last executing test programs:

2.565118394s ago: executing program 2 (id=869):
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xe, 0x0, &(0x7f0000000000)="259aa76d2688ca4c6588a8000000", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)

2.40810749s ago: executing program 2 (id=874):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4008050)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0xfffe, 0x8, 0x5, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$igmp6(0xa, 0x3, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x4, 0x7ffc0001}]})
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff}, 0x0)
io_setup(0x9, &(0x7f0000003080)=<r3=>0x0)
io_getevents(r3, 0x1, 0x0, 0x0, 0x0)
io_submit(r3, 0x1, &(0x7f00000001c0)=[&(0x7f0000001940)={0x0, 0x0, 0x0, 0x7, 0x2, r2, 0x0}])
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000a00)='./bus\x00', 0x200000, &(0x7f0000000540)={[{@dioread_nolock}, {@resuid}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@noblock_validity}]}, 0x3, 0x480, &(0x7f0000000a40)="$eJzs3M9vFFUcAPDvTLsFBGxF/MEPtYrGBrWlgMrBgxpNPGBiogeMp6YtBCnU0JoIIQrG4MkYE+/Go/+CJ70YoxcTr3o3JMT0AnhxzezOtLtld8u2225lP59k4L2dmX3f78683TfzdhtAzxrO/kkidkTEHxExWK3WbzBc/e/mwqXJWwuXJpMol9/+O6lsd2Ph0mSxabHf9rwykkaknyWxr0G7cxcunpmYmZk+n9fH5s9+MDZ34eJzp89OnJo+NX3u8LFjR4+Mv/jC4ecbBz7QXp5ZTDf2fjy7f88b73715vEv6vJflkeHDLda+VS53OHmumtnTTnp72IgtKUvIrLDVar0/8Hoi6WDNxivf9rV4IB1VS6Xy9ubr75cBu5iSdTXdXnoFcUHfXb9WyzLBwEvr9/wo+uuv1K9AMryvpkv1TX9kebblJZd33bScEScuPzPN9kSbd+HaPMmCABARPyQjX+ebTT+S+PBmu3uzeeGhiLivojYFRH3R8TuiHggorLtQxHxcGXPWBw7rWT5JMnt45/02poSXEE2/nspn9uqH/8tZjDUl9d2VvIvJSdPz0wfyl+TkShtyerjLdr48bXfv2y2rnb8ly1Z+8VYMI/jWv+W+n2mJuYn1pJzretXIvb2F7nW5p8szgQkEbEnIvauso3TB7/b32zdyvm30IF5pvK3EU9Xj//lWKjPv5C0np8c2xoz04fGirPidr/8dvWtJs1XXvgTB1eZfwdkx/+ehuf/Yv5DSe187Vz7bVz98/Om1zSrPf8Hkncq5eIK6KOJ+fnz4xEDyfFq0LWPH17at6gX22f5jxxo3P93xdIrsS8ispP4kYh4NCIey2N/PCKeiIgDLfL/+dUn32+4Il3j+d8BWf5TbR3/pcJALH+kcaHvzE/f1zU6tFTM87/V+vgfrZRG8kfu5P3vTuJa3dkMAAAA/z9pROyIJB1dLKfp6Gj1+/K7I9KZ2bn5Z07OfnhuqvobgaEopcWdrsGa+6Hj+WV9tX4lIqpfLSjWH8nvG3/dt61SH52cnZnqdvLQ47Y36f+Zv/q6HR2w7vxeC3qX/g+9q1H/39qFOICN5/MfeleD/r+tG3EAG6/R5/8nrXf5d71iATbWsv5v2g96SPvX/7++ty6BABuuaf+/m//yD1Dh/j/0pLltsfKP5FsWimda5e6bpZBEREefMEqbIq+1F8pJw4MbaVYobYYIFdah0N33JQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgE75LwAA//8YzNth")
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x41, &(0x7f0000000880)={[{@nouser_xattr}, {@nodiscard}, {@usrjquota}, {@grpjquota}, {@grpjquota}, {@minixdf}, {@quota}, {@noload}, {@block_validity}]}, 0x64, 0x51c, &(0x7f0000001740)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
flock(r4, 0x3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfd, 0x0, 0x7ffc9ffb}]})
rt_tgsigqueueinfo(0x0, 0x0, 0x7, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r5 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11ff0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r4, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000002c0)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f0000000340)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0], <r6=>0x0, 0xe5, &(0x7f00000003c0)=[{}], 0xfffffffffffffecb, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0xf6, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='hrtimer_expire_entry\x00', r5}, 0x18)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x4, 0x80400, 0x200000002006, 0x7fc})

2.337390377s ago: executing program 0 (id=877):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000540)='kfree\x00', r0, 0x0, 0x4}, 0x18)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r1, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}, 0xa00}], 0x2, 0x0)

2.065360284s ago: executing program 0 (id=880):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(r1, 0x40107446, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0xb1, 0x0, 0x1, 0x8eb4}]})

1.966925864s ago: executing program 0 (id=882):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180000004000400000000000000000f3791238000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x13, 0xc, &(0x7f0000000240)=ANY=[@ANYRESHEX=0x0, @ANYRES16=r2, @ANYRES8], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
r4 = syz_io_uring_setup(0x491, &(0x7f0000000f80)={0x0, 0x79af, 0x10000, 0x0, 0x400251}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_EVENTFD(r4, 0x4, &(0x7f0000000040), 0x1)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2000000037000701fefffffffedbdf25037c00000c"], 0x20}, 0x1, 0x0, 0x0, 0x4048091}, 0x4000000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x3, 0x0, 0x0, 0x0, 0x7, 0x14908a, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={&(0x7f0000000280), 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r7, &(0x7f00000002c0)={0x0, 0x30, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="7458fafa", @ANYRES16=r8, @ANYBLOB="00042ebc70000100000019000000180001801400020070696d36726567300000000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4054}, 0x4886)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r9, 0x0, 0x1034}, 0x18)
ioperm(0x0, 0xd, 0x4000000000000020)
fremovexattr(0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
io_uring_enter(r4, 0x627, 0x4c1, 0x43, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

1.963655364s ago: executing program 2 (id=883):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x5, [@struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x109, [{0x4, 0x4, 0x1}]}]}, {0x0, [0x61, 0x0, 0x30]}}, 0x0, 0x35, 0x0, 0x8}, 0x28) (fail_nth: 4)

1.934277457s ago: executing program 2 (id=884):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000280)={0x1000, 0x0, '\x00', 0x0, &(0x7f0000000240)})
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = open$dir(&(0x7f0000000000)='./file0\x00', 0x444080, 0x48)
utimensat(r3, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)={{0x0, 0xea60}, {0x77359400}}, 0x0)
ioctl$VT_RESIZEX(r1, 0x560a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0xfffffd9d)

1.834987877s ago: executing program 0 (id=886):
write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r2 = mq_open(&(0x7f0000000a00)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!T\xeeux\x00\xbf@\xf4\x1c\xbce\xca\x97\xd5pkv\x88L\xe8$\xef\xfeI\xdaW1\xfcg\xa1\xdb$,0y$\xcd{zl.\xae\x805\xa8\xd6\x85\x15\xd2\x0e~\xcc\x90\x97\xe8h\v\x1a9X\a\xca{\x11#\x95m{U\xe5-\xabRw\xcafy\xe6\aNhX4Ll[\x14\x15<z\xb2\x03d\xad\x925\xbfP\x1b\xea\vt\xe9C\xe9\xb4R\x85*\xdc\xc4@\xee\xd2\xae\x06\x1a\xe1\xd2s\x01\xb8\xf3\xf2\rr\x01mq\xd2\xaf\xe2{\xe4\x1a\xd3Z\x01C\xfbW', 0x6e93ebbbcc0884f2, 0x1c4, &(0x7f0000000040)={0x0, 0x2, 0x4, 0x3})
mq_timedreceive(r2, &(0x7f0000000280)=""/211, 0xd3, 0x800000000000, 0x0)
mq_timedsend(r2, 0x0, 0x0, 0x3ed7, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a310000000040000000050a11020000000000000000010020000c00024000000000000000010900010073797a310000000014000480080002401711"], 0xdc}}, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x1, 0x7fff}, 0x1184c, 0x9, 0x1}, 0x0, 0xffffffffffffffff, r1, 0x3)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f8b)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r5}, 0x18)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r7=>0x0})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r9}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r10}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r11}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r7, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)

1.647103156s ago: executing program 0 (id=889):
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYRESDEC], 0x50)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'ip6gretap0\x00', <r0=>0x0})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB="9d32a2755cbffe89412869168379ec066fb0bcf2f3a7898f4a5e62d5916fb529ac0f5690cd7d942c8d891fc0ddf08033f67ab91d169c3df367cad62fba1e84b30546600e370f325832e423dd3a1c4d91138959bd0c7c381dcfd341b15ccb0b569f2e8eaacdab177607e73501eb9232eafdb27619f26c1afa0420937370a5d6459d00e3882ad49690ca3b99b0b49da3c19f434c4945d40e5889f4324b38ff000000cf62ef850dce2444265448384667279903280d8360fc50967b8a290237fda6f1262b2a0db03e1e6356ca5fdae1532640136b0076cb6530f5cbe42e83ddfe56f41e048a80", @ANYRES16], 0x0, 0x56, 0x0, 0x0, 0x20000000}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRESHEX=r1, @ANYRES32=r1, @ANYRESHEX, @ANYRES16, @ANYRES8=0x0, @ANYRES32, @ANYRES16=r1], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=ANY=[@ANYBLOB="c0020000100063d10000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000000000000000000000003a000000", @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB="fc01000000000000000000000000000000000000330000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000b000000000000000000000000000000ffffffffffffffff000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001600000000020000000000000000000000bf010100636d61632861657329"], 0x2c0}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000600)={'#! ', '', [], 0xa, "e0dd67e614857939146fcbbd93701459ef0e3567e3bd6a19f5f8a06a8b5407712d7a4b4b6ce524f449627e4ac5d60b6d2e0d1b128a95beb096e326ef80e3133160db78aafcb5a24323d5a19b12ce51c82bc59abdbfce"}, 0x5a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x41aa1000, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/vmstat\x00', 0x0, 0x0)
remap_file_pages(&(0x7f000051c000/0x400000)=nil, 0x400d00, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/4\x00')

1.331126998s ago: executing program 1 (id=892):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000c40)=@bpf_ext={0x1c, 0x21, &(0x7f00000008c0)=@raw=[@ldst={0x1, 0x1, 0x2, 0x2, 0x7, 0x8, 0xffffffffffffffff}, @tail_call, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @generic={0xe7, 0xb, 0x1, 0x0, 0x7}, @ldst={0x1, 0x1, 0x1, 0xb, 0x1, 0x10, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6}, @call={0x85, 0x0, 0x0, 0x36}, @btf_id={0x18, 0x0, 0x3, 0x0, 0x2}, @map_val={0x18, 0x8, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x894b}], &(0x7f0000000a00)='syzkaller\x00', 0x9001, 0x71, &(0x7f0000000b00)=""/113, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000b80)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000bc0)={0x0, 0xc, 0x9, 0x70}, 0x10, 0x2b4fb, 0xffffffffffffffff, 0x0, &(0x7f0000000c00)=[0x1], 0x0, 0x10, 0x3}, 0x94)
pipe(&(0x7f0000000d00)={<r2=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x21c7d89aa5ddc213, 0x12, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff9ad6}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@btf_id={0x18, 0x9, 0x3, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0xd0}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x9, 0x4e, &(0x7f00000002c0)=""/78, 0x41000, 0x31, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0x8, 0x2}, 0x8, 0x10, &(0x7f00000003c0)={0x2, 0x3, 0x7, 0xfffff738}, 0x10, 0x0, r1, 0xa, &(0x7f0000000d40)=[r2], &(0x7f0000000d80)=[{0x4, 0x4, 0xe, 0xb}, {0x1, 0x2, 0xf, 0xa}, {0x2, 0x3, 0xd, 0x9}, {0x8, 0x4, 0xc}, {0x1, 0x3, 0x5}, {0x2, 0x2, 0x2, 0xb}, {0x3, 0x5, 0xd, 0x4}, {0x4, 0x2, 0x4, 0xb}, {0x1, 0x5, 0x5, 0xa}, {0x1, 0x2, 0xd, 0x6}], 0x10, 0xd02}, 0x94)
fsmount(0xffffffffffffffff, 0x1, 0xe)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000340)='system.posix_acl_access\x00', &(0x7f00000014c0)=ANY=[@ANYBLOB="0200000001000000000000000f000000000000000800000000000000080000000000000080b3bee92bd8a424a217d42c5d7e17d5821909d70fda92a829520171ea28b70cf6c1a3f3fdc20a80819ba12ed4e5dc8ef3ca4b13813bc33493edff0ffde4c97506fe893c4884a39f623eab30362109199d79fe2c437ea2492a2b331e13"], 0x24, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRESDEC=0x0, @ANYRES64, @ANYBLOB="d8ad4591aaac279c14b211b5b34726fdf292db8cb422ec33151e8ec5a5eebe07a02f18a3cd05f4c5c8f30f4f2e23c0d89b53eb0d2b9f08b54ee8bd1c2451d6147403dd249c16192c25493d175603df96a3e63fedfb58580ae128e603cd14462092ae81e0d7ea6219cb55b76abc9052cc477f9214c5e48bbc78b46aa2212e64634e77a9e8b6f68cee41a659b1388ceb7e4099f06e7d8b53de670acab4415c873b378db78651851aeaccf8ec71f9205c2629", @ANYRESDEC, @ANYRES8, @ANYRESHEX], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00'}, 0x10)
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev(r3, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)
syz_open_dev$sg(&(0x7f0000001480), 0x3ff, 0x40)

1.249527846s ago: executing program 1 (id=894):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4008050)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0xfffe, 0x8, 0x5, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$igmp6(0xa, 0x3, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x4, 0x7ffc0001}]})
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff}, 0x0)
io_setup(0x9, &(0x7f0000003080)=<r3=>0x0)
io_getevents(r3, 0x1, 0x0, &(0x7f0000000000), 0x0)
io_submit(r3, 0x1, &(0x7f00000001c0)=[&(0x7f0000001940)={0x0, 0x0, 0x0, 0x7, 0x2, r2, 0x0}])
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000a00)='./bus\x00', 0x200000, &(0x7f0000000540)={[{@dioread_nolock}, {@resuid}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@noblock_validity}]}, 0x3, 0x480, &(0x7f0000000a40)="$eJzs3M9vFFUcAPDvTLsFBGxF/MEPtYrGBrWlgMrBgxpNPGBiogeMp6YtBCnU0JoIIQrG4MkYE+/Go/+CJ70YoxcTr3o3JMT0AnhxzezOtLtld8u2225lP59k4L2dmX3f78683TfzdhtAzxrO/kkidkTEHxExWK3WbzBc/e/mwqXJWwuXJpMol9/+O6lsd2Ph0mSxabHf9rwykkaknyWxr0G7cxcunpmYmZk+n9fH5s9+MDZ34eJzp89OnJo+NX3u8LFjR4+Mv/jC4ecbBz7QXp5ZTDf2fjy7f88b73715vEv6vJflkeHDLda+VS53OHmumtnTTnp72IgtKUvIrLDVar0/8Hoi6WDNxivf9rV4IB1VS6Xy9ubr75cBu5iSdTXdXnoFcUHfXb9WyzLBwEvr9/wo+uuv1K9AMryvpkv1TX9kebblJZd33bScEScuPzPN9kSbd+HaPMmCABARPyQjX+ebTT+S+PBmu3uzeeGhiLivojYFRH3R8TuiHggorLtQxHxcGXPWBw7rWT5JMnt45/02poSXEE2/nspn9uqH/8tZjDUl9d2VvIvJSdPz0wfyl+TkShtyerjLdr48bXfv2y2rnb8ly1Z+8VYMI/jWv+W+n2mJuYn1pJzretXIvb2F7nW5p8szgQkEbEnIvauso3TB7/b32zdyvm30IF5pvK3EU9Xj//lWKjPv5C0np8c2xoz04fGirPidr/8dvWtJs1XXvgTB1eZfwdkx/+ehuf/Yv5DSe187Vz7bVz98/Om1zSrPf8Hkncq5eIK6KOJ+fnz4xEDyfFq0LWPH17at6gX22f5jxxo3P93xdIrsS8ispP4kYh4NCIey2N/PCKeiIgDLfL/+dUn32+4Il3j+d8BWf5TbR3/pcJALH+kcaHvzE/f1zU6tFTM87/V+vgfrZRG8kfu5P3vTuJa3dkMAAAA/z9pROyIJB1dLKfp6Gj1+/K7I9KZ2bn5Z07OfnhuqvobgaEopcWdrsGa+6Hj+WV9tX4lIqpfLSjWH8nvG3/dt61SH52cnZnqdvLQ47Y36f+Zv/q6HR2w7vxeC3qX/g+9q1H/39qFOICN5/MfeleD/r+tG3EAG6/R5/8nrXf5d71iATbWsv5v2g96SPvX/7++ty6BABuuaf+/m//yD1Dh/j/0pLltsfKP5FsWimda5e6bpZBEREefMEqbIq+1F8pJw4MbaVYobYYIFdah0N33JQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgE75LwAA//8YzNth")
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x41, &(0x7f0000000880)={[{@nouser_xattr}, {@nodiscard}, {@usrjquota}, {@grpjquota}, {@grpjquota}, {@minixdf}, {@quota}, {@noload}, {@block_validity}]}, 0x64, 0x51c, &(0x7f0000001740)="$eJzs3c9rJFkdAPBvdbpjMpOZZNWDLrj+2JXMoNOdbNzd4GFdQfS0oK73MSadENJJh3RndxIWN4N/gCCigie9eBH8AwRZ8OJRhAU9KyqK6IwevDgl1V2dmWS6O5mZnnQ2/flAdb2qV1Xf9zqp6npVj6oARtYnIuK1iLiXpun1iJjO5xfyIQ7aQ7bc3TtvL2dDEmn6xj+TSPJ5nW0l+fhyvtpERHz9KxHfSh6O29jb31iq1ao7+XSlubldaezt31jfXFqrrlW3FhbmX158ZfGlxbmB1PNKRLz6pb/+4Ls/+/Krv/rsW3+6+fdr386KNZXnP1iPR1RsfU50z2xXvXQkO1th5zGDnUfFVg1zk92WGHtozu2nXCYAALrLzvE/GBGfiojrMR1j+eksAAAAcHGkX5iKsSQi7W68x3wAAADgfaTQ6gObFMp5X4CpKBTK5XYf3g/HpUKt3mh+ZrW+u7XS7is7E6XC6nqtOpf3FZ6JUpJNz7fS96dfPDa9EBHPRMT3pydb0+Xlem1l2Bc/AAAAYERcPtb+/890u/0PAAAAXDAzwy4AAAAA8NRp/wMAAMDFp/0PAAAAF9pXX389G9LO+69X3tzb3ai/eWOl2tgob+4ul5frO9vltXp9rfXMvs2Ttler17c/F1u7tyrNaqNZaezt39ys7241b673ekM2AAAA8LQ98/F3/5BExMHnJ1tDZvx0q55yMeC8Kh6mknzcZbf+49X2+C9nVCjgTIwNuwDA0BSHXQBgaErDLgAwdMkJ+T077/w2H39ysOUBAAAGb/ajve//F/quedA/Gzj37MQwutz/h9HVuv9/2p68ThbgQik5A4CR98T3/0+Upo9UIAAAYOCmWkNSKOeX96aiUCiXI660XgtQSlbXa9W5iLgaEb+fLn0gm55vrZmc2GYAAAAAAAAAAAAAAAAAAAAAAAAAANrSNIkUAAAAuNAiCn9Lft1+lv/s9AtTx68PjCf/nY78FaFv/fiNH95aajZ35rP5/zqc3/xRPv/FYVzBAAAAgJHwSC/w77TTO+14AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABiku3feXu4MJyz6ziDj/uOLETHTLX4xJlrjiShFxKV/J1F8YL0kIsYGEH8y+/hIt/hJVqzDkN3iTw4g/sHtvvFjJv8WusW/PID4MMrezY4/rx3b/44cWLrvf8WII9OPq/fxLw6Pf2M99v8rp4zx7Hu/qPSMfzvi2WL3408nftIj/vOnjP/Nb+zv98pLfxIx2/X3JzkSq9Lc3K409vZvrG8urVXXqlsLC/MvL76y+NLiXGV1vVbNP7vG+N7HfnmvX/0v9Yg/06f+VyPihVPW/3/v3brzoXay1C3+tefz+Encj/+bn+ZLPBy/kP/2fTpPZ/mznfRBO/2g537+u+f61X+lR/1P+vtf61/t8U7i+te+8+f+iwIAZ6mxt7+xVKtVdy5sImuln4NiSOSJ8XP0X/fOQDeYpmma7VNPsJ0kzsPX0koM+8gEAAAM2v2T/mGXBAAAAAAAAAAAAAAAAAAAAEbXWTxO7HjMg8NUMohHaAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADMT/AwAA//+VPdXC")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
flock(r4, 0x3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfd, 0x0, 0x7ffc9ffb}]})
rt_tgsigqueueinfo(0x0, 0x0, 0x7, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r5 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11ff0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r4, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000002c0)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f0000000340)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0], <r6=>0x0, 0xe5, &(0x7f00000003c0)=[{}], 0xfffffffffffffecb, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0xf6, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='hrtimer_expire_entry\x00', r5}, 0x18)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x4, 0x80400, 0x200000002006, 0x7fc})

934.922167ms ago: executing program 2 (id=896):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fe", 0xb}], 0x1)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
syz_clone(0x8d002240, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet(r1, &(0x7f0000000040)={&(0x7f0000000000)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000007000000890704e000006a001c000000000000000000000008000000", @ANYRES32], 0x38}, 0x4044080)
r2 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1, 0x0, 0x4}, &(0x7f0000000300)=<r3=>0x0, &(0x7f0000000580)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
shutdown(r0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r2, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r3, @ANYRES32, @ANYBLOB="00008000000089692370c5c71b9410ebe067d669230000b70300001d0000008500"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffef8, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r5, 0x0, 0x2}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000400)={<r6=>0xffffffffffffffff})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r6, 0x0, r7, 0x0, 0x88000cc, 0x0)

682.829152ms ago: executing program 0 (id=900):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000500"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r1, &(0x7f0000000240), 0xfffffecc)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0)

672.413533ms ago: executing program 3 (id=901):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r2, {0x0, 0xd}, {0xffff, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD={0x8, 0x7, 0xfffffff9}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4008000)
r3 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r3, &(0x7f00000005c0)="bad330fbc9b55400040000ea0756a85d88a8", 0x12, 0x40, 0x0, 0x0)

