last executing test programs:

2m24.423130213s ago: executing program 1 (id=585):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r2, 0x5453, 0x0)

2m24.277133246s ago: executing program 1 (id=588):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)

2m24.215450337s ago: executing program 1 (id=590):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@gettaction={0x28, 0x32, 0x6dd711a25f4cb68b, 0x0, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}]}, 0x28}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
r1 = socket(0x2, 0x80805, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000030000000400010001"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000002d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r3}, 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r4=>0x0]}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={r4, 0x0, 0x0, 0xfffffffe, 0x0, 0x6}, 0x14)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=ANY=[@ANYBLOB="12000000030000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r7}, &(0x7f0000000040), &(0x7f0000000140)=r6}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r8}, 0x10)
close(r6)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r9, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r10=>0x0}, &(0x7f00000010c0)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r5, 0x84, 0x0, &(0x7f0000000040)={r10, 0x4, 0x800, 0x1000}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2m24.170680908s ago: executing program 1 (id=591):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000180a0500000000000000000002000000300003802c00038014000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a300000000014000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x24040089}, 0x20008000)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x11)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000240)='./file0/../file0\x00')
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
r5 = socket(0x10, 0x80003, 0x0)
write(r5, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85)
close_range(r5, 0xffffffffffffffff, 0x0)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00')

2m24.09567073s ago: executing program 1 (id=595):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000f"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001811", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000740)='kfree\x00', r3}, 0x18)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000800)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100030010651fbe347b2c2b00000c00018008000100", @ANYRES16=r1], 0x20}}, 0x0)

2m23.773478666s ago: executing program 1 (id=600):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)

2m23.773345616s ago: executing program 32 (id=600):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)

34.050049316s ago: executing program 0 (id=2722):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xc, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
read$qrtrtun(r3, 0x0, 0xeffd)
r4 = shmget$private(0x0, 0x1000, 0x20, &(0x7f0000fff000/0x1000)=nil)
shmat(r4, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xd, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r5, @ANYRESOCT=r2], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='rxrpc_tx_data\x00', r6, 0x0, 0xfffffffffffffffe}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r7, 0x0, 0x3}, 0x18)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
link(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
unlink(&(0x7f0000000100)='./file0/file1\x00')
r8 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r8, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), 0xffffffffffffffff)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000003c0)=0x14)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000640)={'syztnl1\x00', &(0x7f00000008c0)={'ip6tnl0\x00', 0x0, 0x4, 0xa, 0x8, 0x9, 0x40, @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x20, 0x20, 0x100000f2, 0xcc}})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000840)={'syztnl0\x00', &(0x7f00000007c0)={'syztnl0\x00', 0x0, 0x52, 0x2, 0x9, 0x4, 0x20, @loopback, @loopback, 0x7800, 0x80, 0xc2, 0x3}})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000880)={'batadv_slave_1\x00'})

33.164185333s ago: executing program 0 (id=2734):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x121602, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, 0xffffffffffffffff, 0x0, 0x400007}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)=ANY=[], 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x8, 0xf9, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0xffffff75, @empty, 0x2}], 0x1c)
sendmsg$inet_sctp(r5, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x1)
r6 = dup(r5)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, &(0x7f00000004c0)={0x0, 0x4}, 0x8)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2, 0x4}}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x18)
timer_getoverrun(0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r8 = mq_open(&(0x7f0000000000)='e_1\x00', 0x8c2, 0x30, &(0x7f0000000080)={0x8000000040000000, 0x4, 0x4, 0x9})
mq_timedsend(r8, 0x0, 0x0, 0x5, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r8, &(0x7f0000000600)=""/154, 0x9a, 0x200000000a9b, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000240)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

32.29080734s ago: executing program 0 (id=2747):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r2, 0x0, 0x0)
sendto$inet6(r2, &(0x7f00000002c0)="9e", 0x1, 0x41, &(0x7f0000000200)={0xa, 0x4e23, 0x10003, @loopback, 0x7}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x0, 0x10}, 0xc)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

32.28560801s ago: executing program 0 (id=2749):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r2)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r3, 0x201, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000b00)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21481e, &(0x7f0000000080), 0x1, 0x503, &(0x7f0000000fc0)="$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")
r5 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f0000000300)={0x0, 0x950b, 0x3, 0x7})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='kmem_cache_free\x00', r6, 0x0, 0x7}, 0x18)
close(r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r7, &(0x7f0000000980)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d00000000000000ed08000000000000f0ffffffffffffff0000000000000000080000000000000003"], 0x5b0)
close(r7)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
shmget(0x0, 0x1000, 0x40, &(0x7f0000ffd000/0x1000)=nil)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
r10 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r10, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r10, &(0x7f0000001d00)={&(0x7f00000017c0)={0x2, 0x0, @private=0xa010101}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x3}}], 0x30}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f00000014c0)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x300, 0x0, 0x0, 0x11, 0x0, @empty=0x300, @empty}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data={0x4, 0x0, 0x1}}}}}}, 0x0)
r11 = syz_clone(0x200, &(0x7f00000000c0)="f294385fe741adab3b2e150a8b7bdb078124824899559da3b6a7619a75fdba6d8673c03e3b9b23596d648dbaa3d8cd4090dfeb05d8825870822536180f692c36bba6acb8fd92671a28f11a4faeb0c1c05f529e1b1798dfe81c09411be110eadb4098c7eefbf4c571564bb7d77c2a8477a5b73ea9edfd00f397f7571d9871d0000158da3235ba931f05243c0fed1fa768d7acfa4367d124030fda371566632d2ef0a64b81b4e14ffc52", 0xa9, &(0x7f0000000300), &(0x7f00000003c0), &(0x7f0000000400)="f95c26ebcc720934cc9f6b38ce86c3118d65dea095a0d1adcb032819007e488bf7b4bbf6044814bed61bd2762eee8fd394a59a6989aa1ca619d6f514efecdb915b608cc8ce3b066511ed35b618064c0d87fa958e0cfc662bc8a35b9cb5d1ebae5f5b34e635be7a0f102dfbe2c7c2c94d33de31")
process_vm_readv(r11, &(0x7f0000000480)=[{&(0x7f0000000580)=""/167, 0xa7}], 0x1, &(0x7f0000000680)=[{&(0x7f0000000640)=""/7, 0x7}], 0x1, 0x0)

32.082511394s ago: executing program 0 (id=2752):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b\x00\x00\x00\b\x00\x00'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x32}}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_DST={0x4}]}, 0x68}}, 0x0)

31.493581536s ago: executing program 0 (id=2767):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e40)=ANY=[@ANYBLOB="0b00000005000000020000000200000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000160000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
semctl$SETALL(0x0, 0x0, 0x13, 0x0)

31.434480347s ago: executing program 33 (id=2767):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e40)=ANY=[@ANYBLOB="0b00000005000000020000000200000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000160000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
semctl$SETALL(0x0, 0x0, 0x13, 0x0)

13.000354946s ago: executing program 6 (id=3257):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{r1}, &(0x7f0000000600), &(0x7f0000000640)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000002100)=@newtaction={0x88c, 0x30, 0x12f, 0x0, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x7, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x80000000, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb3e, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0xb, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff35, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x40000000, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0xf8, 0x1, 0x2, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x3, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xda7, 0x0, 0x0, 0xe5, 0x0, 0x0, 0x10000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x3, 0x0, 0x1]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x7, 0x6, 0xffffffff, 0x7f, 0x401, 0x2, 0x0, 0x2, 0x80000000, 0x7fffffff, 0x5, 0x8, 0x0, 0x7fff, 0x75ba, 0x7fffffff, 0x5, 0xffffffff, 0x7ff, 0x2, 0x9, 0x2, 0x0, 0x1000, 0x1, 0x3, 0x6, 0x0, 0xfa, 0x4, 0x0, 0x9, 0x80000001, 0x7, 0xfffffffb, 0x1, 0x20, 0xccd, 0x8, 0x1, 0x2f2, 0x7fff, 0x0, 0x81, 0x206, 0x1ff, 0x7, 0x3, 0x5, 0x3, 0x9, 0x1000, 0x401, 0x1, 0x6, 0x7, 0x2, 0x4, 0x7f, 0x5, 0xfffffffb, 0x1, 0x4, 0x5, 0x8, 0x2000009, 0x9, 0x10, 0x9, 0x8, 0xffffff00, 0x97, 0x0, 0x4, 0x8, 0x8, 0x1, 0x958, 0x1fe, 0x4, 0x6, 0x7, 0x80, 0x5, 0xe53, 0x0, 0xfffffffe, 0x4, 0x8, 0x9, 0x7fff, 0x30, 0x99d, 0xfffffff7, 0x4, 0x9, 0x1, 0x4, 0x7, 0x9, 0x5, 0x7, 0x6, 0x0, 0x5, 0x2, 0x7, 0x3, 0xcdd, 0x2, 0xd67, 0x7, 0x4, 0x27, 0x9dc9, 0x7, 0xfffffff7, 0x2, 0x400, 0x8, 0x0, 0x7, 0x5, 0x9, 0xa, 0xa, 0xc, 0x5, 0xdb5, 0x101, 0x4, 0x74e4, 0x7fff, 0x7, 0x7ff, 0x1, 0xd70, 0x1, 0x8, 0xa, 0x800007, 0x1, 0x82, 0x52e, 0x7, 0x1, 0x5, 0x26, 0x1, 0x1b2a, 0x81, 0x7, 0x1c, 0x767, 0x7, 0x9, 0x110, 0xc2a, 0xff, 0x7, 0x6, 0x7, 0x3, 0xfffffff4, 0x8, 0x4, 0xfff, 0x8, 0x2, 0x5, 0x6, 0x3, 0xd7c3, 0x2, 0x10000, 0x7fff, 0x5, 0x5, 0x0, 0xfffffff7, 0x4, 0x2, 0x0, 0x6ee1847d, 0x10001, 0x7ff, 0x1, 0xf0, 0x7, 0x2, 0x7, 0x4, 0x6, 0x4, 0x7, 0x2, 0x0, 0x1, 0x5, 0x3, 0xfff, 0x80000001, 0x7, 0x676, 0x3, 0x9, 0x4, 0x4, 0x7fff, 0x4a5, 0x23, 0x4, 0x9, 0x8, 0x4000000, 0x8000, 0xa, 0x9, 0xca000000, 0x2, 0xfffffffa, 0x3, 0x7, 0x9, 0x7, 0x65fe, 0x9, 0x6, 0x4, 0x80000000, 0x5, 0x801, 0xb848, 0x6, 0x6, 0x800, 0x7, 0x1, 0xb, 0x80, 0x2, 0x3, 0x6, 0x9, 0x4, 0x4, 0xc, 0x80000001, 0x5, 0x5, 0x10000002, 0xb, 0x7, 0x5, 0x2, 0x4]}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x1, 0x7, 0x4, 0x1, {0x7, 0x0, 0x3, 0x7, 0x4, 0x80000001}, {0x4, 0x2, 0x1, 0xa, 0x1ff, 0x1c0000}, 0x9, 0xbc, 0xdf72c67}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x88c}}, 0x0)

12.972932537s ago: executing program 6 (id=3259):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
mprotect(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'syzkaller0\x00', <r2=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000100)={r2, 0x2, 0x6}, 0x10)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})
clock_getres(0x5, &(0x7f0000001c80))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000003, 0x100010, 0xffffffffffffffff, 0x0)
r4 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000001840)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000002c0)='kmem_cache_free\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c04, &(0x7f0000000340), 0x1, 0x779, &(0x7f0000001900)="$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")
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
pipe2$9p(0x0, 0x0)
r7 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
splice(0xffffffffffffffff, 0x0, r7, 0x0, 0x10000000000016, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='sched_switch\x00', r8}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
r9 = pidfd_getfd(r4, r5, 0x0)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
readahead(r9, 0x197, 0x7)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r10)

12.706467832s ago: executing program 6 (id=3269):
syz_io_uring_setup(0x2704, &(0x7f00000003c0)={0x0, 0x19, 0x2c84, 0x0, 0x136}, &(0x7f0000ff0000), 0x0)

12.638332174s ago: executing program 6 (id=3270):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r2)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r3, 0x201, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000b00)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21481e, &(0x7f0000000080), 0x1, 0x503, &(0x7f0000000fc0)="$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")
r5 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f0000000300)={0x0, 0x950b, 0x3, 0x7})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='kmem_cache_free\x00', r6, 0x0, 0x7}, 0x18)
close(r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r7, &(0x7f0000000980)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d00000000000000ed08000000000000f0ffffffffffffff0000000000000000080000000000000003"], 0x5b0)
close(r7)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
shmget(0x0, 0x1000, 0x40, &(0x7f0000ffd000/0x1000)=nil)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
r10 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r10, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r10, &(0x7f0000001d00)={&(0x7f00000017c0)={0x2, 0x0, @private=0xa010101}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x3}}], 0x30}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f00000014c0)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x300, 0x0, 0x0, 0x11, 0x0, @empty=0x300, @empty}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data={0x4, 0x0, 0x1}}}}}}, 0x0)
r11 = syz_clone(0x200, &(0x7f00000000c0)="f294385fe741adab3b2e150a8b7bdb078124824899559da3b6a7619a75fdba6d8673c03e3b9b23596d648dbaa3d8cd4090dfeb05d8825870822536180f692c36bba6acb8fd92671a28f11a4faeb0c1c05f529e1b1798dfe81c09411be110eadb4098c7eefbf4c571564bb7d77c2a8477a5b73ea9edfd00f397f7571d9871d0000158da3235ba931f05243c0fed1fa768d7acfa4367d124030fda371566632d2ef0a64b81b4e14ffc52", 0xa9, &(0x7f0000000300), &(0x7f00000003c0), &(0x7f0000000400)="f95c26ebcc720934cc9f6b38ce86c3118d65dea095a0d1adcb032819007e488bf7b4bbf6044814bed61bd2762eee8fd394a59a6989aa1ca619d6f514efecdb915b608cc8ce3b066511ed35b618064c0d87fa958e0cfc662bc8a35b9cb5d1ebae5f5b34e635be7a0f102dfbe2c7c2c94d33de31")
process_vm_readv(r11, &(0x7f0000000480)=[{&(0x7f0000000580)=""/167, 0xa7}], 0x1, &(0x7f0000000680)=[{&(0x7f0000000640)=""/7, 0x7}], 0x1, 0x0)

12.360592059s ago: executing program 6 (id=3277):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}], [{@smackfsroot={'smackfsroot', 0x3d, 'orlov'}}, {@subj_role={'subj_role', 0x3d, '^'}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@context={'context', 0x3d, 'staff_u'}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_udp_int(r0, 0x11, 0x1, 0x0, &(0x7f00000000c0))
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0x300, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_INTVL={0xc, 0x21, 0x7d}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x14041043}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = signalfd(r1, &(0x7f00000001c0)={[0x3]}, 0x8)
preadv2(r2, &(0x7f0000000200)=[{&(0x7f0000000680)=""/198, 0xc6}, {&(0x7f0000000300)=""/142, 0x8e}], 0x2, 0x7, 0x10000, 0x8)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff0a0000000800395032303030938f"], 0x15)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x3ffff)
recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f00000000c0)=@l2, 0x80, &(0x7f0000000040)}, 0x2000)
sendfile(r4, r3, 0x0, 0x7ffff000)
link(&(0x7f0000000140)='.\x00', &(0x7f0000000180)='./file0\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0e0000fc070000800400000002000200800000005f88de4a5dbecd80d2c48f62806ea55acb350fc34d63c6264a25b16da9ee50e9342bddddd5cf8ac4be1368e4978b55a31c71f6e1a3dea8f93554a5cf4629bf70d513571d2f72266e41e8359c0861ebe186be77be8ce923c20c63c4660d350424e2b26fc32f1495f60ee59df4fff7eae7617fdcfa656a35114bf3fe9f3d5e83a4d4435d88127882aee44905954ff0ac46848ed93b2539c29af334a4545529baf60f1edea8814d8eb86143794ab50fa875a858c291f127176f0d072cdec3dec0444940f926d51f12a41c10b9e8e6bcff", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)

