last executing test programs:

53.029363028s ago: executing program 4 (id=5589):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x531, &(0x7f0000000640)="$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")

52.854555886s ago: executing program 4 (id=5596):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0xc0800)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000540)="390000fa461aa0fba8ab80679467df91c09e8a722e34d7e4", 0x18}], 0x1)
r0 = syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x22c43)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r0])

52.790824518s ago: executing program 4 (id=5600):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x31, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x4}}, './file1\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x1, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0x10007ffffffff}, 0x18)
syz_clone(0x623f, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
ioctl$SIOCGIFMTU(r1, 0x8921, &(0x7f0000000180)={'batadv_slave_1\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x10c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
creat(0x0, 0xd931d3864d39dcdb)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x1000000, 0x0, 0x1, 0x1}, 0x21)
r6 = gettid()
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ff"], 0x48)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000002000000)

51.929132415s ago: executing program 4 (id=5632):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00')

51.864315867s ago: executing program 4 (id=5634):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x9, @empty, 0x20002}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff810000400e227f000001925aa80020007b00090080007f000006e809000000ff0000f03ac71002000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

51.56432409s ago: executing program 4 (id=5640):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c00"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timerfd_create(0x8, 0x80000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x4, 0x4, 0x538, 0xffffffff, 0x398, 0xe8, 0x398, 0xfeffffff, 0xffffffff, 0x468, 0x468, 0x468, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffffff, 0xff000000, 0xff, 0xffffff00], [0xffffff00, 0xffffffff, 0xff000000, 0xffffffff], 'hsr0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x5}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [0xff], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00', {}, {}, 0x0, 0x0, 0x6}, 0x0, 0x270, 0x2b0, 0x0, {}, [@common=@srh1={{0x90}, {0x2, 0xe, 0x6, 0x5, 0x9, @remote, @local, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, [0x0, 0xff, 0xffffff00, 0xffffff00], [0xff, 0xffffff00, 0xff, 0xffffff00], [0x0, 0xffffffff, 0x0, 0xff], 0x4000, 0x11}}, @common=@rt={{0x138}, {0x401, [0xfffffffe], 0x1, 0x2, 0x3, [@remote, @empty, @remote, @remote, @remote, @mcast1, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @empty, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, @remote, @rand_addr=' \x01\x00', @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}], 0x9}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x1, {0x2000010}}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x598)
open_tree(0xffffffffffffff9c, &(0x7f0000001080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x88801)
syz_read_part_table(0x1058, &(0x7f0000001080)="$eJzsz7GpAkEUBdA7O58vG9mCTViIghVYhKkGNmMXJlZgNyIrs+JiBWpwTvDgvnlcmPBVf8n5P8mqtlTu47KMs2bRvcVLTdeW5Rmzb2MY+sPUVafjsrv2x1abPrPX83Cr7WabZN7yetltTh/6JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8tEcAAAD//6rFDAs=")
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="5800000002060108000000bca3000000000000400500010006000000050005000200000005000400000000000900020073797a31000000000c000780080012"], 0x58}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x76eab42beba6fa74, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES8=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00'}, 0x10)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYRES16=0x0, @ANYRES32=0x0, @ANYRES16=r3, @ANYBLOB='\x00'/28], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000540)=ANY=[@ANYBLOB="1806000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r4}, &(0x7f0000000200), &(0x7f00000003c0)=r5}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r4, &(0x7f0000000140), &(0x7f0000000240)=""/154}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

51.56379791s ago: executing program 32 (id=5640):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c00"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timerfd_create(0x8, 0x80000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x4, 0x4, 0x538, 0xffffffff, 0x398, 0xe8, 0x398, 0xfeffffff, 0xffffffff, 0x468, 0x468, 0x468, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffffff, 0xff000000, 0xff, 0xffffff00], [0xffffff00, 0xffffffff, 0xff000000, 0xffffffff], 'hsr0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x5}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [0xff], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00', {}, {}, 0x0, 0x0, 0x6}, 0x0, 0x270, 0x2b0, 0x0, {}, [@common=@srh1={{0x90}, {0x2, 0xe, 0x6, 0x5, 0x9, @remote, @local, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, [0x0, 0xff, 0xffffff00, 0xffffff00], [0xff, 0xffffff00, 0xff, 0xffffff00], [0x0, 0xffffffff, 0x0, 0xff], 0x4000, 0x11}}, @common=@rt={{0x138}, {0x401, [0xfffffffe], 0x1, 0x2, 0x3, [@remote, @empty, @remote, @remote, @remote, @mcast1, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @empty, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, @remote, @rand_addr=' \x01\x00', @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}], 0x9}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x1, {0x2000010}}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x598)
open_tree(0xffffffffffffff9c, &(0x7f0000001080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x88801)
syz_read_part_table(0x1058, &(0x7f0000001080)="$eJzsz7GpAkEUBdA7O58vG9mCTViIghVYhKkGNmMXJlZgNyIrs+JiBWpwTvDgvnlcmPBVf8n5P8mqtlTu47KMs2bRvcVLTdeW5Rmzb2MY+sPUVafjsrv2x1abPrPX83Cr7WabZN7yetltTh/6JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8tEcAAAD//6rFDAs=")
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="5800000002060108000000bca3000000000000400500010006000000050005000200000005000400000000000900020073797a31000000000c000780080012"], 0x58}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x76eab42beba6fa74, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES8=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00'}, 0x10)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYRES16=0x0, @ANYRES32=0x0, @ANYRES16=r3, @ANYBLOB='\x00'/28], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000540)=ANY=[@ANYBLOB="1806000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r4}, &(0x7f0000000200), &(0x7f00000003c0)=r5}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r4, &(0x7f0000000140), &(0x7f0000000240)=""/154}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

21.275432541s ago: executing program 3 (id=6651):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x2, 0x0, 0x1, 0x0, {0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), r2)
sendmsg$L2TP_CMD_SESSION_DELETE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000cbd70100400000005000000080009000200000008000c00a80a000008000b0002000000060001000700000005001300f700000005001200"], 0x44}, 0x1, 0x0, 0x0, 0x40811}, 0x20)

21.259643191s ago: executing program 3 (id=6653):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newtaction={0x78, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x64, 0x1, [@m_tunnel_key={0x60, 0x1, 0x0, 0x0, {{0xf}, {0x30, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @loopback}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @broadcast}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}}, 0x0)

21.238645182s ago: executing program 3 (id=6655):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)

20.313016661s ago: executing program 3 (id=6690):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000005008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x18)
sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

20.157016788s ago: executing program 3 (id=6694):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000a80)='kfree\x00', r0}, 0x18)
socket$inet_sctp(0x2, 0x5, 0x84)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000780)='./file0/../file0\x00', 0x0, 0xa06002, 0x0)

20.144330628s ago: executing program 3 (id=6695):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r0)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="bbfb2bbd7000fddbdf21670000000800c400020000000800c3"], 0x24}}, 0x0)

5.121521844s ago: executing program 33 (id=6695):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r0)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="bbfb2bbd7000fddbdf21670000000800c400020000000800c3"], 0x24}}, 0x0)

3.56275407s ago: executing program 1 (id=7267):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0x60, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000004c0)='kfree\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000218c0000000c0a01030000000000000000070000090900020073797a31000000000900010073797a3000000000600003805c000080080003400000000250000b802c0001800a0001006c696d69740000001c0002800c00024000000000000000000c0001400000000000000003200001800a00010071756f7461000000100002800c0001"], 0x110}}, 0x0)

3.545428111s ago: executing program 1 (id=7268):
openat$sndseq(0xffffffffffffff9c, 0x0, 0x41)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r1}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x11, 0x2, 0x4}, 0x0, 0x0)

2.583957781s ago: executing program 5 (id=7295):
poll(0x0, 0x0, 0x3)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x18, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd72, 0x9, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @private0}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@nolazytime}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@noinit_itable}]}, 0x3, 0x583, &(0x7f0000000800)="$eJzs3c9rHGUfAPDvbHb7+32bQilvX15eCj1Yqd00iT8qeKhH0WJBPdclmYaSTbdkN6WJBduDvXiRIohYEO969+ChePHoX1HQQpES9OBlZTazybbZJJt0Y2L384Fpn2dmNs8888z34Zl9dpgABtaJ7J9CxPGI+CyJONyxrRj5xhNL+y0+vjmRLUk0m+/9lkSSr2vvn+T/H8wz/4mIHz+JOF1YXW59fmG6Uq2ms3l+pDFzbaQ+v3DmykxlKp1Kr46Nj597ZXzs9dde7VtdX7z4x5fv3n/r3KcnF7/47uGRu0mcj0P5ts56PINbnZkTzWZ+Tkpx/qkdR/tQ2G6S7PQBsCVDeZyXIuJ46XCpHfXA8+/jiGgCAyrZZPzv1V/Ac6I9Dmjf2/fpPvgf49GbSzdAq+tfXPpuJPa17o0OLCZP3Bll97vDfSg/K+P7X+/dzZbo3/cQABu6dTsizhaLq/u/JO//tu5sD/s8XYb+D/4+97Pxz0vdxj+F5fFPdBn/HOwSu1uxcfwXHvahmDVl4783uo5/lyethofy3L9aY75ScvlKNc36tn9HxKko7c3y683nnFt80FxrW+f4L1uy8ttjwfw4Hhb3PvmZyUqj8ix17vTodsR/u45/k+X2T7q0f3Y+PuixjGPpvf+vtW3j+m+v5jcRL3Rt/5UZrWT9+cmR1vUw0r4qVvv9zrGf1yq/e/1/+mEbqtpV1v4H1q//cNI5X1vffBlf7/szXWvbVq//Pcn7rfSefN2NSqMxOxqxJ3ln9fqxlc+28+39s/qfOrl+/9ft+t8fER/2WP87R7/939brv72y+k9uqv03n3jw9kdfrVV+b+3/cit1Kl/TS//X6wE+y7kDAAAAAACA3aYQEYciKZRjX54uFMrlpd93HI0DhWqt3jh9uTZ3dTJaz8oOR6nQnuk+3PF7iNH897Dt/NhT+fGIOBIRnw/tb+XLE7Xq5E5XHgAAAAAAAAAAAAAAAAAAAHaJg8vP/8cTz/9nfhna6aMDtl1x6f3fwADa8JX//XjTE7ArbRj/wHNL/MPgEv8wuMQ/DKTWFJ/4h8El/mFwiX8YXOIfAAAAAAAAAAAAAAAAAAAAAAAAAAAA+urihQvZ0lx8fHMiy09en5+brl0/M5nWp8szcxPlidrstfJUrTZVTcsTtZmN/l61Vrs2OhZzN0Yaab0xUp9fuDRTm7vauHRlpjKVXkq9ZxwAAAAAAAAAAAAAAAAAAABWq88vTFeq1XS2D4lStZoWIqKXnSP6VOgAJrJ2u1Xs7TxvTyKJlTXF3XJaJPqa2OmeCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABW/BUAAP//2SsyHQ==")

2.572199952s ago: executing program 1 (id=7296):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x2)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x300)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYRES16=r3], &(0x7f0000000100)='syzkaller\x00', 0x56400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r4, 0x0, 0x9}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000d80)={0x1, &(0x7f0000000d40)=[{0x6, 0x6, 0x38, 0x7fff0000}]})
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00')
readlinkat(r5, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010)
socket$inet6(0x10, 0x3, 0x0)
futex_waitv(&(0x7f0000001280)=[{0x0, 0x0, 0x2}, {0x6caf1766, 0x0, 0x82}], 0x2, 0x0, &(0x7f00000019c0), 0x1)
sendmsg(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="5500000020007fafb70000000000000080000000030b43026c26236925000400fe7f0000bd2dca8a984800000000c46b7b31afdc1338d5e801e0b009000000000100005ae583de0dd7d8319f98af84fda542e718f9", 0x55}], 0x1}, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r6 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r6, &(0x7f00000019c0)=""/4097, 0x1001)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000003801000000000000", @ANYRES32=r1, @ANYBLOB="0100000000000000000016e45b0dd7c04fc824e95487a9d91595e85db045e3", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000020000000300"/28], 0x50)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x4, 0x0, r0, 0xf, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5, 0x1}, 0x50)
r10 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r10, 0x400, 0x1)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1b, 0x18, &(0x7f0000000680)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [@generic={0x4, 0x9, 0x0, 0x7fff, 0xd95b}, @generic={0x8e, 0x7, 0x6, 0x5, 0x46}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x2}, @map_val={0x18, 0x3, 0x2, 0x0, r9, 0x0, 0x0, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
syz_open_dev$usbmon(&(0x7f0000000040), 0x81, 0x232342)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

2.472772656s ago: executing program 5 (id=7304):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100), 0xff, 0x4a1, &(0x7f00000004c0)="$eJzs3MtvVFUYAPDvTh+8aUVEQdAqGomPlhZUFi7UaOJCExNd4LK2BZGBGloTIY0WY3BpSNwblyb+Be7cGHVhTNxq4tKQEG1MKK5q7gum02mZlpYpnd8vmc45c1/nu+eemXPv6b0BtK2+9E8SsT0ifo+Injw7f4a+/G12Zmrk+szUSBJzc2/9nWTzXZuZGilnLZfbVmQOVSIqnyXxYrJwuxPnL5werlbHzhX5gckzHwxMnL/wzKkzwyfHTo6dHTp27OiRweefG3p2VeJM47q27+Px/Xtfe+fyGyPHL7/707dpsfYcyKfXxnFL1xsE1EBfutf+mcvUT3t8GWW/G+yoSSedLSwIy9IREWl1dWXtvyc64mbl9cSrn7a0cMCaSn+bNi0+eXoO2MCSaHUJgNYof+jT89/ydYe6HuvC1Zciuov07MzUyOyN+DujUnzetYbb74uI49P/fZW+YrnXIQAAViDr2zzdqP9XiT3Zez7WsbMYQ+mNiHsiYldE3BsRuyPivohs3vujOx7IF57raXL7fXX5hf2fypWGZV4laf/vhZq+32xN/MVbb0eR25HF35WcOFUdO1zsk0PRtSnNDy6xje9f+e2LxabV9v/SV7r9si9YFOBKZ90FutHhyeHV2glXL0bs62wUf3JjJCA9AvZGxL7lrXpnmTj15Df7F5vp1vEvYRXGmea+jngir//pqIu/lCw9PjmwOapjhwfKo2Khn3+99GaR7K6fdlvxr4K0/rfOP/6LKReL955/k3y8tiuq1bFzE8vfxqU/Pl/0nGalx3938nY2Zv3Le/lnHw1PTp4bjOhOXs/y5Y7OPh+6uWyZL+dP4z90sHH731Usk8b/YESkB/GBiHgoIh4uyv5IRDwaEQeXiP/Hlx97f4n4k0iipfU/2vD7L4nYnCV6k9rx+hUkOk7/8N1iI+bN1f/RmM6+a3PZ998tNFvA29+DAAAAsP5VImJ7JJX+PN23PSqV/v78f/h3x9ZKdXxi8qkT4x+eHc3vEeiNrkp5paun5nroYDJdrDHPDxXXisvpR4rrxl92bMny/SPj1dEWxw7tbtv89h9l+0/91dHq0gFrzv1a0L7q23+lReUA7rxmfv+dC8DG1KD9b2lFOYA7z/k/tK9G7f+Turz+P2xMC9v/nw0eWQdsRPr/0L60f2hf2j+0pWbv4i+fp7DihwDMS5Q3C6x8PZubvsN//SX61mTNZQ2tZeG3xM1PorJqa55eB5WyzhNpi1nJ4rGz+WdhzE80eFgNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAXej/AAAA//+q8eIl")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
fallocate(r0, 0x3, 0xc, 0x8000c62)