630.739367ms ago: executing program 1 (id=903):
r0 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x6, 0x321300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'team0\x00'})
r2 = socket$nl_route(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES16=r0], 0x48)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x5}, 0x2004c000)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32=<r6=>0xffffffffffffffff, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0)={0x0, 0xffffffff, 0x0, 0x9, 0xfe, "0006000000df0066952e0d16c708db720800"})
r7 = syz_open_pts(0xffffffffffffffff, 0x42)
r8 = dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$KDFONTOP_SET(r7, 0x4b72, &(0x7f0000000280)={0x0, 0x1, 0x7, 0x4, 0x12, &(0x7f0000000a00)="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"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
sendmsg$nl_route(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmmsg(r4, &(0x7f0000000540)=[{{&(0x7f0000000380)=@pptp={0x18, 0x2, {0x2, @rand_addr=0x64010102}}, 0x80, &(0x7f0000000400)=[{&(0x7f00000004c0)="ba7fea6d8a11f4671b94b0e9a6d5829697a5012c11fe3796b16c3e511bfc29e4fa5962f0a4549f341d79e4558910c7aa1b6a0015adc03f6950fe8ba8478bf5cff5e5dfa6605dba8a693d3822853a991eb95663c9cd6add8418fc99ec82061f2d5f6274cefb12dceb13c3f60c77146d6f596a53cd4cf0aebf6123dae60e0ad4", 0x7f}, {&(0x7f0000000300)="cf234390a3b6ebaaacec2901b2e928d1c1d8f0c9b08b3adf3e4551b2", 0x1c}], 0x2, &(0x7f0000000e00)=[{0x10, 0x117, 0x38b4}, {0x10, 0x116, 0xffff}, {0x40, 0x6, 0x6, "a721e4e532f75036af92b3f9451505967370eeb728ca6c92cb5e86469d118c4219d01ec46ec4967a898407"}, {0xe0, 0x0, 0xffffff86, "e44a656e12528e5039cd43dc7459a6ae56cf3a0b7eef2f92343f497d381d85c551eff1688bdce95be6a89d17e18ca16c6ca36a012be564ffa27a691f736c7e85090fb1743337d2de74b32d74b947b87370ac266df9aec322487a21c826409fd9f19208b75c833ea1a985d45fd4fd9a6b2af66283b801b59554a1ee4aac084164d11b35718cec502f9546f0bd3c31ed82f1ccf4f21db66ea7bceb907624a6b320ef47d2439af28490b0ccc70513815476f855b85960c3bd5a75ff69ced6d60d1be3b391bf6aa44812086b"}, {0x110, 0x10f, 0xb10, "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"}, {0x100, 0x10d, 0x7, "8dfe7c0c2c5663d92216af9ef927792c075eed7ebca40ce28309f38216b2c22d4735ea261ed88018680579a2c1a26b0a8eb679d69be51f14255c39d8f1dbec6d4e7d371d5c416885425edc3af7194eb0f33c84cc97c87fbb727668ab55da7278ac0a4ac26941acbceeb9e04476cd70b497777cadab65534a1ede51a7e4b5a7b38e74caa8d4337efddc350d680a4c3e0e86edbec1cb95570bcd70f6d8a7a669814278712fa07b375d6c1250c09df7b2aea98ef1274b2de2110721a3c8b590e7abf6a79f5617175ed561180acb3fa1c6af2d43efeabc73ab25df9029e2cb5b7f3bd068ade03d743b9200d2327a"}, {0x68, 0x118, 0x2, "8c2e44d3885d24fe9e36c869aded69048e5c4fb7573d43d9de5af36e2ae3c50b950da725c2a0db991b4e303018af299d924fd0f896980639269cee4486e196da8e686e477898b086ed42483940402d311d91a82d0c0382dc"}, {0x28, 0x6, 0x1, "087835829bbf0f0007b87397e44302e08f44dc56b101bec4"}], 0x3e0}}], 0x1, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
r10 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r10}, &(0x7f0000bbdffc)=<r11=>0x0)
timer_settime(r11, 0x0, &(0x7f0000000340)={{}, {0x77359400}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(r5, &(0x7f0000001200)=ANY=[@ANYRES32=r9, @ANYRES16=r10, @ANYRES8=r6, @ANYBLOB="c205237fb13e452f212d090677fbadf91c16a6b247332511d4fc4a1923301644c32a1265cb19e56349521538449017acb48364ef0fda5c9345b2c740615254db993f82a43ce0883dcba4139af7a0d7c618935271238c9b27dc9d91aa8bfc9554c3d6ddccccb938e5d583c53966b331f3bd144cbf970214c0497039580b0f0e2f405bd272e280668d69557a2b74ac69b42cf495ce93ec4969c4ade907cc670524e027314291271d7fdf2a38fbc3742b359bfe", @ANYRES8], 0x0)
sigaltstack(0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@getnetconf={0x50, 0x52, 0x2, 0x70bd28, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x20040044)
mmap$usbmon(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000001, 0x13, r0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(0xffffffffffffffff, 0x80049363, &(0x7f0000000040))

596.147761ms ago: executing program 3 (id=905):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000880)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000400)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000600)=[0x0, 0x0, 0x0], <r1=>0x0, 0x9f, &(0x7f0000000640)=[{}, {}, {}], 0x18, 0x10, &(0x7f00000006c0), &(0x7f0000000700), 0x8, 0xcc, 0x8, 0x8, &(0x7f0000000740)}}, 0x10)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000c40)=@bpf_ext={0x1c, 0x21, &(0x7f00000008c0)=@raw=[@ldst={0x1, 0x1, 0x2, 0x2, 0x7, 0x8, 0xffffffffffffffff}, @tail_call, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @generic={0xe7, 0xb, 0x1, 0x0, 0x7}, @ldst={0x1, 0x1, 0x1, 0xb, 0x1, 0x10, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6}, @call={0x85, 0x0, 0x0, 0x36}, @btf_id={0x18, 0x0, 0x3, 0x0, 0x2}, @map_val={0x18, 0x8, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x894b}], &(0x7f0000000a00)='syzkaller\x00', 0x9001, 0x71, &(0x7f0000000b00)=""/113, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000b80)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000bc0)={0x0, 0xc, 0x9, 0x70}, 0x10, 0x2b4fb, 0xffffffffffffffff, 0x0, &(0x7f0000000c00)=[0x1], 0x0, 0x10, 0x3}, 0x94)
pipe(&(0x7f0000000d00)={<r3=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x21c7d89aa5ddc213, 0x12, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff9ad6}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@btf_id={0x18, 0x9, 0x3, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0xd0}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x9, 0x4e, &(0x7f00000002c0)=""/78, 0x41000, 0x31, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0x8, 0x2}, 0x8, 0x10, &(0x7f00000003c0)={0x2, 0x3, 0x7, 0xfffff738}, 0x10, r1, r2, 0xa, &(0x7f0000000d40)=[r3], &(0x7f0000000d80)=[{0x4, 0x4, 0xe, 0xb}, {0x1, 0x2, 0xf, 0xa}, {0x2, 0x3, 0xd, 0x9}, {0x8, 0x4, 0xc}, {0x1, 0x3, 0x5}, {0x2, 0x2, 0x2, 0xb}, {0x3, 0x5, 0xd, 0x4}, {0x4, 0x2, 0x4, 0xb}, {0x1, 0x5, 0x5, 0xa}, {0x1, 0x2, 0xd, 0x6}], 0x10, 0xd02}, 0x94)
fsmount(0xffffffffffffffff, 0x1, 0xe)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000340)='system.posix_acl_access\x00', &(0x7f00000014c0)=ANY=[@ANYBLOB="0200000001000000000000000f000000000000000800000000000000080000000000000080b3bee92bd8a424a217d42c5d7e17d5821909d70fda92a829520171ea28b70cf6c1a3f3fdc20a80819ba12ed4e5dc8ef3ca4b13813bc33493edff0ffde4c97506fe893c4884a39f623eab30362109199d79fe2c437ea2492a2b331e13"], 0x24, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRESDEC=0x0, @ANYRES64, @ANYBLOB="d8ad4591aaac279c14b211b5b34726fdf292db8cb422ec33151e8ec5a5eebe07a02f18a3cd05f4c5c8f30f4f2e23c0d89b53eb0d2b9f08b54ee8bd1c2451d6147403dd249c16192c25493d175603df96a3e63fedfb58580ae128e603cd14462092ae81e0d7ea6219cb55b76abc9052cc477f9214c5e48bbc78b46aa2212e64634e77a9e8b6f68cee41a659b1388ceb7e4099f06e7d8b53de670acab4415c873b378db78651851aeaccf8ec71f9205c2629", @ANYRESDEC, @ANYRES8, @ANYRESHEX], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00'}, 0x10)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev(r4, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)
syz_open_dev$sg(&(0x7f0000001480), 0x3ff, 0x40)

554.019075ms ago: executing program 4 (id=906):
sendmsg$AUDIT_TTY_SET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x18, 0x3f9, 0x4, 0x70bd26, 0x25dfdbfd, {0x1, 0x1}, ["", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x22044800}, 0x40001)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SEG6_CMD_DUMPHMAC(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x6c, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x6}, @SEG6_ATTR_SECRET={0x18, 0x4, [0x3, 0x1ff, 0x6, 0x100, 0x200]}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x4}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x9}, @SEG6_ATTR_SECRET={0x18, 0x4, [0x6, 0x80, 0x8, 0x0, 0x100]}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x7}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4824}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
clock_settime(0x6, &(0x7f0000000000))
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/dev\x00')
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000600)=@security={'security\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x148, 0x248, 0x148, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000300), {[{{@ip={@dev={0xac, 0x14, 0x14, 0x14}, @broadcast, 0xff000000, 0xff, 'veth1_to_bond\x00', 'vlan0\x00', {0xff}, {0xff}, 0x84, 0x0, 0x30}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@osf={{0x50}, {'syz1\x00', 0x0, 0x3, 0x2, 0x1}}, @common=@ttl={{0x28}, {0x3, 0x7}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x4, [0x0, 0x7, 0x5, 0x6, 0x6, 0x6], 0x5, 0x4}, {0x0, [0x5, 0x1, 0x2, 0x44c2d0c828a83bc4, 0x2], 0x5, 0x6}}}}, {{@uncond, 0x0, 0xa0, 0x100, 0x0, {}, [@common=@addrtype={{0x30}, {0x10, 0x0, 0x1}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @broadcast, 0x9, 0x4, [0x18, 0xf, 0x16, 0xf, 0x17, 0x2a, 0x26, 0x34, 0x30, 0x4, 0x0, 0x36, 0x2b, 0x0, 0x1b, 0x1d], 0x2, 0x10001}}}, {{@ip={@broadcast, @private=0xa010100, 0xff, 0x0, 'ipvlan0\x00', 'pimreg1\x00', {0xff}, {0xff}, 0x88, 0x1, 0x30}, 0x0, 0xa0, 0x100, 0x0, {}, [@common=@ah={{0x30}, {[0xfffff4af, 0x50ad], 0x1}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x2, [0x6, 0x4, 0x2, 0x1, 0x0, 0x2], 0x4, 0x4}, {0x4, [0x2, 0x2, 0x2, 0x1, 0x2, 0x3], 0x4, 0x4}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
ioctl$PIO_UNIMAP(r1, 0x4b52, &(0x7f0000000040)={0xfa, &(0x7f0000000000)=[{}]})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="50000000090601020000000000000000030000000900020073797a31000000000500010007000000280007800c00018008000140ac14141b0c00148008000142ac1414bb0c0002800900014064010101"], 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)

553.257125ms ago: executing program 3 (id=907):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRES32=r0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r2 = socket$inet6(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3f, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r3}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r6}, 0x10)
pipe2$9p(&(0x7f0000001900)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
r9 = dup(r8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}, 0x2c, {[], [], 0x6b}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendto$inet6(r2, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466", 0x48, 0x0, 0x0, 0x0)

490.822621ms ago: executing program 4 (id=908):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002240)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000000700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000015c0)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="05"], 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x10)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, 0x0, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r5 = socket$kcm(0x2, 0x200000000000001, 0x106)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kfree\x00', r6}, 0x18)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b0400000000000000000200fffe240004802000018007000100637400001400028008000240000000110800044000f7ff0c0900010073797a30000000000900020073797a32"], 0x78}, 0x1, 0x0, 0x0, 0x840}, 0x0)
sendmsg$inet(r5, &(0x7f0000000000)={&(0x7f0000000140)={0x2, 0x4001, @empty}, 0x10, 0x0}, 0x30006041)
close(r5)

490.566981ms ago: executing program 1 (id=909):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021800000000c0a01030000000000000000070000080900020073797a31000000000900010073797a3000000000540003805000f87f080003400000000244000b802c0001800a0001006c696d69740000001c0002800c000140000000"], 0x104}}, 0x0)