12.030984376s ago: executing program 6 (id=3288):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0b04000000000000000002000008400004803c0001800a0001006d617463680000002c0002800d000100636f6e6e6d61726b0000000010000300a62a1a4094b2c56d78942e9708000240000000010900020073797a32000000000900010073"], 0x94}}, 0x0)

12.030651445s ago: executing program 34 (id=3288):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0b04000000000000000002000008400004803c0001800a0001006d617463680000002c0002800d000100636f6e6e6d61726b0000000010000300a62a1a4094b2c56d78942e9708000240000000010900020073797a32000000000900010073"], 0x94}}, 0x0)

1.611127618s ago: executing program 3 (id=3501):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}], [{@smackfsroot={'smackfsroot', 0x3d, 'orlov'}}, {@subj_role={'subj_role', 0x3d, '^'}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@context={'context', 0x3d, 'staff_u'}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x4040, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write$P9_RVERSION(r0, 0x0, 0x15)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback=0x1d, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0e0000fc070000800400000002000200800000005f88de4a5dbecd80d2c48f62806ea55acb350fc34d63c6264a25b16da9ee50e9342bddddd5cf8ac4be1368e4978b55a31c71f6e1a3dea8f93554a5cf4629bf70d513571d2f72266e41e8359c0861ebe186be77be8ce923c20c63c4660d350424e2b26fc32f1495f60ee59df4fff7eae7617fdcfa656a35114bf3fe9f3d5e83a4d4435d88127882aee44905954ff0ac46848ed93b2539c29af334a4545529baf60f1edea8814d8eb86143794ab50fa875a858c291f127176f0d072cdec3dec0444940f926d51f12a41c10b9e8e6bcff", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)

731.724646ms ago: executing program 7 (id=3513):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x300)
r3 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2202)
r4 = fcntl$dupfd(r3, 0x0, r3)
unshare(0x2040400)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
r6 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_GET_CAPABILITIES(r6, 0x8004551a, &(0x7f00000000c0))
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x5}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r8}, 0x10)
r9 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r9, &(0x7f00000005c0), 0x10)
sendmsg$can_raw(r9, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000380)={&(0x7f000000a000)=@canfd={{0x5}, 0x2, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000094e2f9663a918fa1efd9b0b"}, 0x38}, 0x2}, 0x24000895)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})

713.707216ms ago: executing program 3 (id=3514):
socket$kcm(0x11, 0x200000000000002, 0x300)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d00000085"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
socket$packet(0x11, 0xa, 0x300)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c00)=ANY=[@ANYBLOB="60000000180001000000000000000000020000000000ff000000000008001000ffffff7f0800010064010101060015000600000008000400", @ANYRES32=0x0, @ANYBLOB="0ca42d9d74f5c5f01fde228a900009000a0020015e808dccf5c28093762563b54ca048a7672515b9b6f6213d67a3073d7a839092b63814490648b73ed4fc259f382d1ab18ea84f390f2514023ea32b615484c8e841390745abe51cac7d9e9163e5d8308e1fdf7878750e4ab01418231220da9adb82fb2aed6f911c97b5c144a925e72eee", @ANYRES32=0x0, @ANYBLOB="100016800c0001000000000000000000080002000a010100"], 0x60}}, 0x0)

700.599336ms ago: executing program 7 (id=3515):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}], [{@smackfsroot={'smackfsroot', 0x3d, 'orlov'}}, {@subj_role={'subj_role', 0x3d, '^'}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@context={'context', 0x3d, 'staff_u'}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_udp_int(r0, 0x11, 0x1, 0x0, &(0x7f00000000c0))
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x34, 0x10, 0x300, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x14041043}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = signalfd(r1, &(0x7f00000001c0)={[0x3]}, 0x8)
preadv2(r3, &(0x7f0000000200)=[{&(0x7f0000000680)=""/198, 0xc6}, {&(0x7f0000000300)=""/142, 0x8e}], 0x2, 0x7, 0x10000, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff0a0000000800395032303030938f"], 0x15)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r4, 0x0, 0x3ffff)
recvmsg$can_bcm(r2, &(0x7f0000000140)={&(0x7f00000000c0)=@l2, 0x80, &(0x7f0000000040)}, 0x2000)
sendfile(r5, r4, 0x0, 0x7ffff000)
link(&(0x7f0000000140)='.\x00', &(0x7f0000000180)='./file0\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback=0x1d, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0e0000fc070000800400000002000200800000005f88de4a5dbecd80d2c48f62806ea55acb350fc34d63c6264a25b16da9ee50e9342bddddd5cf8ac4be1368e4978b55a31c71f6e1a3dea8f93554a5cf4629bf70d513571d2f72266e41e8359c0861ebe186be77be8ce923c20c63c4660d350424e2b26fc32f1495f60ee59df4fff7eae7617fdcfa656a35114bf3fe9f3d5e83a4d4435d88127882aee44905954ff0ac46848ed93b2539c29af334a4545529baf60f1edea8814d8eb86143794ab50fa875a858c291f127176f0d072cdec3dec0444940f926d51f12a41c10b9e8e6bcff", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)

626.163328ms ago: executing program 3 (id=3517):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0b04000000000000000002000008400004803c0001800a0001006d617463680000002c0002800d000100636f6e6e6d61726b0000000010000300a62a1a4094b2c56d78942e9708000240000000010900020073"], 0x94}}, 0x0)

600.995938ms ago: executing program 3 (id=3518):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
linkat(r0, 0x0, 0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1000)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = gettid()
getpgrp(r2)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x5, 0x0, @void}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$pptp(0x18, 0x1, 0x2)
syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYRES64=r3], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x2204846, &(0x7f0000000040)=ANY=[@ANYBLOB='map=off,hide\x00iocharset=isn@0x000000000000005f,hide,sbsector=0x0000000000000007Asbsector=0x0000000000012000,iocharset=iso8859-2,session=0x0000000000000058,nojoliet,mode=0xfffffffffffffffe,utf8,cruft,mode=0x0000000000000002,check=relaxed,fscontext=system_u,fsname=s`sector,\x00'/286], 0xfa, 0x6bb, &(0x7f0000001f80)="$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")

581.783678ms ago: executing program 3 (id=3519):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x6}, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

553.660379ms ago: executing program 2 (id=3521):
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r4, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f00000002c0)="9e", 0x1, 0x41, &(0x7f0000000200)={0xa, 0x4e23, 0x10003, @loopback, 0x7}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r4, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x0, 0x10}, 0xc)
writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

546.198579ms ago: executing program 3 (id=3522):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0x11, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={@cgroup, 0x31, 0x0, 0x3, &(0x7f0000000000)=[0x0, 0x0, 0x0], 0x3, 0x0, &(0x7f0000000040)=[0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0], 0x0, <r2=>0x0}, 0x40)
r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000180)={0xffffffffffffffff, 0x5}, 0xc)
r4 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x1a, 0x0, @void}, 0x10)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x2900, 0x1cf)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r5, 0xc0185879, 0x0)
setsockopt$MRT_TABLE(r5, 0x0, 0xcf, &(0x7f0000000240), 0x4)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)={@map=r3, r1, 0x31, 0x2000, 0x0, @value=r4, @void, @void, @void, r2}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
getsockname$packet(r6, &(0x7f0000000280)={0x11, 0x0, <r7=>0x0}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route_sched(r6, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)=@newqdisc={0x44, 0x24, 0x4, 0x70bd2c, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0xfff1, 0x2}, {0x7, 0xfff2}, {0x7, 0x9}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x46}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x2}, @qdisc_kind_options=@q_atm={0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x44}, 0x40)
r8 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
syz_io_uring_setup(0xbdc, &(0x7f0000000080)={0x0, 0xec21, 0x80, 0x1, 0x40000333}, &(0x7f0000000340)=<r9=>0x0, &(0x7f00000001c0)=<r10=>0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020732600000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r11, 0x0, 0x3}, 0x18)
syz_io_uring_submit(r9, r10, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r8, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000280)={r6, r8, 0x0, r5}, 0x10)

503.77969ms ago: executing program 2 (id=3523):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x32}}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_DST={0x4}]}, 0x68}}, 0x0)

503.39886ms ago: executing program 2 (id=3524):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}], [{@smackfsroot={'smackfsroot', 0x3d, 'orlov'}}, {@subj_role={'subj_role', 0x3d, '^'}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@context={'context', 0x3d, 'staff_u'}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r0 = openat(0xffffffffffffff9c, 0x0, 0x4040, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write$P9_RVERSION(r0, 0x0, 0x15)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback=0x1d, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0e0000fc070000800400000002000200800000005f88de4a5dbecd80d2c48f62806ea55acb350fc34d63c6264a25b16da9ee50e9342bddddd5cf8ac4be1368e4978b55a31c71f6e1a3dea8f93554a5cf4629bf70d513571d2f72266e41e8359c0861ebe186be77be8ce923c20c63c4660d350424e2b26fc32f1495f60ee59df4fff7eae7617fdcfa656a35114bf3fe9f3d5e83a4d4435d88127882aee44905954ff0ac46848ed93b2539c29af334a4545529baf60f1edea8814d8eb86143794ab50fa875a858c291f127176f0d072cdec3dec0444940f926d51f12a41c10b9e8e6bcff", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)

410.644122ms ago: executing program 7 (id=3525):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYRESHEX], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7, 0x14020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x1}, 0x100202, 0x0, 0xfffffffb, 0x0, 0x40, 0xfffffffe, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x52}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r4, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x66, &(0x7f0000000300)={@link_local, @random="2059249b3790", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "108114", 0x30, 0x11, 0x0, @empty, @mcast2, {[], {0x0, 0xe22, 0x30, 0x0, @opaque="65ef83f7775bcf0ddbfa95cc714fe4297b681bd9ed5d1e6f7716fdc67a6967d9817f39d296d8f845"}}}}}}, 0x0)

379.837432ms ago: executing program 7 (id=3526):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x6}, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

309.579374ms ago: executing program 7 (id=3528):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0b04000000000000000002000008400004803c0001800a0001006d617463680000002c0002800d000100636f6e6e6d61726b0000000010000300a62a1a4094b2c56d78942e9708000240000000010900020073797a320000000009"], 0x94}}, 0x0)

309.290434ms ago: executing program 7 (id=3529):
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r0, &(0x7f0000000d00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x60010020, 0x0)

271.618195ms ago: executing program 4 (id=3530):
prctl$PR_SET_NAME(0xf, 0x0)
syz_io_uring_setup(0x890, 0x0, &(0x7f00000000c0), 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x20020084, &(0x7f00000018c0)={0x2, 0x4e20}, 0x10)

249.691055ms ago: executing program 4 (id=3531):
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x106, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x10, &(0x7f0000000300)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000009c0)="010000000037a788a11d1f000000000000006923c63a4541062101b60a2156566de77062086575a59ea9cb", 0x2b, r0)
r2 = add_key$keyring(&(0x7f0000000500), &(0x7f00000003c0)={'syz', 0x0}, 0x0, 0x0, r0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000180)=@keyring={'key_or_keyring:', 0x0, 0x2})

233.068425ms ago: executing program 4 (id=3532):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x21)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x21)
r2 = open(&(0x7f0000002180)='.\x00', 0x101000, 0x8a)
fcntl$notify(r2, 0x402, 0x4)
r3 = open(0x0, 0x20000, 0x0)
getdents64(r3, &(0x7f0000000fc0)=""/224, 0xe0)

212.194255ms ago: executing program 4 (id=3533):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x94)
r1 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2202)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})

211.315926ms ago: executing program 5 (id=3534):
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r4, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f00000002c0)="9e", 0x1, 0x41, &(0x7f0000000200)={0xa, 0x4e23, 0x10003, @loopback, 0x7}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r4, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x0, 0x10}, 0xc)
writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

197.933696ms ago: executing program 4 (id=3535):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
linkat(r0, 0x0, 0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1000)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = gettid()
getpgrp(r2)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x5, 0x0, @void}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$pptp(0x18, 0x1, 0x2)
syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYRES64=r3], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r8)
sendmsg$IEEE802154_LIST_PHY(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r9, 0x30b, 0x0, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4044}, 0x20000004)
r10 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r10, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r10, 0x0)
r11 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r11, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x480c0}, 0x0)
accept4(r10, 0x0, 0x0, 0x400000000000000)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x8800, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x2204846, &(0x7f0000000040)=ANY=[@ANYBLOB='map=off,hide\x00iocharset=isn@0x000000000000005f,hide,sbsector=0x0000000000000007Asbsector=0x0000000000012000,iocharset=iso8859-2,session=0x0000000000000058,nojoliet,mode=0xfffffffffffffffe,utf8,cruft,mode=0x0000000000000002,check=relaxed,fscontext=system_u,fsname=s`sector,\x00'/286], 0xfa, 0x6bb, &(0x7f0000001f80)="$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")

156.349327ms ago: executing program 4 (id=3536):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}], [{@smackfsroot={'smackfsroot', 0x3d, 'orlov'}}, {@subj_role={'subj_role', 0x3d, '^'}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@context={'context', 0x3d, 'staff_u'}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_udp_int(r0, 0x11, 0x1, 0x0, &(0x7f00000000c0))
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x34, 0x10, 0x300, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x14041043}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = signalfd(r1, &(0x7f00000001c0)={[0x3]}, 0x8)
preadv2(r3, &(0x7f0000000200)=[{&(0x7f0000000680)=""/198, 0xc6}, {&(0x7f0000000300)=""/142, 0x8e}], 0x2, 0x7, 0x10000, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff0a0000000800395032303030938f"], 0x15)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r4, 0x0, 0x3ffff)
recvmsg$can_bcm(r2, &(0x7f0000000140)={&(0x7f00000000c0)=@l2, 0x80, &(0x7f0000000040)}, 0x2000)
sendfile(r5, r4, 0x0, 0x7ffff000)
link(&(0x7f0000000140)='.\x00', &(0x7f0000000180)='./file0\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback=0x1d, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0e0000fc070000800400000002000200800000005f88de4a5dbecd80d2c48f62806ea55acb350fc34d63c6264a25b16da9ee50e9342bddddd5cf8ac4be1368e4978b55a31c71f6e1a3dea8f93554a5cf4629bf70d513571d2f72266e41e8359c0861ebe186be77be8ce923c20c63c4660d350424e2b26fc32f1495f60ee59df4fff7eae7617fdcfa656a35114bf3fe9f3d5e83a4d4435d88127882aee44905954ff0ac46848ed93b2539c29af334a4545529baf60f1edea8814d8eb86143794ab50fa875a858c291f127176f0d072cdec3dec0444940f926d51f12a41c10b9e8e6bcff", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)

130.622797ms ago: executing program 5 (id=3537):
socket(0x18, 0x80000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
utime(0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800005127fd087b17360000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001300)=ANY=[@ANYBLOB="38010000000101040000000000000000020000002c0001801400018008000100ac14143208000200ac1414000c00028005000100000000000600034000020000240002801400018008000100e000000108000200e00000010c0002800500010000000000080007"], 0x138}}, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x32}}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_DST={0x4}]}, 0x68}}, 0x0)

121.361307ms ago: executing program 2 (id=3538):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000002085000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001300)=ANY=[@ANYBLOB="38010000000101040000000000000000020000002c0001801400018008000100ac14143208000200ac1414000c00028005000100000000000600034000020000240002801400018008000100e000000108000200e00000010c0002800500010000000000080007"], 0x138}}, 0x4)

