last executing test programs:

59.218871304s ago: executing program 4 (id=85):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010005000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup(r3)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x4, 0x0, 0x0)

59.129310912s ago: executing program 4 (id=88):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x14, 0x52, 0x1, 0x0, 0x0, {0x1c}}, 0x14}}, 0x0)
prctl$PR_SET_SECCOMP(0x4e, 0x1, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, 0x0, 0x82}], 0x1, 0x0, 0x0, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000000400000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000140)='tlb_flush\x00', r3}, 0x18)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r4, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=@newlink={0x88, 0x10, 0x401, 0x0, 0x4, {0x0, 0x0, 0x0, r5}, [@IFLA_LINKINFO={0x68, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x54, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_OKEY={0x8, 0x5, 0x7}, @IFLA_GRE_ERSPAN_DIR={0x5, 0x17, 0x1}, @IFLA_GRE_LOCAL={0x14, 0x6, @mcast1}, @IFLA_GRE_IFLAGS={0x6, 0x2, 0x1}, @IFLA_GRE_TTL={0x5, 0x8, 0x8}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x1}, @IFLA_GRE_LINK={0x8, 0x1, r5}, @IFLA_GRE_OKEY={0x8, 0x5, 0xfffffc00}]}}}]}, 0x88}}, 0x0)

59.071166186s ago: executing program 4 (id=90):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
socket$inet_smc(0x2b, 0x1, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010100000000f00000000000000005000400000000000900020073797a30000000000500010007000000050005000a010000140007800800114000000000080012400000ffff12000300686173683a6e65742c706f7274"], 0x60}}, 0x0)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r2, &(0x7f0000000180)=ANY=[@ANYBLOB='system_u:object_r:semanage_t system_u:object_r:fixed_disk_device_t:s0 00000000000w'], 0x79)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000000000"], 0x48)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket(0x2, 0x80805, 0x0)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r6, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000200)={<r7=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r6, 0x84, 0x7a, &(0x7f0000000340)={r7, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
getsockopt$bt_hci(r4, 0x84, 0x81, &(0x7f0000001f00)=""/4062, &(0x7f00000004c0)=0xfde)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r3, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, 0x0, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
mount$tmpfs(0x0, &(0x7f0000000240)='./cgroup\x00', &(0x7f0000000f80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='nr_inodes=m,inode3'])
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x548}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00'}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = accept$packet(r5, &(0x7f0000000080), &(0x7f0000000280)=0x14)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000300)={'vcan0\x00', <r11=>0x0})
sendto$packet(r10, &(0x7f0000000500)="e267d2517073fd31190147466ed2e85e9da8855bc30394fecd1337e068ad66e52f04665b1aee28701ebdf370b23f4e1fa989ee0adb02fe7ffe614ba1a3338ce42d2fb2e05a0e8af4d78a7f74aa006533113f6c7743efd535c084b938a2b543b4a096", 0x62, 0x0, &(0x7f0000000400)={0x11, 0x8, r11, 0x1, 0x9, 0x6, @remote}, 0x14)
ioctl$SIOCSIFHWADDR(r9, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

58.997706023s ago: executing program 4 (id=94):
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @multicast1}, {0x1, @local}, 0x4a, {0x2, 0x4e23, @dev}})
socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x5040, 0x0)
sendfile(r0, r0, 0x0, 0x3ffff)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001700)=ANY=[@ANYBLOB="160000000000000061b1000002"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f0000000200)={r1, 0x0, &(0x7f0000002740)=""/4078}, 0x20)

58.875673113s ago: executing program 4 (id=98):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, &(0x7f0000000040))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r1)
sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x34, r2, 0x301, 0x70bd2a, 0x25dfdbfd, {0x5}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40014}, 0x0)
r3 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x80, 0x0)
mq_timedsend(r3, &(0x7f0000000600)="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", 0xfd1, 0x6, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) (async)
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, &(0x7f0000000040)) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r1) (async)
sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x34, r2, 0x301, 0x70bd2a, 0x25dfdbfd, {0x5}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40014}, 0x0) (async)
mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x80, 0x0) (async)
mq_timedsend(r3, &(0x7f0000000600)="6d12483bb95dab4da2bccb9a5c51f7769b4aa2ed6f00bcfff2058843f7de72fa8f9dd7572991db9f2968c67d150dbd80321f91c14a7705c3d6e2292f74d074e24cdfdc28da61b60db4ac67a81c04430dd72555dcebe8193594b8fe29718d5781fe3f418379dab48089b86edc4facdbc388e30fdfabe867722b348dcfbff8f7745bb98584b3384eb1b1c541d05427c4e5c33b3692ebf599d4a179bcd27271d55e4a38ac7be3cae3e85eddbdcf574ac462df22b6b2242245f32d5826de908a96ea66331cad4d0ff094f552e118ee643f2f12f854c32d4e548bd82a69c4102bc516a41a52436f6dfd80133de801fdc8e75276c631f041d86269f2ba0791e8119868816c1fe9c78654919d6dcce67a5f32b77575867f43f76e99108bf9ee3fd550cc18f8bee8505da7ea8fe0a3a9e40c01be1d39435821c5f52cf39a7d5558f278b01be298e5460d3ebf011345ed0030603f767fe44876fdf1cb172a4cbfb2f7784ac61c4786a147b6d446eaf46d5b26c6b85580ba4913fc12a443d8dcf05d08513ae01a7f489826fdc8bff83c1708ebbc060aa72d25e6ce21521799bd37c34fdad973fd7e17070b7783bf341fc079c6b0c9811388430c84540d8d544d1887b73e3a9d2625358be4b09128ee7f8d2dacf2d9704b9143c0341568d1e39429e1d442d21878c87271e66651e12d077b8dd49c0bf285097e261a5116b91036368265c1c5b74353bb42ff4936e27a20c48dea290685b09c2e5baa29dbeb790969f793692fb112c973329236f30bd29c39ee6104e1e0ccd1f855e5837d156c83834661a2aa8929ad78c025413179d880ee905d0b1ee1c9c3eacb63ac807a6ce73d492502ce52beba9ea5214a9387e2c5a810a96e14956809b6865e46a9d9ce2deb4cce2155562dd7e3daef9b3c0c0a55f1fe1a89835971dbc9c09ee9d4abe827b0e87dcd08e5e7cf08869cdcd6fe7f42d93c075db2fec9d96aff21410c3cbd5d904ed147af08c297011ec105dec6fb319cc5637ac71dac05d01ef356dcc6b6bd3f8625204d92f6d0447c0ee5c72d13b4e951a5ba060d4e0ab4680bba08ca9e0079ed6332e6449e01ec480903b0f377e08e8146c8a1e86df678dd88f3768e0958b04f24d58f39a15ee93e4b3e1e2dcd91f8cd36c37b2806d5f7c1871d0e1d7496ac64b377a8fb32104166536597bbfd6d814b2eb41970ba1aef50238e34ec8069690029c58c8a01b28b711ff44aed4652629c7cdc7843d83efe9514bb5b1f80d1047e6075870c53505a142e48d6897d7811f84d8c3e8f9985f9a9d01c8fd68960aee376caa465f25622d7ff5deae8f0d628e048bc4387ca3046067768f3014a3ef4d1b55123ce45507ab1b6f587f6302bb9b715899d2fc20cabfd306549b6a2ec8ea5169e5be19cf59ef71cbb16d402cdc62a422b2bf5c01bb6139e60fd61ea4b77382c7e2e038c6511bfe08f7a3cea5e793f9e2cb4facce20e719d179104418f6745bf8065c70da3815c8e1a1b650d96865c41fd45dbcae51e1d54b41002c2f673cd1008dbf3f17847dd28d8fe3c24ef238000be692e05b0365cb7691fa8f134efe70df46b5cc4765def995971ae0c45f653292f4a3c26300e359afbe0c4f7b049f505ab8e8a0d4c7090cc07c62dbcb9bf6682425553de4ca63f98ac5d420d01bf729bf815683d11451eea0295675778f00bef94ac6e29dd2285847fd857cf2d204de3170e024169d568500befd5c6f34e9d3fcae78bd8fcd6d8f85fcf56241c7787d86bdfca06a6e69b996d72530c94eaa82e99f8ccbd66b53ce0f066fffcb3b643f84a1112c4c8a153ef745f7da3c4887f95de7df8dcf6653200eccb389a7aad4a874d347791cd00cf767bdd8d36de55cbc0879e11cddec175b36be0d1224d1dab7d8f8f3bab0f622d031be123b6ab48188716162afea5e0529830a39c3c9edc86b3e6020830f2f94060685d96887fb536afaedcd9523c53e5e210e87a07bc941b29b968ec9b0f6e5a74b929ad56ef7e80b981d39460040df8aedb253bc4681e72de2b3e886320b2f9a52f675bb08e4dee27b468d0822d6269ad1eee16d1c1781ad17b1fae21b44e427ace6d1fa932ca9c295c5ae74140ffea23ac2b70a6ca71af12c6d63adc32110521cee84dce3514c51417fa794fff4fb7b72844fbb3ba786173d3ffea23e03eb49acbd957d52494ffff3cd2dc420ace19bbe375aabb97953dd1b8adc24856a81b2888e2fb635332c2d4257cf6833ccb3135c0327f79c4846b691b693b066cd5de30ca40e29fe8775fd6a8844f566223008d017ccb6f2ee47496b61aa2900f64c1e2136c8dfbb6dd7ab368e0cfeb3e639657f16d9f26f0c575b61476ea7cd499e2fffe75f6118d19d6186e9433d1b92dc30e84bceba4c9bd8e889575c50da8e236d0ad184a2ae7e91e31485a44389a7c6a63c4d7588fa0755ae292102c46df1cfcc21eccfa5bc815a2491cb845de2feae93d5a9365cff327d048b7e66733b1d1cbf1eadae7296631f3f1681ab5878272a9b17e11f64e8ea8afbd297f388b951e39b94d909c74a4c667f6204128c84566c2347222a984f67177160e3f144518721f25aab93c9d0a34d407b84485bf1f2fa07af7de0617dbda0b2eb3ef839d6ad8649fa7133e14646cb30462e827a1bba8b6cf97c93c95552c70aae8ba4918f8b51275ed7e1f90f7ae7a5313aff699f54265adad4b0608a90165c8e7df729ceb0eda12357ea37e7bbb86fc542544c93d494d4edfd098432e389666a8a93f4333e630deefa87397ece144a59fbf736aeefb7b66744954e8076e9d0534508a3631dbdcd2c15b5fd844d62409bf6c63699ac5ff0cab98d4b7f0e33e5cb20853554c895ea26607e9554d74e1511c4c476c41aa7fa717259e5048d80f1f30f07dd5397c17d818dac1849b7ccf6425fa0265edfecb58a763615dedbe98e215ce63dd1688e191a191ccdb4e939bd370f68054440296cb511b5f070fb9479bdef321b7d124506f6345ac3c2ca0ef22292d3f83ec21908de3a3c7f98cc5e086034d0b08df704382a8ee9f6129542cac7dc5fd54e71270f5ea9739b625347f3200d6f74d41106aed8fa8af5a3a6cd58a44de62af681d449a44b5f86702e625a1658f2bb09e1c7a178ec27081bb8e0f3febf700a1663374325bbb17a17c6178fbc0424f83cfafdd8ed301450bc6822105e6033bc999c833ce3f60814f9db98c3880aae837027cc4fd82a1aa61d1c7fbacf0e5da0c820f97e35f52abb212dcfd77c7e159ef4f777a2cbf61508539660a577974291852a3dfdcb0706961faf65f62745240e281e9c1ea25a2bf29729008b59b5bac92c8ffc53b240761c0021edb53bad82a322510f480a53945c63803abb0b5947aa32a7ad5cf8059933ae4dc5d18a261b8d4a126dadd1d7f186cc0f3bc00c82c15516ea2a4b5a5517395d2a16a3beb920b16c706381bae273443ebfa3c37778596177de18a62cb96c08a35459a897ac87bcd87cdbcecae83c95cd4b5eb878a8d31e75955eb11e0cb58c6ad2b39f8f9350ff95778a961b07b4b0e4ff6b58caab6db44c6345c8ad9da0aef0c2b4a09e459a027d774da684ce2defd0b23b6e15ec573268050cba4cd1be4d899672ea3562f280df3b3ee878bd2e9989357829c363b4b47eacadeee76144957f4d76c3ea703aa5bf32f75a0370f49ae371f001eced8bbdaa781f66c83f959af0cb0ecbabeeeb0f91c26a22b430d5cae34e470f79f01446cdca5b70ba6448a8d9e4722dba03369b3204253eea942de2fb7b4408212a4c6a5d36c7e82417edd052a59d6d1ce2b0a2bd94f334647712cc2296e75db316be650195dd28a360e2e44fd32951b2b983d673bce51eea778d2ed2a2468c3b6b94b67ee175aa08f757d5522b43cefd5969511579cd79300802c811adad7b6bdf789f70bc76e94f8ea317043cf29b562a2041c553122ec338834455be1b68fe7470808451b0e1f1d444ae1e430c51c718a751142fa675a663e9d9f66a8a6199b56d18e4167e54942a37366fa0b5242de86bf1af6c758b2f0bb1f0fda16dc5241e3cc442326fdb501b95fe768c45781c8b60fbe576c7e790e2d5a2a76085cdca098fb3209b30a017eefbf6f8b315b38d8f8f194e456d1776cf6c9c4f4a99e9b50ca4bbc57ff1f035f13a3d8261617b5d55387488f9456a32400a84f95320e722c7abed22b9f8b574da8322fe104c12fb35c9d0c600dde78c47cd46647a8e24aafa53c68e2119ed1473bb3b7c9873d0a256e8eec8dc9f57820a7e23d49deb4041beae704b3fb527ce57316ff238515c248c80d51fd44e31dbb2d2e1d6b8007a03bf9b981fee094ee82f413698af66a3057621490d60207bca2e7a11e96cfb850a9a371ce672d0c4826be044acaa0a0a04fab4f2807eac896c48db2c35caf97fdf8bacb854f5351328cfbab2c3b251fc0abe20ba4b8fe8f4a98dfb76a0b1ea6b6463bdd900e23114c94f205f492a4acb30cc8a6efe6f73a96d3688853c60dce92732440db5ec245478bb64ebe9b60e7469ffb253febcda05613a8c1dbf72634e68d912e2fc98501d99c7dafb50081edcc60dc74daf9cecbcf65aa57661451fc6131f8c879b2181984bc4e0973ad6984837e19595caa35ff4713266b6a6c090a50afeb1461590c4c36f7fead0c9620af82302616c154e74199ee11353f6e9861472e2f1826afd0ce1a2ce9712b50019b32397960f54f4fce3c6655e13d8ef3ba20eaa3ca03a831a39732203dc3d2d3bf8de63fb4c96b3ec10cc852401f25a2575e98d9a25bf0767fc180f6fef5928565fa9ffdd620b6713f85bbc140060df1b50607b4eb51c0c71dac8ee2c19b9bd03b1840bb4d1f8a767d788a31926c9c39be4709dd57e856cb417d3947ce825f194fac18323f36a3b7743603abc628d477b3292a6b3f4965e882a110728f2a9f4fa8fd9d9d50859c48fe0f07f6a826bd5c5d8d645c0f7d8d03cf49be2419e2986f8ad55a228cacd0838f867a8612fd1c4b04d54dc9d5b05cc9395f5bb7fe918083bedfa33734a3f6afaf70379f4d423fa592dcfdeef84161df3f8f42204116442fc815a3cb3c79348d489296014fb8d4334c4ad776e14207ed2115781a0caac4cbfddf8f788f58cd9da9c33f145d87a187d7db78ce4368c5bdbba67fde5264a53a65a027a52aa09fd4943aeeae146a769a26a0f3597fd5004b60c179ce2bcafc78220d691c44c153c883bf942f01586b5321e4bbb28ab44d97bea3368f7c5d0c3dda0ef359065fd31f62060beb0b2a31f7164867e4b78f89f5ea0131aed7014ef3385f0b350ff847f4321b81c7dc9a484605ee397a2d5ea8ad9593020cea3acb6a106a560b4bf675c89aa3b14678dfef6602fdfa9afeeb6f16cb1b3cc944ad5d0492a3d07308c07dfc204c071d92f6b8b5694c70d166fe29f7894ceee7554dc32c71f3b971c8f20f2cafa4399a8755684090f90e6b45ee924d1205e0a075fd2259b6ca6430d28c780735353be38578b3cf1badcba4dae86419d4a0c1ec21f4a7510a08018e90974f0757aab8b51dc0fc068193d040cbd9706eeec02360da646b11cc5f1a544ecf24ce87c7165a0cb9bdb6990db03320ecf2f65fb6dfd1f3d32b2ae10723707cf5f30ea387f677aea100649c72e795b5f7d652e0e2fd0ae19eaf96f1b6453d056e01c97aa5c271b5e5f303fa4013f686cfbf64a1c1fe4263786b835e46a98699b8d5262520c4947987748ab21a48aef3", 0xfd1, 0x6, 0x0) (async)

