last executing test programs:

1m54.352282417s ago: executing program 4 (id=241):
socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
syz_emit_ethernet(0x36, &(0x7f0000000180)={@multicast, @multicast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "0300", 0x0, 0x2c, 0x0, @remote, @local}}}}, 0x0)

1m54.307832657s ago: executing program 4 (id=245):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x60, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffd3}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0)

1m54.254320237s ago: executing program 4 (id=246):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x4000001, 0x3, 0xfd, "07000000000000000001001f820dac4eb71eed"})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x7}, 0x8164, 0x10000, 0x2, 0x1, 0x8, 0x200, 0x4b, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20c006, &(0x7f0000000240)={[{@grpjquota}, {@lazytime}, {@barrier}, {@barrier}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@grpquota}], [{@seclabel}]}, 0x3, 0x446, &(0x7f0000000d40)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="02000000010004000000000004000500a9930000100000000000000020"], 0x24, 0x1)
r3 = syz_open_pts(r2, 0x800)
r4 = dup(r3)
fsetxattr$security_selinux(r4, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)

1m54.073748677s ago: executing program 4 (id=251):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000008000000dd000000ff00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="04000000000000000000000000b08b57cda8f665d7db30ceb9f034ec"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000000), 0x3, 0x4fc, &(0x7f0000001500)="$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")
r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, 0xffffffffffffffff, 0x0)
write$binfmt_register(r2, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x7, 0x3a, 'M', 0x3a, 'M', 0x3a, './file2', 0x3a, [0x46]}, 0x2a)
close(0x3)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1900000004000000040000000a"], 0x50)
r4 = socket$key(0xf, 0x3, 0x2)
r5 = syz_open_dev$mouse(&(0x7f0000000040), 0x3, 0x8201)
write$P9_RVERSION(r5, &(0x7f0000000080)={0x13, 0x65, 0xffff, 0xd, 0x6, '9P2000'}, 0x13)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r8=>r6, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r7}, 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r10}, 0x10)
r11 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r11, &(0x7f00000003c0)='system_u:object_r:ld_so_cache_t:s0\x00', 0x23)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x3d}]}, &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r3}, &(0x7f0000000440)=0x2000000, &(0x7f0000000480)=r12}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r13}, 0x10)

1m53.781621128s ago: executing program 4 (id=262):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0}, 0x94)
rename(0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r1 = syz_open_procfs(0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001500)=ANY=[@ANYRES64=r1, @ANYRES8], 0xc8)
r2 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x0, 0x0}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x8, 0x0, 0x0})
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x8}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000010085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r6}, 0x10)

1m53.499810689s ago: executing program 4 (id=271):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x70, 0x70, 0x4, [@volatile={0x7, 0x0, 0x0, 0x9, 0x2}, @union={0x3, 0x1, 0x0, 0x5, 0x0, 0xc95, [{0x2, 0x4, 0x5}]}, @int={0xb, 0x0, 0x0, 0x1, 0x0, 0x5e, 0x0, 0x49}, @struct={0x8, 0x4, 0x0, 0x4, 0x1, 0x7, [{0xa, 0x0, 0x3}, {0x1, 0x1}, {0xc, 0x1, 0x7}, {0xa, 0x2, 0x6}]}]}, {0x0, [0x61, 0x30]}}, &(0x7f0000000080)=""/29, 0x8c, 0x1d, 0x1}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x12}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r5}, 0x10)
readahead(0xffffffffffffffff, 0x3, 0x2)
socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$kcm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000300240248ff050005001200", 0x2e}], 0x1}, 0x4)

1m53.490787919s ago: executing program 32 (id=271):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x70, 0x70, 0x4, [@volatile={0x7, 0x0, 0x0, 0x9, 0x2}, @union={0x3, 0x1, 0x0, 0x5, 0x0, 0xc95, [{0x2, 0x4, 0x5}]}, @int={0xb, 0x0, 0x0, 0x1, 0x0, 0x5e, 0x0, 0x49}, @struct={0x8, 0x4, 0x0, 0x4, 0x1, 0x7, [{0xa, 0x0, 0x3}, {0x1, 0x1}, {0xc, 0x1, 0x7}, {0xa, 0x2, 0x6}]}]}, {0x0, [0x61, 0x30]}}, &(0x7f0000000080)=""/29, 0x8c, 0x1d, 0x1}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x12}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r5}, 0x10)
readahead(0xffffffffffffffff, 0x3, 0x2)
socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$kcm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000300240248ff050005001200", 0x2e}], 0x1}, 0x4)

2.394664802s ago: executing program 2 (id=2374):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0}, 0x10024, 0x10000, 0x1, 0x1, 0xa, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4000, 0x14)
fchmodat(r0, &(0x7f0000000040)='./file0\x00', 0x15)

2.272233202s ago: executing program 2 (id=2378):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f0000000480)})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
unshare(0x22020600)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0xb, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x1000}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0))
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000240)=0x4000, 0x4)
bind$xdp(r1, &(0x7f0000000100), 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

1.513960845s ago: executing program 1 (id=2395):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
listen(0xffffffffffffffff, 0xa1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e0000000000000000001800028014000380"], 0x44}, 0x1, 0x0, 0x0, 0x20004080}, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xc, 0x110, 0xffffffffffffffff, 0xc4646d6bf8899a07)

1.481888215s ago: executing program 5 (id=2396):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4c, 0x4c, 0x2, [@volatile={0x7, 0x0, 0x0, 0x9, 0x2}, @int={0xb, 0x0, 0x0, 0x1, 0x0, 0x5e, 0x0, 0x49}, @struct={0x8, 0x3, 0x0, 0x4, 0x1, 0x7, [{0xa, 0x0, 0x3}, {0xc, 0x1, 0x7}, {0xa, 0x2, 0x6}]}]}}, &(0x7f0000000080)=""/29, 0x66, 0x1d, 0x1}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x12}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r4}, 0x10)
socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet_sctp(0x2, 0x5, 0x84)
socket(0x2, 0x80805, 0x0)
sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000300240248ff050005001200", 0x2e}], 0x1}, 0x4)

1.460701985s ago: executing program 1 (id=2397):
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="1c00000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f138d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade5b175c0a9b2ce9", 0x55}], 0x1}, 0x0)

1.454351615s ago: executing program 5 (id=2398):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000700000085000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x4}, 0x18)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xa, 0x4)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x3ff, 0x8006}, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r3=>0x0})
sendto$packet(r0, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)

1.424388265s ago: executing program 1 (id=2401):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x0, &(0x7f0000000080)})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
chown(&(0x7f00000003c0)='./file0\x00', 0x0, 0xee01)

1.415318045s ago: executing program 0 (id=2402):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18)
ioctl$TIOCMSET(0xffffffffffffffff, 0x5418, &(0x7f0000000340)=0x800)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = epoll_create1(0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0x20000006})
dup3(r0, r2, 0x0)

1.402780166s ago: executing program 5 (id=2403):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0xfffffffffffffde8, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0xfe, 0x4f2, &(0x7f0000000600)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
socket$nl_audit(0x10, 0x3, 0x9)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet(r3, &(0x7f0000000040)={&(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000007000000890704e000006a001c000000000000000000000008000000", @ANYRES64=r3], 0x38}, 0x0)

1.401849505s ago: executing program 1 (id=2404):
socket$nl_rdma(0x10, 0x3, 0x14) (async)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r0, &(0x7f0000000140)={0x0, 0x3f, &(0x7f0000000100)={&(0x7f00000000c0)={0x18, 0x1418, 0x10, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}}, 0x0)

1.372787435s ago: executing program 1 (id=2406):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={0xffffffffffffffff, 0x0, 0x25, 0x0, @val=@kprobe_multi=@addrs={0x0, 0x0, 0x0, 0x0, 0x4}}, 0x30)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket(0x21, 0x2, 0x2)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000380), 0xfe, 0x579, &(0x7f0000000680)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
sendmsg$kcm(r3, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x0)
get_mempolicy(&(0x7f0000000180), &(0x7f00000001c0), 0x8, &(0x7f0000ffe000/0x1000)=nil, 0x2)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f000801}, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000580)={0x2, 0x3, 0x0, 0x2, 0xa, 0x0, 0x700, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private=0xa010101}}]}, 0x50}, 0x1, 0x7}, 0x20000000)
close_range(r0, r1, 0x0)

1.372015675s ago: executing program 0 (id=2407):
mount(0x0, &(0x7f0000003c40)='.\x00', &(0x7f00000004c0)='cifs\x00', 0x0, &(0x7f0000000500)='gi\xb4\v\xba\xaf\x92\x01\xec\xb7 \xff\x1d!p\xf9\x00\x00#\x00\x00')
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$UHID_CREATE2(r0, 0x0, 0x138)
write$UHID_DESTROY(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffd}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
creat(&(0x7f00000001c0)='./file1\x00', 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vxcan0\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f00000003c0)={[{@i_version}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$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")
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x3}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x4}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x1b, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a0300000000f5ffffff00010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
syz_emit_ethernet(0xec, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @udp={0x8, 0x6, "7fefc0", 0xb6, 0x11, 0x1, @private2, @local, {[], {0x4e23, 0x4e21, 0xb6, 0x0, @gue={{0x1, 0x1, 0x2, 0x8, 0x100, @void}, "7592ad43f8fd35c8162560896308f90d933e29ac70abd07801a31c9d755aa609a39526e3d234e3b8d1e29c5ec611fc7ba86f0b7f3cf0da5e994711e0978a51172b9fd3e7bf3387570906c2ed54c8b277701c75ea204e4606c60aee9e1d2e2be5f9a88fecb1f01d431070cd35cdc88c9d06d08e3e1bf2703c63757e979b0d97f121eee9f7a6ae3ebbccbbe5ca76c692313c553a9e351f45e9f60c7ff1a93e85a922105d617bd2cde523e5"}}}}}}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x2, 0x300)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r3, &(0x7f0000000200)=[{&(0x7f0000000340)=""/212, 0xd4}], 0x1, 0x1a, 0x0)

1.264379006s ago: executing program 2 (id=2408):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007ffc)
sendfile(r0, r0, 0x0, 0x800000009)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
prctl$PR_SET_NAME(0xf, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x8, 0x25dfdbfb, {{}, {0x0, 0x400b}, {0x14, 0x19, {0xffff8000, 0x4, 0x0, 0x1}}}}, 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x2c040090)
prctl$PR_SET_NAME(0xf, &(0x7f0000000100)='ext4\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000380), &(0x7f00000003c0)=r5}, 0x20)
r6 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x9001, 0x0)
ioctl$VT_ACTIVATE(r6, 0x5606, 0x3d4)
fsetxattr(r1, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f0000000080)='@\x00', 0x7c8, 0x0)

1.262973086s ago: executing program 3 (id=2410):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x2, 0x1, 0x8, 0x1020005, 0x2b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
tgkill(r0, r0, 0x21)
wait4(r0, 0x0, 0x40000000, 0x0)

1.020829016s ago: executing program 1 (id=2411):
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f0000000180)='./file0\x00')
r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x2)
write$binfmt_script(r0, &(0x7f0000000300)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_REAPURBNDELAY(0xffffffffffffffff, 0x4008550d, &(0x7f0000000280))
r1 = io_uring_setup(0x5195, &(0x7f0000000000)={0x0, 0x75f, 0x10, 0x1, 0x11cb})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x3)
ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, 0x0)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x810)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x82b080, &(0x7f0000000800)={[{@errors_remount}, {@user_xattr}, {@usrquota}, {@init_itable}, {@bsdgroups}, {@journal_path={'journal_path', 0x3d, './file0/../file0'}}, {@mblk_io_submit}]}, 0x1, 0x7be, &(0x7f0000004ac0)="$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")
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0xfffffffffffffffe}, 0x18)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_wakeup_irq', 0x0, 0xb)
r7 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x0)
ioctl$LOOP_CONFIGURE(r7, 0x4c0a, &(0x7f0000000140)={r6, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f00000001c0)=ANY=[@ANYRES16=r4, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000200000200080001000300000005000200030000000500020008"], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x0)
perf_event_open(0x0, 0x0, 0x6, 0xffffffffffffffff, 0x8)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000004fb796120000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

981.601487ms ago: executing program 0 (id=2412):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r2, 0x0, 0x0)

980.787357ms ago: executing program 5 (id=2413):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c3000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='kfree\x00', r1, 0x0, 0x6}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x404, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6, 0xd}, {0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0xc, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {0x0, 0x0, 0x101}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1, 0x3}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9, 0x58d}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xd, 0x50}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0xfffffffc, 0x0, 0x3ff, 0x40000000}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x5, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x4000, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x7, 0x0, 0x40000, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {0x0, 0xfffffffe}, {0x0, 0x0, 0x6, 0x0, 0x4}, {0x6}, {}, {0x0, 0xfffffffd}, {0x8}, {0x7f, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x2, 0x0, 0x5ee, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x2ea0, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x800, 0x0, 0x0, 0xfffffffd}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc, 0x2}, {0x0, 0x80000000, 0x0, 0x7dff800}, {0x0, 0x0, 0x5}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {0x0, 0x1}, {}, {}, {0x4}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001400010600000200000000002b"], 0x14}}, 0x810)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x20}, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x2, 0x0, 0x0, 0x2, 0x0, @private=0xa010100, @remote}, {0x14, 0x0, 0x0, @broadcast}}}}}, 0x0)
r4 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r4, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

968.895847ms ago: executing program 3 (id=2414):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000700000085000000110000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x4}, 0x18)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xa, 0x4)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x3ff, 0x8006}, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r3=>0x0})
sendto$packet(r0, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)

959.005677ms ago: executing program 5 (id=2415):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[], 0x0}, 0x94)
rename(0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r1 = syz_open_procfs(0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001500)=ANY=[@ANYRES64=r1, @ANYRES8], 0xc8)
r2 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x0, 0x0}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x8, 0x0, 0x0})
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x8}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000010085000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r6}, 0x10)

929.901717ms ago: executing program 0 (id=2416):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x0, &(0x7f0000000080)})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
chown(&(0x7f00000003c0)='./file0\x00', 0x0, 0xee01)

892.505956ms ago: executing program 3 (id=2417):
fchmodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x15)