108.211678ms ago: executing program 5 (id=3539):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYRESHEX], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7, 0x14020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x1}, 0x100202, 0x0, 0xfffffffb, 0x0, 0x40, 0xfffffffe, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x52}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r4, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x66, &(0x7f0000000300)={@link_local, @random="2059249b3790", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "108114", 0x30, 0x11, 0x0, @empty, @mcast2, {[], {0x0, 0xe22, 0x30, 0x0, @opaque="65ef83f7775bcf0ddbfa95cc714fe4297b681bd9ed5d1e6f7716fdc67a6967d9817f39d296d8f845"}}}}}}, 0x0)

82.546638ms ago: executing program 2 (id=3540):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10)
lsm_set_self_attr(0x66, &(0x7f0000000000)={0x65, 0x3, 0x43, 0x23, "d7b8fddf5837aade64b91d51ac8959497b4317b4a87055e8d21b9668d9bb8cd00b723a"}, 0x43, 0x0)

58.418669ms ago: executing program 2 (id=3541):
prctl$PR_SET_NAME(0xf, 0x0)
syz_io_uring_setup(0x890, 0x0, &(0x7f00000000c0), 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x20020084, &(0x7f00000018c0)={0x2, 0x4e20}, 0x10)

53.559889ms ago: executing program 5 (id=3542):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x106, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x10, &(0x7f0000000300)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000009c0)="010000000037a788a11d1f000000000000006923c63a4541062101b60a2156566de77062086575a59ea9cb", 0x2b, r0)
r2 = add_key$keyring(&(0x7f0000000500), &(0x7f00000003c0)={'syz', 0x0}, 0x0, 0x0, r0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000180)=@keyring={'key_or_keyring:', 0x0, 0x2})

14.69148ms ago: executing program 5 (id=3543):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x21)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x21)
r2 = open(&(0x7f0000002180)='.\x00', 0x101000, 0x8a)
fcntl$notify(r2, 0x402, 0x4)
r3 = open(&(0x7f0000000040)='.\x00', 0x20000, 0x0)
getdents64(r3, 0x0, 0x0)

0s ago: executing program 5 (id=3544):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000f40), r1)
sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f00000001c0)={0x1c, r2, 0x1, 0x70bd67, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004084}, 0x20008804)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
capget(&(0x7f0000000200)={0x19971634}, 0x0)

kernel console output (not intermixed with test programs):