58.77755273s ago: executing program 4 (id=104):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x40}, 0x18)
r1 = socket$igmp6(0xa, 0x3, 0x3a)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e20, @private=0xa010100}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r3=>0x0]}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x82, &(0x7f00000000c0)={r3, 0x8}, &(0x7f0000000200)=0x4d) (async)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x82, &(0x7f00000000c0)={r3, 0x8}, &(0x7f0000000200)=0x4d)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x101, @loopback, 0xa3c}, {0xa, 0xfffe, 0xfffffffd, @dev, 0x4}, 0x1000, {[0x9, 0x0, 0xfffffffe, 0xfffffef9, 0x0, 0x1, 0x2]}}, 0x5c)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8) (async)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8)
pipe2$9p(&(0x7f0000000140), 0x0) (async)
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x11, 0xc, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = dup(r5)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@msize={'msize', 0x3d, 0x1000}}], [], 0x6b}}) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@msize={'msize', 0x3d, 0x1000}}], [], 0x6b}})

36.786720282s ago: executing program 32 (id=104):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x40}, 0x18)
r1 = socket$igmp6(0xa, 0x3, 0x3a)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e20, @private=0xa010100}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r3=>0x0]}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x82, &(0x7f00000000c0)={r3, 0x8}, &(0x7f0000000200)=0x4d) (async)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x82, &(0x7f00000000c0)={r3, 0x8}, &(0x7f0000000200)=0x4d)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x101, @loopback, 0xa3c}, {0xa, 0xfffe, 0xfffffffd, @dev, 0x4}, 0x1000, {[0x9, 0x0, 0xfffffffe, 0xfffffef9, 0x0, 0x1, 0x2]}}, 0x5c)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8) (async)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8)
pipe2$9p(&(0x7f0000000140), 0x0) (async)
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x11, 0xc, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = dup(r5)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@msize={'msize', 0x3d, 0x1000}}], [], 0x6b}}) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@msize={'msize', 0x3d, 0x1000}}], [], 0x6b}})

1.962940132s ago: executing program 1 (id=1280):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000f195"], &(0x7f0000000500)='GPL\x00'}, 0x94)
socket$unix(0x1, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f00000004c0), &(0x7f0000000300)=r1}, 0x20)
close(0x4)

1.917333416s ago: executing program 1 (id=1282):
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x13f}}, 0x20)
r1 = add_key$keyring(&(0x7f0000000300), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
r3 = socket(0x10, 0x80003, 0x0)
write(r3, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85)
close_range(r3, 0xffffffffffffffff, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000340)=@keyring={'key_or_keyring:', r1})
write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r0}}, 0x10)
write$RDMA_USER_CM_CMD_MIGRATE_ID(0xffffffffffffffff, &(0x7f0000001b40)={0x12, 0x10, 0xfa00, {0x0, r0}}, 0x18)
close(0xffffffffffffffff)

1.880454118s ago: executing program 1 (id=1284):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002000)=ANY=[@ANYBLOB="757466383d312c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c756e695f786c6174653d302c73686f72746e616d653d77696e39352c000f3556feecb6412e00c80bdee16891f8bf67c9f201996782a86d4bab33b4f23383380e4ccafc9da9def41b05c1dfb2cfa24e43aedf5536d3bce06ddda97c586bc37fab5366b1ab6fee95cc224e56e681e82dd4dbbde3785fdd0fc4e7df753a0e2658aa5e88e1d38366c7908a7b2b678ee4b4bfc7aafa2101c157745926241af5ac30189eced78c1611b972d03bfef046f4adcada230ef0ac02ede79fb7d92a8354670c01cb80361c1fde2cef3204a182323c318e10ef11cb24c435d589b17a396377800f"], 0x1, 0x21b, &(0x7f0000000300)="$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")
syz_emit_ethernet(0x1e, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaa"], 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x180) (fail_nth: 7)

1.61565662s ago: executing program 1 (id=1288):
open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000046, &(0x7f0000000740)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@nobarrier}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x23)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="c0020000100063d10000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000000000000000000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc01000000000000000000000000000000000000330000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000b000000000000000000000000000000ffffffffffffffff000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001600000000020000000000000000000000bf010100636d61632861657329"], 0x2c0}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfd, 0x0, 0x7ffc9ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r4, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r5}, 0x10)
execveat$binfmt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x800)
setsockopt$inet6_int(r0, 0x29, 0xa, &(0x7f0000000200)=0xc06, 0x4)
connect$rds(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r6, &(0x7f00000001c0)="f14a18f6913026bbc8e195ec033d173c59594e80b11c263107f65f12606a9789", 0x20)

1.422213115s ago: executing program 1 (id=1298):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfec8d000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000d00)=ANY=[@ANYBLOB="1802008000ff0f000000000000008000850000006100000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r0, &(0x7f0000000d40)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f0000000cc0)=ANY=[@ANYBLOB="18000000000000000000000007000000890704e068000000110000000000000000dbc790ad000000fc000000000000001400000000000000000000003400000004000000000000001c000000000000000000000008"], 0x68}, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r2}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x69, 0x8}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
unshare(0x22020600)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
pipe(&(0x7f0000019480)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x0, 0x31, 0x7d, 0x55}}]}}]}}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
syz_clone3(&(0x7f0000000980)={0x200, 0x0, 0x0, 0x0, {0x5}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x7, &(0x7f0000000100))
vmsplice(r5, 0x0, 0x0, 0x3)
r6 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r6, 0x100000000000000)

1.086541173s ago: executing program 5 (id=1306):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000417000/0x2000)=nil, 0x2000, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r1, 0x0)

877.86608ms ago: executing program 2 (id=1309):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010005000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x4, 0x0, 0x0)

819.267424ms ago: executing program 2 (id=1311):
r0 = io_uring_setup(0x3efa, &(0x7f0000000000)={0x0, 0x0, 0x1840, 0x2})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000000080), 0x0)
r1 = getpid()
r2 = syz_open_procfs(r1, &(0x7f0000000000)='timers\x00')
r3 = socket(0x40000000015, 0x5, 0x0)
brk(0xffffffff00000001)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f0000000180), 0x4)
bind$inet6(r3, &(0x7f0000000f80)={0xa, 0x4, 0x0, @loopback, 0xa7a}, 0x1c)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x0, {0x2, @multicast, 'vcan0\x00'}}, 0x1e)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000000)='/proc/sys/net/ipv4\x00\x00s/sync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd11=\x11\xc8\xdd\x15\xcc\xd2\xf1d\'%\x11c\x91l,'}, 0x30)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000001c0), 0x18)
sendfile(0xffffffffffffffff, r2, 0x0, 0x8)

806.264345ms ago: executing program 3 (id=1313):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000001f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0)

796.852336ms ago: executing program 2 (id=1314):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000001f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000290000003700000000000000000021bfba8599d2e449e005ecc47b0ec80000b0f74681b8705586def100be65c27dede307463333dbfeab7ec88a631e0bf708e2bda2558edc64e2a5d79b3f18e8d8e4a5abf9583c19224519b4f372dbd05d6d60857a68b3d7548f58562d22bcf3097dcf817c2b8c6929c9a70ad68afbdced3b29d6d63d4e2ba22094c8fc9616e3ab1b652d99f9e30160fa90ad3f764a1ebbcd455591de49027c84b2ade2ce51ce718139985cc4ab67d9e3c9ba6b9b79a4cb16fa56ae21a18a83923c8a91b2265b834691493429fd8655a364edfa1715a5ee3409bb18d7d7e6a9b8550ca9e4c178eb5c8ce0266de905f8b349d1ada0481f4157d56c530b62"], 0x18}}], 0x1, 0x0)
close(0xffffffffffffffff)