2.244639976s ago: executing program 5 (id=7312):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0xc0200, 0x100)

2.234531345s ago: executing program 5 (id=7314):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c757466383d302c636865636b3d7374726963742c646973636172642c757466383d312c757466383d312c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c757466383d312c00ef5c3556"], 0xfd, 0x2a8, &(0x7f0000000280)="$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")
mknod$loop(&(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, 0x1)

2.069554243s ago: executing program 5 (id=7315):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree\x00', r1}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@newqdisc={0x45c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x3, 0x1, 0x8, 0x1, 0xff, 0x7}, {0x4, 0x0, 0x3, 0xa159, 0x1000, 0xbebc20}, 0x3, 0x4000000, 0x41e}}, @TCA_TBF_PTAB={0x404, 0x3, [0x104, 0x2, 0xc, 0xfff, 0x0, 0x8ba, 0xa1, 0x8000, 0x7, 0x63c4, 0x9, 0x7ffd, 0x403, 0x255, 0x6, 0xc, 0xd81, 0x3, 0xa, 0xa, 0x7, 0x6, 0xc, 0x200, 0xfffffffd, 0x5, 0xb96, 0x1f9d781f, 0x0, 0xffffffff, 0x200, 0x3, 0x80000001, 0x7c, 0xfffffffc, 0x5, 0x1, 0x2, 0x8, 0x8001, 0x1, 0xd, 0x80, 0x400, 0x80, 0x8ffffffe, 0x3800000, 0x0, 0xfffff30b, 0x0, 0xf5, 0x91, 0xfffffffa, 0x80, 0x101, 0x3f, 0xfffffbff, 0x36a5, 0x4, 0x6, 0x7ff, 0x1ba, 0x9, 0xab, 0x6, 0xfffffff7, 0x6, 0x0, 0x3, 0x1, 0x963, 0x1ff, 0x2, 0xfffffffd, 0x6, 0x5, 0x0, 0x3, 0x0, 0xb09, 0x3ff, 0x7, 0x8000, 0x4, 0x8, 0x1000, 0x101, 0x5, 0x3, 0x6, 0x2009, 0x3, 0x1, 0x8762, 0x10008e, 0x80000005, 0xfffff76b, 0x7fffffff, 0x4, 0x7, 0x0, 0x5, 0x800, 0x4, 0x955, 0x5, 0x6cd7139e, 0x9, 0x3, 0x5, 0x10001, 0xff, 0x80000001, 0xed2, 0x5, 0xfffffffa, 0x10002, 0x18d0, 0x50000000, 0x3, 0x9486, 0x7d, 0x2, 0x80000000, 0xdb, 0x3, 0x80, 0xffff7ffc, 0x5, 0x8, 0x7, 0x1, 0x4, 0x8006, 0x2, 0x8, 0x2, 0x81, 0x3, 0x1, 0x6bf, 0x7, 0xea, 0x4, 0xc1, 0x2, 0x40, 0x5, 0x27f, 0x200, 0x7, 0x40040, 0x7, 0x4, 0x7, 0xff, 0x400, 0x8, 0x7fffffff, 0xfffffff8, 0x8, 0x3, 0x8, 0xe, 0x97, 0x6, 0x104, 0x62cc, 0x1, 0x7, 0x2eb7, 0x10001, 0xcbf, 0x10000, 0x101, 0x9, 0xfffffffa, 0x1, 0xc, 0x7, 0x8001, 0xf, 0x5, 0x8, 0x8d, 0xffffffff, 0x2, 0x7, 0x1, 0x5, 0xffffffff, 0x494, 0xb, 0x1, 0x1, 0xd1, 0xd, 0x9, 0x1002, 0xffffffff, 0x6, 0x3, 0xfffffffb, 0xffff, 0xff, 0x5, 0xe, 0x401, 0x2, 0x8cc5, 0x8, 0x159, 0xfdfffff7, 0x81, 0x382ae49d, 0x9, 0x1, 0xffff, 0xdf3b, 0x8d, 0x6, 0xfffffef7, 0xe0, 0x6319da67, 0x8, 0x9, 0x2, 0xfffff801, 0x0, 0x5, 0x9, 0x7, 0x7, 0x7f, 0x7, 0x1, 0x0, 0xffffffff, 0xdfed, 0xb, 0x77, 0x7, 0x0, 0xb331, 0x9, 0x6, 0x9, 0x7, 0x5, 0x400, 0x10001, 0x1, 0x800, 0x6000, 0xfe000000, 0xffff7ffd]}]}}]}, 0x45c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

2.062189713s ago: executing program 5 (id=7318):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000440)={0x7f, [0xfffffffd, 0x81], 0x8}, 0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)

1.717556098s ago: executing program 1 (id=7324):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x841b9, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_bp={0x0, 0x4}, 0x120, 0x10000, 0x33f3, 0x1, 0x8, 0x20007, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
r0 = getpid()
tgkill(r0, 0x0, 0xf)
socket$nl_route(0x10, 0x3, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/asound/timers\x00', 0x0, 0x0)

1.64851695s ago: executing program 1 (id=7328):
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1, 0x2, {0x3}}, 0x18)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r0)
sendmsg$TIPC_NL_KEY_SET(r0, 0x0, 0x10)
syz_usb_connect(0x4, 0x36, 0x0, 0x0)

1.225918878s ago: executing program 0 (id=7356):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
close_range(r2, 0xffffffffffffffff, 0x0)

1.206918109s ago: executing program 0 (id=7357):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffd63}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x7ff}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000000000)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)

1.057576046s ago: executing program 0 (id=7371):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sync()

957.57487ms ago: executing program 0 (id=7363):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
sendmsg$DEVLINK_CMD_RATE_DEL(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000b40)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010000000000fddbdf2554"], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x8000)

840.379924ms ago: executing program 0 (id=7366):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x31, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x4}}, './file1\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x1, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0x10007ffffffff}, 0x18)
syz_clone(0x623f, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
ioctl$SIOCGIFMTU(r1, 0x8921, &(0x7f0000000180)={'batadv_slave_1\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x10c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
creat(0x0, 0xd931d3864d39dcdb)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x1000000, 0x0, 0x1, 0x1}, 0x21)
r6 = gettid()
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffff"], 0x48)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000002000000)

795.342407ms ago: executing program 0 (id=7369):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
sendto$inet6(r0, &(0x7f0000000100)="15", 0x1, 0x1, &(0x7f0000000140)={0xa, 0x4e23, 0x7ff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3}, 0x1c)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e22, 0x1, @private0, 0x8}, 0x1c)
sendmsg$inet6(r0, &(0x7f0000000380)={&(0x7f0000000180)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c, &(0x7f0000000340)=[{&(0x7f0000000480)='y', 0x1}], 0x1}, 0x0)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000003c0)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}, 0x0, 0x0, 0x4}, &(0x7f0000000080)=0x9c)

645.893273ms ago: executing program 2 (id=7379):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000200)='fsi_master_aspeed_cfam_reset\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
r0 = syz_open_dev$usbfs(&(0x7f0000000140), 0x76, 0x101341)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f00000001c0), 0xed)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0x80045515, &(0x7f00000000c0)=@usbdevfs_connect={0x7})

621.827614ms ago: executing program 6 (id=7381):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000000)={0x18, 0x0, {0x1, @empty, 'lo\x00'}}, 0x1e)
close(r2)

621.380714ms ago: executing program 6 (id=7382):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40001}, 0x4040850)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000009c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x76a9bba1a690db0f, 0x0, 0x0, {0xa, 0x0, 0x2005}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x3cb140bb}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x68}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
r1 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r1, 0x29, 0x24, &(0x7f0000000080), 0x4)
sendmsg$kcm(r1, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x800, @loopback, 0x1, 0xfffffffe}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000140)="f4040900062b2c25fe80040000000000dc8b8543aa00fcb11e2851f4b6d285eb7672caa6fc903b1433548466", 0x2c}], 0x1}, 0x0)

606.803875ms ago: executing program 2 (id=7383):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3ce, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000001f40)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{0xffffffff, 0x8001, 0x859c, 0xffffffffffffffff}, {0xfffffdff, 0x0, 0x7fffffffffffffff, 0x2, 0x0, 0xfffffffffffffffe}]})

606.357765ms ago: executing program 6 (id=7384):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10)
sendmmsg$inet(r1, &(0x7f0000001480)=[{{&(0x7f0000000100)={0x2, 0x6e20, @multicast1}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r1, &(0x7f0000000c80)="e8", 0x6200, 0x12000000, 0x0, 0x0)

163.016843ms ago: executing program 1 (id=7385):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

162.846233ms ago: executing program 2 (id=7386):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

159.997723ms ago: executing program 6 (id=7395):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x10001}, 0x18)
unshare(0x2040400)
r2 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000700)=ANY=[@ANYBLOB="10000000040000000400000006"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r2, 0x0, &(0x7f00000003c0)=""/69}, 0x20)

122.115655ms ago: executing program 2 (id=7387):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000180a0102000000000000000002000003300003802c00038014000100776732000000000000000000000000001400010076657468315f746f5f627269576765000900020073797a30000000000900010073797a30"], 0x84}, 0x1, 0x0, 0x0, 0x40044}, 0x20008000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8923, &(0x7f0000000140)={'wg2\x00', @local})

121.851165ms ago: executing program 6 (id=7388):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x18)
readahead(0xffffffffffffffff, 0x2, 0x8)

90.403307ms ago: executing program 6 (id=7389):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400), 0xff, 0x23f, &(0x7f0000000540)="$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")
symlink(&(0x7f0000000b00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x42, 0x0)

68.143068ms ago: executing program 2 (id=7390):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000008000000e27f000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg$inet(r2, &(0x7f0000003c80)=[{{0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)="79d2f3015b", 0x5}], 0x1}}], 0x1, 0x20040017)
close(r2)

0s ago: executing program 2 (id=7391):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0xe}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffbfffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000ecff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)

kernel console output (not intermixed with test programs):