a mode: writeback.
[  167.575807][ T5284] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.590025][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.616701][T10767] loop5: detected capacity change from 0 to 764
[  167.633572][T10769] syzkaller1: entered promiscuous mode
[  167.639175][T10769] syzkaller1: entered allmulticast mode
[  167.759991][   T29] audit: type=1326 audit(1756947875.722:3630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10772 comm="syz.3.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  167.786305][T10782] FAULT_INJECTION: forcing a failure.
[  167.786305][T10782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.799446][T10782] CPU: 1 UID: 0 PID: 10782 Comm: syz.5.2572 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  167.799471][T10782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  167.799483][T10782] Call Trace:
[  167.799489][T10782]  <TASK>
[  167.799496][T10782]  __dump_stack+0x1d/0x30
[  167.799594][T10782]  dump_stack_lvl+0xe8/0x140
[  167.799613][T10782]  dump_stack+0x15/0x1b
[  167.799629][T10782]  should_fail_ex+0x265/0x280
[  167.799652][T10782]  should_fail+0xb/0x20
[  167.799669][T10782]  should_fail_usercopy+0x1a/0x20
[  167.799751][T10782]  strncpy_from_user+0x25/0x230
[  167.799786][T10782]  strncpy_from_user_nofault+0x68/0xf0
[  167.799822][T10782]  bpf_probe_read_user_str+0x2a/0x70
[  167.799855][T10782]  bpf_prog_02a70dbeb5f742df+0x43/0x49
[  167.799870][T10782]  bpf_trace_run2+0x104/0x1c0
[  167.799891][T10782]  ? security_compute_sid+0x11da/0x1290
[  167.799911][T10782]  ? security_compute_sid+0x11da/0x1290
[  167.800077][T10782]  __traceiter_kfree+0x2e/0x50
[  167.800097][T10782]  ? security_compute_sid+0x11da/0x1290
[  167.800115][T10782]  kfree+0x27b/0x320
[  167.800139][T10782]  security_compute_sid+0x11da/0x1290
[  167.800176][T10782]  ? obj_cgroup_charge_account+0x122/0x1a0
[  167.800214][T10782]  security_transition_sid+0x5a/0x70
[  167.800233][T10782]  inode_doinit_with_dentry+0x328/0x7a0
[  167.800342][T10782]  selinux_d_instantiate+0x27/0x40
[  167.800371][T10782]  security_d_instantiate+0x7a/0xa0
[  167.800401][T10782]  d_instantiate+0x3f/0x80
[  167.800459][T10782]  alloc_file_pseudo+0xa3/0x160
[  167.800488][T10782]  __shmem_file_setup+0x1de/0x210
[  167.800523][T10782]  shmem_file_setup+0x3b/0x50
[  167.800599][T10782]  __se_sys_memfd_create+0x2c3/0x590
[  167.800627][T10782]  __x64_sys_memfd_create+0x31/0x40
[  167.800647][T10782]  x64_sys_call+0x2abe/0x2ff0
[  167.800692][T10782]  do_syscall_64+0xd2/0x200
[  167.800719][T10782]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  167.800741][T10782]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  167.800771][T10782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.800792][T10782] RIP: 0033:0x7f1c3768ebe9
[  167.800808][T10782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.800827][T10782] RSP: 002b:00007f1c360f6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  167.800915][T10782] RAX: ffffffffffffffda RBX: 00000000000004f3 RCX: 00007f1c3768ebe9
[  167.800930][T10782] RDX: 00007f1c360f6ef0 RSI: 0000000000000000 RDI: 00007f1c377127e8
[  167.800943][T10782] RBP: 0000200000000740 R08: 00007f1c360f6bb7 R09: 00007f1c360f6e40
[  167.800957][T10782] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000080
[  167.800969][T10782] R13: 00007f1c360f6ef0 R14: 00007f1c360f6eb0 R15: 0000200000000380
[  167.800985][T10782]  </TASK>
[  167.802694][   T29] audit: type=1326 audit(1756947875.742:3631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10772 comm="syz.3.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=102 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  167.804888][T10782] loop5: detected capacity change from 0 to 512
[  167.812710][   T29] audit: type=1326 audit(1756947875.742:3632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10772 comm="syz.3.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  167.825465][T10782] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  167.826192][   T29] audit: type=1326 audit(1756947875.742:3633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10772 comm="syz.3.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  167.834484][T10782] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.2572: invalid block
[  167.913270][   T29] audit: type=1326 audit(1756947875.871:3634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10786 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  167.926570][T10782] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2572: invalid indirect mapped block 4294967295 (level 1)
[  167.932672][   T29] audit: type=1326 audit(1756947875.871:3635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10786 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  167.950452][T10782] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2572: invalid indirect mapped block 4294967295 (level 1)
[  167.951043][   T29] audit: type=1326 audit(1756947875.871:3636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10786 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  167.982310][T10790] loop4: detected capacity change from 0 to 1024
[  167.986707][   T29] audit: type=1326 audit(1756947875.871:3637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10786 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  167.992917][T10790] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  167.998340][   T29] audit: type=1326 audit(1756947875.871:3638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10786 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  168.017582][T10790] loop4: detected capacity change from 0 to 1024
[  168.041984][T10782] EXT4-fs (loop5): 2 truncates cleaned up
[  168.053344][T10790] EXT4-fs: Ignoring removed orlov option
[  168.072329][T10782] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.078355][T10790] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.234970][T10798] loop0: detected capacity change from 0 to 1024
[  168.435151][ T5284] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.448456][T10795] wg2: left promiscuous mode
[  168.453556][T10795] wg2: left allmulticast mode
[  168.471806][T10795] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.481440][T10795] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  168.522570][T10795] geneve2: left promiscuous mode
[  168.527834][T10795] geneve2: left allmulticast mode
[  168.533484][T10798] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  168.554683][  T292] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  168.563756][  T292] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  168.572761][  T292] netdevsim netdevsim3 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  168.621929][T10798] __nla_validate_parse: 4 callbacks suppressed
[  168.621987][T10798] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2578'.
[  168.633460][  T292] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  168.637137][T10798] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2578'.
[  168.646237][  T292] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  168.664022][  T292] netdevsim netdevsim3 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  168.681502][T10812] syzkaller1: entered promiscuous mode
[  168.687092][T10812] syzkaller1: entered allmulticast mode
[  168.716682][T10815] loop0: detected capacity change from 0 to 1024
[  168.761014][  T292] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  168.761106][T10815] EXT4-fs: Ignoring removed orlov option
[  168.769982][  T292] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  168.784604][  T292] netdevsim netdevsim3 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  168.814579][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.831246][T10815] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.851338][   T49] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  168.860507][   T49] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  168.869512][   T49] netdevsim netdevsim3 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  168.907556][T10825] loop4: detected capacity change from 0 to 128
[  168.916112][T10825] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  168.929184][T10825] ext4 filesystem being mounted at /502/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  168.963377][T10825] FAULT_INJECTION: forcing a failure.
[  168.963377][T10825] name failslab, interval 1, probability 0, space 0, times 0
[  168.976471][T10825] CPU: 0 UID: 0 PID: 10825 Comm: syz.4.2588 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  168.976549][T10825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  168.976562][T10825] Call Trace:
[  168.976568][T10825]  <TASK>
[  168.976574][T10825]  __dump_stack+0x1d/0x30
[  168.976598][T10825]  dump_stack_lvl+0xe8/0x140
[  168.976619][T10825]  dump_stack+0x15/0x1b
[  168.976695][T10825]  should_fail_ex+0x265/0x280
[  168.976717][T10825]  should_failslab+0x8c/0xb0
[  168.976752][T10825]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  168.976783][T10825]  ? ext4_alloc_inode+0x38/0x310
[  168.976880][T10825]  ? __pfx_ext4_alloc_inode+0x10/0x10
[  168.976898][T10825]  ext4_alloc_inode+0x38/0x310
[  168.976918][T10825]  ? __pfx_ext4_alloc_inode+0x10/0x10
[  168.976938][T10825]  alloc_inode+0x40/0x170
[  168.976962][T10825]  iget_locked+0xf4/0x5c0
[  168.977028][T10825]  ? selinux_file_open+0x2df/0x330
[  168.977048][T10825]  ? __rcu_read_unlock+0x4f/0x70
[  168.977070][T10825]  __ext4_iget+0x152/0x2240
[  168.977101][T10825]  ? mntput+0x4b/0x80
[  168.977214][T10825]  ext4_nfs_get_inode+0x32/0xa0
[  168.977233][T10825]  ? __pfx_ext4_nfs_get_inode+0x10/0x10
[  168.977252][T10825]  generic_fh_to_dentry+0x7a/0xa0
[  168.977296][T10825]  ext4_fh_to_dentry+0x2f/0x40
[  168.977384][T10825]  exportfs_decode_fh_raw+0xba/0x4d0
[  168.977406][T10825]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[  168.977436][T10825]  ? kstrtouint+0x76/0xc0
[  168.977529][T10825]  do_handle_to_path+0x6c/0xe0
[  168.977554][T10825]  do_handle_open+0x4f3/0x6b0
[  168.977580][T10825]  __x64_sys_open_by_handle_at+0x44/0x50
[  168.977656][T10825]  x64_sys_call+0x279b/0x2ff0
[  168.977677][T10825]  do_syscall_64+0xd2/0x200
[  168.977708][T10825]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  168.977740][T10825]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  168.977814][T10825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.977837][T10825] RIP: 0033:0x7fd21abcebe9
[  168.977894][T10825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.977912][T10825] RSP: 002b:00007fd219637038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[  168.977933][T10825] RAX: ffffffffffffffda RBX: 00007fd21ae05fa0 RCX: 00007fd21abcebe9
[  168.977946][T10825] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000004
[  168.977960][T10825] RBP: 00007fd219637090 R08: 0000000000000000 R09: 0000000000000000
[  168.977981][T10825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.977994][T10825] R13: 00007fd21ae06038 R14: 00007fd21ae05fa0 R15: 00007ffe85e81fc8
[  168.978050][T10825]  </TASK>
[  169.078878][T10830] syzkaller0: entered promiscuous mode
[  169.241133][T10830] syzkaller0: entered allmulticast mode
[  169.247779][ T3309] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  169.279825][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.540218][T10843] 9pnet_fd: Insufficient options for proto=fd
[  169.579864][T10851] loop0: detected capacity change from 0 to 128
[  169.606081][T10841] loop5: detected capacity change from 0 to 764
[  169.618266][T10851] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.622533][T10855] loop4: detected capacity change from 0 to 1024
[  169.631614][T10851] ext4 filesystem being mounted at /501/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  169.674718][T10841] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  169.684225][T10851] EXT4-fs error (device loop0): htree_dirblock_to_tree:1080: inode #2: block 4: comm syz.0.2599: bad entry in directory: rec_len is smaller than minimal - offset=1012, inode=128, rec_len=9, size=1024 fake=0
[  169.714986][T10855] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  169.741025][T10855] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2601'.
[  169.750104][T10855] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2601'.
[  169.800002][T10856] ref_ctr_offset mismatch. inode: 0xb22 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  169.813542][ T3303] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  169.833460][T10858] loop4: detected capacity change from 0 to 1024
[  169.853242][T10858] EXT4-fs: Ignoring removed orlov option
[  169.896236][T10858] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.897727][T10868] loop5: detected capacity change from 0 to 1024
[  169.949340][T10868] EXT4-fs: Ignoring removed bh option
[  169.963077][T10868] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  169.995038][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.004315][T10875] loop0: detected capacity change from 0 to 1024
[  170.011026][T10875] EXT4-fs: Ignoring removed orlov option
[  170.024837][T10875] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.025978][T10868] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.053677][T10875] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.100563][T10888] loop4: detected capacity change from 0 to 764
[  170.261535][T10902] loop4: detected capacity change from 0 to 1024
[  170.305100][T10902] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  170.396429][T10893] loop5: detected capacity change from 0 to 764
[  170.407256][T10893] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  170.476112][T10911] loop4: detected capacity change from 0 to 1024
[  170.485400][T10911] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  170.496846][T10911] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2620'.
[  170.505965][T10911] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2620'.
[  170.521539][T10911] loop4: detected capacity change from 0 to 1024
[  170.528222][T10911] EXT4-fs: Ignoring removed orlov option
[  170.937916][T10924] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2624'.
[  171.126354][T10940] syzkaller0: entered allmulticast mode
[  171.133570][T10940] syzkaller0 (unregistering): left allmulticast mode
[  171.162450][T10947] loop4: detected capacity change from 0 to 1024
[  171.171517][T10947] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  171.227271][T10947] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2633'.
[  171.236197][T10947] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2633'.
[  171.250455][T10947] loop4: detected capacity change from 0 to 1024
[  171.258139][T10947] EXT4-fs: Ignoring removed orlov option
[  171.530642][T10347] Process accounting resumed
[  171.536640][T10979] bond0: (slave bond_slave_0): Releasing backup interface
[  171.546194][T10979] bond0: (slave bond_slave_1): Releasing backup interface
[  171.555354][T10979] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.563387][T10979] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.564972][T10983] loop0: detected capacity change from 0 to 1024
[  171.594884][T10985] loop4: detected capacity change from 0 to 1024
[  171.601974][T10983] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  171.602057][T10985] EXT4-fs: Ignoring removed bh option
[  171.619557][T10985] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  171.684180][T10991] loop4: detected capacity change from 0 to 1024
[  171.704148][T10991] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  171.846433][T10997] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2652'.
[  171.869422][   T29] kauditd_printk_skb: 30 callbacks suppressed
[  171.869468][   T29] audit: type=1400 audit(1756947879.831:3669): avc:  denied  { create } for  pid=10998 comm="syz.4.2653" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  171.895830][   T29] audit: type=1400 audit(1756947879.831:3670): avc:  denied  { bind } for  pid=10998 comm="syz.4.2653" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  172.605871][T11025] loop0: detected capacity change from 0 to 1024
[  172.650670][T11025] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  172.734573][T11035] loop5: detected capacity change from 0 to 764
[  172.828612][   T29] audit: type=1326 audit(1756947880.771:3671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11042 comm="syz.0.2668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  172.852658][   T29] audit: type=1326 audit(1756947880.781:3672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11042 comm="syz.0.2668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  172.876373][   T29] audit: type=1326 audit(1756947880.781:3673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11042 comm="syz.0.2668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  172.900458][   T29] audit: type=1326 audit(1756947880.781:3674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11042 comm="syz.0.2668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  172.924005][   T29] audit: type=1326 audit(1756947880.781:3675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11042 comm="syz.0.2668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  172.948129][   T29] audit: type=1326 audit(1756947880.781:3676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11042 comm="syz.0.2668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  172.971678][   T29] audit: type=1326 audit(1756947880.781:3677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11042 comm="syz.0.2668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  173.028444][T11054] loop5: detected capacity change from 0 to 764
[  173.036428][T11056] loop0: detected capacity change from 0 to 1024
[  173.066247][T11056] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  173.112549][T11056] loop0: detected capacity change from 0 to 1024
[  173.199186][T11056] EXT4-fs: Ignoring removed orlov option
[  173.480725][T11069] loop5: detected capacity change from 0 to 1024
[  173.534367][T11069] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  173.617528][   T29] audit: type=1326 audit(1756947881.571:3678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11075 comm="syz.2.2681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4dddcebe9 code=0x7ffc0000
[  173.688075][T11086] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  173.742074][T11086] vlan0: entered allmulticast mode
[  173.747373][T11086] dummy0: entered allmulticast mode
[  173.754699][T11090] loop0: detected capacity change from 0 to 1024
[  173.763091][T11094] FAULT_INJECTION: forcing a failure.
[  173.763091][T11094] name failslab, interval 1, probability 0, space 0, times 0
[  173.769309][T11090] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  173.775938][T11094] CPU: 1 UID: 0 PID: 11094 Comm: syz.4.2689 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  173.776034][T11094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  173.776046][T11094] Call Trace:
[  173.776052][T11094]  <TASK>
[  173.776058][T11094]  __dump_stack+0x1d/0x30
[  173.776081][T11094]  dump_stack_lvl+0xe8/0x140
[  173.776172][T11094]  dump_stack+0x15/0x1b
[  173.776186][T11094]  should_fail_ex+0x265/0x280
[  173.776207][T11094]  should_failslab+0x8c/0xb0
[  173.776296][T11094]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  173.776405][T11094]  ? hugetlbfs_alloc_inode+0xbc/0x100
[  173.776485][T11094]  hugetlbfs_alloc_inode+0xbc/0x100
[  173.776513][T11094]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  173.776579][T11094]  alloc_inode+0x40/0x170
[  173.776602][T11094]  new_inode+0x1d/0xe0
[  173.776625][T11094]  hugetlbfs_get_inode+0x7b/0x370
[  173.776651][T11094]  hugetlb_file_setup+0x192/0x3d0
[  173.776709][T11094]  ksys_mmap_pgoff+0x157/0x310
[  173.776729][T11094]  x64_sys_call+0x14a3/0x2ff0
[  173.776749][T11094]  do_syscall_64+0xd2/0x200
[  173.776778][T11094]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  173.776829][T11094]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  173.776903][T11094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.776924][T11094] RIP: 0033:0x7fd21abcebe9
[  173.776939][T11094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.776957][T11094] RSP: 002b:00007fd219637038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  173.776977][T11094] RAX: ffffffffffffffda RBX: 00007fd21ae05fa0 RCX: 00007fd21abcebe9
[  173.777043][T11094] RDX: 0000000000000003 RSI: 0000000000ff5000 RDI: 0000200000000000
[  173.777056][T11094] RBP: 00007fd219637090 R08: ffffffffffffffff R09: 0000000000000000
[  173.777068][T11094] R10: 00020000000ec071 R11: 0000000000000246 R12: 0000000000000001
[  173.777081][T11094] R13: 00007fd21ae06038 R14: 00007fd21ae05fa0 R15: 00007ffe85e81fc8
[  173.777099][T11094]  </TASK>
[  173.985209][T11092] __nla_validate_parse: 4 callbacks suppressed
[  173.985290][T11092] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2687'.
[  174.003853][T11096] syzkaller1: entered promiscuous mode
[  174.009358][T11096] syzkaller1: entered allmulticast mode
[  174.033983][T11090] loop0: detected capacity change from 0 to 1024
[  174.040622][T11090] EXT4-fs: Ignoring removed orlov option
[  174.083526][T11108] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2696'.
[  174.093548][T11111] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2693'.
[  174.103154][T11112] ref_ctr_offset mismatch. inode: 0x9ce offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  174.144067][T11114] lo speed is unknown, defaulting to 1000
[  174.267024][T11130] lo speed is unknown, defaulting to 1000
[  174.319797][T11115] delete_channel: no stack