759.371039ms ago: executing program 2 (id=1316):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000}, 0x94)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000a00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x8c, 0x8c, 0x9, [@int={0x9, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0x45, 0x6}, @type_tag={0x7, 0x0, 0x0, 0x12, 0x404}, @var={0xd, 0x0, 0x0, 0xe, 0x1, 0x2}, @type_tag={0xf, 0x0, 0x0, 0x12, 0x1}, @volatile={0xe, 0x0, 0x0, 0x9, 0x4}, @restrict={0x7, 0x0, 0x0, 0xb, 0x1}, @ptr={0x5, 0x0, 0x0, 0x2, 0xfffffffd}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x4, 0x25, 0x2}}, @ptr={0x4, 0x0, 0x0, 0x2, 0x3}, @const={0x6, 0x0, 0x0, 0xa, 0x3}]}, {0x0, [0x61, 0x1e, 0x2e, 0x30, 0x30, 0x5f, 0x61]}}, &(0x7f00000001c0)=""/38, 0xad, 0x26, 0x0, 0x378b, 0x10000}, 0x28)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000240)='kmem_cache_free\x00', r0, 0x0, 0x100000000000}, 0x18)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f00000000c0), 0x2, 0x46b, &(0x7f0000000580)="$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")
r3 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x80044940, &(0x7f0000001b00)={<r4=>0x0, ""/256, 0x0, 0x0, <r5=>0x0, 0x0, ""/16, ""/16, ""/16, <r6=>0x0, <r7=>0x0})
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000040)='netlink_extack\x00', r9, 0x0, 0x2}, 0x18)
sendmsg$nl_xfrm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=@newsa={0x16c, 0x10, 0x413, 0x0, 0x25dfdbfb, {{@in=@private=0xa010100, @in=@remote}, {@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x44}, {}, {0x9, 0x0, 0x0, 0x5}, {}, 0x0, 0x0, 0xa}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "25cac5216d1c8af0a976902918bf448c5d9f5459"}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x70bd27, 0x70bd2d, 0x70bd25, 0x70bd2d, 0x1}}]}, 0x16c}}, 0x0)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f00000006c0)='.\x00', 0x1a4243c, &(0x7f0000000700)=ANY=[@ANYRES16=r5, @ANYRESDEC=r6, @ANYRESHEX=r7, @ANYRESDEC, @ANYBLOB="b1f1563f8cf9b3df43707e277e3870d9bbeca08c7c9e5ebdd62801631c9f6ff697c8ea4da0047f1529a0c7", @ANYRES8=r4, @ANYRES64=r4, @ANYRES8=0x0, @ANYRES64, @ANYRES8=r7], 0x0, 0x0, &(0x7f0000000080))
ioctl$BTRFS_IOC_INO_LOOKUP(r2, 0xd0009412, &(0x7f0000000ac0)={r4, 0x5})
r10 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='net/tcp\x00')
preadv(r10, &(0x7f0000000240)=[{&(0x7f0000000000)=""/29, 0x1d}], 0x1, 0x0, 0x0)
setsockopt$inet6_buf(r10, 0x29, 0x2c, &(0x7f00000004c0)="8afcc5863531b0c260528c8bfafd8aae0545b6c6d77c22ec013e7c99500172f906c85716c20d40a6fa3f9bb2328daf49ee003fc92de64535657a57841d4ccb6c180ad9df901bb427c49f2b2a3e389f7bf05d4666addfb6ba9232f10db6022a4a9c8594a8f9f8dcb3094d2d20cb6d8b46e13a8ff8ed1ca469fd175f23b1342a656c8e65b7e7c838440046a32ec71ab4934079382c5333026efe8eb3d636845d285ad1", 0xa2)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r11, 0x0, 0x10, &(0x7f0000001d00)={{{@in=@loopback, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{@in6=@initdev}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xe8)
quotactl_fd$Q_GETQUOTA(r3, 0xffffffff80000702, r12, &(0x7f0000000400))
pwrite64(r11, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
r13 = fsopen(&(0x7f0000000000)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r13, 0x6, 0x0, 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x4)
fsmount(r13, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r13, 0x1, &(0x7f0000000180)='bcachefs\x00\xf6J\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00', &(0x7f0000000480)='.!]\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x7, 0x3, &(0x7f0000000080)=@framed={{0x72, 0xa, 0x0, 0xffc4, 0x3, 0x71, 0x10, 0xb5}}, &(0x7f0000000480)='GPL\x00'}, 0x94)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r11, 0x8008f512, &(0x7f0000000080))

723.302922ms ago: executing program 3 (id=1317):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)

650.626998ms ago: executing program 3 (id=1318):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ff"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0x0, 0x0, 0x0, 0x2000004, 0x0, 0x0, 0x1f00, 0x39, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x2, 0x200008, 0x7, 0x9}, 0x10}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r0], 0x4c}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

649.800678ms ago: executing program 5 (id=1319):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x71, '\x00', 0x0, @fallback=0x9, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x9}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x34000811)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000640)=ANY=[@ANYBLOB="30e01b3981"], 0x1000f)

599.271421ms ago: executing program 5 (id=1321):
bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYBLOB="6346eacacb55b57720b4e85f076c52cc7bf5b5f950912ef2efe82045624fce2f33fa7cbc97da7a675899034732944f48a4468a23b03cc46055f6512b77031d16abd343659079f3c64c73c4f5cbde600026c853973ef022f82c6eb024e5a5803cc4e0f13aa69a09959ac5cb3eea6d9e2aecf2968063a2da418be77cd765965527328cd2b26cb07c29f9fb90ab4e9807a8269c3c4aa546464e7b0321c3b66f68ba27a424d570028c151a05f5"], 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000f195"], 0x0}, 0x94)
io_uring_setup(0x4a73, 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='9p_protocol_dump\x00'}, 0x10)
bind$unix(r0, &(0x7f00000003c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
close(0x4)

557.999594ms ago: executing program 3 (id=1322):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000680), 0x20100, 0x0)
ioctl$PIO_FONTRESET(r1, 0x4b6d, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000001c40), 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x4}, 0x18)
r3 = inotify_init1(0x0)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000001b80)={&(0x7f0000000280)={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000380)=""/9, 0x9}], 0x1, &(0x7f0000001a40)=[@fadd={0x58, 0x114, 0x6, {{0x5, 0x9}, &(0x7f0000000440)=0xfffffffffffffffa, &(0x7f00000004c0)=0x3, 0x800, 0xc958, 0x5, 0x975, 0x22, 0xe4}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x9}, @rdma_args={0x48, 0x114, 0x1, {{0x3919, 0xf5e}, {&(0x7f0000000500)=""/87, 0x57}, &(0x7f0000000800)=[{&(0x7f0000000580)=""/128, 0x80}, {&(0x7f0000000600)=""/232, 0xe8}, {&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000000700)=""/97, 0x61}, {&(0x7f0000000780)=""/78, 0x4e}], 0x5, 0x64, 0x4}}, @fadd={0x58, 0x114, 0x6, {{0x2000000, 0x81}, &(0x7f0000000880)=0x8000, &(0x7f00000008c0)=0xe, 0x4, 0x6, 0x80000000, 0x2, 0x22}}, @rdma_map={0x30, 0x114, 0x3, {{&(0x7f0000000900)=""/141, 0x8d}, &(0x7f00000009c0), 0x64}}], 0x140, 0x800}, 0x8081)
inotify_add_watch(r3, &(0x7f0000000400)='.\x00', 0xa4000021)
read(r3, 0x0, 0x0)
close(r3)
open(&(0x7f0000000040)='./file0\x00', 0x40, 0x0)

531.400507ms ago: executing program 5 (id=1323):
open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000046, &(0x7f0000000740)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@nobarrier}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x23)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="c0020000100063d10000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000000000000000000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc01000000000000000000000000000000000000330000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000b000000000000000000000000000000ffffffffffffffff000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001600000000020000000000000000000000bf010100636d61632861657329"], 0x2c0}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfd, 0x0, 0x7ffc9ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r4, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r5}, 0x10)
execveat$binfmt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x800)
setsockopt$inet6_int(r0, 0x29, 0xa, &(0x7f0000000200)=0xc06, 0x4)
connect$rds(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r6, &(0x7f00000001c0)="f14a18f6913026bbc8e195ec033d173c59594e80b11c263107f65f12606a9789", 0x20)

472.278472ms ago: executing program 3 (id=1324):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010005000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x4, 0x0, 0x0)

342.483702ms ago: executing program 2 (id=1326):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0xffffffffffffffff}, 0x18)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe935"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

295.547036ms ago: executing program 5 (id=1327):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000000), 0x1, r2}, 0x38)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x1d)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
sendmsg$TIPC_NL_NODE_GET(r3, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000900)={0x78, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}]}, @TIPC_NLA_BEARER={0x3c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x15}}}, {0x14, 0x2, @in={0x2, 0x4e24, @multicast2}}}}, @TIPC_NLA_BEARER_PROP={0x4}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8}]}]}, 0x78}, 0x1, 0x0, 0x0, 0xc004}, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0xa8}, 0x18)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r6 = syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3014850, &(0x7f0000000000)={[{@nobh}, {@debug}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@usrquota}, {@user_xattr}]}, 0x3, 0x4e1, &(0x7f0000000a00)="$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")
r7 = perf_event_open(&(0x7f0000000840)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x3, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000008c0)='jbd2_submit_inode_data\x00', r8}, 0x18)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r9)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r9, &(0x7f0000000480)={0x0, 0x4000, &(0x7f0000000580)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r10, @ANYBLOB="796100000000000000007e00000033000300", @ANYRES32=0x0, @ANYBLOB="f67eb6f2876a98f1f6f62ac50a793c540cb2eefccbdd5d0748afe66316af15bdec191868"], 0x1c}}, 0x4000054)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="17000000000000000400000003", @ANYRESDEC=r9], 0x48)
r11 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000004c0)={<r12=>0xffffffffffffffff}, 0x106, 0xa}}, 0x20)
getsockopt$XDP_STATISTICS(0xffffffffffffffff, 0x11b, 0x7, &(0x7f0000000980), &(0x7f00000009c0)=0x30)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r11, &(0x7f00000005c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000400), 0x2, r12, 0x30, 0x1, @in6={0xa, 0x4e22, 0x2c7f42d1, @private1={0xfc, 0x1, '\x00', 0x1}, 0x4}}}, 0xa0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000300)=ANY=[@ANYRES16=r7, @ANYRESHEX=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdfb, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
open_tree(r6, &(0x7f0000000780)='./file1\x00', 0x81000)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630bf7c045f94cd977", 0x18, 0xffffffffffffffff)

233.239791ms ago: executing program 0 (id=1328):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x64, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
quotactl_fd$Q_GETNEXTQUOTA(0xffffffffffffffff, 0xffffffff80000900, 0xffffffffffffffff, 0x0)

216.666402ms ago: executing program 3 (id=1329):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000417000/0x2000)=nil, 0x2000, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r1, 0x0)

213.738992ms ago: executing program 0 (id=1330):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f0000000280), &(0x7f00000002c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0)

175.690216ms ago: executing program 0 (id=1331):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x4f33}, 0x18)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r2 = fcntl$dupfd(r1, 0x406, r1)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x7995}, 0x8, 0xca, 0x0, 0x48000000, 0x0, 0x40, 0x0})