869.005657ms ago: executing program 3 (id=2418):
mount(0x0, &(0x7f0000003c40)='.\x00', &(0x7f00000004c0)='cifs\x00', 0x0, &(0x7f0000000500)='gi\xb4\v\xba\xaf\x92\x01\xec\xb7 \xff\x1d!p\xf9\x00\x00#\x00\x00')
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000020000000000000030000000000000000000000004119202532aeecfcdbb73887feb3"], 0x138)
write$UHID_DESTROY(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}}, 0x20)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffd}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000380)='f2fs_gc_begin\x00', r2}, 0x18)
creat(&(0x7f00000001c0)='./file1\x00', 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vxcan0\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f00000003c0)={[{@i_version}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$eJzs3d9rHNUeAPDvbJLmR3tvcuFy7+1b4EJvoHRzU2Or4EPFBxEsFPTZNmy2oWaTLdlNaULAFhF8EVR8EPSlz/6ob776A3zS/8IHaamaFis+SGR2Z5M02c2vJtloPh+YzDkzsznnO+fMzNmdYTeAQ2sw/ZOLOB4RbycR/dnyJCK6aqnOiHP17R4uLvRERCGJpaWXfkpq2zxYXCjEqtekjmaZ/0TEV29EnMytL7cyNz85VioVZ7L8cHXq6nBlbv7UlamxieJEcfrMyOjo6bNPnj2ze7H+8t38sbvvPP+/T8/99vq/b7/1dRLn4li2bnUcu2UwBrN90pXuwkc8t9uFtVnS7gqwI+mh2VE/yuN49EdHLdVC737WDADYK69FxBIAcMgkrv8AcMg0Pgd4sLhQaEzt/URif917NiJ66vE/zKb6ms7snl1P7T5o34PkkTsjSUQM7EL5gxHx4eevnOjI8mk93EsD9sONmxFxaWBw/fk/WffMwnb9f6OVS9212eCaxYft+gPt9EU6/nmq2fgvtzz+iSbjn+76sfuvxy1/8+M/d+dxy9hIOv57pv5s25rx3/JDawMdWe5vtTFfV3L5SqmYntv+HhFD0dWd5kdqmzYfuQ3d//1+q/Kz8d/H6fTzu69+lJafzle2yN3p7H70NeNj1c5vHjfwzL2b0Zcl18SfLLd/0mL8e2GLZbzw9JsftFqXxp/G25jWx7+3lm5FnGja/ittmWz4fOJwrTsMNzpFE599/35fq/JXt386peWn892PtLl7N6PWAZJkZR/U1yzHP5Csfl6zsv0yvr3V/2WrdZvH37T/jx1JXq6lj2TLro9VqzMjEUeSF9cvP73y2ka+sX0a/9B/mx//9WKb9//0PeGlLcbfeffHT3Ye/95K4x/fuP+vaf+ebPHKks0Stx9OdrQqf2vtP1pLDWVL0vbfLK6t1GtnvRkAAAAAAAAAAAAAAAAAAAAAAAAAti8XEcciyeWX07lcPl//De9/Rl+uVK5UT14uz06PR+23sgeiK9f4qsv+Vd+HOpJ9H34jf3pN/omI+EdEvNfdW8vnC+XSeLuDBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDM0Ra//5/6obvdtQMA9kxPuysAAOw7138AOHy2d/3v3bN6AAD7x/t/ADh8tnz9v7S39QAA9o/3/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOyxC+fPp9PSr4sLhTQ/fm1udrJ87dR4sTKZn5ot5Avlmav5iXJ5olTMF8pTLf/RjfqsVC5fHY3p2evD1WKlOlyZm784VZ6drl68MjU2UbxY7Nq3yAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg6ypz85NjpVJx5i+RuLES2C7/5962xtV3MHbvqkRnHIhqHOhEdxyIauwwsfos0duGMxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAn8MfAQAA//94WBdi")
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}, 0x1, 0x0, 0x0, 0x4006000}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x1b, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a0300000000f5ffffff00010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x1a, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a02000000050a01020000000000000000020000000900030073797a32000000000900010073797a30000000000b"], 0x68}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
syz_emit_ethernet(0xec, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @udp={0x8, 0x6, "7fefc0", 0xb6, 0x11, 0x1, @private2, @local, {[], {0x4e23, 0x4e21, 0xb6, 0x0, @gue={{0x1, 0x1, 0x2, 0x8, 0x100, @void}, "7592ad43f8fd35c8162560896308f90d933e29ac70abd07801a31c9d755aa609a39526e3d234e3b8d1e29c5ec611fc7ba86f0b7f3cf0da5e994711e0978a51172b9fd3e7bf3387570906c2ed54c8b277701c75ea204e4606c60aee9e1d2e2be5f9a88fecb1f01d431070cd35cdc88c9d06d08e3e1bf2703c63757e979b0d97f121eee9f7a6ae3ebbccbbe5ca76c692313c553a9e351f45e9f60c7ff1a93e85a922105d617bd2cde523e5"}}}}}}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x2, 0x300)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r5, &(0x7f0000000200)=[{&(0x7f0000000340)=""/212, 0xd4}], 0x1, 0x1a, 0x0)

868.135347ms ago: executing program 0 (id=2419):
mount(0x0, &(0x7f0000003c40)='.\x00', &(0x7f00000004c0)='cifs\x00', 0x0, &(0x7f0000000500)='gi\xb4\v\xba\xaf\x92\x01\xec\xb7 \xff\x1d!p\xf9\x00\x00#\x00\x00')
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$UHID_CREATE2(r0, 0x0, 0x138)
write$UHID_DESTROY(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffd}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
creat(&(0x7f00000001c0)='./file1\x00', 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vxcan0\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f00000003c0)={[{@i_version}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$eJzs3d9rHNUeAPDvbJLmR3tvcuFy7+1b4EJvoHRzU2Or4EPFBxEsFPTZNmy2oWaTLdlNaULAFhF8EVR8EPSlz/6ob776A3zS/8IHaamaFis+SGR2Z5M02c2vJtloPh+YzDkzsznnO+fMzNmdYTeAQ2sw/ZOLOB4RbycR/dnyJCK6aqnOiHP17R4uLvRERCGJpaWXfkpq2zxYXCjEqtekjmaZ/0TEV29EnMytL7cyNz85VioVZ7L8cHXq6nBlbv7UlamxieJEcfrMyOjo6bNPnj2ze7H+8t38sbvvPP+/T8/99vq/b7/1dRLn4li2bnUcu2UwBrN90pXuwkc8t9uFtVnS7gqwI+mh2VE/yuN49EdHLdVC737WDADYK69FxBIAcMgkrv8AcMg0Pgd4sLhQaEzt/URif917NiJ66vE/zKb6ms7snl1P7T5o34PkkTsjSUQM7EL5gxHx4eevnOjI8mk93EsD9sONmxFxaWBw/fk/WffMwnb9f6OVS9212eCaxYft+gPt9EU6/nmq2fgvtzz+iSbjn+76sfuvxy1/8+M/d+dxy9hIOv57pv5s25rx3/JDawMdWe5vtTFfV3L5SqmYntv+HhFD0dWd5kdqmzYfuQ3d//1+q/Kz8d/H6fTzu69+lJafzle2yN3p7H70NeNj1c5vHjfwzL2b0Zcl18SfLLd/0mL8e2GLZbzw9JsftFqXxp/G25jWx7+3lm5FnGja/ittmWz4fOJwrTsMNzpFE599/35fq/JXt386peWn892PtLl7N6PWAZJkZR/U1yzHP5Csfl6zsv0yvr3V/2WrdZvH37T/jx1JXq6lj2TLro9VqzMjEUeSF9cvP73y2ka+sX0a/9B/mx//9WKb9//0PeGlLcbfeffHT3Ye/95K4x/fuP+vaf+ebPHKks0Stx9OdrQqf2vtP1pLDWVL0vbfLK6t1GtnvRkAAAAAAAAAAAAAAAAAAAAAAAAAti8XEcciyeWX07lcPl//De9/Rl+uVK5UT14uz06PR+23sgeiK9f4qsv+Vd+HOpJ9H34jf3pN/omI+EdEvNfdW8vnC+XSeLuDBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDM0Ra//5/6obvdtQMA9kxPuysAAOw7138AOHy2d/3v3bN6AAD7x/t/ADh8tnz9v7S39QAA9o/3/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOyxC+fPp9PSr4sLhTQ/fm1udrJ87dR4sTKZn5ot5Avlmav5iXJ5olTMF8pTLf/RjfqsVC5fHY3p2evD1WKlOlyZm784VZ6drl68MjU2UbxY7Nq3yAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg6ypz85NjpVJx5i+RuLES2C7/5962xtV3MHbvqkRnHIhqHOhEdxyIauwwsfos0duGMxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAn8MfAQAA//94WBdi")
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x3}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x4}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x1b, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a0300000000f5ffffff00010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
syz_emit_ethernet(0xec, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @udp={0x8, 0x6, "7fefc0", 0xb6, 0x11, 0x1, @private2, @local, {[], {0x4e23, 0x4e21, 0xb6, 0x0, @gue={{0x1, 0x1, 0x2, 0x8, 0x100, @void}, "7592ad43f8fd35c8162560896308f90d933e29ac70abd07801a31c9d755aa609a39526e3d234e3b8d1e29c5ec611fc7ba86f0b7f3cf0da5e994711e0978a51172b9fd3e7bf3387570906c2ed54c8b277701c75ea204e4606c60aee9e1d2e2be5f9a88fecb1f01d431070cd35cdc88c9d06d08e3e1bf2703c63757e979b0d97f121eee9f7a6ae3ebbccbbe5ca76c692313c553a9e351f45e9f60c7ff1a93e85a922105d617bd2cde523e5"}}}}}}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x2, 0x300)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r4, &(0x7f0000000200)=[{&(0x7f0000000340)=""/212, 0xd4}], 0x1, 0x1a, 0x0)

815.980567ms ago: executing program 2 (id=2420):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
write$selinux_validatetrans(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB='system_u:object_r:semanage_t system_u:object_'], 0x79)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w') (fail_nth: 11)

542.282548ms ago: executing program 2 (id=2421):
mount(0x0, &(0x7f0000003c40)='.\x00', &(0x7f00000004c0)='cifs\x00', 0x0, &(0x7f0000000500)='gi\xb4\v\xba\xaf\x92\x01\xec\xb7 \xff\x1d!p\xf9\x00\x00#\x00\x00')
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000020000000000000030000000000000000000000004119202532aeecfcdbb73887feb3"], 0x138)
write$UHID_DESTROY(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}}, 0x20)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffd}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000380)='f2fs_gc_begin\x00', r2}, 0x18)
creat(&(0x7f00000001c0)='./file1\x00', 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vxcan0\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f00000003c0)={[{@i_version}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$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")
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}, 0x1, 0x0, 0x0, 0x4006000}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x1b, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a0300000000f5ffffff00010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x1a, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a02000000050a01020000000000000000020000000900030073797a32000000000900010073797a30000000000b"], 0x68}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
syz_emit_ethernet(0xec, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @udp={0x8, 0x6, "7fefc0", 0xb6, 0x11, 0x1, @private2, @local, {[], {0x4e23, 0x4e21, 0xb6, 0x0, @gue={{0x1, 0x1, 0x2, 0x8, 0x100, @void}, "7592ad43f8fd35c8162560896308f90d933e29ac70abd07801a31c9d755aa609a39526e3d234e3b8d1e29c5ec611fc7ba86f0b7f3cf0da5e994711e0978a51172b9fd3e7bf3387570906c2ed54c8b277701c75ea204e4606c60aee9e1d2e2be5f9a88fecb1f01d431070cd35cdc88c9d06d08e3e1bf2703c63757e979b0d97f121eee9f7a6ae3ebbccbbe5ca76c692313c553a9e351f45e9f60c7ff1a93e85a922105d617bd2cde523e5"}}}}}}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x2, 0x300)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r5, &(0x7f0000000200)=[{&(0x7f0000000340)=""/212, 0xd4}], 0x1, 0x1a, 0x0)

165.499519ms ago: executing program 3 (id=2422):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', 0x0, 0x24, 0x1)

161.222819ms ago: executing program 0 (id=2423):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="09000000030000000800000004"], 0x50)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x2})
ioctl$TUNSETGROUP(r2, 0x400454ce, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000003000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000081, &(0x7f0000000640)=ANY=[@ANYRESDEC, @ANYRES8, @ANYRES64, @ANYRESOCT], 0x0, 0x23e, &(0x7f0000000bc0)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r3, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

144.969579ms ago: executing program 2 (id=2424):
mount(0x0, &(0x7f0000003c40)='.\x00', &(0x7f00000004c0)='cifs\x00', 0x0, &(0x7f0000000500)='gi\xb4\v\xba\xaf\x92\x01\xec\xb7 \xff\x1d!p\xf9\x00\x00#\x00\x00')
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$UHID_CREATE2(r0, 0x0, 0x138)
write$UHID_DESTROY(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffd}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
creat(&(0x7f00000001c0)='./file1\x00', 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vxcan0\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f00000003c0)={[{@i_version}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$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")
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x3}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x4}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x1b, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a0300000000f5ffffff00010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
syz_emit_ethernet(0xec, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @udp={0x8, 0x6, "7fefc0", 0xb6, 0x11, 0x1, @private2, @local, {[], {0x4e23, 0x4e21, 0xb6, 0x0, @gue={{0x1, 0x1, 0x2, 0x8, 0x100, @void}, "7592ad43f8fd35c8162560896308f90d933e29ac70abd07801a31c9d755aa609a39526e3d234e3b8d1e29c5ec611fc7ba86f0b7f3cf0da5e994711e0978a51172b9fd3e7bf3387570906c2ed54c8b277701c75ea204e4606c60aee9e1d2e2be5f9a88fecb1f01d431070cd35cdc88c9d06d08e3e1bf2703c63757e979b0d97f121eee9f7a6ae3ebbccbbe5ca76c692313c553a9e351f45e9f60c7ff1a93e85a922105d617bd2cde523e5"}}}}}}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x2, 0x300)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r3, &(0x7f0000000200)=[{&(0x7f0000000340)=""/212, 0xd4}], 0x1, 0x1a, 0x0)

70.238939ms ago: executing program 3 (id=2425):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
ioctl$TIOCMSET(0xffffffffffffffff, 0x5418, &(0x7f0000000340)=0x800)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = epoll_create1(0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000240)={0x20000006})
dup3(r1, r3, 0x0)

0s ago: executing program 5 (id=2426):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='kfree\x00', r0, 0x0, 0x6}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x404, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6, 0xd}, {0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0xc, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {0x0, 0x0, 0x101}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1, 0x3}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9, 0x58d}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xd, 0x50}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0xfffffffc, 0x0, 0x3ff, 0x40000000}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x5, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x4000, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x7, 0x0, 0x40000, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {0x0, 0xfffffffe}, {0x0, 0x0, 0x6, 0x0, 0x4}, {0x6}, {}, {0x0, 0xfffffffd}, {0x8}, {0x7f, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x2, 0x0, 0x5ee, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x2ea0, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x800, 0x0, 0x0, 0xfffffffd}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc, 0x2}, {0x0, 0x80000000, 0x0, 0x7dff800}, {0x0, 0x0, 0x5}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {0x0, 0x1}, {}, {}, {0x4}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001400010600000200000000002b"], 0x14}}, 0x810)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x20}, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x2, 0x0, 0x0, 0x2, 0x0, @private=0xa010100, @remote}, {0x14, 0x0, 0x0, @broadcast}}}}}, 0x0)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

kernel console output (not intermixed with test programs):

