last executing test programs:

7.193811292s ago: executing program 3 (id=1525):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
unshare(0x2040400)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000006c0), 0x48200, 0x0)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000180)='./file2\x00', 0x804800, &(0x7f0000000000)=ANY=[@ANYRES8=0x0, @ANYRESHEX], 0x10, 0x121c, &(0x7f0000001840)="$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")
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x70)
io_uring_setup(0x21dd, &(0x7f00000001c0)={0x0, 0x1fffff, 0x0, 0x2, 0xd5})
r3 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000002040)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
perf_event_open(0x0, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021bc0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000900003808c000080080003400000000280000b807c000180090001006c617374000000006c000280080001400000000508000140000000090c0002"], 0x140}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r2, 0x82307201, &(0x7f0000000200)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_REVISION={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0)

5.509131107s ago: executing program 1 (id=1533):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x18)
r2 = mq_open(&(0x7f0000001880)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\x1c`\xbd\xe1e\x80\x7f\xd2&l0\xc1b\xac\x8b\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL%Jw\x99y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3\x05\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xc8\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xc7\xa7\x82\xb9V}`\xb7\xfc@\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v>\x9b\n0\xb2 h\xad5\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\'/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f9\xce\x1eYV\xa2\xc4\x03PV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x9b\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xc3\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xd1\x06F\xef\xbd\xeb\xf0\'\f\f\x003\xecp\x18\x9e\x1d\xeaH\xdaQ%+\xf4\xae\xab0\b\x17W\xba\xaf4E\xe62\xefm\xdd+\xb2\x1b:\xc0cc\x97\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x97s\x03`\xba\xf1\xdb\x05\xe5C)\x8f\xbchyL1:\xc2\xea\x8a\xfc\tq\xfa\xec&\xc7\xde\xf4\xf2\xb9\xe1\xa1\x80)1\xbe@Bt\xb7\xce\xc9\xee\xa8v\t\xfa,\xa2\x9a\xa3\\\xfbM\xb5\xfd\xa9\xe3\x9f\xf7\x85\x87w\x1d]& 8\xb5\xba\xea\xad\xa9\xd4V\xf1\xe9\xaaT\xc8\xff\xaf\xef\x91\xca\x9c\x80\xbeYd]\xfb\x1a\x96?\xb6\xd7{X\xa1H\xeb\xce\xd7\xb7\xf7\x15\xd6\x88\x91\xef{\xf8K@\xb6ch\x1e\x16\xd5m@\xa8\x91\xa5\xc5@\xa7\x00\xab\xc5\xc8\xc8\x9c\xe3:\xac\x1eG\xa0e\'/\x15G\x8e\xe5\x16\xd5S ]\xf8\xa1\xa46\x9a\xf0d!\xc8\x81S\xbc\x18\xdf\xa0\xfek\xb0(\xf7\xba5\x8e\xe5A\xd5l\xfbp\xcb\xa8\xf0b\x91\xc4\xd3+)Sy\x81\xe3\r%C\x03enM\xf1\xdf\xe3b\xb7\x9b\f\x82\xb1z\xcf^\x06\xcd\xa2\x96\xe3\xd5\xbd@1\xbe\x02\xad\\\x89\xd0\xe0\xa8\x11\xb4B\\\x14\\\xed5\x9c\xd7n\x8d\xec\xb5\xcc\xf8q\x00'/1189, 0x42, 0x4, 0x0)
mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r2, 0x0, 0x0, 0xa, 0x0)
mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000818", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r4}, 0x10)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r6 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x1, 0x1)
fchdir(r7)
openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x33)
close_range(r5, 0xffffffffffffffff, 0x0)

5.368020515s ago: executing program 1 (id=1535):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='io_uring_req_failed\x00', r0, 0x0, 0xfffffffffffffffe}, 0x18)
prctl$PR_SET_NAME(0xf, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, 0x0, 0x44800)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$hwrng(0xffffffffffffff9c, 0x0, 0xa00, 0x0)
r2 = syz_io_uring_setup(0x32d6, &(0x7f0000000300)={0x0, 0x10cde9, 0x80, 0x0, 0x116, 0x0, r1}, &(0x7f0000000140)=<r3=>0x0, &(0x7f0000000600)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x59f1, 0x2, 0x8, 0x0, 0xb2)

5.316223001s ago: executing program 3 (id=1537):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xf0b, 0x70bd2a, 0x2001, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x5, 0xd}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xff, 0xec2, 0x5, 0x2, 0x400}, 0x10000, 0x1, 0x7ff, 0x6, 0xe, 0x14, 0x1f, 0x1b, 0x6, 0x2, {0x6, 0x19d, 0xa9, 0x8, 0x7743, 0xfd1}}}}]}, 0x78}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtfilter={0x3c, 0x2c, 0xd37, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r1, {0xe, 0xa}, {}, {0x8, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_IPV4_SRC_MASK={0x31, 0xb, 0xffffffff}]}}]}, 0x3c}}, 0x4000)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4, 0x0, 0x400000}, 0x18)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="440000001000370400000000ffffffff00000000", @ANYRES32=r6, @ANYBLOB="0b12050000000000240012800b00010069703667726500001400028008000100", @ANYRES32=r6], 0x44}, 0x1, 0x0, 0x0, 0x48800}, 0x4000010)
sendmmsg$inet(r5, &(0x7f0000000b00)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @local}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @empty, @multicast1}}}], 0x20}}], 0x1, 0x8000004)

5.117003347s ago: executing program 0 (id=1549):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x3)
socket$netlink(0x10, 0x3, 0x0)
pipe2(&(0x7f0000001440)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r1, 0x0, r0, 0x0, 0x6, 0x0)
fcntl$setpipe(r0, 0x407, 0xb)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b7040000000000008500000001000000"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, 0x1, 0x9, 0x101}, 0x14}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x400, 0x0, 0x8000021e}, &(0x7f00000001c0), &(0x7f0000000040))
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(0xffffffffffffffff, 0x40f9, 0x217, 0xa5, 0x0, 0xf5)

4.844792762s ago: executing program 0 (id=1540):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)
close(r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='sched_switch\x00', r2, 0x0, 0xa}, 0x18)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
recvmmsg(r3, &(0x7f00000061c0)=[{{0x0, 0x0, &(0x7f00000005c0)=[{0x0}], 0x1}, 0xfe}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f00000006c0)=""/217, 0xd9}], 0x1}, 0xff}], 0x2, 0x141, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0x158, 0x11, 0x148, 0x0, 0x0, 0x230, 0x2a8, 0x2a8, 0x230, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @multicast1, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x12, 0x9, 0x5, 0x1, 'netbios-ns\x00', 'syz0\x00', {0x4a7}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288)
r5 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSETAF(r5, 0x5435, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000300)={0x42, 0x80}, 0x0)
timer_create(0x3, 0x0, &(0x7f00000001c0))
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
setrlimit(0xf, &(0x7f00000000c0)={0x0, 0x3})
mlock(&(0x7f0000bff000/0x400000)=nil, 0x400000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000180)=[{0x0}, {0x0}], 0x2}, 0x0, 0x1000})
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e0, &(0x7f0000000700))

4.683040662s ago: executing program 1 (id=1541):
unshare(0x8040480)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x10208}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007ffc)
sendfile(r0, r0, 0x0, 0x800000009)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r3, 0x0, 0x4}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x13)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

4.344563246s ago: executing program 4 (id=1543):
ioprio_get$pid(0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000300)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r5)
getsockname$packet(r5, &(0x7f0000000680)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x1, 0xfff1}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000005880)=@newtfilter={0x34, 0x28, 0x575ac7824d421509, 0x70bd2a, 0x4, {0x0, 0x0, 0x0, r6, {}, {0x1}, {0x4, 0x3d}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}}, 0x40)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r7}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x2, 0xc}, {0x5, 0x1}, {0x6, 0xc}}}, 0x24}}, 0x400c810)

4.260862966s ago: executing program 0 (id=1545):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000353502696a51"], 0x48)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=@newtaction={0x84, 0x30, 0xffff, 0x70bd25, 0x0, {}, [{0xc4}]}, 0x84}, 0x1, 0x0, 0x0, 0x40}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x8)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x8000}, 0x38)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x42, 0x60)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
lseek(r1, 0x5, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
syz_clone(0x60920000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000a00)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x650b9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800004, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x2, 0xc1, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)

4.085797958s ago: executing program 4 (id=1546):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
unshare(0x600)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r4}, 0x18)
unshare(0x62040200)

3.015889445s ago: executing program 4 (id=1547):
pwrite64(0xffffffffffffffff, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
r2 = open_tree(0xffffffffffffff9c, 0x0, 0x80800)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f00000001c0)={0x1, 0x0, 0x0, 0x3f00, 0x3f00, 0x0, 0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000010000)={r3, &(0x7f0000010240)="a793640132", 0x0}, 0x20)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000040)='\x00', &(0x7f00000001c0)='dE\x00', 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000240)={0x3, [0x0, 0x0, 0x0]}, &(0x7f0000000340)=0x10)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x2, 0x7fff8000}]})
close_range(r5, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[], 0x0)
syz_io_uring_setup(0x5f4b, &(0x7f0000000100)={0x0, 0x1568, 0x10000, 0x2, 0x285}, &(0x7f0000000040)=<r6=>0x0, &(0x7f00000000c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000300)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x2, 0xa3d8, &(0x7f00000005c0)=[{&(0x7f0000000240)="5db5bd", 0x3}], 0x10000000000002a8, 0x8, 0x1, {0x2}})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003280)=ANY=[@ANYBLOB="140000001000010000000000000000030000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000020900010073797a30000000000900030073797a3200000000240b0000060a010400000000000000000100000008000b4000000000fc0a048028000180080001006c6f67001c0002800e00024073797a6b616c6c65720000000800054000000008d00a01800e000100696d6d656469617465000000bc0a0280640002804c0002800900020073797a32000000000900020073797a310000000008000180fffffffc0900020073797a31000000000800034000009c920900020073797a300000000008000180ffffffff14000280080003400000000808000180fffffffb0800014000000002080001400000000b500002804b000100fa62d7ba9ceeacf9aa4f832b78f35731f355d63e192a72aef5e68a05d1b806151b6bd1e2d74abafd383790ad363fdc1b7766748630b48f9beefdb33c86d5835a470b5ffd20d7e9006c0102805c00028008000180fffffffe0900020073797a30000000000900020073797a320000000008000180ffffffff0900020073797a320000000008000180fffffffd0900020073797a310000000008000180fffffffc0800034000000e5628000280080003400000000608000340000000070900020073797a320000000008000180fffffffe540002800900020073797a320000000008000180fffffffe0800034000000000080003400000000008000340000000090900020073797a310000000008000180fffffffe080003400000800108000180fffffffd8e000100818ce881ff18470752e86442e8b77ddcfc7a4c87f05cd36147be26c85cc854cc117db1906007a5a8c298f4724c8c743d46ec7f3ba478d9dfb10bbe9e4fdfc2188d62db9bb1364fed383fe0b0c3fbbab83959470cb0ffb14765c32f10b54d99531d04caaf264214997543a1c63637d9a3a20b7ce9312e545626eb375c88462c198f35cf8a11616de4fa0c000098020280eb00010099c8e680eb4d0e7f78e1fb62226ae541d997c8cb51c5ebd0bb7e2730b61310dcd7525807288a7ad8c00f6aa230a1d1b876ddb0e188384e7c79cd8af94a02451a04d8f116bde38077da45650d82bdd1767b03e3f35bc4a5769e659d8cdb6d9d9d717c78b50f6b3ac899b07a9eaf2c989654de7d6609299bad01ca1f3fa8b6229a6c69627a07f627880e902231b20368f3ae64fd12fc37afeb95f14a4dc3d0bc5f6e2afd0fc8ef6982054cffa703ee1376654019ad6d2add9052c5d2f2e0ba3318f931b2c5f2dcce5cbca6093c64d23b64e2f2061da3dd5983644280de22d592b63b5d7f6b571beb005400010041bbc64da6bacaad1bebec23352accccbca40d6ba87943f82df945bf4ccc5250a0c2b2cb13793380f424b280bfb960885af6df4afa26efa8fcd7a1243389ef3fcf1d709f775a9cd1dfb2b84fd03e5d70f800010001950b7c0ec30534e476b721ba6e82d03078fe63b683918ecbbb9c339c8cdd63689339ac43acd5973f4aac8720a98d18e13b98e11e291f3f3621ed29c717639f84bdd28810da6ae30538775f15e00133741e9de3f96f69ab363752fa962b3c71041ba1e463a91d782a968d9febb648b66e71a6827c53b3be014b785f61c4fd46fef00658f64cdd465edb61ba4c5f00849b2935c485da99a38489ecc29837433ac5446c3922d73153fd8fb2368a5ce4201760ca6778f570b7fcb38be633a02d57c5884b6bcbaf3bc28ca7686edb5d59e1b823a8f0f5ff788625995d51c16413783c6290a9714bd4dcbd2a388139f3e46f69916f335c0002800900020073797a3000000000080003400000000908000180000000000900020073797a3000000000080003400000000808000180fffffffd080003400000000408000340fffffff908000180fffffffb0800034000000003a80002801c000280080003400000020008000340fffffff508000340000000001400028008000340000000050800034000000007720001001c2cce526d2ee30fb33f426450278cb35ac06b1cef15fefc26b5c17a8c9251bed316fccb5588f2e071fc355537fcf458cf14217f16ce4c12a4b559f3e807c94c6cc4f418baebc6024b74b9dbc5ef66dbbe91812ea247db80670c101ed494f105ad9c09b4eaf8d5c133b46a311c1a00001c0302802000028008000180fffffffc0900020073797a320000000008000340000000035c00028008000180fffffffc08000180fffffffc08000180fffffffb0900020073797a300000000008000340000000060900020073797a30000000000900020073797a31000000000900020073797a310000000008000180fffffffbf6000100330e5af714359ac9da33381a13071148dbe4293800e6be0290efbb549850cda132ca27a55553fd77c3067504c4596086f4001f53d49e8111395ebccb983c6b04735a58ab2617dfc62123b09c8dc5a47154667414dc28e8369829764b2e3cc23303a882890bad6d3a70d9e15701ec8c4c15a46d38c9ed6bc8658f8a45a02083f563324a27c649bab7cbcb485c289bd8df0a040128df6891ab48095977e0463f8e3ed7ba6df976ee30768954dfeb3f08c942b2c9384aa0b78baf92ecf5e4d73788afb1bc5a8f7c4b454897cd8bcac7f19cdd949fac66756da3b9311e13362eee317df853f6bc7e4638eb145a1484d3780e09b50000c8000100d5c1e4159bf770e02e6e1ebe911d7513709588175328d2e11f2ebf3f6967c49bedcb2a5459a45272bb8084e3bb55ea7a80166d97ec16457ed7d2a834d9aafdb2a54110ddc7975eaeda4f897ec7d533c27df0ce5ff92cfedadc67fff850ee5d07822d72b27af229d17ad2f8d802ae40d98f373e348a04b4f0270c71f82319de3a0331f165204896e0e448cf7ea0f8eb32a312fda6716f72f0234742fe6708ad0adf587ea21d94b8c8f5080028dda1e21d3d9ac82d8edd12941631b72b692ecc262d6ae12393000100c56deda494a09379df59bad8f0f17376b307ce49571034af728b1c4bf694e3b91406b976944238ab36ccaf40e3d92952ba87aa27af6353a82868c9508577a1b6a349fce75b3e4952b04b9527f496b5555e6db110dec07430b01446635eff12f136dbcb54fd4dc90b02e1bc6488ed74efd9eeb1b6de6e2a234f6c323df5c28a0352d03b34ee4f64ab614078125aa3cc0048000280080003400000000c08000340000000010900020073797a310000000008000180fffffffd0800034000008000080003400000dc5b08000180fffffffc08000180fffffffb2c0202804b000100cece2d8ff50c68c1060c2e691ddc50c6d87b46b4e5f6695010163d98bac2d9d7693cff0ec1e2107f58d3c305c78e5a596df92f1dbe80793dce5424be9e7951890023db7d0b9b2700e5000100f46e4b21dd4b92221713eece21b0e3bfb3fe995725eca78713a8d11ac82a6aefeeeab4720bd136479523ccafa34771afedeafc55275842bb7adb37ff3c93b19d9d5139f8b67ee81e380faa9506e6c8e5956cf7efc9828438d340b1bf747ec7f9b12eb2f8c31049c1fc37e8f28812ea0aadd0caa7e32f6bb4b2b7a4473e5fa876c87bf285a503660ea12a0cfff6863a87c64ea83c31e737e278edcad77cb964828c7049d335e25156fd4d1c2faada6a8363794fe487155fbfd7c2e1b8504d4a744357734f51fca0426ffe929280df27411f8a90a067b285e970fa1e403722ae91dd000000f400010073e22ba6603d1c92836887468b100c2dc430efeb2ef19c66bd0582fe94df7b5a20292fdfbd2009980dbf9651685f7713bfb0f42583e452670f29e2cabf848fcdcb7a2067f0b257efd7dc927e540584b08f026e14be231afa797e36410d8ad6cbced8c5d2cce2f5a8b75713e57b3161b5b4ce78f283bf59a04f90bc1c5a4371abed0124c621ecb51b6166ad39f14216c09456232b7ea8dd7058bbbeae8b1c13df7ffa1515a359309683421d783f4fb00547cb06b3f974e65f28397c2c16675436a414b6e28d61800c35bdc05f9837e14491ce0fa7c0fbf6f61dd8f7eceac62373ed913de212a188ad5fa12d0eab8a0b440900010073797a30"], 0xb98}}, 0x2400c004)