144.266188ms ago: executing program 0 (id=1332):
r0 = io_uring_setup(0x3efa, &(0x7f0000000000)={0x0, 0x0, 0x1840, 0x2})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000000080), 0x0)
r1 = getpid()
r2 = syz_open_procfs(r1, &(0x7f0000000000)='timers\x00')
r3 = socket(0x40000000015, 0x5, 0x0)
brk(0xffffffff00000001)
bind$inet6(r3, &(0x7f0000000f80)={0xa, 0x4, 0x0, @loopback, 0xa7a}, 0x1c)
r4 = socket(0x18, 0x800, 0x0)
connect$pppoe(r4, &(0x7f0000000080)={0x18, 0x0, {0x2, @multicast, 'vcan0\x00'}}, 0x1e)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000000)='/proc/sys/net/ipv4\x00\x00s/sync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd11=\x11\xc8\xdd\x15\xcc\xd2\xf1d\'%\x11c\x91l,'}, 0x30)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000001c0), 0x18)
sendfile(r4, r2, 0x0, 0x8)

74.016034ms ago: executing program 0 (id=1333):
bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYBLOB="6346eacacb55b57720b4e85f076c52cc7bf5b5f950912ef2efe82045624fce2f33fa7cbc97da7a675899034732944f48a4468a23b03cc46055f6512b77031d16abd343659079f3c64c73c4f5cbde600026c853973ef022f82c6eb024e5a5803cc4e0f13aa69a09959ac5cb3eea6d9e2aecf2968063a2da418be77cd765965527328cd2b26cb07c29f9fb90ab4e9807a8269c3c4aa546464e7b0321c3b66f68ba27a424d570028c151a05f5"], 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000f195"], 0x0}, 0x94)
io_uring_setup(0x4a73, 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='9p_protocol_dump\x00'}, 0x10)
bind$unix(r0, &(0x7f00000003c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
close(0x4)

73.227474ms ago: executing program 2 (id=1334):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000900)={{r0}, &(0x7f0000000880), &(0x7f00000008c0)='%ps    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
flistxattr(r2, &(0x7f0000000580)=""/173, 0xad)
ioctl$USBDEVFS_CLEAR_HALT(r2, 0xc0105502, &(0x7f0000000000)={0x1, 0x1})
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x64)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file2\x00', 0x187842, 0x0)
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000040)=0x2)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)

26.429418ms ago: executing program 1 (id=1335):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r1, 0x0)

15.523268ms ago: executing program 0 (id=1336):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000188500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000004c0)='kmem_cache_free\x00', r1}, 0x10)
lsm_list_modules(&(0x7f0000001780), 0x0, 0x0)

0s ago: executing program 5 (id=1337):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000680), 0x20100, 0x0)
ioctl$PIO_FONTRESET(r1, 0x4b6d, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000001c40), 0x4)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r2 = inotify_init1(0x0)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000001b80)={&(0x7f0000000280)={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000380)=""/9, 0x9}], 0x1, &(0x7f0000001a40)=[@fadd={0x58, 0x114, 0x6, {{0x5, 0x9}, &(0x7f0000000440)=0xfffffffffffffffa, &(0x7f00000004c0)=0x3, 0x800, 0xc958, 0x5, 0x975, 0x22, 0xe4}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x9}, @rdma_args={0x48, 0x114, 0x1, {{0x3919, 0xf5e}, {&(0x7f0000000500)=""/87, 0x57}, &(0x7f0000000800)=[{&(0x7f0000000580)=""/128, 0x80}, {&(0x7f0000000600)=""/232, 0xe8}, {&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000000700)=""/97, 0x61}, {&(0x7f0000000780)=""/78, 0x4e}], 0x5, 0x64, 0x4}}, @fadd={0x58, 0x114, 0x6, {{0x2000000, 0x81}, &(0x7f0000000880)=0x8000, &(0x7f00000008c0)=0xe, 0x4, 0x6, 0x80000000, 0x2, 0x22}}, @rdma_map={0x30, 0x114, 0x3, {{&(0x7f0000000900)=""/141, 0x8d}, &(0x7f00000009c0), 0x64}}], 0x140, 0x800}, 0x8081)
inotify_add_watch(r2, &(0x7f0000000400)='.\x00', 0xa4000021)
read(r2, 0x0, 0x0)
close(r2)
open(&(0x7f0000000040)='./file0\x00', 0x40, 0x0)

kernel console output (not intermixed with test programs):

netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3711 comm=syz.3.77
[   37.367023][ T3744] tmpfs: Unknown parameter 'inode3'
[   37.425190][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.458819][ T3308] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[   37.477601][ T3308] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   37.500128][ T3308] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   37.607027][ T3771] SELinux: failed to load policy
[   37.615578][ T3771] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   37.646934][ T3774] SELinux: failed to load policy
[   37.662404][ T3780] loop0: detected capacity change from 0 to 512
[   37.684280][ T3780] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   37.696791][ T3776] tmpfs: Unknown parameter 'inode3'
[   37.716736][ T3321] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   37.755358][ T3791] loop0: detected capacity change from 0 to 128
[   37.772840][ T3791] FAT-fs (loop0): bogus number of reserved sectors
[   37.779820][ T3791] FAT-fs (loop0): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[   37.779994][ T3793] loop2: detected capacity change from 0 to 256
[   37.789471][ T3791] FAT-fs (loop0): Can't find a valid FAT filesystem
[   37.885150][ T3803] loop0: detected capacity change from 0 to 1024
[   37.897621][ T3803] EXT4-fs: Ignoring removed oldalloc option
[   37.903594][ T3803] EXT4-fs: Ignoring removed bh option
[   37.912916][ T3805] loop3: detected capacity change from 0 to 1024
[   37.920942][ T3805] EXT4-fs: Ignoring removed oldalloc option
[   37.926953][ T3805] EXT4-fs: Ignoring removed bh option
[   37.936242][ T3803] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.949735][ T3803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.973802][ T3805] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.987592][ T3805] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.038331][ T3814] SELinux: failed to load policy
[   38.067385][ T3818] FAULT_INJECTION: forcing a failure.
[   38.067385][ T3818] name failslab, interval 1, probability 0, space 0, times 1
[   38.080455][ T3818] CPU: 1 UID: 0 PID: 3818 Comm: syz.3.120 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   38.080472][ T3818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   38.080479][ T3818] Call Trace:
[   38.080482][ T3818]  <TASK>
[   38.080486][ T3818]  __dump_stack+0x1d/0x30
[   38.080522][ T3818]  dump_stack_lvl+0xe8/0x140
[   38.080536][ T3818]  dump_stack+0x15/0x1b
[   38.080546][ T3818]  should_fail_ex+0x265/0x280
[   38.080618][ T3818]  should_failslab+0x8c/0xb0
[   38.080632][ T3818]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   38.080650][ T3818]  ? sidtab_sid2str_get+0xa0/0x130
[   38.080720][ T3818]  kmemdup_noprof+0x2b/0x70
[   38.080767][ T3818]  sidtab_sid2str_get+0xa0/0x130
[   38.080792][ T3818]  security_sid_to_context_core+0x1eb/0x2e0
[   38.080811][ T3818]  security_sid_to_context+0x27/0x40
[   38.080907][ T3818]  selinux_lsmprop_to_secctx+0x67/0xf0
[   38.080927][ T3818]  security_lsmprop_to_secctx+0x43/0x80
[   38.080942][ T3818]  audit_log_task_context+0x77/0x190
[   38.081021][ T3818]  audit_log_task+0xf4/0x250
[   38.081116][ T3818]  audit_seccomp+0x61/0x100
[   38.081155][ T3818]  ? __seccomp_filter+0x68c/0x10d0
[   38.081174][ T3818]  __seccomp_filter+0x69d/0x10d0
[   38.081187][ T3818]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   38.081203][ T3818]  ? vfs_write+0x75e/0x8e0
[   38.081219][ T3818]  __secure_computing+0x82/0x150
[   38.081299][ T3818]  syscall_trace_enter+0xcf/0x1e0
[   38.081313][ T3818]  do_syscall_64+0xac/0x200
[   38.081327][ T3818]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   38.081358][ T3818]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   38.081371][ T3818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.081400][ T3818] RIP: 0033:0x7f4fdcceebe9
[   38.081409][ T3818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.081419][ T3818] RSP: 002b:00007f4fdb74f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[   38.081509][ T3818] RAX: ffffffffffffffda RBX: 00007f4fdcf15fa0 RCX: 00007f4fdcceebe9
[   38.081516][ T3818] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000007
[   38.081523][ T3818] RBP: 00007f4fdb74f090 R08: 0000000000000f3a R09: 0000000000000000
[   38.081532][ T3818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   38.081583][ T3818] R13: 00007f4fdcf16038 R14: 00007f4fdcf15fa0 R15: 00007ffee9d925d8
[   38.081594][ T3818]  </TASK>
[   38.642130][ T3849] bridge0: entered promiscuous mode
[   38.651256][ T3849] macsec1: entered promiscuous mode
[   38.793238][ T3851] bond1: (slave geneve2): Enslaving as an active interface with an up link
[   38.811495][   T12] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   38.837418][   T12] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   38.851704][   T12] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   38.861032][   T12] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   52.867779][   T29] kauditd_printk_skb: 663 callbacks suppressed
[   52.867794][   T29] audit: type=1400 audit(1754705567.633:1142): avc:  denied  { execmem } for  pid=3884 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   59.630337][   T29] audit: type=1400 audit(1754705574.393:1143): avc:  denied  { create } for  pid=3885 comm="syz.3.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   59.667801][   T29] audit: type=1400 audit(1754705574.403:1144): avc:  denied  { write } for  pid=3885 comm="syz.3.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   59.687917][   T29] audit: type=1400 audit(1754705574.403:1145): avc:  denied  { nlmsg_write } for  pid=3885 comm="syz.3.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   59.708498][   T29] audit: type=1326 audit(1754705574.423:1146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3890 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   59.731888][   T29] audit: type=1326 audit(1754705574.423:1147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3890 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   59.755192][   T29] audit: type=1326 audit(1754705574.423:1148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3890 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   59.778604][   T29] audit: type=1326 audit(1754705574.423:1149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3890 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   59.802205][   T29] audit: type=1326 audit(1754705574.423:1150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3890 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   59.825689][   T29] audit: type=1326 audit(1754705574.423:1151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3890 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   59.849468][   T29] audit: type=1326 audit(1754705574.423:1152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3890 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   59.894553][ T3891] loop0: detected capacity change from 0 to 512
[   59.912923][ T3891] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   59.926017][ T3891] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   59.938312][ T3906] netlink: 'syz.3.140': attribute type 1 has an invalid length.
[   59.946007][ T3906] __nla_validate_parse: 9 callbacks suppressed
[   59.946019][ T3906] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.140'.
[   59.974964][ T3891] EXT4-fs (loop0): failed to initialize system zone (-117)
[   59.989828][ T3913] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   59.993623][ T3891] EXT4-fs (loop0): mount failed
[   59.997036][ T3913] IPv6: NLM_F_CREATE should be set when creating new route
[   60.025054][ T3916] netlink: 76 bytes leftover after parsing attributes in process `syz.1.142'.
[   60.110718][ T3928] netlink: 4 bytes leftover after parsing attributes in process `syz.1.142'.
[   60.156745][ T3935] netlink: 'syz.0.148': attribute type 1 has an invalid length.
[   60.164469][ T3935] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.148'.
[   60.194315][ T3895] chnl_net:caif_netlink_parms(): no params data found
[   60.276354][ T3895] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.283673][ T3895] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.297598][ T3895] bridge_slave_0: entered allmulticast mode
[   60.304673][ T3895] bridge_slave_0: entered promiscuous mode
[   60.311628][ T3895] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.318743][ T3895] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.326016][ T3895] bridge_slave_1: entered allmulticast mode
[   60.333978][ T3895] bridge_slave_1: entered promiscuous mode
[   60.367519][ T3895] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.381256][ T3953] SELinux: failed to load policy
[   60.387880][ T3953] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   60.389145][ T3895] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.395098][ T3953] IPv6: NLM_F_CREATE should be set when creating new route
[   60.433332][ T3895] team0: Port device team_slave_0 added
[   60.450079][ T3955] loop0: detected capacity change from 0 to 512
[   60.457302][ T3895] team0: Port device team_slave_1 added
[   60.459054][ T3955] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   60.490414][ T3959] SELinux: failed to load policy
[   60.491246][ T3955] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.509712][ T3955] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.537901][ T3895] batman_adv: batadv0: Adding interface: batadv_slave_0
[   60.544946][ T3895] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.570841][ T3895] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   60.582008][ T3895] batman_adv: batadv0: Adding interface: batadv_slave_1
[   60.589118][ T3895] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.593101][ T3955] EXT4-fs (loop0): shut down requested (0)
[   60.615154][ T3895] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.681752][ T3895] hsr_slave_0: entered promiscuous mode
[   60.697878][ T3895] hsr_slave_1: entered promiscuous mode
[   60.709210][ T3895] debugfs: 'hsr0' already exists in 'hsr'
[   60.714945][ T3895] Cannot create hsr debugfs directory
[   60.745386][ T3955] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   60.754268][ T3955] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   60.770191][ T3955] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   60.784147][ T3965] netlink: 100 bytes leftover after parsing attributes in process `syz.2.157'.
[   60.859094][ T3955] Falling back ldisc for ttyS3.
[   60.869829][ T3895] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   60.892616][ T3895] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   60.900088][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.911336][ T3895] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   60.921044][ T3895] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   60.952561][ T3895] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.959700][ T3895] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.967085][ T3895] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.974157][ T3895] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.006971][ T3895] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.018177][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.028559][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.056697][ T3992] loop1: detected capacity change from 0 to 512
[   61.065461][ T3895] 8021q: adding VLAN 0 to HW filter on device team0
[   61.067458][ T3992] EXT4-fs: Ignoring removed orlov option
[   61.087795][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.094867][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.108304][ T3992] EXT4-fs: journaled quota format not specified
[   61.122587][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.129653][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.171020][ T3992] loop1: detected capacity change from 0 to 512
[   61.192763][ T3992] EXT4-fs: inline encryption not supported
[   61.215279][ T3992] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   61.230624][ T3992] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   61.274770][ T4009] netlink: 'syz.3.169': attribute type 1 has an invalid length.
[   61.282475][ T4009] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.169'.
[   61.283841][ T3895] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.305204][ T3992] netlink: 12 bytes leftover after parsing attributes in process `syz.1.167'.
[   61.314188][ T3992] netlink: 152 bytes leftover after parsing attributes in process `syz.1.167'.
[   61.332840][ T3992] netlink: 4 bytes leftover after parsing attributes in process `syz.1.167'.
[   61.343852][ T3992] tipc: Started in network mode
[   61.348726][ T3992] tipc: Node identity ac14140f, cluster identity 4711
[   61.357208][ T3992] tipc: New replicast peer: 255.255.255.255
[   61.363474][ T3992] tipc: Enabled bearer <udp:syz2>, priority 10
[   61.380743][ T3992] netlink: 340 bytes leftover after parsing attributes in process `syz.1.167'.
[   61.433668][ T4021] SELinux: failed to load policy
[   61.444249][ T4021] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   61.451497][ T4021] IPv6: NLM_F_CREATE should be set when creating new route
[   61.567473][ T4035] loop1: detected capacity change from 0 to 512
[   61.604154][ T4035] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.626473][ T3895] veth0_vlan: entered promiscuous mode
[   61.635412][ T4035] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.648189][ T3895] veth1_vlan: entered promiscuous mode
[   61.674729][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.686649][ T3895] veth0_macvtap: entered promiscuous mode
[   61.696028][ T3895] veth1_macvtap: entered promiscuous mode
[   61.701446][ T4045] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   61.708985][ T4045] IPv6: NLM_F_CREATE should be set when creating new route
[   61.722606][ T3895] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.749840][ T3895] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.786670][ T4051] loop3: detected capacity change from 0 to 512
[   61.795284][ T1382] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.801161][ T4051] EXT4-fs: Ignoring removed orlov option
[   61.807762][ T1382] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.833717][ T3321] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.844588][ T4051] EXT4-fs: journaled quota format not specified
[   61.857289][ T3321] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.874524][ T4051] loop3: detected capacity change from 0 to 512
[   61.883488][ T4053] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   61.883488][ T4053]    program syz.1.182 not setting count and/or reply_len properly
[   61.905791][ T4051] EXT4-fs: inline encryption not supported
[   61.924210][ T4051] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   61.943881][ T4051] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   62.015068][ T4051] tipc: Started in network mode
[   62.020034][ T4051] tipc: Node identity ac14140f, cluster identity 4711
[   62.045549][ T4051] tipc: New replicast peer: 255.255.255.255
[   62.051703][ T4051] tipc: Enabled bearer <udp:syz2>, priority 10
[   62.114578][ T4067] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   62.121813][ T4067] IPv6: NLM_F_CREATE should be set when creating new route
[   62.296660][ T4076] bridge0: entered promiscuous mode
[   62.305027][ T4076] macsec1: entered promiscuous mode
[   62.342581][ T4084] SELinux: failed to load policy
[   62.352261][ T4084] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   62.359487][ T4084] IPv6: NLM_F_CREATE should be set when creating new route
[   62.369535][   T10] tipc: Node number set to 2886997007
[   62.975865][ T4118] bridge0: entered promiscuous mode
[   63.008993][ T4118] macsec1: entered promiscuous mode