50][ T3400] hid-generic 0000:3000000:0000.0066: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  140.074452][ T9428] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2031'.
[  140.122915][ T9432] IPv4: Oversized IP packet from 127.202.26.0
[  140.147726][ T9437] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2035'.
[  140.156892][ T9437] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2035'.
[  140.175990][ T9439] FAULT_INJECTION: forcing a failure.
[  140.175990][ T9439] name failslab, interval 1, probability 0, space 0, times 0
[  140.188663][ T9439] CPU: 1 UID: 0 PID: 9439 Comm: syz.3.2036 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  140.188701][ T9439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  140.188792][ T9439] Call Trace:
[  140.188800][ T9439]  <TASK>
[  140.188808][ T9439]  __dump_stack+0x1d/0x30
[  140.188827][ T9439]  dump_stack_lvl+0xe8/0x140
[  140.188847][ T9439]  dump_stack+0x15/0x1b
[  140.188862][ T9439]  should_fail_ex+0x265/0x280
[  140.188900][ T9439]  should_failslab+0x8c/0xb0
[  140.188962][ T9439]  kmem_cache_alloc_noprof+0x50/0x310
[  140.188994][ T9439]  ? audit_log_start+0x365/0x6c0
[  140.189084][ T9439]  audit_log_start+0x365/0x6c0
[  140.189242][ T9439]  audit_seccomp+0x48/0x100
[  140.189275][ T9439]  ? __seccomp_filter+0x68c/0x10d0
[  140.189303][ T9439]  __seccomp_filter+0x69d/0x10d0
[  140.189333][ T9439]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  140.189449][ T9439]  ? vfs_write+0x75e/0x8e0
[  140.189485][ T9439]  ? __rcu_read_unlock+0x4f/0x70
[  140.189513][ T9439]  ? __fget_files+0x184/0x1c0
[  140.189610][ T9439]  __secure_computing+0x82/0x150
[  140.189636][ T9439]  syscall_trace_enter+0xcf/0x1e0
[  140.189660][ T9439]  do_syscall_64+0xac/0x200
[  140.189682][ T9439]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  140.189779][ T9439]  ? clear_bhb_loop+0x40/0x90
[  140.189861][ T9439]  ? clear_bhb_loop+0x40/0x90
[  140.189882][ T9439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.189909][ T9439] RIP: 0033:0x7f1dda41d3bc
[  140.189928][ T9439] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  140.189951][ T9439] RSP: 002b:00007f1dd8a7f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  140.190002][ T9439] RAX: ffffffffffffffda RBX: 00007f1dda645fa0 RCX: 00007f1dda41d3bc
[  140.190015][ T9439] RDX: 000000000000000f RSI: 00007f1dd8a7f0a0 RDI: 0000000000000005
[  140.190031][ T9439] RBP: 00007f1dd8a7f090 R08: 0000000000000000 R09: 0000000000000000
[  140.190116][ T9439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.190128][ T9439] R13: 0000000000000000 R14: 00007f1dda645fa0 R15: 00007fff7db8b6e8
[  140.190148][ T9439]  </TASK>
[  140.405889][ T9442] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2037'.
[  140.416588][ T9440] loop2: detected capacity change from 0 to 2048
[  140.428456][ T9435] loop5: detected capacity change from 0 to 2048
[  140.440320][ T9440] loop9: detected capacity change from 0 to 7
[  140.455785][ T9440] Buffer I/O error on dev loop9, logical block 0, async page read
[  140.474702][ T9440] Buffer I/O error on dev loop9, logical block 0, async page read
[  140.482706][ T9440]  loop9: unable to read partition table
[  140.546419][ T9450] loop1: detected capacity change from 0 to 512
[  140.552966][ T9440] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  140.552966][ T9440] 
) failed (rc=-5)
[  140.554323][ T9450] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  140.602984][ T9450] EXT4-fs (loop1): 1 truncate cleaned up
[  140.628944][ T9450] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.710592][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.770643][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x4
[  140.778470][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x2
[  140.786496][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.794257][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.802003][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.809710][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.817423][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.825166][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.832859][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.834966][ T9461] loop1: detected capacity change from 0 to 2048
[  140.840515][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.853870][ T9461] EXT4-fs: Ignoring removed i_version option
[  140.854593][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.860622][ T9461] EXT4-fs: Ignoring removed bh option
[  140.868188][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.881391][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.889308][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.896992][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.904704][ T3400] hid-generic 0000:3000000:0000.0067: unknown main item tag 0x0
[  140.916433][ T3400] hid-generic 0000:3000000:0000.0067: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  140.982635][ T9470] netlink: 'syz.3.2046': attribute type 2 has an invalid length.
[  140.990444][ T9470] netlink: 'syz.3.2046': attribute type 1 has an invalid length.
[  141.014875][ T9461] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.028717][ T9461] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.202883][ T9476] loop2: detected capacity change from 0 to 256
[  141.209610][ T9476] vfat: Unknown parameter '18446744073709551615���������01777777777777777777777'
[  141.248116][ T9479] loop3: detected capacity change from 0 to 512
[  141.276349][ T9479] EXT4-fs (loop3): too many log groups per flexible block group
[  141.284131][ T9479] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  141.295255][ T9479] EXT4-fs (loop3): mount failed
[  141.307670][ T9485] loop1: detected capacity change from 0 to 512
[  141.319734][ T9485] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  141.349776][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x4
[  141.357592][ T9485] EXT4-fs (loop1): 1 truncate cleaned up
[  141.357600][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x2
[  141.363756][ T9485] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.400069][ T9488] loop0: detected capacity change from 0 to 2048
[  141.405968][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.408874][ T9488] EXT4-fs: Ignoring removed i_version option
[  141.414292][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.420216][ T9488] EXT4-fs: Ignoring removed bh option
[  141.427854][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.441042][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.448787][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.456580][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.464309][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.472095][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.477134][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.479758][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.496413][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.504277][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.512070][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.519752][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.527463][ T3400] hid-generic 0000:3000000:0000.0068: unknown main item tag 0x0
[  141.532150][ T9488] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.535756][ T3475] usb 7-1: enqueue for inactive port 0
[  141.553056][ T3475] usb 7-1: enqueue for inactive port 0
[  141.576348][ T9504] loop1: detected capacity change from 0 to 512
[  141.587034][ T9504] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  141.602076][ T9508] netlink: 'syz.3.2060': attribute type 2 has an invalid length.
[  141.693673][ T9510] loop5: detected capacity change from 0 to 1024
[  141.711043][ T9510] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  141.711270][ T3475] vhci_hcd: vhci_device speed not set
[  141.720964][ T9510] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  141.726792][ T3400] hid-generic 0000:3000000:0000.0068: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  141.770123][ T9515] loop3: detected capacity change from 0 to 2048
[  141.782137][ T9510] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  141.792938][ T9510] EXT4-fs error (device loop5): ext4_get_journal_inode:5796: inode #5: comm syz.5.2061: unexpected bad inode w/o EXT4_IGET_BAD
[  141.816592][ T9517] __nla_validate_parse: 4 callbacks suppressed
[  141.816611][ T9517] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2063'.
[  141.821549][ T9510] EXT4-fs (loop5): no journal found
[  141.837098][ T9510] EXT4-fs (loop5): can't get journal size
[  141.874353][ T9510] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1340: inode #12: block 16: comm syz.5.2061: path /292/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  141.968480][ T9515] loop9: detected capacity change from 0 to 7
[  141.997748][ T9555] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2067'.
[  142.006903][ T9555] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2067'.
[  142.016112][ T9515] Buffer I/O error on dev loop9, logical block 0, async page read
[  142.065419][ T9515] Buffer I/O error on dev loop9, logical block 0, async page read
[  142.073529][ T9515]  loop9: unable to read partition table
[  142.215152][ T9515] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  142.215152][ T9515] 
) failed (rc=-5)
[  142.256496][ T9579] validate_nla: 1 callbacks suppressed
[  142.256512][ T9579] netlink: 'syz.5.2073': attribute type 2 has an invalid length.
[  142.269858][ T9579] netlink: 'syz.5.2073': attribute type 1 has an invalid length.
[  142.277744][ T9579] netlink: 199820 bytes leftover after parsing attributes in process `syz.5.2073'.
[  142.296034][ T9584] netlink: 'syz.1.2072': attribute type 4 has an invalid length.
[  142.338321][ T9596] loop5: detected capacity change from 0 to 512
[  142.447086][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x4
[  142.454919][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x2
[  142.514376][ T9601] loop1: detected capacity change from 0 to 2048
[  142.531488][ T9596] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  142.532199][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.547100][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.554911][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.562710][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.570404][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.578183][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.586052][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.593843][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.601600][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.605688][ T9601] EXT4-fs: Ignoring removed i_version option
[  142.609533][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.615269][ T9601] EXT4-fs: Ignoring removed bh option
[  142.622939][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.635995][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.643736][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.651464][ T3387] hid-generic 0000:3000000:0000.0069: unknown main item tag 0x0
[  142.718628][ T3387] hid-generic 0000:3000000:0000.0069: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  142.782773][ T9609] loop5: detected capacity change from 0 to 2048
[  142.790706][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x4
[  142.798614][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x2
[  142.825272][ T9609] EXT4-fs: Ignoring removed i_version option
[  142.831455][ T9609] EXT4-fs: Ignoring removed bh option
[  142.871891][ T9616] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2078'.
[  142.881025][ T9616] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2078'.
[  142.897249][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.903898][ T9614] loop0: detected capacity change from 0 to 256
[  142.904990][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.919021][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.919414][ T9614] vfat: Unknown parameter '18446744073709551615���������01777777777777777777777'
[  142.926727][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.926754][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.926778][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.959016][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.966735][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.974454][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.982359][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.990110][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  142.997856][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  143.005616][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  143.013379][ T3387] hid-generic 0000:3000000:0000.006A: unknown main item tag 0x0
[  143.033487][ T3387] hid-generic 0000:3000000:0000.006A: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  143.079485][ T9624] netlink: 14593 bytes leftover after parsing attributes in process `syz.3.2083'.
[  143.105920][ T9632] netlink: 'syz.5.2085': attribute type 4 has an invalid length.
[  143.207418][ T9645] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2092'.
[  143.216552][ T9645] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2092'.
[  143.229152][ T9646] loop5: detected capacity change from 0 to 2048
[  143.253308][ T9646] loop9: detected capacity change from 0 to 7
[  143.264442][ T9646] Buffer I/O error on dev loop9, logical block 0, async page read
[  143.272741][ T9646] Buffer I/O error on dev loop9, logical block 0, async page read
[  143.280762][ T9646]  loop9: unable to read partition table
[  143.286654][ T9646] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  143.286654][ T9646] 
) failed (rc=-5)
[  143.327152][ T9659] netlink: 'syz.2.2096': attribute type 2 has an invalid length.
[  143.335025][ T9659] netlink: 'syz.2.2096': attribute type 1 has an invalid length.
[  143.341624][ T9661] netlink: 'syz.1.2099': attribute type 4 has an invalid length.
[  143.342871][ T9659] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.2096'.
[  143.393345][ T9664] netlink: 'syz.2.2100': attribute type 2 has an invalid length.
[  143.401153][ T9664] netlink: 'syz.2.2100': attribute type 1 has an invalid length.
[  143.434655][ T9669] loop2: detected capacity change from 0 to 512
[  143.442285][ T9669] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  143.461727][ T9669] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  143.482762][ T9666] loop3: detected capacity change from 0 to 512
[  143.490483][ T9669] EXT4-fs (loop2): 1 truncate cleaned up
[  143.498778][ T9666] EXT4-fs (loop3): too many log groups per flexible block group
[  143.506516][ T9666] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  143.524204][ T9676] loop1: detected capacity change from 0 to 1024
[  143.531665][ T9666] EXT4-fs (loop3): mount failed
[  143.532076][ T9676] EXT4-fs: Ignoring removed bh option
[  143.556334][ T9676] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  143.590873][ T9676] EXT4-fs error (device loop1): ext4_check_all_de:659: inode #12: block 7: comm syz.1.2104: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  143.652606][ T9676] EXT4-fs (loop1): Remounting filesystem read-only
[  143.768510][ T9690] netlink: 'syz.3.2111': attribute type 2 has an invalid length.
[  143.852987][ T9703] loop1: detected capacity change from 0 to 512
[  143.870210][ T9703] EXT4-fs (loop1): too many log groups per flexible block group
[  143.878015][ T9703] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  143.890219][ T9700] loop2: detected capacity change from 0 to 1024
[  143.906712][ T9700] EXT4-fs: Ignoring removed nobh option
[  143.912364][ T9700] EXT4-fs: Ignoring removed bh option
[  143.939683][ T9703] EXT4-fs (loop1): mount failed
[  143.968883][ T9700] ext4: Unknown parameter 'fsname'
[  144.004429][ T9711] loop1: detected capacity change from 0 to 512
[  144.037197][ T9711] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  144.121800][ T9718] loop2: detected capacity change from 0 to 128
[  144.128552][ T9718] ext4: Unknown parameter 'hash'
[  144.534162][ T9651] Set syz1 is full, maxelem 65536 reached
[  144.666981][ T9773] loop1: detected capacity change from 0 to 512
[  144.679521][ T9771] ip6gre1: entered allmulticast mode
[  144.687255][ T9773] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  144.726888][ T9781] FAULT_INJECTION: forcing a failure.
[  144.726888][ T9781] name failslab, interval 1, probability 0, space 0, times 0
[  144.739623][ T9781] CPU: 1 UID: 0 PID: 9781 Comm: syz.1.2134 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  144.739655][ T9781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  144.739670][ T9781] Call Trace:
[  144.739678][ T9781]  <TASK>
[  144.739733][ T9781]  __dump_stack+0x1d/0x30
[  144.739833][ T9781]  dump_stack_lvl+0xe8/0x140
[  144.739856][ T9781]  dump_stack+0x15/0x1b
[  144.739876][ T9781]  should_fail_ex+0x265/0x280
[  144.739938][ T9781]  should_failslab+0x8c/0xb0
[  144.739964][ T9781]  kmem_cache_alloc_node_noprof+0x57/0x320
[  144.740020][ T9781]  ? __alloc_skb+0x101/0x320
[  144.740055][ T9781]  __alloc_skb+0x101/0x320
[  144.740089][ T9781]  netlink_ack+0xfd/0x500
[  144.740132][ T9781]  netlink_rcv_skb+0x192/0x220
[  144.740240][ T9781]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  144.740281][ T9781]  rtnetlink_rcv+0x1c/0x30
[  144.740304][ T9781]  netlink_unicast+0x5a8/0x680
[  144.740359][ T9781]  netlink_sendmsg+0x58b/0x6b0
[  144.740388][ T9781]  ? __pfx_netlink_sendmsg+0x10/0x10
[  144.740457][ T9781]  __sock_sendmsg+0x142/0x180
[  144.740491][ T9781]  ____sys_sendmsg+0x31e/0x4e0
[  144.740519][ T9781]  ___sys_sendmsg+0x17b/0x1d0
[  144.740562][ T9781]  __x64_sys_sendmsg+0xd4/0x160
[  144.740592][ T9781]  x64_sys_call+0x2999/0x2fb0
[  144.740651][ T9781]  do_syscall_64+0xd2/0x200
[  144.740748][ T9781]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  144.740775][ T9781]  ? clear_bhb_loop+0x40/0x90
[  144.740796][ T9781]  ? clear_bhb_loop+0x40/0x90
[  144.740818][ T9781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.740915][ T9781] RIP: 0033:0x7f798ac7e9a9
[  144.740931][ T9781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.740950][ T9781] RSP: 002b:00007f79892df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  144.740969][ T9781] RAX: ffffffffffffffda RBX: 00007f798aea5fa0 RCX: 00007f798ac7e9a9
[  144.740982][ T9781] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000006
[  144.741053][ T9781] RBP: 00007f79892df090 R08: 0000000000000000 R09: 0000000000000000
[  144.741066][ T9781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.741078][ T9781] R13: 0000000000000000 R14: 00007f798aea5fa0 R15: 00007fffd668c2c8
[  144.741098][ T9781]  </TASK>
[  145.074186][ T9797] loop1: detected capacity change from 0 to 2048
[  145.098144][ T9797] loop9: detected capacity change from 0 to 7
[  145.123446][ T9802] FAULT_INJECTION: forcing a failure.
[  145.123446][ T9802] name failslab, interval 1, probability 0, space 0, times 0
[  145.136320][ T9802] CPU: 0 UID: 0 PID: 9802 Comm: syz.0.2140 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  145.136350][ T9802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  145.136364][ T9802] Call Trace:
[  145.136371][ T9802]  <TASK>
[  145.136380][ T9802]  __dump_stack+0x1d/0x30
[  145.136407][ T9802]  dump_stack_lvl+0xe8/0x140
[  145.136431][ T9802]  dump_stack+0x15/0x1b
[  145.136452][ T9802]  should_fail_ex+0x265/0x280
[  145.136490][ T9802]  should_failslab+0x8c/0xb0
[  145.136517][ T9802]  kmem_cache_alloc_noprof+0x50/0x310
[  145.136545][ T9802]  ? vm_area_dup+0x33/0x2c0
[  145.136576][ T9802]  vm_area_dup+0x33/0x2c0
[  145.136606][ T9802]  __split_vma+0xe9/0x650
[  145.136637][ T9802]  ? mas_find+0x4ea/0x610
[  145.136662][ T9802]  vms_gather_munmap_vmas+0x2a5/0x7a0
[  145.136695][ T9802]  mmap_region+0x4ce/0x1580
[  145.136723][ T9802]  ? mntput_no_expire+0x6f/0x3c0
[  145.136756][ T9802]  ? mntput+0x4b/0x80
[  145.136814][ T9802]  do_mmap+0x9b3/0xbe0
[  145.136853][ T9802]  vm_mmap_pgoff+0x17a/0x2e0
[  145.136887][ T9802]  ksys_mmap_pgoff+0x268/0x310
[  145.136921][ T9802]  x64_sys_call+0x1602/0x2fb0
[  145.136946][ T9802]  do_syscall_64+0xd2/0x200
[  145.136967][ T9802]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  145.137016][ T9802]  ? clear_bhb_loop+0x40/0x90
[  145.137040][ T9802]  ? clear_bhb_loop+0x40/0x90
[  145.137066][ T9802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.137101][ T9802] RIP: 0033:0x7f1d3942e9a9
[  145.137119][ T9802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.137139][ T9802] RSP: 002b:00007f1d37a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  145.137160][ T9802] RAX: ffffffffffffffda RBX: 00007f1d39655fa0 RCX: 00007f1d3942e9a9
[  145.137174][ T9802] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000200000fa2000
[  145.137189][ T9802] RBP: 00007f1d37a8f090 R08: 0000000000000006 R09: 0000000000000000
[  145.137203][ T9802] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001
[  145.137217][ T9802] R13: 0000000000000000 R14: 00007f1d39655fa0 R15: 00007ffcccdb4a18
[  145.137239][ T9802]  </TASK>
[  145.146185][ T9806] loop3: detected capacity change from 0 to 2048
[  145.165233][ T9797] Buffer I/O error on dev loop9, logical block 0, async page read
[  145.179854][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x4
[  145.288577][ T9806] EXT4-fs: Ignoring removed i_version option
[  145.298427][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x2
[  145.306919][ T9806] EXT4-fs: Ignoring removed bh option
[  145.320440][ T9797] Buffer I/O error on dev loop9, logical block 0, async page read
[  145.357849][   T29] kauditd_printk_skb: 281 callbacks suppressed
[  145.357867][   T29] audit: type=1326 audit(1753740838.235:7994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  145.364234][ T9797]  loop9: unable to read partition table
[  145.373256][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.377964][   T29] audit: type=1326 audit(1753740838.235:7995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  145.385691][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.391046][   T29] audit: type=1326 audit(1753740838.235:7996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  145.398909][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.405085][   T29] audit: type=1326 audit(1753740838.235:7997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  145.428520][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.428549][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.434195][   T29] audit: type=1326 audit(1753740838.235:7998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  145.434224][   T29] audit: type=1326 audit(1753740838.235:7999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  145.441906][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.441935][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.465460][   T29] audit: type=1326 audit(1753740838.235:8000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  145.473109][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.546113][   T29] audit: type=1326 audit(1753740838.376:8001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  145.566434][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.566462][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.612632][ T9797] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  145.612632][ T9797] 
) failed (rc=-5)
[  145.628721][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.662303][ T9814] loop0: detected capacity change from 0 to 256
[  145.667480][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.696797][ T9814] vfat: Unknown parameter '18446744073709551615���������01777777777777777777777'
[  145.702284][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.727446][ T3475] hid-generic 0000:3000000:0000.006B: unknown main item tag 0x0
[  145.739156][ T3475] hid-generic 0000:3000000:0000.006B: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  145.753762][   T29] audit: type=1326 audit(1753740838.600:8002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  145.777306][   T29] audit: type=1326 audit(1753740838.600:8003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9815 comm="syz.2.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6cf6ee9a9 code=0x7ffc0000
[  146.001123][ T9843] loop3: detected capacity change from 0 to 512
[  146.032000][ T9843] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  146.070801][ T9843] EXT4-fs (loop3): 1 truncate cleaned up
[  146.118609][ T9859] IPv6: Can't replace route, no match found
[  146.135235][ T9859] loop3: detected capacity change from 0 to 1024
[  146.142419][ T9859] EXT4-fs: Ignoring removed bh option
[  146.148232][ T9859] EXT4-fs: inline encryption not supported
[  146.162308][ T9859] ext4: Unknown parameter 'smackfsroot'
[  146.188674][ T9859] rdma_op ffff88811c736980 conn xmit_rdma 0000000000000000
[  146.267016][ T9878] loop3: detected capacity change from 0 to 256
[  146.289767][ T9878] vfat: Unknown parameter '18446744073709551615���������01777777777777777777777'
[  146.336308][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x4
[  146.344102][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x2
[  146.362301][ T9886] loop0: detected capacity change from 0 to 2048
[  146.369045][ T9886] EXT4-fs: Ignoring removed i_version option
[  146.375066][ T9886] EXT4-fs: Ignoring removed bh option
[  146.389314][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.397069][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.404880][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.412599][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.420419][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.428210][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.435941][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.443646][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.451436][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.459234][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.467151][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.474857][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.482532][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.490313][ T3475] hid-generic 0000:3000000:0000.006C: unknown main item tag 0x0
[  146.538477][ T3475] hid-generic 0000:3000000:0000.006C: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  146.586370][ T9907] loop3: detected capacity change from 0 to 512
[  146.595191][ T9907] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  146.781195][ T9933] 1�X���: renamed from 
60�X���
[  146.806592][ T9933] A link change request failed with some changes committed already. Interface 
61�X��� may have been left with an inconsistent configuration, please check.
[  146.893483][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x4
[  146.901378][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x2
[  146.909330][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.917121][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.924831][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.932566][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.940284][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.948023][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.955791][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.963495][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.971294][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.979015][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.986940][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  146.987255][ T9947] loop3: detected capacity change from 0 to 2048
[  146.994743][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  147.008814][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  147.013033][ T9947] EXT4-fs: Ignoring removed i_version option
[  147.016519][ T3387] hid-generic 0000:3000000:0000.006D: unknown main item tag 0x0
[  147.022508][ T9947] EXT4-fs: Ignoring removed bh option
[  147.032063][ T9955] loop1: detected capacity change from 0 to 2048
[  147.077363][ T3387] hid-generic 0000:3000000:0000.006D: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  147.151381][ T9963] loop2: detected capacity change from 0 to 512
[  147.162189][ T9963] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  147.177137][ T9963] EXT4-fs (loop2): 1 truncate cleaned up
[  147.192236][ T9965] IPv4: Oversized IP packet from 127.202.26.0
[  147.204772][ T9955] loop9: detected capacity change from 0 to 7
[  147.222046][ T9955] Buffer I/O error on dev loop9, logical block 0, async page read
[  147.235699][ T9969] loop2: detected capacity change from 0 to 256
[  147.242035][ T9955] Buffer I/O error on dev loop9, logical block 0, async page read
[  147.250072][ T9955]  loop9: unable to read partition table
[  147.262459][ T9969] vfat: Unknown parameter '18446744073709551615���������01777777777777777777777'
[  147.287614][ T9955] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  147.287614][ T9955] 
) failed (rc=-5)
[  147.664250][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x4
[  147.671999][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x2
[  147.682281][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.690177][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.697930][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.698451][ T9992] loop5: detected capacity change from 0 to 2048
[  147.705685][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.719832][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.727620][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.735309][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.743010][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.743718][ T9992] EXT4-fs: Ignoring removed i_version option
[  147.750671][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.756682][ T9992] EXT4-fs: Ignoring removed bh option
[  147.764313][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.764341][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.775375][ T9995] FAULT_INJECTION: forcing a failure.
[  147.775375][ T9995] name failslab, interval 1, probability 0, space 0, times 0
[  147.777349][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.785017][ T9995] CPU: 0 UID: 0 PID: 9995 Comm: syz.0.2181 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  147.785052][ T9995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  147.785069][ T9995] Call Trace:
[  147.785080][ T9995]  <TASK>
[  147.785089][ T9995]  __dump_stack+0x1d/0x30
[  147.785118][ T9995]  dump_stack_lvl+0xe8/0x140
[  147.785148][ T9995]  dump_stack+0x15/0x1b
[  147.785170][ T9995]  should_fail_ex+0x265/0x280
[  147.785209][ T9995]  should_failslab+0x8c/0xb0
[  147.785237][ T9995]  kmem_cache_alloc_noprof+0x50/0x310
[  147.785269][ T9995]  ? vm_area_dup+0x33/0x2c0
[  147.785304][ T9995]  vm_area_dup+0x33/0x2c0
[  147.785338][ T9995]  __split_vma+0xe9/0x650
[  147.785370][ T9995]  ? mas_find+0x4ea/0x610
[  147.785395][ T9995]  vms_gather_munmap_vmas+0x2a5/0x7a0
[  147.785431][ T9995]  mmap_region+0x4ce/0x1580
[  147.785460][ T9995]  ? mntput_no_expire+0x6f/0x3c0
[  147.785496][ T9995]  ? mntput+0x4b/0x80
[  147.785547][ T9995]  do_mmap+0x9b3/0xbe0
[  147.785588][ T9995]  vm_mmap_pgoff+0x17a/0x2e0
[  147.785624][ T9995]  ksys_mmap_pgoff+0x268/0x310
[  147.785665][ T9995]  x64_sys_call+0x1602/0x2fb0
[  147.785691][ T9995]  do_syscall_64+0xd2/0x200
[  147.785714][ T9995]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  147.785748][ T9995]  ? clear_bhb_loop+0x40/0x90
[  147.785773][ T9995]  ? clear_bhb_loop+0x40/0x90
[  147.785801][ T9995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.785826][ T9995] RIP: 0033:0x7f1d3942e9a9
[  147.785846][ T9995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.785870][ T9995] RSP: 002b:00007f1d37a8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  147.785892][ T9995] RAX: ffffffffffffffda RBX: 00007f1d39655fa0 RCX: 00007f1d3942e9a9
[  147.785908][ T9995] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000200000fa2000
[  147.785924][ T9995] RBP: 00007f1d37a8f090 R08: 0000000000000006 R09: 0000000000000000
[  147.785940][ T9995] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001
[  147.785955][ T9995] R13: 0000000000000000 R14: 00007f1d39655fa0 R15: 00007ffcccdb4a18
[  147.785979][ T9995]  </TASK>
[  147.897800][ T9998] loop0: detected capacity change from 0 to 512
[  147.900682][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.900722][ T3475] hid-generic 0000:3000000:0000.006E: unknown main item tag 0x0
[  147.914463][ T9998] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[  147.943409][ T9944] syz.1.2166 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  148.057520][ T9944] CPU: 1 UID: 0 PID: 9944 Comm: syz.1.2166 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  148.057549][ T9944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  148.057560][ T9944] Call Trace:
[  148.057568][ T9944]  <TASK>
[  148.057643][ T9944]  __dump_stack+0x1d/0x30
[  148.057668][ T9944]  dump_stack_lvl+0xe8/0x140
[  148.057688][ T9944]  dump_stack+0x15/0x1b
[  148.057763][ T9944]  dump_header+0x81/0x220
[  148.057863][ T9944]  oom_kill_process+0x334/0x3f0
[  148.057914][ T9944]  out_of_memory+0x979/0xb80
[  148.057945][ T9944]  try_charge_memcg+0x5e6/0x9e0
[  148.057984][ T9944]  charge_memcg+0x51/0xc0
[  148.058017][ T9944]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  148.058121][ T9944]  __read_swap_cache_async+0x1df/0x350
[  148.058220][ T9944]  swap_cluster_readahead+0x277/0x3e0
[  148.058290][ T9944]  swapin_readahead+0xde/0x6f0
[  148.058337][ T9944]  ? __filemap_get_folio+0x4f7/0x6b0
[  148.058366][ T9944]  ? swap_cache_get_folio+0x77/0x200
[  148.058404][ T9944]  do_swap_page+0x301/0x2430
[  148.058425][ T9944]  ? css_rstat_updated+0xcd/0x5b0
[  148.058454][ T9944]  ? __pfx_default_wake_function+0x10/0x10
[  148.058482][ T9944]  handle_mm_fault+0x9a5/0x2be0
[  148.058508][ T9944]  ? mas_walk+0xf2/0x120
[  148.058620][ T9944]  do_user_addr_fault+0x636/0x1090
[  148.058658][ T9944]  ? fpregs_restore_userregs+0xe2/0x1d0
[  148.058735][ T9944]  ? switch_fpu_return+0xe/0x20
[  148.058764][ T9944]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  148.058812][ T9944]  exc_page_fault+0x62/0xa0
[  148.058859][ T9944]  asm_exc_page_fault+0x26/0x30
[  148.058881][ T9944] RIP: 0033:0x7f798ab50cce
[  148.058899][ T9944] Code: e9 67 c7 12 00 0f 1f 80 00 00 00 00 48 83 c4 28 48 c7 c0 ff ff ff ff 5b 5d c3 66 90 41 57 41 56 41 55 41 54 55 53 48 83 ec 38 <80> 3d 2b 13 35 00 00 89 7c 24 0c 88 54 24 10 48 89 74 24 28 0f 85
[  148.058919][ T9944] RSP: 002b:00007fffd668c3c0 EFLAGS: 00010206
[  148.058937][ T9944] RAX: 00007f798aea5fa0 RBX: 00007f798aea5fa0 RCX: 0000000000000026
[  148.058952][ T9944] RDX: 0000000000000001 RSI: 00007f798aea6038 RDI: 0000000000000009
[  148.058966][ T9944] RBP: 00007f798aea7ba0 R08: 0000000000000000 R09: 0000000000000026
[  148.058979][ T9944] R10: 3fffffffffffffff R11: 0000000000000293 R12: 0000000000023563
[  148.058992][ T9944] R13: 00007f798aea6080 R14: ffffffffffffffff R15: 00007fffd668c540
[  148.059013][ T9944]  </TASK>
[  148.059020][ T9944] memory: usage 307200kB, limit 307200kB, failcnt 2214
[  148.290482][ T9944] memory+swap: usage 312084kB, limit 9007199254740988kB, failcnt 0
[  148.298392][ T9944] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[  148.305769][ T9944] Memory cgroup stats for /syz1:
[  148.306087][ T9944] cache 0
[  148.308416][ T3475] hid-generic 0000:3000000:0000.006E: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  148.311137][ T9944] rss 0
[  148.326827][ T9944] shmem 0
[  148.329784][ T9944] mapped_file 0
[  148.333244][ T9944] dirty 0
[  148.336220][ T9944] writeback 28672
[  148.339874][ T9944] workingset_refault_anon 442
[  148.344612][ T9944] workingset_refault_file 1805
[  148.349456][ T9944] swap 5001216
[  148.352873][ T9944] swapcached 32768
[  148.356665][ T9944] pgpgin 102871
[  148.360152][ T9944] pgpgout 102863
[  148.363702][ T9944] pgfault 109718
[  148.367303][ T9944] pgmajfault 322
[  148.370966][ T9944] inactive_anon 32768
[  148.375030][ T9944] active_anon 0
[  148.378503][ T9944] inactive_file 0
[  148.382250][ T9944] active_file 0
[  148.385776][ T9944] unevictable 0
[  148.389313][ T9944] hierarchical_memory_limit 314572800
[  148.394718][ T9944] hierarchical_memsw_limit 9223372036854771712
[  148.400942][ T9944] total_cache 0
[  148.404419][ T9944] total_rss 0
[  148.407790][ T9944] total_shmem 0
[  148.411270][ T9944] total_mapped_file 0
[  148.415304][ T9944] total_dirty 0
[  148.418800][ T9944] total_writeback 28672
[  148.422976][ T9944] total_workingset_refault_anon 442
[  148.428219][ T9944] total_workingset_refault_file 1805
[  148.433591][ T9944] total_swap 5001216
[  148.437528][ T9944] total_swapcached 32768
[  148.441810][ T9944] total_pgpgin 102871
[  148.445820][ T9944] total_pgpgout 102863
[  148.449908][ T9944] total_pgfault 109718
[  148.454106][ T9944] total_pgmajfault 322
[  148.458178][ T9944] total_inactive_anon 32768
[  148.462695][ T9944] total_active_anon 0
[  148.466767][ T9944] total_inactive_file 0
[  148.470939][ T9944] total_active_file 0
[  148.474965][ T9944] total_unevictable 0
[  148.478951][ T9944] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2166,pid=9944,uid=0
[  148.493677][ T9944] Memory cgroup out of memory: Killed process 9944 (syz.1.2166) total-vm:93892kB, anon-rss:1052kB, file-rss:22576kB, shmem-rss:128kB, UID:0 pgtables:136kB oom_score_adj:1000
[  148.542438][T10009] FAULT_INJECTION: forcing a failure.
[  148.542438][T10009] name failslab, interval 1, probability 0, space 0, times 0
[  148.555408][T10009] CPU: 0 UID: 0 PID: 10009 Comm: syz.5.2185 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  148.555489][T10009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  148.555506][T10009] Call Trace:
[  148.555512][T10009]  <TASK>
[  148.555518][T10009]  __dump_stack+0x1d/0x30
[  148.555537][T10009]  dump_stack_lvl+0xe8/0x140
[  148.555555][T10009]  dump_stack+0x15/0x1b
[  148.555655][T10009]  should_fail_ex+0x265/0x280
[  148.555686][T10009]  ? dev_ingress_queue_create+0x58/0x120
[  148.555804][T10009]  should_failslab+0x8c/0xb0
[  148.555827][T10009]  __kmalloc_cache_noprof+0x4c/0x320
[  148.555857][T10009]  dev_ingress_queue_create+0x58/0x120
[  148.555892][T10009]  tc_modify_qdisc+0x413/0x1420
[  148.555928][T10009]  ? selinux_capable+0x1f9/0x270