  342.428857][ T3401] hid_parser_main: 8 callbacks suppressed
[  342.428875][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.442171][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.449652][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.457204][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.464662][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.472175][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.479618][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.487202][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.494764][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.502232][ T3401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  342.540750][ T3401] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  342.575718][T17824] SELinux:  policydb version 704780991 does not match my version range 15-35
[  342.602414][T17824] SELinux: failed to load policy
[  343.488205][T17826] syz.1.5407 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  343.502468][T17826] CPU: 1 UID: 0 PID: 17826 Comm: syz.1.5407 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  343.502498][T17826] Tainted: [W]=WARN
[  343.502543][T17826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  343.502556][T17826] Call Trace:
[  343.502573][T17826]  <TASK>
[  343.502583][T17826]  __dump_stack+0x1d/0x30
[  343.502615][T17826]  dump_stack_lvl+0xe8/0x140
[  343.502637][T17826]  dump_stack+0x15/0x1b
[  343.502656][T17826]  dump_header+0x81/0x220
[  343.502688][T17826]  oom_kill_process+0x342/0x400
[  343.502721][T17826]  out_of_memory+0x979/0xb80
[  343.502819][T17826]  try_charge_memcg+0x610/0xa10
[  343.502955][T17826]  obj_cgroup_charge_pages+0xa6/0x150
[  343.502978][T17826]  __memcg_kmem_charge_page+0x9f/0x170
[  343.503001][T17826]  __alloc_frozen_pages_noprof+0x188/0x360
[  343.503037][T17826]  alloc_pages_mpol+0xb3/0x260
[  343.503062][T17826]  ? alloc_pages_noprof+0xf4/0x130
[  343.503084][T17826]  alloc_pages_noprof+0x90/0x130
[  343.503106][T17826]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  343.503150][T17826]  __kvmalloc_node_noprof+0x483/0x670
[  343.503224][T17826]  ? ip_set_alloc+0x24/0x30
[  343.503254][T17826]  ? ip_set_alloc+0x24/0x30
[  343.503362][T17826]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  343.503391][T17826]  ip_set_alloc+0x24/0x30
[  343.503416][T17826]  hash_netiface_create+0x282/0x740
[  343.503446][T17826]  ? __pfx_hash_netiface_create+0x10/0x10
[  343.503538][T17826]  ip_set_create+0x3cc/0x970
[  343.503568][T17826]  ? __nla_parse+0x40/0x60
[  343.503625][T17826]  nfnetlink_rcv_msg+0x4c6/0x590
[  343.503654][T17826]  ? is_bpf_text_address+0x141/0x160
[  343.503750][T17826]  netlink_rcv_skb+0x123/0x220
[  343.503780][T17826]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  343.503815][T17826]  nfnetlink_rcv+0x167/0x16c0
[  343.503854][T17826]  ? kmem_cache_free+0xe4/0x3d0
[  343.503905][T17826]  ? __kfree_skb+0x109/0x150
[  343.503935][T17826]  ? nlmon_xmit+0x4f/0x60
[  343.503964][T17826]  ? consume_skb+0x49/0x150
[  343.504000][T17826]  ? nlmon_xmit+0x4f/0x60
[  343.504019][T17826]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  343.504081][T17826]  ? __dev_queue_xmit+0x1200/0x2000
[  343.504123][T17826]  ? __dev_queue_xmit+0x182/0x2000
[  343.504202][T17826]  ? __pte_offset_map_lock+0x1d4/0x230
[  343.504233][T17826]  ? ref_tracker_free+0x37d/0x3e0
[  343.504294][T17826]  ? __netlink_deliver_tap+0x4dc/0x500
[  343.504330][T17826]  netlink_unicast+0x5c0/0x690
[  343.504426][T17826]  netlink_sendmsg+0x58b/0x6b0
[  343.504448][T17826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  343.504469][T17826]  __sock_sendmsg+0x145/0x180
[  343.504495][T17826]  ____sys_sendmsg+0x31e/0x4e0
[  343.504575][T17826]  ___sys_sendmsg+0x17b/0x1d0
[  343.504615][T17826]  __x64_sys_sendmsg+0xd4/0x160
[  343.504640][T17826]  x64_sys_call+0x191e/0x3000
[  343.504663][T17826]  do_syscall_64+0xd2/0x200
[  343.504702][T17826]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  343.504735][T17826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.504757][T17826] RIP: 0033:0x7faa1fc9f749
[  343.504781][T17826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.504811][T17826] RSP: 002b:00007faa1e707038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  343.504832][T17826] RAX: ffffffffffffffda RBX: 00007faa1fef5fa0 RCX: 00007faa1fc9f749
[  343.504846][T17826] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000005
[  343.504859][T17826] RBP: 00007faa1fd23f91 R08: 0000000000000000 R09: 0000000000000000
[  343.504874][T17826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  343.504887][T17826] R13: 00007faa1fef6038 R14: 00007faa1fef5fa0 R15: 00007ffc472342e8
[  343.504908][T17826]  </TASK>
[  343.504917][T17826] memory: usage 307200kB, limit 307200kB, failcnt 440
[  343.628165][T17850] loop4: detected capacity change from 0 to 1024
[  343.630031][T17826] memory+swap: usage 343936kB, limit 9007199254740988kB, failcnt 0
[  343.630048][T17826] kmem: usage 275708kB, limit 9007199254740988kB, failcnt 0
[  343.642621][T17850] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  343.645653][T17826] Memory cgroup stats for /syz1:
[  343.646196][T17826] cache 31862784
[  343.907355][T17826] rss 385024
[  343.910614][T17826] shmem 31862784
[  343.914148][T17826] mapped_file 0
[  343.917643][T17826] dirty 0
[  343.919820][T13784] Bluetooth: hci0: command 0x1003 tx timeout
[  343.920585][T17826] writeback 0
[  343.920593][T17826] workingset_refault_anon 920
[  343.926574][ T3527] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  343.929822][T17826] workingset_refault_file 1393
[  343.929831][T17826] swap 37617664
[  343.929838][T17826] swapcached 0
[  343.929861][T17826] pgpgin 1131526
[  343.955656][T17826] pgpgout 1123653
[  343.959280][T17826] pgfault 1081459
[  343.962906][T17826] pgmajfault 153
[  343.966441][T17826] inactive_anon 32235520
[  343.970688][T17826] active_anon 12288
[  343.974487][T17826] inactive_file 0
[  343.978250][T17826] active_file 0
[  343.981705][T17826] unevictable 0
[  343.985327][T17826] hierarchical_memory_limit 314572800
[  343.990691][T17826] hierarchical_memsw_limit 9223372036854771712
[  343.996830][T17826] total_cache 31862784
[  344.000917][T17826] total_rss 385024
[  344.004646][T17826] total_shmem 31862784
[  344.008769][T17826] total_mapped_file 0
[  344.012771][T17826] total_dirty 0
[  344.016221][T17826] total_writeback 0
[  344.020023][T17826] total_workingset_refault_anon 920
[  344.025206][T17826] total_workingset_refault_file 1393
[  344.030642][T17826] total_swap 37617664
[  344.034608][T17826] total_swapcached 0
[  344.038496][T17826] total_pgpgin 1131526
[  344.042560][T17826] total_pgpgout 1123653
[  344.046702][T17826] total_pgfault 1081459
[  344.050927][T17826] total_pgmajfault 153
[  344.054978][T17826] total_inactive_anon 32235520
[  344.059716][T17826] total_active_anon 12288
[  344.061075][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.064121][T17826] total_inactive_file 0
[  344.077208][T17826] total_active_file 0
[  344.081226][T17826] total_unevictable 0
[  344.085201][T17826] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.5407,pid=17825,uid=0
[  344.099936][T17826] Memory cgroup out of memory: Killed process 17825 (syz.1.5407) total-vm:95884kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  344.203565][T17863] __nla_validate_parse: 7 callbacks suppressed
[  344.203599][T17863] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5422'.
[  344.286825][T17865] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5423'.
[  344.402954][T17878] IPv6: Can't replace route, no match found
[  344.440258][T17882] ip6t_srh: unknown srh match flags  4000
[  344.511053][T17884] ip6t_srh: unknown srh match flags  4000
[  344.689533][T17839] Set syz1 is full, maxelem 65536 reached
[  344.774731][T17904] loop4: detected capacity change from 0 to 512
[  344.801117][T17904] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  344.840288][T17904] EXT4-fs (loop4): mount failed
[  344.847387][T17910] Falling back ldisc for ttyS3.
[  344.852532][T17775] Bluetooth: hci0: Opcode 0x0c20 failed: -4
[  344.900673][   T29] kauditd_printk_skb: 2598 callbacks suppressed
[  344.900749][   T29] audit: type=1326 audit(2000000111.869:152450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17881 comm="syz.3.5431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f924bc1f749 code=0x7ffc0000
[  344.915487][T17914] pimreg: tun_chr_ioctl cmd 1074812117
[  344.969897][T17917] pimreg: tun_chr_ioctl cmd 1074025673
[  344.993800][T17921] ip6t_srh: unknown srh match flags  4000
[  345.009657][   T29] audit: type=1326 audit(2000000111.969:152451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17920 comm="syz.2.5458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  345.033456][   T29] audit: type=1326 audit(2000000111.969:152452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17920 comm="syz.2.5458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  345.057162][   T29] audit: type=1326 audit(2000000111.969:152453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17920 comm="syz.2.5458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  345.080931][   T29] audit: type=1326 audit(2000000111.969:152454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17920 comm="syz.2.5458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  345.095530][T17921] loop2: detected capacity change from 0 to 8192
[  345.104811][   T29] audit: type=1326 audit(2000000111.969:152455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17920 comm="syz.2.5458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  345.134868][   T29] audit: type=1326 audit(2000000111.969:152456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17920 comm="syz.2.5458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  345.158547][   T29] audit: type=1326 audit(2000000111.969:152457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17920 comm="syz.2.5458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  345.182201][   T29] audit: type=1326 audit(2000000111.969:152458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17920 comm="syz.2.5458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  345.205852][   T29] audit: type=1326 audit(2000000111.969:152459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17920 comm="syz.2.5458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  345.271139][T17926]  loop2: p1 p2 p3 p4
[  345.282034][T17926] loop2: p1 size 196608 extends beyond EOD, truncated
[  345.301213][T17926] loop2: p2 start 164919041 is beyond EOD, truncated
[  345.307914][T17926] loop2: p3 size 66846464 extends beyond EOD, truncated
[  345.315502][T17926] loop2: p4 size 37048832 extends beyond EOD, truncated
[  345.370402][T17921]  loop2: p1 p2 p3 p4
[  345.374485][T17921] loop2: p1 size 196608 extends beyond EOD, truncated
[  345.410697][T17936] netlink: 64 bytes leftover after parsing attributes in process `syz.0.5455'.
[  345.411681][T17921] loop2: p2 start 164919041 is beyond EOD, truncated
[  345.426459][T17921] loop2: p3 size 66846464 extends beyond EOD, truncated
[  345.444891][T17921] loop2: p4 size 37048832 extends beyond EOD, truncated
[  345.597728][T17919] Set syz1 is full, maxelem 65536 reached
[  345.717428][T17951] ip6t_srh: unknown srh match flags  4000
[  345.746154][T17951] loop4: detected capacity change from 0 to 8192
[  345.790030][T17951]  loop4: p1 p2 p3 p4
[  345.794182][T17951] loop4: p1 size 196608 extends beyond EOD, truncated
[  345.801994][T17951] loop4: p2 start 164919041 is beyond EOD, truncated
[  345.808694][T17951] loop4: p3 size 66846464 extends beyond EOD, truncated
[  345.816237][T17951] loop4: p4 size 37048832 extends beyond EOD, truncated
[  346.241215][T17962] ip6t_srh: unknown srh match flags  4000
[  346.388573][T17973] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5466'.
[  346.550853][T17979] openvswitch: netlink: Missing key (keys=40, expected=80)
[  346.565119][T17981] ip6t_srh: unknown srh match flags  4000
[  346.579516][T17972] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  346.588517][T17972] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  346.602415][T17981] loop2: detected capacity change from 0 to 8192
[  346.650062][T17981]  loop2: p1 p2 p3 p4
[  346.654109][T17981] loop2: p1 size 196608 extends beyond EOD, truncated
[  346.661750][T17981] loop2: p2 start 164919041 is beyond EOD, truncated
[  346.668507][T17981] loop2: p3 size 66846464 extends beyond EOD, truncated
[  346.676127][T17981] loop2: p4 size 37048832 extends beyond EOD, truncated
[  346.821966][T18004] netlink: 168 bytes leftover after parsing attributes in process `syz.3.5484'.
[  346.915262][T18013] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5487'.
[  346.967530][T18018] tracefs: Invalid uid '0x00000000ffffffff'
[  347.010316][T18023] ip6t_srh: unknown srh match flags  4000
[  347.272324][T18041] loop0: detected capacity change from 0 to 512
[  347.284801][T18041] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  347.342418][T18049] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5498'.
[  347.342436][ T4142] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  347.746761][T18061] ip6t_srh: unknown srh match flags  4000
[  347.776663][T18061] loop4: detected capacity change from 0 to 8192
[  347.820072][T18061]  loop4: p1 p2 p3 p4
[  347.824126][T18061] loop4: p1 size 196608 extends beyond EOD, truncated
[  347.831547][T18061] loop4: p2 start 164919041 is beyond EOD, truncated
[  347.838241][T18061] loop4: p3 size 66846464 extends beyond EOD, truncated
[  347.845962][T18061] loop4: p4 size 37048832 extends beyond EOD, truncated
[  347.900642][T18067] macvtap0: refused to change device tx_queue_len
[  348.071530][T18073] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5511'.
[  348.286657][ T3424] hid_parser_main: 33 callbacks suppressed
[  348.286670][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.299979][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.307357][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.315215][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.323031][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.330497][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.337940][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.345367][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.352853][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.360328][ T3424] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  348.368643][ T3424] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  348.385246][T18099] xt_hashlimit: size too large, truncated to 1048576
[  348.461064][T18102] loop0: detected capacity change from 0 to 256
[  348.475270][T18102] FAT-fs (loop0): codepage cp1255 not found
[  348.533412][T18111] Falling back ldisc for ttyS3.
[  348.629609][T18121] netlink: 'syz.0.5532': attribute type 10 has an invalid length.
[  348.637503][T18121] netlink: 65015 bytes leftover after parsing attributes in process `syz.0.5532'.
[  348.671419][T18123] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  348.791537][T18139] netlink: 'syz.2.5541': attribute type 10 has an invalid length.
[  348.799452][T18139] ipvlan0: entered allmulticast mode
[  348.805460][T18139] veth0_vlan: entered allmulticast mode
[  348.814946][T18139] team0: Device ipvlan0 failed to register rx_handler
[  348.869393][T18142] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5542'.
[  348.947711][T18140] loop0: detected capacity change from 0 to 1024
[  348.960423][T18140] ext3: Unknown parameter 'obj_type'
[  349.080642][T18161] loop2: detected capacity change from 0 to 512
[  349.090907][T18159] ip6t_srh: unknown srh match flags  4000
[  349.102387][T18161] EXT4-fs (loop2): orphan cleanup on readonly fs
[  349.111058][T18161] EXT4-fs warning (device loop2): ext4_xattr_inode_get:546: inode #11: comm syz.2.5551: ea_inode file size=4 entry size=6
[  349.129864][T18161] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  349.143116][T18161] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.5551: corrupted inode contents
[  349.155219][T18161] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #15: comm syz.2.5551: mark_inode_dirty error
[  349.161530][T18166] ip6t_srh: unknown srh match flags  4000
[  349.166829][T18161] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.5551: corrupted inode contents
[  349.184303][T18161] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2996: inode #15: comm syz.2.5551: mark_inode_dirty error
[  349.196547][T18161] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2999: inode #15: comm syz.2.5551: mark inode dirty (error -117)
[  349.209347][T18161] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[  349.218541][T18161] EXT4-fs (loop2): 1 orphan inode deleted
[  349.224715][T18161] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  349.254444][T18166] loop0: detected capacity change from 0 to 8192
[  349.281738][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.320540][T18166]  loop0: p1 p2 p3 p4
[  349.324642][T18166] loop0: p1 size 196608 extends beyond EOD, truncated
[  349.374882][T18166] loop0: p2 start 164919041 is beyond EOD, truncated
[  349.381727][T18166] loop0: p3 size 66846464 extends beyond EOD, truncated
[  349.397426][T18166] loop0: p4 size 37048832 extends beyond EOD, truncated
[  349.511395][T18187] ip6t_srh: unknown srh match flags  4000
[  349.550414][T18189] binfmt_misc: register: failed to install interpreter file ./file0
[  349.552323][T18187] loop2: detected capacity change from 0 to 8192
[  349.600719][T18187]  loop2: p1 p2 p3 p4
[  349.604909][T18187] loop2: p1 size 196608 extends beyond EOD, truncated
[  349.612624][T18187] loop2: p2 start 164919041 is beyond EOD, truncated
[  349.619324][T18187] loop2: p3 size 66846464 extends beyond EOD, truncated
[  349.627196][T18187] loop2: p4 size 37048832 extends beyond EOD, truncated
[  349.846881][T18208] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5572'.
[  349.950924][   T29] kauditd_printk_skb: 2681 callbacks suppressed