[  174.340954][T11135] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2707'.
[  174.457978][T11146] loop4: detected capacity change from 0 to 512
[  174.471195][T11146] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  174.492226][T11141] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2708'.
[  174.509341][T11140] syzkaller1: entered promiscuous mode
[  174.514834][T11140] syzkaller1: entered allmulticast mode
[  174.543042][T11146] ext4 filesystem being mounted at /529/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  174.563336][T11146] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.2711: corrupted xattr block 19: overlapping e_value 
[  174.578461][T11146] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  174.633883][T11146] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.2711: corrupted xattr block 19: overlapping e_value 
[  174.740969][T11146] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  174.786289][T11159] loop5: detected capacity change from 0 to 1024
[  174.801209][T11146] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.2711: corrupted xattr block 19: overlapping e_value 
[  174.852426][T11159] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  174.876824][T11165] bond0: (slave bond_slave_0): Releasing backup interface
[  174.899024][T11165] bond0: (slave bond_slave_1): Releasing backup interface
[  174.953578][T11165] team0: Port device team_slave_0 removed
[  174.982746][T11165] team0: Port device team_slave_1 removed
[  175.004804][T11165] batman_adv: batadv0: Removing interface: batadv_slave_0
[  175.053115][T11165] batman_adv: batadv0: Removing interface: batadv_slave_1
[  175.073361][T11173] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2717'.
[  175.083525][T11165] batman_adv: batadv0: Removing interface: veth1_vlan
[  175.092194][T11165] batman_adv: batadv0: Removing interface: macvlan0
[  175.143680][T11173] team0: Mode changed to "loadbalance"
[  175.279639][T11178] loop4: detected capacity change from 0 to 1024
[  175.286464][T11178] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  175.301504][T11178] loop4: detected capacity change from 0 to 1024
[  175.308100][T11178] EXT4-fs: Ignoring removed orlov option
[  175.393712][T11196] loop4: detected capacity change from 0 to 164
[  175.401412][T11196] ISOFS: unable to read i-node block
[  175.406813][T11196] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  175.796785][T11205] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2732'.
[  175.845455][T11207] syzkaller0: entered allmulticast mode
[  175.853247][T11207] syzkaller0 (unregistering): left allmulticast mode
[  176.222651][T11219] loop5: detected capacity change from 0 to 1024
[  176.257950][T11219] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  176.414489][T11234] FAULT_INJECTION: forcing a failure.
[  176.414489][T11234] name failslab, interval 1, probability 0, space 0, times 0
[  176.427366][T11234] CPU: 1 UID: 0 PID: 11234 Comm: syz.5.2742 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  176.427401][T11234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  176.427414][T11234] Call Trace:
[  176.427420][T11234]  <TASK>
[  176.427427][T11234]  __dump_stack+0x1d/0x30
[  176.427464][T11234]  dump_stack_lvl+0xe8/0x140
[  176.427485][T11234]  dump_stack+0x15/0x1b
[  176.427507][T11234]  should_fail_ex+0x265/0x280
[  176.427529][T11234]  ? cgroup_pidlist_start+0x46e/0x820
[  176.427561][T11234]  should_failslab+0x8c/0xb0
[  176.427585][T11234]  __kmalloc_cache_noprof+0x4c/0x320
[  176.427624][T11234]  cgroup_pidlist_start+0x46e/0x820
[  176.427673][T11234]  cgroup_seqfile_start+0x58/0x70
[  176.427694][T11234]  kernfs_seq_start+0x80/0x130
[  176.427723][T11234]  traverse+0xec/0x3a0
[  176.427773][T11234]  seq_read_iter+0x853/0x940
[  176.427828][T11234]  ? 0xffffffff81000000
[  176.427840][T11234]  ? __rcu_read_unlock+0x4f/0x70
[  176.427858][T11234]  ? get_pid_task+0x96/0xd0
[  176.427877][T11234]  kernfs_fop_read_iter+0xc4/0x300
[  176.427940][T11234]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  176.428007][T11234]  vfs_read+0x64c/0x770
[  176.428025][T11234]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  176.428055][T11234]  __x64_sys_pread64+0xfd/0x150
[  176.428140][T11234]  x64_sys_call+0x29e2/0x2ff0
[  176.428158][T11234]  do_syscall_64+0xd2/0x200
[  176.428182][T11234]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  176.428257][T11234]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  176.428339][T11234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.428363][T11234] RIP: 0033:0x7f1c3768ebe9
[  176.428375][T11234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.428424][T11234] RSP: 002b:00007f1c360f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  176.428440][T11234] RAX: ffffffffffffffda RBX: 00007f1c378c5fa0 RCX: 00007f1c3768ebe9
[  176.428451][T11234] RDX: 0000000000001000 RSI: 0000200000001840 RDI: 0000000000000005
[  176.428462][T11234] RBP: 00007f1c360f7090 R08: 0000000000000000 R09: 0000000000000000
[  176.428473][T11234] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  176.428483][T11234] R13: 00007f1c378c6038 R14: 00007f1c378c5fa0 R15: 00007fff576177d8
[  176.428506][T11234]  </TASK>
[  176.717247][T11236] loop5: detected capacity change from 0 to 764
[  176.758630][T11245] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2744'.
[  176.809441][T11226] loop4: detected capacity change from 0 to 764
[  176.817389][T11226] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  176.836276][T11250] loop0: detected capacity change from 0 to 512
[  176.851893][T11250] ext4 filesystem being mounted at /528/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  176.879299][   T29] kauditd_printk_skb: 532 callbacks suppressed
[  176.879315][   T29] audit: type=1326 audit(1756947884.831:4211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  176.909807][   T29] audit: type=1326 audit(1756947884.871:4212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  176.933634][   T29] audit: type=1326 audit(1756947884.871:4213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  176.957362][   T29] audit: type=1326 audit(1756947884.871:4214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  176.973111][ T3303] EXT4-fs error (device loop0): ext4_lookup:1787: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  177.031967][T11264] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2751'.
[  177.041275][   T29] audit: type=1326 audit(1756947884.871:4215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  177.042534][ T3303] EXT4-fs error (device loop0): ext4_lookup:1787: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  177.064935][   T29] audit: type=1326 audit(1756947884.871:4216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  177.101267][   T29] audit: type=1326 audit(1756947884.871:4217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  177.124693][   T29] audit: type=1326 audit(1756947884.881:4218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  177.148343][   T29] audit: type=1326 audit(1756947884.881:4219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  177.171665][   T29] audit: type=1326 audit(1756947884.881:4220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11249 comm="syz.0.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa6c82ebe9 code=0x7ffc0000
[  177.177591][T11268] loop4: detected capacity change from 0 to 764
[  177.224055][T11270] loop4: detected capacity change from 0 to 1024
[  177.244778][T11270] EXT4-fs: Ignoring removed bh option
[  177.255123][T11270] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  177.359498][T11276] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2759'.
[  177.393621][T11280] loop4: detected capacity change from 0 to 1024
[  177.400809][T11282] ref_ctr_offset mismatch. inode: 0xa0e offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  177.400881][T11280] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  177.780738][T11320] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  177.847530][T11311] lo speed is unknown, defaulting to 1000
[  177.917059][T11311] chnl_net:caif_netlink_parms(): no params data found
[  177.959707][  T263] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  177.968973][  T263] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  177.980808][  T263] bond0 (unregistering): Released all slaves
[  177.998321][T11348] syzkaller1: entered promiscuous mode
[  178.003859][T11348] syzkaller1: entered allmulticast mode
[  178.031685][  T263] tipc: Left network mode
[  178.037208][T11311] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.044422][T11311] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.051720][T11311] bridge_slave_0: entered allmulticast mode
[  178.058202][T11311] bridge_slave_0: entered promiscuous mode
[  178.065729][  T263] hsr_slave_0: left promiscuous mode
[  178.071905][  T263] hsr_slave_1: left promiscuous mode
[  178.077756][  T263] batman_adv: batadv0: Removing interface: batadv_slave_0
[  178.085394][  T263] batman_adv: batadv0: Removing interface: macvlan0
[  178.106950][  T263] team0 (unregistering): Port device team_slave_1 removed
[  178.116574][  T263] team0 (unregistering): Port device team_slave_0 removed
[  178.156421][T11311] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.163558][T11311] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.171176][T11311] bridge_slave_1: entered allmulticast mode
[  178.177878][T11311] bridge_slave_1: entered promiscuous mode
[  178.201678][T11311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  178.212765][T11311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  178.232407][T11311] team0: Port device team_slave_0 added
[  178.239021][T11311] team0: Port device team_slave_1 added
[  178.256972][T11311] batman_adv: batadv0: Adding interface: batadv_slave_0
[  178.263964][T11311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  178.290075][T11311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  178.301562][T11311] batman_adv: batadv0: Adding interface: batadv_slave_1
[  178.308593][T11311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  178.334572][T11311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  178.364478][T11311] hsr_slave_0: entered promiscuous mode
[  178.371122][T11311] hsr_slave_1: entered promiscuous mode
[  178.377235][T11311] debugfs: 'hsr0' already exists in 'hsr'
[  178.383261][T11311] Cannot create hsr debugfs directory
[  178.452805][T11311] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  178.465474][T11311] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  178.477549][T11311] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  178.496118][T11311] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  178.523410][T11311] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.530575][T11311] bridge0: port 2(bridge_slave_1) entered forwarding state
[  178.537892][T11311] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.545049][T11311] bridge0: port 1(bridge_slave_0) entered forwarding state
[  178.594679][  T263] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.603680][T11383] loop5: detected capacity change from 0 to 1024
[  178.611480][  T263] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.617649][T11385] loop4: detected capacity change from 0 to 1024
[  178.626469][T11383] EXT4-fs: Ignoring removed orlov option
[  178.645713][T11311] 8021q: adding VLAN 0 to HW filter on device bond0
[  178.653366][T11382] SELinux:  Context ׸ýßX7ªÞd¹Q¬‰YI{C´¨pUèÒ–hÙ»ŒÐr: is not valid (left unmapped).
[  178.657946][T11311] 8021q: adding VLAN 0 to HW filter on device team0
[  178.673391][T11385] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  178.685766][ T1025] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.692934][ T1025] bridge0: port 1(bridge_slave_0) entered forwarding state
[  178.721777][ T1025] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.729036][ T1025] bridge0: port 2(bridge_slave_1) entered forwarding state
[  178.759733][T11395] 9pnet_fd: Insufficient options for proto=fd
[  178.856863][T11311] 8021q: adding VLAN 0 to HW filter on device batadv0
[  178.864001][T11417] loop5: detected capacity change from 0 to 1024
[  178.874335][T11417] EXT4-fs: Ignoring removed orlov option
[  179.034411][T11311] veth0_vlan: entered promiscuous mode
[  179.050737][T11311] veth1_vlan: entered promiscuous mode
[  179.062593][T11445] netlink: 'syz.3.2813': attribute type 13 has an invalid length.
[  179.070729][T11445] __nla_validate_parse: 10 callbacks suppressed
[  179.070745][T11445] netlink: 336 bytes leftover after parsing attributes in process `syz.3.2813'.
[  179.102506][T11311] veth0_macvtap: entered promiscuous mode
[  179.120090][T11311] veth1_macvtap: entered promiscuous mode
[  179.157348][T11311] batman_adv: batadv0: Interface activated: batadv_slave_0
[  179.167985][T11431] lo speed is unknown, defaulting to 1000
[  179.175587][T11447] ref_ctr_offset mismatch. inode: 0xa7f offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  179.176203][T11311] batman_adv: batadv0: Interface activated: batadv_slave_1
[  179.243351][  T263] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.291747][  T263] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.301451][  T263] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.331735][  T263] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  179.425878][T11461] syzkaller1: entered promiscuous mode
[  179.431643][T11461] syzkaller1: entered allmulticast mode
[  179.621699][T11477] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2824'.
[  179.654736][T11481] loop6: detected capacity change from 0 to 764
[  179.717078][T11483] loop6: detected capacity change from 0 to 1024
[  179.738919][T11483] EXT4-fs: Ignoring removed orlov option
[  179.794207][T11491] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2832'.
[  179.833168][T11495] syzkaller1: entered promiscuous mode
[  179.838783][T11495] syzkaller1: entered allmulticast mode
[  179.892101][T11497] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2835'.
[  179.899189][T11501] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2836'.
[  179.938779][T11476] loop5: detected capacity change from 0 to 764
[  179.954214][T11476] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  179.959981][T11501] netlink: 'syz.3.2836': attribute type 10 has an invalid length.
[  179.970069][T11501] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2836'.
[  179.996240][T11501] veth1_vlan: left promiscuous mode
[  180.003064][T11501] batman_adv: batadv0: Adding interface: veth1_vlan
[  180.009787][T11501] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  180.037387][T11501] batman_adv: batadv0: Interface activated: veth1_vlan
[  180.084353][T11511] loop5: detected capacity change from 0 to 764
[  180.133350][T11513] smc: net device bond0 applied user defined pnetid SYZ0
[  180.158679][T11515] loop5: detected capacity change from 0 to 1024
[  180.169514][T11513] smc: net device bond0 erased user defined pnetid SYZ0
[  180.184123][T11515] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  180.263494][T11515] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2841'.
[  180.272478][T11515] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2841'.
[  180.274251][T11518] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2842'.
[  180.291096][T11515] loop5: detected capacity change from 0 to 1024
[  180.297952][T11515] EXT4-fs: Ignoring removed orlov option
[  180.572433][T11529] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2846'.
[  180.597810][T11521] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  180.597810][T11521]    program syz.3.2843 not setting count and/or reply_len properly
[  180.675509][T11542] ref_ctr_offset mismatch. inode: 0xc56 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  180.870674][T11559] loop5: detected capacity change from 0 to 128
[  180.900904][T11567] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  180.977031][T11575] ref_ctr_offset mismatch. inode: 0xc70 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  181.173201][T11595] loop5: detected capacity change from 0 to 1024
[  181.181144][T11600] bridge0: port 2(bridge_slave_1) entered disabled state
[  181.188356][T11600] bridge0: port 1(bridge_slave_0) entered disabled state
[  181.212699][T11595] EXT4-fs: Ignoring removed oldalloc option
[  181.219049][T11595] EXT4-fs: Ignoring removed bh option
[  181.226121][T11606] loop6: detected capacity change from 0 to 1024
[  181.257340][T11606] EXT4-fs: Ignoring removed bh option
[  181.285919][T11606] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  181.405239][T11600] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  181.416333][T11591] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  181.450963][T11600] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  181.502825][T11617] syzkaller1: entered promiscuous mode
[  181.508336][T11617] syzkaller1: entered allmulticast mode
[  181.525122][   T41] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  181.543202][ T2865] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  181.568198][ T2865] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  181.577544][ T2865] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  181.614129][T11609] lo speed is unknown, defaulting to 1000
[  181.703918][T11640] loop5: detected capacity change from 0 to 1024
[  181.710981][T11609] chnl_net:caif_netlink_parms(): no params data found
[  181.740460][T11640] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  181.821405][T11609] bridge0: port 1(bridge_slave_0) entered blocking state
[  181.828473][T11609] bridge0: port 1(bridge_slave_0) entered disabled state
[  181.836228][T11609] bridge_slave_0: entered allmulticast mode
[  181.843296][T11609] bridge_slave_0: entered promiscuous mode
[  181.850570][T11609] bridge0: port 2(bridge_slave_1) entered blocking state
[  181.857974][T11609] bridge0: port 2(bridge_slave_1) entered disabled state
[  181.878803][T11609] bridge_slave_1: entered allmulticast mode
[  181.885490][T11609] bridge_slave_1: entered promiscuous mode
[  181.905281][T11662] syzkaller1: entered promiscuous mode
[  181.910847][T11662] syzkaller1: entered allmulticast mode
[  181.933878][   T29] kauditd_printk_skb: 118 callbacks suppressed
[  181.933892][   T29] audit: type=1326 audit(1756947889.891:4339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  181.964377][   T29] audit: type=1326 audit(1756947889.891:4340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  181.969015][T11609] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  181.988077][   T29] audit: type=1326 audit(1756947889.891:4341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  181.988114][   T29] audit: type=1326 audit(1756947889.891:4342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  182.000362][T11609] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  182.020775][   T29] audit: type=1326 audit(1756947889.891:4343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  182.020812][   T29] audit: type=1326 audit(1756947889.891:4344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f06de3dec23 code=0x7ffc0000
[  182.100299][   T29] audit: type=1326 audit(1756947889.891:4345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f06de3dd69f code=0x7ffc0000
[  182.123843][   T29] audit: type=1326 audit(1756947889.891:4346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f06de3dec77 code=0x7ffc0000
[  182.147365][   T29] audit: type=1326 audit(1756947889.911:4347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f06de3dd550 code=0x7ffc0000
[  182.170855][   T29] audit: type=1326 audit(1756947889.911:4348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11665 comm="syz.3.2898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f06de3de7eb code=0x7ffc0000
[  182.238370][T11609] team0: Port device team_slave_0 added
[  182.257318][T11609] team0: Port device team_slave_1 added
[  182.266667][T11681] ref_ctr_offset mismatch. inode: 0xb18 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  182.302574][ T1025] bond0 (unregistering): Released all slaves
[  182.311331][ T1025] bond1 (unregistering): Released all slaves
[  182.344534][T11609] batman_adv: batadv0: Adding interface: batadv_slave_0
[  182.351543][T11609] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  182.377551][T11609] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  182.402502][ T1025] hsr_slave_0: left promiscuous mode
[  182.408369][ T1025] hsr_slave_1: left promiscuous mode
[  182.505307][T11609] batman_adv: batadv0: Adding interface: batadv_slave_1
[  182.512369][T11609] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  182.538966][T11609] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  182.606493][T11609] hsr_slave_0: entered promiscuous mode
[  182.620190][T11609] hsr_slave_1: entered promiscuous mode
[  182.636599][T11609] debugfs: 'hsr0' already exists in 'hsr'
[  182.642476][T11609] Cannot create hsr debugfs directory
[  182.721987][T11722] loop5: detected capacity change from 0 to 1024
[  182.789550][T11722] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  182.901718][T11736] loop4: detected capacity change from 0 to 1024
[  182.914480][T11736] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  182.979080][T11736] loop4: detected capacity change from 0 to 1024
[  182.996420][T11736] EXT4-fs: Ignoring removed orlov option
[  183.090702][T11609] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  183.157746][T11609] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  183.195449][T11609] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  183.216311][T11609] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  183.314717][T11609] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.362033][T11609] 8021q: adding VLAN 0 to HW filter on device team0