[  148.555968][T10009]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  148.555994][T10009]  rtnetlink_rcv_msg+0x65a/0x6d0
[  148.556052][T10009]  netlink_rcv_skb+0x123/0x220
[  148.556080][T10009]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  148.556108][T10009]  rtnetlink_rcv+0x1c/0x30
[  148.556129][T10009]  netlink_unicast+0x5a8/0x680
[  148.556200][T10009]  netlink_sendmsg+0x58b/0x6b0
[  148.556223][T10009]  ? __pfx_netlink_sendmsg+0x10/0x10
[  148.556243][T10009]  __sock_sendmsg+0x142/0x180
[  148.556281][T10009]  ____sys_sendmsg+0x31e/0x4e0
[  148.556304][T10009]  ___sys_sendmsg+0x17b/0x1d0
[  148.556339][T10009]  __x64_sys_sendmsg+0xd4/0x160
[  148.556360][T10009]  x64_sys_call+0x2999/0x2fb0
[  148.556378][T10009]  do_syscall_64+0xd2/0x200
[  148.556395][T10009]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  148.556477][T10009]  ? clear_bhb_loop+0x40/0x90
[  148.556499][T10009]  ? clear_bhb_loop+0x40/0x90
[  148.556582][T10009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.556671][T10009] RIP: 0033:0x7fca4919e9a9
[  148.556686][T10009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.556709][T10009] RSP: 002b:00007fca477ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  148.556728][T10009] RAX: ffffffffffffffda RBX: 00007fca493c5fa0 RCX: 00007fca4919e9a9
[  148.556741][T10009] RDX: 0000000000000000 RSI: 00002000000012c0 RDI: 0000000000000004
[  148.556753][T10009] RBP: 00007fca477ff090 R08: 0000000000000000 R09: 0000000000000000
[  148.556775][T10009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.556787][T10009] R13: 0000000000000000 R14: 00007fca493c5fa0 R15: 00007ffe0bfbdd78
[  148.556824][T10009]  </TASK>
[  148.826679][T10012] FAULT_INJECTION: forcing a failure.
[  148.826679][T10012] name failslab, interval 1, probability 0, space 0, times 0
[  148.839407][T10012] CPU: 1 UID: 0 PID: 10012 Comm: syz.3.2186 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  148.839440][T10012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  148.839466][T10012] Call Trace:
[  148.839474][T10012]  <TASK>
[  148.839482][T10012]  __dump_stack+0x1d/0x30
[  148.839508][T10012]  dump_stack_lvl+0xe8/0x140
[  148.839532][T10012]  dump_stack+0x15/0x1b
[  148.839553][T10012]  should_fail_ex+0x265/0x280
[  148.839662][T10012]  should_failslab+0x8c/0xb0
[  148.839691][T10012]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  148.839740][T10012]  ? sidtab_sid2str_get+0xa0/0x130
[  148.839767][T10012]  kmemdup_noprof+0x2b/0x70
[  148.839794][T10012]  sidtab_sid2str_get+0xa0/0x130
[  148.839872][T10012]  security_sid_to_context_core+0x1eb/0x2e0
[  148.839900][T10012]  security_sid_to_context+0x27/0x40
[  148.839959][T10012]  selinux_lsmprop_to_secctx+0x67/0xf0
[  148.839987][T10012]  security_lsmprop_to_secctx+0x43/0x80
[  148.840072][T10012]  audit_log_task_context+0x77/0x190
[  148.840106][T10012]  audit_log_task+0xf4/0x250
[  148.840141][T10012]  audit_seccomp+0x61/0x100
[  148.840215][T10012]  ? __seccomp_filter+0x68c/0x10d0
[  148.840236][T10012]  __seccomp_filter+0x69d/0x10d0
[  148.840257][T10012]  ? update_load_avg+0x1da/0x820
[  148.840288][T10012]  ? __list_add_valid_or_report+0x38/0xe0
[  148.840330][T10012]  ? _raw_spin_unlock+0x26/0x50
[  148.840375][T10012]  __secure_computing+0x82/0x150
[  148.840403][T10012]  syscall_trace_enter+0xcf/0x1e0
[  148.840435][T10012]  do_syscall_64+0xac/0x200
[  148.840536][T10012]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  148.840565][T10012]  ? clear_bhb_loop+0x40/0x90
[  148.840586][T10012]  ? clear_bhb_loop+0x40/0x90
[  148.840607][T10012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.840631][T10012] RIP: 0033:0x7f1dda41d3bc
[  148.840676][T10012] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  148.840700][T10012] RSP: 002b:00007f1dd8a7f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  148.840723][T10012] RAX: ffffffffffffffda RBX: 00007f1dda645fa0 RCX: 00007f1dda41d3bc
[  148.840737][T10012] RDX: 000000000000000f RSI: 00007f1dd8a7f0a0 RDI: 0000000000000003
[  148.840748][T10012] RBP: 00007f1dd8a7f090 R08: 0000000000000000 R09: 0000000000000000
[  148.840760][T10012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  148.840830][T10012] R13: 0000000000000000 R14: 00007f1dda645fa0 R15: 00007fff7db8b6e8
[  148.840856][T10012]  </TASK>
[  149.143620][T10021] loop0: detected capacity change from 0 to 512
[  149.161532][T10021] EXT4-fs (loop0): too many log groups per flexible block group
[  149.169412][T10021] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  149.176264][T10021] EXT4-fs (loop0): mount failed
[  149.198712][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x4
[  149.206478][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x2
[  149.226225][T10027] loop5: detected capacity change from 0 to 2048
[  149.235680][T10027] EXT4-fs: Ignoring removed i_version option
[  149.241736][T10027] EXT4-fs: Ignoring removed bh option
[  149.247501][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.249917][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x4
[  149.255230][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.262863][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x2
[  149.270513][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.285914][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.293635][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.295468][T10030] loop0: detected capacity change from 0 to 2048
[  149.301397][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.309321][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.315416][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.323142][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.330765][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.338359][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.346014][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.353671][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.353698][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.353738][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.361478][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.369114][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.376850][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.384417][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.392062][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.399740][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.407399][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.415023][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.422749][ T1041] hid-generic 0000:3000000:0000.006F: unknown main item tag 0x0
[  149.430406][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.461538][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.469271][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.476198][T10030] EXT4-fs: Ignoring removed i_version option
[  149.477040][ T3475] hid-generic 0000:3000000:0000.0070: unknown main item tag 0x0
[  149.482982][T10030] EXT4-fs: Ignoring removed bh option
[  149.496343][ T3475] hid-generic 0000:3000000:0000.0070: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  149.508346][ T1041] hid-generic 0000:3000000:0000.006F: hidraw1: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  149.559688][T10043] IPv4: Oversized IP packet from 127.202.26.0
[  149.588431][T10045] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  149.664253][T10059] validate_nla: 9 callbacks suppressed
[  149.664269][T10059] netlink: 'syz.5.2203': attribute type 4 has an invalid length.
[  149.684670][T10062] netlink: 'syz.0.2204': attribute type 2 has an invalid length.
[  149.692675][T10062] netlink: 'syz.0.2204': attribute type 1 has an invalid length.
[  149.700527][T10062] __nla_validate_parse: 16 callbacks suppressed
[  149.700544][T10062] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.2204'.
[  149.734063][T10063] netlink: 'syz.2.2201': attribute type 21 has an invalid length.
[  149.742513][T10063] netlink: 'syz.2.2201': attribute type 1 has an invalid length.
[  149.750307][T10063] netlink: 144 bytes leftover after parsing attributes in process `syz.2.2201'.
[  149.752992][T10067] FAULT_INJECTION: forcing a failure.
[  149.752992][T10067] name failslab, interval 1, probability 0, space 0, times 0
[  149.772095][T10067] CPU: 0 UID: 0 PID: 10067 Comm: syz.0.2207 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  149.772123][T10067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.772136][T10067] Call Trace:
[  149.772143][T10067]  <TASK>
[  149.772151][T10067]  __dump_stack+0x1d/0x30
[  149.772279][T10067]  dump_stack_lvl+0xe8/0x140
[  149.772298][T10067]  dump_stack+0x15/0x1b
[  149.772314][T10067]  should_fail_ex+0x265/0x280
[  149.772398][T10067]  should_failslab+0x8c/0xb0
[  149.772420][T10067]  kmem_cache_alloc_node_noprof+0x57/0x320
[  149.772447][T10067]  ? __alloc_skb+0x101/0x320
[  149.772520][T10067]  __alloc_skb+0x101/0x320
[  149.772549][T10067]  netlink_alloc_large_skb+0xba/0xf0
[  149.772592][T10067]  netlink_sendmsg+0x3cf/0x6b0
[  149.772647][T10067]  ? __pfx_netlink_sendmsg+0x10/0x10
[  149.772666][T10067]  __sock_sendmsg+0x142/0x180
[  149.772763][T10067]  ____sys_sendmsg+0x31e/0x4e0
[  149.772817][T10067]  ___sys_sendmsg+0x17b/0x1d0
[  149.772851][T10067]  __x64_sys_sendmsg+0xd4/0x160
[  149.772875][T10067]  x64_sys_call+0x2999/0x2fb0
[  149.772959][T10067]  do_syscall_64+0xd2/0x200
[  149.772979][T10067]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  149.773005][T10067]  ? clear_bhb_loop+0x40/0x90
[  149.773027][T10067]  ? clear_bhb_loop+0x40/0x90
[  149.773080][T10067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.773138][T10067] RIP: 0033:0x7f1d3942e9a9
[  149.773154][T10067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.773176][T10067] RSP: 002b:00007f1d37a8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  149.773205][T10067] RAX: ffffffffffffffda RBX: 00007f1d39655fa0 RCX: 00007f1d3942e9a9
[  149.773217][T10067] RDX: 000000002000c000 RSI: 0000200000000480 RDI: 0000000000000004
[  149.773228][T10067] RBP: 00007f1d37a8f090 R08: 0000000000000000 R09: 0000000000000000
[  149.773240][T10067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.773318][T10067] R13: 0000000000000000 R14: 00007f1d39655fa0 R15: 00007ffcccdb4a18
[  149.773338][T10067]  </TASK>
[  150.019468][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x4
[  150.027344][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x2
[  150.037190][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x4
[  150.044935][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x2
[  150.047644][T10072] loop0: detected capacity change from 0 to 2048
[  150.060428][T10072] EXT4-fs: Ignoring removed i_version option
[  150.066488][T10072] EXT4-fs: Ignoring removed bh option
[  150.068134][T10075] loop3: detected capacity change from 0 to 2048
[  150.072057][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.081437][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.085914][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.093652][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.093678][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.093705][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.093786][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.093816][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.093895][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.101780][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.109347][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.117019][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.124698][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.132267][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.139893][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.139918][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.147565][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.155221][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.162923][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.170516][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.178147][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.185832][ T1041] hid-generic 0000:3000000:0000.0072: unknown main item tag 0x0
[  150.193506][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.205583][T10075] EXT4-fs: Ignoring removed i_version option
[  150.208839][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.216541][T10075] EXT4-fs: Ignoring removed bh option
[  150.224198][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.240635][ T1041] hid-generic 0000:3000000:0000.0072: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  150.247142][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.299455][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.307138][ T3475] hid-generic 0000:3000000:0000.0071: unknown main item tag 0x0
[  150.321957][ T3475] hid-generic 0000:3000000:0000.0071: hidraw1: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  150.366113][T10068] loop1: detected capacity change from 0 to 2048
[  150.393229][T10068] loop9: detected capacity change from 0 to 7
[  150.407147][T10068] Buffer I/O error on dev loop9, logical block 0, async page read
[  150.416850][T10068] Buffer I/O error on dev loop9, logical block 0, async page read
[  150.424842][T10068]  loop9: unable to read partition table
[  150.434327][T10068] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  150.434327][T10068] 
) failed (rc=-5)
[  150.524191][T10092] FAULT_INJECTION: forcing a failure.
[  150.524191][T10092] name failslab, interval 1, probability 0, space 0, times 0
[  150.537132][T10092] CPU: 1 UID: 0 PID: 10092 Comm: syz.0.2214 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  150.537159][T10092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  150.537170][T10092] Call Trace:
[  150.537175][T10092]  <TASK>
[  150.537191][T10092]  __dump_stack+0x1d/0x30
[  150.537215][T10092]  dump_stack_lvl+0xe8/0x140
[  150.537237][T10092]  dump_stack+0x15/0x1b
[  150.537251][T10092]  should_fail_ex+0x265/0x280
[  150.537324][T10092]  should_failslab+0x8c/0xb0
[  150.537402][T10092]  kmem_cache_alloc_noprof+0x50/0x310
[  150.537432][T10092]  ? alloc_empty_file+0x76/0x200
[  150.537462][T10092]  alloc_empty_file+0x76/0x200
[  150.537534][T10092]  alloc_file_pseudo+0xc6/0x160
[  150.537612][T10092]  __shmem_file_setup+0x1de/0x210
[  150.537694][T10092]  shmem_file_setup+0x3b/0x50
[  150.537727][T10092]  __se_sys_memfd_create+0x2c3/0x590
[  150.537777][T10092]  __x64_sys_memfd_create+0x31/0x40
[  150.537820][T10092]  x64_sys_call+0x122f/0x2fb0
[  150.537846][T10092]  do_syscall_64+0xd2/0x200
[  150.537868][T10092]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  150.537939][T10092]  ? clear_bhb_loop+0x40/0x90
[  150.537963][T10092]  ? clear_bhb_loop+0x40/0x90
[  150.537989][T10092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.538013][T10092] RIP: 0033:0x7f1d3942e9a9
[  150.538030][T10092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.538047][T10092] RSP: 002b:00007f1d37a8ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  150.538139][T10092] RAX: ffffffffffffffda RBX: 00000000000004d8 RCX: 00007f1d3942e9a9
[  150.538223][T10092] RDX: 00007f1d37a8eef0 RSI: 0000000000000000 RDI: 00007f1d394b16fc
[  150.538236][T10092] RBP: 0000200000000900 R08: 00007f1d37a8ebb7 R09: 00007f1d37a8ee40
[  150.538247][T10092] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000280
[  150.538258][T10092] R13: 00007f1d37a8eef0 R14: 00007f1d37a8eeb0 R15: 0000200000000840
[  150.538278][T10092]  </TASK>
[  150.745802][   T29] kauditd_printk_skb: 366 callbacks suppressed
[  150.745820][   T29] audit: type=1326 audit(1753740843.278:8369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10081 comm="syz.3.2210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1dda41e9a9 code=0x7ffc0000
[  150.775809][   T29] audit: type=1326 audit(1753740843.278:8370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10081 comm="syz.3.2210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1dda41e9a9 code=0x7ffc0000
[  150.803573][   T29] audit: type=1400 audit(1753740843.287:8371): avc:  denied  { read write } for  pid=3305 comm="syz-executor" name="loop0" dev="devtmpfs" ino=829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  150.826879][   T29] audit: type=1400 audit(1753740843.287:8372): avc:  denied  { open } for  pid=3305 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  150.850387][   T29] audit: type=1400 audit(1753740843.287:8373): avc:  denied  { ioctl } for  pid=3305 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=829 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  150.878340][   T29] audit: type=1400 audit(1753740843.409:8374): avc:  denied  { create } for  pid=10093 comm="syz.0.2215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  150.898515][   T29] audit: type=1400 audit(1753740843.409:8375): avc:  denied  { write } for  pid=10093 comm="syz.0.2215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  150.943927][   T29] audit: type=1400 audit(1753740843.456:8376): avc:  denied  { read write } for  pid=4238 comm="syz-executor" name="loop5" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  150.968353][   T29] audit: type=1400 audit(1753740843.456:8377): avc:  denied  { open } for  pid=4238 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  150.992756][   T29] audit: type=1400 audit(1753740843.456:8378): avc:  denied  { ioctl } for  pid=4238 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=105 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  151.026909][T10100] netlink: 'syz.5.2217': attribute type 4 has an invalid length.
[  151.083136][T10111] loop2: detected capacity change from 0 to 512
[  151.090378][T10111] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  151.093828][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x4
[  151.106049][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x2
[  151.127670][T10108] loop5: detected capacity change from 0 to 2048
[  151.134690][T10108] EXT4-fs: Ignoring removed i_version option
[  151.140778][T10108] EXT4-fs: Ignoring removed bh option
[  151.152529][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.160325][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.168051][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.175754][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.183561][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.191272][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.198959][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.206655][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.214343][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.222118][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.229863][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.237701][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.245399][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.253169][ T3475] hid-generic 0000:3000000:0000.0073: unknown main item tag 0x0
[  151.359267][ T3475] hid-generic 0000:3000000:0000.0073: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  151.474098][T10124] Driver unsupported XDP return value 0 on prog  (id 1445) dev N/A, expect packet loss!
[  151.642712][T10129] loop5: detected capacity change from 0 to 256