489.954721ms ago: executing program 1 (id=910):
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x5, &(0x7f0000000000)=0x6, 0x4)
r1 = syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000300)='.\x02\x00', 0x2000800, &(0x7f0000000040)=ANY=[], 0x1, 0x2e0, &(0x7f0000000640)="$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")
r2 = io_uring_setup(0x7, 0x0)
r3 = io_uring_setup(0x736f, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x50, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000028c0)=[{{0x0, 0x0, &(0x7f0000000940), 0x0, &(0x7f0000000600)=[@rights={{0x14, 0x1, 0x1, [r4]}}], 0x18}}, {{&(0x7f0000000a00)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000029c0)=[{&(0x7f0000000a80)="e18b290278590291a4de40fef2d830ba32fed63958665c3bd16514abbaf51f63658e", 0x22}, {&(0x7f0000000ac0)="6e9abc105d2ab0256d4c56e562ec1f3623cdf8414f283ffe66bcdfde6d106aa884d7adbfb8689bc8bc6f6cb32bc14371662b06318305d345242f16b7345a3cdc84a93ab634d11b0a89b453b9ab1d7f62e9352f666319771d292039377f0e3f8b7943f30f23b14813354e1596a89ede651fcfd661372e46b6e5a81c7804c0ace30b865380e3369cc83dd251ad80d7b09f72f6ed7aae5d705baf2b5acd1392d2085a3a21e5f7a991ccad04611cf7ca1be557b8b1f13f27841042eebeb1d60a", 0xbe}, {&(0x7f0000000b80)="73d07cadf879f3cbb0e85118f117843d61fd5f5ed89d4e43546c157bf05088cf988df59d833b455e30972a1f4846881116d0c2ab15108eac75bdc6f207535c211ff5e3b7819c3159148fa55aa512e85ccb833a7c2d189f445d84908eb8f487c280049da007cca827bd6db442ac1be3d9101fd2d789ff14c09209e91119592b30ae07058a2d28f9e7db5dcb3f7838a5efe64966592aa5013799decf87ec0943a649ab70905a4ee7338dc8b652164905d5db385af2e59aafb9e279678fb0660735a245586196ec1d20ed", 0xc9}, {&(0x7f0000000c80)="1155fa72a43c144462580b068a1a4def2ea9c2e657336df65ab49eb85f2d64d71321ef90eaec35a328c08ff5a636fc8a99885e63e2d04da4f78484b99dfb98494f1bd1f27818683352be72b8202cd48488c95663c735ab689f3a51401947e058", 0x60}, {&(0x7f0000000d00)="2dd898873b6d726dc3883edddc62c3e9cccb2bded87e66db4ca40544342898b61f980767488303188774265f724b3a27e8bc04e2c5b943ce396313b22daea4141a9c7baafbd91178ab499ef8de452474e56bb4fd12d67cd7447bc407bf4a72c0886b806d1a36e81d194b40ecda7c36a73fabf6a790094f124d8d7f41bba7222c109e8afb98cf58b5a413", 0x8a}, {&(0x7f0000000dc0)="bdbfcddc829af0c38eae561e2595a428d321cd333bd4c85e34db104d37a59de69deed9a3ad5a70e5606de2bf5a44c66a6f9193f815bd96866d77debef297ad73169e9a3283fa10e7ec3bf6de0b3ddf9b69fea82d3944077ceaad692dd515ff59f633265746f8fc9ecf1bfc4409cdacac34273b4d5041e309d9fbea7c9ae65b722b3f3dc54ebe8f31cc3a1f7224a435a8f7471ba17dbd6a055c8fa9ca0b56db4f382a6129ef14b460c276cec870c53f518acf7789e51c63bb63078723a5788ea27e3674aca791", 0xc6}, {&(0x7f0000000ec0)="1e6fa94273bd4025cd368ab62d5f132365284d0141b60f12a794e07d4f37eeb7674231a8f09b91ec659372c3e573d4a8a9936fd21e0dfa", 0x37}, {&(0x7f0000000f00)="ac153c2b036577807211c8aee2e1a098ddfc54727ac2a26ee8280ea7be81fe517b3a415ef6862dc2ebaa02e4161f42ddc0ed13b49b8b61a57c9e29cbb274b337dca3854df1d555ab6b86a8eac3bc1c74756bdeecf5819cf4d85772cc8f0170334b7292a59e6808ce5796617611aef0a5cb945a3d5ef7db21875f57bdda55f70e9380be383dbd77b349aaffbe6e931acf28b18461b7f15b2fc5a8202fcf3155abfe71cb616189e14846c5a49f2b6a091dd9425747071e352eeff44449c71be0333fbe918403f5b448a06a86d0c58508634d442fcc85a0a4e1f8e71f501f040e9a02b59505", 0xe4}, {&(0x7f0000001000)="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", 0xfe}], 0x9, 0x0, 0x0, 0x8000}}, {{&(0x7f00000011c0)=@file={0x1, '.\x02\x00'}, 0x6e, &(0x7f00000025c0)=[{&(0x7f0000001240)="95ae0a09f1b6419c455b31c0985e7c9759eeb6439d336cdb610e349f9a886f1127c9f11370f01240ee6f22848765", 0x2e}, {&(0x7f0000001280)="cbc13ce03c31f10c8aae1fe7e82b6440e099c422040d349512fc21d5effec828c9c6e039446e2a694c677e0c825108d995a0b94dd91292a18494c9fd0a87859f51471b67f54b83d6641d", 0x4a}, {&(0x7f0000000340)="2915b91c9e034adeb17e3177083c65ff07e14a6855dd488166da9fcce91c095e68c4b0af34602d002f0fff725638a596d736dfa3c593a99e081afc6107bd4fcb1b2ff181a4b8300fb7eceae8c090adcf17bd090125f677ed17b054dc4aa47fd2d6ac86045cf5be109deef244a2d88f7a7c4776fde9ae4285b5b9e058d5b229dae245358c17d3ec80366d8c51f3ef85c026ccecf99e131e21e321812343b56a8d61c359ecb727e3330e89a3649060af8da3c65f74cee9835cc5f1de56c37c40050e40d6add25560b51fdec68e14047c6f858eee4fda5b3e96d236cf868960ec3a2fa243e8a8", 0xe5}, {&(0x7f0000001400)="30b0ea1a5781c449758f069dc37859e93a76994a", 0x14}, {&(0x7f0000001440)="b7930e142d78a5a7cd1ff8eeb3ccccfe03fd6d14f607ea5e25c047860c13101b4e4a9196e443972ed7661342e3609438465eccbc743ad4ff150a988a69afa651178b09acd7a3782d32c8bb52a5f5205cc4a6022e8c486f", 0x57}, {&(0x7f00000014c0)="d6341b5782faffad69c88dc06efe51a7e83066213ac5876096f40b590a32551b42ba64260e42a1bb7f392d2a8848e265b9d221f8619b2b6d8f1651d3c7525f59b8911a8bb67105a0c5800a986c2f94454ecbfc6e04fe604fdd36f45fc8cb073cdb71a0076b898076864e2b0a1a8c4dd6556f8a73feb56c993daa511e1069c5504df19a1632a62f0121477b4a53c5515064387b489d8b4c298b215fd2e4a02d66b58bc9da4cb787b9b93aeb1cd0dd5ef93ae2880a51eafb3d7bebe6ec28d154d6a1ae8129ce7b1c1f1031f03e4959bead0977671bd42a7e57ff097631f75af121a966257d8b", 0xe5}, {&(0x7f00000015c0)="4f1ba300a7631910bab91fdfc438ea36a66f84892c4445640dccd78c22c362e0cbce8eaae928232f3bb37d9cbd5d9acbaddc1ec66604d687878cf5facad8cda25cf7fcc9a8d64d840cc45e1c571dfa8ea668f9bed85860a06fbbf717704ab3dbc26c60f65299290be0bdee1049c60ff3930922e227e7acdbbb4bb5aab0bedfb825905fcf420e019453af5d213dd816d26a76d4eb31e6784674688dab571f368fdcf314df80d3c2c50975d5cd24bb4a949181f708ee1924c61f4ebbd80e8f6aa2ec086164e02477db390bec7efa2b7d16cebeb75aa15fcbadd395211edc88b982c6dbd8211ccb153c7f00a08c14736ba302fc081e35ac08b38b1ea81806ef81001b487e0537941e697b93a19b16d5568ab006afb114d5dcbfb888d918ce7704b735aa6cf29e224c2fc3328d1e122fd772fb1a182040ce6bba5e12197db2c7f525345c8270def20d835f2b05222c93931f475217da436849eb3df73d133029a756524c6b284a20c7292c1d2d3c48d80e45056d4ea6cf1a7fff40fb14710a487478bb21ca90e1798f940c226def6f371e75ad31e96a019829434eb7d56b63df94960b97a05d33134c32199561ef47828dc6a62ec6dc31df2c7b5724008c3f295c10149b196337835e73911cbcbfd76edf48d8e0682930e861534cd91257087aa10465f9c8d1e7ee35211c5d0920d34821f72d18fae88ae11b632e1917d23343758cea7d465ce486fc6deb076745a452180d217b1b63a665fbd3f5456dee529e8e0fc59b227f8f73ce16a140922b02cab57fa31c9795c3f3f9edde455c5b9a2e4fe8a4eb58627aff7c7532c62deea7311ff42eaa8d7acbcf13b7e984a890e200e0e33bea52bf3e5d7803a55cd7014c1b604ec6d6d6976d9085d5f503a94f00abb9d913931738cff24abab2bd98d2cea5142255dae73095b7001720021c38c83dd97b6ca9fa92404e1c3508add42d895d6d3afe055678b594b3bbee11add13afa5e5033062419755bea0c3846344a524e1df01a377e414be35f1abe47c76d7db62704d938b0ab37317cb402a9fa50301e4c0c7b3ae5f9b85f35aa8aaa09613f0ad8fdea41f77abb4da725d903e73b8e7dd7060ee1853575094d1cbca6e075d40ff5051582dffb881e4034dfe2c46719d0b55cce7df5c4df5a20a2acc35e6fb3bc4c7c5b7c3eb360d92f79ee7fd270cf05d151e4ac0a8e0e82b20893dadf34dd28313a3dadb0c50fe9398e4a8a1fbf65388b90e9ea9c67951b1c318b7f75a57950d296f832c874babac048078221bb7fd81eb4f32bb358073aada9cccb3a4b99c3ca487ed74bc522a33a5f42252549cb5c5d21ce84843efa8a395a2d45c1055730b4bf87692ea0997dbde0d81b4ef6aa483f63bd82adf434f55a2a084db73f92c7c7d911e4c85fbadb786b3c2c3637a49c2cd535c2a3b1436075cb6cd8155e2fc4b458a31b97190d04924e3feb9a51e4cdd17e2bb01d2959e8c9ff4ad98f2665ea8deba12745bdb8d47cde397865b7e4b458cee67eac10e4e9718c0ef139cce1bad41b56964fddb2147c3dffb6e332b8d4b379955564c8947c3d5e92055105b44492bcce2b09ee140bf09d0ffa208387f63553b65810562b0abd2fd3b879715ef348502b0c6a2cda6331be711eaa77702fd076b38fc88c67b4a79f8e64ddbceacec0c2a04c8e2e5883afdf70fabae27db9b8f8f30c521695355a24e4ebb50749ab3f980c2144c29b738ddeb704470d20b87f7a965d019b311e52b2e3826b4fa2632252f6d5bb7ce77fb00ce8a11f86e4a6ea1cb4f8145d17bbf2996d5964ff747e18987e3055e4ff60967e7940069ebc9cffb35df9944dadc1c08060edbdd44b421e048550ca938444f502457e23e27483daa7231f6991a117ef3b2600e5e36e0cb831079629e442619e733609416aeb2ec64f553c90073ce7be06e80917233c91d29ebb8cd020163ca216627941df828b4aa09e54607ff86227ac44f070f5927cfb4bd6965499746b3f9c11981f9241135016cd21d04986fb06de82cf8e5d34bdab2cf2f1432966972d961e60d4acc1bc20a56faada9cb10a8b43b94f2f970aaff3f5a5a4d161ffcec4a5ae03aa1b40d43b2983a988d9ddb8a4195d2caac05ef34e77ad5fd2bb55f1665a35053dea27c017167eaa2dc2b694287dd823edb94aaeef68f4ffbe3601511b34bf92a22f5bd1a0e61d026e506e39bac4c33b455dcf705c861c8c9a2dcb6aa1999baee3671d8ba5dc873244fe89de6efe4ffdbdb6aa3c5ceb8beb7f246c19822b675d378a7f9ae1eef3aa476d45b82c0a4c4b67712f9f866a6bed559d0cce36fef2825afbf10d10fe4ed9b62908df3becf0f2a0a7ca1077ecc8e411185374416125a9a755a9eb4be1ca83a63882e6f84d8d4b64014c162ea7ad1cfe835e0338059465014632e737408257bad7a5a3f5c09c6f6588f15379eed07899efa7a1a89b3ed9d2b68d4002aa4eb6fbfc6bbcfd985e2775080f88256735edd5633d0f76163808a31bef2f69020775ec3a6ffd90f5be13c128b9e883b7620cd985456674987793056a7202a7e3744616536c5c75ff1f7599ecda9b6aac0761c509c4fc1872c90a4965164eeaf3e31e27cb4c1d1d851b06fd85cb40de9cb142af2c7d39eb579f6e83a25d945810e4a04896df5fb3ef85cb5cac0997335f1e498e47cedb36a64b52ea240e2e53e464003b025fcc4e96ebb057a63d0f12954e196d3a6dfee1816b14d4152aa5b89a0c3176b32f42b067610b8c1561611c5277f467e99921592f57cfb5502f136684e33e243b6b1c0a210fac893ed80585f3cd5277d01448ba573add4fe8143bf4184330f79151cf4eec8baece6533898cd940a24f6f68ab590e307dbab71c609ff38906365c5e43edf9e5c666d8d89b5c5cf34a9e53d19d94ae5592bf83e4d98df3623da98a90d1a92ee7a72a0f1966f84d8746a7162131012403ca90dac116c4ed55903aa3c16915769e73cba75964c69752b6d97dbdb277538b59f12546e3565d47de0465c1a6b6c47a8d28cd514dfd4d10a2d74ae8fb94728227fbb87eaa7d50628c99fd8089a0f9e190b0ba946ab57070ff2e066d0066ea45cf177531e3eb99c89317f719dcfc307e28cb7f51879144868b55e3ccb26e18c499960cb0424f0ffcbf61aca1c62ba67abf40e4efb67ed27238db3109a11bfda369a77a4ce803d4cc847c80af5034aa4ada851af98c27bcfc54484b0692307496330377507e6a565ce6dbd25561f9e659957e07ce4a074c108789955f9749825ee70d99c00fdcdeb3ad2244f6c75d301ebb1bb0d75dc75e6cfb2c502c396ce707ba5eb8501c104603824213d31eca604c78d39f63e67efadb2bf478b3387f4e7e428fbbd7c366ce0d3ff0497b4da835664c81aa0dca9bb96a20644acb353e2e577ff79bd0f831719327f543a65dfab4e81c14d653e85685b128965df999fb69042af6c6097f5e998e98cb7a248b8581f04355e3b5107f9ddb77c0953005339c9f02cb2814aa9775e4cf22354280a2f3e42045a0a3e3a26e598b063088d76c76f865e34f13439ae3d3ad3b3afd583807adfb0fe58a5f7d52ee3abfe97e91d19fbf1eefafbfb12733ed7308788eb7f99280234965d96cd0e24ac3cf74f4af9050b60fe5ae1a35cfeb8a34c3f4b169b8582ee726e59e4602a9312a7d368cb11f970e6ea330eccb750a8e648d7e207b26f895d61f9141ddf550e853f2aabf2c2dfadd062fefff02d90700128752bba0316515e51a6756331f5a18ac92c1e60ffcfec826d066839bbefdf613aaf51c746326d5828f1101c845b9b73b3d1775a882fe7e78f6d5ed18d6ac16eccb58c60f0f99ddcfd2502acf16b14f6716882d9bde10dae1689cc60b6dc67ce0dd813be7caae29c8d01c7611f7a818bb190a30d6f3241bdfd9c34a213305faf28887ba28d04d07a81f77bac9b30be202b3a93b63427dd6c57141c876f846e60531d8c67ac250c88a9e403650f5adbf4356d42afccfbe2b162ff9a7297ccda2ac6f703b20550a10f7f4d564990741246665cc96cd665cc2d56272cea21acf2eadab2d87c15c697193889dbd1487725fd7b0941050efbd2c994e7010ac335137c326480bb81386905c0efd3a074fea8f89a7e6ea0422904d237eda763212d3073bf0898944401ab9e4d7a7c34bf92af92364d62e895b6be0333ae02d120e493cfa4f10363f08cf76511859bc6b12b1d70a657e90465d8edb6c8aa913919d24f03fb191d5d6d1455d5c8c766661c5d8e6e02ba9b67a15222d2163a014a7838bcf0effbf682b8bdb402fb52caca0a7e52d90508221b592d578fd6e28f7186241a4ad7dd835c1e533c02ca826524813d4bda69b62defa17625294b3b2eacec6d97ce1789955ccf0b3df70b6d3dc4997d559a9ddf847a7964e70f3460718ff7cdbee5fa16325ced41458d1bbecd14cf5080aed9729be58611b886143484ee44775e667503e4b0ae36fe075fe28dce18f7e1507381af89c09c995750b283209f2da1e527e5850a35d517873091d2079dc44fe85727d3aa8db4e895d15c3723956888f86a184515581f14200c57cbd2363f79c2fa50e3c633ae5d6a641185c967312c35f5d201fc2ab7373f6d3e1dd33ecb6d0820198a1d2d49a6b2dc20f12245fbbeb91d6471d1aa1eba4bc3265685a613bc70c257467ea2909533704a245824dbdd2f9e81791314f6fa54a4e99f80ec9b1a9ba35aa7313d1bf1529c86f32c00e8fb59a27d749a9a8402a23b029c4e277df9595eba87048f10b92b83401f4104e91c8e130972018f59ef68f6b00d0cb0b5fdda209ddc7684cabd9c9138363ca92db0e3cc65ea481a92aa526a17a99439207b83c3c7a3b1ac90e860f6ea65159ae312a8477733a4ea719c0894b6fc23a4a1641841f1426b7001f26dae6d7bf3b480af2a9b3f93f97114de212fad2d7faacb5603f1bb2d54112ad8b9070d529f0749abbc377b1c64feaca42e4a37b1fab80029c6a4648254252f896f2d04a13f006f3f1c10c8adce1ec8d7f42d5865a0b4f59de506704d07985811edf9c607777a39d35161d5bb46fb99f5b6c90c00d573425c73778795defbf2bdc2ff4612b9632baf15a4c0b8045582f1ca19f2fd1f798f570e043de525fcbd5628ec3c5d1486d46ed955553d4fb23313a48e5e1a29cf57c221964514cb3ed6d9c65b86218330caf0c5a7a3e9eac9c0dd781f065cb769f5081aa9ea458bce3fcbe58d98c48601d0ee830d692472bcea87f3de24bf0e82f07da087dbf1bd19c170d0791636f3f163976e3e845e3facb59f1e1c7b823b54452f78ad37252a0b299ae265a48b61f6f921db07e66bcb8b1f22389b94db6b86f8aa1f4dd704dd01980404d0cd68411859e551bc397eb8293cb6c9f0ff0c3f0340579633f4732b83076eb940548c0b094dfdf80d4b959526bc782e35c5a83da6f40ccdb2459bfee558f459c84ec56816af7842557983c09633321b011d295174c033cf2f2eddd55e0c45ddeb0b15430b38486462861f8f34a709294f32c1f328335531309bc3efd0577683fea2a64ef59c8750b30f6839c2292b8eafeb171e2e4b6694205ee52706cb136a0f12225da0654eaa981e84e01fd0e1f6e829e6fbf3fb3a4d4d947da38376060b33ed75b3f7af8e90b9f9dd8106f93a77907622f7a9ef3db7fc0afad2fa5a42204652a82b690528ebde878f3fbca58c050a0f48c482728cf5a2ab98185c63702912f0aa765ea9a0e196818bef4e9d90a8cbdcf11cf28c723752fe94eeca2baa65276cf2c0cfa27ae2c5c7ede44051388e566dd426c66f4", 0x1000}], 0x7, &(0x7f0000002680)=[@rights={{0x1c, 0x1, 0x1, [r4, r7, r7]}}, @cred={{0x1c, 0x1, 0x2, {r5}}}], 0x40, 0x418c1}}, {{&(0x7f00000026c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000027c0)=[{&(0x7f0000002740)="ebebe3fe4af4293f4159384666cc104ecb16865ed6e2aa16cf3e4b1d332644dc968f8bc4fb9d92e9392ffb9e346f17473b9ded7ed1448dfaf022e2e4ee07e8355b25a75cb824dca9b752cf7229a08a3fc523c44cc7b8cda496a7cd77567b5d", 0x5f}], 0x1, &(0x7f00000004c0)=ANY=[@ANYBLOB="30000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32, @ANYRES32=r3, @ANYRES32=r6, @ANYRES32, @ANYRES32=r1, @ANYBLOB="3800000000000000010000000100000081561802661ea7a9fa5f254fdf237ff865829a6abbb947418f242628c776edd786f9afab673882e79be0448ec91e7a88049a", @ANYRES32, @ANYRES32=r7, @ANYRES32=r3, @ANYRES32, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r3, @ANYRES32, @ANYRES32=r6, @ANYRES32=r0], 0x68, 0x4800}}], 0x4, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000240)='fdinfo/3\x00')
lseek(r8, 0x4, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='f2fs_file_write_iter\x00', r10}, 0xb)
r11 = fsopen(&(0x7f0000000040)='zonefs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r11, 0x6, 0x0, 0x0, 0x0)

441.637526ms ago: executing program 4 (id=911):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ec0)={&(0x7f0000000bc0)='kfree\x00', r1, 0x0, 0xfffffffffffffff4}, 0x18)
getpid()
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/vmstat\x00', 0x0, 0x0)
lseek(r2, 0x9, 0x0)

430.368557ms ago: executing program 3 (id=912):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="2e9b5b0007e03dd65193dfb6c575963f86dd6067", 0x14}, {&(0x7f0000000200)="b7c7040000000000000000d1dd0f", 0xe}, {&(0x7f0000000580)="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", 0x415}], 0x3)

365.738314ms ago: executing program 4 (id=913):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4008050)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0xfffe, 0x8, 0x5, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$igmp6(0xa, 0x3, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x4, 0x7ffc0001}]})
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff}, 0x0)
io_setup(0x9, &(0x7f0000003080)=<r3=>0x0)
io_getevents(r3, 0x1, 0x0, &(0x7f0000000000), 0x0)
io_submit(r3, 0x1, &(0x7f00000001c0)=[&(0x7f0000001940)={0x0, 0x0, 0x0, 0x7, 0x2, r2, 0x0}])
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000a00)='./bus\x00', 0x200000, &(0x7f0000000540)={[{@dioread_nolock}, {@resuid}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@noblock_validity}]}, 0x3, 0x480, &(0x7f0000000a40)="$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")
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x41, &(0x7f0000000880)={[{@nouser_xattr}, {@nodiscard}, {@usrjquota}, {@grpjquota}, {@grpjquota}, {@minixdf}, {@quota}, {@noload}, {@block_validity}]}, 0x64, 0x51c, &(0x7f0000001740)="$eJzs3c9rJFkdAPBvdbpjMpOZZNWDLrj+2JXMoNOdbNzd4GFdQfS0oK73MSadENJJh3RndxIWN4N/gCCigie9eBH8AwRZ8OJRhAU9KyqK6IwevDgl1V2dmWS6O5mZnnQ2/flAdb2qV1Xf9zqp6npVj6oARtYnIuK1iLiXpun1iJjO5xfyIQ7aQ7bc3TtvL2dDEmn6xj+TSPJ5nW0l+fhyvtpERHz9KxHfSh6O29jb31iq1ao7+XSlubldaezt31jfXFqrrlW3FhbmX158ZfGlxbmB1PNKRLz6pb/+4Ls/+/Krv/rsW3+6+fdr386KNZXnP1iPR1RsfU50z2xXvXQkO1th5zGDnUfFVg1zk92WGHtozu2nXCYAALrLzvE/GBGfiojrMR1j+eksAAAAcHGkX5iKsSQi7W68x3wAAADgfaTQ6gObFMp5X4CpKBTK5XYf3g/HpUKt3mh+ZrW+u7XS7is7E6XC6nqtOpf3FZ6JUpJNz7fS96dfPDa9EBHPRMT3pydb0+Xlem1l2Bc/AAAAYERcPtb+/890u/0PAAAAXDAzwy4AAAAA8NRp/wMAAMDFp/0PAAAAF9pXX389G9LO+69X3tzb3ai/eWOl2tgob+4ul5frO9vltXp9rfXMvs2Ttler17c/F1u7tyrNaqNZaezt39ys7241b673ekM2AAAA8LQ98/F3/5BExMHnJ1tDZvx0q55yMeC8Kh6mknzcZbf+49X2+C9nVCjgTIwNuwDA0BSHXQBgaErDLgAwdMkJ+T077/w2H39ysOUBAAAGb/ajve//F/quedA/Gzj37MQwutz/h9HVuv9/2p68ThbgQik5A4CR98T3/0+Upo9UIAAAYOCmWkNSKOeX96aiUCiXI660XgtQSlbXa9W5iLgaEb+fLn0gm55vrZmc2GYAAAAAAAAAAAAAAAAAAAAAAAAAANrSNIkUAAAAuNAiCn9Lft1+lv/s9AtTx68PjCf/nY78FaFv/fiNH95aajZ35rP5/zqc3/xRPv/FYVzBAAAAgJHwSC/w77TTO+14AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABiku3feXu4MJyz6ziDj/uOLETHTLX4xJlrjiShFxKV/J1F8YL0kIsYGEH8y+/hIt/hJVqzDkN3iTw4g/sHtvvFjJv8WusW/PID4MMrezY4/rx3b/44cWLrvf8WII9OPq/fxLw6Pf2M99v8rp4zx7Hu/qPSMfzvi2WL3408nftIj/vOnjP/Nb+zv98pLfxIx2/X3JzkSq9Lc3K409vZvrG8urVXXqlsLC/MvL76y+NLiXGV1vVbNP7vG+N7HfnmvX/0v9Yg/06f+VyPihVPW/3/v3brzoXay1C3+tefz+Encj/+bn+ZLPBy/kP/2fTpPZ/mznfRBO/2g537+u+f61X+lR/1P+vtf61/t8U7i+te+8+f+iwIAZ6mxt7+xVKtVdy5sImuln4NiSOSJ8XP0X/fOQDeYpmma7VNPsJ0kzsPX0koM+8gEAAAM2v2T/mGXBAAAAAAAAAAAAAAAAAAAAEbXWTxO7HjMg8NUMohHaAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADMT/AwAA//+VPdXC")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
flock(r4, 0x3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfd, 0x0, 0x7ffc9ffb}]})
rt_tgsigqueueinfo(0x0, 0x0, 0x7, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r5 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11ff0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r4, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000002c0)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f0000000340)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0], <r6=>0x0, 0xe5, &(0x7f00000003c0)=[{}], 0xfffffffffffffecb, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0xf6, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='hrtimer_expire_entry\x00', r5}, 0x18)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x4, 0x80400, 0x200000002006, 0x7fc})

188.246281ms ago: executing program 3 (id=914):
getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000140)=""/196, &(0x7f0000000240)=0xc4)
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup\x00', 0x42, 0x81)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0x11, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r5)
sendmsg$IPVS_CMD_NEW_DAEMON(r5, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002abd7000ffdbdf25090000006400038008000100010000000800030004000000140002007665744e315f6d616376746170000000060004000200000008000500e0000000140002006970766c616e31"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYRES32=0x0], &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = gettid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r8, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r7}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_PEER_GET(r9, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="28000000924d1982dd3699a782ec305ba5e5d37d95d0f339ccf3c9c55245b70b290a91890f6bc7dd8a8406add13fe0c6fd8349e3f31b96f47c3af285cf3f7a48bd36a7d78fb5aa2a3d9eab77540abc9586caabb45d1b3afadf67f391544b7580b0666e3c73423726233c3e6d69f2f34b69ad0cd4c3642b4c73e524945f61d2ed9f4494b5823bd3c5ee4478b6f9cfa28747bf3c93e7f361e13f90dc7ab44d82303d549b40ee3b8437f1a8206bf923ab9b32460713b6bb6d49def76249e2715cfaad2f39d975897a6b395fdc5023b7f0f361d9", @ANYRESHEX=r7, @ANYRESOCT=r7], 0x28}}, 0x0)
r10 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000340)={'hsr0\x00', <r11=>0x0})
r12 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x18, 0x5, 0x5, 0xd0, 0x10, r0, 0x5, '\x00', r11, r2, 0x4, 0x5, 0x5}, 0x50)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000780), 0x12000, 0x0)
r13 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r13, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000700)=@newtaction={0x4c, 0x30, 0x8, 0x0, 0x0, {}, [{0x38, 0x1, [@m_tunnel_key={0x34, 0x1, 0x0, 0x0, {{0xf}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x839, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r11, {0xc, 0xc}, {0xfff3, 0x8}}}, 0x24}}, 0x20040000) (fail_nth: 8)

130.923857ms ago: executing program 1 (id=915):
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r0=>0x0}, &(0x7f0000000000)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000000)={r0, 0x2}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000440)={r0, @in={{0x2, 0x4e21, @empty}}, 0x4, 0x5}, &(0x7f0000000500)=0x90)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x4, 0x1}, 0x50)
close(0x3)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r3, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000300000095"], 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r2], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r5}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000300)={[{@delalloc}, {@data_err_abort}, {@data_err_abort}, {@usrquota}, {@data_err_ignore}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@oldalloc}, {@grpquota}, {@noload}, {@sysvgroups}, {@oldalloc}, {@dioread_nolock}]}, 0x1, 0x565, &(0x7f00000007c0)="$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")
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000008000000018120000", @ANYRES32=r6, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7, 0x0, 0x7fffffffffffffff}, 0x18)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000240)={0x0, 0xc3, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r9}, @IFLA_MASTER={0x8, 0xa, r9}]}, 0x44}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000007040)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x0, 0xd}, 0x2000, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0x1, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x2c, 0x1, 0x1, 0x301, 0x0, 0x0, {0x1}, [@CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x1}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1400}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0xd0c}]}, 0x2c}}, 0x400c0)
syz_emit_ethernet(0x7e, &(0x7f00000003c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2c}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x33, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x24, 0x0, {0x15, 0x4, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local, {[@cipso={0x86, 0x2a, 0x0, [{0x0, 0xd, "5e000000ff000000000000"}, {0x5, 0x5, "4eb8a6"}, {0x5, 0x12, "9606053d0006ff00800000b61af93a93"}]}, @lsrr={0x83, 0x13, 0x0, [@dev, @loopback, @loopback, @multicast2]}]}}}}}}}, 0x0)
process_mrelease(0xffffffffffffffff, 0x0)

71.025673ms ago: executing program 2 (id=916):
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
creat(&(0x7f00000000c0)='./file0\x00', 0xf4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$inet6_tcp(0xa, 0x1, 0x0)
write$tun(r3, &(0x7f0000000480)={@val={0xa, 0x10}, @void, @eth={@broadcast, @empty, @void, {@ipv6={0x86dd, @generic={0x9, 0x6, "000400", 0x0, 0x2c, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2}}}}}, 0x3a)

