9: detected capacity change from 0 to 512
[   93.991887][ T9750] vhci_hcd: connection closed
[   93.992010][ T3726] vhci_hcd: stop threads
[   94.000986][ T3726] vhci_hcd: release socket
[   94.005448][ T3726] vhci_hcd: disconnect device
[   94.011449][ T9755] ext4 filesystem being mounted at /323/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.835855][ T9907] dvmrp0: entered allmulticast mode
[   94.843315][ T9907] dvmrp0: left allmulticast mode
[   94.858301][ T9905] loop8: detected capacity change from 0 to 2048
[   95.062444][ T9928] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   95.083394][ T9928] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[   95.095709][ T9928] EXT4-fs (loop8): This should not happen!! Data will be lost
[   95.095709][ T9928] 
[   95.105378][ T9928] EXT4-fs (loop8): Total free blocks count 0
[   95.111459][ T9928] EXT4-fs (loop8): Free/Dirty block details
[   95.117422][ T9928] EXT4-fs (loop8): free_blocks=2415919104
[   95.123245][ T9928] EXT4-fs (loop8): dirty_blocks=8224
[   95.128558][ T9928] EXT4-fs (loop8): Block reservation details
[   95.134613][ T9928] EXT4-fs (loop8): i_reserved_data_blocks=514
[   95.162678][ T2246] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 28
[   95.175317][ T2246] EXT4-fs (loop8): This should not happen!! Data will be lost
[   95.175317][ T2246] 
[   95.407540][T10021] loop6: detected capacity change from 0 to 256
[   95.428304][T10024] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.458962][T10024] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.819515][T10066] __nla_validate_parse: 6 callbacks suppressed
[   95.819541][T10066] netlink: 24 bytes leftover after parsing attributes in process `syz.9.2514'.
[   95.902773][T10077] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2518'.
[   95.911812][T10077] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2518'.
[   95.920785][T10077] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2518'.
[   95.947751][T10079] loop9: detected capacity change from 0 to 764
[   95.972477][T10079] Symlink component flag not implemented
[   95.981355][T10079] Symlink component flag not implemented (129)
[   95.989759][T10079] rock: directory entry would overflow storage
[   95.995981][T10079] rock: sig=0x4f50, size=4, remaining=3
[   96.001750][T10079] iso9660: Corrupted directory entry in block 6 of inode 1792
[   96.032016][T10087] loop8: detected capacity change from 0 to 2048
[   96.065337][T10087] EXT4-fs mount: 64 callbacks suppressed
[   96.065350][T10087] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.183147][T10102] loop9: detected capacity change from 0 to 512
[   96.195078][T10102] EXT4-fs error (device loop9): ext4_xattr_ibody_find:2240: inode #15: comm syz.9.2527: corrupted in-inode xattr: invalid ea_ino
[   96.219173][T10102] EXT4-fs error (device loop9): ext4_orphan_get:1394: comm syz.9.2527: couldn't read orphan inode 15 (err -117)
[   96.231533][T10102] EXT4-fs (loop9): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.261305][ T5807] EXT4-fs (loop9): unmounting filesystem 00000007-0000-0000-0000-000000000000.
[   96.261713][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.302200][T10113] vlan0: entered allmulticast mode
[   96.456380][T10134] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2546'.
[   96.486197][T10134] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2546'.
[   96.535785][T10148] loop6: detected capacity change from 0 to 512
[   96.543956][T10148] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[   96.567058][T10148] EXT4-fs: error: could not find journal device path
[   96.676748][T10175] loop8: detected capacity change from 0 to 512
[   96.694999][T10169] delete_channel: no stack
[   96.722555][T10175] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.2563: bg 0: block 393: padding at end of block bitmap is not set
[   96.763616][T10175] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   96.773389][T10175] EXT4-fs (loop8): 2 truncates cleaned up
[   96.781352][T10175] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.869612][ T5551] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.229400][T10229] loop8: detected capacity change from 0 to 2048
[   97.271933][T10239] wireguard0: entered promiscuous mode
[   97.277769][T10239] wireguard0: entered allmulticast mode
[   97.295651][T10229] Alternate GPT is invalid, using primary GPT.