2.951269393s ago: executing program 2 (id=1548):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000040)="4f3bf5cb8031e51b257f40", 0x48}], 0x1)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000740)='kfree\x00', r3, 0x0, 0x40008003}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x5c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4000}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x14}]}]}, 0x5c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)

2.921812817s ago: executing program 2 (id=1550):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}, 0x5}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, 0x0}}], 0x1, 0x20080058)
setreuid(0x0, 0xee00)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x8002)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r6, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f6400947e570028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r7)

2.89726997s ago: executing program 4 (id=1551):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000146000/0x1000)=nil, 0x1000, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0xfffffffd, 0x25dfdbfc, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{}, {}]}, [{}, {}, {}, {}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {0x0, 0x20000000, 0x0, 0xffffffff, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {0xfffffffc, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {0x0, 0x4, 0x0, 0x0, 0x0, 0xc759}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x9}, {0x0, 0x0, 0x800000}, {}, {}, {0x0, 0x40}, {}, {}, {0xfffffffe}, {}, {0xd5}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x10}, {0x80000000}, {0x8eb9, 0x0, 0x80000001}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0x4, 0x0, 0x4, 0x0, 0x7ee}, {}, {}, {0x2}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x9}, {}, {}, {}, {}, {0x3}, {}, {0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {0x0, 0x9, 0xfffffffc, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x10}, {}, {}, {}, {0x4}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4, 0x2}, {}, {}, {}, {}, {}, {0x10000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x800000}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {0x10001}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x7, 0x0, 0x0, 0xb}], [{0x3}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {0x1}, {}, {0x0, 0x1}, {0x7}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x2}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000019200)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0xfffffffffffffffe}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x1d, 0x7ffc0001}]})
timer_gettime(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0xffffffffffff8001}, 0x18)
unshare(0x64000600)

2.811998191s ago: executing program 3 (id=1552):
r0 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_PKEY_ENCRYPT(0x19, &(0x7f0000000040)={r0}, 0x0, &(0x7f0000001080), 0x0)
recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0x40000000, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
syz_usb_connect(0x0, 0x553, &(0x7f0000001ac0)=ANY=[], 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x3}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001340)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd2d, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x0, 0x300}, 0x93}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x0, 0x3000000, 0x40000000}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8000, 0x5, 0x3, 0xfffffffc, 0x5}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x800000, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x470a, 0x0, 0x8000000}, {}, {0x2, 0x0, 0x0, 0x0, 0x6, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x1, 0x0, 0xfff}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x20000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x3}, {0x0, 0x8000, 0x0, 0x0, 0x5}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x60569add}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2b25}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff, 0x9}, {0x0, 0x0, 0x0, 0x0, 0xfffff800}, {0x3}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0xfffffffd}, {}, {0x0, 0x9, 0x0, 0xffffffff, 0x0, 0x2}, {}, {0x80}, {0x80}, {0x0, 0x0, 0x0, 0x5, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x2, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x8, 0x0, 0x3}, {}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x8510}, {0xffff}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, {0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x9}, {0x0, 0xfffffffc, 0x200}, {0x0, 0x0, 0x0, 0x200}, {}, {0x4}, {}, {0x0, 0x0, 0x800}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x3, 0xfffffffe, 0x0, 0x0, 0x800}, {0x0, 0x0, 0x0, 0x4, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x1, 0x7}, {0x0, 0xb}, {0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x1}, {}, {0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x56}, {0x0, 0x0, 0x0, 0xec33, 0x0, 0x4}, {}, {0xb, 0x0, 0x0, 0x0, 0x0, 0xfe1}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0xff7ffffc}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {}, {0x0, 0x8, 0x0, 0x0, 0xfffffffe}, {0x4, 0x2, 0x2000000, 0x2, 0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0xe9d, 0x58a}, {0x2}, {0x2, 0x9, 0x20000000}, {0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0xe600, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x7, 0x1}, {0x0, 0x5, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x1, 0xfffffffe}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffb, 0x0, 0x0, 0x0, 0x8000}, {0x6, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffe}, {0x2d, 0x0, 0x10000}, {0x0, 0x0, 0x8000}, {0x0, 0x8000, 0x0, 0xe}, {0x3, 0x0, 0x10000, 0x0, 0xffffffff}, {0x0, 0x80000000, 0x0, 0x7fff800, 0x4}, {0x0, 0x3}, {0xffffffff, 0x0, 0x0, 0x0, 0xd}], [{}, {}, {0x0, 0x1}, {0x1}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {0x2}, {}, {}, {}, {0x0, 0x1}, {}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x5, 0x1}, {0x0, 0x1}, {0x4}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {0x4}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x2}, {0x5}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2, 0x1}, {}, {}, {}, {}, {0x5, 0x1}, {}, {0x1}, {}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
ptrace(0x10, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)

2.701543255s ago: executing program 2 (id=1553):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000007}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x97}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
r1 = syz_clone(0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_pidfd_open(r1, 0x0)
dup(r2)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x44, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x528, 0x0, @perf_bp={0x0, 0x1}, 0x2000, 0x40000000, 0x0, 0x8, 0x103fb, 0x1fc, 0x1ff, 0x0, 0x0, 0x0, 0x400000000000007}, 0x0, 0x1, 0xffffffffffffffff, 0xa)
socket(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
ppoll(&(0x7f0000000300)=[{r4, 0x4236}], 0x1, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300), 0x106, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xfffb, 0x5, @empty, 0xa098}, {0xa, 0x4e21, 0x9, @mcast1, 0x9}, r5, 0x8001}}, 0x48)
writev(r3, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)

2.486833303s ago: executing program 1 (id=1554):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYRES32, @ANYBLOB="000000000000000000a88602de0000"], 0x50)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7e9, &(0x7f00000017c0)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
rt_tgsigqueueinfo(0x0, 0x0, 0x15, &(0x7f0000000000)={0x17, 0x3, 0x80})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(0x0, r2)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x1c, r3, 0xb29, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x2404c044)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=r3], 0x24}, 0x1, 0x0, 0x0, 0x4004084}, 0x4008080)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000f, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r4, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

2.299199457s ago: executing program 2 (id=1555):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
unshare(0x20060400)
socket$inet6_icmp(0xa, 0x2, 0x3a)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x7f}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00'}, 0x18)
r0 = memfd_create(0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000480)="dc", 0x1)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x4, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x4, 0x8001, 0x0, 0xb49, 0x200000000002, 0x5, 0x8, 0x3}, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x47f8, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x2, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)={0x60, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x5}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x60}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

2.102304532s ago: executing program 0 (id=1556):
socket$inet_sctp(0x2, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000080)=r3}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r4, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)

1.767266155s ago: executing program 4 (id=1557):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000006400000181100000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b000000000000000000000000800000000008"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x103, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x1ff, 0x1}, 0x4352, 0x0, 0xfffffffc, 0xb95b5ec032cc8e84, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
request_key(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000140)='\\\\@[*#)\x00', 0xfffffffffffffffe)

1.490771s ago: executing program 3 (id=1558):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001c000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_read_part_table(0x5c2, &(0x7f0000000000)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@multicast1, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x4f}}, {{@in6=@mcast2, 0x404d3, 0x2b}, 0x0, @in=@empty}}, 0xe4)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f8b)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000000)={'\x00', 0xc, 0x2, 0x803fd, 0x1, 0x800})
setsockopt$RXRPC_SECURITY_KEYRING(r3, 0x110, 0x2, &(0x7f0000000600)='trans=fd,', 0x9)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="0203008700"], 0x10}}, 0x0)
sendmsg$key(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/freeze_filesystems', 0x0, 0x3)
fsopen(&(0x7f0000000640)='nfs\x00', 0x36046564dd4b28d8)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="7472776e733d66642c72666483f69a", @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',\x00'])
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=ANY=[@ANYBLOB="b80000001500e99900000000fcdbdf25fc000000000000000000000000000000ac1e000100000000000000010000000000000000000000000a00400000000000cdbb2248fd186034c0c04faae36c87995934d45c3edaae0644d973256c190954e6b840932774dac7f6b728903c2551e3c23b91ee7d70629f81b344b0020f7e8651c58b857f23f5a2aa98deb902f5abdf69248a466a294841ef08f520915652c21f7a851f607d61f755f4e4fcd775ce7579818fee716e4dc7e3c53049c407b4b00ca331523f72f215a6f75e38a7830f0d03b5527c7881ee33e0fbc5c855a1c4da93e16f81088ae8135c6523472d1d70aaa90475cab0fcad82de2dc550428ec8", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="00000000000000000000000000000000a30a000000000000f8ffffffffffffff040000000000000000000000000000000000000000000000000000000000000000000000000000000800"/112], 0xb8}}, 0x0)

1.041561487s ago: executing program 3 (id=1559):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYRES32, @ANYBLOB="000000000000000000a88602de0000"], 0x50)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7e9, &(0x7f00000017c0)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
rt_tgsigqueueinfo(0x0, 0x0, 0x15, &(0x7f0000000000)={0x17, 0x3, 0x80})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(0x0, r2)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x1c, r3, 0xb29, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x2404c044)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=r3], 0x24}, 0x1, 0x0, 0x0, 0x4004084}, 0x4008080)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000), 0x208e24b)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000f, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

1.02193814s ago: executing program 1 (id=1560):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000040)="4f3bf5cb8031e51b257f40", 0x48}], 0x1)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000740)='kfree\x00', r3, 0x0, 0x40008003}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x5c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4000}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x14}]}]}, 0x5c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)

875.866448ms ago: executing program 2 (id=1561):
pwrite64(0xffffffffffffffff, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
r2 = open_tree(0xffffffffffffff9c, 0x0, 0x80800)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f00000001c0)={0x1, 0x0, 0x0, 0x3f00, 0x3f00, 0x0, 0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000010000)={r3, &(0x7f0000010240)="a793640132", 0x0}, 0x20)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000040)='\x00', &(0x7f00000001c0)='dE\x00', 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000240)={0x3, [0x0, 0x0, 0x0]}, &(0x7f0000000340)=0x10)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x2, 0x7fff8000}]})
close_range(r5, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[], 0x0)
syz_io_uring_setup(0x5f4b, &(0x7f0000000100)={0x0, 0x1568, 0x10000, 0x2, 0x285}, &(0x7f0000000040)=<r6=>0x0, &(0x7f00000000c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000300)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x2, 0xa3d8, &(0x7f00000005c0)=[{&(0x7f0000000240)="5db5bd", 0x3}], 0x10000000000002a8, 0x8, 0x1, {0x2}})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003280)=ANY=[@ANYBLOB="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"], 0xb98}}, 0x2400c004)

798.795428ms ago: executing program 4 (id=1562):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1f071f, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, @perf_config_ext={0x1, 0x9}, 0xa022, 0x4005, 0xb, 0x3, 0xfff, 0x20005, 0x8, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000380)=@generic={&(0x7f0000000340)='./file2\x00', 0x0, 0x8}, 0x18)
r0 = io_uring_setup(0x1020, &(0x7f00000000c0)={0x0, 0x6a0d, 0x3000, 0x1, 0x387})
io_uring_register$IORING_REGISTER_RESIZE_RINGS(r0, 0x21, &(0x7f0000000340)={0x0, 0x2fc3f, 0x10, 0x2, 0x377, 0x0, r0}, 0x1)
socket$unix(0x1, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x97a3}, 0x18)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000780)=@newtfilter={0x478, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xfff3}, {}, {0x7, 0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_TBF={0x3c, 0x1, {0x5, 0x8, 0x65, 0x2, 0x4d, {0x1, 0x2, 0x2, 0x3, 0x3, 0x4}, {0x5, 0x1, 0x3, 0xab, 0x0, 0x9}, 0x2, 0x6, 0x8000}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0xfffffff7, 0x5, 0x7, 0x4, 0x2, 0x6, 0x1, 0xfb0, 0x8, 0x3, 0x5, 0x3, 0x0, 0x4, 0x9a, 0x9, 0x7, 0xfff, 0x7, 0x40, 0x5, 0x7fff, 0x9, 0x3, 0x5, 0x7ff, 0x4, 0x2, 0x7, 0x2, 0x83b, 0x2, 0x3b, 0x4, 0x0, 0x4, 0x9, 0xc, 0x1cabbb02, 0x4, 0x4, 0x2, 0x8001, 0x7fff, 0x80000000, 0x10000, 0xffff8906, 0x7fffffff, 0x0, 0x0, 0x9, 0xc0000000, 0x2, 0x6, 0x7f, 0x3, 0x10000, 0x3, 0x1, 0x6, 0x0, 0x1, 0x81, 0xcc2, 0x3800, 0x6, 0x18, 0x0, 0xfffffe00, 0x3, 0x6, 0x4, 0x3, 0x7, 0x1, 0xfffffffc, 0x8e4, 0xf5c1, 0x1, 0x5077, 0x3, 0x5, 0x7fff, 0x2, 0x4, 0x2, 0x3, 0x401, 0x6, 0x40, 0x7, 0x95, 0x5, 0x200, 0x1, 0x2, 0x7ff, 0x4, 0x8, 0xb, 0x0, 0x2, 0x0, 0xd266, 0x4, 0x0, 0x10001, 0x2, 0x101, 0x401, 0x200, 0x6, 0x1, 0x46, 0x8, 0x2, 0xfffffffe, 0x14e, 0x4, 0x3, 0x1, 0x2, 0x94e6, 0xfffffbff, 0xfffffffc, 0x2, 0xfffd, 0xc, 0x4, 0x2, 0x40800000, 0x1f, 0x4, 0xffffffff, 0x800, 0x7, 0x3ff, 0x7ff, 0x101, 0x10, 0x5, 0x374, 0xc2f, 0x3, 0xffffff81, 0xfffffff7, 0x6, 0x8000, 0x8, 0x1, 0x1, 0x200, 0xcae, 0xc64, 0xffff, 0x7fff, 0x5, 0x8, 0x3c0, 0x9, 0x8, 0x6d5, 0xfffffff3, 0x9, 0x476b3752, 0xff, 0x0, 0x9, 0x7ff, 0x4, 0x3, 0x4, 0x7, 0x7249, 0x7, 0xffff8001, 0x95f, 0x8, 0x0, 0x1000, 0x800, 0x0, 0x2, 0xf2, 0x0, 0x3, 0xffff, 0x3, 0x0, 0x8000, 0x9, 0x4, 0xcc6, 0xffe00000, 0x22, 0xd56, 0xfffffff0, 0x3bb8, 0x10, 0x140, 0x81, 0x9, 0x9, 0x2, 0x2, 0x4, 0x3, 0x0, 0x3, 0xf, 0x0, 0xc527, 0x9, 0x8, 0x1, 0xffff86fd, 0x7, 0x2, 0x8, 0x3, 0x9, 0x5, 0x0, 0x4, 0xc12, 0x7f, 0x0, 0x0, 0x80000000, 0x3, 0x7, 0x9, 0x7, 0x9, 0x4, 0x8, 0xc9, 0xaf8, 0x3, 0x80000000, 0xad8c, 0x4, 0x2, 0xea9, 0x9, 0x5, 0x1, 0x7, 0x8, 0x5, 0x10000, 0x3, 0x7fb, 0xdbbb, 0x4, 0x2]}]}]}}]}, 0x478}, 0x1, 0x0, 0x0, 0x20041090}, 0xd0)
close(r1)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
accept(r1, 0x0, 0x0)

484.139938ms ago: executing program 0 (id=1563):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@noblock_validity}, {}, {@sysvgroups}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@grpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xfffffffffbfffff5]}, 0x8, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f0000000700))
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000380), 0x0, 0x0, 0xffffffffffffffff)
keyctl$set_timeout(0xf, r2, 0x7ffe)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
preadv(r3, &(0x7f00000010c0)=[{&(0x7f0000000380)=""/245, 0xf5}], 0x1, 0x40000004, 0x6)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000020500000a3c000000090a010400000000000000000a0000040900010073797a3100000000080005400000002b0900020073797a310000000008000a40ffff"], 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd26, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xfff2}, {0xffff, 0xffff}, {0x5, 0xf}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000740)='\x00')
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

483.697918ms ago: executing program 2 (id=1564):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYRES32, @ANYBLOB="000000000000000000a88602de0000"], 0x50)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7e9, &(0x7f00000017c0)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
rt_tgsigqueueinfo(0x0, 0x0, 0x15, &(0x7f0000000000)={0x17, 0x3, 0x80})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(0x0, r2)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=r3], 0x24}, 0x1, 0x0, 0x0, 0x4004084}, 0x4008080)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000f, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r4, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