[  349.950938][   T29] audit: type=1400 audit(2000000116.919:155141): avc:  denied  { override_creds } for  pid=18220 comm="syz.0.5579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  350.020858][   T29] audit: type=1400 audit(2000000116.969:155142): avc:  denied  { bind } for  pid=18222 comm="syz.0.5580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  350.055357][   T29] audit: type=1326 audit(2000000117.029:155143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.0.5583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  350.083885][   T29] audit: type=1326 audit(2000000117.049:155144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.0.5583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  350.107866][   T29] audit: type=1326 audit(2000000117.059:155145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.0.5583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  350.131610][   T29] audit: type=1326 audit(2000000117.059:155146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.0.5583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  350.155325][   T29] audit: type=1326 audit(2000000117.059:155147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.0.5583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  350.209111][   T29] audit: type=1326 audit(2000000117.059:155148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.0.5583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  350.233057][   T29] audit: type=1326 audit(2000000117.059:155149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.0.5583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  350.234872][T18241] ip6t_srh: unknown srh match flags  4000
[  350.256828][   T29] audit: type=1326 audit(2000000117.059:155150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.0.5583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  350.303687][T18246] loop4: detected capacity change from 0 to 512
[  350.327123][T18248] loop2: detected capacity change from 0 to 8192
[  350.340181][T18246] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  350.343954][T18254] tap0: tun_chr_ioctl cmd 1074025675
[  350.360421][T18254] tap0: persist enabled
[  350.360621][T18246] EXT4-fs (loop4): mount failed
[  350.378261][T18254] tap0: tun_chr_ioctl cmd 1074025675
[  350.383682][T18254] tap0: persist enabled
[  350.390131][T18248]  loop2: p1 p2 p3 p4
[  350.394207][T18248] loop2: p1 size 196608 extends beyond EOD, truncated
[  350.401608][T18248] loop2: p2 start 164919041 is beyond EOD, truncated
[  350.408352][T18248] loop2: p3 size 66846464 extends beyond EOD, truncated
[  350.416120][T18248] loop2: p4 size 37048832 extends beyond EOD, truncated
[  350.472341][T18266] program syz.4.5596 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  350.702844][T18286] Falling back ldisc for ttyS3.
[  350.944152][T18312] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5614'.
[  351.006157][T18318] ip6t_rpfilter: unknown options
[  351.103065][T18329] ip6t_srh: unknown srh match flags  4000
[  351.545125][T18357] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5635'.
[  351.688245][T18362] ip6t_srh: unknown srh match flags  4000
[  351.751095][T18362] loop2: detected capacity change from 0 to 8192
[  351.790129][T18362]  loop2: p1 p2 p3 p4
[  351.796239][T18362] loop2: p1 size 196608 extends beyond EOD, truncated
[  351.803755][T18362] loop2: p2 start 164919041 is beyond EOD, truncated
[  351.810545][T18362] loop2: p3 size 66846464 extends beyond EOD, truncated
[  351.818073][T18362] loop2: p4 size 37048832 extends beyond EOD, truncated
[  351.880573][T18367] lo speed is unknown, defaulting to 1000
[  351.913389][ T4129] batadv1: left allmulticast mode
[  351.918463][ T4129] batadv1: left promiscuous mode
[  351.923529][ T4129] bridge0: port 3(batadv1) entered disabled state
[  351.936322][ T4129] bridge_slave_1: left allmulticast mode
[  351.942030][ T4129] bridge_slave_1: left promiscuous mode
[  351.947692][ T4129] bridge0: port 2(bridge_slave_1) entered disabled state
[  351.955726][ T4129] bridge_slave_0: left allmulticast mode
[  351.961529][ T4129] bridge_slave_0: left promiscuous mode
[  351.967242][ T4129] bridge0: port 1(bridge_slave_0) entered disabled state
[  352.041986][ T4129] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  352.052240][ T4129] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  352.062292][ T4129] bond0 (unregistering): Released all slaves
[  352.094782][T18367] wg1 speed is unknown, defaulting to 1000
[  352.123000][T18367] lo speed is unknown, defaulting to 1000
[  352.189749][T18367] chnl_net:caif_netlink_parms(): no params data found
[  352.224616][T18367] bridge0: port 1(bridge_slave_0) entered blocking state
[  352.231706][T18367] bridge0: port 1(bridge_slave_0) entered disabled state
[  352.239160][T18367] bridge_slave_0: entered allmulticast mode
[  352.245892][T18367] bridge_slave_0: entered promiscuous mode
[  352.253061][T18367] bridge0: port 2(bridge_slave_1) entered blocking state
[  352.260341][T18367] bridge0: port 2(bridge_slave_1) entered disabled state
[  352.268153][T18367] bridge_slave_1: entered allmulticast mode
[  352.277175][T18367] bridge_slave_1: entered promiscuous mode
[  352.306830][T18367] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  352.332940][T18367] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  352.354496][T18395] ip6t_srh: unknown srh match flags  4000
[  352.355042][T18367] team0: Port device team_slave_0 added
[  352.368069][T18367] team0: Port device team_slave_1 added
[  352.385447][T18367] batman_adv: batadv0: Adding interface: batadv_slave_0
[  352.392476][T18367] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  352.418579][T18367] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  352.450120][T18367] batman_adv: batadv0: Adding interface: batadv_slave_1
[  352.457119][T18367] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  352.483122][T18367] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  352.527255][T18367] hsr_slave_0: entered promiscuous mode
[  352.537575][T18367] hsr_slave_1: entered promiscuous mode
[  352.543799][T18367] debugfs: 'hsr0' already exists in 'hsr'
[  352.549542][T18367] Cannot create hsr debugfs directory
[  352.668362][T18367] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  352.683322][T18367] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  352.692651][T18367] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  352.701731][T18367] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  352.718943][T18367] bridge0: port 2(bridge_slave_1) entered blocking state
[  352.726045][T18367] bridge0: port 2(bridge_slave_1) entered forwarding state
[  352.733430][T18367] bridge0: port 1(bridge_slave_0) entered blocking state
[  352.740488][T18367] bridge0: port 1(bridge_slave_0) entered forwarding state
[  352.782476][T18367] 8021q: adding VLAN 0 to HW filter on device bond0
[  352.794796][ T4116] bridge0: port 1(bridge_slave_0) entered disabled state
[  352.810808][ T4116] bridge0: port 2(bridge_slave_1) entered disabled state
[  352.829217][T18367] 8021q: adding VLAN 0 to HW filter on device team0
[  352.843016][ T4124] bridge0: port 1(bridge_slave_0) entered blocking state
[  352.850152][ T4124] bridge0: port 1(bridge_slave_0) entered forwarding state
[  352.859652][T18421] tap0: tun_chr_ioctl cmd 1074025676
[  352.865032][T18421] tap0: owner set to 0
[  352.873340][ T4116] bridge0: port 2(bridge_slave_1) entered blocking state
[  352.880415][ T4116] bridge0: port 2(bridge_slave_1) entered forwarding state
[  352.900444][T18367] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  352.910950][T18367] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  353.005653][T18367] 8021q: adding VLAN 0 to HW filter on device batadv0
[  353.262960][T18367] veth0_vlan: entered promiscuous mode
[  353.272565][T18367] veth1_vlan: entered promiscuous mode
[  353.299283][T18367] veth0_macvtap: entered promiscuous mode
[  353.308224][T18367] veth1_macvtap: entered promiscuous mode
[  353.319830][T18367] batman_adv: batadv0: Interface activated: batadv_slave_0
[  353.330971][T18367] batman_adv: batadv0: Interface activated: batadv_slave_1
[  353.341789][ T4142] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  353.354181][ T4142] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  353.370345][ T4142] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  353.379398][ T4142] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  353.496978][T18484] ip6t_srh: unknown srh match flags  4000
[  353.549089][T18491] loop2: detected capacity change from 0 to 512
[  353.556730][T18491] EXT4-fs: Ignoring removed oldalloc option
[  353.563289][T18491] EXT4-fs: Ignoring removed mblk_io_submit option
[  353.570561][T18491] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  353.581909][T18491] EXT4-fs (loop2): orphan cleanup on readonly fs
[  353.588872][T18494] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5679'.
[  353.598865][T18491] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.5677: Failed to acquire dquot type 1
[  353.605563][T18494] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  353.612001][T18491] EXT4-fs (loop2): 1 truncate cleaned up
[  353.635040][T18491] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  353.689139][T18491] EXT4-fs: Ignoring removed orlov option
[  353.703365][T18491] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[  353.713032][T18491] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  353.746447][T18491] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  353.784047][T18491] EXT4-fs error (device loop2): __ext4_remount:6748: comm syz.2.5677: Abort forced by user
[  353.810233][T18491] EXT4-fs (loop2): Remounting filesystem read-only
[  353.816786][T18491] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  353.830307][T18491] ext4 filesystem being remounted at /1060/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  353.875073][T18520] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  353.883929][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.915674][T18522] syzkaller1: entered promiscuous mode
[  353.921203][T18522] syzkaller1: entered allmulticast mode
[  353.950790][T18526] ip6t_srh: unknown srh match flags  4000
[  353.956355][T18524] ip6t_srh: unknown srh match flags  4000
[  354.010419][T18526] loop5: detected capacity change from 0 to 8192
[  354.028434][T18524] loop2: detected capacity change from 0 to 8192
[  354.063259][T18526]  loop5: p1 p2 p3 p4
[  354.069225][T18526] loop5: p1 size 196608 extends beyond EOD, truncated
[  354.072892][T18524]  loop2: p1 p2 p3 p4
[  354.084100][T18526] loop5: p2 start 164919041 is beyond EOD, truncated
[  354.090870][T18526] loop5: p3 size 66846464 extends beyond EOD, truncated
[  354.093012][T18524] loop2: p1 size 196608 extends beyond EOD, truncated
[  354.108704][T18526] loop5: p4 size 37048832 extends beyond EOD, truncated
[  354.119511][T18524] loop2: p2 start 164919041 is beyond EOD, truncated
[  354.126257][T18524] loop2: p3 size 66846464 extends beyond EOD, truncated
[  354.150365][T18536] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5691'.
[  354.169863][T18524] loop2: p4 size 37048832 extends beyond EOD, truncated
[  354.549011][T18552] ip6t_srh: unknown srh match flags  4000
[  354.588041][T18552] loop5: detected capacity change from 0 to 8192
[  354.642404][T18552]  loop5: p1 p2 p3 p4
[  354.647617][T18552] loop5: p1 size 196608 extends beyond EOD, truncated
[  354.664769][T18552] loop5: p2 start 164919041 is beyond EOD, truncated
[  354.671586][T18552] loop5: p3 size 66846464 extends beyond EOD, truncated
[  354.684052][T18552] loop5: p4 size 37048832 extends beyond EOD, truncated
[  354.692208][T18567] program syz.0.5707 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  354.709048][T18567] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  354.738796][ T3401] hid_parser_main: 19 callbacks suppressed
[  354.738815][ T3401] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4
[  354.752501][ T3401] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2
[  354.761028][ T3401] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x3
[  354.776806][ T3401] hid-generic 0000:3000000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  354.812388][T18578] ip6t_srh: unknown srh match flags  4000
[  354.851936][T18578] loop0: detected capacity change from 0 to 8192
[  354.866237][T18580] xt_hashlimit: max too large, truncated to 1048576
[  354.900053][T18578]  loop0: p1 p2 p3 p4
[  354.904532][T18578] loop0: p1 size 196608 extends beyond EOD, truncated
[  354.915375][T18578] loop0: p2 start 164919041 is beyond EOD, truncated
[  354.922196][T18578] loop0: p3 size 66846464 extends beyond EOD, truncated
[  354.935654][T18578] loop0: p4 size 37048832 extends beyond EOD, truncated
[  354.960417][   T29] kauditd_printk_skb: 3520 callbacks suppressed
[  354.960431][   T29] audit: type=1326 audit(2000000121.939:158668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18577 comm="syz.0.5712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd410f5f34b code=0x7ffc0000
[  354.991243][   T29] audit: type=1326 audit(2000000121.939:158669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18588 comm="syz.2.5717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  355.015060][   T29] audit: type=1326 audit(2000000121.939:158670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18588 comm="syz.2.5717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  355.038788][   T29] audit: type=1326 audit(2000000121.939:158671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18588 comm="syz.2.5717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  355.062431][   T29] audit: type=1326 audit(2000000121.939:158672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18588 comm="syz.2.5717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  355.086148][   T29] audit: type=1326 audit(2000000121.939:158673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18588 comm="syz.2.5717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  355.109838][   T29] audit: type=1326 audit(2000000121.939:158674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18588 comm="syz.2.5717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  355.133553][   T29] audit: type=1326 audit(2000000121.939:158675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18588 comm="syz.2.5717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  355.157247][   T29] audit: type=1326 audit(2000000121.939:158676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18588 comm="syz.2.5717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  355.180968][   T29] audit: type=1326 audit(2000000121.939:158677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18588 comm="syz.2.5717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  355.320946][T18599] ip6t_srh: unknown srh match flags  4000
[  355.390356][T18608] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5725'.
[  355.400017][T18609] ip6t_srh: unknown srh match flags  4000
[  355.406482][T18599] loop5: detected capacity change from 0 to 8192
[  355.450517][T18599]  loop5: p1 p2 p3 p4
[  355.457263][T18599] loop5: p1 size 196608 extends beyond EOD, truncated
[  355.471599][T18613] netlink: 76 bytes leftover after parsing attributes in process `syz.2.5728'.
[  355.485541][T18599] loop5: p2 start 164919041 is beyond EOD, truncated
[  355.492301][T18599] loop5: p3 size 66846464 extends beyond EOD, truncated
[  355.500200][T18599] loop5: p4 size 37048832 extends beyond EOD, truncated
[  355.763370][T18627] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  355.902768][T18641] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  355.917443][T18644] loop2: detected capacity change from 0 to 1024
[  355.940041][T18644] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  355.953726][T18644] ext4 filesystem being mounted at /1085/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  355.991332][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  356.047894][T18665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  356.056597][T18665] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  356.118744][T18670] loop2: detected capacity change from 0 to 8192
[  356.160086][T18670]  loop2: p1 p2 p3 p4
[  356.164184][T18670] loop2: p1 size 196608 extends beyond EOD, truncated
[  356.171604][T18670] loop2: p2 start 164919041 is beyond EOD, truncated
[  356.178289][T18670] loop2: p3 size 66846464 extends beyond EOD, truncated
[  356.185765][T18670] loop2: p4 size 37048832 extends beyond EOD, truncated
[  356.379418][T18676] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5752'.
[  356.555806][T18682] srh1_mt6_check: 3 callbacks suppressed
[  356.555856][T18682] ip6t_srh: unknown srh match flags  4000
[  356.603493][T18688] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5758'.
[  356.605541][T18682] loop2: detected capacity change from 0 to 8192
[  356.662655][T18682]  loop2: p1 p2 p3 p4
[  356.670149][T18682] loop2: p1 size 196608 extends beyond EOD, truncated
[  356.678618][T18682] loop2: p2 start 164919041 is beyond EOD, truncated
[  356.683208][T18697] ip6t_srh: unknown srh match flags  4000
[  356.685365][T18682] loop2: p3 size 66846464 extends beyond EOD, truncated
[  356.716747][T18682] loop2: p4 size 37048832 extends beyond EOD, truncated
[  356.794874][T18707] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  357.071546][T18724] ip6t_srh: unknown srh match flags  4000
[  357.107868][T18724] loop5: detected capacity change from 0 to 8192
[  357.160295][T18724]  loop5: p1 p2 p3 p4
[  357.164337][T18724] loop5: p1 size 196608 extends beyond EOD, truncated
[  357.171841][T18724] loop5: p2 start 164919041 is beyond EOD, truncated
[  357.178695][T18724] loop5: p3 size 66846464 extends beyond EOD, truncated
[  357.186386][T18724] loop5: p4 size 37048832 extends beyond EOD, truncated
[  357.223645][T18740] lo speed is unknown, defaulting to 1000
[  357.262572][T18744] loop5: detected capacity change from 0 to 1024
[  357.269638][T18744] EXT4-fs: Ignoring removed bh option
[  357.275364][T18744] EXT4-fs: inline encryption not supported
[  357.281973][T18744] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  357.290931][T18740] wg1 speed is unknown, defaulting to 1000
[  357.299052][T18744] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  357.308354][T18744] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 2: comm syz.5.5783: lblock 2 mapped to illegal pblock 2 (length 1)
[  357.322759][T18744] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 48: comm syz.5.5783: lblock 0 mapped to illegal pblock 48 (length 1)
[  357.327977][T18740] lo speed is unknown, defaulting to 1000
[  357.343023][T18744] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.5783: Failed to acquire dquot type 0
[  357.355030][T18744] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  357.365124][T18744] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #11: comm syz.5.5783: mark_inode_dirty error
[  357.376972][T18744] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  357.388767][T18744] EXT4-fs (loop5): 1 orphan inode deleted