[  151.700743][T10129] vfat: Unknown parameter '18446744073709551615���������01777777777777777777777'
[  151.876676][T10114] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2224'.
[  151.921359][T10114] loop1: detected capacity change from 0 to 2048
[  151.928308][T10114] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  151.957254][T10114] netlink: 'syz.1.2224': attribute type 1 has an invalid length.
[  151.965257][T10114] netlink: 'syz.1.2224': attribute type 2 has an invalid length.
[  151.994342][T10136] loop5: detected capacity change from 0 to 764
[  152.008284][T10136] Symlink component flag not implemented
[  152.014177][T10136] Symlink component flag not implemented
[  152.021932][T10136] Symlink component flag not implemented (128)
[  152.028170][T10136] Symlink component flag not implemented (122)
[  152.129552][T10139] netlink: 'syz.2.2232': attribute type 4 has an invalid length.
[  152.197862][T10150] FAULT_INJECTION: forcing a failure.
[  152.197862][T10150] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  152.211262][T10150] CPU: 0 UID: 0 PID: 10150 Comm: syz.1.2238 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  152.211369][T10150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  152.211385][T10150] Call Trace:
[  152.211393][T10150]  <TASK>
[  152.211403][T10150]  __dump_stack+0x1d/0x30
[  152.211429][T10150]  dump_stack_lvl+0xe8/0x140
[  152.211530][T10150]  dump_stack+0x15/0x1b
[  152.211551][T10150]  should_fail_ex+0x265/0x280
[  152.211593][T10150]  should_fail_alloc_page+0xf2/0x100
[  152.211614][T10150]  __alloc_frozen_pages_noprof+0xff/0x360
[  152.211697][T10150]  alloc_pages_mpol+0xb3/0x250
[  152.211724][T10150]  vma_alloc_folio_noprof+0x1aa/0x300
[  152.211754][T10150]  handle_mm_fault+0xec2/0x2be0
[  152.211780][T10150]  ? mas_walk+0xf2/0x120
[  152.211893][T10150]  do_user_addr_fault+0x636/0x1090
[  152.211927][T10150]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  152.211955][T10150]  exc_page_fault+0x62/0xa0
[  152.212065][T10150]  asm_exc_page_fault+0x26/0x30
[  152.212086][T10150] RIP: 0033:0x7f798ab40ca3
[  152.212100][T10150] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  152.212119][T10150] RSP: 002b:00007f79892de4a0 EFLAGS: 00010206
[  152.212137][T10150] RAX: 0000000000011000 RBX: 00007f79892de540 RCX: 00007f7980ebf000
[  152.212151][T10150] RDX: 00007f79892de6e0 RSI: 0000000000000001 RDI: 00007f79892de5e0
[  152.212168][T10150] RBP: 0000000000000093 R08: 0000000000000008 R09: 0000000000000094
[  152.212255][T10150] R10: 00000000000000ba R11: 00007f79892de540 R12: 0000000000000001
[  152.212267][T10150] R13: 00007f798ad1c880 R14: 0000000000000005 R15: 00007f79892de5e0
[  152.212284][T10150]  </TASK>
[  152.212370][T10150] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  152.399012][T10150] loop1: detected capacity change from 0 to 1156
[  152.405855][T10159] netlink: 14593 bytes leftover after parsing attributes in process `syz.5.2242'.
[  152.468443][T10171] loop0: detected capacity change from 0 to 512
[  152.477608][T10167] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2245'.
[  152.485527][T10173] netlink: 'syz.2.2248': attribute type 4 has an invalid length.
[  152.496306][T10171] loop0: detected capacity change from 0 to 1024
[  152.540326][T10177] IPv4: Oversized IP packet from 127.202.26.0
[  152.550114][T10167] loop1: detected capacity change from 0 to 512
[  152.558099][T10167] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  152.568823][T10182] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2252'.
[  152.578668][T10167] EXT4-fs error (device loop1): ext4_quota_enable:7120: comm syz.1.2245: Bad quota inum: 29696, type: 1
[  152.598729][T10167] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=29696). Please run e2fsck to fix.
[  152.614202][T10167] EXT4-fs (loop1): mount failed
[  152.628418][T10190] loop3: detected capacity change from 0 to 512
[  152.637183][T10190] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  152.652033][T10189] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2254'.
[  152.661179][T10189] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2254'.
[  152.696299][T10198] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.2258'.
[  152.778863][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x4
[  152.786635][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x2
[  152.807518][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.815399][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.823080][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.823369][T10208] loop0: detected capacity change from 0 to 2048
[  152.830807][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.830837][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.837769][T10208] EXT4-fs: Ignoring removed i_version option
[  152.844808][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.852535][T10208] EXT4-fs: Ignoring removed bh option
[  152.858425][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.858452][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.870958][T10212] loop1: detected capacity change from 0 to 512
[  152.871555][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.891532][T10212] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  152.893191][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.916563][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.924405][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.932101][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.939804][ T3475] hid-generic 0000:3000000:0000.0074: unknown main item tag 0x0
[  152.949790][ T3475] hid-generic 0000:3000000:0000.0074: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  152.962169][T10221] loop1: detected capacity change from 0 to 512
[  152.969612][T10221] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  152.982216][T10221] EXT4-fs (loop1): 1 truncate cleaned up
[  153.041206][T10232] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.2272'.
[  153.156170][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x4
[  153.163906][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x2
[  153.183284][T10245] loop2: detected capacity change from 0 to 2048
[  153.190089][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.197824][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.205702][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.213388][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.220021][T10245] EXT4-fs: Ignoring removed i_version option
[  153.221068][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.221092][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.227134][T10245] EXT4-fs: Ignoring removed bh option
[  153.242697][T10247] loop0: detected capacity change from 0 to 2048
[  153.247890][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.255140][T10247] EXT4-fs: Ignoring removed i_version option
[  153.261939][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.267976][T10247] EXT4-fs: Ignoring removed bh option
[  153.281158][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.288967][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.296658][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.304350][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.312053][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.319793][ T3475] hid-generic 0000:3000000:0000.0075: unknown main item tag 0x0
[  153.326345][T10240] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  153.334479][ T3475] hid-generic 0000:3000000:0000.0075: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  153.336403][T10240] syzkaller0: entered promiscuous mode
[  153.349947][T10240] syzkaller0: entered allmulticast mode
[  153.369000][T10255] loop5: detected capacity change from 0 to 512
[  153.379666][T10240] tipc: Resetting bearer <eth:syzkaller0>
[  153.381082][T10255] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  153.420452][T10255] EXT4-fs (loop5): 1 truncate cleaned up
[  153.428041][T10239] tipc: Resetting bearer <eth:syzkaller0>
[  153.446545][T10239] tipc: Disabling bearer <eth:syzkaller0>
[  153.576543][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x4
[  153.584330][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x2
[  153.613945][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.621802][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.629592][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.637268][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.644933][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.645564][T10281] loop5: detected capacity change from 0 to 2048
[  153.652644][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.652669][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.652695][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.682048][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.689780][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.697512][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.700409][T10290] loop2: detected capacity change from 0 to 512
[  153.705210][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.719152][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.726842][ T3475] hid-generic 0000:3000000:0000.0076: unknown main item tag 0x0
[  153.727754][T10281] EXT4-fs: Ignoring removed i_version option
[  153.740715][T10281] EXT4-fs: Ignoring removed bh option
[  153.748704][T10289] loop0: detected capacity change from 0 to 512
[  153.751907][T10290] EXT4-fs: Ignoring removed mblk_io_submit option
[  153.761423][T10289] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  153.773965][T10290] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  153.785461][T10289] EXT4-fs (loop0): 1 truncate cleaned up
[  153.786271][ T3475] hid-generic 0000:3000000:0000.0076: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  153.819931][T10290] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e016c018, mo2=0002]
[  153.828151][T10296] loop1: detected capacity change from 0 to 2048
[  153.828220][T10290] System zones: 1-12
[  153.839251][T10296] EXT4-fs: Ignoring removed i_version option
[  153.845340][T10296] EXT4-fs: Ignoring removed bh option
[  153.858492][T10290] EXT4-fs (loop2): 1 truncate cleaned up
[  153.922239][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  153.929809][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  153.931673][T10314] FAULT_INJECTION: forcing a failure.
[  153.931673][T10314] name failslab, interval 1, probability 0, space 0, times 0
[  153.937398][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  153.949894][T10314] CPU: 1 UID: 0 PID: 10314 Comm: syz.3.2304 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  153.949920][T10314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.949941][T10314] Call Trace:
[  153.949948][T10314]  <TASK>
[  153.949957][T10314]  __dump_stack+0x1d/0x30
[  153.949999][T10314]  dump_stack_lvl+0xe8/0x140
[  153.950094][T10314]  dump_stack+0x15/0x1b
[  153.950116][T10314]  should_fail_ex+0x265/0x280
[  153.950156][T10314]  should_failslab+0x8c/0xb0
[  153.950184][T10314]  kmem_cache_alloc_noprof+0x50/0x310
[  153.950251][T10314]  ? security_inode_alloc+0x37/0x100
[  153.950341][T10314]  security_inode_alloc+0x37/0x100
[  153.950403][T10314]  inode_init_always_gfp+0x4b7/0x500
[  153.950464][T10314]  ? __pfx_sock_alloc_inode+0x10/0x10
[  153.950500][T10314]  alloc_inode+0x58/0x170
[  153.950616][T10314]  __sock_create+0x122/0x5b0
[  153.950652][T10314]  ? __se_sys_setns+0xc4e/0xf20
[  153.950696][T10314]  __sys_socket+0xb0/0x180
[  153.950761][T10314]  __x64_sys_socket+0x3f/0x50
[  153.950852][T10314]  x64_sys_call+0x285a/0x2fb0
[  153.950883][T10314]  do_syscall_64+0xd2/0x200
[  153.950946][T10314]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  153.950982][T10314]  ? clear_bhb_loop+0x40/0x90
[  153.951011][T10314]  ? clear_bhb_loop+0x40/0x90
[  153.951041][T10314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.951090][T10314] RIP: 0033:0x7f1dda41e9a9
[  153.951111][T10314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.951137][T10314] RSP: 002b:00007f1dd8a7efe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  153.951163][T10314] RAX: ffffffffffffffda RBX: 00007f1dda645fa0 RCX: 00007f1dda41e9a9
[  153.951181][T10314] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  153.951199][T10314] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  153.951266][T10314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  153.951283][T10314] R13: 0000000000000001 R14: 00007f1dda645fa0 R15: 00007fff7db8b6e8
[  153.951311][T10314]  </TASK>
[  153.951322][T10314] socket: no more sockets
[  153.957510][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.011980][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x4
[  154.012623][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.017879][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x2
[  154.023031][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.030396][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.033698][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.038005][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.038046][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.038066][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.038089][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.038113][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.038136][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.038174][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.038195][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.042819][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.047643][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.047668][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.047688][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.052148][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.056862][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.061553][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.066048][ T3475] hid-generic 0000:3000000:0000.0078: unknown main item tag 0x0
[  154.072133][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.098895][T10319] FAULT_INJECTION: forcing a failure.
[  154.098895][T10319] name failslab, interval 1, probability 0, space 0, times 0
[  154.111843][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.120315][T10319] CPU: 1 UID: 0 PID: 10319 Comm: syz.5.2302 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  154.120355][T10319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  154.120373][T10319] Call Trace:
[  154.120381][T10319]  <TASK>
[  154.120392][T10319]  __dump_stack+0x1d/0x30
[  154.120431][T10319]  dump_stack_lvl+0xe8/0x140
[  154.120458][T10319]  dump_stack+0x15/0x1b
[  154.120481][T10319]  should_fail_ex+0x265/0x280
[  154.120525][T10319]  should_failslab+0x8c/0xb0
[  154.120557][T10319]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  154.120679][T10319]  ? sidtab_sid2str_get+0xa0/0x130
[  154.120714][T10319]  kmemdup_noprof+0x2b/0x70
[  154.120754][T10319]  sidtab_sid2str_get+0xa0/0x130
[  154.120787][T10319]  security_sid_to_context_core+0x1eb/0x2e0
[  154.120893][T10319]  security_sid_to_context+0x27/0x40
[  154.120925][T10319]  selinux_lsmprop_to_secctx+0x67/0xf0
[  154.120957][T10319]  security_lsmprop_to_secctx+0x43/0x80
[  154.121000][T10319]  audit_log_task_context+0x77/0x190
[  154.121120][T10319]  audit_log_task+0xf4/0x250
[  154.121257][T10319]  audit_seccomp+0x61/0x100
[  154.121292][T10319]  ? __seccomp_filter+0x68c/0x10d0
[  154.121322][T10319]  __seccomp_filter+0x69d/0x10d0
[  154.121394][T10319]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  154.121440][T10319]  ? vfs_write+0x75e/0x8e0
[  154.121527][T10319]  ? __rcu_read_unlock+0x4f/0x70
[  154.121651][T10319]  ? __fget_files+0x184/0x1c0
[  154.121681][T10319]  __secure_computing+0x82/0x150
[  154.121713][T10319]  syscall_trace_enter+0xcf/0x1e0
[  154.121748][T10319]  do_syscall_64+0xac/0x200
[  154.121817][T10319]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  154.121854][T10319]  ? clear_bhb_loop+0x40/0x90
[  154.121883][T10319]  ? clear_bhb_loop+0x40/0x90
[  154.121978][T10319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.122062][T10319] RIP: 0033:0x7fca4919e9a9
[  154.122090][T10319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.122159][T10319] RSP: 002b:00007fca477de038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  154.122185][T10319] RAX: ffffffffffffffda RBX: 00007fca493c6080 RCX: 00007fca4919e9a9
[  154.122203][T10319] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000b
[  154.122219][T10319] RBP: 00007fca477de090 R08: 0000000000000000 R09: 0000000000000000
[  154.122236][T10319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.122253][T10319] R13: 0000000000000000 R14: 00007fca493c6080 R15: 00007ffe0bfbdd78
[  154.122298][T10319]  </TASK>
[  154.136472][T10320] loop1: detected capacity change from 0 to 2048
[  154.144333][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.158202][T10320] EXT4-fs: Ignoring removed i_version option
[  154.160325][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.163336][T10320] EXT4-fs: Ignoring removed bh option
[  154.167681][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.167704][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.181712][ T3475] hid-generic 0000:3000000:0000.0078: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  154.182756][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.683678][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.691162][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.698675][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.706133][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.713583][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.720994][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.728474][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.735969][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.743376][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.750813][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.758359][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.765861][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.773338][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.780825][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.788416][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.795836][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.803297][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.810905][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.818478][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.825885][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.833530][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.840938][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.848355][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.855745][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.863123][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.870582][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.878078][ T1041] hid-generic 0000:0000:0008.0077: unknown main item tag 0x0
[  154.887403][ T1041] hid-generic 0000:0000:0008.0077: hidraw1: <UNKNOWN> HID vc.87 Device [syz0] on syz1