214.758133ms ago: executing program 0 (id=1565):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000353502696a51"], 0x48)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=@newtaction={0x84, 0x30, 0xffff, 0x70bd25, 0x0, {}, [{0xc4}]}, 0x84}, 0x1, 0x0, 0x0, 0x40}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x8)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x8000}, 0x38)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x42, 0x60)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
lseek(r1, 0x5, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
syz_clone(0x60920000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000a00)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x650b9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800004, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x2, 0xc1, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)

80.36149ms ago: executing program 1 (id=1566):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000353502696a51"], 0x48)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=@newtaction={0x84, 0x30, 0xffff, 0x70bd25, 0x0, {}, [{0xc4}]}, 0x84}, 0x1, 0x0, 0x0, 0x40}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x8)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x8000}, 0x38)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x42, 0x60)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
lseek(r1, 0x5, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
syz_clone(0x60920000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000a00)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x650b9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800004, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x2, 0xc1, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)

0s ago: executing program 3 (id=1567):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = syz_io_uring_setup(0x7a0a, &(0x7f0000000140)={0x0, 0x3797, 0x40, 0x2, 0x19d}, &(0x7f00000001c0), &(0x7f0000000200))
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000000940)=[{&(0x7f0000000380)=""/76, 0x4c}, {&(0x7f0000000400)=""/103, 0x67}, {&(0x7f0000000240)=""/62, 0x3e}, {&(0x7f0000000600)=""/72, 0x48}, {&(0x7f0000000480)=""/57, 0x39}, {&(0x7f0000000680)=""/119, 0x77}, {&(0x7f0000000880)=""/169, 0xa9}], 0x7)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000100)={[{@mpol={'mpol', 0x3d, {'interleave', '', @val={0x3a, [0x37, 0x2d, 0x4e, 0x3a, 0x30, 0x3a]}}}, 0x4e}]})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x18)
socket$packet(0x11, 0x2, 0x300)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x6a, 0x4)
bind$inet(r3, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
connect$inet(r3, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x81}]}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='bbr', 0x3)
write$binfmt_misc(r3, &(0x7f0000000000)='}', 0x1)
sendto$inet(r3, &(0x7f00000002c0)="01a4acc7cf28ab9f6c7fc745c30bfc165466072a660bbf56352083db9d40454a67f8010000004bd29585885c89773ca3ba28a1e85ffe2a9220e0ecd440e345b745bf2146835ad015c801f95be5b890e44fb3dfbe8e88a1e5176e584c970207f23b0073ca5375abddf56331be396eaa2398ea66b93a74fd4147e826abed1b5d1de578682288c19ac23c1ccc1cdd936d2571c3510b0000000000000000000000000000000000f32bb3874c926a8944caa4677d2eae3bc831e748000000", 0xfffffffffffffe88, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