[  357.395403][T18744] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.408031][   T12] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  357.424631][   T12] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:0: Failed to release dquot type 0
[  357.436979][T18744] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  357.453812][T18748] ip6t_srh: unknown srh match flags  4000
[  357.469517][T18367] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.496981][T18748] loop2: detected capacity change from 0 to 8192
[  357.518933][T18754] loop5: detected capacity change from 0 to 512
[  357.530192][T18748]  loop2: p1 p2 p3 p4
[  357.534313][T18748] loop2: p1 size 196608 extends beyond EOD, truncated
[  357.534816][T18754] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.543048][T18748] loop2: p2 start 164919041 is beyond EOD, truncated
[  357.560354][T18748] loop2: p3 size 66846464 extends beyond EOD, truncated
[  357.568166][T18754] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  357.568738][T18748] loop2: p4 size 37048832 extends beyond EOD, truncated
[  357.595224][T18367] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.725967][T18763] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5788'.
[  357.868730][T18775] netlink: 59 bytes leftover after parsing attributes in process `syz.1.5795'.
[  357.957421][T18784] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  357.966637][T18786] SELinux:  Context system_u:object_r:pam_console_exec_t:s0 is not valid (left unmapped).
[  358.035989][T18796] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5805'.
[  358.053853][T18802] loop2: detected capacity change from 0 to 1024
[  358.060938][T18802] EXT4-fs: Ignoring removed bh option
[  358.071559][T18802] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  358.100319][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.740441][T18830] IPv6: NLM_F_CREATE should be specified when creating new route
[  358.762360][T18832] loop0: detected capacity change from 0 to 1024
[  358.769210][T18832] EXT4-fs (loop0): bad geometry: first data block 0 is beyond end of filesystem (0)
[  358.796595][T18834] macvtap0: refused to change device tx_queue_len
[  358.846333][T18840] random: crng reseeded on system resumption
[  358.898420][T18845] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5826'.
[  358.948630][T18855] netlink: 'syz.3.5831': attribute type 1 has an invalid length.
[  358.994450][T18862] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5834'.
[  359.049738][T18869] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5837'.
[  359.116517][T18882] 9pnet: Unknown protocol version ���zh
[  359.146195][T18886] ip6t_srh: unknown srh match flags  4000
[  359.188177][T18886] loop2: detected capacity change from 0 to 8192
[  359.220169][T18886]  loop2: p1 p2 p3 p4
[  359.224249][T18886] loop2: p1 size 196608 extends beyond EOD, truncated
[  359.233295][T18886] loop2: p2 start 164919041 is beyond EOD, truncated
[  359.240130][T18886] loop2: p3 size 66846464 extends beyond EOD, truncated
[  359.248381][T18886] loop2: p4 size 37048832 extends beyond EOD, truncated
[  359.308704][T18902] ip6t_srh: unknown srh match flags  4000
[  359.348420][T18902] loop0: detected capacity change from 0 to 8192
[  359.390121][T18902]  loop0: p1 p2 p3 p4
[  359.394240][T18902] loop0: p1 size 196608 extends beyond EOD, truncated
[  359.402653][T18902] loop0: p2 start 164919041 is beyond EOD, truncated
[  359.409371][T18902] loop0: p3 size 66846464 extends beyond EOD, truncated
[  359.417725][T18902] loop0: p4 size 37048832 extends beyond EOD, truncated
[  359.678428][T18916] loop0: detected capacity change from 0 to 512
[  359.685422][T18916] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  359.702046][T18916] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.719274][T18916] ext4 filesystem being mounted at /1182/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  359.742054][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.867839][T18937] binfmt_misc: register: failed to install interpreter file ./file0
[  359.970632][   T29] kauditd_printk_skb: 3805 callbacks suppressed
[  359.970648][   T29] audit: type=1326 audit(2000000126.949:162480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d53c365e7 code=0x7ffc0000
[  360.000553][   T29] audit: type=1326 audit(2000000126.949:162481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d53bdb829 code=0x7ffc0000
[  360.024162][   T29] audit: type=1326 audit(2000000126.949:162482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f4d53c3f749 code=0x7ffc0000
[  360.048139][   T29] audit: type=1326 audit(2000000126.959:162483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d53c365e7 code=0x7ffc0000
[  360.071791][   T29] audit: type=1326 audit(2000000126.959:162484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d53bdb829 code=0x7ffc0000
[  360.095371][   T29] audit: type=1326 audit(2000000126.959:162485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f4d53c3f749 code=0x7ffc0000
[  360.119010][   T29] audit: type=1326 audit(2000000126.969:162486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d53c365e7 code=0x7ffc0000
[  360.142597][   T29] audit: type=1326 audit(2000000126.969:162487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d53bdb829 code=0x7ffc0000
[  360.166175][   T29] audit: type=1326 audit(2000000126.969:162488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f4d53c3f749 code=0x7ffc0000
[  360.189862][   T29] audit: type=1326 audit(2000000126.979:162489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18909 comm="syz.5.5855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d53c365e7 code=0x7ffc0000
[  360.258836][T18965] ip6t_srh: unknown srh match flags  4000
[  360.936263][T19029] __nla_validate_parse: 1 callbacks suppressed
[  360.936281][T19029] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5906'.
[  361.245198][T19033] loop2: detected capacity change from 0 to 1024
[  361.252297][T19033] EXT4-fs: Ignoring removed mblk_io_submit option
[  361.260766][T19033] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.286491][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.333367][T19040] loop2: detected capacity change from 0 to 764
[  361.344295][T19040] rock: directory entry would overflow storage
[  361.350615][T19040] rock: sig=0x4f50, size=4, remaining=3
[  361.356209][T19040] iso9660: Corrupted directory entry in block 6 of inode 1792
[  361.364062][T19040] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  361.398537][T19042] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5912'.
[  361.480458][T19059] binfmt_misc: register: failed to install interpreter file ./file2
[  361.502689][T19063] ip6t_srh: unknown srh match flags  4000
[  361.519695][T19065] pimreg: entered allmulticast mode
[  361.526926][T19065] pimreg: left allmulticast mode
[  361.540512][T19063] loop0: detected capacity change from 0 to 8192
[  361.580343][T19063]  loop0: p1 p2 p3 p4
[  361.588145][T19063] loop0: p1 size 196608 extends beyond EOD, truncated
[  361.604883][T19063] loop0: p2 start 164919041 is beyond EOD, truncated
[  361.611699][T19063] loop0: p3 size 66846464 extends beyond EOD, truncated
[  361.630714][T19063] loop0: p4 size 37048832 extends beyond EOD, truncated
[  361.646544][T19078] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  361.655621][T19078] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  361.828030][T19093] netlink: 68 bytes leftover after parsing attributes in process `syz.1.5933'.
[  361.877302][T19098] ip6t_srh: unknown srh match flags  4000
[  361.889031][T19100] block device autoloading is deprecated and will be removed.
[  361.919286][T19098] loop0: detected capacity change from 0 to 8192
[  361.970135][T19110] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  361.970149][T19098]  loop0: p1 p2 p3 p4
[  361.970185][T19098] loop0: p1 size 196608 extends beyond EOD, truncated
[  361.991019][T19098] loop0: p2 start 164919041 is beyond EOD, truncated
[  361.997707][T19098] loop0: p3 size 66846464 extends beyond EOD, truncated
[  362.006292][T19098] loop0: p4 size 37048832 extends beyond EOD, truncated
[  362.060659][T19116] ip6t_srh: unknown srh match flags  4000
[  362.305332][T19131] ip6t_srh: unknown srh match flags  4000
[  362.363606][T19131] loop0: detected capacity change from 0 to 8192
[  362.402634][T19141] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  362.410266][T19131]  loop0: p1 p2 p3 p4
[  362.416200][T19131] loop0: p1 size 196608 extends beyond EOD, truncated
[  362.431310][T19131] loop0: p2 start 164919041 is beyond EOD, truncated
[  362.438094][T19131] loop0: p3 size 66846464 extends beyond EOD, truncated
[  362.446355][T19131] loop0: p4 size 37048832 extends beyond EOD, truncated
[  362.593051][T19166] SELinux: failed to load policy
[  362.716220][T19186] loop5: detected capacity change from 0 to 512
[  362.731866][T19186] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  362.751131][T19186] EXT4-fs (loop5): 1 truncate cleaned up
[  362.769260][T19186] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.769646][T19193] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5978'.
[  362.797501][T19186] EXT4-fs (loop5): Online resizing not supported with sparse_super2
[  362.831337][T18367] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.842944][T19199] ip6t_srh: unknown srh match flags  4000
[  362.909684][T19199] loop3: detected capacity change from 0 to 8192
[  362.921408][T19207] loop0: detected capacity change from 0 to 256
[  362.935572][T19207] FAT-fs (loop0): bogus number of FAT sectors
[  362.941705][T19207] FAT-fs (loop0): Can't find a valid FAT filesystem
[  362.951613][T19199]  loop3: p1 p2 p3 p4
[  362.955722][T19199] loop3: p1 size 196608 extends beyond EOD, truncated
[  362.987361][T19199] loop3: p2 start 164919041 is beyond EOD, truncated
[  362.994158][T19199] loop3: p3 size 66846464 extends beyond EOD, truncated
[  363.023996][T19199] loop3: p4 size 37048832 extends beyond EOD, truncated
[  363.063794][T19226] loop0: detected capacity change from 0 to 128
[  363.084302][T19226] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  363.126956][T19224] ip6t_srh: unknown srh match flags  4000
[  363.132857][T19226] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  363.256390][T19224] loop2: detected capacity change from 0 to 8192
[  363.311894][T19237] ip6t_srh: unknown srh match flags  4000
[  363.320181][T19224]  loop2: p1 p2 p3 p4
[  363.324244][T19224] loop2: p1 size 196608 extends beyond EOD, truncated
[  363.332934][T19241] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5995'.
[  363.342572][T19224] loop2: p2 start 164919041 is beyond EOD, truncated
[  363.349274][T19224] loop2: p3 size 66846464 extends beyond EOD, truncated
[  363.356792][T19241] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  363.365417][T19224] loop2: p4 size 37048832 extends beyond EOD, truncated
[  363.393265][T19245] ip6t_srh: unknown srh match flags  4000
[  363.454146][T19237] loop5: detected capacity change from 0 to 8192
[  363.488665][T19245] loop0: detected capacity change from 0 to 8192
[  363.523109][T19237]  loop5: p1 p2 p3 p4
[  363.527177][T19237] loop5: p1 size 196608 extends beyond EOD, truncated
[  363.534424][T19252] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6004'.
[  363.545271][T19245]  loop0: p1 p2 p3 p4
[  363.549352][T19245] loop0: p1 size 196608 extends beyond EOD, truncated
[  363.559866][T19237] loop5: p2 start 164919041 is beyond EOD, truncated
[  363.566581][T19237] loop5: p3 size 66846464 extends beyond EOD, truncated
[  363.591783][T19245] loop0: p2 start 164919041 is beyond EOD, truncated
[  363.598549][T19245] loop0: p3 size 66846464 extends beyond EOD, truncated
[  363.606170][T19237] loop5: p4 size 37048832 extends beyond EOD, truncated
[  363.646196][T19245] loop0: p4 size 37048832 extends beyond EOD, truncated
[  363.673217][T19255] 9pnet_fd: Insufficient options for proto=fd
[  363.738098][T19257] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6006'.
[  364.015929][T19281] SELinux: failed to load policy
[  364.186858][T19303] netlink: 'syz.2.6028': attribute type 1 has an invalid length.
[  364.228096][T19309] netlink: 16 bytes leftover after parsing attributes in process `'.
[  364.255233][T19313] loop0: detected capacity change from 0 to 512
[  364.281677][T19313] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  364.285787][T19321] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  364.303191][T19313] EXT4-fs (loop0): mount failed
[  364.371431][T19332] sctp: [Deprecated]: syz.2.6042 (pid 19332) Use of int in maxseg socket option.
[  364.371431][T19332] Use struct sctp_assoc_value instead
[  364.423281][T19344] netlink: 300 bytes leftover after parsing attributes in process `syz.2.6047'.
[  364.464607][T19348] ip6t_srh: unknown srh match flags  4000
[  364.510140][T19348] loop2: detected capacity change from 0 to 8192
[  364.518674][T19354] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6046'.
[  364.539977][T19348]  loop2: p1 p2 p3 p4
[  364.547603][T19348] loop2: p1 size 196608 extends beyond EOD, truncated
[  364.565071][T19348] loop2: p2 start 164919041 is beyond EOD, truncated
[  364.571822][T19348] loop2: p3 size 66846464 extends beyond EOD, truncated
[  364.585185][T19348] loop2: p4 size 37048832 extends beyond EOD, truncated
[  364.606587][T19357] netlink: zone id is out of range
[  364.611819][T19357] netlink: zone id is out of range
[  364.654711][T19357] netlink: set zone limit has 8 unknown bytes
[  364.749003][T19366] loop5: detected capacity change from 0 to 512
[  364.756329][T19366] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  364.772110][T19366] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.787399][T19373] loop3: detected capacity change from 0 to 128
[  364.795961][T19366] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  364.827697][T18367] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.867955][T19377] ip6t_srh: unknown srh match flags  4000
[  364.907396][T19377] loop5: detected capacity change from 0 to 8192
[  364.950025][T19377]  loop5: p1 p2 p3 p4
[  364.954123][T19377] loop5: p1 size 196608 extends beyond EOD, truncated
[  364.965428][T19377] loop5: p2 start 164919041 is beyond EOD, truncated
[  364.972293][T19377] loop5: p3 size 66846464 extends beyond EOD, truncated
[  364.980721][   T29] kauditd_printk_skb: 1725 callbacks suppressed
[  364.980733][   T29] audit: type=1326 audit(2000000131.959:164214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19334 comm="syz.1.6043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7faa1fc965e7 code=0x7ffc0000
[  364.981271][T19377] loop5: p4 size 37048832 extends beyond EOD, 
[  364.987019][   T29] audit: type=1326 audit(2000000131.959:164215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19334 comm="syz.1.6043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7faa1fc3b829 code=0x7ffc0000
[  365.010599][T19377] truncated
[  365.053970][   T29] audit: type=1326 audit(2000000131.959:164216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19334 comm="syz.1.6043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  365.077749][   T29] audit: type=1326 audit(2000000131.999:164217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19334 comm="syz.1.6043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7faa1fc965e7 code=0x7ffc0000
[  365.101313][   T29] audit: type=1326 audit(2000000131.999:164218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19334 comm="syz.1.6043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7faa1fc3b829 code=0x7ffc0000
[  365.124937][   T29] audit: type=1326 audit(2000000131.999:164219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19334 comm="syz.1.6043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  365.148700][   T29] audit: type=1326 audit(2000000131.999:164220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19334 comm="syz.1.6043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7faa1fc965e7 code=0x7ffc0000
[  365.172291][   T29] audit: type=1326 audit(2000000131.999:164221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19334 comm="syz.1.6043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7faa1fc3b829 code=0x7ffc0000
[  365.195896][   T29] audit: type=1326 audit(2000000131.999:164222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19334 comm="syz.1.6043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  365.219754][   T29] audit: type=1326 audit(2000000131.999:164223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19376 comm="syz.5.6061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f4d53c3de3a code=0x7ffc0000
[  365.608566][T19428] netlink: 'syz.5.6082': attribute type 1 has an invalid length.
[  365.634814][T19430] netlink: 'syz.2.6083': attribute type 3 has an invalid length.
[  365.687860][T19438] loop0: detected capacity change from 0 to 512
[  365.695714][T19438] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  365.707323][T19438] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  365.721934][T19438] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  365.736548][    T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x4
[  365.739540][T19438] EXT4-fs (loop0): 1 truncate cleaned up
[  365.744293][    T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x2
[  365.762619][T19438] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  365.779403][    T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x3
[  365.803945][    T9] hid-generic 0000:3000000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  365.815689][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.881058][T19458] loop3: detected capacity change from 0 to 128
[  365.886505][T19460] 9pnet_fd: Insufficient options for proto=fd
[  365.894554][T19458] FAT-fs (loop3): Directory bread(block 414) failed
[  365.902276][T19458] FAT-fs (loop3): Directory bread(block 415) failed
[  365.908991][T19458] FAT-fs (loop3): Directory bread(block 416) failed
[  365.918691][T19458] FAT-fs (loop3): Directory bread(block 417) failed
[  365.927654][T19458] FAT-fs (loop3): Directory bread(block 418) failed
[  365.934688][T19458] FAT-fs (loop3): Directory bread(block 419) failed
[  365.941705][T19458] FAT-fs (loop3): Directory bread(block 420) failed
[  365.948820][T19458] FAT-fs (loop3): Directory bread(block 421) failed
[  365.966389][T19458] FAT-fs (loop3): FAT read failed (blocknr 128)
[  366.010554][T19477] netdevsim netdevsim5: Direct firmware load for ./file0 failed with error -2
[  366.039099][T19481] loop3: detected capacity change from 0 to 512