[  154.939457][T10329] loop1: detected capacity change from 0 to 1024
[  154.948744][T10329] EXT4-fs: Ignoring removed orlov option
[  155.052403][T10352] validate_nla: 5 callbacks suppressed
[  155.052421][T10352] netlink: 'syz.5.2317': attribute type 4 has an invalid length.
[  155.063383][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x4
[  155.073565][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x2
[  155.096173][T10354] loop2: detected capacity change from 0 to 2048
[  155.103512][T10354] EXT4-fs: Ignoring removed i_version option
[  155.106910][T10357] netlink: 'syz.5.2319': attribute type 2 has an invalid length.
[  155.109581][T10354] EXT4-fs: Ignoring removed bh option
[  155.117274][T10357] netlink: 'syz.5.2319': attribute type 1 has an invalid length.
[  155.117290][T10357] __nla_validate_parse: 8 callbacks suppressed
[  155.117300][T10357] netlink: 199820 bytes leftover after parsing attributes in process `syz.5.2319'.
[  155.119106][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.153864][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.161550][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.169265][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.177085][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.184758][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.192542][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.198041][T10361] loop5: detected capacity change from 0 to 2048
[  155.200237][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.209809][T10361] EXT4-fs: Ignoring removed i_version option
[  155.214264][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.220207][T10361] EXT4-fs: Ignoring removed bh option
[  155.227786][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.240994][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.248651][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.256426][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.264089][ T3475] hid-generic 0000:3000000:0000.0079: unknown main item tag 0x0
[  155.275064][ T3475] hid-generic 0000:3000000:0000.0079: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  155.307090][T10368] loop5: detected capacity change from 0 to 512
[  155.314004][T10368] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  155.327494][T10370] Invalid ELF header magic: != ELF
[  155.328862][T10368] EXT4-fs (loop5): 1 truncate cleaned up
[  155.344788][T10368] FAULT_INJECTION: forcing a failure.
[  155.344788][T10368] name failslab, interval 1, probability 0, space 0, times 0
[  155.357549][T10368] CPU: 1 UID: 0 PID: 10368 Comm: syz.5.2321 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  155.357579][T10368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.357593][T10368] Call Trace:
[  155.357601][T10368]  <TASK>
[  155.357609][T10368]  __dump_stack+0x1d/0x30
[  155.357670][T10368]  dump_stack_lvl+0xe8/0x140
[  155.357687][T10368]  dump_stack+0x15/0x1b
[  155.357701][T10368]  should_fail_ex+0x265/0x280
[  155.357801][T10368]  should_failslab+0x8c/0xb0
[  155.357845][T10368]  kmem_cache_alloc_noprof+0x50/0x310
[  155.357876][T10368]  ? getname_flags+0x80/0x3b0
[  155.357967][T10368]  getname_flags+0x80/0x3b0
[  155.357992][T10368]  __x64_sys_unlink+0x21/0x40
[  155.358105][T10368]  x64_sys_call+0x22a6/0x2fb0
[  155.358157][T10368]  do_syscall_64+0xd2/0x200
[  155.358177][T10368]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.358230][T10368]  ? clear_bhb_loop+0x40/0x90
[  155.358249][T10368]  ? clear_bhb_loop+0x40/0x90
[  155.358268][T10368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.358291][T10368] RIP: 0033:0x7fca4919e9a9
[  155.358305][T10368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.358331][T10368] RSP: 002b:00007fca477ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[  155.358351][T10368] RAX: ffffffffffffffda RBX: 00007fca493c5fa0 RCX: 00007fca4919e9a9
[  155.358366][T10368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180
[  155.358380][T10368] RBP: 00007fca477ff090 R08: 0000000000000000 R09: 0000000000000000
[  155.358393][T10368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.358445][T10368] R13: 0000000000000000 R14: 00007fca493c5fa0 R15: 00007ffe0bfbdd78
[  155.358467][T10368]  </TASK>
[  155.365767][T10373] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2323'.
[  155.492023][T10376] FAULT_INJECTION: forcing a failure.
[  155.492023][T10376] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.564192][T10376] CPU: 1 UID: 0 PID: 10376 Comm: syz.0.2325 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  155.564295][T10376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.564312][T10376] Call Trace:
[  155.564320][T10376]  <TASK>
[  155.564330][T10376]  __dump_stack+0x1d/0x30
[  155.564352][T10376]  dump_stack_lvl+0xe8/0x140
[  155.564443][T10376]  dump_stack+0x15/0x1b
[  155.564468][T10376]  should_fail_ex+0x265/0x280
[  155.564573][T10376]  should_fail+0xb/0x20
[  155.564621][T10376]  should_fail_usercopy+0x1a/0x20
[  155.564706][T10376]  strncpy_from_user+0x25/0x230
[  155.564732][T10376]  __se_sys_memfd_create+0x1ff/0x590
[  155.564763][T10376]  __x64_sys_memfd_create+0x31/0x40
[  155.564819][T10376]  x64_sys_call+0x122f/0x2fb0
[  155.564873][T10376]  do_syscall_64+0xd2/0x200
[  155.564897][T10376]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.564977][T10376]  ? clear_bhb_loop+0x40/0x90
[  155.564995][T10376]  ? clear_bhb_loop+0x40/0x90
[  155.565014][T10376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.565032][T10376] RIP: 0033:0x7f1d3942e9a9
[  155.565046][T10376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.565068][T10376] RSP: 002b:00007f1d37a8ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  155.565091][T10376] RAX: ffffffffffffffda RBX: 00000000000004f2 RCX: 00007f1d3942e9a9
[  155.565108][T10376] RDX: 00007f1d37a8eef0 RSI: 0000000000000000 RDI: 00007f1d394b16fc
[  155.565125][T10376] RBP: 0000200000000600 R08: 00007f1d37a8ebb7 R09: 00007f1d37a8ee40
[  155.565136][T10376] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[  155.565146][T10376] R13: 00007f1d37a8eef0 R14: 00007f1d37a8eeb0 R15: 00002000000002c0
[  155.565164][T10376]  </TASK>
[  155.752102][T10381] netlink: 'syz.2.2326': attribute type 2 has an invalid length.
[  155.759905][T10381] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.2326'.
[  155.773923][T10384] FAULT_INJECTION: forcing a failure.
[  155.773923][T10384] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.787120][T10384] CPU: 0 UID: 0 PID: 10384 Comm: syz.5.2328 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  155.787152][T10384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.787168][T10384] Call Trace:
[  155.787182][T10384]  <TASK>
[  155.787191][T10384]  __dump_stack+0x1d/0x30
[  155.787281][T10384]  dump_stack_lvl+0xe8/0x140
[  155.787328][T10384]  dump_stack+0x15/0x1b
[  155.787350][T10384]  should_fail_ex+0x265/0x280
[  155.787388][T10384]  should_fail+0xb/0x20
[  155.787477][T10384]  should_fail_usercopy+0x1a/0x20
[  155.787518][T10384]  _copy_from_user+0x1c/0xb0
[  155.787544][T10384]  __copy_msghdr+0x244/0x300
[  155.787615][T10384]  ___sys_sendmsg+0x109/0x1d0
[  155.787655][T10384]  __x64_sys_sendmsg+0xd4/0x160
[  155.787685][T10384]  x64_sys_call+0x2999/0x2fb0
[  155.787712][T10384]  do_syscall_64+0xd2/0x200
[  155.787868][T10384]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.787900][T10384]  ? clear_bhb_loop+0x40/0x90
[  155.787924][T10384]  ? clear_bhb_loop+0x40/0x90
[  155.787950][T10384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.787973][T10384] RIP: 0033:0x7fca4919e9a9
[  155.788058][T10384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.788078][T10384] RSP: 002b:00007fca477ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.788127][T10384] RAX: ffffffffffffffda RBX: 00007fca493c5fa0 RCX: 00007fca4919e9a9
[  155.788190][T10384] RDX: 0000000000000020 RSI: 0000200000000400 RDI: 0000000000000006
[  155.788206][T10384] RBP: 00007fca477ff090 R08: 0000000000000000 R09: 0000000000000000
[  155.788222][T10384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.788238][T10384] R13: 0000000000000000 R14: 00007fca493c5fa0 R15: 00007ffe0bfbdd78
[  155.788263][T10384]  </TASK>
[  155.991718][T10384] program syz.5.2328 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  156.002574][T10384] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  156.030078][T10391] netlink: 'syz.5.2330': attribute type 2 has an invalid length.
[  156.037909][T10391] netlink: 'syz.5.2330': attribute type 1 has an invalid length.
[  156.045692][T10391] netlink: 199820 bytes leftover after parsing attributes in process `syz.5.2330'.
[  156.096953][T10399] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2333'.
[  156.106131][T10399] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2333'.
[  156.106401][T10394] loop2: detected capacity change from 0 to 2048
[  156.115314][   T29] kauditd_printk_skb: 648 callbacks suppressed
[  156.115331][   T29] audit: type=1326 audit(1753740848.292:9024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff6cf6ed45f code=0x7ffc0000
[  156.122056][T10394] EXT4-fs: Ignoring removed i_version option
[  156.127624][   T29] audit: type=1326 audit(1753740848.292:9025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff6cf6eea37 code=0x7ffc0000
[  156.127720][   T29] audit: type=1326 audit(1753740848.302:9026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff6cf6ed310 code=0x7ffc0000
[  156.151008][T10394] EXT4-fs: Ignoring removed bh option
[  156.156991][   T29] audit: type=1326 audit(1753740848.302:9027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff6cf6ee5ab code=0x7ffc0000
[  156.234407][   T29] audit: type=1326 audit(1753740848.311:9028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff6cf6ed60a code=0x7ffc0000
[  156.257789][   T29] audit: type=1326 audit(1753740848.311:9029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff6cf6ed60a code=0x7ffc0000
[  156.260092][T10400] loop0: detected capacity change from 0 to 512
[  156.281220][   T29] audit: type=1326 audit(1753740848.311:9030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7ff6cf6ed217 code=0x7ffc0000
[  156.281260][   T29] audit: type=1326 audit(1753740848.311:9031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7ff6cf6f014a code=0x7ffc0000
[  156.313962][T10401] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2331'.
[  156.344043][   T29] audit: type=1400 audit(1753740848.517:9032): avc:  denied  { setopt } for  pid=10402 comm="syz.5.2334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  156.366482][T10400] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  156.366719][T10403] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.375634][T10400] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  156.376985][T10400] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  156.385944][    C1] vcan0: j1939_tp_rxtimer: 0xffff8881197a3400: rx timeout, send abort
[  156.394206][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8881197a3400: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  156.411449][   T29] audit: type=1326 audit(1753740848.564:9033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10393 comm="syz.2.2332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff6cf6ed310 code=0x7ffc0000
[  156.426262][T10400] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  156.457930][T10400] System zones: 0-2, 18-18, 34-35
[  156.488191][T10379] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2327: bg 0: block 353: padding at end of block bitmap is not set
[  156.518400][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x4
[  156.526133][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x2
[  156.546903][T10403] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.559916][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.567623][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.575509][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.583214][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.590911][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.598686][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.606361][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.614109][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.621883][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.629578][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.637288][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.645021][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.652793][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.657427][T10420] IPv4: Oversized IP packet from 127.202.26.0
[  156.660452][ T3475] hid-generic 0000:3000000:0000.007A: unknown main item tag 0x0
[  156.674928][ T3475] hid-generic 0000:3000000:0000.007A: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  156.703681][T10422] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2341'.
[  156.712938][T10422] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2341'.
[  156.727025][T10416] hub 6-0:1.0: USB hub found
[  156.735443][T10403] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.746541][T10416] hub 6-0:1.0: 8 ports detected
[  156.780242][T10428] 9pnet_fd: Insufficient options for proto=fd
[  156.790765][T10403] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.857780][T10434] loop1: detected capacity change from 0 to 2048
[  156.867215][T10436] loop2: detected capacity change from 0 to 512
[  156.886133][T10436] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  156.888394][T10434] loop9: detected capacity change from 0 to 7
[  156.906662][T10434] Buffer I/O error on dev loop9, logical block 0, async page read
[  156.909460][T10403] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.916022][T10434] Buffer I/O error on dev loop9, logical block 0, async page read
[  156.930742][T10434]  loop9: unable to read partition table
[  156.934344][T10403] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.942898][T10434] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  156.942898][T10434] 
) failed (rc=-5)
[  157.043842][T10403] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  157.048160][T10444] loop0: detected capacity change from 0 to 512
[  157.061783][T10445] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2348'.
[  157.078156][T10403] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  157.086750][T10444] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  157.115616][T10444] EXT4-fs (loop0): 1 truncate cleaned up
[  157.225759][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x4
[  157.233560][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x2
[  157.246298][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.254070][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.261848][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.269521][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.277224][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.284993][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.292715][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.300497][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.308197][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.315930][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.323700][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.331415][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.339149][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.346890][ T2960] hid-generic 0000:3000000:0000.007B: unknown main item tag 0x0
[  157.356808][ T2960] hid-generic 0000:3000000:0000.007B: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  157.396395][T10462] netlink: 'syz.0.2354': attribute type 9 has an invalid length.
[  157.546092][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x4
[  157.553954][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x2
[  157.567317][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.575145][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.582883][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.583187][T10468] loop0: detected capacity change from 0 to 2048
[  157.590569][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.603890][T10468] EXT4-fs: Ignoring removed i_version option
[  157.604578][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.610565][T10468] EXT4-fs: Ignoring removed bh option
[  157.618256][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.631613][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.639337][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.647336][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.655020][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.662739][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.670445][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.678161][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.685866][ T1041] hid-generic 0000:3000000:0000.007C: unknown main item tag 0x0
[  157.737600][T10434] +}[@ invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  157.747014][T10434] CPU: 1 UID: 0 PID: 10434 Comm: +}[@ Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  157.747039][T10434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.747054][T10434] Call Trace:
[  157.747062][T10434]  <TASK>
[  157.747133][T10434]  __dump_stack+0x1d/0x30
[  157.747151][T10434]  dump_stack_lvl+0xe8/0x140
[  157.747174][T10434]  dump_stack+0x15/0x1b
[  157.747232][T10434]  dump_header+0x81/0x220
[  157.747285][T10434]  oom_kill_process+0x334/0x3f0
[  157.747382][T10434]  out_of_memory+0x979/0xb80
[  157.747410][T10434]  try_charge_memcg+0x5e6/0x9e0
[  157.747460][T10434]  charge_memcg+0x51/0xc0
[  157.747499][T10434]  __mem_cgroup_charge+0x28/0xb0
[  157.747527][T10434]  shmem_get_folio_gfp+0x470/0xd60
[  157.747564][T10434]  shmem_fault+0xf6/0x250
[  157.747644][T10434]  __do_fault+0xbc/0x200
[  157.747716][T10434]  handle_mm_fault+0xd69/0x2be0
[  157.747738][T10434]  ? __rcu_read_lock+0x37/0x50
[  157.747772][T10434]  __get_user_pages+0x1036/0x1fb0
[  157.747810][T10434]  __gup_longterm_locked+0x638/0x1010
[  157.747912][T10434]  ? mod_node_page_state+0x1c/0xa0
[  157.747939][T10434]  ? shmem_mapping+0x16/0x30
[  157.747966][T10434]  gup_fast_fallback+0x1f9/0x1730
[  157.748038][T10434]  pin_user_pages_fast+0x5f/0x90
[  157.748065][T10434]  io_pin_pages+0xb5/0x170
[  157.748166][T10434]  io_sqe_buffer_register+0x184/0x1430
[  157.748197][T10434]  ? __memcg_slab_post_alloc_hook+0x44c/0x580
[  157.748266][T10434]  ? __kvmalloc_node_noprof+0x398/0x4e0
[  157.748295][T10434]  io_sqe_buffers_register+0x2ac/0x530
[  157.748324][T10434]  __se_sys_io_uring_register+0xa9f/0xeb0
[  157.748397][T10434]  ? restore_fpregs_from_fpstate+0x61/0x120
[  157.748468][T10434]  __x64_sys_io_uring_register+0x55/0x70
[  157.748515][T10434]  x64_sys_call+0xc91/0x2fb0
[  157.748554][T10434]  do_syscall_64+0xd2/0x200
[  157.748578][T10434]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  157.748639][T10434]  ? clear_bhb_loop+0x40/0x90
[  157.748682][T10434]  ? clear_bhb_loop+0x40/0x90
[  157.748711][T10434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.748739][T10434] RIP: 0033:0x7f798ac7e9a9