msg_type=16 sclass=netlink_tcpdiag_socket pid=7434 comm=syz.0.1128
[  181.015839][ T7436] loop2: detected capacity change from 0 to 512
[  181.052111][ T7436] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  181.060909][ T7436] EXT4-fs (loop2): orphan cleanup on readonly fs
[  181.106992][ T7436] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #16: comm syz.2.1129: corrupted inode contents
[  181.107647][ T7436] EXT4-fs (loop2): Remounting filesystem read-only
[  181.135970][ T7436] EXT4-fs (loop2): 1 truncate cleaned up
[  181.143828][   T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  181.154509][   T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  181.185846][   T12] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  181.186399][ T7436] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-0000002a0000 ro without journal. Quota mode: writeback.
[  181.247391][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-0000002a0000.
[  181.491215][ T7461] loop4: detected capacity change from 0 to 2048
[  181.677709][ T7461] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  181.762627][ T7464] loop3: detected capacity change from 0 to 1024
[  181.778631][ T7467] loop1: detected capacity change from 0 to 512
[  182.004672][ T6896] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  182.029316][ T7467] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  182.042074][ T7467] EXT4-fs (loop1): orphan cleanup on readonly fs
[  182.051978][ T7464] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  182.066904][ T7467] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.1142: corrupted inode contents
[  182.069465][ T6896] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1252 with error 28
[  182.091404][ T6896] EXT4-fs (loop4): This should not happen!! Data will be lost
[  182.091404][ T6896] 
[  182.101109][ T6896] EXT4-fs (loop4): Total free blocks count 0
[  182.107250][ T6896] EXT4-fs (loop4): Free/Dirty block details
[  182.113228][ T6896] EXT4-fs (loop4): free_blocks=2415919104
[  182.118974][ T6896] EXT4-fs (loop4): dirty_blocks=1264
[  182.124376][ T6896] EXT4-fs (loop4): Block reservation details
[  182.130378][ T6896] EXT4-fs (loop4): i_reserved_data_blocks=79
[  182.136714][ T7464] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.163278][ T7467] EXT4-fs (loop1): Remounting filesystem read-only
[  182.190398][ T7467] EXT4-fs (loop1): 1 truncate cleaned up
[  182.196241][ T6862] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  182.206928][ T6862] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  182.231285][ T6896] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1252 with max blocks 452 with error 28
[  182.244412][ T7478] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1141: bg 0: block 112: padding at end of block bitmap is not set
[  182.262197][ T7478] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 1 with error 117
[  182.274697][ T7478] EXT4-fs (loop3): This should not happen!! Data will be lost
[  182.274697][ T7478] 
[  182.284161][ T6862] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  182.296531][ T7467] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  182.414564][ T7481] __nla_validate_parse: 3 callbacks suppressed
[  182.414583][ T7481] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1144'.
[  182.450242][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.492206][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  182.524215][ T7486] netlink: 'syz.1.1145': attribute type 4 has an invalid length.
[  182.532014][ T7486] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1145'.
[  182.553923][ T7486] .`: renamed from $H�
[  182.602559][ T7490] netlink: 'syz.3.1146': attribute type 3 has an invalid length.
[  182.610461][ T7490] netlink: 'syz.3.1146': attribute type 1 has an invalid length.
[  182.618256][ T7490] netlink: 181400 bytes leftover after parsing attributes in process `syz.3.1146'.
[  182.827376][ T7509] netlink: 'syz.4.1155': attribute type 3 has an invalid length.
[  182.835885][ T7509] netlink: 'syz.4.1155': attribute type 1 has an invalid length.
[  182.843693][ T7509] netlink: 181400 bytes leftover after parsing attributes in process `syz.4.1155'.
[  182.912327][ T7508] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1154'.
[  182.947479][ T7513] loop2: detected capacity change from 0 to 512
[  182.986286][ T7515] loop4: detected capacity change from 0 to 128
[  182.994307][ T7513] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  183.006216][ T7513] EXT4-fs (loop2): orphan cleanup on readonly fs
[  183.053975][ T7515] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  183.066822][ T7515] ext4 filesystem being mounted at /216/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.079856][ T7513] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #16: comm syz.2.1156: corrupted inode contents
[  183.106705][ T7513] EXT4-fs (loop2): Remounting filesystem read-only
[  183.113494][ T7513] EXT4-fs (loop2): 1 truncate cleaned up
[  183.119236][ T6896] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  183.129858][ T6896] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  183.140454][ T6896] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  183.152657][ T7513] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  183.202938][ T7515] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1157'.
[  183.230092][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.274121][ T3319] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  183.284890][ T7527] SELinux: syz.2.1160 (7527) set checkreqprot to 1. This is no longer supported.
[  183.313163][ T7530] netlink: 112 bytes leftover after parsing attributes in process `syz.4.1161'.
[  183.408372][ T7537] lo speed is unknown, defaulting to 1000
[  183.543675][ T7545] netlink: 'syz.4.1164': attribute type 3 has an invalid length.
[  183.551504][ T7545] netlink: 'syz.4.1164': attribute type 1 has an invalid length.
[  183.560451][ T7545] netlink: 181400 bytes leftover after parsing attributes in process `syz.4.1164'.
[  183.701143][ T7554] loop3: detected capacity change from 0 to 512
[  183.730773][ T7557] netlink: 'syz.2.1167': attribute type 3 has an invalid length.
[  183.738617][ T7557] netlink: 'syz.2.1167': attribute type 1 has an invalid length.
[  183.742948][ T7554] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.746402][ T7557] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.1167'.
[  183.783374][ T7554] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.857916][ T7553] loop4: detected capacity change from 0 to 2048
[  183.898883][ T7553] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.942846][ T7553] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  183.958357][ T7553] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  183.970879][ T7553] EXT4-fs (loop4): This should not happen!! Data will be lost
[  183.970879][ T7553] 
[  183.980588][ T7553] EXT4-fs (loop4): Total free blocks count 0
[  183.986688][ T7553] EXT4-fs (loop4): Free/Dirty block details
[  183.992717][ T7553] EXT4-fs (loop4): free_blocks=2415919504
[  183.998659][ T7553] EXT4-fs (loop4): dirty_blocks=48
[  184.003860][ T7553] EXT4-fs (loop4): Block reservation details
[  184.009883][ T7553] EXT4-fs (loop4): i_reserved_data_blocks=3
[  184.017388][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.040286][ T6925] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  184.088032][ T7567] loop3: detected capacity change from 0 to 764
[  184.097303][ T7567] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  184.135220][ T7569] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  184.155954][ T7569] EXT4-fs (loop4): orphan cleanup on readonly fs
[  184.182118][ T7569] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #16: comm syz.4.1171: corrupted inode contents
[  184.196145][ T7569] EXT4-fs (loop4): Remounting filesystem read-only
[  184.202856][ T7569] EXT4-fs (loop4): 1 truncate cleaned up
[  184.208782][ T6925] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  184.219395][ T6925] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  184.230688][ T6925] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  184.316876][ T7569] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  184.375370][ T7587] netlink: 'syz.0.1176': attribute type 3 has an invalid length.
[  184.383219][ T7587] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.1176'.
[  184.544260][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.753084][ T7605] lo speed is unknown, defaulting to 1000
[  184.976736][ T7604] EXT4-fs (loop1): 1 truncate cleaned up
[  185.011109][ T7604] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.279017][ T7610] 8021q: adding VLAN 0 to HW filter on device bond3
[  185.298785][ T7610] bond3: (slave geneve2): making interface the new active one
[  185.308614][ T7610] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  185.317479][ T1575] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  185.334424][ T7604] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1180: bg 0: block 465: padding at end of block bitmap is not set
[  185.352200][ T1575] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  185.451649][ T7613] lo speed is unknown, defaulting to 1000
[  185.456636][ T1575] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  185.478589][ T7604] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 736 with error 28
[  185.491688][ T7604] EXT4-fs (loop1): This should not happen!! Data will be lost
[  185.491688][ T7604] 
[  185.501485][ T7604] EXT4-fs (loop1): Total free blocks count 0
[  185.507540][ T7604] EXT4-fs (loop1): Free/Dirty block details
[  185.514177][ T7604] EXT4-fs (loop1): free_blocks=0
[  185.519196][ T7604] EXT4-fs (loop1): dirty_blocks=740
[  185.524459][ T7604] EXT4-fs (loop1): Block reservation details
[  185.530477][ T7604] EXT4-fs (loop1): i_reserved_data_blocks=740
[  185.544021][ T1575] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  185.564620][   T29] kauditd_printk_skb: 787 callbacks suppressed
[  185.564638][   T29] audit: type=1400 audit(1768574196.529:15308): avc:  denied  { ioctl } for  pid=7615 comm="syz.0.1183" path="socket:[23083]" dev="sockfs" ino=23083 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  185.661278][   T29] audit: type=1326 audit(1768574196.619:15309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556275f749 code=0x7ffc0000
[  185.693223][   T29] audit: type=1326 audit(1768574196.649:15310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  185.716792][   T29] audit: type=1326 audit(1768574196.649:15311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  185.716829][   T29] audit: type=1326 audit(1768574196.649:15312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  185.716929][   T29] audit: type=1326 audit(1768574196.649:15313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  185.716961][   T29] audit: type=1326 audit(1768574196.649:15314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  185.717014][   T29] audit: type=1326 audit(1768574196.649:15315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  185.717040][   T29] audit: type=1326 audit(1768574196.649:15316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7609 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  185.717066][   T29] audit: type=1326 audit(1768574196.649:15317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556275f749 code=0x7ffc0000
[  185.818715][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.139148][ T7644] ip6erspan0: entered promiscuous mode
[  186.408627][ T7658] set_capacity_and_notify: 2 callbacks suppressed
[  186.408646][ T7658] loop1: detected capacity change from 0 to 2048
[  186.484328][ T7658] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  186.667421][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  187.498334][ T7662] syz.0.1195 (7662) used greatest stack depth: 6120 bytes left
[  187.529245][ T7687] loop4: detected capacity change from 0 to 2048
[  187.586030][ T7687] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  187.828637][ T6932] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  187.864705][ T6932] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  187.877269][ T6932] EXT4-fs (loop4): This should not happen!! Data will be lost
[  187.877269][ T6932] 
[  187.887001][ T6932] EXT4-fs (loop4): Total free blocks count 0
[  187.893097][ T6932] EXT4-fs (loop4): Free/Dirty block details
[  187.899133][ T6932] EXT4-fs (loop4): free_blocks=2415919104
[  187.904983][ T6932] EXT4-fs (loop4): dirty_blocks=2912
[  187.910400][ T6932] EXT4-fs (loop4): Block reservation details
[  187.916428][ T6932] EXT4-fs (loop4): i_reserved_data_blocks=182
[  187.958100][ T7713] loop1: detected capacity change from 0 to 128
[  187.969779][ T7711] loop3: detected capacity change from 0 to 512
[  187.996629][ T7711] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  188.005443][ T7711] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  188.022896][ T6932] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 1004 with error 28
[  188.059735][ T7711] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.1211: Allocating blocks 41-42 which overlap fs metadata
[  188.073649][ T7713] SELinux: failed to load policy
[  188.105016][ T7711] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.1211: Failed to acquire dquot type 1
[  188.131479][ T7711] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  188.155035][ T7711] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.1211: corrupted inode contents
[  188.203484][ T7711] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.1211: mark_inode_dirty error
[  188.223566][ T7711] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.1211: corrupted inode contents
[  188.292205][ T7711] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.1211: mark_inode_dirty error
[  188.318078][ T7711] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.1211: corrupted inode contents
[  188.333055][ T7711] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  188.358130][ T7711] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.1211: corrupted inode contents
[  188.391470][ T7711] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.1211: mark_inode_dirty error
[  188.420771][ T7711] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  188.441381][ T7711] EXT4-fs (loop3): 1 truncate cleaned up
[  188.450381][ T7711] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.541147][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.555875][ T7724] loop2: detected capacity change from 0 to 2048
[  188.599173][ T7724] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  188.625861][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  188.640765][ T7732] __nla_validate_parse: 10 callbacks suppressed
[  188.640783][ T7732] netlink: 112 bytes leftover after parsing attributes in process `syz.3.1218'.
[  188.750861][ T7736] loop2: detected capacity change from 0 to 512
[  188.786496][ T7736] EXT4-fs: Ignoring removed nobh option
[  188.796071][ T7734] lo speed is unknown, defaulting to 1000
[  188.895179][ T7736] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.923374][ T7736] ext4 filesystem being mounted at /238/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  188.988790][ T7736] EXT4-fs error (device loop2): ext4_lookup:1785: inode #12: comm syz.2.1220: iget: bad i_size value: 2533274857506816
[  189.021373][ T7745] loop4: detected capacity change from 0 to 1024
[  189.049227][ T7745] EXT4-fs: Ignoring removed nobh option
[  189.054889][ T7745] EXT4-fs: inline encryption not supported
[  189.100669][ T7745] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.154210][ T7745] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.1222: Allocating blocks 385-513 which overlap fs metadata
[  189.201563][ T7751] loop3: detected capacity change from 0 to 512
[  189.235929][ T7751] ------------[ cut here ]------------
[  189.241465][ T7751] EA inode 11 i_nlink=2
[  189.241491][ T7751] WARNING: fs/ext4/xattr.c:1058 at ext4_xattr_inode_update_ref+0x2e6/0x320, CPU#1: syz.3.1223/7751
[  189.257238][ T7751] Modules linked in:
[  189.261197][ T7751] CPU: 1 UID: 0 PID: 7751 Comm: syz.3.1223 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  189.270978][ T7751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  189.281896][ T7751] RIP: 0010:ext4_xattr_inode_update_ref+0x305/0x320
[  189.289119][ T7751] Code: 61 e0 9c ff 4c 8d 2d 2a ee 20 05 49 8d 7e 40 e8 01 6b b8 ff 49 8b 6e 40 4c 89 e7 e8 15 66 b8 ff 41 8b 56 48 4c 89 ef 48 89 ee <67> 48 0f b9 3a e9 2b ff ff ff e8 2c b9 ba 03 66 66 66 2e 0f 1f 84
[  189.309518][ T7751] RSP: 0018:ffffc90002cdf5a0 EFLAGS: 00010246
[  189.315830][ T7751] RAX: ffff888105340a90 RBX: ffff88811adf41a8 RCX: ffffffff81bb209b
[  189.323973][ T7751] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff86dc0eb0
[  189.331994][ T7751] RBP: 000000000000000b R08: 000188811adf415b R09: 0000000000000000
[  189.340795][ T7751] R10: ffffc90002cdf4d0 R11: 0001c90002cdf4d0 R12: ffff88811adf4158
[  189.348878][ T7751] R13: ffffffff86dc0eb0 R14: ffff88811adf4110 R15: 0000000000000001
[  189.356921][ T7751] FS:  00007f55611c76c0(0000) GS:ffff8882aeec3000(0000) knlGS:0000000000000000
[  189.366633][ T7751] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  189.373509][ T7751] CR2: 00007ffe06b44e80 CR3: 0000000158432000 CR4: 00000000003506f0
[  189.381625][ T7751] DR0: fffffffffffffffe DR1: 0000000000000000 DR2: 0000000000000000
[  189.389693][ T7751] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  189.398431][ T7751] Call Trace:
[  189.401800][ T7751]  <TASK>
[  189.404824][ T7751]  ext4_xattr_set_entry+0x77f/0x1020
[  189.410234][ T7751]  ext4_xattr_ibody_set+0x184/0x3c0
[  189.415559][ T7751]  ext4_expand_extra_isize_ea+0xcbb/0x11f0
[  189.421443][ T7751]  __ext4_expand_extra_isize+0x246/0x280
[  189.427181][ T7751]  __ext4_mark_inode_dirty+0x29d/0x3f0
[  189.432772][ T7751]  ext4_evict_inode+0x7c4/0xd40
[  189.438408][ T7751]  ? __pfx_ext4_evict_inode+0x10/0x10
[  189.443925][ T7751]  evict+0x2af/0x510
[  189.447929][ T7751]  ? __dquot_initialize+0x146/0x7c0
[  189.453275][ T7751]  iput+0x4bd/0x650
[  189.457136][ T7751]  ext4_process_orphan+0x1a9/0x1c0
[  189.462299][ T7751]  ext4_orphan_cleanup+0x6a8/0xa00
[  189.468388][ T7751]  ext4_fill_super+0x3411/0x37a0
[  189.473471][ T7751]  ? set_blocksize+0x1a8/0x310
[  189.478321][ T7751]  ? sb_set_blocksize+0xfc/0x170
[  189.483349][ T7751]  ? setup_bdev_super+0x30e/0x370
[  189.488508][ T7751]  ? __pfx_ext4_fill_super+0x10/0x10
[  189.494526][ T7751]  get_tree_bdev_flags+0x291/0x300
[  189.499686][ T7751]  ? __pfx_ext4_fill_super+0x10/0x10
[  189.505119][ T7751]  get_tree_bdev+0x1f/0x30
[  189.509654][ T7751]  ext4_get_tree+0x1c/0x30
[  189.514158][ T7751]  vfs_get_tree+0x57/0x1d0
[  189.518601][ T7751]  do_new_mount+0x24d/0x6a0
[  189.523151][ T7751]  path_mount+0x4ab/0xb80
[  189.528344][ T7751]  ? user_path_at+0xbf/0x130
[  189.533019][ T7751]  __se_sys_mount+0x28c/0x2e0
[  189.537859][ T7751]  __x64_sys_mount+0x67/0x80
[  189.542527][ T7751]  x64_sys_call+0x2cca/0x3000
[  189.547424][ T7751]  do_syscall_64+0xca/0x2b0
[  189.552050][ T7751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.558711][ T7751] RIP: 0033:0x7f5562760eea
[  189.563229][ T7751] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.583042][ T7751] RSP: 002b:00007f55611c6e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  189.592110][ T7751] RAX: ffffffffffffffda RBX: 00007f55611c6ef0 RCX: 00007f5562760eea
[  189.600164][ T7751] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f55611c6eb0
[  189.608217][ T7751] RBP: 0000200000000180 R08: 00007f55611c6ef0 R09: 0000000000800700
[  189.617041][ T7751] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  189.625090][ T7751] R13: 00007f55611c6eb0 R14: 000000000000046f R15: 000000000000002c
[  189.633857][ T7751]  </TASK>
[  189.637128][ T7751] ---[ end trace 0000000000000000 ]---
[  189.724944][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.743599][ T7751] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #18: comm syz.3.1223: iget: bad extra_isize 90 (inode size 256)
[  189.761646][ T7751] EXT4-fs (loop3): Remounting filesystem read-only
[  189.770518][ T7744] EXT4-fs (loop4): pa ffff888107a16b60: logic 16, phys. 129, len 24
[  189.778701][ T7744] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 8
[  189.816948][ T7751] EXT4-fs warning (device loop3): ext4_evict_inode:273: xattr delete (err -30)
[  189.853441][ T7759] syzkaller0: entered promiscuous mode
[  189.872359][ T7751] EXT4-fs (loop3): 1 orphan inode deleted
[  189.895443][ T7759] syzkaller0 (unregistering): left promiscuous mode
[  189.978617][ T7765] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  190.015406][ T7768] loop3: detected capacity change from 0 to 512
[  190.035941][ T7768] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1228: bg 0: block 248: padding at end of block bitmap is not set
[  190.076416][ T7768] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.1228: Failed to acquire dquot type 1
[  190.096102][ T7768] EXT4-fs (loop3): 1 truncate cleaned up
[  190.136144][ T7768] ext4 filesystem being mounted at /249/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.203843][ T7784] loop2: detected capacity change from 0 to 2048
[  190.411315][ T1575] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  190.441050][ T1575] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  190.453657][ T1575] EXT4-fs (loop2): This should not happen!! Data will be lost
[  190.453657][ T1575] 
[  190.463625][ T1575] EXT4-fs (loop2): Total free blocks count 0