[  366.048115][T19481] EXT4-fs (loop3): 1 orphan inode deleted
[  366.056416][T19481] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  366.083707][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.309958][T19505] __nla_validate_parse: 5 callbacks suppressed
[  366.309972][T19505] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6117'.
[  366.782243][T19511] ip6t_srh: unknown srh match flags  4000
[  366.820926][T19511] loop0: detected capacity change from 0 to 8192
[  366.870123][T19511]  loop0: p1 p2 p3 p4
[  366.874215][T19511] loop0: p1 size 196608 extends beyond EOD, truncated
[  366.881814][T19511] loop0: p2 start 164919041 is beyond EOD, truncated
[  366.888500][T19511] loop0: p3 size 66846464 extends beyond EOD, truncated
[  366.896062][T19511] loop0: p4 size 37048832 extends beyond EOD, truncated
[  367.000295][T19517] netlink: 108 bytes leftover after parsing attributes in process `syz.5.6121'.
[  367.043088][T19522] netlink: 76 bytes leftover after parsing attributes in process `syz.3.6123'.
[  367.167115][T19526] loop3: detected capacity change from 0 to 8192
[  367.225961][T19532] netlink: 'syz.1.6128': attribute type 21 has an invalid length.
[  367.239978][T19532] netlink: 156 bytes leftover after parsing attributes in process `syz.1.6128'.
[  367.249137][T19532] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6128'.
[  367.273663][T19538] sd 0:0:1:0: device reset
[  367.275033][T19536] hub 6-0:1.0: USB hub found
[  367.283704][T19536] hub 6-0:1.0: 8 ports detected
[  367.318061][T19543] loop5: detected capacity change from 0 to 128
[  367.330396][T19541] syzkaller1: entered promiscuous mode
[  367.335936][T19541] syzkaller1: entered allmulticast mode
[  367.341877][T19543] FAT-fs (loop5): bogus sectors per cluster 0
[  367.347980][T19543] FAT-fs (loop5): Can't find a valid FAT filesystem
[  367.423334][T19553] ip6t_srh: unknown srh match flags  4000
[  367.512891][T19553] loop0: detected capacity change from 0 to 8192
[  367.560370][T19553]  loop0: p1 p2 p3 p4
[  367.567752][T19553] loop0: p1 size 196608 extends beyond EOD, truncated
[  367.579435][T19553] loop0: p2 start 164919041 is beyond EOD, truncated
[  367.586328][T19553] loop0: p3 size 66846464 extends beyond EOD, truncated
[  367.603402][T19553] loop0: p4 size 37048832 extends beyond EOD, truncated
[  367.977997][T19586] ip6t_srh: unknown srh match flags  4000
[  368.040606][T19586] loop0: detected capacity change from 0 to 8192
[  368.100243][T19586]  loop0: p1 p2 p3 p4
[  368.105526][T19586] loop0: p1 size 196608 extends beyond EOD, truncated
[  368.125441][T19586] loop0: p2 start 164919041 is beyond EOD, truncated
[  368.132210][T19586] loop0: p3 size 66846464 extends beyond EOD, truncated
[  368.157724][T19586] loop0: p4 size 37048832 extends beyond EOD, truncated
[  368.185925][T19596] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6154'.
[  368.377913][T19604] loop2: detected capacity change from 0 to 512
[  368.385401][T19604] EXT4-fs: Ignoring removed bh option
[  368.391611][T19604] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  368.403466][T19604] EXT4-fs (loop2): 1 truncate cleaned up
[  368.410818][T19604] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  368.426000][T19604] EXT4-fs (loop2): shut down requested (2)
[  368.442463][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.513254][T19617] SELinux:  policydb version 0 does not match my version range 15-35
[  368.522023][T19617] SELinux: failed to load policy
[  368.544375][T19621] ip6t_srh: unknown srh match flags  4000
[  368.568282][T19623] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  368.593272][T19621] loop0: detected capacity change from 0 to 8192
[  368.604252][T19627] $H�: renamed from bond0 (while UP)
[  368.611289][T19627] $H�: entered promiscuous mode
[  368.650138][T19621]  loop0: p1 p2 p3 p4
[  368.654387][T19621] loop0: p1 size 196608 extends beyond EOD, truncated
[  368.662030][T19621] loop0: p2 start 164919041 is beyond EOD, truncated
[  368.668814][T19621] loop0: p3 size 66846464 extends beyond EOD, truncated
[  368.676522][T19621] loop0: p4 size 37048832 extends beyond EOD, truncated
[  368.700113][T19633] ip6t_srh: unknown srh match flags  4000
[  368.740049][T19633] loop2: detected capacity change from 0 to 8192
[  368.790167][T19633]  loop2: p1 p2 p3 p4
[  368.795385][T19633] loop2: p1 size 196608 extends beyond EOD, truncated
[  368.818658][T19633] loop2: p2 start 164919041 is beyond EOD, truncated
[  368.825443][T19633] loop2: p3 size 66846464 extends beyond EOD, truncated
[  368.837788][T19633] loop2: p4 size 37048832 extends beyond EOD, truncated
[  368.949038][T19651] loop3: detected capacity change from 0 to 764
[  368.968106][T19651] Symlink component flag not implemented
[  369.018895][T19659] ALSA: seq fatal error: cannot create timer (-19)
[  369.060333][T19675] ip6t_srh: unknown srh match flags  4000
[  369.091818][T19679] ip6t_srh: unknown srh match flags  4000
[  369.145183][T19679] loop2: detected capacity change from 0 to 8192
[  369.173239][T19689] hub 5-0:1.0: USB hub found
[  369.177954][T19689] hub 5-0:1.0: 8 ports detected
[  369.183252][T19679]  loop2: p1 p2 p3 p4
[  369.189285][T19679] loop2: p1 size 196608 extends beyond EOD, truncated
[  369.202130][T19679] loop2: p2 start 164919041 is beyond EOD, truncated
[  369.205792][T19693] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6198'.
[  369.208865][T19679] loop2: p3 size 66846464 extends beyond EOD, truncated
[  369.228473][T19679] loop2: p4 size 37048832 extends beyond EOD, truncated
[  369.264392][T19699] ip6t_srh: unknown srh match flags  4000
[  369.333113][T19699] loop5: detected capacity change from 0 to 8192
[  369.362317][T19710] 9p: Unknown Cache mode or invalid value m
[  369.378555][T19712] loop3: detected capacity change from 0 to 1024
[  369.385179][T19699]  loop5: p1 p2 p3 p4
[  369.389275][T19699] loop5: p1 size 196608 extends beyond EOD, truncated
[  369.396811][T19699] loop5: p2 start 164919041 is beyond EOD, truncated
[  369.403582][T19699] loop5: p3 size 66846464 extends beyond EOD, truncated
[  369.411267][T19699] loop5: p4 size 37048832 extends beyond EOD, truncated
[  369.411975][T19712] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  369.454467][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.510714][T19720] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  369.517337][T19720] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  369.525627][T19720] vhci_hcd vhci_hcd.0: Device attached
[  369.534663][T19720] vhci_hcd vhci_hcd.0: port 0 already used
[  369.542755][T19721] vhci_hcd: connection closed
[  369.542925][ T4124] vhci_hcd: stop threads
[  369.551872][ T4124] vhci_hcd: release socket
[  369.556278][ T4124] vhci_hcd: disconnect device
[  369.579023][T19730] bridge0: port 2($H�) entered blocking state
[  369.585390][T19730] bridge0: port 2($H�) entered disabled state
[  369.592105][T19730] $H�: entered allmulticast mode
[  369.599612][T19730] $H�: left allmulticast mode
[  369.604962][T19730] bridge0: port 2($H�) entered disabled state
[  369.629609][T19737] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6214'.
[  369.631099][T19736] ip6t_srh: unknown srh match flags  4000
[  369.753089][T19753] ip6t_srh: unknown srh match flags  4000
[  369.785339][T19757] netlink: 104 bytes leftover after parsing attributes in process `syz.2.6225'.
[  369.919056][T19765] ip6t_srh: unknown srh match flags  4000
[  369.992080][   T29] kauditd_printk_skb: 2371 callbacks suppressed
[  369.992096][   T29] audit: type=1326 audit(2000000136.969:166595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19752 comm="syz.0.6223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  370.022231][   T29] audit: type=1326 audit(2000000136.969:166596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19752 comm="syz.0.6223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  370.049882][   T29] audit: type=1326 audit(2000000136.969:166597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19768 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  370.073724][   T29] audit: type=1326 audit(2000000136.969:166598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19768 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  370.097519][   T29] audit: type=1326 audit(2000000136.969:166599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19768 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  370.121328][   T29] audit: type=1326 audit(2000000136.969:166600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19768 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  370.145050][   T29] audit: type=1326 audit(2000000136.969:166601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19768 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  370.168838][   T29] audit: type=1326 audit(2000000136.969:166602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19768 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  370.192600][   T29] audit: type=1326 audit(2000000136.969:166603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19768 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  370.216404][   T29] audit: type=1326 audit(2000000136.969:166604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19768 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7faa1fc9f749 code=0x7ffc0000
[  370.246174][T19774] atomic_op ffff88811b0a9928 conn xmit_atomic 0000000000000000
[  370.420896][T19793] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6238'.
[  370.430168][T19795] loop5: detected capacity change from 0 to 8192
[  370.480282][T19795]  loop5: p1 p2 p3 p4
[  370.484545][T19795] loop5: p1 size 196608 extends beyond EOD, truncated
[  370.492119][T19795] loop5: p2 start 164919041 is beyond EOD, truncated
[  370.498821][T19795] loop5: p3 size 66846464 extends beyond EOD, truncated
[  370.526256][T19795] loop5: p4 size 37048832 extends beyond EOD, truncated
[  370.800536][T19818] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  370.808830][T19818] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  371.312267][T19833] loop3: detected capacity change from 0 to 8192
[  371.360136][T19833]  loop3: p1 p2 p3 p4
[  371.364296][T19833] loop3: p1 size 196608 extends beyond EOD, truncated
[  371.371880][T19833] loop3: p2 start 164919041 is beyond EOD, truncated
[  371.378719][T19833] loop3: p3 size 66846464 extends beyond EOD, truncated
[  371.386517][T19833] loop3: p4 size 37048832 extends beyond EOD, truncated
[  371.483196][T19840] loop3: detected capacity change from 0 to 8192
[  371.520145][T19840]  loop3: p1 p2 p3 p4
[  371.524177][T19840] loop3: p1 size 196608 extends beyond EOD, truncated
[  371.531604][T19840] loop3: p2 start 164919041 is beyond EOD, truncated
[  371.538286][T19840] loop3: p3 size 66846464 extends beyond EOD, truncated
[  371.545932][T19840] loop3: p4 size 37048832 extends beyond EOD, truncated
[  371.579103][T19848] __nla_validate_parse: 1 callbacks suppressed
[  371.579117][T19848] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6262'.
[  371.611182][T19850] bond0: option packets_per_slave: invalid value (18446744072268814746)
[  371.619615][T19850] bond0: option packets_per_slave: allowed values 0 - 65535
[  371.777840][T19871] loop5: detected capacity change from 0 to 512
[  371.789287][T19873] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6273'.
[  371.803001][T19871] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.828233][T19871] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  371.866745][T19871] xt_hashlimit: max too large, truncated to 1048576
[  371.887892][T19871] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.6274: corrupted xattr block 6: invalid header
[  371.901565][T19871] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=12
[  371.911365][T19871] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.6274: corrupted xattr block 6: invalid header
[  371.925632][T19871] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=12
[  371.970853][T18367] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.995555][T19893] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6279'.
[  372.312717][T19920] loop5: detected capacity change from 0 to 8192
[  372.350512][T19920]  loop5: p1 p2 p3 p4
[  372.354696][T19920] loop5: p1 size 196608 extends beyond EOD, truncated
[  372.369276][T19920] loop5: p2 start 164919041 is beyond EOD, truncated
[  372.376042][T19920] loop5: p3 size 66846464 extends beyond EOD, truncated
[  372.408433][T19920] loop5: p4 size 37048832 extends beyond EOD, truncated
[  372.792575][T19943] vhci_hcd: invalid port number 9
[  372.797680][T19943] vhci_hcd: default hub control req: 000e vc5d2 i0009 l0
[  372.970053][T19965] netlink: 'syz.1.6313': attribute type 12 has an invalid length.
[  373.106533][T19987] IPv6: NLM_F_CREATE should be specified when creating new route
[  373.145579][T19993] srh1_mt6_check: 9 callbacks suppressed
[  373.145620][T19993] ip6t_srh: unknown srh match flags  4000
[  373.192395][T19993] loop3: detected capacity change from 0 to 8192
[  373.220142][T19993]  loop3: p1 p2 p3 p4
[  373.224188][T19993] loop3: p1 size 196608 extends beyond EOD, truncated
[  373.240505][T19993] loop3: p2 start 164919041 is beyond EOD, truncated
[  373.247187][T19993] loop3: p3 size 66846464 extends beyond EOD, truncated
[  373.255035][T19993] loop3: p4 size 37048832 extends beyond EOD, truncated
[  373.359949][ T3527] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  373.497184][T20017] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6337'.
[  373.509200][T20019] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6336'.
[  373.836001][T20042] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6345'.
[  374.331126][T20065] vhci_hcd: invalid port number 96
[  374.336291][T20065] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  374.369806][T20071] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6361'.
[  374.598871][T20096] netlink: 19 bytes leftover after parsing attributes in process `syz.2.6372'.
[  374.641521][T20100] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  374.775374][T20115] ip6t_srh: unknown srh match flags  4000
[  374.974937][T20144] ip6t_srh: unknown srh match flags  4000
[  374.999949][   T29] kauditd_printk_skb: 2614 callbacks suppressed
[  374.999964][   T29] audit: type=1326 audit(2000000141.979:169219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd410f565e7 code=0x7ffc0000
[  375.051249][   T29] audit: type=1326 audit(2000000141.979:169220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd410efb829 code=0x7ffc0000
[  375.075014][   T29] audit: type=1326 audit(2000000141.979:169221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  375.098716][   T29] audit: type=1326 audit(2000000141.979:169222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd410f565e7 code=0x7ffc0000
[  375.122593][   T29] audit: type=1326 audit(2000000141.979:169223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd410efb829 code=0x7ffc0000
[  375.146350][   T29] audit: type=1326 audit(2000000141.979:169224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  375.170285][   T29] audit: type=1326 audit(2000000141.979:169225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd410f565e7 code=0x7ffc0000
[  375.193863][   T29] audit: type=1326 audit(2000000141.979:169226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd410efb829 code=0x7ffc0000
[  375.217506][   T29] audit: type=1326 audit(2000000141.979:169227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  375.241211][   T29] audit: type=1326 audit(2000000142.009:169228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20070 comm="syz.0.6361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd410f565e7 code=0x7ffc0000
[  375.411445][T20175] SELinux: failed to load policy
[  375.417448][T20173] SELinux: failed to load policy
[  375.550786][T20203] netlink: 'syz.3.6422': attribute type 1 has an invalid length.
[  375.558539][T20203] netlink: 224 bytes leftover after parsing attributes in process `syz.3.6422'.
[  375.678117][T20221] lo speed is unknown, defaulting to 1000
[  375.806439][T20221] wg1 speed is unknown, defaulting to 1000
[  375.820874][T20239] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6439'.
[  375.841954][T20241] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  375.894379][T20221] lo speed is unknown, defaulting to 1000
[  375.904097][T20249] sch_fq: defrate 4294967295 ignored.
[  376.027189][T20264] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  376.304073][T20298] rdma_op ffff88810497c580 conn xmit_rdma 0000000000000000
[  376.589557][T20339] __nla_validate_parse: 3 callbacks suppressed
[  376.589574][T20339] netlink: 64 bytes leftover after parsing attributes in process `syz.2.6487'.
[  376.618308][T20343] atomic_op ffff88811a241528 conn xmit_atomic 0000000000000000
[  376.673065][T20350] ip6t_srh: unknown srh match flags  4000
[  376.695558][T20355] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  376.704588][T20355] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  376.755998][T20350] loop5: detected capacity change from 0 to 8192
[  376.811108][T20350]  loop5: p1 p2 p3 p4
[  376.818115][T20350] loop5: p1 size 196608 extends beyond EOD, truncated
[  376.833378][T20350] loop5: p2 start 164919041 is beyond EOD, truncated
[  376.840119][T20350] loop5: p3 size 66846464 extends beyond EOD, truncated
[  376.856438][T20350] loop5: p4 size 37048832 extends beyond EOD, truncated
[  376.933299][T20370] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6502'.
[  376.959892][T20370] IPVS: Error connecting to the multicast addr
[  377.108609][T20382] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6505'.
[  377.167276][T20388] bridge0: port 3(bond0) entered blocking state
[  377.173755][T20388] bridge0: port 3(bond0) entered disabled state
[  377.180800][T20388] bond0: entered allmulticast mode
[  377.186119][T20388] bond_slave_0: entered allmulticast mode
[  377.191902][T20388] bond_slave_1: entered allmulticast mode
[  377.198977][T20388] bond0: entered promiscuous mode
[  377.204131][T20388] bond_slave_0: entered promiscuous mode
[  377.209921][T20388] bond_slave_1: entered promiscuous mode
[  377.215880][T20388] bridge0: port 3(bond0) entered blocking state
[  377.222167][T20388] bridge0: port 3(bond0) entered forwarding state
[  377.228819][T20389] bond0: left allmulticast mode
[  377.233798][T20389] bond_slave_0: left allmulticast mode
[  377.239304][T20389] bond_slave_1: left allmulticast mode
[  377.244806][T20389] bond0: left promiscuous mode
[  377.249581][T20389] bond_slave_0: left promiscuous mode