[   63.169041][   T36] tipc: Node number set to 2886997007
[   63.313807][ T4147] loop3: detected capacity change from 0 to 512
[   63.326329][ T4147] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps superblock
[   63.336036][ T4147] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 not in group (block 1)!
[   63.346051][ T4147] EXT4-fs (loop3): group descriptors corrupted!
[   63.851943][ T4170] loop1: detected capacity change from 0 to 512
[   63.885158][ T4170] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   63.965439][   T31] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   64.039393][ T4189] FAULT_INJECTION: forcing a failure.
[   64.039393][ T4189] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.052615][ T4189] CPU: 1 UID: 0 PID: 4189 Comm: syz.3.240 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   64.052674][ T4189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   64.052685][ T4189] Call Trace:
[   64.052691][ T4189]  <TASK>
[   64.052698][ T4189]  __dump_stack+0x1d/0x30
[   64.052717][ T4189]  dump_stack_lvl+0xe8/0x140
[   64.052734][ T4189]  dump_stack+0x15/0x1b
[   64.052750][ T4189]  should_fail_ex+0x265/0x280
[   64.052859][ T4189]  should_fail+0xb/0x20
[   64.052888][ T4189]  should_fail_usercopy+0x1a/0x20
[   64.052914][ T4189]  _copy_from_user+0x1c/0xb0
[   64.052937][ T4189]  copy_from_bpfptr+0x5c/0x90
[   64.052967][ T4189]  bpf_prog_load+0x74a/0x1070
[   64.053015][ T4189]  ? security_bpf+0x2b/0x90
[   64.053051][ T4189]  __sys_bpf+0x462/0x7b0
[   64.053166][ T4189]  __x64_sys_bpf+0x41/0x50
[   64.053237][ T4189]  x64_sys_call+0x2aea/0x2ff0
[   64.053267][ T4189]  do_syscall_64+0xd2/0x200
[   64.053294][ T4189]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   64.053320][ T4189]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   64.053387][ T4189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.053411][ T4189] RIP: 0033:0x7f4fdcceebe9
[   64.053428][ T4189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.053444][ T4189] RSP: 002b:00007f4fdb74f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   64.053461][ T4189] RAX: ffffffffffffffda RBX: 00007f4fdcf15fa0 RCX: 00007f4fdcceebe9
[   64.053475][ T4189] RDX: 0000000000000094 RSI: 0000200000000300 RDI: 0000000000000005
[   64.053561][ T4189] RBP: 00007f4fdb74f090 R08: 0000000000000000 R09: 0000000000000000
[   64.053572][ T4189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.053583][ T4189] R13: 00007f4fdcf16038 R14: 00007f4fdcf15fa0 R15: 00007ffee9d925d8
[   64.053599][ T4189]  </TASK>
[   64.311735][ T4199] bridge0: entered promiscuous mode
[   64.317111][ T4199] macsec1: entered promiscuous mode
[   64.349730][ T4206] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   64.356969][ T4206] IPv6: NLM_F_CREATE should be set when creating new route
[   64.440283][ T4216] Zero length message leads to an empty skb
[   64.579232][ T4238] futex_wake_op: syz.1.261 tries to shift op by -1; fix this program
[   64.601498][ T4243] loop0: detected capacity change from 0 to 512
[   64.611940][ T4243] EXT4-fs: Ignoring removed orlov option
[   64.630168][ T4243] EXT4-fs: journaled quota format not specified
[   64.658191][ T4243] tipc: Started in network mode
[   64.663171][ T4243] tipc: Node identity ac14140f, cluster identity 4711
[   64.673421][ T4243] tipc: New replicast peer: 255.255.255.255
[   64.679715][ T4243] tipc: Enabled bearer <udp:syz2>, priority 10
[   64.702791][ T4253] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   64.710018][ T4253] IPv6: NLM_F_CREATE should be set when creating new route
[   64.727170][   T29] kauditd_printk_skb: 804 callbacks suppressed
[   64.727184][   T29] audit: type=1326 audit(1754705579.493:1957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.1.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   64.743691][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   64.764762][   T29] audit: type=1326 audit(1754705579.503:1958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.1.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   64.788125][   T29] audit: type=1326 audit(1754705579.503:1959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.1.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   64.811622][   T29] audit: type=1326 audit(1754705579.503:1960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.1.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   64.835010][   T29] audit: type=1326 audit(1754705579.503:1961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.1.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   64.859149][   T29] audit: type=1400 audit(1754705579.533:1962): avc:  denied  { write } for  pid=4256 comm="syz.0.270" name="file0" dev="tmpfs" ino=275 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   64.860567][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   64.881448][   T29] audit: type=1400 audit(1754705579.533:1963): avc:  denied  { open } for  pid=4256 comm="syz.0.270" path="/48/file0" dev="tmpfs" ino=275 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   64.913750][   T29] audit: type=1400 audit(1754705579.533:1964): avc:  denied  { ioctl } for  pid=4256 comm="syz.0.270" path="/48/file0" dev="tmpfs" ino=275 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   64.988555][   T29] audit: type=1326 audit(1754705579.733:1965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.1.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   65.012034][   T29] audit: type=1326 audit(1754705579.733:1966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.1.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   65.110842][ T4282] loop1: detected capacity change from 0 to 512
[   65.128388][ T4282] EXT4-fs: Ignoring removed orlov option
[   65.145508][ T4282] EXT4-fs: journaled quota format not specified
[   65.157240][ T4287] __nla_validate_parse: 34 callbacks suppressed
[   65.157255][ T4287] netlink: 64 bytes leftover after parsing attributes in process `syz.3.282'.
[   65.176346][ T4282] loop1: detected capacity change from 0 to 512
[   65.184169][ T4289] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   65.190316][ T4282] EXT4-fs: inline encryption not supported
[   65.210670][ T4282] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   65.224466][ T4291] netlink: 8 bytes leftover after parsing attributes in process `syz.2.281'.
[   65.227221][ T4282] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   65.286747][ T4282] netlink: 12 bytes leftover after parsing attributes in process `syz.1.280'.
[   65.295657][ T4282] netlink: 152 bytes leftover after parsing attributes in process `syz.1.280'.
[   65.310756][ T4282] netlink: 4 bytes leftover after parsing attributes in process `syz.1.280'.
[   65.323814][ T4282] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   65.324134][ T4296] netlink: 8 bytes leftover after parsing attributes in process `syz.3.285'.
[   65.331753][ T4282] netlink: 340 bytes leftover after parsing attributes in process `syz.1.280'.
[   65.448401][ T4310] netlink: 4 bytes leftover after parsing attributes in process `syz.2.291'.
[   65.457262][ T4310] netlink: 4 bytes leftover after parsing attributes in process `syz.2.291'.
[   65.477904][ T4310] netlink: 4 bytes leftover after parsing attributes in process `syz.2.291'.
[   65.633498][ T4316] usb usb8: usbfs: process 4316 (syz.0.294) did not claim interface 0 before use
[   65.644755][ T4333] loop1: detected capacity change from 0 to 512
[   65.653483][ T4333] EXT4-fs: Ignoring removed orlov option
[   65.670700][ T4333] EXT4-fs: journaled quota format not specified
[   65.704774][ T4339] netlink: 'syz.5.304': attribute type 1 has an invalid length.
[   65.723167][ T4341] loop2: detected capacity change from 0 to 1024
[   65.757357][ T4333] loop1: detected capacity change from 0 to 512
[   65.772727][ T4333] EXT4-fs: inline encryption not supported
[   65.809021][ T3623] tipc: Node number set to 2886997007
[   65.845781][ T4333] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   65.882307][ T4333] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   65.911930][ T4341] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.925526][ T4341] ext4 filesystem being mounted at /69/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.971750][ T4352] futex_wake_op: syz.3.307 tries to shift op by -1; fix this program
[   66.118296][ T4362] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.145595][ T4362] batman_adv: batadv0: Removing interface: batadv_slave_0
[   66.237333][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.393097][ T4373] netlink: 'syz.3.315': attribute type 1 has an invalid length.
[   66.432943][ T4375] loop3: detected capacity change from 0 to 1024
[   66.445260][ T4375] EXT4-fs: Ignoring removed oldalloc option
[   66.451367][ T4375] EXT4-fs: Ignoring removed bh option
[   66.490379][ T4375] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.505814][ T4375] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.750894][ T4333] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   67.066898][ T4401] netlink: 'syz.0.326': attribute type 1 has an invalid length.
[   67.076214][ T4403] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   67.083441][ T4403] IPv6: NLM_F_CREATE should be set when creating new route
[   67.215254][ T4423] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.236891][ T4423] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.239669][ T4428] netlink: 'syz.0.339': attribute type 1 has an invalid length.
[   67.496482][ T4458] netlink: 'syz.1.351': attribute type 1 has an invalid length.
[   67.754272][ T4492] loop3: detected capacity change from 0 to 1024
[   67.783793][ T4492] EXT4-fs: Ignoring removed oldalloc option
[   67.789938][ T4492] EXT4-fs: Ignoring removed bh option
[   67.823593][ T4492] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.841710][ T4492] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.985806][ T4516] FAULT_INJECTION: forcing a failure.
[   67.985806][ T4516] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.998980][ T4516] CPU: 0 UID: 0 PID: 4516 Comm: syz.3.371 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   67.999007][ T4516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   67.999045][ T4516] Call Trace:
[   67.999052][ T4516]  <TASK>
[   67.999060][ T4516]  __dump_stack+0x1d/0x30
[   67.999106][ T4516]  dump_stack_lvl+0xe8/0x140
[   67.999128][ T4516]  dump_stack+0x15/0x1b
[   67.999148][ T4516]  should_fail_ex+0x265/0x280
[   67.999237][ T4516]  should_fail+0xb/0x20
[   67.999270][ T4516]  should_fail_usercopy+0x1a/0x20
[   67.999289][ T4516]  _copy_from_user+0x1c/0xb0
[   67.999318][ T4516]  copy_from_bpfptr+0x5c/0x90
[   67.999349][ T4516]  bpf_prog_load+0x74a/0x1070
[   67.999448][ T4516]  ? security_bpf+0x2b/0x90
[   67.999478][ T4516]  __sys_bpf+0x462/0x7b0
[   67.999507][ T4516]  __x64_sys_bpf+0x41/0x50
[   67.999532][ T4516]  x64_sys_call+0x2aea/0x2ff0
[   67.999692][ T4516]  do_syscall_64+0xd2/0x200
[   67.999718][ T4516]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.999772][ T4516]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   67.999795][ T4516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.999818][ T4516] RIP: 0033:0x7f4fdcceebe9
[   67.999858][ T4516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.999901][ T4516] RSP: 002b:00007f4fdb74f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   67.999918][ T4516] RAX: ffffffffffffffda RBX: 00007f4fdcf15fa0 RCX: 00007f4fdcceebe9
[   67.999930][ T4516] RDX: 0000000000000094 RSI: 0000200000000300 RDI: 0000000000000005
[   67.999942][ T4516] RBP: 00007f4fdb74f090 R08: 0000000000000000 R09: 0000000000000000
[   67.999953][ T4516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.999970][ T4516] R13: 00007f4fdcf16038 R14: 00007f4fdcf15fa0 R15: 00007ffee9d925d8
[   67.999991][ T4516]  </TASK>
[   68.315749][ T4523] SELinux: failed to load policy
[   68.779717][ T4549] loop5: detected capacity change from 0 to 512
[   68.855557][ T4549] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   68.959546][ T4549] EXT4-fs (loop5): mount failed
[   69.027299][ T4576] bridge0: entered promiscuous mode
[   69.034194][ T4576] macsec1: entered promiscuous mode
[   69.066978][ T4583] loop5: detected capacity change from 0 to 512
[   69.119230][ T4593] loop1: detected capacity change from 0 to 512
[   69.125835][ T4593] EXT4-fs: Ignoring removed orlov option
[   69.135318][ T4593] EXT4-fs: journaled quota format not specified
[   69.146216][ T4583] EXT4-fs: Ignoring removed orlov option
[   69.157716][ T4593] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   69.186947][ T4583] EXT4-fs: journaled quota format not specified
[   69.198066][ T4583] loop5: detected capacity change from 0 to 512
[   69.206004][ T4583] EXT4-fs: inline encryption not supported
[   69.216064][ T4583] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   69.228800][ T4583] EXT4-fs (loop5): can't mount with journal_checksum, fs mounted w/o journal
[   69.243174][ T4602] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   69.250395][ T4602] IPv6: NLM_F_CREATE should be set when creating new route
[   69.269425][ T4604] loop3: detected capacity change from 0 to 1024
[   69.276161][ T4604] EXT4-fs: Ignoring removed oldalloc option
[   69.282109][ T4604] EXT4-fs: Ignoring removed bh option
[   69.296563][ T4583] tipc: Started in network mode
[   69.301504][ T4583] tipc: Node identity ac14140f, cluster identity 4711
[   69.318010][ T4583] tipc: New replicast peer: 255.255.255.255
[   69.324172][ T4583] tipc: Enabled bearer <udp:syz2>, priority 10
[   69.368527][ T4604] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.373415][ T4613] loop2: detected capacity change from 0 to 1024
[   69.387658][ T4613] EXT4-fs: Ignoring removed oldalloc option
[   69.393694][ T4613] EXT4-fs: Ignoring removed bh option
[   69.400036][ T4604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.420962][ T4613] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.439487][ T4613] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.626209][ T4631] loop3: detected capacity change from 0 to 512
[   69.642082][ T4632] SELinux: failed to load policy
[   69.648478][ T4631] EXT4-fs: Ignoring removed orlov option
[   69.684485][ T4631] EXT4-fs: journaled quota format not specified
[   69.709819][ T4631] loop3: detected capacity change from 0 to 512
[   69.721143][ T4631] EXT4-fs: inline encryption not supported
[   69.738179][ T4631] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   69.748895][ T4638] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   69.756763][ T4631] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   69.771527][ T4631] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   69.903511][ T4648] loop3: detected capacity change from 0 to 512
[   69.940760][ T4648] EXT4-fs: Ignoring removed orlov option
[   69.980080][ T4648] EXT4-fs: journaled quota format not specified
[   69.992166][ T4652] loop5: detected capacity change from 0 to 2048
[   70.020530][ T4652] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   70.032647][ T4648] loop3: detected capacity change from 0 to 512
[   70.075249][ T4648] EXT4-fs: inline encryption not supported
[   70.082070][   T29] kauditd_printk_skb: 582 callbacks suppressed
[   70.082083][   T29] audit: type=1326 audit(1754705584.853:2548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   70.131547][ T4648] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   70.143358][ T4652] batman_adv: batadv0: Adding interface: dummy0
[   70.149689][ T4652] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.152166][   T29] audit: type=1326 audit(1754705584.853:2549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   70.198446][   T29] audit: type=1326 audit(1754705584.853:2550): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   70.198781][ T4652] batman_adv: batadv0: Interface activated: dummy0