[  190.469722][ T1575] EXT4-fs (loop2): Free/Dirty block details
[  190.475790][ T1575] EXT4-fs (loop2): free_blocks=2415919104
[  190.481623][ T1575] EXT4-fs (loop2): dirty_blocks=5136
[  190.486989][ T1575] EXT4-fs (loop2): Block reservation details
[  190.493073][ T1575] EXT4-fs (loop2): i_reserved_data_blocks=321
[  190.502605][ T7795] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1233'.
[  190.569358][ T1575] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  190.582227][ T1575] EXT4-fs (loop2): This should not happen!! Data will be lost
[  190.582227][ T1575] 
[  190.605978][ T7796] lo speed is unknown, defaulting to 1000
[  190.684357][   T29] kauditd_printk_skb: 437 callbacks suppressed
[  190.684373][   T29] audit: type=1326 audit(1768574201.649:15750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  190.746177][   T29] audit: type=1326 audit(1768574201.649:15751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  190.769821][   T29] audit: type=1326 audit(1768574201.649:15752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  190.794110][   T29] audit: type=1326 audit(1768574201.649:15753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  190.817629][   T29] audit: type=1326 audit(1768574201.649:15754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7798 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2684242005 code=0x7ffc0000
[  190.841994][   T29] audit: type=1326 audit(1768574201.689:15755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  190.866268][   T29] audit: type=1326 audit(1768574201.689:15756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  190.889967][   T29] audit: type=1326 audit(1768574201.689:15757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  190.914210][   T29] audit: type=1326 audit(1768574201.689:15758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  190.937872][   T29] audit: type=1326 audit(1768574201.699:15759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.0.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  191.836589][ T7834] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1241'.
[  191.935377][ T7836] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1242'.
[  192.508736][ T7840] loop4: detected capacity change from 0 to 512
[  192.542014][ T7844] netlink: 112 bytes leftover after parsing attributes in process `syz.3.1246'.
[  192.612866][ T7840] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  192.648444][ T7840] EXT4-fs (loop4): orphan cleanup on readonly fs
[  192.686371][ T7840] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #16: comm syz.4.1244: corrupted inode contents
[  192.726936][ T7840] EXT4-fs (loop4): Remounting filesystem read-only
[  192.741296][ T7850] lo speed is unknown, defaulting to 1000
[  192.757583][ T7840] EXT4-fs (loop4): 1 truncate cleaned up
[  192.781595][ T6932] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  192.792996][ T6932] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  192.872078][ T6932] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  192.901297][ T7840] EXT4-fs mount: 7 callbacks suppressed
[  192.901333][ T7840] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  193.163984][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.223472][ T7856] syzkaller0: entered promiscuous mode
[  193.273316][ T7856] syzkaller0 (unregistering): left promiscuous mode
[  193.569886][ T7862] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1251'.
[  193.727982][ T7862] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1251'.
[  193.825101][ T7875] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1253'.
[  194.076612][ T7878] loop3: detected capacity change from 0 to 128
[  194.264733][ T7878] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  194.290341][ T7878] ext4 filesystem being mounted at /254/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.387409][ T7878] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1254'.
[  194.510005][ T3317] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  195.469875][ T7908] loop3: detected capacity change from 0 to 512
[  195.502585][ T7910] loop2: detected capacity change from 0 to 128
[  195.529141][ T7912] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1265'.
[  195.545632][ T7908] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.564836][ T7910] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  195.593746][ T7910] ext4 filesystem being mounted at /244/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.615966][ T7908] ext4 filesystem being mounted at /256/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.624551][ T7918] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1266'.
[  195.635546][ T7918] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1266'.
[  195.709968][   T29] kauditd_printk_skb: 707 callbacks suppressed
[  195.709986][   T29] audit: type=1326 audit(1768574206.669:16461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.2.1264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  195.754126][ T7918] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1266'.
[  195.770145][   T29] audit: type=1326 audit(1768574206.699:16462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.2.1264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7e673cf783 code=0x7ffc0000
[  195.830121][   T29] audit: type=1326 audit(1768574206.789:16463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7919 comm="syz.0.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  195.867784][   T29] audit: type=1326 audit(1768574206.789:16464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7919 comm="syz.0.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  195.879004][ T7922] sch_fq: defrate 4294967295 ignored.
[  195.893486][   T29] audit: type=1326 audit(1768574206.819:16465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7919 comm="syz.0.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  195.920971][   T29] audit: type=1326 audit(1768574206.819:16466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7919 comm="syz.0.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  195.945359][   T29] audit: type=1326 audit(1768574206.819:16467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7919 comm="syz.0.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  195.969060][   T29] audit: type=1326 audit(1768574206.819:16468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7919 comm="syz.0.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  195.993383][   T29] audit: type=1326 audit(1768574206.819:16469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7919 comm="syz.0.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  196.017131][   T29] audit: type=1326 audit(1768574206.819:16470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7919 comm="syz.0.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  196.072256][ T7925] loop4: detected capacity change from 0 to 1024
[  196.282030][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.360966][ T3322] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  196.419846][ T7938] validate_nla: 4 callbacks suppressed
[  196.419865][ T7938] netlink: 'syz.2.1273': attribute type 30 has an invalid length.
[  196.651717][ T7949] netlink: 'syz.2.1277': attribute type 3 has an invalid length.
[  196.659576][ T7949] netlink: 'syz.2.1277': attribute type 1 has an invalid length.
[  196.667418][ T7949] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.1277'.
[  196.689422][ T7951] rdma_rxe: rxe_newlink: failed to add lo
[  197.012624][ T7960] netlink: 112 bytes leftover after parsing attributes in process `syz.4.1282'.
[  197.186136][ T7962] lo speed is unknown, defaulting to 1000
[  197.262581][ T7965] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1281'.
[  197.583297][ T7967] loop3: detected capacity change from 0 to 128
[  197.659923][ T7967] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  197.715032][ T7967] ext4 filesystem being mounted at /260/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.856284][ T7971] loop2: detected capacity change from 0 to 512
[  197.934029][ T7973] syzkaller0: entered promiscuous mode
[  197.934243][ T7971] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.1294: inode has both inline data and extents flags
[  197.960055][ T7971] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.1294: couldn't read orphan inode 15 (err -117)
[  197.972639][ T7971] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.005850][ T7973] syzkaller0 (unregistering): left promiscuous mode
[  198.014188][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.031906][ T7977] netlink: 'syz.1.1285': attribute type 4 has an invalid length.
[  198.047218][ T7979] loop2: detected capacity change from 0 to 128
[  198.118792][ T7982] bio_check_eod: 103 callbacks suppressed
[  198.118811][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.118811][ T7982] loop2: rw=2049, sector=145, nr_sectors = 16 limit=128
[  198.139922][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.139922][ T7982] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[  198.154416][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.154416][ T7982] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[  198.183410][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.183410][ T7982] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[  198.207748][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.207748][ T7982] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[  198.227552][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.227552][ T7982] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[  198.283325][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.283325][ T7982] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[  198.300485][ T7989] netlink: 'syz.4.1288': attribute type 13 has an invalid length.
[  198.348717][ T3317] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  198.364119][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.364119][ T7982] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[  198.396964][ T7989] bridge0: port 3(syz_tun) entered disabled state
[  198.406520][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.406520][ T7982] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[  198.443498][ T7982] syz.2.1286: attempt to access beyond end of device
[  198.443498][ T7982] loop2: rw=2049, sector=297, nr_sectors = 8 limit=128
[  198.497983][ T4090] lo speed is unknown, defaulting to 1000
[  198.503862][ T4090] syz1: Port: 1 Link DOWN
[  198.565177][ T7990] lo speed is unknown, defaulting to 1000
[  198.604890][ T7995] loop3: detected capacity change from 0 to 128
[  198.665559][ T3398] lo speed is unknown, defaulting to 1000
[  198.714827][ T8001] netlink: 'syz.0.1291': attribute type 1 has an invalid length.
[  198.756258][ T8002] loop2: detected capacity change from 0 to 1024
[  198.775428][ T8001] 8021q: adding VLAN 0 to HW filter on device bond1
[  198.858751][ T8001] bond1: (slave geneve2): making interface the new active one
[  198.898107][ T8001] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  198.908945][ T6872] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  198.918982][ T8010] __nla_validate_parse: 2 callbacks suppressed
[  198.918998][ T8010] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1295'.
[  198.938330][ T6872] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  199.175362][ T6872] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  199.203257][ T6872] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  199.256608][ T8010] lo speed is unknown, defaulting to 1000
[  199.674597][ T8029] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.896290][ T8029] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.961631][ T8044] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1305'.
[  200.014089][ T8029] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.076238][ T8046] lo speed is unknown, defaulting to 1000
[  200.085526][ T8029] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.144984][ T6920] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.176906][ T6920] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.205582][ T6920] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.226498][ T6925] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.422285][ T8054] loop2: detected capacity change from 0 to 128
[  200.440485][ T8054] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  200.473782][ T8054] ext4 filesystem being mounted at /255/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.705410][ T8069] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1310'.
[  200.768570][ T8071] loop3: detected capacity change from 0 to 4096
[  200.790384][ T8071] EXT4-fs: Ignoring removed nomblk_io_submit option
[  200.818632][ T8071] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.842824][ T8072] lo speed is unknown, defaulting to 1000
[  200.859185][ T8075] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1312'.
[  200.883285][ T8075] 0��{X��: renamed from gretap0
[  200.892598][   T29] kauditd_printk_skb: 750 callbacks suppressed
[  200.892614][   T29] audit: type=1326 audit(1768574211.849:17221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.2.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f7e673cf807 code=0x7ffc0000
[  200.902366][ T8075] 0��{X��: entered allmulticast mode
[  200.927356][   T29] audit: type=1326 audit(1768574211.889:17222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.2.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  200.951301][   T29] audit: type=1326 audit(1768574211.889:17223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.2.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  200.975639][   T29] audit: type=1326 audit(1768574211.889:17224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.2.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f7e67386bdd code=0x7ffc0000
[  200.999147][   T29] audit: type=1326 audit(1768574211.889:17225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.2.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f7e67403e89 code=0x7ffc0000
[  201.023351][   T29] audit: type=1326 audit(1768574211.889:17226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.2.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f7e67386c47 code=0x7ffc0000
[  201.046880][   T29] audit: type=1326 audit(1768574211.889:17227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.2.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  201.053142][ T8075] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  201.071928][   T29] audit: type=1326 audit(1768574211.889:17228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.2.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  201.111196][   T29] audit: type=1326 audit(1768574211.889:17229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.3.1311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556275f749 code=0x7ffc0000
[  201.135477][   T29] audit: type=1326 audit(1768574211.889:17230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.2.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f7e67386357 code=0x7ffc0000
[  201.303522][ T3322] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  201.374365][ T8088] tipc: Started in network mode
[  201.379467][ T8088] tipc: Node identity f25cd31d240b, cluster identity 4711
[  201.386811][ T8088] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  201.427704][ T8088] syzkaller0: entered promiscuous mode
[  201.433893][ T8088] syzkaller0: entered allmulticast mode
[  201.445689][ T8090] netlink: 'syz.1.1316': attribute type 4 has an invalid length.
[  201.455080][ T8088] tipc: Resetting bearer <eth:syzkaller0>
[  201.460937][ T8088] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  201.470311][ T8087] tipc: Resetting bearer <eth:syzkaller0>
[  201.485402][ T8087] tipc: Disabling bearer <eth:syzkaller0>
[  201.522991][ T8092] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1317'.
[  201.596906][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.654728][ T8096] lo speed is unknown, defaulting to 1000
[  202.134155][ T8112] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  202.327307][ T8108] cgroup: fork rejected by pids controller in /syz2
[  202.692089][ T8150] netlink: 'syz.0.1324': attribute type 3 has an invalid length.
[  202.699914][ T8150] netlink: 'syz.0.1324': attribute type 1 has an invalid length.
[  202.707701][ T8150] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.1324'.
[  202.749628][ T8153] netlink: 112 bytes leftover after parsing attributes in process `syz.4.1326'.
[  202.833532][ T8155] lo speed is unknown, defaulting to 1000
[  203.030623][ T8161] netlink: 'syz.4.1328': attribute type 30 has an invalid length.
[  203.108680][ T8165] loop3: detected capacity change from 0 to 512
[  203.156275][ T8165] EXT4-fs: quotafile must be on filesystem root
[  203.207136][ T8165] netlink: 'syz.3.1330': attribute type 3 has an invalid length.
[  203.215429][ T8165] netlink: 'syz.3.1330': attribute type 3 has an invalid length.
[  203.342625][ T8174] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1334'.
[  203.412848][ T8174] hsr_slave_1: left promiscuous mode
[  203.451467][ T8179] SET target dimension over the limit!
[  203.496468][ T8186] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1338'.
[  203.565580][ T8190] loop3: detected capacity change from 0 to 2048
[  203.586803][ T8193] lo speed is unknown, defaulting to 1000
[  203.597898][ T8190] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  203.625274][ T8180] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1331'.
[  203.914651][   T12] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  203.953096][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  203.966420][   T12] EXT4-fs (loop3): This should not happen!! Data will be lost
[  203.966420][   T12] 
[  203.976286][   T12] EXT4-fs (loop3): Total free blocks count 0
[  203.982326][   T12] EXT4-fs (loop3): Free/Dirty block details
[  203.988351][   T12] EXT4-fs (loop3): free_blocks=2415919104
[  203.994827][   T12] EXT4-fs (loop3): dirty_blocks=2768
[  204.000201][   T12] EXT4-fs (loop3): Block reservation details
[  204.006238][   T12] EXT4-fs (loop3): i_reserved_data_blocks=173
[  204.039174][ T8204] lo speed is unknown, defaulting to 1000
[  204.595710][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 718 with error 28
[  204.908709][ T8220] loop2: detected capacity change from 0 to 128
[  204.947084][ T8220] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  204.969280][ T8226] netlink: 'syz.0.1344': attribute type 30 has an invalid length.
[  205.030765][ T8220] ext4 filesystem being mounted at /262/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.537880][ T8239] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1350'.
[  205.555784][ T8240] loop3: detected capacity change from 0 to 128
[  205.573523][ T8239] hsr_slave_0: left promiscuous mode
[  205.584303][ T8239] hsr_slave_1: left promiscuous mode
[  205.590619][ T8240] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  205.615897][ T8240] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.766737][ T3322] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  205.795568][ T8240] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1351'.
[  205.884169][ T8249] bond4: option resend_igmp: invalid value (1024)
[  205.890784][ T8249] bond4: option resend_igmp: allowed values 0 - 255
[  205.903834][ T3317] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  205.958133][ T8254] loop3: detected capacity change from 0 to 512
[  205.965574][ T8249] bond4 (unregistering): Released all slaves
[  205.984526][ T8254] EXT4-fs warning (device loop3): ext4_xattr_inode_get:560: inode #11: comm syz.3.1355: EA inode hash validation failed
[  206.000803][ T8252] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1353'.
[  206.039471][ T8259] bridge_slave_0 (unregistering): left allmulticast mode
[  206.043765][ T8254] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #15: comm syz.3.1355: corrupted inode contents
[  206.046854][ T8259] bridge_slave_0 (unregistering): left promiscuous mode
[  206.066082][ T8259] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.074011][   T29] kauditd_printk_skb: 691 callbacks suppressed
[  206.074028][   T29] audit: type=1326 audit(1768574217.039:17922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8248 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa016f749 code=0x7ffc0000
[  206.094888][ T8254] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #15: comm syz.3.1355: mark_inode_dirty error
[  206.118700][ T8254] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #15: comm syz.3.1355: corrupted inode contents
[  206.153145][   T29] audit: type=1326 audit(1768574217.079:17923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8248 comm="syz.1.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa016f749 code=0x7ffc0000
[  206.187191][ T8252] lo speed is unknown, defaulting to 1000
[  206.237683][ T8254] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3000: inode #15: comm syz.3.1355: mark_inode_dirty error