[  377.255117][T20389] bond_slave_1: left promiscuous mode
[  377.260796][T20389] bridge0: port 3(bond0) entered disabled state
[  377.311851][T20399] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6514'.
[  377.372350][T20410] bond1: Unable to set down delay as MII monitoring is disabled
[  377.380948][T20410] bond1 (unregistering): Released all slaves
[  377.509633][T20421] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6522'.
[  378.073946][T20443] netlink: 'syz.2.6532': attribute type 1 has an invalid length.
[  378.198031][T20460] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  378.206712][T20460] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  378.313004][T20463] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  378.373807][T20471] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6545'.
[  378.472908][T20478] netlink: 48 bytes leftover after parsing attributes in process `syz.5.6548'.
[  378.598301][T20482] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6549'.
[  379.117575][T20513] SELinux: failed to load policy
[  379.322695][T20532] rdma_op ffff888103336980 conn xmit_rdma 0000000000000000
[  379.431523][T20544] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  379.704294][T20558] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  379.733814][ T3900] Process accounting resumed
[  379.852046][T20575] netlink: 'syz.5.6592': attribute type 12 has an invalid length.
[  379.891872][T20580] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6594'.
[  380.320984][T20590] 8021q: adding VLAN 0 to HW filter on device bond0
[  380.344163][T20590] 8021q: adding VLAN 0 to HW filter on device team0
[  380.367295][T20590] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  380.383260][   T12] bond0: (slave bond_slave_0): link status definitely down, disabling slave
[  380.400671][   T12] bond0: (slave bond_slave_1): link status definitely down, disabling slave
[  380.420044][   T12] bond0: now running without any active interface!
[  380.499960][   T29] kauditd_printk_skb: 594 callbacks suppressed
[  380.499976][   T29] audit: type=1326 audit(2000000147.469:169823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.529954][   T29] audit: type=1326 audit(2000000147.469:169824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.553599][   T29] audit: type=1326 audit(2000000147.469:169825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.577314][   T29] audit: type=1326 audit(2000000147.469:169826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.601012][   T29] audit: type=1326 audit(2000000147.469:169827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.624729][   T29] audit: type=1326 audit(2000000147.469:169828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.648487][   T29] audit: type=1326 audit(2000000147.469:169829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.673300][   T29] audit: type=1326 audit(2000000147.469:169830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.696953][   T29] audit: type=1326 audit(2000000147.469:169831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.720849][   T29] audit: type=1326 audit(2000000147.469:169832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20596 comm="syz.2.6603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08fb1f749 code=0x7ffc0000
[  380.965639][T20614] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6610'.
[  381.744162][T20696] __nla_validate_parse: 2 callbacks suppressed
[  381.744256][T20696] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6644'.
[  381.902520][T20704] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6649'.
[  381.911648][T20704] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6649'.
[  381.920854][T20704] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6649'.
[  381.947489][T20704] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6649'.
[  381.956606][T20704] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6649'.
[  381.966156][T20704] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6649'.
[  381.996044][T20704] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6649'.
[  382.005324][T20704] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6649'.
[  382.014856][T20704] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6649'.
[  382.376965][T20728] vhci_hcd: default hub control req: 8017 v0006 i0003 l0
[  382.384874][T20729] netlink: 'syz.2.6659': attribute type 1 has an invalid length.
[  382.400228][T20731] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  382.592156][T20758] vlan2: entered allmulticast mode
[  382.597301][T20758] bridge_slave_0: entered allmulticast mode
[  382.605910][T20762] loop5: detected capacity change from 0 to 512
[  382.613962][T20762] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  382.626626][T20762] EXT4-fs (loop5): 1 truncate cleaned up
[  382.632782][T20762] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.830916][T18367] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.904050][    T9] hid-generic 0000:FFFFFFFF:0000.0008: unknown main item tag 0x0
[  382.938545][    T9] hid-generic 0000:FFFFFFFF:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  383.746682][T20818] netlink: 'syz.2.6700': attribute type 1 has an invalid length.
[  383.886745][T20831] SELinux:  Context @ is not valid (left unmapped).
[  384.174147][T20880] netlink: 'syz.1.6729': attribute type 3 has an invalid length.
[  384.181924][T20880] netlink: 'syz.1.6729': attribute type 1 has an invalid length.
[  384.401575][T20886] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  384.410104][T20886] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  385.515069][   T29] kauditd_printk_skb: 1831 callbacks suppressed
[  385.515083][   T29] audit: type=1326 audit(2000000152.489:171664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20920 comm="syz.5.6748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d53c365e7 code=0x7ffc0000
[  385.544999][   T29] audit: type=1326 audit(2000000152.489:171665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20920 comm="syz.5.6748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d53bdb829 code=0x7ffc0000
[  385.568586][   T29] audit: type=1326 audit(2000000152.489:171666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20920 comm="syz.5.6748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f4d53c3f749 code=0x7ffc0000
[  385.572467][T20979] 9pnet_fd: Insufficient options for proto=fd
[  385.592519][   T29] audit: type=1400 audit(2000000152.549:171667): avc:  denied  { mounton } for  pid=20977 comm="syz.1.6774" path="/1418/file0" dev="tmpfs" ino=7708 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  385.622479][   T29] audit: type=1326 audit(2000000152.579:171668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20920 comm="syz.5.6748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d53c365e7 code=0x7ffc0000
[  385.646109][   T29] audit: type=1326 audit(2000000152.579:171669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20920 comm="syz.5.6748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d53bdb829 code=0x7ffc0000
[  385.669789][   T29] audit: type=1326 audit(2000000152.579:171670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20920 comm="syz.5.6748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f4d53c3f749 code=0x7ffc0000
[  385.693521][   T29] audit: type=1326 audit(2000000152.609:171671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20920 comm="syz.5.6748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d53c365e7 code=0x7ffc0000
[  385.717088][   T29] audit: type=1326 audit(2000000152.609:171672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20920 comm="syz.5.6748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d53bdb829 code=0x7ffc0000
[  385.740664][   T29] audit: type=1326 audit(2000000152.609:171673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20920 comm="syz.5.6748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f4d53c3f749 code=0x7ffc0000
[  385.775727][T20982] block device autoloading is deprecated and will be removed.
[  385.876784][T20992] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  385.939679][T21000] program syz.5.6784 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  386.169707][T21038] netlink: 'syz.2.6799': attribute type 1 has an invalid length.
[  386.224503][T21050] loop0: detected capacity change from 0 to 128
[  386.307344][T21055] netlink: 'syz.0.6808': attribute type 3 has an invalid length.
[  386.357873][T21062] loop5: detected capacity change from 0 to 256
[  386.490568][ T4142] Bluetooth: hci0: Frame reassembly failed (-84)
[  386.783422][T21108] __nla_validate_parse: 6 callbacks suppressed
[  386.783435][T21108] netlink: 68 bytes leftover after parsing attributes in process `syz.1.6829'.
[  387.008450][T21124] loop5: detected capacity change from 0 to 8192
[  387.188779][T21135] netlink: 'syz.5.6843': attribute type 10 has an invalid length.
[  387.203600][T21135] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  387.913935][T21139] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6846'.
[  387.933386][T21148] netlink: 96 bytes leftover after parsing attributes in process `syz.1.6849'.
[  388.559892][T13784] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  388.566032][ T3527] Bluetooth: hci0: command 0x1003 tx timeout
[  388.620379][T21173] netlink: 'syz.0.6859': attribute type 1 has an invalid length.
[  388.628134][T21173] netlink: 224 bytes leftover after parsing attributes in process `syz.0.6859'.
[  388.707027][T21177] loop0: detected capacity change from 0 to 512
[  388.720959][T21177] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  388.740462][T21177] EXT4-fs (loop0): orphan cleanup on readonly fs
[  388.750561][T21177] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm syz.0.6861: corrupted inode contents
[  388.773692][T21177] EXT4-fs (loop0): Remounting filesystem read-only
[  388.785651][T21177] EXT4-fs (loop0): 1 truncate cleaned up
[  388.791710][ T4097] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  388.802257][ T4097] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  388.827587][ T4097] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  388.844169][T21177] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  388.876473][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.153026][T21209] netlink: 'syz.1.6874': attribute type 1 has an invalid length.
[  389.253774][    C1] vxcan1: j1939_tp_rxtimer: 0xffff8881197da600: rx timeout, send abort
[  389.262160][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff8881197da600: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  389.578880][T21245] SELinux: ebitmap: truncated map
[  389.591510][T21245] SELinux: failed to load policy
[  389.605756][T21245] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6891'.
[  389.656155][T21251] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6894'.
[  389.741642][T21259] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6898'.
[  390.125316][T21289] ������: renamed from vlan1 (while UP)
[  390.142708][T21291] netlink: 'syz.5.6913': attribute type 1 has an invalid length.
[  390.272746][T21301] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6918'.
[  390.589523][T21325] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6928'.
[  390.727868][T21327] SELinux: failed to load policy
[  390.814169][   T29] kauditd_printk_skb: 1218 callbacks suppressed
[  390.814183][   T29] audit: type=1326 audit(2000000157.789:172886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  390.848384][   T29] audit: type=1326 audit(2000000157.829:172887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  390.872195][   T29] audit: type=1326 audit(2000000157.829:172888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  390.895909][   T29] audit: type=1326 audit(2000000157.829:172889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  390.903306][T21331] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6931'.
[  390.919583][   T29] audit: type=1326 audit(2000000157.829:172890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  390.965616][   T29] audit: type=1326 audit(2000000157.829:172891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  390.989322][   T29] audit: type=1326 audit(2000000157.829:172892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  391.013119][   T29] audit: type=1326 audit(2000000157.829:172893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  391.036931][   T29] audit: type=1326 audit(2000000157.829:172894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  391.060881][   T29] audit: type=1326 audit(2000000157.829:172895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21330 comm="syz.0.6931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  391.457521][T21368] loop0: detected capacity change from 0 to 128
[  391.472427][T21368] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  391.506991][T21368] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  391.557714][ T4124] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  391.644119][T21393] sch_tbf: burst 22 is lower than device lo mtu (1031) !
[  391.775308][T21410] netlink: 'syz.5.6965': attribute type 10 has an invalid length.
[  391.798050][T21410] ipvlan0: entered allmulticast mode
[  391.803410][T21410] veth0_vlan: entered allmulticast mode
[  391.829267][T21410] team0: Device ipvlan0 failed to register rx_handler
[  391.839554][T21416] __nla_validate_parse: 2 callbacks suppressed
[  391.839570][T21416] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6969'.
[  392.302112][T21480] loop0: detected capacity change from 0 to 128
[  392.326637][T21480] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  392.366912][T21480] ext4 filesystem being mounted at /1435/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  392.416089][ T3312] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  392.447990][T21492] loop0: detected capacity change from 0 to 512
[  392.454837][T21492] EXT4-fs: Ignoring removed bh option
[  392.461983][T21492] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=6842c098, mo2=0002]
[  392.470101][T21492] System zones: 1-12
[  392.474263][T21492] EXT4-fs error (device loop0): ext4_iget_extra_inode:5075: inode #15: comm syz.0.7002: corrupted in-inode xattr: invalid ea_ino
[  392.500495][T21492] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.7002: couldn't read orphan inode 15 (err -117)
[  392.530307][T21492] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  392.566938][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.653739][T21505] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7009'.
[  393.149448][T21568] bond0: Device is already in use.
[  393.216561][T21574] loop0: detected capacity change from 0 to 512
[  393.231184][T21574] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.260298][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.358364][T21587] loop1: detected capacity change from 0 to 1024
[  393.371672][T21587] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.424109][ T3325] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.732814][T21614] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  393.739409][T21614] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  393.747203][T21614] vhci_hcd vhci_hcd.0: Device attached
[  393.753856][T21615] vhci_hcd: connection closed
[  393.753975][ T4097] vhci_hcd: stop threads
[  393.763015][ T4097] vhci_hcd: release socket
[  393.767415][ T4097] vhci_hcd: disconnect device
[  393.830935][T21623] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  394.717241][T21678] netlink: 'syz.0.7083': attribute type 10 has an invalid length.
[  394.725242][T21678] ipvlan0: entered allmulticast mode
[  394.730655][T21678] veth0_vlan: entered allmulticast mode
[  394.737470][T21678] team0: Device ipvlan0 failed to register rx_handler
[  394.808777][T21687] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  394.816896][T21687] SELinux: failed to load policy
[  394.928306][T21697] smc: net device bond0 applied user defined pnetid SYZ0
[  394.939799][T21699] sd 0:0:1:0: device reset
[  394.952273][T21697] smc: net device bond0 erased user defined pnetid SYZ0
[  394.984906][T21697] smc: ib device syz2 ibport 1 erased user defined pnetid S
[  395.132171][T21717] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  395.132171][T21717]    program syz.5.7102 not setting count and/or reply_len properly
[  395.426065][T21736] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  395.519688][T21746] loop9: detected capacity change from 0 to 7
[  395.540554][T21746] Buffer I/O error on dev loop9, logical block 0, async page read
[  395.560001][T21746] Buffer I/O error on dev loop9, logical block 0, async page read
[  395.567924][T21746]  loop9: unable to read partition table
[  395.575144][T21746] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  395.575144][T21746] 
) failed (rc=-5)
[  395.766499][T21783] netlink: 168 bytes leftover after parsing attributes in process `syz.1.7131'.
[  395.775785][T21783] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  395.820557][   T29] kauditd_printk_skb: 795 callbacks suppressed
[  395.820650][   T29] audit: type=1326 audit(2000000162.799:173691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  395.900565][   T29] audit: type=1326 audit(2000000162.839:173692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  395.924491][   T29] audit: type=1326 audit(2000000162.839:173693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  395.948198][   T29] audit: type=1326 audit(2000000162.839:173694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  395.972075][   T29] audit: type=1326 audit(2000000162.839:173695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  395.980217][T21792] smc: net device bond0 applied user defined pnetid SYZ0
[  395.995840][   T29] audit: type=1326 audit(2000000162.839:173696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  396.026492][   T29] audit: type=1326 audit(2000000162.839:173697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  396.027174][T21797] smc: net device bond0 erased user defined pnetid SYZ0
[  396.050202][   T29] audit: type=1326 audit(2000000162.839:173698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  396.080742][   T29] audit: type=1326 audit(2000000162.839:173699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  396.104423][   T29] audit: type=1326 audit(2000000162.839:173700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21784 comm="syz.0.7132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7fd410f5f749 code=0x7ffc0000