[   70.222105][   T29] audit: type=1326 audit(1754705584.853:2551): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   70.222133][   T29] audit: type=1326 audit(1754705584.853:2552): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   70.229607][ T4648] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   70.252270][   T29] audit: type=1326 audit(1754705584.853:2553): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7faef1f10a7c code=0x7ffc0000
[   70.308298][   T29] audit: type=1326 audit(1754705584.853:2554): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7faef1f109b4 code=0x7ffc0000
[   70.331889][   T29] audit: type=1326 audit(1754705584.853:2555): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7faef1f109b4 code=0x7ffc0000
[   70.355460][   T29] audit: type=1326 audit(1754705584.853:2556): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   70.379323][   T29] audit: type=1326 audit(1754705584.853:2557): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4658 comm="syz.2.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7faef1f0ebe9 code=0x7ffc0000
[   70.407112][ T4661] 9pnet_fd: Insufficient options for proto=fd
[   70.414608][ T4648] __nla_validate_parse: 60 callbacks suppressed
[   70.414621][ T4648] netlink: 12 bytes leftover after parsing attributes in process `syz.3.423'.
[   70.430017][ T4648] netlink: 152 bytes leftover after parsing attributes in process `syz.3.423'.
[   70.439115][ T4667] netlink: 40 bytes leftover after parsing attributes in process `syz.0.430'.
[   70.449065][   T36] tipc: Node number set to 2886997007
[   70.465404][ T4648] netlink: 4 bytes leftover after parsing attributes in process `syz.3.423'.
[   70.475100][ T4648] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   70.483373][ T4648] netlink: 340 bytes leftover after parsing attributes in process `syz.3.423'.
[   70.514226][ T4671] netlink: 8 bytes leftover after parsing attributes in process `syz.5.432'.
[   70.588226][ T4680] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   70.638454][ T4686] netlink: 4 bytes leftover after parsing attributes in process `syz.3.439'.
[   70.647403][ T4686] netlink: 4 bytes leftover after parsing attributes in process `syz.3.439'.
[   70.659590][ T4686] netlink: 4 bytes leftover after parsing attributes in process `syz.3.439'.
[   70.688592][ T4691] 9pnet_fd: Insufficient options for proto=fd
[   70.721614][ T4686] netlink: 4 bytes leftover after parsing attributes in process `syz.3.439'.
[   70.761041][ T4701] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   70.768360][ T4701] IPv6: NLM_F_CREATE should be set when creating new route
[   70.881120][ T4715] loop3: detected capacity change from 0 to 1024
[   70.900626][ T4715] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.932830][ T4715] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[   70.947941][ T4715] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   70.984094][ T4722] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   71.161671][   T41] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2048 with error 28
[   71.174170][   T41] EXT4-fs (loop3): This should not happen!! Data will be lost
[   71.174170][   T41] 
[   71.183823][   T41] EXT4-fs (loop3): Total free blocks count 0
[   71.189827][   T41] EXT4-fs (loop3): Free/Dirty block details
[   71.195711][   T41] EXT4-fs (loop3): free_blocks=20480
[   71.201035][   T41] EXT4-fs (loop3): dirty_blocks=10912
[   71.206396][   T41] EXT4-fs (loop3): Block reservation details
[   71.212385][   T41] EXT4-fs (loop3): i_reserved_data_blocks=682
[   71.285031][ T3437] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2052 with max blocks 2048 with error 28
[   71.431819][ T4739] loop5: detected capacity change from 0 to 8192
[   71.610253][ T4750] loop3: detected capacity change from 0 to 1024
[   71.617969][ T4750] EXT4-fs: Ignoring removed oldalloc option
[   71.624037][ T4750] EXT4-fs: Ignoring removed bh option
[   71.653337][ T4750] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.671409][ T4754] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   71.678640][ T4754] IPv6: NLM_F_CREATE should be set when creating new route
[   71.696796][ T4750] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.876421][ T4766] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   71.937150][ T4768] netlink: 'syz.3.471': attribute type 1 has an invalid length.
[   71.944891][ T4768] netlink: 'syz.3.471': attribute type 2 has an invalid length.
[   71.966221][ T4758] loop2: detected capacity change from 0 to 1024
[   71.990725][ T4768] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   71.997331][ T4758] EXT4-fs: test_dummy_encryption option not supported
[   72.002517][ T4768] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   72.182120][ T4778] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   72.189376][ T4778] IPv6: NLM_F_CREATE should be set when creating new route
[   72.283446][ T4786] loop5: detected capacity change from 0 to 1024
[   72.290358][ T4786] EXT4-fs: Ignoring removed oldalloc option
[   72.296276][ T4786] EXT4-fs: Ignoring removed bh option
[   72.327535][ T4786] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.345790][ T4786] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.426126][ T4802] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   72.433376][ T4802] IPv6: NLM_F_CREATE should be set when creating new route
[   72.468585][ T4805] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   72.597689][ T4819] loop3: detected capacity change from 0 to 1024
[   72.617115][ T4819] EXT4-fs: Ignoring removed oldalloc option
[   72.623157][ T4819] EXT4-fs: Ignoring removed bh option
[   72.671647][ T4819] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.692964][ T4819] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.706743][ T4835] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   72.713974][ T4835] IPv6: NLM_F_CREATE should be set when creating new route
[   72.820453][ T4849] loop2: detected capacity change from 0 to 512
[   72.840883][ T4849] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: inode #11: comm syz.2.504: missing EA_INODE flag
[   72.891009][ T4849] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.504: error while reading EA inode 11 err=-117
[   72.916304][ T4849] EXT4-fs (loop2): 1 orphan inode deleted
[   72.925947][ T4849] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.964061][ T4869] loop1: detected capacity change from 0 to 1024
[   72.974474][ T4871] FAULT_INJECTION: forcing a failure.
[   72.974474][ T4871] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   72.983079][ T4869] EXT4-fs: Ignoring removed orlov option
[   72.987802][ T4871] CPU: 1 UID: 0 PID: 4871 Comm: syz.5.512 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   72.987959][ T4871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   72.987994][ T4871] Call Trace:
[   72.988001][ T4871]  <TASK>
[   72.988029][ T4871]  __dump_stack+0x1d/0x30
[   72.988051][ T4871]  dump_stack_lvl+0xe8/0x140
[   72.988071][ T4871]  dump_stack+0x15/0x1b
[   72.988088][ T4871]  should_fail_ex+0x265/0x280
[   72.988189][ T4871]  should_fail_alloc_page+0xf2/0x100
[   72.988296][ T4871]  __alloc_frozen_pages_noprof+0xff/0x360
[   72.988335][ T4871]  alloc_pages_mpol+0xb3/0x250
[   72.988414][ T4871]  vma_alloc_folio_noprof+0x1aa/0x300
[   72.988448][ T4871]  do_wp_page+0x5db/0x24e0
[   72.988472][ T4871]  ? __lruvec_stat_mod_folio+0xd6/0x120
[   72.988500][ T4871]  ? css_rstat_updated+0xb7/0x240
[   72.988630][ T4871]  ? __rcu_read_lock+0x37/0x50
[   72.988659][ T4871]  handle_mm_fault+0x77d/0x2c20
[   72.988691][ T4871]  do_user_addr_fault+0x636/0x1090
[   72.988733][ T4871]  ? fpregs_assert_state_consistent+0xb4/0xe0
[   72.988768][ T4871]  exc_page_fault+0x62/0xa0
[   72.988856][ T4871]  asm_exc_page_fault+0x26/0x30
[   72.988877][ T4871] RIP: 0033:0x7fb414620ba3
[   72.988941][ T4871] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   72.988960][ T4871] RSP: 002b:00007fb4131be4a0 EFLAGS: 00010202
[   72.988976][ T4871] RAX: 0000000000000400 RBX: 00007fb4131be540 RCX: 00007fb40ad9f000
[   72.988989][ T4871] RDX: 00007fb4131be6e0 RSI: 0000000000000011 RDI: 00007fb4131be5e0
[   72.989003][ T4871] RBP: 00000000000000f9 R08: 000000000000000a R09: 00000000000003b2
[   72.989015][ T4871] R10: 00000000000003c6 R11: 00007fb4131be540 R12: 0000000000000001
[   72.989028][ T4871] R13: 00007fb4147fd980 R14: 0000000000000020 R15: 00007fb4131be5e0
[   72.989061][ T4871]  </TASK>
[   72.989135][ T4871] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   73.008465][ T4873] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   73.021992][ T4871] loop5: detected capacity change from 0 to 512
[   73.060781][ T4875] loop3: detected capacity change from 0 to 1024
[   73.070850][ T4871] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   73.083626][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.143463][ T4875] EXT4-fs: Ignoring removed oldalloc option
[   73.179513][ T4869] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.186848][ T4875] EXT4-fs: Ignoring removed bh option
[   73.278487][ T4869] +}[@ calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   73.290653][ T4875] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.337985][ T4875] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.348617][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.392113][ T4898] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   73.563228][ T4894] openvswitch: netlink: Message has 6 unknown bytes.
[   73.892579][ T4932] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   73.899835][ T4932] IPv6: NLM_F_CREATE should be set when creating new route
[   73.977553][ T4942] netlink: 'syz.1.537': attribute type 1 has an invalid length.
[   74.038988][ T4946] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   74.103006][ T4957] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   74.163661][ T4963] loop5: detected capacity change from 0 to 1024
[   74.170523][ T4963] EXT4-fs: Ignoring removed oldalloc option
[   74.176621][ T4963] EXT4-fs: Ignoring removed bh option
[   74.200876][ T4966] usb usb8: usbfs: process 4966 (syz.1.552) did not claim interface 0 before use
[   74.213004][ T4966] vhci_hcd: default hub control req: 010b v0000 i0000 l0
[   74.234426][ T4963] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.247543][ T4963] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.432352][ T4995] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   74.439744][ T4995] IPv6: NLM_F_CREATE should be set when creating new route
[   74.645492][ T5033] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   74.703919][ T5042] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   74.795265][ T5052] loop2: detected capacity change from 0 to 512
[   74.807312][ T5054] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   74.811674][ T5052] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.865597][ T5061] loop5: detected capacity change from 0 to 512
[   74.872313][ T5061] EXT4-fs: Ignoring removed orlov option
[   74.878678][ T5061] EXT4-fs: journaled quota format not specified
[   74.892081][ T5061] loop5: detected capacity change from 0 to 512
[   74.898674][ T5061] EXT4-fs: inline encryption not supported
[   74.905284][ T5061] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   74.915549][ T5061] EXT4-fs (loop5): can't mount with journal_checksum, fs mounted w/o journal
[   74.942557][ T5061] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   75.006461][ T5070] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   75.092479][   T29] kauditd_printk_skb: 1286 callbacks suppressed
[   75.092551][   T29] audit: type=1326 audit(1754705589.863:3844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   75.095721][ T5078] loop1: detected capacity change from 0 to 512
[   75.098951][   T29] audit: type=1326 audit(1754705589.863:3845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   75.155132][   T29] audit: type=1326 audit(1754705589.863:3846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   75.178742][   T29] audit: type=1326 audit(1754705589.863:3847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   75.202307][   T29] audit: type=1326 audit(1754705589.863:3848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   75.225630][   T29] audit: type=1326 audit(1754705589.863:3849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   75.232424][ T5078] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   75.249012][   T29] audit: type=1326 audit(1754705589.863:3850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   75.249039][   T29] audit: type=1326 audit(1754705589.863:3851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   75.280975][ T5078] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.603: corrupted in-inode xattr: bad e_name length
[   75.282073][   T29] audit: type=1326 audit(1754705589.863:3852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fecabdcebe9 code=0x7ffc0000
[   75.342089][   T29] audit: type=1326 audit(1754705589.863:3853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5077 comm="syz.1.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fecabdcec23 code=0x7ffc0000
[   75.345548][ T5078] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.603: couldn't read orphan inode 15 (err -117)
[   75.380169][ T5078] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.420214][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.497613][ T5098] loop0: detected capacity change from 0 to 1024
[   75.504250][ T5098] EXT4-fs: Ignoring removed oldalloc option
[   75.510326][ T5098] EXT4-fs: Ignoring removed bh option
[   75.521961][ T5096] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   75.532431][ T5098] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.545456][ T5098] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.559970][ T5098] __nla_validate_parse: 47 callbacks suppressed
[   75.559985][ T5098] netlink: 16 bytes leftover after parsing attributes in process `syz.0.610'.
[   75.630533][ T5108] loop1: detected capacity change from 0 to 512
[   75.637069][ T5108] EXT4-fs: Ignoring removed orlov option
[   75.648463][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.659275][ T5108] EXT4-fs: journaled quota format not specified
[   75.671606][ T5108] netlink: 12 bytes leftover after parsing attributes in process `syz.1.616'.
[   75.680502][ T5108] netlink: 152 bytes leftover after parsing attributes in process `syz.1.616'.
[   75.694953][ T5108] netlink: 4 bytes leftover after parsing attributes in process `syz.1.616'.
[   75.704690][ T5108] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   75.835884][ T5128] netlink: 12 bytes leftover after parsing attributes in process `syz.1.624'.
[   75.857263][ T5130] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   75.864517][ T5130] IPv6: NLM_F_CREATE should be set when creating new route
[   75.914630][ T5135] netlink: 4 bytes leftover after parsing attributes in process `syz.1.627'.
[   75.995271][ T5142] netlink: 40 bytes leftover after parsing attributes in process `syz.0.629'.
[   76.029846][ T5135] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5135 comm=syz.1.627
[   76.112446][ T5157] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   76.206653][ T5171] netlink: 40 bytes leftover after parsing attributes in process `syz.2.644'.
[   76.235098][ T5174] netlink: 4 bytes leftover after parsing attributes in process `syz.1.645'.
[   76.243995][ T5174] netlink: 4 bytes leftover after parsing attributes in process `syz.1.645'.
[   76.339416][ T5184] 9pnet_fd: Insufficient options for proto=fd
[   76.403259][ T5191] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   76.510138][ T5202] loop3: detected capacity change from 0 to 512
[   76.516668][ T5202] EXT4-fs: Ignoring removed orlov option