[  183.384778][ T2865] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.391882][ T2865] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.419853][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.426979][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.531274][T11609] 8021q: adding VLAN 0 to HW filter on device batadv0
[  183.630718][T11609] veth0_vlan: entered promiscuous mode
[  183.650439][T11609] veth1_vlan: entered promiscuous mode
[  183.668150][T11609] veth0_macvtap: entered promiscuous mode
[  183.686165][T11609] veth1_macvtap: entered promiscuous mode
[  183.698534][T11609] batman_adv: batadv0: Interface activated: batadv_slave_0
[  183.710362][T11609] batman_adv: batadv0: Interface activated: batadv_slave_1
[  183.731788][   T41] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  183.751389][   T41] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  183.764304][   T41] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  183.784785][  T263] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  184.082415][T11811] loop5: detected capacity change from 0 to 1024
[  184.120301][T11811] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  184.338129][T11827] bond0: (slave bond_slave_0): Releasing backup interface
[  184.361496][T11827] bond0: (slave bond_slave_1): Releasing backup interface
[  184.403804][T11827] team0: Port device team_slave_0 removed
[  184.412412][T11827] team0: Port device team_slave_1 removed
[  184.421886][T11827] batman_adv: batadv0: Removing interface: batadv_slave_0
[  184.430502][T11827] batman_adv: batadv0: Removing interface: batadv_slave_1
[  184.444732][T11835] loop5: detected capacity change from 0 to 1024
[  184.451556][T11835] EXT4-fs: inline encryption not supported
[  184.457794][T11835] EXT4-fs: Ignoring removed bh option
[  184.494224][T11827] __nla_validate_parse: 20 callbacks suppressed
[  184.494240][T11827] netlink: 64 bytes leftover after parsing attributes in process `syz.5.2955'.
[  184.531528][T11827] team0: Mode changed to "loadbalance"
[  184.560039][T11845] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2958'.
[  184.584694][T11847] loop6: detected capacity change from 0 to 764
[  184.674339][T11849] loop6: detected capacity change from 0 to 1024
[  184.724932][T11849] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  184.777261][T11861] loop2: detected capacity change from 0 to 1024
[  184.804200][T11861] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  184.815237][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2967'.
[  184.824223][T11861] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2967'.
[  184.838194][T11861] loop2: detected capacity change from 0 to 1024
[  184.844870][T11861] EXT4-fs: Ignoring removed orlov option
[  185.197629][T11880] bond0: Error: Cannot enslave bond to itself.
[  185.296245][T11904] smc: net device bond0 applied user defined pnetid SYZ0
[  185.307765][T11904] smc: net device bond0 erased user defined pnetid SYZ0
[  185.316154][T11896] 9pnet_fd: Insufficient options for proto=fd
[  185.324441][T11886] FAULT_INJECTION: forcing a failure.
[  185.324441][T11886] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  185.328037][T11907] loop4: detected capacity change from 0 to 1024
[  185.337725][T11886] CPU: 0 UID: 0 PID: 11886 Comm: syz.5.2976 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  185.337752][T11886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  185.337765][T11886] Call Trace:
[  185.337772][T11886]  <TASK>
[  185.337780][T11886]  __dump_stack+0x1d/0x30
[  185.337853][T11886]  dump_stack_lvl+0xe8/0x140
[  185.337873][T11886]  dump_stack+0x15/0x1b
[  185.337890][T11886]  should_fail_ex+0x265/0x280
[  185.337912][T11886]  should_fail_alloc_page+0xf2/0x100
[  185.337939][T11886]  __alloc_frozen_pages_noprof+0xff/0x360
[  185.338033][T11886]  alloc_pages_mpol+0xb3/0x250
[  185.338107][T11886]  alloc_migration_target_by_mpol+0x11b/0x280
[  185.338133][T11886]  migrate_pages_batch+0x309/0x1ae0
[  185.338232][T11886]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  185.338306][T11886]  ? __walk_page_range+0x324/0x340
[  185.338338][T11886]  migrate_pages+0xf5f/0x1770
[  185.338368][T11886]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  185.338399][T11886]  __se_sys_mbind+0x975/0xac0
[  185.338496][T11886]  __x64_sys_mbind+0x78/0x90
[  185.338526][T11886]  x64_sys_call+0x2932/0x2ff0
[  185.338548][T11886]  do_syscall_64+0xd2/0x200
[  185.338589][T11886]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  185.338614][T11886]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  185.338682][T11886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.338729][T11886] RIP: 0033:0x7f1c3768ebe9
[  185.338749][T11886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.338766][T11886] RSP: 002b:00007f1c360f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  185.338826][T11886] RAX: ffffffffffffffda RBX: 00007f1c378c5fa0 RCX: 00007f1c3768ebe9
[  185.338857][T11886] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000001000
[  185.338868][T11886] RBP: 00007f1c360f7090 R08: 0000000000000000 R09: 0000000000000002
[  185.338879][T11886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.338890][T11886] R13: 00007f1c378c6038 R14: 00007f1c378c5fa0 R15: 00007fff576177d8
[  185.338909][T11886]  </TASK>
[  185.404213][T11913] loop5: detected capacity change from 0 to 764
[  185.405530][T11907] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  185.427915][T11907] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2985'.
[  185.533118][T11916] loop4: detected capacity change from 0 to 1024
[  185.540894][T11907] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2985'.
[  185.604020][T11916] EXT4-fs: Ignoring removed orlov option
[  185.623896][T11920] bridge_slave_0: left allmulticast mode
[  185.629714][T11920] bridge_slave_0: left promiscuous mode
[  185.635423][T11920] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.647090][T11920] bridge_slave_1: left allmulticast mode
[  185.652847][T11920] bridge_slave_1: left promiscuous mode
[  185.658541][T11920] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.668749][T11920] bond0: (slave bond_slave_0): Releasing backup interface
[  185.679673][T11920] bond0: (slave bond_slave_1): Releasing backup interface
[  185.702929][T11920] team0: Port device team_slave_0 removed
[  185.713904][T11920] team0: Port device team_slave_1 removed
[  185.722191][T11920] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  185.729696][T11920] batman_adv: batadv0: Removing interface: batadv_slave_0
[  185.748888][T11920] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  185.756328][T11920] batman_adv: batadv0: Removing interface: batadv_slave_1
[  185.773087][T11925] loop2: detected capacity change from 0 to 1024
[  185.780912][T11925] EXT4-fs: inline encryption not supported
[  185.787360][T11925] EXT4-fs: Ignoring removed bh option
[  185.838680][T11930] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2992'.
[  185.857264][T11920] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2990'.
[  185.903213][T11920] team0: Mode changed to "loadbalance"
[  185.954049][T11943] loop4: detected capacity change from 0 to 764
[  186.011999][T11949] loop5: detected capacity change from 0 to 1024
[  186.046191][T11949] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  186.192009][T11963] 9pnet_fd: Insufficient options for proto=fd
[  186.315894][T11970] loop6: detected capacity change from 0 to 1024
[  186.325181][T11970] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  186.349362][T11970] loop6: detected capacity change from 0 to 1024
[  186.364429][T11970] EXT4-fs: Ignoring removed orlov option
[  186.568408][T11988] loop2: detected capacity change from 0 to 1024
[  186.613081][T11988] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  186.785426][T12005] loop6: detected capacity change from 0 to 164
[  186.804887][T12005] iso9660: Corrupted directory entry in block 4 of inode 1792
[  186.814270][T12005] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  186.826335][T12005] bond0: (slave lo): Error: Device type is different from other slaves
[  186.915621][T12018] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3028'.
[  187.016019][T12027] syzkaller1: entered promiscuous mode
[  187.021626][T12027] syzkaller1: entered allmulticast mode
[  187.032831][T12029] loop4: detected capacity change from 0 to 1024
[  187.086213][T12029] EXT4-fs: Ignoring removed orlov option
[  187.282545][ T3309] EXT4-fs unmount: 72 callbacks suppressed
[  187.282561][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.376272][T12043] loop4: detected capacity change from 0 to 764
[  187.440020][T12051] netlink: 'syz.5.3040': attribute type 1 has an invalid length.
[  187.455291][T12051] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3040'.
[  187.498624][T12059] IPVS: sync thread started: state = BACKUP, mcast_ifn = gretap0, syncid = 0, id = 0
[  187.508899][   T29] kauditd_printk_skb: 200 callbacks suppressed
[  187.508914][   T29] audit: type=1326 audit(1756947895.471:4549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.2.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a2d59ebe9 code=0x7ffc0000
[  187.585145][   T29] audit: type=1326 audit(1756947895.501:4550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.2.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a2d59ebe9 code=0x7ffc0000
[  187.608789][   T29] audit: type=1326 audit(1756947895.501:4551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.2.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a2d59ebe9 code=0x7ffc0000
[  187.632573][   T29] audit: type=1326 audit(1756947895.501:4552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.2.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a2d59ebe9 code=0x7ffc0000
[  187.656131][   T29] audit: type=1326 audit(1756947895.501:4553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.2.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a2d59ebe9 code=0x7ffc0000
[  187.679958][   T29] audit: type=1326 audit(1756947895.501:4554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.2.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a2d59ebe9 code=0x7ffc0000
[  187.703476][   T29] audit: type=1326 audit(1756947895.501:4555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.2.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a2d59ebe9 code=0x7ffc0000
[  187.727370][   T29] audit: type=1326 audit(1756947895.501:4556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.2.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f9a2d59ebe9 code=0x7ffc0000
[  187.749328][T12072] loop6: detected capacity change from 0 to 764
[  187.750848][   T29] audit: type=1326 audit(1756947895.501:4557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.2.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a2d59ebe9 code=0x7ffc0000
[  187.796551][T12073] loop2: detected capacity change from 0 to 1024
[  187.803807][T12073] EXT4-fs: Ignoring removed bh option
[  187.809741][T12073] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  187.864556][T12073] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.921508][T12094] loop6: detected capacity change from 0 to 1024
[  187.928495][T12094] EXT4-fs: Ignoring removed bh option
[  187.940747][T12094] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  187.963145][T12094] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.992279][T12088] syzkaller1: entered promiscuous mode
[  187.997817][T12088] syzkaller1: entered allmulticast mode
[  188.044069][T11311] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.055845][  T263] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  188.099141][   T29] audit: type=1326 audit(1756947896.051:4558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12104 comm="syz.6.3058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f256a3bebe9 code=0x7ffc0000
[  188.108529][T11609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.150412][  T263] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  188.160428][T12107] FAULT_INJECTION: forcing a failure.
[  188.160428][T12107] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  188.164218][  T263] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  188.173747][T12107] CPU: 1 UID: 0 PID: 12107 Comm: syz.3.3062 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  188.173789][T12107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  188.173827][T12107] Call Trace:
[  188.173831][T12107]  <TASK>
[  188.173837][T12107]  __dump_stack+0x1d/0x30
[  188.173857][T12107]  dump_stack_lvl+0xe8/0x140
[  188.173954][T12107]  dump_stack+0x15/0x1b
[  188.173971][T12107]  should_fail_ex+0x265/0x280
[  188.173993][T12107]  should_fail+0xb/0x20
[  188.174011][T12107]  should_fail_usercopy+0x1a/0x20
[  188.174054][T12107]  _copy_from_iter+0x254/0xe80
[  188.174082][T12107]  ? should_fail_ex+0x30/0x280
[  188.174102][T12107]  ? __rcu_read_unlock+0x4f/0x70
[  188.174126][T12107]  ping_v4_sendmsg+0x150/0xcd0
[  188.174221][T12107]  ? __rcu_read_unlock+0x4f/0x70
[  188.174251][T12107]  ? __pfx_ping_v4_sendmsg+0x10/0x10
[  188.174272][T12107]  inet_sendmsg+0xc2/0xd0
[  188.174294][T12107]  __sock_sendmsg+0x102/0x180
[  188.174374][T12107]  ____sys_sendmsg+0x31e/0x4e0
[  188.174468][T12107]  ___sys_sendmsg+0x17b/0x1d0
[  188.174503][T12107]  __x64_sys_sendmsg+0xd4/0x160
[  188.174597][T12107]  x64_sys_call+0x191e/0x2ff0
[  188.174619][T12107]  do_syscall_64+0xd2/0x200
[  188.174647][T12107]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  188.174672][T12107]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  188.174740][T12107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.174762][T12107] RIP: 0033:0x7f06de3debe9
[  188.174778][T12107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.174795][T12107] RSP: 002b:00007f06dce3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  188.174814][T12107] RAX: ffffffffffffffda RBX: 00007f06de615fa0 RCX: 00007f06de3debe9
[  188.174842][T12107] RDX: 0000000020000000 RSI: 0000200000000600 RDI: 0000000000000003
[  188.174855][T12107] RBP: 00007f06dce3f090 R08: 0000000000000000 R09: 0000000000000000
[  188.174867][T12107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.174879][T12107] R13: 00007f06de616038 R14: 00007f06de615fa0 R15: 00007fffe07f2c08
[  188.174897][T12107]  </TASK>
[  188.391542][   T49] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  188.535132][T12120] syzkaller0: entered allmulticast mode
[  188.549143][T12130] syzkaller0 (unregistering): left allmulticast mode
[  188.584657][T12133] loop5: detected capacity change from 0 to 1024
[  188.591621][T12133] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  188.618601][T12133] loop5: detected capacity change from 0 to 1024
[  188.625350][T12133] EXT4-fs: Ignoring removed orlov option
[  188.635571][T12133] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.677630][T12115] lo speed is unknown, defaulting to 1000
[  188.738068][T12115] chnl_net:caif_netlink_parms(): no params data found
[  188.779444][T12115] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.786590][T12115] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.793827][T12115] bridge_slave_0: entered allmulticast mode
[  188.800287][T12115] bridge_slave_0: entered promiscuous mode
[  188.806973][T12115] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.814113][T12115] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.821370][T12115] bridge_slave_1: entered allmulticast mode
[  188.823510][ T5284] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.827965][T12115] bridge_slave_1: entered promiscuous mode
[  188.856951][T12115] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  188.867310][T12115] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  188.869261][T12156] loop2: detected capacity change from 0 to 1024
[  188.888233][T12156] EXT4-fs: Ignoring removed orlov option
[  188.889143][T12115] team0: Port device team_slave_0 added
[  188.910481][T12115] team0: Port device team_slave_1 added
[  188.910695][T12156] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.944708][T12115] batman_adv: batadv0: Adding interface: batadv_slave_0
[  188.951726][T12115] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  188.977869][T12115] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  189.067127][T12160] loop5: detected capacity change from 0 to 164
[  189.131160][   T12] bond0 (unregistering): Released all slaves
[  189.147791][T12115] batman_adv: batadv0: Adding interface: batadv_slave_1
[  189.154829][T12115] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  189.180915][T12115] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  189.208444][T11609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.224804][   T12] hsr_slave_0: left promiscuous mode
[  189.231123][   T12] hsr_slave_1: left promiscuous mode
[  189.401945][T12177] netlink: 'syz.6.3083': attribute type 2 has an invalid length.
[  189.429136][T12115] hsr_slave_0: entered promiscuous mode
[  189.436439][T12115] hsr_slave_1: entered promiscuous mode
[  189.442515][T12115] debugfs: 'hsr0' already exists in 'hsr'
[  189.448481][T12115] Cannot create hsr debugfs directory
[  189.458567][T12186] syzkaller1: entered promiscuous mode
[  189.464219][T12186] syzkaller1: entered allmulticast mode
[  189.507737][T12194] syzkaller0: entered allmulticast mode
[  189.523605][T12194] syzkaller0 (unregistering): left allmulticast mode
[  189.536439][T12198] __nla_validate_parse: 6 callbacks suppressed
[  189.536454][T12198] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3088'.
[  189.588090][T12203] loop6: detected capacity change from 0 to 2048
[  189.601325][T12203] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.643829][T12198] team0: Unable to change to the same mode the team is in
[  189.738606][T12213] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3095'.
[  189.816607][T12215] netlink: 204 bytes leftover after parsing attributes in process `syz.5.3096'.
[  189.860609][T12219] loop5: detected capacity change from 0 to 1024
[  189.871392][T12219] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.885589][T12219] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  189.967129][ T5284] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.085265][T12115] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  190.094600][T12115] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  190.103527][T12115] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  190.112914][T12115] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  190.150445][T12115] 8021q: adding VLAN 0 to HW filter on device bond0
[  190.165838][T12115] 8021q: adding VLAN 0 to HW filter on device team0
[  190.175535][  T263] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.182895][  T263] bridge0: port 1(bridge_slave_0) entered forwarding state
[  190.195135][T12234] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3101'.
[  190.207411][  T263] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.214509][  T263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  190.276687][T12242] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3103'.
[  190.291521][T12115] 8021q: adding VLAN 0 to HW filter on device batadv0
[  190.319179][T12247] syzkaller1: entered promiscuous mode
[  190.324937][T12247] syzkaller1: entered allmulticast mode
[  190.342707][T11311] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.418764][T12261] loop6: detected capacity change from 0 to 1024
[  190.431647][T12115] veth0_vlan: entered promiscuous mode
[  190.439220][T12115] veth1_vlan: entered promiscuous mode
[  190.446956][T12261] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.451824][T12115] veth0_macvtap: entered promiscuous mode
[  190.469389][T12261] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  190.474838][T12115] veth1_macvtap: entered promiscuous mode
[  190.497659][T12268] loop2: detected capacity change from 0 to 1024
[  190.505366][T12115] batman_adv: batadv0: Interface activated: batadv_slave_0
[  190.515364][T12115] batman_adv: batadv0: Interface activated: batadv_slave_1
[  190.525867][   T41] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  190.540567][T12268] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.555754][   T41] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  190.568278][   T41] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  190.577972][   T41] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  190.596104][T12268] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  190.611645][T11311] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.620121][T12277] loop4: detected capacity change from 0 to 764
[  190.629044][T12277] rock: directory entry would overflow storage
[  190.635304][T12277] rock: sig=0x4f50, size=4, remaining=3
[  190.641016][T12277] iso9660: Corrupted directory entry in block 6 of inode 1792
[  190.693006][T12282] netlink: 36 bytes leftover after parsing attributes in process `syz.6.3112'.
[  190.735073][T12289] bridge_slave_0: left allmulticast mode
[  190.738415][T11609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.740819][T12289] bridge_slave_0: left promiscuous mode
[  190.755458][T12289] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.766566][T12289] bridge_slave_1: left allmulticast mode
[  190.772541][T12289] bridge_slave_1: left promiscuous mode
[  190.778340][T12289] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.789269][T12289] bond0: (slave bond_slave_0): Releasing backup interface