[  396.229756][T21804] loop0: detected capacity change from 0 to 2048
[  396.247536][T21804] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  396.277448][T21804] EXT4-fs (loop0): Online defrag not supported with bigalloc
[  396.311172][T21814] program syz.1.7143 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  396.330260][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.516297][T21834] lo speed is unknown, defaulting to 1000
[  396.537081][T21839] netlink: 96 bytes leftover after parsing attributes in process `syz.0.7154'.
[  396.555090][T21840] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7155'.
[  396.564211][T21840] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7155'.
[  396.690617][T21852] smc: net device bond0 applied user defined pnetid SYZ0
[  396.698858][T21852] smc: net device bond0 erased user defined pnetid SYZ0
[  396.706472][T21834] wg1 speed is unknown, defaulting to 1000
[  396.783294][T21858] IPVS: wrr: FWM 3 0x00000003 - no destination available
[  396.786984][T21834] lo speed is unknown, defaulting to 1000
[  396.859469][T21860] loop0: detected capacity change from 0 to 512
[  396.882689][T21860] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  396.909863][T21860] ext4 filesystem being mounted at /1499/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  396.971944][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.014207][T21872] loop0: detected capacity change from 0 to 1024
[  397.040150][T21872] EXT4-fs: Ignoring removed orlov option
[  397.068915][T21872] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  397.425204][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.803895][T21930] loop1: detected capacity change from 0 to 2048
[  397.831775][T21930] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  397.872156][T21930] EXT4-fs (loop1): Online defrag not supported with bigalloc
[  397.920118][ T3325] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.944876][T21946] sd 0:0:1:0: device reset
[  398.002141][T21955] loop0: detected capacity change from 0 to 2048
[  398.011240][T21955] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  398.028689][T21955] EXT4-fs: Ignoring removed orlov option
[  398.034813][T21955] EXT4-fs (loop0): stripe (18) is not aligned with cluster size (16), stripe is disabled
[  398.044965][T21955] EXT4-fs (loop0): can't enable nombcache during remount
[  398.061971][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  398.336434][T21968] lo speed is unknown, defaulting to 1000
[  398.397577][T21968] wg1 speed is unknown, defaulting to 1000
[  398.428146][T21968] lo speed is unknown, defaulting to 1000
[  398.482016][T21991] bridge_slave_0: default FDB implementation only supports local addresses
[  398.498165][T21991] bridge_slave_0: default FDB implementation only supports local addresses
[  398.539112][T21968] chnl_net:caif_netlink_parms(): no params data found
[  398.589129][T21968] bridge0: port 1(bridge_slave_0) entered blocking state
[  398.596372][T21968] bridge0: port 1(bridge_slave_0) entered disabled state
[  398.604182][T21968] bridge_slave_0: entered allmulticast mode
[  398.610929][T21968] bridge_slave_0: entered promiscuous mode
[  398.617717][T21968] bridge0: port 2(bridge_slave_1) entered blocking state
[  398.624814][T21968] bridge0: port 2(bridge_slave_1) entered disabled state
[  398.633242][T21968] bridge_slave_1: entered allmulticast mode
[  398.641042][T21968] bridge_slave_1: entered promiscuous mode
[  398.664330][T21968] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  398.675403][T21968] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  398.697121][T21968] team0: Port device team_slave_0 added
[  398.704125][T21968] team0: Port device team_slave_1 added
[  398.721832][T21968] batman_adv: batadv0: Adding interface: batadv_slave_0
[  398.728794][T21968] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  398.754923][T21968] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  398.771851][T21968] batman_adv: batadv0: Adding interface: batadv_slave_1
[  398.778821][T21968] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  398.804859][T21968] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  398.835405][T21968] hsr_slave_0: entered promiscuous mode
[  398.843198][T21968] hsr_slave_1: entered promiscuous mode
[  398.849249][T21968] debugfs: 'hsr0' already exists in 'hsr'
[  398.855091][T21968] Cannot create hsr debugfs directory
[  398.905245][T22040] openvswitch: netlink: Missing key (keys=40, expected=80)
[  398.975755][T21968] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  398.984496][T21968] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  398.993936][T21968] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  399.002593][T21968] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  399.017327][T21968] bridge0: port 2(bridge_slave_1) entered blocking state
[  399.024432][T21968] bridge0: port 2(bridge_slave_1) entered forwarding state
[  399.031724][T21968] bridge0: port 1(bridge_slave_0) entered blocking state
[  399.038793][T21968] bridge0: port 1(bridge_slave_0) entered forwarding state
[  399.066467][T21968] 8021q: adding VLAN 0 to HW filter on device bond0
[  399.078965][T21968] 8021q: adding VLAN 0 to HW filter on device team0
[  399.092265][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  399.102086][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  399.117010][ T4124] bridge0: port 1(bridge_slave_0) entered blocking state
[  399.124128][ T4124] bridge0: port 1(bridge_slave_0) entered forwarding state
[  399.137000][ T4116] bridge0: port 2(bridge_slave_1) entered blocking state
[  399.144231][ T4116] bridge0: port 2(bridge_slave_1) entered forwarding state
[  399.241918][T21968] 8021q: adding VLAN 0 to HW filter on device batadv0
[  399.307255][T22081] netlink: 19 bytes leftover after parsing attributes in process `syz.1.7249'.
[  399.337254][T22084] netlink: 'syz.1.7250': attribute type 1 has an invalid length.
[  399.411248][T21968] veth0_vlan: entered promiscuous mode
[  399.429595][T21968] veth1_vlan: entered promiscuous mode
[  399.449267][T22096] loop2: detected capacity change from 0 to 2048
[  399.459611][T21968] veth0_macvtap: entered promiscuous mode
[  399.467369][T22096] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  399.468503][T22104] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7256'.
[  399.481299][T21968] veth1_macvtap: entered promiscuous mode
[  399.502632][T22096] EXT4-fs: Ignoring removed orlov option
[  399.508539][T22096] EXT4-fs (loop2): stripe (18) is not aligned with cluster size (16), stripe is disabled
[  399.512729][T21968] batman_adv: batadv0: Interface activated: batadv_slave_0
[  399.527762][T22096] EXT4-fs (loop2): can't enable nombcache during remount
[  399.529596][T21968] batman_adv: batadv0: Interface activated: batadv_slave_1
[  399.547189][   T12] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  399.558742][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  399.569632][ T4142] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  399.581396][ T4142] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  399.593175][ T4142] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  399.639006][T22113] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  399.653439][T22116] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=22116 comm=syz.0.7260
[  399.666032][T22116] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=22116 comm=syz.0.7260
[  399.824121][T22139] sch_fq: defrate 6 ignored.
[  400.323142][T22150] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  400.456582][T22161] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7280'.
[  400.750841][T22191] loop5: detected capacity change from 0 to 1024
[  400.762197][T22191] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  400.780288][T22191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.849335][T22213] netlink: 'syz.2.7305': attribute type 1 has an invalid length.
[  400.852570][T22216] loop5: detected capacity change from 0 to 512
[  400.878327][   T29] kauditd_printk_skb: 184 callbacks suppressed
[  400.878373][   T29] audit: type=1400 audit(2000000167.849:173885): avc:  denied  { connect } for  pid=22219 comm="syz.0.7308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  400.908401][T22216] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.7304: inode has both inline data and extents flags
[  400.921687][   T29] audit: type=1400 audit(2000000167.869:173886): avc:  denied  { write } for  pid=22219 comm="syz.0.7308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  400.941483][T22216] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.7304: couldn't read orphan inode 15 (err -117)
[  400.961930][T22216] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  401.000406][T22227] usb usb1: check_ctrlrecip: process 22227 (syz.0.7311) requesting ep 01 but needs 81
[  401.010042][T22227] usb usb1: usbfs: process 22227 (syz.0.7311) did not claim interface 0 before use
[  401.019721][T22227] vhci_hcd: default hub control req: a205 v0000 i0001 l0
[  401.033676][T18367] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.085307][T22233] loop5: detected capacity change from 0 to 128
[  401.100248][T22233] FAT-fs (loop5): Directory bread(block 162) failed
[  401.110407][T22233] FAT-fs (loop5): Directory bread(block 163) failed
[  401.117090][T22233] FAT-fs (loop5): Directory bread(block 164) failed
[  401.124967][T22233] FAT-fs (loop5): Directory bread(block 165) failed
[  401.133337][T22233] FAT-fs (loop5): Directory bread(block 166) failed
[  401.140429][T22233] FAT-fs (loop5): Directory bread(block 167) failed
[  401.147165][T22233] FAT-fs (loop5): Directory bread(block 168) failed
[  401.154072][T22233] FAT-fs (loop5): Directory bread(block 169) failed
[  401.161815][T22233] FAT-fs (loop5): Directory bread(block 162) failed
[  401.169178][T22233] FAT-fs (loop5): Directory bread(block 163) failed
[  401.176521][T22233] syz.5.7314: attempt to access beyond end of device
[  401.176521][T22233] loop5: rw=3, sector=226, nr_sectors = 6 limit=128
[  401.191050][T22233] syz.5.7314: attempt to access beyond end of device
[  401.191050][T22233] loop5: rw=2051, sector=232, nr_sectors = 2 limit=128
[  401.224129][T22235] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[  401.248763][    C0] vxcan1: j1939_tp_rxtimer: 0xffff888119281e00: rx timeout, send abort
[  401.257158][    C0] vxcan1: j1939_xtp_rx_abort_one: 0xffff888119281e00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  401.266689][T22239] lo speed is unknown, defaulting to 1000
[  401.290154][   T29] audit: type=1400 audit(2000000168.259:173887): avc:  denied  { setopt } for  pid=22240 comm="syz.5.7318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  401.317784][ T4105] Bluetooth: hci0: Frame reassembly failed (-84)
[  401.371502][T22239] wg1 speed is unknown, defaulting to 1000
[  401.380626][   T29] audit: type=1326 audit(2000000168.359:173888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22246 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99e049f749 code=0x7ffc0000
[  401.404357][   T29] audit: type=1326 audit(2000000168.359:173889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22246 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99e049f749 code=0x7ffc0000
[  401.432661][   T29] audit: type=1326 audit(2000000168.359:173890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22246 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f99e049f749 code=0x7ffc0000
[  401.456422][   T29] audit: type=1326 audit(2000000168.359:173891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22246 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99e049f749 code=0x7ffc0000
[  401.463259][T22239] lo speed is unknown, defaulting to 1000
[  401.480138][   T29] audit: type=1326 audit(2000000168.359:173892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22246 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99e049f749 code=0x7ffc0000
[  401.509517][   T29] audit: type=1326 audit(2000000168.409:173893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22246 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f99e049f749 code=0x7ffc0000
[  401.533254][   T29] audit: type=1326 audit(2000000168.409:173894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22246 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99e049f749 code=0x7ffc0000
[  401.630461][T22263] ������: renamed from wg2 (while UP)
[  401.721657][T22278] loop2: detected capacity change from 0 to 1024
[  401.728614][T22278] EXT4-fs: Ignoring removed orlov option
[  401.736664][T22278] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  401.772104][T22283] netlink: 'syz.0.7335': attribute type 1 has an invalid length.
[  401.779964][T22283] netlink: 244 bytes leftover after parsing attributes in process `syz.0.7335'.
[  401.871899][T22295] netlink: 'syz.0.7342': attribute type 21 has an invalid length.
[  401.879890][T22295] netlink: 128 bytes leftover after parsing attributes in process `syz.0.7342'.
[  401.889663][T22295] netlink: 'syz.0.7342': attribute type 5 has an invalid length.
[  401.897490][T22295] netlink: 3 bytes leftover after parsing attributes in process `syz.0.7342'.
[  402.012577][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.063609][T22322] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  402.112387][T22330] loop0: detected capacity change from 0 to 512
[  402.132732][T22334] loop6: detected capacity change from 0 to 512
[  402.140777][T22334] EXT4-fs: Ignoring removed bh option
[  402.146516][T22330] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  402.159359][T22330] ext4 filesystem being mounted at /1554/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  402.160708][T22334] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=6842c098, mo2=0002]
[  402.178517][T22334] System zones: 1-12
[  402.182947][T22334] EXT4-fs error (device loop6): ext4_iget_extra_inode:5075: inode #15: comm syz.6.7359: corrupted in-inode xattr: invalid ea_ino
[  402.183199][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.197358][T22334] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.7359: couldn't read orphan inode 15 (err -117)
[  402.217881][T22334] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  402.252616][T21968] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.277597][T22341] loop2: detected capacity change from 0 to 2364
[  402.280587][T22345] loop6: detected capacity change from 0 to 1024
[  402.290876][T22345] EXT4-fs: Ignoring removed orlov option
[  402.298559][T22341] ISOFS: Unable to identify CD-ROM format.
[  402.304266][T22345] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  402.373678][T22350] loop2: detected capacity change from 0 to 2048
[  402.420221][T22350]  loop2: p1 < > p4
[  402.424551][T22350] loop2: p4 size 8388608 extends beyond EOD, truncated
[  402.581549][T21968] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.618780][T22376] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7375'.
[  402.708223][T22393] loop2: detected capacity change from 0 to 512
[  402.716382][T22393] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  402.740840][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.157804][T22399] loop1: detected capacity change from 0 to 1024
[  403.164559][T22399] EXT4-fs: Ignoring removed orlov option
[  403.174572][T22399] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  403.202041][T22407] ������: renamed from wg2 (while UP)
[  403.224383][T22409] loop6: detected capacity change from 0 to 128
[  403.238433][T22409] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  403.251141][T22409] ext4 filesystem being mounted at /34/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  403.277952][T22413] ==================================================================
[  403.286163][T22413] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / writeback_single_inode
[  403.295639][T22413] 
[  403.297963][T22413] write to 0xffff88810baafa18 of 4 bytes by task 22399 on cpu 1:
[  403.305684][T22413]  writeback_single_inode+0x150/0x3f0
[  403.311172][T22413]  sync_inode_metadata+0x5b/0x90
[  403.316128][T22413]  generic_buffers_fsync_noflush+0xd9/0x120
[  403.322024][T22413]  ext4_sync_file+0x1ab/0x690
[  403.326708][T22413]  vfs_fsync_range+0x10d/0x130
[  403.331575][T22413]  ext4_buffered_write_iter+0x34f/0x3c0
[  403.337125][T22413]  ext4_file_write_iter+0x387/0xf60
[  403.342320][T22413]  iter_file_splice_write+0x666/0xa60
[  403.347689][T22413]  direct_splice_actor+0x156/0x2a0
[  403.352803][T22413]  splice_direct_to_actor+0x312/0x680
[  403.358174][T22413]  do_splice_direct+0xda/0x150
[  403.362926][T22413]  do_sendfile+0x380/0x650
[  403.367337][T22413]  __x64_sys_sendfile64+0x105/0x150
[  403.372631][T22413]  x64_sys_call+0x2bb4/0x3000
[  403.377294][T22413]  do_syscall_64+0xd2/0x200
[  403.381790][T22413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.387674][T22413] 
[  403.389980][T22413] read to 0xffff88810baafa18 of 4 bytes by task 22413 on cpu 0:
[  403.397591][T22413]  generic_buffers_fsync_noflush+0x80/0x120
[  403.403476][T22413]  ext4_sync_file+0x1ab/0x690
[  403.408140][T22413]  vfs_fsync_range+0x10d/0x130
[  403.412898][T22413]  ext4_buffered_write_iter+0x34f/0x3c0
[  403.418433][T22413]  ext4_file_write_iter+0x387/0xf60
[  403.423616][T22413]  iter_file_splice_write+0x666/0xa60
[  403.428983][T22413]  direct_splice_actor+0x156/0x2a0
[  403.434086][T22413]  splice_direct_to_actor+0x312/0x680
[  403.439446][T22413]  do_splice_direct+0xda/0x150
[  403.444199][T22413]  do_sendfile+0x380/0x650
[  403.448614][T22413]  __x64_sys_sendfile64+0x105/0x150
[  403.453814][T22413]  x64_sys_call+0x2bb4/0x3000
[  403.458477][T22413]  do_syscall_64+0xd2/0x200
[  403.462966][T22413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.468845][T22413] 
[  403.471154][T22413] value changed: 0x00000070 -> 0x00000002
[  403.476851][T22413] 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  403.479159][T22413] Reported by Kernel Concurrency Sanitizer on:
[  403.485291][T22413] CPU: 0 UID: 0 PID: 22413 Comm: syz.1.7385 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  403.496826][T22413] Tainted: [W]=WARN
[  403.500610][T22413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  403.510646][T22413] ==================================================================
[  403.535954][T13784] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  403.543238][T21968] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  404.008943][T22413] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.