[   97.302004][T10229]  loop8: p1 p2 p3
[   97.302122][T10244] bpf_get_probe_write_proto: 2 callbacks suppressed
[   97.302133][T10244] syz.1.2594[10244] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.312660][T10244] syz.1.2594[10244] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.324350][T10244] syz.1.2594[10244] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.380509][T10251] syz.4.2597[10251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.392427][T10251] syz.4.2597[10251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.405162][T10251] syz.4.2597[10251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.458490][   T29] kauditd_printk_skb: 247 callbacks suppressed
[   97.458528][   T29] audit: type=1400 audit(1732589148.190:4045): avc:  denied  { append } for  pid=10260 comm="syz.8.2602" name="event3" dev="devtmpfs" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   97.574613][   T29] audit: type=1400 audit(1732589148.310:4046): avc:  denied  { module_load } for  pid=10272 comm="syz.4.2608" path="/sys/power/wakeup_count" dev="sysfs" ino=195 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[   97.629045][   T29] audit: type=1326 audit(1732589148.360:4047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10279 comm="syz.6.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   97.652650][   T29] audit: type=1326 audit(1732589148.360:4048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10279 comm="syz.6.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   97.652674][   T29] audit: type=1326 audit(1732589148.360:4049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10279 comm="syz.6.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   97.652699][   T29] audit: type=1326 audit(1732589148.360:4050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10279 comm="syz.6.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   97.652724][   T29] audit: type=1326 audit(1732589148.360:4051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10279 comm="syz.6.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   97.652910][   T29] audit: type=1326 audit(1732589148.360:4052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10279 comm="syz.6.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   97.652933][   T29] audit: type=1326 audit(1732589148.360:4053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10279 comm="syz.6.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   97.652957][   T29] audit: type=1326 audit(1732589148.360:4054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10279 comm="syz.6.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a60b4e819 code=0x7ffc0000
[   97.723850][T10261] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   97.846339][T10261] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.863136][T10290] loop9: detected capacity change from 0 to 256
[   98.083524][T10308] sd 0:0:1:0: device reset
[   98.175807][T10320] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2628'.
[   98.224504][T10329] syz.1.2632[10329] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.224636][T10329] syz.1.2632[10329] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.236323][T10320] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2628'.
[   98.236612][T10329] syz.1.2632[10329] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.296433][T10337] netlink: 3 bytes leftover after parsing attributes in process `syz.6.2633'.
[   98.397434][T10356] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   98.419757][T10356] SELinux: failed to load policy
[   98.500568][T10383] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.521544][T10387] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   98.521553][T10382] IPVS: stopping master sync thread 10387 ...
[   98.568303][T10383] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.627075][T10383] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.707008][T10383] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.770556][T10383] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.782533][T10383] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.804204][T10383] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.812832][T10443] pim6reg1: entered promiscuous mode
[   98.818320][T10443] pim6reg1: entered allmulticast mode