57.129414ms ago: executing program 4 (id=917):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000880)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000400)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000600)=[0x0, 0x0, 0x0], <r1=>0x0, 0x9f, &(0x7f0000000640)=[{}, {}, {}], 0x18, 0x10, &(0x7f00000006c0), &(0x7f0000000700), 0x8, 0xcc, 0x8, 0x8, &(0x7f0000000740)}}, 0x10)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000c40)=@bpf_ext={0x1c, 0x21, &(0x7f00000008c0)=@raw=[@ldst={0x1, 0x1, 0x2, 0x2, 0x7, 0x8, 0xffffffffffffffff}, @tail_call, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @generic={0xe7, 0xb, 0x1, 0x0, 0x7}, @ldst={0x1, 0x1, 0x1, 0xb, 0x1, 0x10, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6}, @call={0x85, 0x0, 0x0, 0x36}, @btf_id={0x18, 0x0, 0x3, 0x0, 0x2}, @map_val={0x18, 0x8, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x894b}], &(0x7f0000000a00)='syzkaller\x00', 0x9001, 0x71, &(0x7f0000000b00)=""/113, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000b80)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000bc0)={0x0, 0xc, 0x9, 0x70}, 0x10, 0x2b4fb, 0xffffffffffffffff, 0x0, &(0x7f0000000c00)=[0x1], 0x0, 0x10, 0x3}, 0x94)
pipe(&(0x7f0000000d00)={<r3=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x21c7d89aa5ddc213, 0x12, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff9ad6}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@btf_id={0x18, 0x9, 0x3, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0xd0}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x9, 0x4e, &(0x7f00000002c0)=""/78, 0x41000, 0x31, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0x8, 0x2}, 0x8, 0x10, &(0x7f00000003c0)={0x2, 0x3, 0x7, 0xfffff738}, 0x10, r1, r2, 0xa, &(0x7f0000000d40)=[r3], &(0x7f0000000d80)=[{0x4, 0x4, 0xe, 0xb}, {0x1, 0x2, 0xf, 0xa}, {0x2, 0x3, 0xd, 0x9}, {0x8, 0x4, 0xc}, {0x1, 0x3, 0x5}, {0x2, 0x2, 0x2, 0xb}, {0x3, 0x5, 0xd, 0x4}, {0x4, 0x2, 0x4, 0xb}, {0x1, 0x5, 0x5, 0xa}, {0x1, 0x2, 0xd, 0x6}], 0x10, 0xd02}, 0x94)
fsmount(0xffffffffffffffff, 0x1, 0xe)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000340)='system.posix_acl_access\x00', &(0x7f00000014c0)=ANY=[@ANYBLOB="0200000001000000000000000f000000000000000800000000000000080000000000000080b3bee92bd8a424a217d42c5d7e17d5821909d70fda92a829520171ea28b70cf6c1a3f3fdc20a80819ba12ed4e5dc8ef3ca4b13813bc33493edff0ffde4c97506fe893c4884a39f623eab30362109199d79fe2c437ea2492a2b331e13"], 0x24, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRESDEC=0x0, @ANYRES64, @ANYBLOB="d8ad4591aaac279c14b211b5b34726fdf292db8cb422ec33151e8ec5a5eebe07a02f18a3cd05f4c5c8f30f4f2e23c0d89b53eb0d2b9f08b54ee8bd1c2451d6147403dd249c16192c25493d175603df96a3e63fedfb58580ae128e603cd14462092ae81e0d7ea6219cb55b76abc9052cc477f9214c5e48bbc78b46aa2212e64634e77a9e8b6f68cee41a659b1388ceb7e4099f06e7d8b53de670acab4415c873b378db78651851aeaccf8ec71f9205c2629", @ANYRESDEC, @ANYRES8, @ANYRESHEX], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00'}, 0x10)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev(r4, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)
syz_open_dev$sg(&(0x7f0000001480), 0x3ff, 0x40)

18.222079ms ago: executing program 3 (id=918):
socket$inet(0x2, 0x3, 0x6)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(0xffffffffffffffff, 0x114, 0xa, 0x0, 0x4)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000010000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000100000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x35, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000140affffffff00000000000002000009080003400000000a0900010073797a30000000000c000640000000000000000214000000020a010100000000000000000000000a14000000110001"], 0x70}}, 0x0)

0s ago: executing program 4 (id=919):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0, 0x0, 0x3}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x801, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x62404}, [@IFLA_XDP={0x1c, 0x2b, 0x0, 0x1, [@IFLA_XDP_EXPECTED_FD={0x8, 0x8, r2}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x19}, @IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x44}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000900)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a3000000000680003806400dec6080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a0001006c696d69740000002400028008000440000000010c00024000000000000000000c0001400000000000000003"], 0x118}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000f00)=ANY=[@ANYRES64=0x0, @ANYBLOB="2944c739639200a9799900265ce1bc4e12213d54b5fc498c2cbd624288d4af05ddbcdca5fbb2dfbebd3f4a7adc042fc8464f50031afc5721ba2afde6225b0dab806898e7edde4ba628156fbf127195eabe25734b499f3c9c", @ANYRES64=0x0], 0x1, 0x296, &(0x7f0000000740)="$eJzs3U9qU0EcB/Bf0rSJ3SSgK+nigRs3hqY3CFJBDAiRLOoqwbYgTSikENCF7c67uPIO3sBjeAGzKETSF03SxuK/+jT5fCDMD+Z9YSaLzCxm8tpbvaP945PDvdufolRKohBx9v48IiIfa5F68CFt1yMiFxsx6ywAgP9Ns9mpZz0Gbla/X++M927FKz2td5kMCAAAAAAAAAAAgN/W3ipeOf8fw4jKzPn/3KTNO/8PAEvB+f/l1+/XO5uT/ds85/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA7AxHo/Lomk/W4wMA/jzrPwCsHus/AKye4dxanwvrPwAsv2d7z5/UG43dZpKUInpvB61BK23T/vphvIxuHMR2lOM8xvuDibR+9Lixu51cqES7dzrJnw5aa/P5WpSjsjhfS/PJfH49NmfzO1GOO4vzOwvzG3H/XkT+60SrUY6PL+I4urEf4+w0/6aWJA+fNi7lixfPAQAAAAAAAAAAAAAAAAAAwN9QTb5ZeH+/Wv1ef5r/if8HuHS/vhB3C9nOHQAAAAAAAAAAAAAAAAAAAP4VJ69eH3W63YP+wuLz5C7/dc8opsWtH/pWf60oRETmE1SsTJHxDxMAAAAAAAAAAAAAAAAAAKyg6aXfrEcCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANmZvv//5oqs5wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACshi8BAAD//2dk6nI=")

kernel console output (not intermixed with test programs):