[  157.748780][T10434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.748797][T10434] RSP: 002b:00007f79892be038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  157.748818][T10434] RAX: ffffffffffffffda RBX: 00007f798aea6080 RCX: 00007f798ac7e9a9
[  157.748836][T10434] RDX: 00002000000002c0 RSI: 0000000000000000 RDI: 0000000000000004
[  157.748852][T10434] RBP: 00007f798ad00d69 R08: 0000000000000000 R09: 0000000000000000
[  157.748896][T10434] R10: 100000000000011a R11: 0000000000000246 R12: 0000000000000000
[  157.748913][T10434] R13: 0000000000000000 R14: 00007f798aea6080 R15: 00007fffd668c2c8
[  157.748938][T10434]  </TASK>
[  157.748946][T10434] memory: usage 307200kB, limit 307200kB, failcnt 2463
[  157.773598][ T1041] hid-generic 0000:3000000:0000.007C: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  157.775572][T10434] memory+swap: usage 307744kB, limit 9007199254740988kB, failcnt 0
[  158.046039][T10434] kmem: usage 304748kB, limit 9007199254740988kB, failcnt 0
[  158.053460][T10434] Memory cgroup stats for /syz1:
[  158.053919][T10434] cache 2498560
[  158.062514][T10434] rss 0
[  158.065305][T10434] shmem 2498560
[  158.068871][T10434] mapped_file 0
[  158.072390][T10434] dirty 0
[  158.075368][T10434] writeback 12288
[  158.079085][T10434] workingset_refault_anon 549
[  158.083951][T10434] workingset_refault_file 2016
[  158.088743][T10434] swap 557056
[  158.092040][T10434] swapcached 12288
[  158.095803][T10434] pgpgin 110792
[  158.099349][T10434] pgpgout 110179
[  158.102896][T10434] pgfault 119118
[  158.106471][T10434] pgmajfault 371
[  158.110107][T10434] inactive_anon 937984
[  158.114187][T10434] active_anon 1310720
[  158.118240][T10434] inactive_file 0
[  158.121971][T10434] active_file 0
[  158.125593][T10434] unevictable 0
[  158.129193][T10434] hierarchical_memory_limit 314572800
[  158.134590][T10434] hierarchical_memsw_limit 9223372036854771712
[  158.140802][T10434] total_cache 2498560
[  158.144876][T10434] total_rss 0
[  158.148289][T10434] total_shmem 2498560
[  158.152298][T10434] total_mapped_file 0
[  158.156365][T10434] total_dirty 0
[  158.159920][T10434] total_writeback 12288
[  158.164154][T10434] total_workingset_refault_anon 549
[  158.169390][T10434] total_workingset_refault_file 2016
[  158.174696][T10434] total_swap 557056
[  158.178594][T10434] total_swapcached 12288
[  158.182861][T10434] total_pgpgin 110792
[  158.186871][T10434] total_pgpgout 110179
[  158.190966][T10434] total_pgfault 119118
[  158.195045][T10434] total_pgmajfault 371
[  158.199123][T10434] total_inactive_anon 937984
[  158.203766][T10434] total_active_anon 1310720
[  158.208330][T10434] total_inactive_file 0
[  158.212528][T10434] total_active_file 0
[  158.216539][T10434] total_unevictable 0
[  158.220528][T10434] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2342,pid=10423,uid=0
[  158.235336][T10434] Memory cgroup out of memory: Killed process 10423 (syz.1.2342) total-vm:95940kB, anon-rss:944kB, file-rss:22472kB, shmem-rss:128kB, UID:0 pgtables:132kB oom_score_adj:1000
[  158.465475][T10500] netlink: 'syz.1.2368': attribute type 4 has an invalid length.
[  158.482639][T10501] loop5: detected capacity change from 0 to 512
[  158.494029][T10503] loop3: detected capacity change from 0 to 2048
[  158.518734][T10501] EXT4-fs (loop5): too many log groups per flexible block group
[  158.526642][T10501] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  158.565483][T10501] EXT4-fs (loop5): mount failed
[  158.599083][T10503] loop9: detected capacity change from 0 to 7
[  158.605403][T10503] Buffer I/O error on dev loop9, logical block 0, async page read
[  158.616778][T10503] Buffer I/O error on dev loop9, logical block 0, async page read
[  158.624766][T10503]  loop9: unable to read partition table
[  158.633094][T10503] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  158.633094][T10503] 
) failed (rc=-5)
[  158.655336][T10518] loop1: detected capacity change from 0 to 512
[  158.670000][T10518] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  158.713656][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x4
[  158.721599][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x2
[  158.737392][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.741900][T10527] loop1: detected capacity change from 0 to 512
[  158.745173][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.759237][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.766972][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.774793][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.782573][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.790448][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.798170][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.805997][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.813734][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.821606][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.829331][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.829558][T10523] loop5: detected capacity change from 0 to 2048
[  158.837090][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.837116][ T1041] hid-generic 0000:3000000:0000.007D: unknown main item tag 0x0
[  158.846244][T10523] EXT4-fs: Ignoring removed i_version option
[  158.865050][T10523] EXT4-fs: Ignoring removed bh option
[  158.874856][T10527] ext4 filesystem being mounted at /523/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  158.892562][T10527] netlink: 'syz.1.2379': attribute type 1 has an invalid length.
[  158.895896][ T1041] hid-generic 0000:3000000:0000.007D: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  158.900361][T10527] netlink: 'syz.1.2379': attribute type 2 has an invalid length.
[  158.924997][T10527] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2379: bg 0: block 289: padding at end of block bitmap is not set
[  159.018014][T10539] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  159.120864][T10548] IPv4: Oversized IP packet from 127.202.26.0
[  159.269137][T10556] IPv4: Oversized IP packet from 127.202.26.0
[  159.320917][T10558] loop1: detected capacity change from 0 to 512
[  159.334958][T10558] EXT4-fs (loop1): too many log groups per flexible block group
[  159.342735][T10558] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  159.350582][T10558] EXT4-fs (loop1): mount failed
[  159.516612][T10576] IPv4: Oversized IP packet from 127.202.26.0
[  159.591903][T10590] FAULT_INJECTION: forcing a failure.
[  159.591903][T10590] name failslab, interval 1, probability 0, space 0, times 0
[  159.604711][T10590] CPU: 1 UID: 0 PID: 10590 Comm: syz.3.2405 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  159.604757][T10590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.604769][T10590] Call Trace:
[  159.604775][T10590]  <TASK>
[  159.604782][T10590]  __dump_stack+0x1d/0x30
[  159.604802][T10590]  dump_stack_lvl+0xe8/0x140
[  159.604827][T10590]  dump_stack+0x15/0x1b
[  159.604861][T10590]  should_fail_ex+0x265/0x280
[  159.604911][T10590]  should_failslab+0x8c/0xb0
[  159.604977][T10590]  kmem_cache_alloc_node_noprof+0x57/0x320
[  159.605010][T10590]  ? __alloc_skb+0x101/0x320
[  159.605047][T10590]  __alloc_skb+0x101/0x320
[  159.605110][T10590]  netlink_alloc_large_skb+0xba/0xf0
[  159.605149][T10590]  netlink_sendmsg+0x3cf/0x6b0
[  159.605170][T10590]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.605189][T10590]  __sock_sendmsg+0x142/0x180
[  159.605251][T10590]  ____sys_sendmsg+0x31e/0x4e0
[  159.605301][T10590]  ___sys_sendmsg+0x17b/0x1d0
[  159.605340][T10590]  __x64_sys_sendmsg+0xd4/0x160
[  159.605367][T10590]  x64_sys_call+0x2999/0x2fb0
[  159.605392][T10590]  do_syscall_64+0xd2/0x200
[  159.605427][T10590]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  159.605459][T10590]  ? clear_bhb_loop+0x40/0x90
[  159.605556][T10590]  ? clear_bhb_loop+0x40/0x90
[  159.605611][T10590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.605681][T10590] RIP: 0033:0x7f1dda41e9a9
[  159.605699][T10590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.605729][T10590] RSP: 002b:00007f1dd8a7f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  159.605750][T10590] RAX: ffffffffffffffda RBX: 00007f1dda645fa0 RCX: 00007f1dda41e9a9
[  159.605765][T10590] RDX: 0000000000000000 RSI: 0000200000001540 RDI: 0000000000000003
[  159.605780][T10590] RBP: 00007f1dd8a7f090 R08: 0000000000000000 R09: 0000000000000000
[  159.605794][T10590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.605824][T10590] R13: 0000000000000000 R14: 00007f1dda645fa0 R15: 00007fff7db8b6e8
[  159.605847][T10590]  </TASK>
[  159.609653][T10586] loop5: detected capacity change from 0 to 512
[  159.616999][T10589] loop0: detected capacity change from 0 to 2048
[  159.659620][T10593] loop1: detected capacity change from 0 to 1024
[  159.722899][T10600] loop2: detected capacity change from 0 to 1024
[  159.725986][T10589] EXT4-fs: Ignoring removed i_version option
[  159.729612][T10586] EXT4-fs (loop5): too many log groups per flexible block group
[  159.733758][T10589] EXT4-fs: Ignoring removed bh option
[  159.739618][T10586] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  159.791794][T10593] EXT4-fs error (device loop1): ext4_generic_delete_entry:2668: inode #2: block 16: comm syz.1.2406: bad entry in directory: inode out of bounds - offset=12, inode=1282, rec_len=12, size=1024 fake=1
[  159.806466][T10586] EXT4-fs (loop5): mount failed
[  159.815455][T10593] EXT4-fs error (device loop1) in ext4_delete_entry:2739: Corrupt filesystem
[  159.836760][T10600] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.2408: Allocating blocks 449-513 which overlap fs metadata
[  159.937913][T10600] SELinux:  Context @ is not valid (left unmapped).
[  159.944992][T10600] EXT4-fs (loop2): pa ffff8881069958c0: logic 48, phys. 177, len 21
[  159.953050][T10600] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[  159.996927][T10618] IPv4: Oversized IP packet from 127.202.26.0
[  160.037685][T10622] loop1: detected capacity change from 0 to 2048
[  160.140401][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x4
[  160.148319][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x2
[  160.158900][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.166618][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.166918][T10633] FAULT_INJECTION: forcing a failure.
[  160.166918][T10633] name failslab, interval 1, probability 0, space 0, times 0
[  160.174412][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.186887][T10633] CPU: 1 UID: 0 PID: 10633 Comm: syz.2.2420 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  160.186915][T10633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  160.186964][T10633] Call Trace:
[  160.186973][T10633]  <TASK>
[  160.186983][T10633]  __dump_stack+0x1d/0x30
[  160.187011][T10633]  dump_stack_lvl+0xe8/0x140
[  160.187038][T10633]  dump_stack+0x15/0x1b
[  160.187060][T10633]  should_fail_ex+0x265/0x280
[  160.187146][T10633]  should_failslab+0x8c/0xb0
[  160.187275][T10633]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  160.187311][T10633]  ? vfs_parse_fs_string+0x72/0xe0
[  160.187423][T10633]  kmemdup_nul+0x36/0xc0
[  160.187524][T10633]  vfs_parse_fs_string+0x72/0xe0
[  160.187630][T10633]  nfs_fs_context_parse_monolithic+0xcd1/0x1280
[  160.187673][T10633]  parse_monolithic_mount_data+0x46/0x60
[  160.187714][T10633]  do_new_mount+0x1da/0x680
[  160.187759][T10633]  path_mount+0x4a4/0xb20
[  160.187860][T10633]  ? user_path_at+0x109/0x130
[  160.187893][T10633]  __se_sys_mount+0x28f/0x2e0
[  160.187947][T10633]  ? fput+0x8f/0xc0
[  160.187979][T10633]  __x64_sys_mount+0x67/0x80
[  160.188089][T10633]  x64_sys_call+0xd36/0x2fb0
[  160.188187][T10633]  do_syscall_64+0xd2/0x200
[  160.188211][T10633]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  160.188244][T10633]  ? clear_bhb_loop+0x40/0x90
[  160.188325][T10633]  ? clear_bhb_loop+0x40/0x90
[  160.188401][T10633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.188446][T10633] RIP: 0033:0x7ff6cf6ee9a9
[  160.188466][T10633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.188493][T10633] RSP: 002b:00007ff6cdd4f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  160.188585][T10633] RAX: ffffffffffffffda RBX: 00007ff6cf915fa0 RCX: 00007ff6cf6ee9a9
[  160.188603][T10633] RDX: 00002000000000c0 RSI: 0000200000000240 RDI: 0000000000000000
[  160.188620][T10633] RBP: 00007ff6cdd4f090 R08: 0000200000000000 R09: 0000000000000000
[  160.188637][T10633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  160.188662][T10633] R13: 0000000000000000 R14: 00007ff6cf915fa0 R15: 00007fffa3c06f88
[  160.188685][T10633]  </TASK>
[  160.231219][T10628] loop3: detected capacity change from 0 to 2048
[  160.235087][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.243033][T10622] loop9: detected capacity change from 0 to 7
[  160.244452][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.268211][T10622] Buffer I/O error on dev loop9, logical block 0, async page read
[  160.271458][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.277738][T10629] loop0: detected capacity change from 0 to 2048
[  160.281614][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.286054][T10622] Buffer I/O error on dev loop9, logical block 0, async page read
[  160.290668][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.295341][T10622]  loop9: unable to read partition table
[  160.299179][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.299204][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.299256][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.306270][T10629] EXT4-fs: Ignoring removed i_version option
[  160.308526][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.312999][T10629] EXT4-fs: Ignoring removed bh option
[  160.313553][T10628] EXT4-fs: Ignoring removed i_version option
[  160.319186][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.323875][T10628] EXT4-fs: Ignoring removed bh option
[  160.328566][ T1041] hid-generic 0000:3000000:0000.007E: unknown main item tag 0x0
[  160.362150][T10622] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  160.362150][T10622] 
) failed (rc=-5)
[  160.515552][ T1041] hid-generic 0000:3000000:0000.007E: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  160.571479][T10640] loop2: detected capacity change from 0 to 2048
[  160.590248][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x4
[  160.598005][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x2
[  160.606950][T10640] EXT4-fs: Ignoring removed i_version option
[  160.613058][T10640] EXT4-fs: Ignoring removed bh option
[  160.637883][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.645625][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.653426][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.661282][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.669010][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.676726][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.684484][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.692354][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.700018][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.707809][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.715571][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.723272][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.731091][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.738836][ T3400] hid-generic 0000:3000000:0000.007F: unknown main item tag 0x0
[  160.753968][ T3400] hid-generic 0000:3000000:0000.007F: hidraw1: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  160.819102][T10651] loop0: detected capacity change from 0 to 256
[  160.826155][T10651] vfat: Unknown parameter '18446744073709551615���������01777777777777777777777'
[  160.859910][T10653] loop2: detected capacity change from 0 to 2048
[  160.870606][T10653] EXT4-fs: Ignoring removed i_version option
[  160.876758][T10653] EXT4-fs: Ignoring removed bh option
[  160.915768][T10638] ==================================================================
[  160.923910][T10638] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64
[  160.933764][T10638] 
[  160.936098][T10638] read-write to 0xffffffff868099c0 of 8 bytes by interrupt on cpu 0:
[  160.944193][T10638]  tick_do_update_jiffies64+0x113/0x1c0
[  160.949788][T10638]  tick_nohz_handler+0x7f/0x2d0
[  160.954675][T10638]  __hrtimer_run_queues+0x20c/0x5a0
[  160.959909][T10638]  hrtimer_interrupt+0x21a/0x460
[  160.964885][T10638]  __sysvec_apic_timer_interrupt+0x5c/0x1d0
[  160.970809][T10638]  sysvec_apic_timer_interrupt+0x6f/0x80
[  160.976476][T10638]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  160.982478][T10638]  vsnprintf+0x84f/0x890
[  160.986741][T10638]  audit_log_vformat+0x210/0x4b0
[  160.991707][T10638]  audit_log_format+0x8d/0xc0
[  160.996413][T10638]  audit_log_task+0x115/0x250
[  161.001118][T10638]  audit_seccomp+0x61/0x100
[  161.005652][T10638]  __seccomp_filter+0x69d/0x10d0
[  161.010611][T10638]  __secure_computing+0x82/0x150
[  161.015575][T10638]  syscall_trace_enter+0xcf/0x1e0
[  161.020618][T10638]  do_syscall_64+0xac/0x200
[  161.025239][T10638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.031155][T10638] 
[  161.033491][T10638] read to 0xffffffff868099c0 of 8 bytes by task 10638 on cpu 1:
[  161.041130][T10638]  mem_cgroup_flush_stats_ratelimited+0x29/0x70
[  161.047395][T10638]  count_shadow_nodes+0x6a/0x230
[  161.052367][T10638]  do_shrink_slab+0x60/0x680
[  161.056981][T10638]  shrink_slab+0x448/0x760
[  161.061418][T10638]  shrink_node+0x6c3/0x2120
[  161.065938][T10638]  do_try_to_free_pages+0x3f6/0xcd0
[  161.071325][T10638]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[  161.077234][T10638]  try_charge_memcg+0x358/0x9e0
[  161.082217][T10638]  charge_memcg+0x51/0xc0
[  161.086575][T10638]  __mem_cgroup_charge+0x28/0xb0
[  161.091571][T10638]  shmem_get_folio_gfp+0x470/0xd60
[  161.096706][T10638]  shmem_fault+0xf6/0x250
[  161.101058][T10638]  __do_fault+0xbc/0x200
[  161.105322][T10638]  handle_mm_fault+0xd69/0x2be0
[  161.110204][T10638]  __get_user_pages+0x1036/0x1fb0
[  161.115245][T10638]  __gup_longterm_locked+0x638/0x1010
[  161.120636][T10638]  gup_fast_fallback+0x1f9/0x1730
[  161.125675][T10638]  pin_user_pages_fast+0x5f/0x90
[  161.130645][T10638]  io_pin_pages+0xb5/0x170
[  161.135078][T10638]  io_sqe_buffer_register+0x184/0x1430
[  161.140645][T10638]  io_sqe_buffers_register+0x2ac/0x530
[  161.146125][T10638]  __se_sys_io_uring_register+0xa9f/0xeb0
[  161.151869][T10638]  __x64_sys_io_uring_register+0x55/0x70
[  161.157531][T10638]  x64_sys_call+0xc91/0x2fb0
[  161.162139][T10638]  do_syscall_64+0xd2/0x200
[  161.166653][T10638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.172560][T10638] 
[  161.174890][T10638] value changed: 0x00000000ffffc7f5 -> 0x00000000ffffc7f6
[  161.181997][T10638] 
[  161.184322][T10638] Reported by Kernel Concurrency Sanitizer on:
[  161.190499][T10638] CPU: 1 UID: 0 PID: 10638 Comm: syz.1.2411 Not tainted 6.16.0-syzkaller #0 PREEMPT(voluntary) 
[  161.200937][T10638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  161.211021][T10638] ==================================================================
[  161.248278][T10662] validate_nla: 2 callbacks suppressed
[  161.248304][T10662] netlink: 'syz.5.2426': attribute type 4 has an invalid length.