[   98.828559][T10383] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.904079][T10460] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2666'.
[   99.402786][T10541] syz.1.2668[10541] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.403257][T10540] loop8: detected capacity change from 0 to 256
[   99.427486][T10538] SELinux:  policydb table sizes (0,0) do not match mine (6,6)
[   99.458511][T10538] SELinux: failed to load policy
[   99.466701][T10544] loop8: detected capacity change from 0 to 128
[   99.692519][T10545] syz.8.2671: attempt to access beyond end of device
[   99.692519][T10545] loop8: rw=2049, sector=340, nr_sectors = 712 limit=128
[   99.969357][ T2998] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4
[   99.977112][ T2998] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2
[   99.988823][ T3307] ==================================================================
[   99.996930][ T3307] BUG: KCSAN: data-race in __mark_inode_dirty / move_expired_inodes
[  100.004914][ T3307] 
[  100.007237][ T3307] read-write to 0xffff8881005e77b8 of 4 bytes by task 3726 on cpu 1:
[  100.015289][ T3307]  move_expired_inodes+0x17a/0x410
[  100.020407][ T3307]  queue_io+0xe1/0x2e0
[  100.024473][ T3307]  wb_writeback+0x237/0x640
[  100.028972][ T3307]  wb_workfn+0x4ea/0x940
[  100.033208][ T3307]  process_scheduled_works+0x483/0x9a0
[  100.038657][ T3307]  worker_thread+0x51d/0x6f0
[  100.043237][ T3307]  kthread+0x1d1/0x210
[  100.047311][ T3307]  ret_from_fork+0x4b/0x60
[  100.051733][ T3307]  ret_from_fork_asm+0x1a/0x30
[  100.056503][ T3307] 
[  100.058819][ T3307] read to 0xffff8881005e77b8 of 4 bytes by task 3307 on cpu 0:
[  100.066358][ T3307]  __mark_inode_dirty+0x198/0x7e0
[  100.071383][ T3307]  mark_buffer_dirty+0x149/0x230
[  100.076319][ T3307]  block_page_mkwrite+0x29c/0x3f0
[  100.081333][ T3307]  ext4_page_mkwrite+0x73d/0xb70
[  100.086266][ T3307]  do_wp_page+0xca1/0x2340
[  100.090673][ T3307]  handle_mm_fault+0xc63/0x2ac0
[  100.095517][ T3307]  exc_page_fault+0x3b9/0x650
[  100.100190][ T3307]  asm_exc_page_fault+0x26/0x30
[  100.105040][ T3307] 
[  100.107355][ T3307] value changed: 0x00000020 -> 0x00010022
[  100.113057][ T3307] 
[  100.115366][ T3307] Reported by Kernel Concurrency Sanitizer on:
[  100.121503][ T3307] CPU: 0 UID: 0 PID: 3307 Comm: syz-executor Tainted: G        W          6.12.0-syzkaller-09435-g2c22dc1ee3a1 #0
[  100.133474][ T3307] Tainted: [W]=WARN
[  100.137264][ T3307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  100.147310][ T3307] ==================================================================
[  100.163822][ T2998] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x3
[  100.217033][ T2998] hid-generic 0000:3000000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  100.606944][T10562] syz.1.2679 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  100.621160][T10562] CPU: 0 UID: 0 PID: 10562 Comm: syz.1.2679 Tainted: G        W          6.12.0-syzkaller-09435-g2c22dc1ee3a1 #0
[  100.633038][T10562] Tainted: [W]=WARN
[  100.636824][T10562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  100.646861][T10562] Call Trace:
[  100.650125][T10562]  <TASK>
[  100.653040][T10562]  dump_stack_lvl+0xf2/0x150
[  100.657671][T10562]  dump_stack+0x15/0x20
[  100.661814][T10562]  dump_header+0x83/0x2d0
[  100.666134][T10562]  oom_kill_process+0x341/0x4c0
[  100.671085][T10562]  out_of_memory+0x9af/0xbe0
[  100.675685][T10562]  ? css_next_descendant_pre+0x11c/0x140
[  100.681368][T10562]  mem_cgroup_out_of_memory+0x13e/0x190
[  100.686899][T10562]  try_charge_memcg+0x508/0x7f0
[  100.691805][T10562]  obj_cgroup_charge_pages+0xbd/0x1a0
[  100.697214][T10562]  __memcg_kmem_charge_page+0x9d/0x170
[  100.702780][T10562]  __alloc_pages_noprof+0x1bc/0x340
[  100.707964][T10562]  alloc_pages_mpol_noprof+0xec/0x1e0
[  100.713380][T10562]  alloc_pages_noprof+0xe1/0x100
[  100.718309][T10562]  __vmalloc_node_range_noprof+0x6eb/0xe80
[  100.724112][T10562]  __kvmalloc_node_noprof+0x121/0x170
[  100.729554][T10562]  ? ip_set_alloc+0x1f/0x30
[  100.734102][T10562]  ip_set_alloc+0x1f/0x30
[  100.738418][T10562]  hash_ipport_create+0x4dc/0x9f0
[  100.743425][T10562]  ? __pfx_hash_ipport_create+0x10/0x10
[  100.749166][T10562]  ip_set_create+0x359/0x8a0
[  100.753767][T10562]  ? strnstr+0x61/0x100
[  100.757919][T10562]  ? __nla_parse+0x40/0x60