[  206.258229][   T29] audit: type=1326 audit(1768574217.149:17924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz.2.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  206.282492][   T29] audit: type=1326 audit(1768574217.149:17925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz.2.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  206.306935][   T29] audit: type=1326 audit(1768574217.149:17926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz.2.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  206.330591][   T29] audit: type=1326 audit(1768574217.149:17927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz.2.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  206.354821][   T29] audit: type=1326 audit(1768574217.149:17928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz.2.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  206.378284][   T29] audit: type=1326 audit(1768574217.149:17930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz.2.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  206.402463][   T29] audit: type=1326 audit(1768574217.149:17931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz.2.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  206.426699][   T29] audit: type=1326 audit(1768574217.149:17932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz.2.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  206.489891][ T8254] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3003: inode #15: comm syz.3.1355: mark inode dirty (error -117)
[  206.513030][ T8254] EXT4-fs warning (device loop3): ext4_evict_inode:273: xattr delete (err -117)
[  206.537086][ T8254] EXT4-fs (loop3): 1 orphan inode deleted
[  206.543479][ T8254] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.568840][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.777163][ T8276] netlink: 'syz.2.1362': attribute type 3 has an invalid length.
[  206.785716][ T8276] netlink: 'syz.2.1362': attribute type 1 has an invalid length.
[  206.793509][ T8276] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.1362'.
[  206.830601][ T8277] loop4: detected capacity change from 0 to 128
[  206.946428][ T8277] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  207.012610][ T8277] ext4 filesystem being mounted at /257/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  207.381149][ T8289] netlink: 332 bytes leftover after parsing attributes in process `syz.0.1365'.
[  207.713590][ T8278] syz.1.1361 (8278) used greatest stack depth: 6008 bytes left
[  208.161054][ T8309] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1371'.
[  208.469180][ T8318] ------------[ cut here ]------------
[  208.474786][ T8318] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0xffffdfcd, 0xffffffffffffdfcc] s64=[0x80000000ffffdfcd, 0x7fffffffffffdfcc] u32=[0xffffdfcd, 0xffffdfcc] s32=[0xffffdfcd, 0xffffdfcc] var_off=(0xffffdfcc, 0xffffffff00000000)
[  208.499373][ T8318] WARNING: kernel/bpf/verifier.c:2748 at reg_bounds_sanity_check+0x15b/0x660, CPU#0: syz.0.1376/8318
[  208.510338][ T8318] Modules linked in:
[  208.514294][ T8318] CPU: 0 UID: 0 PID: 8318 Comm: syz.0.1376 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  208.525665][ T8318] Tainted: [W]=WARN
[  208.529491][ T8318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  208.539676][ T8318] RIP: 0010:reg_bounds_sanity_check+0x27d/0x660
[  208.545989][ T8318] Code: 24 78 4c 8b 44 24 70 4c 8b 4c 24 60 41 ff 74 24 20 41 55 53 ff 74 24 68 ff 74 24 78 ff b4 24 90 00 00 00 ff b4 24 b0 00 00 00 <67> 48 0f b9 3a 48 83 c4 38 4c 8b ac 24 98 00 00 00 49 8d 85 80 08
[  208.565701][ T8318] RSP: 0018:ffffc90000e6b3a0 EFLAGS: 00010246
[  208.571805][ T8318] RAX: ffff888105340a90 RBX: 00000000ffffdfcc RCX: 00000000ffffdfcd
[  208.579822][ T8318] RDX: ffffffff865fc586 RSI: ffffffff864c68ac RDI: ffffffff86db6d10
[  208.587990][ T8318] RBP: ffff888138bbf270 R08: ffffffffffffdfcc R09: 80000000ffffdfcd
[  208.596059][ T8318] R10: 00000000000000d0 R11: 0000000000000002 R12: ffff888138bbf230
[  208.604069][ T8318] R13: 00000000ffffdfcc R14: ffff888138bbf27c R15: ffff888138bbf268
[  208.612063][ T8318] FS:  00007f2682c6f6c0(0000) GS:ffff8882aedc3000(0000) knlGS:0000000000000000
[  208.621121][ T8318] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  208.627779][ T8318] CR2: 0000200000001000 CR3: 0000000160726000 CR4: 00000000003506f0
[  208.635960][ T8318] DR0: fffffffffffffffe DR1: 0000000000000000 DR2: 0000000000000000
[  208.644050][ T8318] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  208.652157][ T8318] Call Trace:
[  208.655541][ T8318]  <TASK>
[  208.658511][ T8318]  reg_set_min_max+0x1c8/0x260
[  208.663372][ T8318]  check_cond_jmp_op+0x13bd/0x1a80
[  208.668582][ T8318]  do_check+0x3347/0x81f0
[  208.673003][ T8318]  do_check_common+0xccf/0x1300
[  208.677914][ T8318]  bpf_check+0x2f98/0xc860
[  208.682539][ T8318]  ? __alloc_frozen_pages_noprof+0x18f/0x360
[  208.688586][ T8318]  ? alloc_pages_bulk_noprof+0x4b9/0x540
[  208.694340][ T8318]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[  208.700309][ T8318]  ? try_charge_memcg+0x215/0xa10
[  208.705523][ T8318]  ? _find_next_zero_bit+0x64/0xa0
[  208.710818][ T8318]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  208.716966][ T8318]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  208.723127][ T8318]  ? css_rstat_updated+0xbb/0x280
[  208.728244][ T8318]  ? mod_memcg_state+0x182/0x270
[  208.733233][ T8318]  ? __rcu_read_unlock+0x4f/0x70
[  208.738207][ T8318]  ? pcpu_memcg_post_alloc_hook+0xec/0x170
[  208.744122][ T8318]  ? bpf_prog_alloc+0x5b/0x150
[  208.748940][ T8318]  ? pcpu_alloc_noprof+0xd0d/0x1240
[  208.754190][ T8318]  ? should_fail_ex+0x30/0x280
[  208.759042][ T8318]  ? __kmalloc_noprof+0x2b4/0x5a0
[  208.764200][ T8318]  ? security_bpf_prog_load+0x60/0x140
[  208.769706][ T8318]  ? selinux_bpf_prog_load+0xad/0xd0
[  208.775085][ T8318]  ? security_bpf_prog_load+0x9e/0x140
[  208.780634][ T8318]  bpf_prog_load+0xf6e/0x1140
[  208.785405][ T8318]  __sys_bpf+0x469/0x7c0
[  208.789685][ T8318]  __x64_sys_bpf+0x41/0x50
[  208.794185][ T8318]  x64_sys_call+0x28e1/0x3000
[  208.798912][ T8318]  do_syscall_64+0xca/0x2b0
[  208.803486][ T8318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.809454][ T8318] RIP: 0033:0x7f268420f749
[  208.813932][ T8318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.833735][ T8318] RSP: 002b:00007f2682c6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  208.842189][ T8318] RAX: ffffffffffffffda RBX: 00007f2684465fa0 RCX: 00007f268420f749
[  208.850382][ T8318] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  208.858432][ T8318] RBP: 00007f2684293f91 R08: 0000000000000000 R09: 0000000000000000
[  208.866490][ T8318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  208.874532][ T8318] R13: 00007f2684466038 R14: 00007f2684465fa0 R15: 00007ffcfaafd928
[  208.882588][ T8318]  </TASK>
[  208.885671][ T8318] ---[ end trace 0000000000000000 ]---
[  208.946195][ T8324] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1375'.
[  209.449303][ T8326] openvswitch: netlink: EtherType 0 is less than min 600
[  209.492452][ T8326] 9p: Unknown access argument 18446744073709551615: -34
[  209.596332][ T8326] block device autoloading is deprecated and will be removed.
[  209.646648][ T8331] loop2: detected capacity change from 0 to 128
[  209.938541][ T8343] netlink: 'syz.2.1383': attribute type 7 has an invalid length.
[  210.005457][ T8346] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1384'.
[  210.210030][ T8352] loop2: detected capacity change from 0 to 128
[  210.259268][ T8352] netlink: 83992 bytes leftover after parsing attributes in process `syz.2.1387'.
[  210.329512][ T8352] netlink: zone id is out of range
[  210.334821][ T8352] netlink: zone id is out of range
[  210.370418][ T8352] netlink: zone id is out of range
[  210.375679][ T8352] netlink: zone id is out of range
[  210.380811][ T8352] netlink: zone id is out of range
[  210.386676][ T8352] netlink: zone id is out of range
[  210.391812][ T8352] netlink: zone id is out of range
[  210.426710][ T8352] netlink: zone id is out of range
[  210.431891][ T8352] netlink: zone id is out of range
[  210.676660][ T8357] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.775491][ T8357] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.835323][ T8357] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.895463][ T8357] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.961159][ T6896] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.984817][ T6896] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  211.006516][ T6896] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  211.033279][ T6896] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  211.060800][ T8364] lo speed is unknown, defaulting to 1000
[  211.094107][ T8368] netlink: 'syz.1.1394': attribute type 3 has an invalid length.
[  211.101944][ T8368] netlink: 'syz.1.1394': attribute type 1 has an invalid length.
[  211.110490][ T8368] netlink: 181400 bytes leftover after parsing attributes in process `syz.1.1394'.
[  211.202296][ T8375] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1393'.
[  211.443733][ T3319] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  211.487851][   T29] kauditd_printk_skb: 499 callbacks suppressed
[  211.487870][   T29] audit: type=1326 audit(1768574222.449:18431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  211.649611][   T29] audit: type=1326 audit(1768574222.479:18432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  211.673260][   T29] audit: type=1326 audit(1768574222.479:18433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  211.696957][   T29] audit: type=1326 audit(1768574222.559:18434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  211.720530][   T29] audit: type=1326 audit(1768574222.559:18435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  211.743977][   T29] audit: type=1326 audit(1768574222.559:18436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  211.767459][   T29] audit: type=1326 audit(1768574222.559:18437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  211.791045][   T29] audit: type=1326 audit(1768574222.559:18438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f85ea4edf90 code=0x7ffc0000
[  211.814710][   T29] audit: type=1326 audit(1768574222.559:18439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  211.838840][   T29] audit: type=1326 audit(1768574222.559:18440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8385 comm="syz.4.1398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  211.875032][ T8389] lo speed is unknown, defaulting to 1000
[  212.006557][ T8376] loop2: detected capacity change from 0 to 512
[  212.096517][ T8376] EXT4-fs warning (device loop2): ext4_xattr_inode_get:560: inode #11: comm syz.2.1395: EA inode hash validation failed
[  212.108371][ T8396] netlink: 144 bytes leftover after parsing attributes in process `syz.4.1399'.
[  212.160303][ T8376] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #15: comm syz.2.1395: corrupted inode contents
[  212.176619][ T8376] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #15: comm syz.2.1395: mark_inode_dirty error
[  212.239051][ T8376] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #15: comm syz.2.1395: corrupted inode contents
[  212.284019][ T8376] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3000: inode #15: comm syz.2.1395: mark_inode_dirty error
[  212.333486][ T8376] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3003: inode #15: comm syz.2.1395: mark inode dirty (error -117)
[  212.354960][ T8376] EXT4-fs warning (device loop2): ext4_evict_inode:273: xattr delete (err -117)
[  212.372409][ T8376] EXT4-fs (loop2): 1 orphan inode deleted
[  212.389637][ T8376] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  212.403398][ T8376] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.456286][ T8403] lo speed is unknown, defaulting to 1000
[  212.585873][ T8407] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1402'.
[  212.719717][ T8408] lo speed is unknown, defaulting to 1000
[  212.851412][ T8416] loop0: detected capacity change from 0 to 128
[  213.044698][ T8422] loop0: detected capacity change from 0 to 1024
[  213.064312][ T8422] EXT4-fs: Ignoring removed bh option
[  213.075838][ T8422] EXT4-fs: inline encryption not supported
[  213.092971][ T8422] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  213.154627][ T8422] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  213.163756][ T8422] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 2: comm syz.0.1407: lblock 2 mapped to illegal pblock 2 (length 1)
[  213.181125][ T8422] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 48: comm syz.0.1407: lblock 0 mapped to illegal pblock 48 (length 1)
[  213.195873][ T8422] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.1407: Failed to acquire dquot type 0
[  213.218986][ T8422] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  213.229675][ T8422] EXT4-fs error (device loop0): ext4_evict_inode:253: inode #11: comm syz.0.1407: mark_inode_dirty error
[  213.241247][ T8422] EXT4-fs warning (device loop0): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  213.253809][ T8422] EXT4-fs (loop0): 1 orphan inode deleted
[  213.265343][ T8422] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.278070][   T53] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  213.322463][   T53] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:4: Failed to release dquot type 0
[  213.360891][ T8422] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.377844][ T8422] EXT4-fs error (device loop0): __ext4_get_inode_loc:4830: comm syz.0.1407: Invalid inode table block 1 in block_group 0
[  213.406258][ T8422] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  213.441619][ T8422] EXT4-fs error (device loop0): ext4_quota_off:7270: inode #3: comm syz.0.1407: mark_inode_dirty error
[  213.470551][ T8432] loop4: detected capacity change from 0 to 2048
[  213.495886][ T8432] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  213.567314][ T8437] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1412'.
[  213.577330][ T8437] tipc: Enabled bearer <eth:ip6_vti0>, priority 10
[  213.679585][ T6862] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  213.701303][ T6862] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 678 with error 28
[  213.714078][ T6862] EXT4-fs (loop4): This should not happen!! Data will be lost
[  213.714078][ T6862] 
[  213.723758][ T6862] EXT4-fs (loop4): Total free blocks count 0
[  213.729813][ T6862] EXT4-fs (loop4): Free/Dirty block details
[  213.735771][ T6862] EXT4-fs (loop4): free_blocks=2415919104
[  213.741582][ T6862] EXT4-fs (loop4): dirty_blocks=688
[  213.746846][ T6862] EXT4-fs (loop4): Block reservation details
[  213.752891][ T6862] EXT4-fs (loop4): i_reserved_data_blocks=43
[  213.997504][ T8453] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1416'.
[  214.010866][ T8455] loop0: detected capacity change from 0 to 128
[  214.092391][ T8456] lo speed is unknown, defaulting to 1000
[  214.364442][ T8455] netlink: 83992 bytes leftover after parsing attributes in process `syz.0.1417'.
[  214.499702][ T8455] net_ratelimit: 42 callbacks suppressed
[  214.499722][ T8455] netlink: zone id is out of range
[  214.511452][ T8455] netlink: zone id is out of range
[  214.576009][ T8455] netlink: zone id is out of range
[  214.581280][ T8455] netlink: zone id is out of range
[  214.586461][ T8455] netlink: zone id is out of range
[  214.591589][ T8455] netlink: zone id is out of range
[  214.596755][ T8455] netlink: zone id is out of range
[  214.602203][ T3398] tipc: Node number set to 564557360
[  214.607670][ T8455] netlink: zone id is out of range
[  214.612804][ T8455] netlink: zone id is out of range
[  214.618000][ T8455] netlink: zone id is out of range
[  214.768329][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  214.891723][ T8467] loop4: detected capacity change from 0 to 128
[  214.957379][ T8473] loop2: detected capacity change from 0 to 2048
[  215.056452][ T8473] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  215.063507][ T8477] loop3: detected capacity change from 0 to 128
[  215.295798][ T8477] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  215.423149][ T8477] ext4 filesystem being mounted at /283/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.545956][ T8484] loop4: detected capacity change from 0 to 2048
[  215.586719][ T8484] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  215.592979][ T8473] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  215.615637][ T8473] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 580 with error 28
[  215.628110][ T8473] EXT4-fs (loop2): This should not happen!! Data will be lost
[  215.628110][ T8473] 
[  215.637816][ T8473] EXT4-fs (loop2): Total free blocks count 0
[  215.643881][ T8473] EXT4-fs (loop2): Free/Dirty block details
[  215.649842][ T8473] EXT4-fs (loop2): free_blocks=2415919104
[  215.655657][ T8473] EXT4-fs (loop2): dirty_blocks=592
[  215.660886][ T8473] EXT4-fs (loop2): Block reservation details
[  215.667014][ T8473] EXT4-fs (loop2): i_reserved_data_blocks=37
[  215.785362][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  215.864896][ T8484] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  215.881857][ T8492] netlink: 'syz.2.1426': attribute type 3 has an invalid length.
[  215.889650][ T8492] netlink: 'syz.2.1426': attribute type 1 has an invalid length.
[  215.897520][ T8492] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.1426'.
[  215.907344][ T8484] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  215.919828][ T8484] EXT4-fs (loop4): This should not happen!! Data will be lost
[  215.919828][ T8484] 
[  215.929505][ T8484] EXT4-fs (loop4): Total free blocks count 0
[  215.935540][ T8484] EXT4-fs (loop4): Free/Dirty block details
[  215.941450][ T8484] EXT4-fs (loop4): free_blocks=2415919104
[  215.947229][ T8484] EXT4-fs (loop4): dirty_blocks=3392
[  215.952573][ T8484] EXT4-fs (loop4): Block reservation details
[  215.958605][ T8484] EXT4-fs (loop4): i_reserved_data_blocks=212
[  216.073003][ T8477] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1423'.
[  216.147220][ T8503] loop2: detected capacity change from 0 to 128
[  216.173802][ T3317] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  216.201986][ T6932] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 3074 with max blocks 314 with error 28
[  216.234726][ T8503] tipc: Cannot configure node identity twice
[  216.499079][ T8511] lo speed is unknown, defaulting to 1000
[  216.895954][ T8514] loop4: detected capacity change from 0 to 2048
[  216.926707][   T29] kauditd_printk_skb: 321 callbacks suppressed
[  216.926726][   T29] audit: type=1400 audit(1768574227.889:18759): avc:  denied  { create } for  pid=8489 comm="syz.0.1436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  216.959894][ T8514] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  217.121066][   T29] audit: type=1400 audit(1768574228.079:18760): avc:  denied  { setopt } for  pid=8489 comm="syz.0.1436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  217.270284][   T29] audit: type=1400 audit(1768574228.229:18761): avc:  denied  { setopt } for  pid=8523 comm="syz.2.1434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  217.393425][ T8531] lo speed is unknown, defaulting to 1000
[  217.653382][ T3319] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  217.664332][ T3319] CPU: 0 UID: 0 PID: 3319 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  217.664363][ T3319] Tainted: [W]=WARN
[  217.664369][ T3319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  217.664412][ T3319] Call Trace:
[  217.664419][ T3319]  <TASK>
[  217.664453][ T3319]  __dump_stack+0x1d/0x30
[  217.664484][ T3319]  dump_stack_lvl+0x95/0xd0
[  217.664512][ T3319]  dump_stack+0x15/0x1b
[  217.664562][ T3319]  dump_header+0x81/0x240
[  217.664655][ T3319]  oom_kill_process+0x295/0x350
[  217.664678][ T3319]  out_of_memory+0x97b/0xb80
[  217.664773][ T3319]  try_charge_memcg+0x610/0xa10
[  217.664824][ T3319]  charge_memcg+0x51/0xc0
[  217.664888][ T3319]  __mem_cgroup_charge+0x28/0xb0
[  217.664929][ T3319]  filemap_add_folio+0x111/0x360
[  217.664974][ T3319]  __filemap_get_folio_mpol+0x326/0x650
[  217.665082][ T3319]  filemap_fault+0x44d/0xb70
[  217.665144][ T3319]  __do_fault+0xbc/0x200
[  217.665176][ T3319]  handle_mm_fault+0xfab/0x2c60
[  217.665222][ T3319]  do_user_addr_fault+0x630/0x1080
[  217.665261][ T3319]  exc_page_fault+0x62/0xa0
[  217.665293][ T3319]  asm_exc_page_fault+0x26/0x30
[  217.665319][ T3319] RIP: 0033:0x7f85ea3c5fd4
[  217.665407][ T3319] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 c8 f7 ea 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d d9 f6 ea 00 48 01 d1
[  217.665429][ T3319] RSP: 002b:00007fffce26a480 EFLAGS: 00010202
[  217.665445][ T3319] RAX: 0000001b33f24000 RBX: 000000000000034e RCX: 0000000000034fa8
[  217.665457][ T3319] RDX: 0000000005890c4f RSI: 00007fffce26a510 RDI: 0000000000000001
[  217.665469][ T3319] RBP: 00007fffce26a4bc R08: 00000000151d9c07 R09: 7fffffffffffffff
[  217.665484][ T3319] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[  217.665500][ T3319] R13: 00000000000927c0 R14: 000000000003506f R15: 00007fffce26a510
[  217.665524][ T3319]  </TASK>
[  217.665563][ T3319] memory: usage 307200kB, limit 307200kB, failcnt 630
[  217.834978][   T29] audit: type=1326 audit(1768574228.259:18762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8523 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  217.839831][ T3319] memory+swap: usage 296300kB, limit 9007199254740988kB, failcnt 0
[  217.847647][   T29] audit: type=1326 audit(1768574228.259:18763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8523 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  217.850671][ T3319] kmem: usage 294940kB, limit 9007199254740988kB, failcnt 0
[  217.857589][   T29] audit: type=1326 audit(1768574228.259:18764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8523 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  217.880912][ T3319] Memory cgroup stats for /syz4:
[  217.945245][   T29] audit: type=1326 audit(1768574228.259:18765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8523 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  217.974341][   T29] audit: type=1326 audit(1768574228.269:18766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8523 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  217.998086][   T29] audit: type=1326 audit(1768574228.269:18767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8523 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  218.022377][   T29] audit: type=1326 audit(1768574228.269:18768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8523 comm="syz.2.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7e673c65e7 code=0x7ffc0000
[  218.038885][ T3319] cache 1060864
[  218.049340][ T3319] rss 217088
[  218.052556][ T3319] shmem 1048576
[  218.056093][ T3319] mapped_file 0
[  218.059596][ T3319] dirty 0
[  218.062552][ T3319] writeback 0
[  218.065880][ T3319] workingset_refault_anon 2122
[  218.070702][ T3319] workingset_refault_file 1515
[  218.075509][ T3319] swap 20480
[  218.078725][ T3319] swapcached 0
[  218.082113][ T3319] pgpgin 203676
[  218.085602][ T3319] pgpgout 203364
[  218.089163][ T3319] pgfault 234963
[  218.092737][ T3319] pgmajfault 311
[  218.096342][ T3319] inactive_anon 1261568
[  218.100546][ T3319] active_anon 4096
[  218.104321][ T3319] inactive_file 0
[  218.108020][ T3319] active_file 12288
[  218.111902][ T3319] unevictable 0
[  218.115391][ T3319] hierarchical_memory_limit 314572800
[  218.120817][ T3319] hierarchical_memsw_limit 9223372036854771712
[  218.127025][ T3319] total_cache 1060864
[  218.131039][ T3319] total_rss 217088
[  218.134835][ T3319] total_shmem 1048576
[  218.138829][ T3319] total_mapped_file 0
[  218.142821][ T3319] total_dirty 0
[  218.146334][ T3319] total_writeback 0
[  218.150155][ T3319] total_workingset_refault_anon 2122
[  218.155484][ T3319] total_workingset_refault_file 1515
[  218.160788][ T3319] total_swap 20480
[  218.164558][ T3319] total_swapcached 0
[  218.168473][ T3319] total_pgpgin 203676
[  218.172492][ T3319] total_pgpgout 203364
[  218.176647][ T3319] total_pgfault 234963
[  218.180732][ T3319] total_pgmajfault 311
[  218.184872][ T3319] total_inactive_anon 1261568
[  218.189681][ T3319] total_active_anon 4096
[  218.193966][ T3319] total_inactive_file 0
[  218.198135][ T3319] total_active_file 12288
[  218.202563][ T3319] total_unevictable 0
[  218.206617][ T3319] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1432,pid=8513,uid=0
[  218.221502][ T3319] Memory cgroup out of memory: Killed process 8513 (syz.4.1432) total-vm:94100kB, anon-rss:1244kB, file-rss:22376kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  218.323123][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  218.446829][ T8543] netlink: 'syz.4.1441': attribute type 3 has an invalid length.
[  218.454729][ T8543] netlink: 'syz.4.1441': attribute type 1 has an invalid length.
[  218.462552][ T8543] netlink: 181400 bytes leftover after parsing attributes in process `syz.4.1441'.
[  218.500162][ T8544] loop0: detected capacity change from 0 to 1024
[  218.582641][ T8549] loop2: detected capacity change from 0 to 128
[  218.646532][ T8551] lo speed is unknown, defaulting to 1000
[  219.041200][ T8549] SELinux: failed to load policy
[  219.198527][ T8560] loop3: detected capacity change from 0 to 128
[  219.228644][ T8564] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  219.271889][ T8564] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  219.292587][ T8560] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  219.332388][ T8564] netlink: 'syz.4.1446': attribute type 13 has an invalid length.
[  219.342142][ T8560] ext4 filesystem being mounted at /286/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  219.400149][ T8570] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1448'.
[  219.444469][ T8560] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  219.549472][ T8571] lo speed is unknown, defaulting to 1000
[  219.644947][ T8574] loop0: detected capacity change from 0 to 2048
[  219.674064][ T8574] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  219.956084][ T8583] syz.2.1451 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  219.995510][ T8574] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  220.061940][ T8574] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 310 with max blocks 1396 with error 28
[  220.075271][ T8574] EXT4-fs (loop0): This should not happen!! Data will be lost
[  220.075271][ T8574] 
[  220.085050][ T8574] EXT4-fs (loop0): Total free blocks count 0
[  220.091127][ T8574] EXT4-fs (loop0): Free/Dirty block details
[  220.097145][ T8574] EXT4-fs (loop0): free_blocks=2415919104
[  220.102930][ T8574] EXT4-fs (loop0): dirty_blocks=1712
[  220.108900][ T8574] EXT4-fs (loop0): Block reservation details
[  220.114944][ T8574] EXT4-fs (loop0): i_reserved_data_blocks=107
[  220.134077][   T12] Bluetooth: hci0: Frame reassembly failed (-84)
[  220.177703][ T8593] loop3: detected capacity change from 0 to 128
[  220.274943][ T8593] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  220.287660][ T8593] ext4 filesystem being mounted at /287/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  220.981558][ T8606] loop2: detected capacity change from 0 to 2048
[  221.016711][ T8606] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  221.063317][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  221.166287][ T8610] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1457'.
[  221.450631][ T8606] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  221.492340][ T8606] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  221.504858][ T8606] EXT4-fs (loop2): This should not happen!! Data will be lost
[  221.504858][ T8606] 
[  221.514557][ T8606] EXT4-fs (loop2): Total free blocks count 0
[  221.520562][ T8606] EXT4-fs (loop2): Free/Dirty block details
[  221.526518][ T8606] EXT4-fs (loop2): free_blocks=2415919104
[  221.532255][ T8606] EXT4-fs (loop2): dirty_blocks=2592
[  221.537576][ T8606] EXT4-fs (loop2): Block reservation details
[  221.543594][ T8606] EXT4-fs (loop2): i_reserved_data_blocks=162
[  221.625295][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  221.801077][ T3317] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  221.839581][ T8615] vlan0: entered allmulticast mode
[  221.845592][ T8615] bridge_slave_0: entered allmulticast mode
[  221.997960][   T29] kauditd_printk_skb: 271 callbacks suppressed
[  221.998005][   T29] audit: type=1400 audit(1768574488.960:19040): avc:  denied  { read } for  pid=8623 comm="syz.3.1463" name="usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  222.027768][   T29] audit: type=1400 audit(1768574488.960:19041): avc:  denied  { open } for  pid=8623 comm="syz.3.1463" path="/dev/usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  222.109029][ T8627] netlink: 'syz.3.1463': attribute type 4 has an invalid length.
[  222.268830][ T8629] lo speed is unknown, defaulting to 1000
[  222.468808][ T4268] Bluetooth: hci0: command 0x1003 tx timeout
[  222.475617][ T3760] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  222.803410][ T8632] loop2: detected capacity change from 0 to 2048
[  222.840993][ T8632] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  222.941701][   T29] audit: type=1326 audit(1768574489.900:19042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8636 comm="syz.0.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  222.965734][   T29] audit: type=1326 audit(1768574489.900:19043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8636 comm="syz.0.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  222.989205][   T29] audit: type=1326 audit(1768574489.900:19044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8636 comm="syz.0.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  223.012935][   T29] audit: type=1326 audit(1768574489.900:19045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8636 comm="syz.0.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  223.036439][   T29] audit: type=1326 audit(1768574489.900:19046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8636 comm="syz.0.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  223.059993][   T29] audit: type=1326 audit(1768574489.910:19047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8636 comm="syz.0.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  223.083545][   T29] audit: type=1326 audit(1768574489.910:19048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8636 comm="syz.0.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  223.107059][   T29] audit: type=1326 audit(1768574489.910:19049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8636 comm="syz.0.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268420f749 code=0x7ffc0000
[  223.271655][ T8645] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1467'.
[  223.283981][ T8644] loop4: detected capacity change from 0 to 2048
[  223.681915][ T8635] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  223.722057][ T8644] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  223.790665][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  223.832115][ T8653] lo speed is unknown, defaulting to 1000
[  223.954552][ T8661] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1471'.
[  224.005509][ T8667] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1471'.
[  224.029777][ T8669] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1473'.
[  224.039660][ T8644] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  224.056556][ T8661] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1471'.
[  224.072497][ T8644] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  224.085006][ T8644] EXT4-fs (loop4): This should not happen!! Data will be lost
[  224.085006][ T8644] 
[  224.094710][ T8644] EXT4-fs (loop4): Total free blocks count 0
[  224.100751][ T8644] EXT4-fs (loop4): Free/Dirty block details
[  224.106703][ T8644] EXT4-fs (loop4): free_blocks=2415919104
[  224.112453][ T8644] EXT4-fs (loop4): dirty_blocks=2192
[  224.117914][ T8644] EXT4-fs (loop4): Block reservation details
[  224.123945][ T8644] EXT4-fs (loop4): i_reserved_data_blocks=137
[  224.244598][ T8673] ref_ctr_offset mismatch. inode: 0x650 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x18
[  224.278003][ T8673] loop2: detected capacity change from 0 to 512
[  224.286363][ T8673] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  224.298927][ T8673] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.375051][ T8681] loop2: detected capacity change from 0 to 256
[  224.465188][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  224.480519][ T8682] SELinux: security_context_str_to_sid (-���j9/���g/�U�#_�d�j�,>��Jk`(nLկxz
[  224.480519][ T8682] ��w�^!!"{�4~���F���YE�@ׄ�k[����-8"����`P�����r_>���{��9�Vf��f��g�WNͪ�*ଦz����@�د�fʧH���suħ��K��j̦�"`D(_ґ|�k���酡���M
=�Ϸ�J!�lF�rb;X$G]/�����EU�9��`
[  224.480519][ T8682] �36�*��-u.�+t��,I�Ֆd@Z� ��{����gJf��) failed with errno=-22
[  225.021816][ T8692] loop3: detected capacity change from 0 to 512
[  225.056938][ T8692] EXT4-fs: dax option not supported
[  225.154505][ T8692] loop3: detected capacity change from 0 to 1024
[  225.169960][ T8692] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  225.181626][ T8692] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  225.217638][ T8692] JBD2: no valid journal superblock found
[  225.223584][ T8692] EXT4-fs (loop3): Could not load journal inode
[  225.296587][ T8692] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  225.305468][ T8699] loop0: detected capacity change from 0 to 128
[  225.365136][ T8699] SELinux: failed to load policy
[  225.535466][ T8707] netlink: 144 bytes leftover after parsing attributes in process `syz.4.1486'.
[  225.555499][ T8704] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8704 comm=syz.3.1485
[  225.617249][ T8711] loop0: detected capacity change from 0 to 128
[  225.711936][ T8716] loop4: detected capacity change from 0 to 128
[  225.795244][ T8716] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  225.844814][ T8716] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.381490][ T8726] netlink: 'syz.0.1490': attribute type 3 has an invalid length.
[  226.389385][ T8726] netlink: 'syz.0.1490': attribute type 1 has an invalid length.
[  226.397169][ T8726] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.1490'.
[  226.476037][ T8717] loop3: detected capacity change from 0 to 512
[  226.485820][ T8728] bridge0: port 1(macsec0) entered blocking state
[  226.492342][ T8728] bridge0: port 1(macsec0) entered disabled state
[  226.503839][ T8728] macsec0: entered allmulticast mode
[  226.509206][ T8728] bridge0: entered allmulticast mode
[  226.515282][ T8717] EXT4-fs warning (device loop3): ext4_xattr_inode_get:560: inode #11: comm syz.3.1488: EA inode hash validation failed
[  226.528047][ T8717] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #15: comm syz.3.1488: corrupted inode contents
[  226.540987][ T8717] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #15: comm syz.3.1488: mark_inode_dirty error
[  226.557023][ T3319] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  226.566320][ T8728] macsec0: left allmulticast mode
[  226.571425][ T8728] bridge0: left allmulticast mode
[  226.576881][ T8717] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #15: comm syz.3.1488: corrupted inode contents
[  226.596487][ T8730] loop2: detected capacity change from 0 to 1024
[  226.599165][ T8737] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1494'.
[  226.620219][ T8717] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3000: inode #15: comm syz.3.1488: mark_inode_dirty error
[  226.647217][ T8717] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3003: inode #15: comm syz.3.1488: mark inode dirty (error -117)
[  226.648571][ T8730] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  226.672471][ T8717] EXT4-fs warning (device loop3): ext4_evict_inode:273: xattr delete (err -117)
[  226.679127][ T8744] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1493'.
[  226.690954][ T8730] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.702219][ T8743] rdma_rxe: rxe_newlink: failed to add lo
[  226.702636][ T8717] EXT4-fs (loop3): 1 orphan inode deleted
[  226.724945][ T8737] loop0: detected capacity change from 0 to 2048
[  226.728910][ T8717] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.729996][ T8717] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.764262][ T3901]  loop0: p3 p4 < >
[  226.764356][ T3901] loop0: p3 size 861184 extends beyond EOD, truncated
[  226.770089][ T8737]  loop0: p3 p4 < >
[  226.770208][ T8737] loop0: p3 size 861184 extends beyond EOD, truncated
[  226.776203][ T3007]  loop0: p3 p4 < >
[  226.776400][ T3007] loop0: p3 size 861184 extends beyond EOD, truncated
[  226.919505][ T8750] loop0: detected capacity change from 0 to 512
[  226.938670][ T3901] udevd[3901]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  226.955822][ T8750] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  226.986134][ T3901] udevd[3901]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  226.996912][ T8750] EXT4-fs (loop0): 1 truncate cleaned up
[  227.003069][ T8750] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.016021][   T29] kauditd_printk_skb: 588 callbacks suppressed
[  227.016038][   T29] audit: type=1326 audit(1768574493.980:19638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7e673c65e7 code=0x7ffc0000
[  227.054621][ T4969] udevd[4969]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  227.075186][ T3901] udevd[3901]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  227.091836][   T29] audit: type=1326 audit(1768574494.040:19639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7e6736b829 code=0x7ffc0000
[  227.115552][   T29] audit: type=1326 audit(1768574494.040:19640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7e673c65e7 code=0x7ffc0000
[  227.117272][ T4969] udevd[4969]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  227.138486][   T29] audit: type=1326 audit(1768574494.040:19641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7e6736b829 code=0x7ffc0000
[  227.138519][   T29] audit: type=1326 audit(1768574494.040:19642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  227.138549][   T29] audit: type=1326 audit(1768574494.050:19643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa016f749 code=0x7ffc0000
[  227.138575][   T29] audit: type=1326 audit(1768574494.050:19644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa016f749 code=0x7ffc0000
[  227.243452][   T29] audit: type=1326 audit(1768574494.050:19645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7e673c65e7 code=0x7ffc0000
[  227.266422][   T29] audit: type=1326 audit(1768574494.050:19646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7e6736b829 code=0x7ffc0000
[  227.290228][   T29] audit: type=1326 audit(1768574494.050:19647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  227.330773][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  227.374146][ T8760] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1501'.
[  227.513136][ T8768] lo speed is unknown, defaulting to 1000
[  227.774606][ T8773] loop3: detected capacity change from 0 to 2048
[  227.925959][ T8773] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  227.970991][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.101269][ T8780] loop0: detected capacity change from 0 to 128
[  228.158953][ T8780] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  228.191743][ T8780] ext4 filesystem being mounted at /326/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  228.376066][ T6932] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  228.423268][ T6932] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  228.435786][ T6932] EXT4-fs (loop3): This should not happen!! Data will be lost
[  228.435786][ T6932] 
[  228.445680][ T6932] EXT4-fs (loop3): Total free blocks count 0
[  228.451712][ T6932] EXT4-fs (loop3): Free/Dirty block details
[  228.457663][ T6932] EXT4-fs (loop3): free_blocks=2415919104
[  228.463428][ T6932] EXT4-fs (loop3): dirty_blocks=4304
[  228.468931][ T6932] EXT4-fs (loop3): Block reservation details
[  228.474947][ T6932] EXT4-fs (loop3): i_reserved_data_blocks=269
[  228.562139][ T6932] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2048 with max blocks 2048 with error 28
[  229.052395][ T8794] lo speed is unknown, defaulting to 1000
[  229.104948][ T3323] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  229.673733][ T8810] lo speed is unknown, defaulting to 1000
[  229.870894][ T8809] loop3: detected capacity change from 0 to 2048
[  230.032388][ T8809] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  230.348990][ T6920] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  230.433975][ T6920] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  230.446566][ T6920] EXT4-fs (loop3): This should not happen!! Data will be lost
[  230.446566][ T6920] 
[  230.456393][ T6920] EXT4-fs (loop3): Total free blocks count 0
[  230.462411][ T6920] EXT4-fs (loop3): Free/Dirty block details
[  230.468998][ T6920] EXT4-fs (loop3): free_blocks=2415919104
[  230.474786][ T6920] EXT4-fs (loop3): dirty_blocks=3152
[  230.480099][ T6920] EXT4-fs (loop3): Block reservation details
[  230.486197][ T6920] EXT4-fs (loop3): i_reserved_data_blocks=197
[  230.508415][ T6920] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2048 with max blocks 1094 with error 28
[  230.770395][ T8818] syz.3.1519 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  230.784723][ T8818] CPU: 1 UID: 0 PID: 8818 Comm: syz.3.1519 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  230.784755][ T8818] Tainted: [W]=WARN
[  230.784761][ T8818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  230.784775][ T8818] Call Trace:
[  230.784782][ T8818]  <TASK>
[  230.784792][ T8818]  __dump_stack+0x1d/0x30
[  230.784840][ T8818]  dump_stack_lvl+0x95/0xd0
[  230.784868][ T8818]  dump_stack+0x15/0x1b
[  230.784892][ T8818]  dump_header+0x81/0x240
[  230.784992][ T8818]  oom_kill_process+0x295/0x350
[  230.785021][ T8818]  out_of_memory+0x97b/0xb80
[  230.785052][ T8818]  try_charge_memcg+0x610/0xa10
[  230.785098][ T8818]  obj_cgroup_charge_pages+0xa6/0x150
[  230.785181][ T8818]  __memcg_kmem_charge_page+0x9f/0x170
[  230.785222][ T8818]  __alloc_frozen_pages_noprof+0x18f/0x360
[  230.785267][ T8818]  alloc_pages_bulk_noprof+0x4b9/0x540
[  230.785294][ T8818]  ? policy_nodemask+0x2a5/0x420
[  230.785407][ T8818]  alloc_pages_bulk_mempolicy_noprof+0x2e3/0xb00
[  230.785453][ T8818]  ? alloc_pages_mpol+0x217/0x260
[  230.785498][ T8818]  __vmalloc_node_range_noprof+0x899/0x1310
[  230.785580][ T8818]  __kvmalloc_node_noprof+0x492/0x6b0
[  230.785615][ T8818]  ? ip_set_alloc+0x24/0x30
[  230.785658][ T8818]  ? ip_set_alloc+0x24/0x30
[  230.785731][ T8818]  ip_set_alloc+0x24/0x30
[  230.785826][ T8818]  hash_netiface_create+0x282/0x740
[  230.785950][ T8818]  ? __pfx_hash_netiface_create+0x10/0x10
[  230.786043][ T8818]  ip_set_create+0x3cc/0x970
[  230.786075][ T8818]  ? __mutex_lock_slowpath+0xa/0x10
[  230.786104][ T8818]  nfnetlink_rcv_msg+0x4c6/0x590
[  230.786188][ T8818]  netlink_rcv_skb+0x123/0x220
[  230.786288][ T8818]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  230.786321][ T8818]  nfnetlink_rcv+0x167/0x16c0
[  230.786416][ T8818]  ? kmem_cache_free+0xe3/0x3a0
[  230.786450][ T8818]  ? __kfree_skb+0x109/0x150
[  230.786484][ T8818]  ? nlmon_xmit+0x4f/0x60
[  230.786557][ T8818]  ? consume_skb+0x49/0x150
[  230.786584][ T8818]  ? nlmon_xmit+0x4f/0x60
[  230.786609][ T8818]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  230.786667][ T8818]  ? __dev_queue_xmit+0x13a8/0x1ee0