r
[   42.427671][ T4236] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[   42.427829][ T4236] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.271: Invalid inode table block 0 in block_group 0
[   42.427939][ T4236] EXT4-fs (loop4): 1 truncate cleaned up
[   42.438441][ T4236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.446929][ T4257] loop1: detected capacity change from 0 to 1024
[   42.458106][ T4257] EXT4-fs (loop1): unsupported descriptor size 7
[   42.523313][ T4236] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.271: Invalid inode table block 0 in block_group 0
[   42.536339][ T4236] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.271: Invalid inode table block 0 in block_group 0
[   42.739934][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.192360][ T4283] loop2: detected capacity change from 0 to 128
[   43.201030][ T4284] netlink: 'syz.4.289': attribute type 8 has an invalid length.
[   43.235124][ T4289] loop4: detected capacity change from 0 to 512
[   43.253990][ T4289] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   43.272634][ T4289] EXT4-fs (loop4): 1 truncate cleaned up
[   43.278990][ T4289] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.328500][ T4299] loop3: detected capacity change from 0 to 1024
[   43.335503][ T4299] EXT4-fs: Ignoring removed bh option
[   43.355139][ T4289] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   43.405669][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.423206][ T4299] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.453235][ T4299] SELinux:  Context system_u:object_r:udev_var_run_t:s0 is not valid (left unmapped).
[   43.491479][ T4308] veth0_to_bridge: entered promiscuous mode
[   43.520554][ T4303] veth0_to_bridge: left promiscuous mode
[   43.590053][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.758320][ T4328] loop4: detected capacity change from 0 to 512
[   43.812092][ T4328] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.827283][ T4329] loop0: detected capacity change from 0 to 128
[   43.829968][ T4329] FAT-fs (loop0): Directory bread(block 162) failed
[   43.829993][ T4329] FAT-fs (loop0): Directory bread(block 163) failed
[   43.830045][ T4329] FAT-fs (loop0): Directory bread(block 164) failed
[   43.830062][ T4329] FAT-fs (loop0): Directory bread(block 165) failed
[   43.830078][ T4329] FAT-fs (loop0): Directory bread(block 166) failed
[   43.830258][ T4329] FAT-fs (loop0): Directory bread(block 167) failed
[   43.830276][ T4329] FAT-fs (loop0): Directory bread(block 168) failed
[   43.830350][ T4329] FAT-fs (loop0): Directory bread(block 169) failed
[   43.837361][ T4329] FAT-fs (loop0): Directory bread(block 162) failed
[   43.841334][ T4328] ext4 filesystem being mounted at /58/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.846860][ T4329] FAT-fs (loop0): Directory bread(block 163) failed
[   43.971363][ T4329] syz.0.303: attempt to access beyond end of device
[   43.971363][ T4329] loop0: rw=3, sector=226, nr_sectors = 6 limit=128
[   43.971396][ T4329] syz.0.303: attempt to access beyond end of device
[   43.971396][ T4329] loop0: rw=2051, sector=232, nr_sectors = 2 limit=128
[   43.988634][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.110597][ T4343] loop4: detected capacity change from 0 to 128
[   44.135058][ T4349] veth0_to_bridge: entered promiscuous mode
[   44.138550][ T4348] veth0_to_bridge: left promiscuous mode
[   44.275375][ T4347] loop0: detected capacity change from 0 to 2048
[   44.300232][ T4343] Driver unsupported XDP return value 0 on prog  (id 142) dev N/A, expect packet loss!
[   44.319508][  T167] kworker/u8:4: attempt to access beyond end of device
[   44.319508][  T167] loop4: rw=1, sector=145, nr_sectors = 8 limit=128
[   44.319547][  T167] kworker/u8:4: attempt to access beyond end of device
[   44.319547][  T167] loop4: rw=1, sector=161, nr_sectors = 8 limit=128
[   44.319705][  T167] kworker/u8:4: attempt to access beyond end of device
[   44.319705][  T167] loop4: rw=1, sector=177, nr_sectors = 8 limit=128
[   44.319741][  T167] kworker/u8:4: attempt to access beyond end of device
[   44.319741][  T167] loop4: rw=1, sector=193, nr_sectors = 8 limit=128
[   44.319771][  T167] kworker/u8:4: attempt to access beyond end of device
[   44.319771][  T167] loop4: rw=1, sector=209, nr_sectors = 8 limit=128
[   44.319822][  T167] kworker/u8:4: attempt to access beyond end of device
[   44.319822][  T167] loop4: rw=1, sector=225, nr_sectors = 8 limit=128
[   44.319857][  T167] kworker/u8:4: attempt to access beyond end of device
[   44.319857][  T167] loop4: rw=1, sector=241, nr_sectors = 8 limit=128
[   44.319894][  T167] kworker/u8:4: attempt to access beyond end of device
[   44.319894][  T167] loop4: rw=1, sector=257, nr_sectors = 8 limit=128
[   44.341333][ T3306] Alternate GPT is invalid, using primary GPT.
[   44.341530][ T3306]  loop0: p2 p3 p7
[   44.409119][ T4356] lo speed is unknown, defaulting to 1000
[   44.439878][   T29] kauditd_printk_skb: 654 callbacks suppressed
[   44.439894][   T29] audit: type=1400 audit(2000000004.410:2135): avc:  denied  { create } for  pid=4355 comm="syz.4.316" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[   44.444133][   T29] audit: type=1400 audit(2000000004.410:2136): avc:  denied  { sys_admin } for  pid=4355 comm="syz.4.316" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[   45.284944][ T4371] loop3: detected capacity change from 0 to 512
[   45.339468][   T29] audit: type=1326 audit(2000000005.290:2137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4372 comm="syz.0.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   45.362832][   T29] audit: type=1326 audit(2000000005.290:2138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4372 comm="syz.0.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   45.386198][   T29] audit: type=1326 audit(2000000005.300:2139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4372 comm="syz.0.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   45.409583][   T29] audit: type=1326 audit(2000000005.300:2140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4372 comm="syz.0.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   45.432899][   T29] audit: type=1326 audit(2000000005.300:2141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4372 comm="syz.0.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   45.456384][   T29] audit: type=1326 audit(2000000005.300:2142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4372 comm="syz.0.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   45.479710][   T29] audit: type=1326 audit(2000000005.300:2143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4372 comm="syz.0.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   45.503019][   T29] audit: type=1326 audit(2000000005.300:2144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4372 comm="syz.0.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   45.621074][ T4373] veth0_to_bridge: entered promiscuous mode
[   45.627794][ T4371] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.687483][ T4371] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.704127][ T4372] veth0_to_bridge: left promiscuous mode
[   45.784023][ T4382] veth0_to_bridge: entered promiscuous mode
[   45.808257][ T4386] __nla_validate_parse: 7 callbacks suppressed
[   45.808273][ T4386] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   45.822830][ T4386] netlink: 348 bytes leftover after parsing attributes in process `+}[@'.
[   45.822852][ T4386] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   45.839748][ T4386] netlink: 348 bytes leftover after parsing attributes in process `+}[@'.
[   45.859724][ T4381] veth0_to_bridge: left promiscuous mode
[   45.870498][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.870853][ T4386] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   45.907610][ T4386] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   45.940153][ T4393] netlink: 4 bytes leftover after parsing attributes in process `syz.3.328'.
[   45.940287][ T4393] netlink: 4 bytes leftover after parsing attributes in process `syz.3.328'.
[   46.175829][ T4421] loop0: detected capacity change from 0 to 128
[   46.177393][ T4421] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   46.177555][ T4421] ext4 filesystem being mounted at /55/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   46.188832][ T4419] siw: device registration error -23
[   46.250407][ T3320] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   46.526838][ T4435] netlink: 'syz.2.346': attribute type 33 has an invalid length.
[   46.526887][ T4435] netlink: 152 bytes leftover after parsing attributes in process `syz.2.346'.
[   46.658520][ T4452] netlink: 4 bytes leftover after parsing attributes in process `syz.0.351'.
[   46.706868][ T4452] netlink: 4 bytes leftover after parsing attributes in process `syz.0.351'.
[   46.770306][ T4464] loop0: detected capacity change from 0 to 512
[   46.793650][ T4464] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   46.798742][ T4466] loop4: detected capacity change from 0 to 512
[   46.829106][ T4469] loop1: detected capacity change from 0 to 128
[   46.836189][ T4466] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   46.849405][ T4469] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   46.909449][ T4469] ext4 filesystem being mounted at /79/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   47.003405][ T3317] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   47.005577][ T4474] binfmt_misc: register: failed to install interpreter file ./file2
[   47.045990][ T4474] mmap: syz.2.360 (4474) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   47.171379][ T4487] loop2: detected capacity change from 0 to 128
[   47.190913][ T4487] EXT4-fs: Ignoring removed nobh option
[   47.202783][ T4492] loop3: detected capacity change from 0 to 512
[   47.204236][ T4487] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   47.204449][ T4487] ext4 filesystem being mounted at /79/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   47.246705][ T3314] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   47.277915][ T4495] can0: slcan on ttyS3.
[   47.287680][ T4492] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.287791][ T4492] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.329735][ T4495] can0 (unregistered): slcan off ttyS3.
[   47.376312][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.380451][ T4489] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   47.409770][ T4489] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   47.430064][ T4506] pimreg: entered allmulticast mode
[   47.430643][ T4506] pimreg: left allmulticast mode
[   47.500057][ T4510] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4510 comm=syz.0.371
[   47.503147][ T4504] lo speed is unknown, defaulting to 1000
[   47.535576][ T4516] loop2: detected capacity change from 0 to 512
[   47.554830][ T4516] EXT4-fs: Ignoring removed i_version option
[   47.554856][ T4516] EXT4-fs: Ignoring removed bh option
[   47.622131][ T4516] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.622276][ T4516] ext4 filesystem being mounted at /84/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   47.656830][ T4516] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.784381][ T4528] loop0: detected capacity change from 0 to 512
[   47.792928][ T4528] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   47.971783][ T4530] loop2: detected capacity change from 0 to 512
[   48.006953][ T4530] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.089935][ T4541] loop4: detected capacity change from 0 to 128
[   48.119142][ T4541] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   48.150196][ T4541] ext4 filesystem being mounted at /72/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   48.197419][ T4551] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   48.380367][ T3316] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   48.421529][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.630677][ T4582] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   48.710409][ T4532] syz.1.380 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   48.710495][ T4532] CPU: 1 UID: 0 PID: 4532 Comm: syz.1.380 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   48.710532][ T4532] Tainted: [W]=WARN
[   48.710540][ T4532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   48.710555][ T4532] Call Trace:
[   48.710601][ T4532]  <TASK>
[   48.710609][ T4532]  __dump_stack+0x1d/0x30
[   48.710632][ T4532]  dump_stack_lvl+0xe8/0x140
[   48.710656][ T4532]  dump_stack+0x15/0x1b
[   48.710677][ T4532]  dump_header+0x81/0x220
[   48.710698][ T4532]  oom_kill_process+0x342/0x400
[   48.710803][ T4532]  out_of_memory+0x979/0xb80
[   48.710840][ T4532]  try_charge_memcg+0x610/0xa10
[   48.710910][ T4532]  obj_cgroup_charge_pages+0xa6/0x150
[   48.711016][ T4532]  __memcg_kmem_charge_page+0x9f/0x170
[   48.711071][ T4532]  __alloc_frozen_pages_noprof+0x188/0x360
[   48.711097][ T4532]  alloc_pages_mpol+0xb3/0x260
[   48.711120][ T4532]  ? alloc_pages_noprof+0x61/0x130
[   48.711191][ T4532]  alloc_pages_noprof+0x90/0x130
[   48.711215][ T4532]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   48.711263][ T4532]  __kvmalloc_node_noprof+0x483/0x670
[   48.711324][ T4532]  ? ip_set_alloc+0x24/0x30
[   48.711429][ T4532]  ? ip_set_alloc+0x24/0x30
[   48.711554][ T4532]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   48.711655][ T4532]  ip_set_alloc+0x24/0x30
[   48.711783][ T4532]  hash_netiface_create+0x282/0x740
[   48.711835][ T4532]  ? __pfx_hash_netiface_create+0x10/0x10
[   48.711900][ T4532]  ip_set_create+0x3cc/0x970
[   48.711943][ T4532]  ? __nla_parse+0x40/0x60
[   48.712008][ T4532]  nfnetlink_rcv_msg+0x4c6/0x590
[   48.712058][ T4532]  netlink_rcv_skb+0x123/0x220
[   48.712097][ T4532]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   48.712171][ T4532]  nfnetlink_rcv+0x167/0x16c0
[   48.712201][ T4532]  ? kmem_cache_free+0xe4/0x3d0
[   48.712238][ T4532]  ? __kfree_skb+0x109/0x150
[   48.712273][ T4532]  ? nlmon_xmit+0x4f/0x60
[   48.712335][ T4532]  ? consume_skb+0x49/0x150
[   48.712417][ T4532]  ? nlmon_xmit+0x4f/0x60
[   48.712443][ T4532]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   48.712545][ T4532]  ? __dev_queue_xmit+0x1200/0x2000
[   48.712565][ T4532]  ? __dev_queue_xmit+0x182/0x2000
[   48.712587][ T4532]  ? ref_tracker_free+0x37d/0x3e0
[   48.712675][ T4532]  ? __netlink_deliver_tap+0x4dc/0x500
[   48.712717][ T4532]  netlink_unicast+0x5c0/0x690
[   48.712754][ T4532]  netlink_sendmsg+0x58b/0x6b0
[   48.712777][ T4532]  ? __pfx_netlink_sendmsg+0x10/0x10
[   48.712874][ T4532]  __sock_sendmsg+0x145/0x180
[   48.712902][ T4532]  ____sys_sendmsg+0x31e/0x4e0
[   48.712948][ T4532]  ___sys_sendmsg+0x17b/0x1d0
[   48.712980][ T4532]  __x64_sys_sendmsg+0xd4/0x160
[   48.713013][ T4532]  x64_sys_call+0x191e/0x3000
[   48.713040][ T4532]  do_syscall_64+0xd2/0x200
[   48.713064][ T4532]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   48.713097][ T4532]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   48.713173][ T4532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.713250][ T4532] RIP: 0033:0x7faab0acf6c9
[   48.713267][ T4532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.713289][ T4532] RSP: 002b:00007faaaf537038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   48.713373][ T4532] RAX: ffffffffffffffda RBX: 00007faab0d25fa0 RCX: 00007faab0acf6c9
[   48.713387][ T4532] RDX: 0000000000000800 RSI: 0000200000000200 RDI: 0000000000000006
[   48.713401][ T4532] RBP: 00007faab0b51f91 R08: 0000000000000000 R09: 0000000000000000
[   48.713415][ T4532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   48.713491][ T4532] R13: 00007faab0d26038 R14: 00007faab0d25fa0 R15: 00007ffdb3cf9408
[   48.713511][ T4532]  </TASK>
[   48.713518][ T4532] memory: usage 307200kB, limit 307200kB, failcnt 566
[   49.081202][ T4532] memory+swap: usage 307288kB, limit 9007199254740988kB, failcnt 0
[   49.081218][ T4532] kmem: usage 306988kB, limit 9007199254740988kB, failcnt 0
[   49.081236][ T4532] Memory cgroup stats for /syz1:
[   49.184813][ T4532] cache 69632
[   49.193113][ T4532] rss 0
[   49.193174][ T4532] shmem 0
[   49.193181][ T4532] mapped_file 0
[   49.193188][ T4532] dirty 0
[   49.193194][ T4532] writeback 0
[   49.208736][ T4532] workingset_refault_anon 247
[   49.208748][ T4532] workingset_refault_file 1257
[   49.208757][ T4532] swap 212992
[   49.208765][ T4532] swapcached 4096
[   49.208778][ T4532] pgpgin 22526
[   49.208785][ T4532] pgpgout 22508
[   49.208791][ T4532] pgfault 28960
[   49.208798][ T4532] pgmajfault 186
[   49.208805][ T4532] inactive_anon 4096
[   49.208814][ T4532] active_anon 0
[   49.208822][ T4532] inactive_file 61440
[   49.208831][ T4532] active_file 4096
[   49.208840][ T4532] unevictable 0
[   49.208849][ T4532] hierarchical_memory_limit 314572800
[   49.208910][ T4532] hierarchical_memsw_limit 9223372036854771712
[   49.208920][ T4532] total_cache 69632
[   49.208927][ T4532] total_rss 0
[   49.208933][ T4532] total_shmem 0
[   49.208940][ T4532] total_mapped_file 0
[   49.208947][ T4532] total_dirty 0
[   49.208954][ T4532] total_writeback 0
[   49.208961][ T4532] total_workingset_refault_anon 247
[   49.209019][ T4532] total_workingset_refault_file 1257
[   49.209029][ T4532] total_swap 212992
[   49.209038][ T4532] total_swapcached 4096
[   49.209047][ T4532] total_pgpgin 22526
[   49.209056][ T4532] total_pgpgout 22508
[   49.209065][ T4532] total_pgfault 28960
[   49.209074][ T4532] total_pgmajfault 186
[   49.209083][ T4532] total_inactive_anon 4096
[   49.209092][ T4532] total_active_anon 0
[   49.209101][ T4532] total_inactive_file 61440
[   49.209111][ T4532] total_active_file 4096
[   49.209150][ T4532] total_unevictable 0
[   49.209159][ T4532] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.380,pid=4531,uid=0
[   49.209279][ T4532] Memory cgroup out of memory: Killed process 4531 (syz.1.380) total-vm:94088kB, anon-rss:1264kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   49.217730][ T4587] loop4: detected capacity change from 0 to 512
[   49.248637][ T4587] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   49.423560][ T4587] EXT4-fs (loop4): orphan cleanup on readonly fs
[   49.436908][ T4587] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #16: comm syz.4.401: corrupted inode contents
[   49.454708][   T29] kauditd_printk_skb: 217 callbacks suppressed
[   49.454728][   T29] audit: type=1400 audit(2000000009.420:2362): avc:  denied  { sqpoll } for  pid=4595 comm="syz.0.404" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   49.485973][   T29] audit: type=1400 audit(2000000009.450:2363): avc:  denied  { mount } for  pid=4595 comm="syz.0.404" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   49.509656][ T4587] EXT4-fs (loop4): Remounting filesystem read-only
[   49.516293][ T4587] EXT4-fs (loop4): 1 truncate cleaned up
[   49.524758][  T177] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   49.535461][  T177] Quota error (device loop4): write_blk: dquota write failed
[   49.542955][  T177] Quota error (device loop4): remove_free_dqentry: Can't write block (5) with free entries
[   49.544553][   T29] audit: type=1326 audit(2000000009.520:2364): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4595 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   49.553057][  T177] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   49.553078][  T177] Quota error (device loop4): write_blk: dquota write failed
[   49.553092][  T177] Quota error (device loop4): free_dqentry: Can't move quota data block (5) to free list
[   49.589436][  T177] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[   49.595728][   T29] audit: type=1326 audit(2000000009.550:2365): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4595 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   49.604597][  T177] Quota error (device loop4): v2_write_file_info: Can't write info structure
[   49.621039][   T29] audit: type=1326 audit(2000000009.590:2366): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4595 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71c2bff6c9 code=0x7ffc0000
[   49.671875][ T4587] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   49.684734][ T4587] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.692197][ T4596] loop0: detected capacity change from 0 to 512
[   49.720566][ T4596] msdos: Unknown parameter 'cheQk'
[   49.771970][ T4587] lo speed is unknown, defaulting to 1000
[   49.945746][ T4624] veth0_to_bridge: entered promiscuous mode
[   49.951994][ T4618] lo speed is unknown, defaulting to 1000
[   49.958141][ T4622] veth0_to_team: entered allmulticast mode
[   49.976360][ T4623] veth0_to_bridge: left promiscuous mode
[   50.056515][ T4633] FAULT_INJECTION: forcing a failure.
[   50.056515][ T4633] name failslab, interval 1, probability 0, space 0, times 1
[   50.056557][ T4633] CPU: 0 UID: 0 PID: 4633 Comm: GPL Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   50.056585][ T4633] Tainted: [W]=WARN
[   50.056599][ T4633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   50.056611][ T4633] Call Trace:
[   50.056618][ T4633]  <TASK>
[   50.056625][ T4633]  __dump_stack+0x1d/0x30
[   50.056652][ T4633]  dump_stack_lvl+0xe8/0x140
[   50.056677][ T4633]  dump_stack+0x15/0x1b
[   50.056699][ T4633]  should_fail_ex+0x265/0x280
[   50.056735][ T4633]  ? percpu_ref_init+0x9c/0x250
[   50.056809][ T4633]  should_failslab+0x8c/0xb0
[   50.056882][ T4633]  ? __pfx_io_ring_ctx_ref_free+0x10/0x10
[   50.056964][ T4633]  __kmalloc_cache_noprof+0x4c/0x4a0
[   50.057001][ T4633]  ? __pfx_io_ring_ctx_ref_free+0x10/0x10
[   50.057031][ T4633]  percpu_ref_init+0x9c/0x250
[   50.057091][ T4633]  io_ring_ctx_alloc+0x1b4/0x670
[   50.057119][ T4633]  io_uring_create+0x134/0x630
[   50.057148][ T4633]  __se_sys_io_uring_setup+0x1f7/0x210
[   50.057187][ T4633]  __x64_sys_io_uring_setup+0x31/0x40
[   50.057285][ T4633]  x64_sys_call+0x2b25/0x3000
[   50.057310][ T4633]  do_syscall_64+0xd2/0x200
[   50.057330][ T4633]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   50.057364][ T4633]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   50.057439][ T4633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.057461][ T4633] RIP: 0033:0x7efd0e54f6c9
[   50.057478][ T4633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.057500][ T4633] RSP: 002b:00007efd0cfaf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[   50.057584][ T4633] RAX: ffffffffffffffda RBX: 00007efd0e7a5fa0 RCX: 00007efd0e54f6c9
[   50.057599][ T4633] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 00000000000071b7
[   50.057614][ T4633] RBP: 00007efd0cfaf090 R08: 0000000000000000 R09: 0000000000000000
[   50.057629][ T4633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.057644][ T4633] R13: 00007efd0e7a6038 R14: 00007efd0e7a5fa0 R15: 00007ffdbd185eb8
[   50.057665][ T4633]  </TASK>
[   50.386895][ T4655] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   50.522313][ T4659] loop2: detected capacity change from 0 to 128
[   50.688732][ T4664] loop3: detected capacity change from 0 to 512
[   50.695593][ T4666] hub 9-0:1.0: USB hub found
[   50.695968][ T4666] hub 9-0:1.0: 8 ports detected
[   50.703074][ T4664] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   50.703166][ T4664] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 not in group (block 1539)!
[   50.703187][ T4664] EXT4-fs (loop3): group descriptors corrupted!
[   50.820475][ T4683] __nla_validate_parse: 13 callbacks suppressed
[   50.820551][ T4683] netlink: 4 bytes leftover after parsing attributes in process `syz.3.437'.
[   51.104729][ T4696] loop3: detected capacity change from 0 to 8192
[   51.112093][ T4696] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   51.123746][ T4696] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[   51.132592][ T4696] FAT-fs (loop3): Filesystem has been set read-only
[   51.289495][ T4707] netlink: 8 bytes leftover after parsing attributes in process `syz.2.442'.
[   51.298394][ T4707] netlink: 8 bytes leftover after parsing attributes in process `syz.2.442'.
[   51.486768][ T4712] loop3: detected capacity change from 0 to 512
[   51.518729][ T4716] netlink: 4 bytes leftover after parsing attributes in process `syz.0.446'.
[   51.532647][ T4715] netlink: 12 bytes leftover after parsing attributes in process `syz.4.447'.
[   51.543057][ T4712] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   51.557533][ T4716] netlink: 4 bytes leftover after parsing attributes in process `syz.0.446'.
[   51.672518][ T4724] loop0: detected capacity change from 0 to 512
[   51.683408][ T4724] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.683503][ T4724] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.749516][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.774770][ T4734] IPv6: Can't replace route, no match found
[   51.936040][ T4742] loop3: detected capacity change from 0 to 128
[   51.941897][ T4742] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   51.974323][ T4742] ext4 filesystem being mounted at /84/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   52.054655][ T4751] netlink: 12 bytes leftover after parsing attributes in process `syz.0.459'.
[   52.060470][ T3313] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   52.100393][ T4756] SELinux:  policydb version 0 does not match my version range 15-35
[   52.130996][ T4756] SELinux: failed to load policy
[   52.144164][ T4760] loop2: detected capacity change from 0 to 1024
[   52.144797][ T4760] EXT4-fs: Ignoring removed nomblk_io_submit option
[   52.163631][ T4760] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e041c01c, mo2=0002]
[   52.191700][ T4760] System zones: 0-1, 3-36
[   52.238629][ T4760] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.345455][ T4779] capability: warning: `syz.2.462' uses deprecated v2 capabilities in a way that may be insecure
[   52.372008][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.388911][ T4782] netlink: 96 bytes leftover after parsing attributes in process `syz.0.467'.
[   52.403283][ T4784] netlink: 'syz.2.469': attribute type 4 has an invalid length.
[   52.413416][ T4784] netlink: 'syz.2.469': attribute type 4 has an invalid length.
[   52.437651][ T4784] netlink: 'syz.2.469': attribute type 4 has an invalid length.
[   52.475403][ T4789] netlink: 12 bytes leftover after parsing attributes in process `syz.2.471'.
[   52.506387][ T4795] loop2: detected capacity change from 0 to 512
[   52.553826][ T4804] netlink: 4 bytes leftover after parsing attributes in process `syz.0.477'.
[   52.565253][ T4805] loop1: detected capacity change from 0 to 512
[   52.575344][ T4795] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.578979][ T4805] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   52.604740][ T4795] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.622678][ T4805] EXT4-fs (loop1): 1 truncate cleaned up
[   52.641512][ T4805] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.673029][ T4814] loop3: detected capacity change from 0 to 512
[   52.695271][ T4814] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.708826][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.717892][ T4814] ext4 filesystem being mounted at /91/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   52.730739][ T4814] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.479: corrupted inode contents
[   52.747950][ T4814] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.479: mark_inode_dirty error
[   52.759671][ T4814] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.479: corrupted inode contents
[   52.771972][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.781349][ T4821] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.479: corrupted inode contents
[   52.793921][ T4821] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.479: mark_inode_dirty error
[   52.818685][ T4821] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.479: corrupted inode contents
[   52.835618][ T4823] pimreg: tun_chr_ioctl cmd 1074025673
[   52.844334][ T4823] pimreg: tun_chr_ioctl cmd 1074812117
[   52.862603][ T4821] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.479: mark_inode_dirty error
[   52.916931][ T4821] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.479: corrupted inode contents
[   52.917070][ T4821] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.479: mark_inode_dirty error
[   52.917909][ T4833] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.479: corrupted inode contents