[  100.762404][T10562]  nfnetlink_rcv_msg+0x4a9/0x570
[  100.767349][T10562]  netlink_rcv_skb+0x12c/0x230
[  100.772153][T10562]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  100.777642][T10562]  nfnetlink_rcv+0x16c/0x15d0
[  100.782320][T10562]  ? kmem_cache_free+0xdc/0x2d0
[  100.787184][T10562]  ? nlmon_xmit+0x51/0x60
[  100.791497][T10562]  ? __kfree_skb+0x102/0x150
[  100.796072][T10562]  ? consume_skb+0x49/0x160
[  100.800633][T10562]  ? nlmon_xmit+0x51/0x60
[  100.804944][T10562]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  100.810332][T10562]  ? __dev_queue_xmit+0xb6e/0x2090
[  100.815443][T10562]  ? smp_call_function_many_cond+0x7e7/0xc20
[  100.821413][T10562]  ? ref_tracker_free+0x3a5/0x410
[  100.826434][T10562]  ? __dev_queue_xmit+0x186/0x2090
[  100.831534][T10562]  ? __netlink_deliver_tap+0x4c6/0x4f0
[  100.836979][T10562]  netlink_unicast+0x599/0x670
[  100.841728][T10562]  netlink_sendmsg+0x5cc/0x6e0
[  100.846536][T10562]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.851806][T10562]  __sock_sendmsg+0x140/0x180
[  100.856527][T10562]  ____sys_sendmsg+0x312/0x410
[  100.861340][T10562]  __sys_sendmsg+0x19d/0x230
[  100.865918][T10562]  __x64_sys_sendmsg+0x46/0x50
[  100.870662][T10562]  x64_sys_call+0x2734/0x2dc0
[  100.875333][T10562]  do_syscall_64+0xc9/0x1c0
[  100.879948][T10562]  ? clear_bhb_loop+0x55/0xb0
[  100.884614][T10562]  ? clear_bhb_loop+0x55/0xb0
[  100.889279][T10562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.895161][T10562] RIP: 0033:0x7f252f76e819
[  100.899560][T10562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.919170][T10562] RSP: 002b:00007f252dde7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.927568][T10562] RAX: ffffffffffffffda RBX: 00007f252f925fa0 RCX: 00007f252f76e819
[  100.935589][T10562] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000006
[  100.943566][T10562] RBP: 00007f252f7e175e R08: 0000000000000000 R09: 0000000000000000
[  100.951521][T10562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  100.959477][T10562] R13: 0000000000000000 R14: 00007f252f925fa0 R15: 00007ffc18751548
[  100.967438][T10562]  </TASK>
[  100.970687][T10562] memory: usage 307200kB, limit 307200kB, failcnt 169
[  100.977473][T10562] memory+swap: usage 307388kB, limit 9007199254740988kB, failcnt 0
[  100.985400][T10562] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  100.992744][T10562] Memory cgroup stats for /syz1:
[  100.992881][T10562] cache 0
[  101.000837][T10562] rss 0
[  101.003610][T10562] shmem 0
[  101.006555][T10562] mapped_file 0
[  101.010048][T10562] dirty 0
[  101.013034][T10562] writeback 0
[  101.016354][T10562] workingset_refault_anon 1039
[  101.021112][T10562] workingset_refault_file 33
[  101.025715][T10562] swap 192512
[  101.029038][T10562] swapcached 4096
[  101.032646][T10562] pgpgin 64774
[  101.036020][T10562] pgpgout 64773
[  101.039492][T10562] pgfault 72855
[  101.042926][T10562] pgmajfault 150
[  101.046495][T10562] inactive_anon 0
[  101.050114][T10562] active_anon 4096
[  101.053837][T10562] inactive_file 0
[  101.057478][T10562] active_file 0
[  101.060921][T10562] unevictable 0
[  101.064439][T10562] hierarchical_memory_limit 314572800
[  101.069868][T10562] hierarchical_memsw_limit 9223372036854771712
[  101.076091][T10562] total_cache 0
[  101.079539][T10562] total_rss 0
[  101.082870][T10562] total_shmem 0
[  101.086345][T10562] total_mapped_file 0
[  101.090359][T10562] total_dirty 0
[  101.093826][T10562] total_writeback 0
[  101.097617][T10562] total_workingset_refault_anon 1039
[  101.102926][T10562] total_workingset_refault_file 33
[  101.108039][T10562] total_swap 192512
[  101.111834][T10562] total_swapcached 4096
[  101.116043][T10562] total_pgpgin 64775
[  101.119968][T10562] total_pgpgout 64774
[  101.124032][T10562] total_pgfault 72883
[  101.128125][T10562] total_pgmajfault 150
[  101.132221][T10562] total_inactive_anon 0
[  101.136384][T10562] total_active_anon 4096
[  101.140780][T10562] total_inactive_file 0
[  101.144940][T10562] total_active_file 0
[  101.148912][T10562] total_unevictable 0
[  101.152928][T10562] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2679,pid=10561,uid=0
[  101.167691][T10562] Memory cgroup out of memory: Killed process 10561 (syz.1.2679) total-vm:93132kB, anon-rss:612kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:1000