[  230.786707][ T8818]  ? __dev_queue_xmit+0x148/0x1ee0
[  230.786744][ T8818]  ? ref_tracker_free+0x37d/0x3e0
[  230.786841][ T8818]  ? __netlink_deliver_tap+0x4dc/0x500
[  230.786885][ T8818]  netlink_unicast+0x5c0/0x690
[  230.787055][ T8818]  netlink_sendmsg+0x58b/0x6b0
[  230.787090][ T8818]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.787130][ T8818]  __sock_sendmsg+0x145/0x180
[  230.787173][ T8818]  ____sys_sendmsg+0x31e/0x4a0
[  230.787216][ T8818]  ___sys_sendmsg+0x17b/0x1d0
[  230.787265][ T8818]  __x64_sys_sendmsg+0xd4/0x160
[  230.787348][ T8818]  x64_sys_call+0x17ba/0x3000
[  230.787380][ T8818]  do_syscall_64+0xca/0x2b0
[  230.787422][ T8818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.787490][ T8818] RIP: 0033:0x7f556275f749
[  230.787512][ T8818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.787549][ T8818] RSP: 002b:00007f55611a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  230.787574][ T8818] RAX: ffffffffffffffda RBX: 00007f55629b6090 RCX: 00007f556275f749
[  230.787587][ T8818] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  230.787599][ T8818] RBP: 00007f55627e3f91 R08: 0000000000000000 R09: 0000000000000000
[  230.787611][ T8818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  230.787628][ T8818] R13: 00007f55629b6128 R14: 00007f55629b6090 R15: 00007ffe06b450c8
[  230.787723][ T8818]  </TASK>
[  230.787730][ T8818] memory: usage 307200kB, limit 307200kB, failcnt 2936
[  231.144755][ T8818] memory+swap: usage 307376kB, limit 9007199254740988kB, failcnt 0
[  231.152674][ T8818] kmem: usage 305932kB, limit 9007199254740988kB, failcnt 0
[  231.160704][ T8818] Memory cgroup stats for /syz3:
[  231.244323][ T8818] cache 1064960
[  231.252790][ T8818] rss 221184
[  231.256057][ T8818] shmem 1048576
[  231.259622][ T8818] mapped_file 0
[  231.263106][ T8818] dirty 0
[  231.266181][ T8818] writeback 0
[  231.269496][ T8818] workingset_refault_anon 2176
[  231.275042][ T8818] workingset_refault_file 3318
[  231.279918][ T8818] swap 180224
[  231.283392][ T8818] swapcached 0
[  231.286787][ T8818] pgpgin 289342
[  231.290295][ T8818] pgpgout 289025
[  231.293883][ T8818] pgfault 304799
[  231.297441][ T8818] pgmajfault 353
[  231.301014][ T8818] inactive_anon 57344
[  231.305684][ T8818] active_anon 1212416
[  231.309744][ T8818] inactive_file 0
[  231.313438][ T8818] active_file 28672
[  231.317299][ T8818] unevictable 0
[  231.320773][ T8818] hierarchical_memory_limit 314572800
[  231.326244][ T8818] hierarchical_memsw_limit 9223372036854771712
[  231.332516][ T8818] total_cache 1064960
[  231.337316][ T8818] total_rss 221184
[  231.341054][ T8818] total_shmem 1048576
[  231.345097][ T8818] total_mapped_file 0
[  231.349100][ T8818] total_dirty 0
[  231.352578][ T8818] total_writeback 0
[  231.356485][ T8818] total_workingset_refault_anon 2176
[  231.361788][ T8818] total_workingset_refault_file 3318
[  231.367775][ T8818] total_swap 180224
[  231.371613][ T8818] total_swapcached 0
[  231.375611][ T8818] total_pgpgin 289342
[  231.379605][ T8818] total_pgpgout 289025
[  231.383735][ T8818] total_pgfault 304799
[  231.387809][ T8818] total_pgmajfault 353
[  231.391869][ T8818] total_inactive_anon 57344
[  231.397037][ T8818] total_active_anon 1212416
[  231.401542][ T8818] total_inactive_file 0
[  231.405752][ T8818] total_active_file 28672
[  231.410124][ T8818] total_unevictable 0
[  231.414211][ T8818] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1519,pid=8808,uid=0
[  231.429618][ T8818] Memory cgroup out of memory: Killed process 8808 (syz.3.1519) total-vm:98336kB, anon-rss:1288kB, file-rss:26580kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
[  231.483722][ T8826] futex_wake_op: syz.4.1514 tries to shift op by 32; fix this program
[  231.497308][ T8829] loop2: detected capacity change from 0 to 1024
[  231.507220][ T8829] EXT4-fs: Ignoring removed nomblk_io_submit option
[  231.527225][ T8832] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1524'.
[  231.538678][ T8829] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.545617][ T8832] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1524'.
[  231.581232][ T8832] lo speed is unknown, defaulting to 1000
[  231.649741][ T8842] loop3: detected capacity change from 0 to 1024
[  231.675862][ T8829] netlink: '': attribute type 30 has an invalid length.
[  231.753264][ T8834] lo speed is unknown, defaulting to 1000
[  231.764810][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.805966][ T8846] xt_connbytes: Forcing CT accounting to be enabled
[  231.812627][ T8846] set match dimension is over the limit!
[  231.824982][ T8846] loop2: detected capacity change from 0 to 128
[  232.043222][ T8846] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  232.096992][   T29] kauditd_printk_skb: 464 callbacks suppressed
[  232.097035][   T29] audit: type=1326 audit(1768574499.060:20112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.180795][   T29] audit: type=1326 audit(1768574499.090:20113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.204589][   T29] audit: type=1326 audit(1768574499.090:20114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.228406][   T29] audit: type=1326 audit(1768574499.090:20115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.251960][   T29] audit: type=1326 audit(1768574499.090:20116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.275408][   T29] audit: type=1326 audit(1768574499.090:20117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.298924][   T29] audit: type=1326 audit(1768574499.090:20118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.322612][   T29] audit: type=1326 audit(1768574499.090:20119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.346056][   T29] audit: type=1326 audit(1768574499.090:20120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.369585][   T29] audit: type=1326 audit(1768574499.090:20121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8850 comm="syz.2.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e673cf749 code=0x7ffc0000
[  232.637642][ T8859] SELinux: failed to load policy
[  232.669771][ T8859] lo speed is unknown, defaulting to 1000
[  232.777192][ T8860] loop4: detected capacity change from 0 to 2048
[  232.822921][ T8860] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  232.883638][   T53] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  232.946448][   T53] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 18 with error 28
[  232.958816][   T53] EXT4-fs (loop4): This should not happen!! Data will be lost
[  232.958816][   T53] 
[  232.968534][   T53] EXT4-fs (loop4): Total free blocks count 0
[  232.974552][   T53] EXT4-fs (loop4): Free/Dirty block details
[  232.980626][   T53] EXT4-fs (loop4): free_blocks=2415919104
[  232.986390][   T53] EXT4-fs (loop4): dirty_blocks=32
[  232.991523][   T53] EXT4-fs (loop4): Block reservation details
[  232.997587][   T53] EXT4-fs (loop4): i_reserved_data_blocks=2
[  233.032262][ T8864] loop3: detected capacity change from 0 to 8192
[  233.072277][ T8864] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  233.129481][ T6917] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 18 with max blocks 1552 with error 28
[  233.183071][ T8864] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1525'.
[  233.873230][ T8852] syz.2.1521 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  233.884323][ T8852] CPU: 0 UID: 0 PID: 8852 Comm: syz.2.1521 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  233.884357][ T8852] Tainted: [W]=WARN
[  233.884428][ T8852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  233.884444][ T8852] Call Trace:
[  233.884453][ T8852]  <TASK>
[  233.884463][ T8852]  __dump_stack+0x1d/0x30
[  233.884494][ T8852]  dump_stack_lvl+0x95/0xd0
[  233.884523][ T8852]  dump_stack+0x15/0x1b
[  233.884548][ T8852]  dump_header+0x81/0x240
[  233.884652][ T8852]  oom_kill_process+0x295/0x350
[  233.884683][ T8852]  out_of_memory+0x97b/0xb80
[  233.884709][ T8852]  try_charge_memcg+0x610/0xa10
[  233.884769][ T8852]  charge_memcg+0x51/0xc0
[  233.884827][ T8852]  __mem_cgroup_charge+0x28/0xb0
[  233.884973][ T8852]  filemap_add_folio+0x111/0x360
[  233.884996][ T8852]  __filemap_get_folio_mpol+0x326/0x650
[  233.885080][ T8852]  filemap_fault+0x44d/0xb70
[  233.885139][ T8852]  ? css_rstat_updated+0xbb/0x280
[  233.885256][ T8852]  ? balance_dirty_pages_ratelimited_flags+0x40b/0x5e0
[  233.885372][ T8852]  ? __rcu_read_lock+0x37/0x50
[  233.885400][ T8852]  __do_fault+0xbc/0x200
[  233.885499][ T8852]  handle_mm_fault+0xd9c/0x2c60
[  233.885695][ T8852]  do_user_addr_fault+0x630/0x1080
[  233.885732][ T8852]  exc_page_fault+0x62/0xa0
[  233.885768][ T8852]  asm_exc_page_fault+0x26/0x30
[  233.885868][ T8852] RIP: 0033:0x7f7e672af8c2
[  233.885889][ T8852] Code: 0f 1f 84 00 00 00 00 00 be 08 00 00 00 48 89 df e8 f3 95 fe ff 48 8b 53 38 48 8d 42 f8 48 89 43 38 8b 43 28 83 c0 08 89 43 28 <4c> 89 62 f8 41 8d 56 01 41 39 ee 0f 83 8d 00 00 00 41 89 d6 48 8b
[  233.885927][ T8852] RSP: 002b:00007ffcadcf6610 EFLAGS: 00010202
[  233.885942][ T8852] RAX: 0000000000015008 RBX: 00007f7e68155720 RCX: 0000000000000000
[  233.885953][ T8852] RDX: 0000001b3430f000 RSI: 0000000000000008 RDI: 00007f7e68155720
[  233.885965][ T8852] RBP: 00000000000005cc R08: 00007f7e66e37070 R09: 00007f7e67612000
[  233.886026][ T8852] R10: 00007f7e66e37008 R11: 0000000000000007 R12: ffffffff81fba981
[  233.886042][ T8852] R13: 00007f7e67626038 R14: 0000000000000117 R15: fffffffffffeb000
[  233.886059][ T8852]  ? ref_tracker_alloc+0x61/0x2f0
[  233.886094][ T8852]  </TASK>
[  233.886100][ T8852] memory: usage 307200kB, limit 307200kB, failcnt 4475
[  234.099773][ T8852] memory+swap: usage 307536kB, limit 9007199254740988kB, failcnt 0
[  234.107716][ T8852] kmem: usage 304292kB, limit 9007199254740988kB, failcnt 0
[  234.107734][ T8852] Memory cgroup stats for /syz2:
[  234.108008][ T8852] cache 0
[  234.108018][ T8852] rss 2953216
[  234.108026][ T8852] shmem 0
[  234.108034][ T8852] mapped_file 0
[  234.108042][ T8852] dirty 0
[  234.108049][ T8852] writeback 0
[  234.108057][ T8852] workingset_refault_anon 569
[  234.108066][ T8852] workingset_refault_file 6632
[  234.108074][ T8852] swap 344064
[  234.108151][ T8852] swapcached 8192
[  234.108161][ T8852] pgpgin 279195
[  234.108169][ T8852] pgpgout 278468
[  234.108178][ T8852] pgfault 265564
[  234.108185][ T8852] pgmajfault 209
[  234.108192][ T8852] inactive_anon 106496
[  234.108198][ T8852] active_anon 106496
[  234.108227][ T8852] inactive_file 2748416
[  234.108236][ T8852] active_file 16384
[  234.108244][ T8852] unevictable 0
[  234.108252][ T8852] hierarchical_memory_limit 314572800
[  234.108262][ T8852] hierarchical_memsw_limit 9223372036854771712
[  234.108274][ T8852] total_cache 0
[  234.108317][ T8852] total_rss 2953216
[  234.108325][ T8852] total_shmem 0
[  234.108334][ T8852] total_mapped_file 0
[  234.108343][ T8852] total_dirty 0
[  234.108350][ T8852] total_writeback 0
[  234.108357][ T8852] total_workingset_refault_anon 569
[  234.108364][ T8852] total_workingset_refault_file 6632
[  234.108372][ T8852] total_swap 344064
[  234.108378][ T8852] total_swapcached 8192
[  234.108386][ T8852] total_pgpgin 279195
[  234.108459][ T8852] total_pgpgout 278468
[  234.108469][ T8852] total_pgfault 265564
[  234.108556][ T8852] total_pgmajfault 209
[  234.108565][ T8852] total_inactive_anon 106496
[  234.108575][ T8852] total_active_anon 106496
[  234.108584][ T8852] total_inactive_file 2748416
[  234.108669][ T8852] total_active_file 16384
[  234.108676][ T8852] total_unevictable 0
[  234.108684][ T8852] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1521,pid=8852,uid=0
[  234.108825][ T8852] Memory cgroup out of memory: Killed process 8852 (syz.2.1521) total-vm:96148kB, anon-rss:4096kB, file-rss:22332kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
[  234.409942][ T8892] hub 8-0:1.0: USB hub found
[  234.410051][ T8892] hub 8-0:1.0: 8 ports detected
[  234.506246][ T8901] lo: Caught tx_queue_len zero misconfig
[  234.512139][ T8901] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1537'.
[  234.556426][ T8901] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1537'.
[  234.674474][ T8903] lo speed is unknown, defaulting to 1000
[  234.881220][ T8907] SELinux:  policydb magic number 0x10 does not match expected magic number 0xf97cff8c
[  235.018818][ T8907] SELinux: failed to load policy
[  235.174081][ T8914] lo speed is unknown, defaulting to 1000
[  235.433893][ T8925] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1543'.
[  235.450862][ T8925] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1543'.
[  235.521220][ T8930] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1545'.
[  235.963115][ T8938] lo speed is unknown, defaulting to 1000
[  236.782806][ T8933] lo speed is unknown, defaulting to 1000
[  236.918581][ T8949] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8949 comm=syz.2.1550
[  236.996365][ T8952] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  237.034197][ T8952] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  237.058879][ T8952] netlink: 'syz.3.1552': attribute type 13 has an invalid length.
[  237.121546][   T29] kauditd_printk_skb: 287 callbacks suppressed
[  237.121565][   T29] audit: type=1326 audit(1768574504.080:20409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8947 comm="syz.4.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  237.151464][   T29] audit: type=1326 audit(1768574504.080:20410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8947 comm="syz.4.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ea4ef749 code=0x7ffc0000
[  237.191124][   T29] audit: type=1326 audit(1768574504.120:20411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8947 comm="syz.4.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f85ea522005 code=0x7ffc0000
[  237.214877][   T29] audit: type=1326 audit(1768574504.120:20412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8947 comm="syz.4.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f85ea522005 code=0x7ffc0000
[  237.238394][   T29] audit: type=1326 audit(1768574504.120:20413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8947 comm="syz.4.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f85ea522005 code=0x7ffc0000
[  237.261994][   T29] audit: type=1326 audit(1768574504.120:20414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8947 comm="syz.4.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f85ea522005 code=0x7ffc0000
[  237.285560][   T29] audit: type=1326 audit(1768574504.120:20415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8947 comm="syz.4.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f85ea522005 code=0x7ffc0000
[  237.309432][   T29] audit: type=1400 audit(1768574504.130:20416): avc:  denied  { write } for  pid=8953 comm="syz.2.1553" name="anycast6" dev="proc" ino=4026532949 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  237.332655][   T29] audit: type=1326 audit(1768574504.140:20417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8947 comm="syz.4.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f85ea522005 code=0x7ffc0000
[  237.356297][   T29] audit: type=1400 audit(1768574504.150:20418): avc:  denied  { read write } for  pid=8953 comm="syz.2.1553" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  237.512133][ T6866] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  237.533351][ T6866] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  237.551765][ T8948] lo speed is unknown, defaulting to 1000
[  237.552440][ T6866] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  237.579069][ T6866] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  238.426332][ T8977] loop3: detected capacity change from 0 to 2048
[  238.505446][ T4969] Alternate GPT is invalid, using primary GPT.
[  238.511805][ T4969]  loop3: p1 p2 p3
[  238.515601][ T4969] loop3: partition table partially beyond EOD, truncated
[  238.616594][ T8978] 9p: Bad value for 'wfdno'
[  238.635426][ T8977] Alternate GPT is invalid, using primary GPT.
[  238.641774][ T8977]  loop3: p1 p2 p3
[  238.645570][ T8977] loop3: partition table partially beyond EOD, truncated
[  238.855165][ T3901] udevd[3901]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  238.874522][ T4969] udevd[4969]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  238.916119][ T3880] udevd[3880]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  238.941729][ T4969] udevd[4969]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  238.941758][ T3880] udevd[3880]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  238.955700][ T3901] udevd[3901]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  239.302511][ T8992] loop2: detected capacity change from 0 to 2048
[  239.314199][ T8994] loop0: detected capacity change from 0 to 1024
[  239.322192][ T8994] EXT4-fs: Ignoring removed nomblk_io_submit option
[  239.331490][ T8992] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  239.355712][ T8994] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  239.459092][ T8994] netlink: '': attribute type 30 has an invalid length.
[  239.555131][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.578930][ T8992] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  239.594914][ T8992] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  239.607468][ T8992] EXT4-fs (loop2): This should not happen!! Data will be lost
[  239.607468][ T8992] 
[  239.617190][ T8992] EXT4-fs (loop2): Total free blocks count 0
[  239.623235][ T8992] EXT4-fs (loop2): Free/Dirty block details
[  239.629192][ T8992] EXT4-fs (loop2): free_blocks=2415919104
[  239.635020][ T8992] EXT4-fs (loop2): dirty_blocks=4240
[  239.640366][ T8992] EXT4-fs (loop2): Block reservation details
[  239.646423][ T8992] EXT4-fs (loop2): i_reserved_data_blocks=265
[  239.652880][ T9004] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1565'.
[  239.696501][ T9006] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1566'.
[  239.783220][ T9000] ==================================================================
[  239.791347][ T9000] BUG: KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
[  239.799703][ T9000] 
[  239.802025][ T9000] write to 0xffffea00042d48d8 of 8 bytes by task 9001 on cpu 1:
[  239.809656][ T9000]  delete_from_page_cache_batch+0x2f6/0x6f0
[  239.815562][ T9000]  truncate_inode_pages_range+0x1ba/0x780
[  239.821296][ T9000]  truncate_pagecache_range+0x83/0xa0
[  239.826682][ T9000]  ext4_truncate_page_cache_block_range+0x33f/0x3b0
[  239.833302][ T9000]  ext4_punch_hole+0x216/0x790
[  239.838101][ T9000]  ext4_fallocate+0x2d7/0x2f0
[  239.842791][ T9000]  vfs_fallocate+0x3b6/0x400
[  239.847379][ T9000]  madvise_vma_behavior+0x2a1/0x1ed0
[  239.852667][ T9000]  madvise_do_behavior+0x5ee/0xa20
[  239.857782][ T9000]  do_madvise+0x10e/0x190
[  239.862134][ T9000]  __x64_sys_madvise+0x64/0x80
[  239.866907][ T9000]  x64_sys_call+0x1c6b/0x3000
[  239.871595][ T9000]  do_syscall_64+0xca/0x2b0
[  239.876103][ T9000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.881997][ T9000] 
[  239.884318][ T9000] read to 0xffffea00042d48d8 of 8 bytes by task 9000 on cpu 0:
[  239.891858][ T9000]  folio_mapping+0xa1/0xe0
[  239.896295][ T9000]  evict_folios+0xe0b/0x35a0
[  239.900882][ T9000]  try_to_shrink_lruvec+0x5b5/0x950
[  239.906119][ T9000]  shrink_lruvec+0x22e/0x1b50
[  239.910802][ T9000]  shrink_node+0x66c/0x2010
[  239.915321][ T9000]  do_try_to_free_pages+0x3f6/0xcd0
[  239.920530][ T9000]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[  239.926436][ T9000]  try_charge_memcg+0x383/0xa10
[  239.931301][ T9000]  obj_cgroup_charge_pages+0xa6/0x150
[  239.936680][ T9000]  __memcg_kmem_charge_page+0x9f/0x170
[  239.942142][ T9000]  __alloc_frozen_pages_noprof+0x18f/0x360
[  239.947957][ T9000]  alloc_pages_mpol+0xb3/0x260
[  239.952731][ T9000]  alloc_pages_noprof+0x90/0x130
[  239.957683][ T9000]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  239.963580][ T9000]  __kvmalloc_node_noprof+0x492/0x6b0
[  239.968961][ T9000]  ip_set_alloc+0x24/0x30
[  239.973302][ T9000]  hash_netiface_create+0x282/0x740
[  239.978517][ T9000]  ip_set_create+0x3cc/0x970
[  239.983105][ T9000]  nfnetlink_rcv_msg+0x4c6/0x590
[  239.988051][ T9000]  netlink_rcv_skb+0x123/0x220
[  239.992836][ T9000]  nfnetlink_rcv+0x167/0x16c0
[  239.997555][ T9000]  netlink_unicast+0x5c0/0x690
[  240.002337][ T9000]  netlink_sendmsg+0x58b/0x6b0
[  240.007115][ T9000]  __sock_sendmsg+0x145/0x180
[  240.011797][ T9000]  ____sys_sendmsg+0x31e/0x4a0
[  240.016570][ T9000]  ___sys_sendmsg+0x17b/0x1d0
[  240.021254][ T9000]  __x64_sys_sendmsg+0xd4/0x160
[  240.026113][ T9000]  x64_sys_call+0x17ba/0x3000
[  240.030801][ T9000]  do_syscall_64+0xca/0x2b0
[  240.035303][ T9000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.041196][ T9000] 
[  240.043514][ T9000] value changed: 0xffff88811adf6e90 -> 0x0000000000000000
[  240.050617][ T9000] 
[  240.052935][ T9000] Reported by Kernel Concurrency Sanitizer on:
[  240.059085][ T9000] CPU: 0 UID: 0 PID: 9000 Comm: syz.2.1564 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  240.070379][ T9000] Tainted: [W]=WARN
[  240.074176][ T9000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  240.084232][ T9000] ==================================================================
[  240.137167][ T9010] lo speed is unknown, defaulting to 1000
[  240.176238][ T9008] tmpfs: Bad value for 'mpol'
[  240.286553][ T9009] lo speed is unknown, defaulting to 1000
[  240.432066][   T53] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 3074 with max blocks 1156 with error 28