[  190.797072][T12289] bond0: (slave bond_slave_1): Releasing backup interface
[  190.806268][T12289] team0: Port device team_slave_0 removed
[  190.812806][T12289] team0: Port device team_slave_1 removed
[  190.818961][T12289] batman_adv: batadv0: Removing interface: batadv_slave_0
[  190.826673][T12289] batman_adv: batadv0: Removing interface: batadv_slave_1
[  190.841531][T12297] syzkaller1: entered promiscuous mode
[  190.847047][T12297] syzkaller1: entered allmulticast mode
[  190.863020][T12289] netlink: 64 bytes leftover after parsing attributes in process `syz.6.3118'.
[  190.876844][T12289] team0: Mode changed to "loadbalance"
[  190.882448][T12302] loop2: detected capacity change from 0 to 764
[  190.908844][T12300] syzkaller0: entered promiscuous mode
[  190.914411][T12300] syzkaller0: entered allmulticast mode
[  190.969188][T12314] loop2: detected capacity change from 0 to 1024
[  190.976523][T12314] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  190.987455][T12314] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3126'.
[  190.996475][T12314] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3126'.
[  191.011390][T12314] loop2: detected capacity change from 0 to 1024
[  191.017995][T12314] EXT4-fs: Ignoring removed orlov option
[  191.024320][T12318] ref_ctr_offset mismatch. inode: 0xc08 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  191.025449][T12314] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.131661][T12324] syzkaller0: entered allmulticast mode
[  191.138587][T12324] syzkaller0 (unregistering): left allmulticast mode
[  191.154033][T12325] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3129'.
[  191.278841][T11609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.299546][T12333] loop2: detected capacity change from 0 to 764
[  191.314558][T12335] loop5: detected capacity change from 0 to 764
[  191.335678][T12337] syzkaller1: entered promiscuous mode
[  191.341310][T12337] syzkaller1: entered allmulticast mode
[  191.427987][T12339] loop5: detected capacity change from 0 to 1024
[  191.458906][T12339] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.533868][ T5284] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.623451][T12353] loop6: detected capacity change from 0 to 1024
[  191.652153][T12353] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.685687][T12353] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  191.762107][T11311] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.784634][T12360] loop6: detected capacity change from 0 to 1024
[  191.791410][T12360] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  191.807256][T12360] loop6: detected capacity change from 0 to 1024
[  191.814059][T12360] EXT4-fs: Ignoring removed orlov option
[  191.821732][T12360] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.020592][T11311] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.065921][T12375] syzkaller1: entered promiscuous mode
[  192.071639][T12375] syzkaller1: entered allmulticast mode
[  192.083455][T12380] netlink: 'syz.3.3151': attribute type 2 has an invalid length.
[  192.136508][T12384] loop6: detected capacity change from 0 to 1024
[  192.162365][T12384] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.179934][T12384] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  192.243765][T12397] loop2: detected capacity change from 0 to 764
[  192.244499][T12399] loop5: detected capacity change from 0 to 1024
[  192.257185][T12399] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  192.275249][T12399] loop5: detected capacity change from 0 to 1024
[  192.282329][T12399] EXT4-fs: Ignoring removed orlov option
[  192.282451][T11311] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.303038][T12399] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.326976][T12404] syzkaller0: entered allmulticast mode
[  192.334007][T12404] syzkaller0 (unregistering): left allmulticast mode
[  192.394439][T12409] loop6: detected capacity change from 0 to 2048
[  192.515838][ T5284] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.531813][T12409] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.575881][T12422] syzkaller1: entered promiscuous mode
[  192.581576][T12422] syzkaller1: entered allmulticast mode
[  192.645750][T12425] loop5: detected capacity change from 0 to 764
[  192.654353][T12425] rock: directory entry would overflow storage
[  192.660673][T12425] rock: sig=0x4f50, size=4, remaining=3
[  192.666198][T12425] iso9660: Corrupted directory entry in block 6 of inode 1792
[  192.708319][T12429] loop5: detected capacity change from 0 to 1024
[  192.721114][T12429] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.736525][T12429] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  192.827545][ T5284] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.893976][T12441] loop2: detected capacity change from 0 to 1024
[  192.923909][T12441] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  192.987685][T12441] loop2: detected capacity change from 0 to 1024
[  192.994480][   T29] kauditd_printk_skb: 127 callbacks suppressed
[  192.994495][   T29] audit: type=1326 audit(1756947900.940:4686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.024251][   T29] audit: type=1326 audit(1756947900.940:4687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.047883][   T29] audit: type=1326 audit(1756947900.940:4688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.071427][   T29] audit: type=1326 audit(1756947900.940:4689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.095086][   T29] audit: type=1326 audit(1756947900.940:4690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.103093][T12441] EXT4-fs: Ignoring removed orlov option
[  193.118649][   T29] audit: type=1326 audit(1756947900.940:4691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.118691][   T29] audit: type=1326 audit(1756947900.940:4692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.128208][T12441] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.147830][   T29] audit: type=1326 audit(1756947900.940:4693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.147859][   T29] audit: type=1326 audit(1756947900.940:4694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.190276][T12457] loop4: detected capacity change from 0 to 764
[  193.207528][   T29] audit: type=1326 audit(1756947900.940:4695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12447 comm="syz.3.3178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06de3debe9 code=0x7ffc0000
[  193.283475][T12457] rock: directory entry would overflow storage
[  193.289711][T12457] rock: sig=0x4f50, size=4, remaining=3
[  193.295479][T12457] iso9660: Corrupted directory entry in block 6 of inode 1792
[  193.338503][T11311] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.487473][T12480] syzkaller0: entered promiscuous mode
[  193.493108][T12480] syzkaller0: entered allmulticast mode
[  193.541586][T11609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.652944][T12496] loop4: detected capacity change from 0 to 764
[  193.662050][T12496] rock: directory entry would overflow storage
[  193.668307][T12496] rock: sig=0x4f50, size=4, remaining=3
[  193.673912][T12496] iso9660: Corrupted directory entry in block 6 of inode 1792
[  193.712654][T12502] syzkaller0: entered allmulticast mode
[  193.722865][T12502] syzkaller0 (unregistering): left allmulticast mode
[  193.780114][T12503] loop4: detected capacity change from 0 to 2048
[  193.801591][T12503] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.841659][T12489] chnl_net:caif_netlink_parms(): no params data found
[  193.875426][T12489] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.882586][T12489] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.890021][T12489] bridge_slave_0: entered allmulticast mode
[  193.896528][T12489] bridge_slave_0: entered promiscuous mode
[  193.903098][T12489] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.910483][T12489] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.917720][T12489] bridge_slave_1: entered allmulticast mode
[  193.924169][T12489] bridge_slave_1: entered promiscuous mode
[  193.942229][T12489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  193.952626][T12489] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  193.970830][T12489] team0: Port device team_slave_0 added
[  193.977609][T12489] team0: Port device team_slave_1 added
[  193.992879][T12489] batman_adv: batadv0: Adding interface: batadv_slave_0
[  194.000130][T12489] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  194.026073][T12489] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  194.038275][T12489] batman_adv: batadv0: Adding interface: batadv_slave_1
[  194.045255][T12489] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  194.071688][T12489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  194.106188][T12489] hsr_slave_0: entered promiscuous mode
[  194.112845][T12489] hsr_slave_1: entered promiscuous mode
[  194.118756][T12489] debugfs: 'hsr0' already exists in 'hsr'
[  194.124544][T12489] Cannot create hsr debugfs directory
[  194.471209][   T12] bond0 (unregistering): Released all slaves
[  194.534433][   T12] IPVS: stopping backup sync thread 12059 ...
[  194.547260][   T12] hsr_slave_0: left promiscuous mode
[  194.554379][T12115] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.563619][   T12] hsr_slave_1: left promiscuous mode
[  194.603449][T12532] loop2: detected capacity change from 0 to 764
[  194.639425][T12539] __nla_validate_parse: 15 callbacks suppressed
[  194.639441][T12539] netlink: 36 bytes leftover after parsing attributes in process `syz.6.3204'.
[  194.656582][T12532] rock: directory entry would overflow storage
[  194.662796][T12532] rock: sig=0x4f50, size=4, remaining=3
[  194.668380][T12532] iso9660: Corrupted directory entry in block 6 of inode 1792
[  194.747486][T12546] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3209'.
[  194.814678][T12553] syzkaller0: entered allmulticast mode
[  194.822579][T12553] syzkaller0 (unregistering): left allmulticast mode
[  194.966255][T12568] loop6: detected capacity change from 0 to 764
[  194.974364][T12568] rock: directory entry would overflow storage
[  194.980558][T12568] rock: sig=0x4f50, size=4, remaining=3
[  194.986203][T12568] iso9660: Corrupted directory entry in block 6 of inode 1792
[  195.074398][T12572] loop6: detected capacity change from 0 to 164
[  195.083342][T12489] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  195.092413][T12489] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  195.099403][T12572] ISOFS: unable to read i-node block
[  195.101480][T12489] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  195.104825][T12572] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  195.122926][T12489] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  195.169721][T12489] 8021q: adding VLAN 0 to HW filter on device bond0
[  195.184102][T12489] 8021q: adding VLAN 0 to HW filter on device team0
[  195.193515][ T1025] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.200881][ T1025] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.212071][T12581] netlink: 36 bytes leftover after parsing attributes in process `syz.6.3222'.
[  195.218261][T12489] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  195.231679][T12489] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  195.245814][ T1025] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.252908][ T1025] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.310604][T12489] 8021q: adding VLAN 0 to HW filter on device batadv0
[  195.432130][T12489] veth0_vlan: entered promiscuous mode
[  195.447971][T12489] veth1_vlan: entered promiscuous mode
[  195.473119][T12489] veth0_macvtap: entered promiscuous mode
[  195.490149][T12489] veth1_macvtap: entered promiscuous mode
[  195.503793][T12489] batman_adv: batadv0: Interface activated: batadv_slave_0
[  195.515080][T12489] batman_adv: batadv0: Interface activated: batadv_slave_1
[  195.526220][ T1025] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  195.542800][ T1025] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  195.562919][ T1025] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  195.575905][ T1025] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  195.711866][T12642] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3234'.
[  195.749538][T12645] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3238'.
[  195.807988][T12654] loop2: detected capacity change from 0 to 1024
[  195.816250][T12654] EXT4-fs: Ignoring removed bh option
[  195.826110][T12654] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  195.840320][T12657] syzkaller0: entered allmulticast mode
[  195.851029][T12657] syzkaller0 (unregistering): left allmulticast mode
[  195.866880][T12654] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.973220][T12666] loop6: detected capacity change from 0 to 164
[  196.065155][T11609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.136928][T12695] syzkaller0: entered allmulticast mode
[  196.138377][T12693] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3255'.
[  196.156339][T12695] syzkaller0 (unregistering): left allmulticast mode
[  196.166383][T12697] loop5: detected capacity change from 0 to 164
[  196.175599][T12698] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3253'.
[  196.213800][T12699] loop6: detected capacity change from 0 to 2048
[  196.241911][T12699] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.381474][T11311] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.469319][T12732] loop6: detected capacity change from 0 to 512
[  196.485141][T12732] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.514232][T12732] ext4 filesystem being mounted at /85/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  196.559045][T12715] chnl_net:caif_netlink_parms(): no params data found
[  196.585471][T12746] loop5: detected capacity change from 0 to 1024
[  196.607590][T12747] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3272'.
[  196.644028][T12746] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.673777][T12715] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.680905][T12715] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.690244][T12715] bridge_slave_0: entered allmulticast mode
[  196.696779][T12715] bridge_slave_0: entered promiscuous mode
[  196.698379][T12746] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  196.704045][T12715] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.721119][T12715] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.730899][T12757] netlink: 204 bytes leftover after parsing attributes in process `syz.4.3278'.
[  196.733226][T11311] EXT4-fs error (device loop6): ext4_lookup:1787: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  196.748595][T12715] bridge_slave_1: entered allmulticast mode
[  196.763120][T12715] bridge_slave_1: entered promiscuous mode
[  196.763531][T11311] EXT4-fs error (device loop6): ext4_lookup:1787: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  196.789970][T12715] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  196.800581][T12715] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  196.858504][T12715] team0: Port device team_slave_0 added
[  196.871137][T12715] team0: Port device team_slave_1 added
[  196.875602][T12489] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.906390][T12715] batman_adv: batadv0: Adding interface: batadv_slave_0
[  196.913531][T12715] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  196.939526][T12715] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  196.952417][T12715] batman_adv: batadv0: Adding interface: batadv_slave_1
[  196.959387][T12715] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  196.985497][T12715] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  197.002458][T12748] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.057243][T12771] loop5: detected capacity change from 0 to 512
[  197.081112][T12771] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  197.097131][T12782] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3289'.
[  197.107253][T12771] EXT4-fs (loop5): orphan cleanup on readonly fs
[  197.128298][T12771] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.3284: Failed to acquire dquot type 1
[  197.151760][T12771] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3284: bg 0: block 40: padding at end of block bitmap is not set
[  197.174850][T12771] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  197.186049][T12771] EXT4-fs (loop5): 1 truncate cleaned up
[  197.192243][T12771] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  197.234246][T12787] loop2: detected capacity change from 0 to 764
[  197.240689][T12789] loop4: detected capacity change from 0 to 1024
[  197.249645][T12787] rock: directory entry would overflow storage
[  197.255877][T12787] rock: sig=0x4f50, size=4, remaining=3
[  197.261545][T12787] iso9660: Corrupted directory entry in block 6 of inode 1792
[  197.271286][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  197.282164][T12789] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.295235][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  197.298346][T12771] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  197.298346][T12771]    program syz.5.3284 not setting count and/or reply_len properly
[  197.326926][   T12] bond0 (unregistering): Released all slaves
[  197.357438][T12789] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  197.357723][T12489] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.407741][T12715] hsr_slave_0: entered promiscuous mode
[  197.418691][T12715] hsr_slave_1: entered promiscuous mode
[  197.431975][T12801] loop5: detected capacity change from 0 to 512
[  197.438099][T12715] debugfs: 'hsr0' already exists in 'hsr'
[  197.444011][T12715] Cannot create hsr debugfs directory
[  197.451954][   T12] hsr_slave_0: left promiscuous mode
[  197.457843][   T12] hsr_slave_1: left promiscuous mode
[  197.463900][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  197.480244][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  197.488702][   T12] batman_adv: batadv0: Removing interface: veth1_vlan
[  197.497794][T12115] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.509577][T12801] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.541289][T12801] ext4 filesystem being mounted at /16/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  197.556022][   T12] team0 (unregistering): Port device team_slave_1 removed
[  197.570016][   T12] team0 (unregistering): Port device team_slave_0 removed
[  197.593282][T12489] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.674554][T12813] loop5: detected capacity change from 0 to 1024
[  197.681891][T12813] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  197.717467][T12813] loop5: detected capacity change from 0 to 1024
[  197.741336][T12813] EXT4-fs: Ignoring removed orlov option
[  197.755538][T12813] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.838469][T12783] chnl_net:caif_netlink_parms(): no params data found
[  197.866326][T12822] loop2: detected capacity change from 0 to 164
[  197.896646][T12783] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.903890][T12783] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.911325][T12783] bridge_slave_0: entered allmulticast mode
[  197.917926][T12783] bridge_slave_0: entered promiscuous mode
[  197.925084][T12783] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.932225][T12783] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.939436][T12783] bridge_slave_1: entered allmulticast mode
[  197.946136][T12783] bridge_slave_1: entered promiscuous mode
[  197.973064][T12783] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  197.983723][T12489] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.983889][T12783] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  198.015134][T12783] team0: Port device team_slave_0 added
[  198.021919][T12783] team0: Port device team_slave_1 added
[  198.039945][T12783] batman_adv: batadv0: Adding interface: batadv_slave_0
[  198.046928][T12783] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  198.072981][T12783] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  198.087492][T12783] batman_adv: batadv0: Adding interface: batadv_slave_1
[  198.094590][T12783] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  198.120563][T12783] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  198.153144][T12783] hsr_slave_0: entered promiscuous mode
[  198.159192][T12783] hsr_slave_1: entered promiscuous mode
[  198.185740][T12715] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  198.202349][T12715] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  198.220818][T12715] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  198.240421][T12715] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  198.319202][T12783] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  198.332366][T12715] 8021q: adding VLAN 0 to HW filter on device bond0
[  198.343470][T12783] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  198.359251][T12783] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  198.371074][T12715] 8021q: adding VLAN 0 to HW filter on device team0
[  198.378816][T12783] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  198.390974][ T2865] bridge0: port 1(bridge_slave_0) entered blocking state
[  198.398119][ T2865] bridge0: port 1(bridge_slave_0) entered forwarding state
[  198.431225][T12715] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  198.441691][T12715] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  198.455454][ T2865] bridge0: port 2(bridge_slave_1) entered blocking state