[   53.017888][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.071518][ T4846] futex_wake_op: syz.3.491 tries to shift op by -1; fix this program
[   53.072981][ T4846] random: crng reseeded on system resumption
[   53.081018][ T4846] Restarting kernel threads ...
[   53.085108][ T4846] Done restarting kernel threads.
[   53.116626][ T4842] loop0: detected capacity change from 0 to 8192
[   53.135714][ T3306]  loop0: p1 < > p2 < > p3 p4 < >
[   53.173893][ T3306] loop0: partition table partially beyond EOD, truncated
[   53.188027][ T3306] loop0: p1 start 67108864 is beyond EOD, truncated
[   53.189087][ T3306] loop0: p3 start 100859904 is beyond EOD, truncated
[   53.200794][ T4842]  loop0: p1 < > p2 < > p3 p4 < >
[   53.200807][ T4842] loop0: partition table partially beyond EOD, truncated
[   53.200864][ T4842] loop0: p1 start 67108864 is beyond EOD, truncated
[   53.201486][ T4842] loop0: p3 start 100859904 is beyond EOD, truncated
[   53.320803][ T4857] macvtap0: refused to change device tx_queue_len
[   53.323482][ T4846] loop3: detected capacity change from 0 to 512
[   53.337989][ T4846] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   53.345582][ T4846] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #17: comm syz.3.491: corrupted in-inode xattr: invalid size in ea xattr
[   53.346484][ T4846] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.491: couldn't read orphan inode 17 (err -117)
[   53.356464][ T4846] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.436785][ T4867] loop0: detected capacity change from 0 to 512
[   53.475362][ T4867] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.475423][ T4867] ext4 filesystem being mounted at /99/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.525050][ T4871] loop1: detected capacity change from 0 to 1024
[   53.525768][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.551624][ T4871] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.599858][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.612943][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.662246][ T4881] veth0_to_bridge: entered promiscuous mode
[   53.663719][ T4880] veth0_to_bridge: left promiscuous mode
[   53.816031][ T4894] can0: slcan on ptm0.
[   53.829337][ T4887] loop3: detected capacity change from 0 to 512
[   53.851762][ T4894] can0 (unregistered): slcan off ptm0.
[   53.932802][ T4903] loop4: detected capacity change from 0 to 512
[   53.946067][ T4887] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   53.965944][ T4887] EXT4-fs (loop3): orphan cleanup on readonly fs
[   53.982383][ T4903] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.003107][ T4903] ext4 filesystem being mounted at /92/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   54.014291][ T4887] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #16: comm +}[@: corrupted inode contents
[   54.026338][ T4903] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.035814][ T4887] EXT4-fs (loop3): Remounting filesystem read-only
[   54.045070][ T4887] EXT4-fs (loop3): 1 truncate cleaned up
[   54.172073][ T4920] lo speed is unknown, defaulting to 1000
[   54.372292][   T42] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   54.382884][   T42] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   54.398708][   T42] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   54.409761][ T4887] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   54.424305][ T4887] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.460347][   T29] kauditd_printk_skb: 693 callbacks suppressed
[   54.460363][   T29] audit: type=1326 audit(2000000014.430:3053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.495326][ T4932] veth0_to_bridge: entered promiscuous mode
[   54.498310][   T29] audit: type=1326 audit(2000000014.430:3054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.524653][   T29] audit: type=1326 audit(2000000014.430:3055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.548010][   T29] audit: type=1326 audit(2000000014.430:3056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.571367][   T29] audit: type=1326 audit(2000000014.430:3057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.594827][   T29] audit: type=1326 audit(2000000014.430:3058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.618180][   T29] audit: type=1326 audit(2000000014.430:3059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.641692][   T29] audit: type=1326 audit(2000000014.430:3060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.665293][   T29] audit: type=1326 audit(2000000014.430:3061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.688716][   T29] audit: type=1326 audit(2000000014.430:3062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4889 comm="syz.0.506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f71c2c31f85 code=0x7ffc0000
[   54.730388][ T4931] veth0_to_bridge: left promiscuous mode
[   54.820037][ T4956] netlink: 'syz.1.518': attribute type 1 has an invalid length.
[   54.948453][ T4970] loop3: detected capacity change from 0 to 1024
[   55.041125][ T4970] ext4 filesystem being mounted at /98/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.248830][ T4970] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: comm syz.3.520: lblock 0 mapped to illegal pblock 0 (length 1)
[   55.401652][ T4970] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[   55.414263][ T4970] EXT4-fs (loop3): This should not happen!! Data will be lost
[   55.414263][ T4970] 
[   55.430958][ T4991] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: comm syz.3.520: lblock 0 mapped to illegal pblock 0 (length 1)
[   55.447968][ T4970] xt_hashlimit: max too large, truncated to 1048576
[   55.529169][ T5002] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   55.540005][ T5002] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   55.627881][ T5013] wg2: entered promiscuous mode
[   55.632958][ T5013] wg2: entered allmulticast mode
[   56.012832][ T5033] loop2: detected capacity change from 0 to 2048
[   56.093299][ T5033] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   56.093587][ T5033] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 914 with error 28
[   56.093671][ T5033] EXT4-fs (loop2): This should not happen!! Data will be lost
[   56.093671][ T5033] 
[   56.130540][ T5033] EXT4-fs (loop2): Total free blocks count 0
[   56.130559][ T5033] EXT4-fs (loop2): Free/Dirty block details
[   56.130571][ T5033] EXT4-fs (loop2): free_blocks=2415919104
[   56.130664][ T5033] EXT4-fs (loop2): dirty_blocks=928
[   56.130676][ T5033] EXT4-fs (loop2): Block reservation details
[   56.130689][ T5033] EXT4-fs (loop2): i_reserved_data_blocks=58
[   56.151833][ T5041] loop4: detected capacity change from 0 to 128
[   56.182473][ T5041] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[   56.186767][ T5041] FAT-fs (loop4): error, invalid FAT chain (i_pos 548, last_block 8)
[   56.199871][ T5041] FAT-fs (loop4): Filesystem has been set read-only
[   56.209655][ T5041] FAT-fs (loop4): error, corrupted file size (i_pos 548, 522)
[   56.210027][ T5033] __nla_validate_parse: 5 callbacks suppressed
[   56.210041][ T5033] netlink: 28 bytes leftover after parsing attributes in process `syz.2.543'.
[   56.210059][ T5033] netlink: 28 bytes leftover after parsing attributes in process `syz.2.543'.
[   56.210074][ T5033] netlink: 32 bytes leftover after parsing attributes in process `syz.2.543'.
[   56.253456][ T5043] loop4: detected capacity change from 0 to 1024
[   56.262919][ T5043] EXT4-fs (loop4): unsupported descriptor size 7
[   56.301986][  T167] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   56.302028][  T167] EXT4-fs (loop2): This should not happen!! Data will be lost
[   56.302028][  T167] 
[   56.539487][ T5059] FAULT_INJECTION: forcing a failure.
[   56.539487][ T5059] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.552634][ T5059] CPU: 0 UID: 0 PID: 5059 Comm: syz.2.552 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   56.552686][ T5059] Tainted: [W]=WARN
[   56.552693][ T5059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   56.552705][ T5059] Call Trace:
[   56.552712][ T5059]  <TASK>
[   56.552721][ T5059]  __dump_stack+0x1d/0x30
[   56.552747][ T5059]  dump_stack_lvl+0xe8/0x140
[   56.552812][ T5059]  dump_stack+0x15/0x1b
[   56.552834][ T5059]  should_fail_ex+0x265/0x280
[   56.552858][ T5059]  should_fail+0xb/0x20
[   56.552877][ T5059]  should_fail_usercopy+0x1a/0x20
[   56.552978][ T5059]  _copy_to_user+0x20/0xa0
[   56.553005][ T5059]  simple_read_from_buffer+0xb5/0x130
[   56.553068][ T5059]  proc_fail_nth_read+0x10e/0x150
[   56.553107][ T5059]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   56.553153][ T5059]  vfs_read+0x1a8/0x770
[   56.553183][ T5059]  ? __rcu_read_unlock+0x4f/0x70
[   56.553215][ T5059]  ? __fget_files+0x184/0x1c0
[   56.553332][ T5059]  ksys_read+0xda/0x1a0
[   56.553421][ T5059]  __x64_sys_read+0x40/0x50
[   56.553453][ T5059]  x64_sys_call+0x27c0/0x3000
[   56.553519][ T5059]  do_syscall_64+0xd2/0x200
[   56.553540][ T5059]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   56.553571][ T5059]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   56.553641][ T5059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.553667][ T5059] RIP: 0033:0x7efd0e54e0dc
[   56.553749][ T5059] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   56.553787][ T5059] RSP: 002b:00007efd0cfaf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   56.553809][ T5059] RAX: ffffffffffffffda RBX: 00007efd0e7a5fa0 RCX: 00007efd0e54e0dc
[   56.553825][ T5059] RDX: 000000000000000f RSI: 00007efd0cfaf0a0 RDI: 0000000000000004
[   56.553881][ T5059] RBP: 00007efd0cfaf090 R08: 0000000000000000 R09: 0000000000000000
[   56.553893][ T5059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.553905][ T5059] R13: 00007efd0e7a6038 R14: 00007efd0e7a5fa0 R15: 00007ffdbd185eb8
[   56.553923][ T5059]  </TASK>
[   56.801441][ T5071] loop3: detected capacity change from 0 to 128
[   56.815503][ T5071] ext4 filesystem being mounted at /106/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   56.849819][ T5071] EXT4-fs error (device loop3): make_indexed_dir:2269: inode #2: block 20: comm syz.3.556: bad entry in directory: rec_len is smaller than minimal - offset=988, inode=128, rec_len=9, size=1000 fake=0
[   56.888654][ T5074] loop2: detected capacity change from 0 to 512
[   56.897834][ T5076] netlink: 4 bytes leftover after parsing attributes in process `syz.3.559'.
[   56.905572][ T5074] EXT4-fs: Ignoring removed orlov option
[   56.906952][ T5076] netlink: 4 bytes leftover after parsing attributes in process `syz.3.559'.
[   56.912397][ T5074] ext4: Unknown parameter 'permit_directio'
[   56.971678][ T5074] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   56.994484][ T5080] netlink: 4 bytes leftover after parsing attributes in process `syz.2.561'.
[   57.003749][ T5080] netlink: 4 bytes leftover after parsing attributes in process `syz.2.561'.
[   57.045077][ T5084] loop3: detected capacity change from 0 to 512
[   57.054333][ T5084] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   57.065415][ T5084] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.563: invalid indirect mapped block 2683928664 (level 1)
[   57.079931][ T5084] EXT4-fs (loop3): Remounting filesystem read-only
[   57.087283][ T5084] EXT4-fs (loop3): 1 truncate cleaned up
[   57.111017][ T5089] FAULT_INJECTION: forcing a failure.
[   57.111017][ T5089] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.124239][ T5089] CPU: 0 UID: 0 PID: 5089 Comm: syz.2.565 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   57.124273][ T5089] Tainted: [W]=WARN
[   57.124281][ T5089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   57.124295][ T5089] Call Trace:
[   57.124303][ T5089]  <TASK>
[   57.124311][ T5089]  __dump_stack+0x1d/0x30
[   57.124363][ T5089]  dump_stack_lvl+0xe8/0x140
[   57.124388][ T5089]  dump_stack+0x15/0x1b
[   57.124409][ T5089]  should_fail_ex+0x265/0x280
[   57.124480][ T5089]  should_fail+0xb/0x20
[   57.124498][ T5089]  should_fail_usercopy+0x1a/0x20
[   57.124545][ T5089]  _copy_from_user+0x1c/0xb0
[   57.124574][ T5089]  __sys_bpf+0x183/0x7c0
[   57.124692][ T5089]  __x64_sys_bpf+0x41/0x50
[   57.124725][ T5089]  x64_sys_call+0x2aee/0x3000
[   57.124748][ T5089]  do_syscall_64+0xd2/0x200
[   57.124770][ T5089]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   57.124856][ T5089]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   57.124898][ T5089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.124921][ T5089] RIP: 0033:0x7efd0e54f6c9
[   57.124937][ T5089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.125018][ T5089] RSP: 002b:00007efd0cfaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   57.125039][ T5089] RAX: ffffffffffffffda RBX: 00007efd0e7a5fa0 RCX: 00007efd0e54f6c9
[   57.125120][ T5089] RDX: 0000000000000094 RSI: 0000200000000380 RDI: 0000000000000005
[   57.125132][ T5089] RBP: 00007efd0cfaf090 R08: 0000000000000000 R09: 0000000000000000
[   57.125146][ T5089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.125158][ T5089] R13: 00007efd0e7a6038 R14: 00007efd0e7a5fa0 R15: 00007ffdbd185eb8
[   57.125217][ T5089]  </TASK>
[   57.337320][ T5093] loop4: detected capacity change from 0 to 1024
[   57.354019][ T5093] EXT4-fs (loop4): orphan cleanup on readonly fs
[   57.365458][ T5093] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.567: Failed to acquire dquot type 0
[   57.378099][ T5093] EXT4-fs (loop4): 1 truncate cleaned up
[   57.392294][ T5101] netlink: 'syz.2.569': attribute type 10 has an invalid length.
[   57.400867][ T5101] ipvlan0: entered allmulticast mode
[   57.406197][ T5101] veth0_vlan: entered allmulticast mode
[   57.413279][ T5101] team0: Device ipvlan0 failed to register rx_handler
[   57.422684][ T5101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.569'.
[   57.481711][ T5107] cgroup: No subsys list or none specified
[   57.620476][ T5120] x_tables: duplicate underflow at hook 1
[   57.638640][ T5123] loop2: detected capacity change from 0 to 512
[   57.649132][ T5123] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   57.822060][ T5128] loop4: detected capacity change from 0 to 512
[   57.831092][ T5128] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   57.856527][ T5128] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.582: Invalid block bitmap block 0 in block_group 0
[   57.870954][ T5128] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   57.895114][ T5128] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.582: attempt to clear invalid blocks 983261 len 1
[   57.909095][ T5128] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.582: Invalid inode table block 0 in block_group 0
[   57.913020][ T5134] loop2: detected capacity change from 0 to 128
[   57.922315][ T5128] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   57.930518][ T5134] EXT4-fs: Ignoring removed nobh option
[   57.938344][ T5128] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[   57.951889][ T5128] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.582: Invalid inode table block 0 in block_group 0
[   57.961377][ T5134] ext4 filesystem being mounted at /140/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   57.970594][ T5128] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   57.984524][ T5128] EXT4-fs error (device loop4): ext4_truncate:4637: inode #11: comm syz.4.582: mark_inode_dirty error
[   57.995810][ T5128] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[   58.004964][ T5128] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.582: Invalid inode table block 0 in block_group 0
[   58.019396][ T5128] EXT4-fs (loop4): 1 truncate cleaned up
[   58.041336][ T5128] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.582: Invalid inode table block 0 in block_group 0
[   58.054878][ T5128] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.582: Invalid inode table block 0 in block_group 0
[   58.364670][ T5151] lo speed is unknown, defaulting to 1000
[   58.452808][ T5158] loop2: detected capacity change from 0 to 512
[   58.506005][ T5164] loop2: detected capacity change from 0 to 512
[   58.512800][ T5164] EXT4-fs: Ignoring removed bh option
[   58.522873][ T5164] ext4 filesystem being mounted at /147/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.570049][ T5164] vhci_hcd: invalid port number 0
[   58.644108][ T5172] netlink: 48 bytes leftover after parsing attributes in process `syz.0.599'.
[   58.780443][ T5185] loop0: detected capacity change from 0 to 512
[   58.793286][ T5185] journal_path: Non-blockdev passed as './bus'
[   58.799530][ T5185] EXT4-fs: error: could not find journal device path
[   58.799678][ T5181] loop2: detected capacity change from 0 to 512
[   58.820576][ T5185] loop0: detected capacity change from 0 to 1024
[   58.830097][ T5181] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   58.840592][ T5185] EXT4-fs (loop0): orphan cleanup on readonly fs
[   58.847020][ T5185] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.605: bad orphan inode 26624
[   58.916565][ T5181] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.602: Invalid block bitmap block 0 in block_group 0
[   58.933520][ T5181] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   58.943109][ T5181] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #11: comm syz.2.602: attempt to clear invalid blocks 983261 len 1
[   58.961310][ T5181] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.602: Invalid inode table block 0 in block_group 0
[   58.974659][ T5181] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   58.984647][ T5181] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[   58.987373][ T5195] xt_cgroup: invalid path, errno=-2
[   58.994335][ T5181] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.602: Invalid inode table block 0 in block_group 0
[   59.012921][ T5181] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   59.075761][ T5181] EXT4-fs error (device loop2): ext4_truncate:4637: inode #11: comm syz.2.602: mark_inode_dirty error
[   59.092399][ T5181] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem
[   59.103068][ T5181] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.602: Invalid inode table block 0 in block_group 0
[   59.116292][ T5181] EXT4-fs (loop2): 1 truncate cleaned up
[   59.143748][ T5181] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.602: Invalid inode table block 0 in block_group 0
[   59.161430][ T5203] bridge_slave_0: left allmulticast mode
[   59.167085][ T5203] bridge_slave_0: left promiscuous mode
[   59.173886][ T5203] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.189207][ T5181] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.602: Invalid inode table block 0 in block_group 0
[   59.203620][ T5206] FAULT_INJECTION: forcing a failure.
[   59.203620][ T5206] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.216861][ T5206] CPU: 0 UID: 0 PID: 5206 Comm: syz.0.611 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   59.216894][ T5206] Tainted: [W]=WARN
[   59.216900][ T5206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   59.216919][ T5206] Call Trace:
[   59.216925][ T5206]  <TASK>
[   59.216932][ T5206]  __dump_stack+0x1d/0x30
[   59.217006][ T5206]  dump_stack_lvl+0xe8/0x140
[   59.217026][ T5206]  dump_stack+0x15/0x1b
[   59.217044][ T5206]  should_fail_ex+0x265/0x280
[   59.217064][ T5206]  should_fail+0xb/0x20
[   59.217080][ T5206]  should_fail_usercopy+0x1a/0x20
[   59.217167][ T5206]  _copy_from_iter+0xd2/0xe80
[   59.217253][ T5206]  ? __build_skb_around+0x1ab/0x200
[   59.217284][ T5206]  ? __alloc_skb+0x223/0x320
[   59.217376][ T5206]  netlink_sendmsg+0x471/0x6b0
[   59.217398][ T5206]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.217418][ T5206]  __sock_sendmsg+0x145/0x180
[   59.217444][ T5206]  ____sys_sendmsg+0x31e/0x4e0
[   59.217556][ T5206]  ___sys_sendmsg+0x17b/0x1d0
[   59.217586][ T5206]  __x64_sys_sendmsg+0xd4/0x160
[   59.217608][ T5206]  x64_sys_call+0x191e/0x3000
[   59.217631][ T5206]  do_syscall_64+0xd2/0x200
[   59.217725][ T5206]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   59.217754][ T5206]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   59.217789][ T5206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.217811][ T5206] RIP: 0033:0x7f71c2bff6c9
[   59.217827][ T5206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.217851][ T5206] RSP: 002b:00007f71c163e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.217922][ T5206] RAX: ffffffffffffffda RBX: 00007f71c2e56090 RCX: 00007f71c2bff6c9
[   59.217986][ T5206] RDX: 0000000004040084 RSI: 0000200000004bc0 RDI: 000000000000000a
[   59.217998][ T5206] RBP: 00007f71c163e090 R08: 0000000000000000 R09: 0000000000000000
[   59.218011][ T5206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.218023][ T5206] R13: 00007f71c2e56128 R14: 00007f71c2e56090 R15: 00007fff0d6ff638
[   59.218041][ T5206]  </TASK>
[   59.220236][ T5203] bridge_slave_1: left allmulticast mode
[   59.429736][ T5203] bridge_slave_1: left promiscuous mode
[   59.435462][ T5203] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.448142][ T5203] bond0: (slave bond_slave_0): Releasing backup interface
[   59.455465][ T5215] loop1: detected capacity change from 0 to 1024
[   59.466014][ T5215] EXT4-fs (loop1): unsupported descriptor size 7
[   59.472949][ T5203] bond0: (slave bond_slave_1): Releasing backup interface
[   59.490092][   T29] kauditd_printk_skb: 530 callbacks suppressed
[   59.490108][   T29] audit: type=1400 audit(2000000019.460:3589): avc:  denied  { mount } for  pid=5214 comm="syz.4.614" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   59.528847][ T5203] team0: Port device team_slave_0 removed
[   59.556646][   T29] audit: type=1326 audit(2000000019.510:3590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5213 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faab0acf6c9 code=0x7ffc0000
[   59.580079][   T29] audit: type=1326 audit(2000000019.510:3591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5213 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faab0acf6c9 code=0x7ffc0000
[   59.603418][   T29] audit: type=1326 audit(2000000019.510:3592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5213 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faab0acf6c9 code=0x7ffc0000
[   59.626810][   T29] audit: type=1326 audit(2000000019.510:3593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5213 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faab0acf6c9 code=0x7ffc0000
[   59.650170][   T29] audit: type=1326 audit(2000000019.510:3594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5213 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faab0acf6c9 code=0x7ffc0000
[   59.673474][   T29] audit: type=1326 audit(2000000019.510:3595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5213 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7faab0acdf10 code=0x7ffc0000
[   59.696766][   T29] audit: type=1400 audit(2000000019.520:3596): avc:  denied  { read } for  pid=5213 comm="syz.1.613" dev="nsfs" ino=4026532515 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   59.717885][   T29] audit: type=1400 audit(2000000019.520:3597): avc:  denied  { open } for  pid=5213 comm="syz.1.613" path="net:[4026532515]" dev="nsfs" ino=4026532515 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   59.741036][   T29] audit: type=1326 audit(2000000019.520:3598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5213 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7faab0ad0ef7 code=0x7ffc0000
[   59.766897][ T5203] team0: Port device team_slave_1 removed
[   59.773728][ T5203] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.781144][ T5203] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.793441][ T5203] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.800901][ T5203] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.812748][ T5203] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   59.831042][   T10] lo speed is unknown, defaulting to 1000
[   59.870345][ T3396] syz!: Port: 1 Link DOWN
[   59.895245][ T5234] bridge_slave_0: left allmulticast mode
[   59.901017][ T5234] bridge_slave_0: left promiscuous mode
[   59.906698][ T5234] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.918469][ T5234] bridge_slave_1: left allmulticast mode
[   59.924266][ T5234] bridge_slave_1: left promiscuous mode
[   59.930012][ T5234] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.951553][ T5234] bond0: (slave bond_slave_0): Releasing backup interface
[   59.961916][ T5234] bond0: (slave bond_slave_1): Releasing backup interface
[   59.975130][ T5234] team0: Port device team_slave_0 removed
[   59.992943][ T5234] team0: Port device team_slave_1 removed
[   60.006916][ T5234] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   60.014527][ T5234] batman_adv: batadv0: Removing interface: batadv_slave_0
[   60.024166][ T5234] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   60.031773][ T5234] batman_adv: batadv0: Removing interface: batadv_slave_1
[   60.057633][ T5252] netlink: 12 bytes leftover after parsing attributes in process `syz.3.626'.
[   60.076345][ T5234] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   60.124713][ T5253] loop0: detected capacity change from 0 to 512
[   60.131953][ T5253] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   60.144039][ T5253] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.627: Invalid block bitmap block 0 in block_group 0
[   60.157674][ T5260] loop3: detected capacity change from 0 to 128
[   60.157903][ T5253] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   60.174415][ T5260] FAT-fs (loop3): Directory bread(block 162) failed
[   60.181221][ T5260] FAT-fs (loop3): Directory bread(block 163) failed
[   60.181380][ T5257] loop2: detected capacity change from 0 to 512
[   60.187976][ T5253] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.627: attempt to clear invalid blocks 983261 len 1
[   60.207609][ T5260] FAT-fs (loop3): Directory bread(block 164) failed
[   60.207845][ T5257] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   60.214343][ T5253] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.627: Invalid inode table block 0 in block_group 0
[   60.229435][ T5260] FAT-fs (loop3): Directory bread(block 165) failed
[   60.238570][ T5253] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   60.244349][ T5257] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.629: Invalid block bitmap block 0 in block_group 0
[   60.254279][ T5253] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem
[   60.266291][ T5260] FAT-fs (loop3): Directory bread(block 166) failed
[   60.275009][ T5257] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   60.281514][ T5260] FAT-fs (loop3): Directory bread(block 167) failed
[   60.291085][ T5253] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.627: Invalid inode table block 0 in block_group 0
[   60.296663][ T5260] FAT-fs (loop3): Directory bread(block 168) failed
[   60.309970][ T5257] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #11: comm syz.2.629: attempt to clear invalid blocks 983261 len 1
[   60.315973][ T5260] FAT-fs (loop3): Directory bread(block 169) failed
[   60.328828][ T5257] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.629: Invalid inode table block 0 in block_group 0
[   60.348210][ T5257] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   60.348382][ T5253] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   60.364577][ T5260] FAT-fs (loop3): Directory bread(block 162) failed
[   60.368057][ T5253] EXT4-fs error (device loop0): ext4_truncate:4637: inode #11: comm syz.0.627: mark_inode_dirty error
[   60.374094][ T5260] FAT-fs (loop3): Directory bread(block 163) failed
[   60.385270][ T5257] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[   60.392635][ T5260] bio_check_eod: 104 callbacks suppressed
[   60.392648][ T5260] syz.3.630: attempt to access beyond end of device
[   60.392648][ T5260] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[   60.399854][ T5253] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem
[   60.406178][ T5260] syz.3.630: attempt to access beyond end of device
[   60.406178][ T5260] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[   60.441304][ T5253] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.627: Invalid inode table block 0 in block_group 0
[   60.441502][ T5257] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.629: Invalid inode table block 0 in block_group 0