[  198.462556][ T2865] bridge0: port 2(bridge_slave_1) entered forwarding state
[  198.627081][T12875] loop5: detected capacity change from 0 to 164
[  198.631734][T12877] loop4: detected capacity change from 0 to 1024
[  198.640299][T12877] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  198.680788][   T12] bond0 (unregistering): Released all slaves
[  198.696569][T12877] loop4: detected capacity change from 0 to 1024
[  198.696766][T12715] 8021q: adding VLAN 0 to HW filter on device batadv0
[  198.710349][T12877] EXT4-fs: Ignoring removed orlov option
[  198.724910][T12877] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.750912][T12783] 8021q: adding VLAN 0 to HW filter on device bond0
[  198.771593][   T12] hsr_slave_0: left promiscuous mode
[  198.779935][   T12] hsr_slave_1: left promiscuous mode
[  198.836585][T12888] loop2: detected capacity change from 0 to 1024
[  198.844495][T12888] EXT4-fs: Ignoring removed orlov option
[  198.860708][T12783] 8021q: adding VLAN 0 to HW filter on device team0
[  198.870170][T12888] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.890513][ T2865] bridge0: port 1(bridge_slave_0) entered blocking state
[  198.897689][ T2865] bridge0: port 1(bridge_slave_0) entered forwarding state
[  198.909516][T12893] loop5: detected capacity change from 0 to 1024
[  198.917053][T12888] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.927002][T12893] EXT4-fs: Ignoring removed orlov option
[  198.934896][  T263] bridge0: port 2(bridge_slave_1) entered blocking state
[  198.941988][  T263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  198.953467][T12893] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.966572][T12893] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.006873][T12715] veth0_vlan: entered promiscuous mode
[  199.023751][T12783] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  199.034187][T12783] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  199.046808][T12115] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.083236][T12715] veth1_vlan: entered promiscuous mode
[  199.098656][T12715] veth0_macvtap: entered promiscuous mode
[  199.123193][T12715] veth1_macvtap: entered promiscuous mode
[  199.163294][T12903] bridge_slave_0: left allmulticast mode
[  199.169070][T12903] bridge_slave_0: left promiscuous mode
[  199.174751][T12903] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.193198][T12903] bridge_slave_1: left allmulticast mode
[  199.198873][T12903] bridge_slave_1: left promiscuous mode
[  199.204627][T12903] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.242439][T12903] bond0: (slave bond_slave_0): Releasing backup interface
[  199.277166][T12903] bond0: (slave bond_slave_1): Releasing backup interface
[  199.303987][T12903] team0: Port device team_slave_0 removed
[  199.332401][T12903] team0: Port device team_slave_1 removed
[  199.339196][T12903] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  199.346810][T12903] batman_adv: batadv0: Removing interface: batadv_slave_0
[  199.365642][T12903] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  199.373194][T12903] batman_adv: batadv0: Removing interface: batadv_slave_1
[  199.399169][T12715] batman_adv: batadv0: Interface activated: batadv_slave_0
[  199.412902][T12783] 8021q: adding VLAN 0 to HW filter on device batadv0
[  199.426741][T12909] team0: Mode changed to "loadbalance"
[  199.482490][T12715] batman_adv: batadv0: Interface activated: batadv_slave_1
[  199.502094][   T41] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  199.540125][   T41] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  199.568855][   T29] kauditd_printk_skb: 295 callbacks suppressed
[  199.568938][   T29] audit: type=1326 audit(1756947907.520:4989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.608435][   T41] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  199.620900][   T41] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  199.637173][   T29] audit: type=1326 audit(1756947907.520:4990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.660841][   T29] audit: type=1326 audit(1756947907.520:4991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.684661][   T29] audit: type=1326 audit(1756947907.520:4992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.708542][   T29] audit: type=1326 audit(1756947907.570:4993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.732624][   T29] audit: type=1326 audit(1756947907.570:4994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.756319][   T29] audit: type=1326 audit(1756947907.580:4995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.780048][   T29] audit: type=1326 audit(1756947907.580:4996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.803657][   T29] audit: type=1326 audit(1756947907.580:4997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.827140][   T29] audit: type=1326 audit(1756947907.580:4998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.3.3265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fedf6ebe9 code=0x7ffc0000
[  199.905858][T12783] veth0_vlan: entered promiscuous mode
[  199.915325][T12783] veth1_vlan: entered promiscuous mode
[  199.941893][T12933] bridge_slave_0: left allmulticast mode
[  199.945058][T12936] __nla_validate_parse: 13 callbacks suppressed
[  199.945074][T12936] netlink: 204 bytes leftover after parsing attributes in process `syz.2.3325'.
[  199.947559][T12933] bridge_slave_0: left promiscuous mode
[  199.947679][T12933] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.001938][T12933] bridge_slave_1: left allmulticast mode
[  200.007638][T12933] bridge_slave_1: left promiscuous mode
[  200.013574][T12933] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.026759][T12942] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3326'.
[  200.042245][T12944] netlink: 64 bytes leftover after parsing attributes in process `syz.5.3323'.
[  200.045250][T12933] bond0: (slave bond_slave_0): Releasing backup interface
[  200.092351][T12933] bond0: (slave bond_slave_1): Releasing backup interface
[  200.112704][T12949] loop2: detected capacity change from 0 to 1024
[  200.129023][T12933] team0: Port device team_slave_0 removed
[  200.142281][T12949] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.166865][T12933] team0: Port device team_slave_1 removed
[  200.174114][T12933] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  200.174321][T12949] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  200.181984][T12933] batman_adv: batadv0: Removing interface: batadv_slave_0
[  200.203067][T12933] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  200.210704][T12933] batman_adv: batadv0: Removing interface: batadv_slave_1
[  200.241994][T12944] team0: Mode changed to "loadbalance"
[  200.260274][T12783] veth0_macvtap: entered promiscuous mode
[  200.271305][T12783] veth1_macvtap: entered promiscuous mode
[  200.281704][T12783] batman_adv: batadv0: Interface activated: batadv_slave_0
[  200.290397][T12783] batman_adv: batadv0: Interface activated: batadv_slave_1
[  200.310921][T11609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.332127][  T292] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.354082][  T292] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.375367][  T292] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.390699][  T292] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.457370][T12966] netlink: 204 bytes leftover after parsing attributes in process `syz.4.3335'.
[  200.471151][T12965] loop7: detected capacity change from 0 to 512
[  200.484007][T12965] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.508588][T12965] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  200.621248][T12783] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.622192][T12981] syzkaller0: entered promiscuous mode
[  200.635846][T12981] syzkaller0: entered allmulticast mode
[  200.638750][T12975] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3339'.
[  200.772498][T12996] netlink: 204 bytes leftover after parsing attributes in process `syz.2.3348'.
[  200.863124][T13005] netlink: 36 bytes leftover after parsing attributes in process `syz.7.3350'.
[  200.892091][T12998] netlink: 64 bytes leftover after parsing attributes in process `syz.5.3349'.
[  200.901561][T12998] team0: Unable to change to the same mode the team is in
[  201.017447][T13014] syzkaller1: entered promiscuous mode
[  201.023118][T13014] syzkaller1: entered allmulticast mode
[  201.032063][T13015] netlink: 36 bytes leftover after parsing attributes in process `syz.7.3354'.
[  201.075910][T13019] loop7: detected capacity change from 0 to 764
[  201.084505][T13019] rock: directory entry would overflow storage
[  201.091258][T13019] rock: sig=0x4f50, size=4, remaining=3
[  201.096903][T13019] iso9660: Corrupted directory entry in block 6 of inode 1792
[  201.161612][T13027] netlink: 204 bytes leftover after parsing attributes in process `syz.7.3361'.
[  201.207276][T13031] loop7: detected capacity change from 0 to 512
[  201.222654][T13031] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.235888][T13031] ext4 filesystem being mounted at /14/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  201.307946][T13039] loop7: detected capacity change from 0 to 764
[  201.319438][T13039] rock: directory entry would overflow storage
[  201.325761][T13039] rock: sig=0x4f50, size=4, remaining=3
[  201.331573][T13039] iso9660: Corrupted directory entry in block 6 of inode 1792
[  201.434197][T13045] loop7: detected capacity change from 0 to 764
[  201.443667][T13045] rock: directory entry would overflow storage
[  201.450364][T13045] rock: sig=0x4f50, size=4, remaining=3
[  201.456103][T13045] iso9660: Corrupted directory entry in block 6 of inode 1792
[  201.798279][T13069] loop2: detected capacity change from 0 to 764
[  201.806497][T13069] rock: directory entry would overflow storage
[  201.812737][T13069] rock: sig=0x4f50, size=4, remaining=3
[  201.818278][T13069] iso9660: Corrupted directory entry in block 6 of inode 1792
[  201.922828][T13084] team0: Unable to change to the same mode the team is in
[  201.979236][T13085] team0: Unable to change to the same mode the team is in
[  202.272919][T13087] loop4: detected capacity change from 0 to 164
[  202.551771][T13099] loop7: detected capacity change from 0 to 764
[  202.561814][T13099] rock: directory entry would overflow storage
[  202.568023][T13099] rock: sig=0x4f50, size=4, remaining=3
[  202.573740][T13099] iso9660: Corrupted directory entry in block 6 of inode 1792
[  202.602041][T13105] loop7: detected capacity change from 0 to 1024
[  202.608736][T13105] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  202.622304][T13105] loop7: detected capacity change from 0 to 1024
[  202.628850][T13105] EXT4-fs: Ignoring removed orlov option
[  202.926520][T13128] loop7: detected capacity change from 0 to 512
[  202.951578][T13128] ext4 filesystem being mounted at /35/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  203.018294][T13134] syzkaller1: entered promiscuous mode
[  203.023994][T13134] syzkaller1: entered allmulticast mode
[  203.131444][T13136] loop7: detected capacity change from 0 to 764
[  203.140253][T13136] rock: directory entry would overflow storage
[  203.146510][T13136] rock: sig=0x4f50, size=4, remaining=3
[  203.152134][T13136] iso9660: Corrupted directory entry in block 6 of inode 1792
[  203.216162][T13140] bridge_slave_0: left allmulticast mode
[  203.222192][T13140] bridge_slave_0: left promiscuous mode
[  203.227875][T13140] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.242962][T13140] bridge_slave_1: left allmulticast mode
[  203.248656][T13140] bridge_slave_1: left promiscuous mode
[  203.254587][T13140] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.268620][T13140] bond0: (slave bond_slave_0): Releasing backup interface
[  203.282186][T13140] bond0: (slave bond_slave_1): Releasing backup interface
[  203.321499][T13140] team0: Port device team_slave_0 removed
[  203.342509][T13140] team0: Port device team_slave_1 removed
[  203.357853][T13140] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  203.365344][T13140] batman_adv: batadv0: Removing interface: batadv_slave_0
[  203.374338][T13140] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  203.381964][T13140] batman_adv: batadv0: Removing interface: batadv_slave_1
[  203.418914][T13143] team0: Mode changed to "loadbalance"
[  203.616997][T13151] loop5: detected capacity change from 0 to 1024
[  203.636428][T13151] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  203.692899][T13165] loop2: detected capacity change from 0 to 164
[  204.055200][T13197] loop7: detected capacity change from 0 to 164
[  204.064130][T13198] loop4: detected capacity change from 0 to 1024
[  204.114788][T13198] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  204.401210][T13217] syzkaller0: entered promiscuous mode
[  204.406813][T13217] syzkaller0: entered allmulticast mode
[  204.423433][T13218] team0: Unable to change to the same mode the team is in
[  204.656184][T13233] loop5: detected capacity change from 0 to 764
[  204.665628][T13233] rock: directory entry would overflow storage
[  204.672158][T13233] rock: sig=0x4f50, size=4, remaining=3
[  204.672857][T13234] team0: Unable to change to the same mode the team is in
[  204.678024][T13233] iso9660: Corrupted directory entry in block 6 of inode 1792
[  204.705461][T13236] ref_ctr_offset mismatch. inode: 0x78 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  204.723327][   T29] kauditd_printk_skb: 446 callbacks suppressed
[  204.723372][   T29] audit: type=1326 audit(1756947912.680:5445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb57b2ebe9 code=0x7ffc0000
[  204.762854][   T29] audit: type=1326 audit(1756947912.680:5446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb57b2ebe9 code=0x7ffc0000
[  204.786446][   T29] audit: type=1326 audit(1756947912.680:5447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbb57b2ebe9 code=0x7ffc0000
[  204.810084][   T29] audit: type=1326 audit(1756947912.680:5448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb57b2ebe9 code=0x7ffc0000
[  204.819334][T13238] loop5: detected capacity change from 0 to 512
[  204.833656][   T29] audit: type=1326 audit(1756947912.680:5449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbb57b2ebe9 code=0x7ffc0000
[  204.833683][   T29] audit: type=1326 audit(1756947912.680:5450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb57b2ebe9 code=0x7ffc0000
[  204.833740][   T29] audit: type=1326 audit(1756947912.690:5451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbb57b2ebe9 code=0x7ffc0000
[  204.892112][T13238] ext4 filesystem being mounted at /45/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  204.910853][   T29] audit: type=1326 audit(1756947912.710:5452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb57b2ebe9 code=0x7ffc0000
[  204.944605][   T29] audit: type=1326 audit(1756947912.710:5453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb57b2ebe9 code=0x7ffc0000
[  204.968553][   T29] audit: type=1326 audit(1756947912.720:5454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13237 comm="syz.5.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbb57b2d550 code=0x7ffc0000
[  205.036137][T13250] __nla_validate_parse: 23 callbacks suppressed
[  205.036155][T13250] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3451'.
[  205.051446][T13250] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3451'.
[  205.069327][T13250] loop5: detected capacity change from 0 to 1024
[  205.076537][T13250] EXT4-fs: Ignoring removed orlov option
[  205.320501][T13245] loop2: detected capacity change from 0 to 764
[  205.328510][T13245] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  205.433174][T13263] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3457'.
[  205.527289][T13268] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3458'.
[  205.570161][T13269] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3459'.
[  205.759531][T13274] loop2: detected capacity change from 0 to 164
[  205.818446][T13276] loop2: detected capacity change from 0 to 512
[  205.845513][T13276] ext4 filesystem being mounted at /121/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  205.912516][T13281] loop2: detected capacity change from 0 to 1024
[  205.950543][T13281] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  205.992202][T13290] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3468'.
[  206.016934][T13294] loop4: detected capacity change from 0 to 764
[  206.032070][T13294] rock: directory entry would overflow storage
[  206.038338][T13294] rock: sig=0x4f50, size=4, remaining=3
[  206.044013][T13294] iso9660: Corrupted directory entry in block 6 of inode 1792
[  206.105919][T13299] loop5: detected capacity change from 0 to 1024
[  206.113677][T13300] netlink: 36 bytes leftover after parsing attributes in process `syz.7.3470'.
[  206.143797][T13299] EXT4-fs: Ignoring removed bh option
[  206.160763][T13299] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  206.184411][T13304] loop4: detected capacity change from 0 to 164
[  206.201348][T13305] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3472'.
[  206.285870][T13309] loop2: detected capacity change from 0 to 512
[  206.336462][T13309] ext4 filesystem being mounted at /123/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  206.560253][  T263] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.584936][  T263] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.616499][  T263] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.625853][T13324] netlink: 204 bytes leftover after parsing attributes in process `syz.4.3479'.
[  206.670038][  T263] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.728812][T13331] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3482'.
[  206.775623][T13335] loop4: detected capacity change from 0 to 1024
[  206.806708][T13335] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  206.922338][T13343] loop4: detected capacity change from 0 to 164
[  207.346550][T13367] syzkaller0: entered allmulticast mode
[  207.354307][T13367] syzkaller0 (unregistering): left allmulticast mode
[  207.423556][T13374] loop7: detected capacity change from 0 to 2048
[  208.388158][T13414] loop7: detected capacity change from 0 to 1024
[  208.396214][T13414] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  208.429455][T13414] loop7: detected capacity change from 0 to 1024
[  208.442167][T13414] EXT4-fs: Ignoring removed orlov option
[  208.587840][T13436] loop2: detected capacity change from 0 to 1024
[  208.594889][T13436] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  208.610282][T13436] loop2: detected capacity change from 0 to 1024
[  208.617138][T13436] EXT4-fs: Ignoring removed orlov option
[  208.722891][T13417] loop4: detected capacity change from 0 to 764
[  208.732565][T13417] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  208.897192][T13464] loop4: detected capacity change from 0 to 164
[  208.954276][T13466] loop4: detected capacity change from 0 to 1024
[  208.974009][T13466] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  209.008169][T13466] loop4: detected capacity change from 0 to 1024
[  209.022525][T13466] EXT4-fs: Ignoring removed orlov option
[  209.199380][T13466] ==================================================================
[  209.207538][T13466] BUG: KCSAN: data-race in vfs_fsync_range / writeback_single_inode
[  209.215695][T13466] 
[  209.218095][T13466] write to 0xffff88811a455300 of 4 bytes by task 13483 on cpu 1:
[  209.225848][T13466]  writeback_single_inode+0x14a/0x3e0
[  209.231246][T13466]  sync_inode_metadata+0x5b/0x90
[  209.236185][T13466]  generic_buffers_fsync_noflush+0xd9/0x120
[  209.242069][T13466]  ext4_sync_file+0x1ab/0x690
[  209.246751][T13466]  vfs_fsync_range+0x10a/0x130
[  209.251608][T13466]  ext4_buffered_write_iter+0x34f/0x3c0
[  209.257219][T13466]  ext4_file_write_iter+0x383/0xf00
[  209.262434][T13466]  iter_file_splice_write+0x666/0xa60
[  209.267815][T13466]  direct_splice_actor+0x156/0x2a0
[  209.272950][T13466]  splice_direct_to_actor+0x312/0x680
[  209.278318][T13466]  do_splice_direct+0xda/0x150
[  209.283174][T13466]  do_sendfile+0x380/0x650
[  209.287604][T13466]  __x64_sys_sendfile64+0x105/0x150
[  209.292829][T13466]  x64_sys_call+0x2bb0/0x2ff0
[  209.297609][T13466]  do_syscall_64+0xd2/0x200
[  209.302123][T13466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.308016][T13466] 
[  209.310347][T13466] read to 0xffff88811a455300 of 4 bytes by task 13466 on cpu 0:
[  209.317953][T13466]  vfs_fsync_range+0x9b/0x130
[  209.322616][T13466]  ext4_buffered_write_iter+0x34f/0x3c0
[  209.328170][T13466]  ext4_file_write_iter+0x383/0xf00
[  209.333445][T13466]  iter_file_splice_write+0x666/0xa60
[  209.338797][T13466]  direct_splice_actor+0x156/0x2a0
[  209.343898][T13466]  splice_direct_to_actor+0x312/0x680
[  209.349309][T13466]  do_splice_direct+0xda/0x150
[  209.354077][T13466]  do_sendfile+0x380/0x650
[  209.358600][T13466]  __x64_sys_sendfile64+0x105/0x150
[  209.363898][T13466]  x64_sys_call+0x2bb0/0x2ff0
[  209.368580][T13466]  do_syscall_64+0xd2/0x200
[  209.373093][T13466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.379074][T13466] 
[  209.381380][T13466] value changed: 0x00000038 -> 0x00000002
[  209.387192][T13466] 
[  209.389495][T13466] Reported by Kernel Concurrency Sanitizer on:
[  209.395805][T13466] CPU: 0 UID: 0 PID: 13466 Comm: syz.4.3536 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  209.405592][T13466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  209.415802][T13466] ==================================================================