[   60.470441][ T5257] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   60.475548][ T5266] loop1: detected capacity change from 0 to 512
[   60.480178][ T5257] EXT4-fs error (device loop2): ext4_truncate:4637: inode #11: comm syz.2.629: mark_inode_dirty error
[   60.489585][ T5253] EXT4-fs (loop0): 1 truncate cleaned up
[   60.497532][ T5257] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem
[   60.512757][ T5257] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.629: Invalid inode table block 0 in block_group 0
[   60.525805][ T5257] EXT4-fs (loop2): 1 truncate cleaned up
[   60.534039][ T5266] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.558086][ T5253] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.627: Invalid inode table block 0 in block_group 0
[   60.576142][ T5253] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.627: Invalid inode table block 0 in block_group 0
[   60.613971][ T5257] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.629: Invalid inode table block 0 in block_group 0
[   60.628057][ T5257] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.629: Invalid inode table block 0 in block_group 0
[   60.768408][ T5288] loop0: detected capacity change from 0 to 1024
[   60.785422][ T5288] EXT4-fs (loop0): unsupported descriptor size 7
[   60.815066][ T5292] loop4: detected capacity change from 0 to 512
[   60.860430][ T5292] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.922079][ T5302] loop2: detected capacity change from 0 to 164
[   61.031265][ T5302] lo speed is unknown, defaulting to 1000
[   61.067880][ T5312] 9pnet_fd: Insufficient options for proto=fd
[   61.069509][ T5312] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.069619][ T5312] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.073369][ T5313] loop3: detected capacity change from 0 to 512
[   61.077019][ T5313] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   61.090355][ T5313] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.648: Invalid block bitmap block 0 in block_group 0
[   61.090580][ T5313] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   61.090761][ T5313] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.648: attempt to clear invalid blocks 983261 len 1
[   61.090938][ T5313] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.648: Invalid inode table block 0 in block_group 0
[   61.091057][ T5313] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   61.091192][ T5313] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[   61.091299][ T5313] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.648: Invalid inode table block 0 in block_group 0
[   61.091387][ T5313] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   61.091555][ T5313] EXT4-fs error (device loop3): ext4_truncate:4637: inode #11: comm syz.3.648: mark_inode_dirty error
[   61.091728][ T5313] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[   61.091874][ T5313] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.648: Invalid inode table block 0 in block_group 0
[   61.092035][ T5313] EXT4-fs (loop3): 1 truncate cleaned up
[   61.116703][ T5313] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.648: Invalid inode table block 0 in block_group 0
[   61.117286][ T5313] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.648: Invalid inode table block 0 in block_group 0
[   61.120372][ T5315] netlink: 'syz.1.647': attribute type 1 has an invalid length.
[   61.706079][ T5332] ALSA: seq fatal error: cannot create timer (-19)
[   61.714014][ T5332] loop0: detected capacity change from 0 to 164
[   61.721715][ T5332] ISOFS: unable to read i-node block
[   61.727112][ T5332] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   61.743322][ T5332] __nla_validate_parse: 3 callbacks suppressed
[   61.743331][ T5332] netlink: 52 bytes leftover after parsing attributes in process `syz.0.655'.
[   61.853640][ T5338] loop4: detected capacity change from 0 to 512
[   62.093772][ T5359] netlink: 96 bytes leftover after parsing attributes in process `syz.4.663'.
[   62.149911][ T5361] @: renamed from vlan0 (while UP)
[   62.422744][ T5386] netlink: 8 bytes leftover after parsing attributes in process `syz.1.678'.
[   62.432135][ T5386] tmpfs: Bad value for 'mpol'
[   62.558970][ T5391] veth0_to_bridge: entered promiscuous mode
[   62.566725][ T5390] veth0_to_bridge: left promiscuous mode
[   62.610802][ T5389] lo speed is unknown, defaulting to 1000
[   62.660734][ T5396] loop0: detected capacity change from 0 to 512
[   62.667818][ T5396] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   63.124757][ T5418] loop3: detected capacity change from 0 to 512
[   63.310605][ T5435] loop3: detected capacity change from 0 to 128
[   63.380336][ T5441] netlink: 12 bytes leftover after parsing attributes in process `syz.1.699'.
[   63.407095][ T5445] loop1: detected capacity change from 0 to 512
[   63.442259][ T5450] netlink: 57 bytes leftover after parsing attributes in process `syz.4.702'.
[   63.602438][ T5461] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   63.669442][ T5458] lo speed is unknown, defaulting to 1000
[   63.884895][ T5474] netlink: 12 bytes leftover after parsing attributes in process `syz.3.711'.
[   63.939259][ T5481] loop0: detected capacity change from 0 to 512
[   63.968068][ T5470] lo speed is unknown, defaulting to 1000
[   64.128915][ T5493] netlink: 96 bytes leftover after parsing attributes in process `syz.2.717'.
[   64.442964][ T5509] vhci_hcd: default hub control req: 8013 v0000 i0000 l31125
[   64.451330][ T5509] loop2: detected capacity change from 0 to 7
[   64.499775][   T29] kauditd_printk_skb: 1330 callbacks suppressed
[   64.499791][   T29] audit: type=1400 audit(131.343:4929): avc:  denied  { read } for  pid=5511 comm="syz.1.726" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   64.528627][   T29] audit: type=1400 audit(131.343:4930): avc:  denied  { open } for  pid=5511 comm="syz.1.726" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   64.574060][ T5512] loop1: detected capacity change from 0 to 128
[   64.583781][ T5512] vfat: Unknown parameter '����01777777777777777777777�����"��	�����9����)&�7�ީ�V�1�Kg�����|sd�S:�����ӳ��W�@q�'�h��{Հ����4E>���#Nr���Rb�'
[   64.720762][   T29] audit: type=1400 audit(131.403:4931): avc:  denied  { ioctl } for  pid=5511 comm="syz.1.726" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   64.816153][ T5515] loop4: detected capacity change from 0 to 512
[   64.841576][   T29] audit: type=1400 audit(131.673:4932): avc:  denied  { create } for  pid=5516 comm="syz.3.728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   64.861590][   T29] audit: type=1400 audit(131.673:4933): avc:  denied  { allowed } for  pid=5516 comm="syz.3.728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   64.880311][   T29] audit: type=1400 audit(131.673:4934): avc:  denied  { create } for  pid=5516 comm="syz.3.728" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   64.915359][   T29] audit: type=1400 audit(131.743:4935): avc:  denied  { create } for  pid=5519 comm="syz.1.729" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   64.940916][   T29] audit: type=1400 audit(131.783:4936): avc:  denied  { create } for  pid=5522 comm="syz.0.730" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   64.959822][   T29] audit: type=1400 audit(131.783:4937): avc:  denied  { setopt } for  pid=5522 comm="syz.0.730" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   64.980568][   T29] audit: type=1400 audit(131.824:4938): avc:  denied  { mount } for  pid=5514 comm="syz.4.727" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   65.084870][ T5523] netlink: 40 bytes leftover after parsing attributes in process `syz.0.730'.
[   65.112352][ T5533] loop4: detected capacity change from 0 to 128
[   65.132434][ T5533] msdos: Bad value for 'gid'
[   65.137219][ T5533] msdos: Bad value for 'gid'
[   65.182988][ T5537] veth0_to_bridge: entered promiscuous mode
[   65.192958][ T5536] veth0_to_bridge: left promiscuous mode
[   65.277015][ T5544] loop2: detected capacity change from 0 to 512
[   65.365992][ T5548] loop1: detected capacity change from 0 to 512
[   65.372824][ T5548] EXT4-fs: inline encryption not supported
[   65.378976][ T5548] EXT4-fs: Ignoring removed orlov option
[   65.385337][ T5548] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   65.410240][ T5548] EXT4-fs (loop1): 1 truncate cleaned up
[   65.458965][ T5553] loop4: detected capacity change from 0 to 512
[   65.469077][ T5548] FAULT_INJECTION: forcing a failure.
[   65.469077][ T5548] name failslab, interval 1, probability 0, space 0, times 0
[   65.481762][ T5548] CPU: 1 UID: 0 PID: 5548 Comm: syz.1.740 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   65.481795][ T5548] Tainted: [W]=WARN
[   65.481802][ T5548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   65.481893][ T5548] Call Trace:
[   65.481899][ T5548]  <TASK>
[   65.481905][ T5548]  __dump_stack+0x1d/0x30
[   65.481928][ T5548]  dump_stack_lvl+0xe8/0x140
[   65.481948][ T5548]  dump_stack+0x15/0x1b
[   65.482024][ T5548]  should_fail_ex+0x265/0x280
[   65.482043][ T5548]  should_failslab+0x8c/0xb0
[   65.482075][ T5548]  __kmalloc_cache_node_noprof+0x54/0x4a0
[   65.482115][ T5548]  ? alloc_fair_sched_group+0x1a3/0x250
[   65.482185][ T5548]  alloc_fair_sched_group+0x1a3/0x250
[   65.482213][ T5548]  sched_create_group+0x37/0x80
[   65.482248][ T5548]  cpu_cgroup_css_alloc+0xe/0x40
[   65.482315][ T5548]  cgroup_apply_control_enable+0x200/0xa30
[   65.482351][ T5548]  cgroup_apply_control+0x33/0x410
[   65.482423][ T5548]  ? __pfx_autoremove_wake_function+0x10/0x10
[   65.482448][ T5548]  ? cgroup_kn_lock_live+0x130/0x1e0
[   65.482489][ T5548]  cgroup_subtree_control_write+0x7d5/0xb80
[   65.482530][ T5548]  ? __pfx_cgroup_subtree_control_write+0x10/0x10
[   65.482576][ T5548]  cgroup_file_write+0x197/0x350
[   65.482647][ T5548]  ? __pfx_cgroup_file_write+0x10/0x10
[   65.482685][ T5548]  kernfs_fop_write_iter+0x1eb/0x300
[   65.482787][ T5548]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   65.482840][ T5548]  vfs_write+0x52a/0x960
[   65.482885][ T5548]  ksys_write+0xda/0x1a0
[   65.482912][ T5548]  __x64_sys_write+0x40/0x50
[   65.482944][ T5548]  x64_sys_call+0x2802/0x3000
[   65.482979][ T5548]  do_syscall_64+0xd2/0x200
[   65.483000][ T5548]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   65.483101][ T5548]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   65.483179][ T5548]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.483204][ T5548] RIP: 0033:0x7faab0acf6c9
[   65.483222][ T5548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.483244][ T5548] RSP: 002b:00007faaaf537038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   65.483283][ T5548] RAX: ffffffffffffffda RBX: 00007faab0d25fa0 RCX: 00007faab0acf6c9
[   65.483296][ T5548] RDX: 0000000000000005 RSI: 00002000000001c0 RDI: 0000000000000008
[   65.483315][ T5548] RBP: 00007faaaf537090 R08: 0000000000000000 R09: 0000000000000000
[   65.483330][ T5548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.483345][ T5548] R13: 00007faab0d26038 R14: 00007faab0d25fa0 R15: 00007ffdb3cf9408
[   65.483367][ T5548]  </TASK>
[   65.777462][ T5560] netlink: 28 bytes leftover after parsing attributes in process `syz.3.744'.
[   65.786391][ T5560] netlink: 28 bytes leftover after parsing attributes in process `syz.3.744'.
[   66.293333][ T5591] loop1: detected capacity change from 0 to 512
[   66.580763][ T5591] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   66.588855][ T5591] EXT4-fs (loop1): orphan cleanup on readonly fs
[   66.599396][ T5591] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #16: comm +}[@: corrupted inode contents
[   66.615378][ T5591] EXT4-fs (loop1): Remounting filesystem read-only
[   66.622082][ T5591] EXT4-fs (loop1): 1 truncate cleaned up
[   66.628170][  T167] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   66.638827][  T167] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   66.656524][  T167] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   66.674641][ T5591] EXT4-fs mount: 46 callbacks suppressed
[   66.674659][ T5591] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   66.693410][ T5591] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.784334][ T5590] lo speed is unknown, defaulting to 1000
[   66.791092][ T5591] netlink: '+}[@': attribute type 13 has an invalid length.
[   66.805306][ T5604] loop3: detected capacity change from 0 to 512
[   66.811977][ T5601] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[   66.818510][ T5601] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   66.826049][ T5601] vhci_hcd vhci_hcd.0: Device attached
[   66.838701][ T5591] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   66.889295][ T5611] veth0_to_bridge: entered promiscuous mode
[   66.910740][ T5604] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.923624][ T5613] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(6)
[   66.923782][ T5601] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   66.930208][ T5613] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   66.930317][ T5613] vhci_hcd vhci_hcd.0: Device attached
[   66.939184][ T5610] veth0_to_bridge: left promiscuous mode
[   66.963840][ T5601] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   66.992735][ T5601] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   67.022266][ T5601] vhci_hcd vhci_hcd.0: pdev(4) rhport(5) sockfd(14)
[   67.028911][ T5601] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   67.036547][ T5601] vhci_hcd vhci_hcd.0: Device attached
[   67.042111][ T5606] loop0: detected capacity change from 0 to 8192
[   67.066833][ T5601] vhci_hcd vhci_hcd.0: pdev(4) rhport(6) sockfd(8)
[   67.073370][ T5601] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   67.073742][ T5621] __nla_validate_parse: 2 callbacks suppressed
[   67.073756][ T5621] netlink: 12 bytes leftover after parsing attributes in process `syz.2.760'.
[   67.080977][ T5601] vhci_hcd vhci_hcd.0: Device attached
[   67.102288][ T5625] FAULT_INJECTION: forcing a failure.
[   67.102288][ T5625] name failslab, interval 1, probability 0, space 0, times 0
[   67.114965][ T5625] CPU: 0 UID: 0 PID: 5625 Comm: syz.1.761 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   67.115049][ T5625] Tainted: [W]=WARN
[   67.115056][ T5625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   67.115069][ T5625] Call Trace:
[   67.115141][ T5625]  <TASK>
[   67.115181][ T5625]  __dump_stack+0x1d/0x30
[   67.115203][ T5625]  dump_stack_lvl+0xe8/0x140
[   67.115235][ T5625]  dump_stack+0x15/0x1b
[   67.115257][ T5625]  should_fail_ex+0x265/0x280
[   67.115318][ T5625]  ? resv_map_alloc+0x57/0x190
[   67.115355][ T5625]  should_failslab+0x8c/0xb0
[   67.115385][ T5625]  __kmalloc_cache_noprof+0x4c/0x4a0
[   67.115419][ T5625]  resv_map_alloc+0x57/0x190
[   67.115467][ T5625]  hugetlbfs_get_inode+0x67/0x370
[   67.115503][ T5625]  hugetlb_file_setup+0x192/0x3d0
[   67.115536][ T5625]  ksys_mmap_pgoff+0x157/0x310
[   67.115576][ T5625]  x64_sys_call+0x14a3/0x3000
[   67.115605][ T5625]  do_syscall_64+0xd2/0x200
[   67.115727][ T5625]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   67.115763][ T5625]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   67.115800][ T5625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.115821][ T5625] RIP: 0033:0x7faab0acf6c9
[   67.115912][ T5625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.115997][ T5625] RSP: 002b:00007faaaf537038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   67.116018][ T5625] RAX: ffffffffffffffda RBX: 00007faab0d25fa0 RCX: 00007faab0acf6c9
[   67.116033][ T5625] RDX: 000000000300000c RSI: 0000000000c00000 RDI: 0000200000400000
[   67.116048][ T5625] RBP: 00007faaaf537090 R08: ffffffffffffffff R09: 0000000000000000
[   67.116062][ T5625] R10: 0000000000050032 R11: 0000000000000246 R12: 0000000000000001
[   67.116075][ T5625] R13: 00007faab0d26038 R14: 00007faab0d25fa0 R15: 00007ffdb3cf9408
[   67.116093][ T5625]  </TASK>
[   67.330536][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.534777][ T5641] netlink: 8 bytes leftover after parsing attributes in process `syz.1.766'.
[   67.646837][ T5642] lo speed is unknown, defaulting to 1000
[   68.124957][ T5652] netlink: 12 bytes leftover after parsing attributes in process `syz.0.768'.
[   68.152040][ T5622] vhci_hcd: connection closed
[   68.152204][   T52] vhci_hcd: stop threads
[   68.152295][ T5614] vhci_hcd: connection closed
[   68.156945][   T52] vhci_hcd: release socket
[   68.156966][   T52] vhci_hcd: disconnect device
[   68.175233][ T5603] vhci_hcd: connection closed
[   68.175313][ T5626] vhci_hcd: connection closed
[   68.182464][   T52] vhci_hcd: stop threads
[   68.191457][   T52] vhci_hcd: release socket
[   68.195910][   T52] vhci_hcd: disconnect device
[   68.201994][   T52] vhci_hcd: stop threads
[   68.206255][   T52] vhci_hcd: release socket
[   68.210730][   T52] vhci_hcd: disconnect device
[   68.230348][   T52] vhci_hcd: stop threads
[   68.234637][   T52] vhci_hcd: release socket
[   68.239070][   T52] vhci_hcd: disconnect device
[   68.353220][ T5660] veth0_to_bridge: entered promiscuous mode
[   68.365519][ T5659] veth0_to_bridge: left promiscuous mode
[   68.427857][ T5663] loop1: detected capacity change from 0 to 512
[   68.450179][ T5665] sd 0:0:1:0: device reset
[   68.468691][ T5663] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   68.493902][ T5666] loop0: detected capacity change from 0 to 512
[   68.515622][ T5663] EXT4-fs (loop1): 1 truncate cleaned up
[   68.534186][ T5663] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.534301][ T5666] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   68.555021][ T5661] lo speed is unknown, defaulting to 1000
[   68.577321][ T5665] loop3: detected capacity change from 0 to 2048
[   68.606265][ T5666] EXT4-fs (loop0): mount failed
[   68.635337][ T5661] loop0: detected capacity change from 0 to 1024
[   68.646112][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.658942][ T3306] GPT:first_usable_lbas don't match.
[   68.664292][ T3306] GPT:34 != 290
[   68.667908][ T3306] GPT: Use GNU Parted to correct GPT errors.
[   68.674016][ T3306]  loop3: p1 p2 p3
[   68.686605][ T5665] GPT:first_usable_lbas don't match.
[   68.692028][ T5665] GPT:34 != 290
[   68.695476][ T5665] GPT: Use GNU Parted to correct GPT errors.
[   68.701549][ T5665]  loop3: p1 p2 p3
[   68.709527][ T5661] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.810045][ T5685] FAULT_INJECTION: forcing a failure.
[   68.810045][ T5685] name failslab, interval 1, probability 0, space 0, times 0
[   68.822844][ T5685] CPU: 1 UID: 0 PID: 5685 Comm: syz.1.777 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   68.822881][ T5685] Tainted: [W]=WARN
[   68.822889][ T5685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   68.822903][ T5685] Call Trace:
[   68.822912][ T5685]  <TASK>
[   68.822921][ T5685]  __dump_stack+0x1d/0x30
[   68.822947][ T5685]  dump_stack_lvl+0xe8/0x140
[   68.822996][ T5685]  dump_stack+0x15/0x1b
[   68.823013][ T5685]  should_fail_ex+0x265/0x280
[   68.823033][ T5685]  ? percpu_ref_init+0x9c/0x250
[   68.823052][ T5685]  should_failslab+0x8c/0xb0
[   68.823086][ T5685]  ? __pfx_io_ring_ctx_ref_free+0x10/0x10
[   68.823133][ T5685]  __kmalloc_cache_noprof+0x4c/0x4a0
[   68.823170][ T5685]  ? __pfx_io_ring_ctx_ref_free+0x10/0x10
[   68.823279][ T5685]  percpu_ref_init+0x9c/0x250
[   68.823308][ T5685]  io_ring_ctx_alloc+0x1b4/0x670
[   68.823348][ T5685]  io_uring_create+0x134/0x630
[   68.823436][ T5685]  __se_sys_io_uring_setup+0x1f7/0x210
[   68.823495][ T5685]  __x64_sys_io_uring_setup+0x31/0x40
[   68.823535][ T5685]  x64_sys_call+0x2b25/0x3000
[   68.823558][ T5685]  do_syscall_64+0xd2/0x200
[   68.823598][ T5685]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   68.823637][ T5685]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   68.823747][ T5685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.823773][ T5685] RIP: 0033:0x7faab0acf6c9
[   68.823790][ T5685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.823812][ T5685] RSP: 002b:00007faaaf537038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[   68.823834][ T5685] RAX: ffffffffffffffda RBX: 00007faab0d25fa0 RCX: 00007faab0acf6c9
[   68.823850][ T5685] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000001de0
[   68.823868][ T5685] RBP: 00007faaaf537090 R08: 0000000000000000 R09: 0000000000000000
[   68.823967][ T5685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.823978][ T5685] R13: 00007faab0d26038 R14: 00007faab0d25fa0 R15: 00007ffdb3cf9408
[   68.824003][ T5685]  </TASK>
[   69.088860][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.115955][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   69.127756][ T4191] udevd[4191]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   69.141663][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   69.279987][ T5695] SELinux: failed to load policy
[   69.329490][ T5699] netlink: 28 bytes leftover after parsing attributes in process `syz.0.782'.
[   69.339632][ T5701] loop1: detected capacity change from 0 to 1024
[   69.347178][ T5699] FAULT_INJECTION: forcing a failure.
[   69.347178][ T5699] name failslab, interval 1, probability 0, space 0, times 0
[   69.359831][ T5699] CPU: 0 UID: 0 PID: 5699 Comm: syz.0.782 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   69.359887][ T5699] Tainted: [W]=WARN
[   69.359894][ T5699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   69.359906][ T5699] Call Trace:
[   69.359919][ T5699]  <TASK>
[   69.359927][ T5699]  __dump_stack+0x1d/0x30
[   69.359950][ T5699]  dump_stack_lvl+0xe8/0x140
[   69.359970][ T5699]  dump_stack+0x15/0x1b
[   69.360035][ T5699]  should_fail_ex+0x265/0x280
[   69.360057][ T5699]  should_failslab+0x8c/0xb0
[   69.360139][ T5699]  kmem_cache_alloc_noprof+0x50/0x480
[   69.360171][ T5699]  ? skb_clone+0x151/0x1f0
[   69.360192][ T5699]  skb_clone+0x151/0x1f0
[   69.360211][ T5699]  __netlink_deliver_tap+0x2c9/0x500
[   69.360250][ T5699]  netlink_unicast+0x66b/0x690
[   69.360453][ T5699]  netlink_sendmsg+0x58b/0x6b0
[   69.360474][ T5699]  ? __pfx_netlink_sendmsg+0x10/0x10
[   69.360493][ T5699]  __sock_sendmsg+0x145/0x180
[   69.360547][ T5699]  ____sys_sendmsg+0x31e/0x4e0
[   69.360586][ T5699]  ___sys_sendmsg+0x17b/0x1d0
[   69.360614][ T5699]  __x64_sys_sendmsg+0xd4/0x160
[   69.360636][ T5699]  x64_sys_call+0x191e/0x3000
[   69.360685][ T5699]  do_syscall_64+0xd2/0x200
[   69.360706][ T5699]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   69.360737][ T5699]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   69.360845][ T5699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.360869][ T5699] RIP: 0033:0x7f71c2bff6c9
[   69.360886][ T5699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.360906][ T5699] RSP: 002b:00007f71c165f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   69.361005][ T5699] RAX: ffffffffffffffda RBX: 00007f71c2e55fa0 RCX: 00007f71c2bff6c9
[   69.361020][ T5699] RDX: 0000000000000040 RSI: 00002000000002c0 RDI: 0000000000000004
[   69.361033][ T5699] RBP: 00007f71c165f090 R08: 0000000000000000 R09: 0000000000000000
[   69.361048][ T5699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.361061][ T5699] R13: 00007f71c2e56038 R14: 00007f71c2e55fa0 R15: 00007fff0d6ff638
[   69.361082][ T5699]  </TASK>
[   69.603143][ T5701] EXT4-fs (loop1): unsupported descriptor size 7
[   69.694856][   T29] kauditd_printk_skb: 491 callbacks suppressed
[   69.694872][   T29] audit: type=1400 audit(136.536:5423): avc:  denied  { create } for  pid=5700 comm="syz.1.784" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   69.719940][   T29] audit: type=1400 audit(136.536:5424): avc:  denied  { connect } for  pid=5700 comm="syz.1.784" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   69.773080][ T5717] FAULT_INJECTION: forcing a failure.
[   69.773080][ T5717] name failslab, interval 1, probability 0, space 0, times 0
[   69.785885][ T5717] CPU: 0 UID: 0 PID: 5717 Comm: syz.2.788 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   69.785996][ T5717] Tainted: [W]=WARN
[   69.786002][ T5717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   69.786015][ T5717] Call Trace:
[   69.786081][ T5717]  <TASK>
[   69.786089][ T5717]  __dump_stack+0x1d/0x30
[   69.786112][ T5717]  dump_stack_lvl+0xe8/0x140
[   69.786132][ T5717]  dump_stack+0x15/0x1b
[   69.786150][ T5717]  should_fail_ex+0x265/0x280
[   69.786170][ T5717]  should_failslab+0x8c/0xb0
[   69.786241][ T5717]  __kmalloc_node_track_caller_noprof+0xa5/0x580
[   69.786315][ T5717]  ? vfs_parse_fs_qstr+0x99/0x110
[   69.786341][ T5717]  kmemdup_nul+0x36/0xc0
[   69.786423][ T5717]  vfs_parse_fs_qstr+0x99/0x110
[   69.786501][ T5717]  do_new_mount+0x1c2/0x660
[   69.786533][ T5717]  path_mount+0x4a5/0xb70
[   69.786558][ T5717]  ? user_path_at+0x109/0x130
[   69.786580][ T5717]  __se_sys_mount+0x28c/0x2e0
[   69.786610][ T5717]  ? fput+0x8f/0xc0
[   69.786629][ T5717]  __x64_sys_mount+0x67/0x80
[   69.786703][ T5717]  x64_sys_call+0x2b51/0x3000
[   69.786726][ T5717]  do_syscall_64+0xd2/0x200
[   69.786813][ T5717]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   69.786847][ T5717]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   69.786888][ T5717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.786968][ T5717] RIP: 0033:0x7efd0e54f6c9
[   69.786983][ T5717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.787001][ T5717] RSP: 002b:00007efd0cfaf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   69.787092][ T5717] RAX: ffffffffffffffda RBX: 00007efd0e7a5fa0 RCX: 00007efd0e54f6c9
[   69.787104][ T5717] RDX: 00002000000002c0 RSI: 0000200000000280 RDI: 0000200000000100
[   69.787116][ T5717] RBP: 00007efd0cfaf090 R08: 0000200000000300 R09: 0000000000000000
[   69.787129][ T5717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   69.787141][ T5717] R13: 00007efd0e7a6038 R14: 00007efd0e7a5fa0 R15: 00007ffdbd185eb8
[   69.787201][ T5717]  </TASK>
[   70.025045][ T5719] loop4: detected capacity change from 0 to 512
[   70.031914][ T5719] ext4: Unknown parameter 'obj_role'
[   70.072254][   T29] audit: type=1400 audit(136.916:5425): avc:  denied  { map } for  pid=5718 comm="syz.4.790" path="socket:[12236]" dev="sockfs" ino=12236 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   70.095124][   T29] audit: type=1400 audit(136.916:5426): avc:  denied  { read write } for  pid=5718 comm="syz.4.790" path="socket:[12236]" dev="sockfs" ino=12236 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   70.176602][   T29] audit: type=1400 audit(137.016:5427): avc:  denied  { setcheckreqprot } for  pid=5718 comm="syz.4.790" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   70.220336][   T29] audit: type=1326 audit(137.066:5428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5722 comm="syz.2.791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd0e54f6c9 code=0x7ffc0000
[   70.255215][   T29] audit: type=1326 audit(137.086:5429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5722 comm="syz.2.791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7efd0e54f6c9 code=0x7ffc0000
[   70.277973][   T29] audit: type=1326 audit(137.086:5430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5722 comm="syz.2.791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd0e54f6c9 code=0x7ffc0000
[   70.300726][   T29] audit: type=1326 audit(137.096:5431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5722 comm="syz.2.791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd0e54f6c9 code=0x7ffc0000
[   70.323466][   T29] audit: type=1326 audit(137.096:5432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5722 comm="syz.2.791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efd0e54f6c9 code=0x7ffc0000
[   70.363992][ T5724] veth0_to_bridge: entered promiscuous mode
[   70.386750][ T5722] veth0_to_bridge: left promiscuous mode
[   70.526726][ T5742] delete_channel: no stack
[   70.531220][ T5742] delete_channel: no stack
[   70.550378][ T5737] loop1: detected capacity change from 0 to 512
[   70.560951][ T5745] loop0: detected capacity change from 0 to 512
[   70.578389][ T5745] EXT4-fs: Ignoring removed nobh option
[   70.595583][ T5737] ext4: Unknown parameter 'subj_role'
[   70.601571][ T5745] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #3: comm +}[@: corrupted inode contents
[   70.616610][ T5737] FAULT_INJECTION: forcing a failure.
[   70.616610][ T5737] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.629733][ T5737] CPU: 0 UID: 0 PID: 5737 Comm: syz.1.797 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   70.629766][ T5737] Tainted: [W]=WARN
[   70.629772][ T5737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   70.629791][ T5737] Call Trace:
[   70.629799][ T5737]  <TASK>
[   70.629806][ T5737]  __dump_stack+0x1d/0x30
[   70.629876][ T5737]  dump_stack_lvl+0xe8/0x140
[   70.629903][ T5737]  dump_stack+0x15/0x1b
[   70.629923][ T5737]  should_fail_ex+0x265/0x280
[   70.629946][ T5737]  should_fail+0xb/0x20
[   70.629965][ T5737]  should_fail_usercopy+0x1a/0x20
[   70.629987][ T5737]  _copy_to_user+0x20/0xa0
[   70.630013][ T5737]  simple_read_from_buffer+0xb5/0x130
[   70.630097][ T5737]  proc_fail_nth_read+0x10e/0x150
[   70.630133][ T5737]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   70.630164][ T5737]  vfs_read+0x1a8/0x770
[   70.630219][ T5737]  ? __rcu_read_unlock+0x4f/0x70
[   70.630246][ T5737]  ? __fget_files+0x184/0x1c0
[   70.630281][ T5737]  ksys_read+0xda/0x1a0
[   70.630379][ T5737]  __x64_sys_read+0x40/0x50
[   70.630405][ T5737]  x64_sys_call+0x27c0/0x3000
[   70.630428][ T5737]  do_syscall_64+0xd2/0x200
[   70.630453][ T5737]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   70.630545][ T5737]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   70.630588][ T5737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.630610][ T5737] RIP: 0033:0x7faab0ace0dc
[   70.630629][ T5737] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   70.630650][ T5737] RSP: 002b:00007faaaf537030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   70.630670][ T5737] RAX: ffffffffffffffda RBX: 00007faab0d25fa0 RCX: 00007faab0ace0dc
[   70.630683][ T5737] RDX: 000000000000000f RSI: 00007faaaf5370a0 RDI: 0000000000000009
[   70.630695][ T5737] RBP: 00007faaaf537090 R08: 0000000000000000 R09: 0000000000000000
[   70.630707][ T5737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.630720][ T5737] R13: 00007faab0d26038 R14: 00007faab0d25fa0 R15: 00007ffdb3cf9408
[   70.630741][ T5737]  </TASK>
[   70.642091][ T5745] EXT4-fs (loop0): Remounting filesystem read-only
[   70.868102][ T5758] loop1: detected capacity change from 0 to 1024
[   70.875016][ T5758] EXT4-fs (loop1): unsupported descriptor size 7
[   70.913658][ T5745] EXT4-fs (loop0): 1 truncate cleaned up
[   70.928722][ T5745] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.941721][ T5745] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.104563][ T5767] lo speed is unknown, defaulting to 1000
[   71.131019][ T5767] lo speed is unknown, defaulting to 1000
[   71.148888][ T5767] lo speed is unknown, defaulting to 1000
[   71.220263][ T5776] netlink: 4 bytes leftover after parsing attributes in process `syz.0.808'.
[   71.225338][ T5767] infiniband s
z1: set active
[   71.234054][ T5767] infiniband s
z1: added lo
[   71.238779][   T10] lo speed is unknown, defaulting to 1000
[   71.269206][ T5767] RDS/IB: s
z1: added
[   71.276928][ T5767] smc: adding ib device s
z1 with port count 1
[   71.283144][ T5767] smc:    ib device s
z1 port 1 has no pnetid
[   71.289750][ T3396] lo speed is unknown, defaulting to 1000
[   71.296459][ T5767] lo speed is unknown, defaulting to 1000
[   71.371225][ T5767] lo speed is unknown, defaulting to 1000
[   71.382416][ T5792] netlink: 12 bytes leftover after parsing attributes in process `syz.2.813'.
[   71.439478][ T5767] lo speed is unknown, defaulting to 1000
[   71.474523][ T5767] lo speed is unknown, defaulting to 1000
[   71.561591][ T5767] lo speed is unknown, defaulting to 1000
[   71.659461][ T5800] bridge0: port 1(batadv1) entered blocking state
[   71.665982][ T5800] bridge0: port 1(batadv1) entered disabled state
[   71.672755][ T5800] batadv1: entered allmulticast mode
[   71.678893][ T5800] batadv1: entered promiscuous mode
[   71.691021][ T5800] loop2: detected capacity change from 0 to 128
[   71.714640][ T5800] FAT-fs (loop2): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[   71.755070][ T5802] netlink: 'syz.4.817': attribute type 1 has an invalid length.
[   71.782029][ T5802] 8021q: adding VLAN 0 to HW filter on device bond1
[   71.822160][ T5807] netlink: 28 bytes leftover after parsing attributes in process `syz.2.820'.
[   71.922201][ T5813] loop2: detected capacity change from 0 to 512
[   71.993019][ T5821] tmpfs: Bad value for 'mpol'
[   72.165492][   T42] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[   72.174749][   T42] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[   72.227651][ T5833] veth0_to_bridge: entered promiscuous mode
[   72.234942][ T5832] veth0_to_bridge: left promiscuous mode
[   72.309246][ T5837] loop0: detected capacity change from 0 to 512
[   72.327993][ T5837] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   72.339199][ T5837] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.831: Invalid block bitmap block 0 in block_group 0
[   72.352796][ T5837] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   72.361783][ T5837] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.831: attempt to clear invalid blocks 983261 len 1
[   72.375426][ T5837] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.831: Invalid inode table block 0 in block_group 0
[   72.388533][ T5837] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   72.400064][ T5837] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem
[   72.408785][ T5837] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.831: Invalid inode table block 0 in block_group 0
[   72.421771][ T5837] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   72.431481][ T5837] EXT4-fs error (device loop0): ext4_truncate:4637: inode #11: comm syz.0.831: mark_inode_dirty error
[   72.443397][ T5837] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem
[   72.452627][ T5837] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.831: Invalid inode table block 0 in block_group 0
[   72.465365][ T5837] EXT4-fs (loop0): 1 truncate cleaned up
[   72.471611][ T5837] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.496518][ T5837] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.831: Invalid inode table block 0 in block_group 0
[   72.516308][ T5837] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.831: Invalid inode table block 0 in block_group 0
[   72.520142][ T5851] loop3: detected capacity change from 0 to 512
[   72.539800][ T5851] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   72.552645][ T5851] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.834: Invalid block bitmap block 0 in block_group 0
[   72.566543][ T5851] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   72.566547][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.585170][ T5851] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.834: attempt to clear invalid blocks 983261 len 1
[   72.600860][ T5854] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5854 comm=syz.0.835
[   72.613001][ T5851] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.834: Invalid inode table block 0 in block_group 0
[   72.614170][ T5854] netlink: 'syz.0.835': attribute type 1 has an invalid length.
[   72.626297][ T5851] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   72.643122][ T5851] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[   72.649272][ T5854] bond1: (slave gretap1): making interface the new active one
[   72.651988][ T5851] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.834: Invalid inode table block 0 in block_group 0
[   72.660890][ T5854] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   72.671875][ T5851] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   72.688273][ T5854] vlan2: entered allmulticast mode
[   72.692213][ T5851] EXT4-fs error (device loop3): ext4_truncate:4637: inode #11: comm syz.3.834: mark_inode_dirty error
[   72.694708][ T5854] bond1: entered allmulticast mode
[   72.706154][ T5851] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[   72.710895][ T5854] gretap1: entered allmulticast mode
[   72.720028][ T5851] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.834: Invalid inode table block 0 in block_group 0
[   72.738356][ T5851] EXT4-fs (loop3): 1 truncate cleaned up
[   72.744320][ T5851] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.793392][ T5851] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.834: Invalid inode table block 0 in block_group 0
[   72.807015][ T5851] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.834: Invalid inode table block 0 in block_group 0
[   72.859571][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.964489][ T5867] veth0_to_bridge: entered promiscuous mode
[   73.001744][ T5866] veth0_to_bridge: left promiscuous mode
[   73.174079][ T5874] lo speed is unknown, defaulting to 1000
[   73.180517][ T5874] lo speed is unknown, defaulting to 1000
[   73.408662][ T5874] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   73.873253][ T5886] loop1: detected capacity change from 0 to 512
[   73.918969][ T5890] netlink: 44 bytes leftover after parsing attributes in process `syz.4.848'.
[   73.929577][ T5886] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   73.940197][ T5888] veth0_to_bridge: entered promiscuous mode
[   73.956549][ T5886] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.845: Invalid block bitmap block 0 in block_group 0
[   73.974466][ T5887] veth0_to_bridge: left promiscuous mode
[   73.990971][ T5897] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[   74.030410][ T5902] netlink: 68 bytes leftover after parsing attributes in process `syz.3.849'.
[   74.039711][ T5886] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   74.069826][ T5886] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.845: attempt to clear invalid blocks 983261 len 1
[   74.083823][ T5902] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   74.094181][ T5886] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.845: Invalid inode table block 0 in block_group 0
[   74.106882][ T5902] SELinux: failed to load policy
[   74.112433][ T5886] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   74.122241][ T5886] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem
[   74.131017][ T5886] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.845: Invalid inode table block 0 in block_group 0
[   74.144596][ T5886] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   74.154226][ T5886] EXT4-fs error (device loop1): ext4_truncate:4637: inode #11: comm syz.1.845: mark_inode_dirty error
[   74.154332][ T5886] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem
[   74.154629][ T5886] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.845: Invalid inode table block 0 in block_group 0
[   74.154736][ T5886] EXT4-fs (loop1): 1 truncate cleaned up
[   74.157775][ T5886] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.247353][ T5904] lo speed is unknown, defaulting to 1000
[   74.247613][ T5904] lo speed is unknown, defaulting to 1000
[   74.325533][ T5886] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.845: Invalid inode table block 0 in block_group 0
[   74.327059][ T5886] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.845: Invalid inode table block 0 in block_group 0
[   74.356754][ T5909] loop2: detected capacity change from 0 to 8192
[   74.364423][ T5912] FAULT_INJECTION: forcing a failure.
[   74.364423][ T5912] name failslab, interval 1, probability 0, space 0, times 0
[   74.377067][ T5912] CPU: 0 UID: 0 PID: 5912 Comm: syz.3.853 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   74.377142][ T5912] Tainted: [W]=WARN
[   74.377148][ T5912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   74.377160][ T5912] Call Trace:
[   74.377167][ T5912]  <TASK>
[   74.377175][ T5912]  __dump_stack+0x1d/0x30
[   74.377198][ T5912]  dump_stack_lvl+0xe8/0x140
[   74.377219][ T5912]  dump_stack+0x15/0x1b
[   74.377320][ T5912]  should_fail_ex+0x265/0x280
[   74.377353][ T5912]  should_failslab+0x8c/0xb0
[   74.377383][ T5912]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   74.377530][ T5912]  ? __alloc_skb+0x101/0x320
[   74.377563][ T5912]  __alloc_skb+0x101/0x320
[   74.377596][ T5912]  netlink_alloc_large_skb+0xbf/0xf0
[   74.377700][ T5912]  netlink_sendmsg+0x3cf/0x6b0
[   74.377721][ T5912]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.377741][ T5912]  __sock_sendmsg+0x145/0x180
[   74.377770][ T5912]  ____sys_sendmsg+0x31e/0x4e0
[   74.377869][ T5912]  ___sys_sendmsg+0x17b/0x1d0
[   74.377898][ T5912]  __x64_sys_sendmsg+0xd4/0x160
[   74.377922][ T5912]  x64_sys_call+0x191e/0x3000
[   74.377948][ T5912]  do_syscall_64+0xd2/0x200
[   74.377969][ T5912]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   74.378002][ T5912]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   74.378131][ T5912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.378211][ T5912] RIP: 0033:0x7f88755ef6c9
[   74.378229][ T5912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.378303][ T5912] RSP: 002b:00007f887404f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   74.378342][ T5912] RAX: ffffffffffffffda RBX: 00007f8875845fa0 RCX: 00007f88755ef6c9
[   74.378356][ T5912] RDX: 0000000000000000 RSI: 00002000000006c0 RDI: 0000000000000006
[   74.378369][ T5912] RBP: 00007f887404f090 R08: 0000000000000000 R09: 0000000000000000
[   74.378381][ T5912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.378393][ T5912] R13: 00007f8875846038 R14: 00007f8875845fa0 R15: 00007ffe50068678
[   74.378415][ T5912]  </TASK>
[   74.502609][ T5916] netlink: 4 bytes leftover after parsing attributes in process `syz.2.842'.
[   74.530929][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.627030][ T5922] loop3: detected capacity change from 0 to 1024
[   74.629595][ T5922] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   74.703555][ T5924] loop3: detected capacity change from 0 to 164
[   74.714809][ T5924] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   74.715426][   T29] kauditd_printk_skb: 804 callbacks suppressed
[   74.715498][   T29] audit: type=1400 audit(141.568:6235): avc:  denied  { mount } for  pid=5921 comm="syz.3.856" name="/" dev="loop3" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   74.743334][ T5922] lo speed is unknown, defaulting to 1000
[   74.743626][ T5922] lo speed is unknown, defaulting to 1000
[   74.971156][ T5928] wireguard0: entered promiscuous mode
[   75.043773][ T5928] wireguard0: entered allmulticast mode
[   75.060096][   T29] audit: type=1400 audit(141.909:6236): avc:  denied  { unmount } for  pid=3313 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   75.079760][   T29] audit: type=1400 audit(141.909:6237): avc:  denied  { execute } for  pid=5927 comm="syz.1.858" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=12594 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   75.084384][ T5936] netlink: 44 bytes leftover after parsing attributes in process `syz.1.858'.
[   75.170952][   T29] audit: type=1400 audit(142.019:6238): avc:  denied  { prog_load } for  pid=5945 comm="syz.4.862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   75.189391][   T29] audit: type=1400 audit(142.019:6239): avc:  denied  { bpf } for  pid=5945 comm="syz.4.862" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   75.209340][   T29] audit: type=1400 audit(142.019:6240): avc:  denied  { perfmon } for  pid=5945 comm="syz.4.862" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   75.233102][ T5946] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   75.292252][   T29] audit: type=1400 audit(142.079:6241): avc:  denied  { create } for  pid=5942 comm="syz.0.861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   75.312100][   T29] audit: type=1400 audit(142.079:6242): avc:  denied  { prog_run } for  pid=5947 comm="syz.3.863" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   75.330479][   T29] audit: type=1400 audit(142.099:6243): avc:  denied  { write } for  pid=5942 comm="syz.0.861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   75.350217][   T29] audit: type=1400 audit(142.099:6244): avc:  denied  { read } for  pid=5942 comm="syz.0.861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   75.540290][ T5958] loop0: detected capacity change from 0 to 4096
[   75.550725][ T5958] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   75.567828][ T5958] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.592280][ T5964] veth0_to_bridge: entered promiscuous mode
[   75.600399][ T5963] veth0_to_bridge: left promiscuous mode
[   75.717014][ T5978] loop2: detected capacity change from 0 to 512
[   75.720821][ T5978] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   75.727792][ T5978] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.874: Invalid block bitmap block 0 in block_group 0
[   75.727949][ T5978] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   75.728052][ T5978] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #11: comm syz.2.874: attempt to clear invalid blocks 983261 len 1
[   75.728294][ T5978] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.874: Invalid inode table block 0 in block_group 0
[   75.728449][ T5978] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   75.728562][ T5978] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[   75.728717][ T5978] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.874: Invalid inode table block 0 in block_group 0
[   75.728844][ T5978] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   75.729035][ T5978] EXT4-fs error (device loop2): ext4_truncate:4637: inode #11: comm syz.2.874: mark_inode_dirty error
[   75.729129][ T5978] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem
[   75.729275][ T5978] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.874: Invalid inode table block 0 in block_group 0
[   75.729532][ T5978] EXT4-fs (loop2): 1 truncate cleaned up
[   75.730011][ T5978] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.749725][ T5985] netlink: 24 bytes leftover after parsing attributes in process `syz.3.876'.
[   75.756953][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.814284][ T5978] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.874: Invalid inode table block 0 in block_group 0
[   75.944082][ T5985] program syz.3.876 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.952834][ T5992] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz.2.874: Invalid inode table block 0 in block_group 0
[   75.993018][ T5990] loop1: detected capacity change from 0 to 2048
[   76.019215][ T5990] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.110289][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.131891][ T6006] netlink: 8 bytes leftover after parsing attributes in process `syz.0.882'.
[   76.264262][ T6018] FAULT_INJECTION: forcing a failure.
[   76.264262][ T6018] name failslab, interval 1, probability 0, space 0, times 0
[   76.264282][ T6018] CPU: 0 UID: 0 PID: 6018 Comm: syz.3.887 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   76.264301][ T6018] Tainted: [W]=WARN
[   76.264305][ T6018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   76.264313][ T6018] Call Trace:
[   76.264349][ T6018]  <TASK>
[   76.264353][ T6018]  __dump_stack+0x1d/0x30
[   76.264424][ T6018]  dump_stack_lvl+0xe8/0x140
[   76.264438][ T6018]  dump_stack+0x15/0x1b
[   76.264449][ T6018]  should_fail_ex+0x265/0x280
[   76.264461][ T6018]  should_failslab+0x8c/0xb0
[   76.264479][ T6018]  __kmalloc_noprof+0xa5/0x570
[   76.264508][ T6018]  ? bpf_ctx_init+0x87/0x170
[   76.264593][ T6018]  bpf_ctx_init+0x87/0x170
[   76.264683][ T6018]  bpf_prog_test_run_flow_dissector+0x157/0x340
[   76.264704][ T6018]  ? kstrtouint+0x76/0xc0
[   76.264787][ T6018]  ? __pfx_bpf_prog_test_run_flow_dissector+0x10/0x10
[   76.264827][ T6018]  bpf_prog_test_run+0x22a/0x390
[   76.264866][ T6018]  __sys_bpf+0x4c0/0x7c0
[   76.264913][ T6018]  __x64_sys_bpf+0x41/0x50
[   76.264953][ T6018]  x64_sys_call+0x2aee/0x3000
[   76.264967][ T6018]  do_syscall_64+0xd2/0x200
[   76.264982][ T6018]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   76.265000][ T6018]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   76.265031][ T6018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.265110][ T6018] RIP: 0033:0x7f88755ef6c9
[   76.265127][ T6018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.265139][ T6018] RSP: 002b:00007f887404f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   76.265228][ T6018] RAX: ffffffffffffffda RBX: 00007f8875845fa0 RCX: 00007f88755ef6c9
[   76.265236][ T6018] RDX: 0000000000000033 RSI: 0000200000000440 RDI: 000000000000000a
[   76.265244][ T6018] RBP: 00007f887404f090 R08: 0000000000000000 R09: 0000000000000000
[   76.265252][ T6018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.265259][ T6018] R13: 00007f8875846038 R14: 00007f8875845fa0 R15: 00007ffe50068678
[   76.265270][ T6018]  </TASK>
[   76.294507][ T6019] netlink: 8 bytes leftover after parsing attributes in process `syz.0.886'.
[   76.702660][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.878586][ T6040] loop1: detected capacity change from 0 to 512
[   76.886118][ T6040] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   76.917757][ T6040] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.894: Invalid block bitmap block 0 in block_group 0
[   76.931582][ T6040] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   76.941113][ T6040] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.894: attempt to clear invalid blocks 983261 len 1
[   76.992388][ T6045] lo speed is unknown, defaulting to 1000
[   76.998496][ T6045] lo speed is unknown, defaulting to 1000
[   77.102078][ T6040] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.894: Invalid inode table block 0 in block_group 0
[   77.183996][ T6040] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   77.195870][ T6040] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem
[   77.205209][ T6040] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.894: Invalid inode table block 0 in block_group 0
[   77.218277][ T6040] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   77.228402][ T6040] EXT4-fs error (device loop1): ext4_truncate:4637: inode #11: comm syz.1.894: mark_inode_dirty error
[   77.233401][ T6053] netlink: 12 bytes leftover after parsing attributes in process `syz.4.897'.
[   77.240313][ T6040] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem
[   77.257647][ T6040] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.894: Invalid inode table block 0 in block_group 0
[   77.271293][ T6040] EXT4-fs (loop1): 1 truncate cleaned up
[   77.277995][ T6040] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.314945][ T6040] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.894: Invalid inode table block 0 in block_group 0
[   77.335204][ T6040] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz.1.894: Invalid inode table block 0 in block_group 0
[   77.368844][ T6058] netlink: 24 bytes leftover after parsing attributes in process `syz.4.899'.
[   77.393930][ T6058] netlink: 176 bytes leftover after parsing attributes in process `syz.4.899'.
[   77.442618][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.600790][ T6088] loop1: detected capacity change from 0 to 512
[   77.621399][ T6088] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   77.671826][ T6093] loop4: detected capacity change from 0 to 512
[   77.680788][ T6093] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   77.693333][ T6093] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.913: Invalid block bitmap block 0 in block_group 0
[   77.693799][ T6093] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   77.694050][ T6093] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.913: attempt to clear invalid blocks 983261 len 1
[   77.740198][ T6093] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.913: Invalid inode table block 0 in block_group 0
[   77.740309][ T6093] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   77.740407][ T6093] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[   77.740617][ T6093] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.913: Invalid inode table block 0 in block_group 0
[   77.790603][ T6093] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   77.790731][ T6093] EXT4-fs error (device loop4): ext4_truncate:4637: inode #11: comm syz.4.913: mark_inode_dirty error
[   77.790858][ T6093] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[   77.791023][ T6093] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.913: Invalid inode table block 0 in block_group 0
[   77.791227][ T6093] EXT4-fs (loop4): 1 truncate cleaned up
[   77.792917][ T6093] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.888024][ T6093] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.913: Invalid inode table block 0 in block_group 0
[   77.888928][ T6093] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.913: Invalid inode table block 0 in block_group 0
[   77.951135][ T6099] IPVS: Error connecting to the multicast addr
[   77.959608][ T6099] hsr_slave_0: left promiscuous mode
[   77.965701][ T6099] hsr_slave_1: left promiscuous mode
[   77.979430][ T6103] loop1: detected capacity change from 0 to 1024
[   77.981731][ T6103] EXT4-fs: Ignoring removed oldalloc option
[   77.997818][ T6103] EXT4-fs: Ignoring removed oldalloc option
[   78.018360][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.023734][ T6103] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.060439][ T3306] ==================================================================
[   78.060477][ T3306] BUG: KCSAN: data-race in avc_policy_seqno / avc_ss_reset
[   78.060521][ T3306] 
[   78.060527][ T3306] write to 0xffffffff88eb3c28 of 4 bytes by task 6109 on cpu 1:
[   78.060545][ T3306]  avc_ss_reset+0x20c/0x240
[   78.060578][ T3306]  security_set_bools+0x301/0x340
[   78.060611][ T3306]  sel_commit_bools_write+0x1ea/0x270
[   78.060634][ T3306]  vfs_writev+0x406/0x8b0
[   78.060668][ T3306]  do_writev+0xe7/0x210
[   78.060702][ T3306]  __x64_sys_writev+0x45/0x50
[   78.060728][ T3306]  x64_sys_call+0x1e9a/0x3000
[   78.060752][ T3306]  do_syscall_64+0xd2/0x200
[   78.060775][ T3306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.060804][ T3306] 
[   78.060810][ T3306] read to 0xffffffff88eb3c28 of 4 bytes by task 3306 on cpu 0:
[   78.060824][ T3306]  avc_policy_seqno+0x15/0x30
[   78.060843][ T3306]  selinux_inode_permission+0x311/0x740
[   78.060869][ T3306]  security_inode_permission+0x6d/0xb0
[   78.060893][ T3306]  inode_permission+0x106/0x310
[   78.060926][ T3306]  link_path_walk+0x162/0x900
[   78.060959][ T3306]  path_openat+0x1de/0x2170
[   78.060982][ T3306]  do_filp_open+0x109/0x230
[   78.061002][ T3306]  do_sys_openat2+0xa6/0x110
[   78.061019][ T3306]  __x64_sys_openat+0xf2/0x120
[   78.061038][ T3306]  x64_sys_call+0x2eab/0x3000
[   78.061061][ T3306]  do_syscall_64+0xd2/0x200
[   78.061083][ T3306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.061106][ T3306] 
[   78.061111][ T3306] value changed: 0x00000011 -> 0x00000012
[   78.061122][ T3306] 
[   78.061126][ T3306] Reported by Kernel Concurrency Sanitizer on:
[   78.061142][ T3306] CPU: 0 UID: 0 PID: 3306 Comm: udevd Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   78.061176][ T3306] Tainted: [W]=WARN
[   78.061183][ T3306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   78.061198][ T3306] ==================================================================
[   78.084507][ T6112] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   78.084534][ T3409] lo speed is unknown, defaulting to 1000
[   78.096926][ T6112] loop4: detected capacity change from 0 to 512
[   78.114912][ T6112] FAT-fs (loop4): Directory bread(block 199916) failed
[   78.122246][ T6103] bridge0: entered promiscuous mode
[   78.134980][ T6112] FAT-fs (loop4): Directory bread(block 199917) failed
[   78.138846][ T6103] macsec1: entered promiscuous mode
[   78.175456][ T6112] FAT-fs (loop4): Directory bread(block 199918) failed
[   78.180387][ T6103] bridge0: port 3(macsec1) entered blocking state
[   78.195755][ T6112] FAT-fs (loop4): Directory bread(block 199919) failed
[   78.198162][ T6103] bridge0: port 3(macsec1) entered disabled state
[   78.202753][ T6112] FAT-fs (loop4): Directory bread(block 199920) failed
[   78.238508][ T6103] macsec1: entered allmulticast mode
[   78.249737][ T6112] FAT-fs (loop4): Directory bread(block 199921) failed
[   78.254650][ T6103] bridge0: entered allmulticast mode
[   78.258435][ T6112] FAT-fs (loop4): Directory bread(block 199922) failed
[   78.385695][ T6112] FAT-fs (loop4): Directory bread(block 199923) failed
[   78.385862][ T6103] macsec1: left allmulticast mode
[   78.397615][ T6103] bridge0: left allmulticast mode
[   78.405770][ T6103] bridge0: left promiscuous mode
[   78.532585][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.