[   76.553864][ T5202] EXT4-fs: journaled quota format not specified
[   76.584416][ T5202] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   76.604303][ T5211] FAULT_INJECTION: forcing a failure.
[   76.604303][ T5211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.617452][ T5211] CPU: 0 UID: 0 PID: 5211 Comm: syz.1.662 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   76.617570][ T5211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   76.617584][ T5211] Call Trace:
[   76.617591][ T5211]  <TASK>
[   76.617599][ T5211]  __dump_stack+0x1d/0x30
[   76.617623][ T5211]  dump_stack_lvl+0xe8/0x140
[   76.617645][ T5211]  dump_stack+0x15/0x1b
[   76.617664][ T5211]  should_fail_ex+0x265/0x280
[   76.617741][ T5211]  should_fail+0xb/0x20
[   76.617774][ T5211]  should_fail_usercopy+0x1a/0x20
[   76.617796][ T5211]  _copy_from_user+0x1c/0xb0
[   76.617902][ T5211]  __sys_bpf+0x178/0x7b0
[   76.617955][ T5211]  __x64_sys_bpf+0x41/0x50
[   76.617982][ T5211]  x64_sys_call+0x2aea/0x2ff0
[   76.618012][ T5211]  do_syscall_64+0xd2/0x200
[   76.618039][ T5211]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.618065][ T5211]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   76.618090][ T5211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.618190][ T5211] RIP: 0033:0x7fecabdcebe9
[   76.618206][ T5211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.618273][ T5211] RSP: 002b:00007fecaa82f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   76.618290][ T5211] RAX: ffffffffffffffda RBX: 00007fecabff5fa0 RCX: 00007fecabdcebe9
[   76.618302][ T5211] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[   76.618313][ T5211] RBP: 00007fecaa82f090 R08: 0000000000000000 R09: 0000000000000000
[   76.618324][ T5211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.618392][ T5211] R13: 00007fecabff6038 R14: 00007fecabff5fa0 R15: 00007ffde99f9708
[   76.618458][ T5211]  </TASK>
[   76.634915][ T5216] usb usb8: usbfs: process 5216 (syz.3.665) did not claim interface 0 before use
[   76.799038][ T5216] vhci_hcd: default hub control req: 010b v0000 i0000 l0
[   76.881149][ T5223] netlink: 'syz.5.669': attribute type 1 has an invalid length.
[   77.291537][ T5265] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   77.631870][ T5295] loop5: detected capacity change from 0 to 2048
[   77.666077][ T5295] EXT4-fs: quotafile must be on filesystem root
[   77.682380][ T5301] loop3: detected capacity change from 0 to 512
[   77.728571][ T5301] EXT4-fs: Ignoring removed orlov option
[   77.754954][ T5301] EXT4-fs: journaled quota format not specified
[   77.782785][ T5301] loop3: detected capacity change from 0 to 512
[   77.808337][ T5310] loop5: detected capacity change from 0 to 1024
[   77.821347][ T5301] EXT4-fs: inline encryption not supported
[   77.829825][ T5301] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   77.852905][ T5301] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   77.875264][ T5310] EXT4-fs: Ignoring removed oldalloc option
[   77.881315][ T5310] EXT4-fs: Ignoring removed bh option
[   77.888541][ T5301] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   77.934628][ T5318] netlink: 'syz.1.714': attribute type 1 has an invalid length.
[   77.942440][ T5318] netlink: 'syz.1.714': attribute type 2 has an invalid length.
[   77.971048][ T5310] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.989945][ T5318] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   77.999082][ T5318] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.015776][ T5310] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.122486][ T5335] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.195222][ T5335] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.263276][ T5335] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.324383][ T5335] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.381072][ T5355] loop2: detected capacity change from 0 to 1024
[   78.389653][ T5355] EXT4-fs: Ignoring removed oldalloc option
[   78.395621][ T5355] EXT4-fs: Ignoring removed bh option
[   78.411445][   T31] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.430756][ T5355] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.461858][ T5355] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.474806][ T1382] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.504777][ T1382] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.520440][ T1382] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.662668][ T5374] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   78.828823][ T5400] netlink: 'syz.1.746': attribute type 1 has an invalid length.
[   78.836514][ T5400] netlink: 'syz.1.746': attribute type 2 has an invalid length.
[   78.889618][ T5396] syzkaller0: entered promiscuous mode
[   78.895107][ T5396] syzkaller0: entered allmulticast mode
[   78.905672][ T5396] loop5: detected capacity change from 0 to 512
[   78.912440][ T5396] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   79.046013][ T5411] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   79.230399][ T5426] loop1: detected capacity change from 0 to 512
[   79.247062][ T5426] EXT4-fs: Ignoring removed orlov option
[   79.279387][ T5426] EXT4-fs: journaled quota format not specified
[   79.312872][ T5426] loop1: detected capacity change from 0 to 512
[   79.333478][ T5440] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   79.340714][ T5440] IPv6: NLM_F_CREATE should be set when creating new route
[   79.352723][ T5426] EXT4-fs: inline encryption not supported
[   79.362325][ T5426] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   79.379255][ T5426] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   79.416377][ T5426] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   79.802332][ T5543] loop3: detected capacity change from 0 to 512
[   79.808829][ T5543] EXT4-fs: Ignoring removed orlov option
[   79.844021][ T5543] EXT4-fs: journaled quota format not specified
[   79.877773][ T5543] loop3: detected capacity change from 0 to 512
[   79.900645][ T5543] EXT4-fs: inline encryption not supported
[   79.916294][ T5543] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   79.932354][ T5543] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   80.124261][ T5552] ucma_write: process 379 (syz.3.789) changed security contexts after opening file descriptor, this is not allowed.
[   80.221117][   T29] kauditd_printk_skb: 756 callbacks suppressed
[   80.221130][   T29] audit: type=1326 audit(1754705594.993:4610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5557 comm="syz.3.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4fdcce5ba7 code=0x7ffc0000
[   80.261505][   T29] audit: type=1326 audit(1754705594.993:4611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5557 comm="syz.3.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4fdcc8add9 code=0x7ffc0000
[   80.284555][ T5560] loop3: detected capacity change from 0 to 1024
[   80.284939][   T29] audit: type=1326 audit(1754705594.993:4612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5557 comm="syz.3.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4fdcce5ba7 code=0x7ffc0000
[   80.314318][   T29] audit: type=1326 audit(1754705594.993:4613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5557 comm="syz.3.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4fdcc8add9 code=0x7ffc0000
[   80.335581][ T5560] EXT4-fs: Ignoring removed oldalloc option
[   80.337663][   T29] audit: type=1326 audit(1754705594.993:4614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5557 comm="syz.3.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fdcceebe9 code=0x7ffc0000
[   80.343570][ T5560] EXT4-fs: Ignoring removed bh option
[   80.366858][   T29] audit: type=1326 audit(1754705594.993:4615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5557 comm="syz.3.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fdcceebe9 code=0x7ffc0000
[   80.395462][   T29] audit: type=1326 audit(1754705594.993:4616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5557 comm="syz.3.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7f4fdcceebe9 code=0x7ffc0000
[   80.418845][   T29] audit: type=1326 audit(1754705594.993:4617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5557 comm="syz.3.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fdcceebe9 code=0x7ffc0000
[   80.516965][ T5569] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   80.521027][ T5560] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.543568][ T5573] netlink: 'syz.5.799': attribute type 1 has an invalid length.
[   80.551252][ T5573] netlink: 'syz.5.799': attribute type 2 has an invalid length.
[   80.566606][ T5560] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.595992][ T5573] __nla_validate_parse: 35 callbacks suppressed
[   80.596005][ T5573] netlink: 8 bytes leftover after parsing attributes in process `syz.5.799'.
[   80.623317][ T5560] netlink: 16 bytes leftover after parsing attributes in process `syz.3.793'.
[   80.642175][   T29] audit: type=1326 audit(1754705595.403:4618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5559 comm="syz.3.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fdcceebe9 code=0x7ffc0000
[   80.665574][   T29] audit: type=1326 audit(1754705595.403:4619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5559 comm="syz.3.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fdcceebe9 code=0x7ffc0000
[   80.701504][ T5585] loop2: detected capacity change from 0 to 512
[   80.708145][ T5585] EXT4-fs: Ignoring removed orlov option
[   80.717558][ T5585] EXT4-fs: journaled quota format not specified
[   80.723873][ T5589] usb usb8: usbfs: process 5589 (syz.1.805) did not claim interface 12 before use
[   80.742647][ T5585] loop2: detected capacity change from 0 to 512
[   80.762017][ T5585] EXT4-fs: inline encryption not supported
[   80.772035][ T5585] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   80.787138][ T5585] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[   80.809653][ T5597] netlink: 40 bytes leftover after parsing attributes in process `syz.5.809'.
[   80.816807][ T5585] netlink: 12 bytes leftover after parsing attributes in process `syz.2.804'.
[   80.827415][ T5585] netlink: 152 bytes leftover after parsing attributes in process `syz.2.804'.
[   80.849133][ T5585] netlink: 4 bytes leftover after parsing attributes in process `syz.2.804'.
[   80.859473][ T5585] netlink: 340 bytes leftover after parsing attributes in process `syz.2.804'.
[   80.951200][ T5613] usb usb8: usbfs: process 5613 (syz.5.817) did not claim interface 12 before use
[   80.961080][ T5615] netlink: 40 bytes leftover after parsing attributes in process `syz.1.818'.
[   80.973326][ T5611] netlink: 'syz.2.814': attribute type 1 has an invalid length.
[   80.981137][ T5611] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.814'.
[   81.043414][ T5623] loop3: detected capacity change from 0 to 512
[   81.055629][ T5623] EXT4-fs: Ignoring removed orlov option
[   81.090508][ T5623] EXT4-fs: journaled quota format not specified
[   81.105260][ T5623] loop3: detected capacity change from 0 to 512
[   81.118524][ T5623] EXT4-fs: inline encryption not supported
[   81.127432][ T5623] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   81.141449][ T5623] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   81.165563][ T5623] netlink: 12 bytes leftover after parsing attributes in process `syz.3.823'.
[   81.305682][ T5655] loop5: detected capacity change from 0 to 1024
[   81.321830][ T5655] EXT4-fs: Ignoring removed oldalloc option
[   81.327908][ T5655] EXT4-fs: Ignoring removed bh option
[   81.363590][ T5655] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.384256][ T5655] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.499301][ T5681] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   81.506548][ T5681] IPv6: NLM_F_CREATE should be set when creating new route
[   81.529995][ T5686] usb usb8: usbfs: process 5686 (syz.5.852) did not claim interface 12 before use
[   81.606710][ T5697] loop1: detected capacity change from 0 to 1024
[   81.623564][ T5697] EXT4-fs: Ignoring removed oldalloc option
[   81.629665][ T5697] EXT4-fs: Ignoring removed bh option
[   81.678058][ T5703] netlink: 'syz.3.860': attribute type 1 has an invalid length.
[   81.713439][ T5697] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.760867][ T5710] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   81.764478][ T5697] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.770625][ T5711] netlink: 'syz.3.864': attribute type 1 has an invalid length.
[   81.784657][ T5711] netlink: 'syz.3.864': attribute type 2 has an invalid length.
[   81.954434][ T5726] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   81.961698][ T5726] IPv6: NLM_F_CREATE should be set when creating new route
[   82.029660][ T5740] loop0: detected capacity change from 0 to 1024
[   82.048495][ T5740] EXT4-fs: Ignoring removed oldalloc option
[   82.054737][ T5740] EXT4-fs: Ignoring removed bh option
[   82.124355][ T5740] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.181243][ T5740] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.181945][ T5754] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   82.444911][ T5790] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   82.452185][ T5790] IPv6: NLM_F_CREATE should be set when creating new route
[   82.514358][ T5770] team_slave_0: entered promiscuous mode
[   82.520036][ T5770] team_slave_1: entered promiscuous mode
[   82.526923][ T5770] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   82.540587][ T5770] team_slave_0: left promiscuous mode
[   82.545428][ T5800] loop2: detected capacity change from 0 to 1024
[   82.546052][ T5770] team_slave_1: left promiscuous mode
[   82.577210][ T5800] EXT4-fs: Ignoring removed oldalloc option
[   82.583227][ T5800] EXT4-fs: Ignoring removed bh option
[   82.621040][ T5808] loop3: detected capacity change from 0 to 512
[   82.646886][ T5808] EXT4-fs: Ignoring removed nobh option
[   82.656500][ T5800] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.680850][ T5808] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.907: iget: bad i_size value: 38620345925642
[   82.697683][ T5808] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.907: couldn't read orphan inode 15 (err -117)
[   82.711345][ T5808] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.724982][ T5808] FAULT_INJECTION: forcing a failure.
[   82.724982][ T5808] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.738152][ T5808] CPU: 1 UID: 0 PID: 5808 Comm: syz.3.907 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   82.738231][ T5808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   82.738283][ T5808] Call Trace:
[   82.738289][ T5808]  <TASK>
[   82.738296][ T5808]  __dump_stack+0x1d/0x30
[   82.738333][ T5808]  dump_stack_lvl+0xe8/0x140
[   82.738353][ T5808]  dump_stack+0x15/0x1b
[   82.738372][ T5808]  should_fail_ex+0x265/0x280
[   82.738471][ T5808]  should_fail+0xb/0x20
[   82.738636][ T5808]  should_fail_usercopy+0x1a/0x20
[   82.738653][ T5808]  copy_folio_from_iter_atomic+0x278/0x1170
[   82.738707][ T5808]  generic_perform_write+0x2c2/0x490
[   82.738738][ T5808]  ext4_buffered_write_iter+0x1ee/0x3c0
[   82.738833][ T5808]  ext4_file_write_iter+0x383/0xf00
[   82.738872][ T5808]  ? kstrtouint_from_user+0x9f/0xf0
[   82.738899][ T5808]  ? avc_policy_seqno+0x15/0x30
[   82.738922][ T5808]  ? selinux_file_permission+0x1e4/0x320
[   82.739045][ T5808]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   82.739076][ T5808]  vfs_write+0x4a0/0x8e0
[   82.739179][ T5808]  ksys_write+0xda/0x1a0
[   82.739240][ T5808]  __x64_sys_write+0x40/0x50
[   82.739264][ T5808]  x64_sys_call+0x27fe/0x2ff0
[   82.739425][ T5808]  do_syscall_64+0xd2/0x200
[   82.739452][ T5808]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.739480][ T5808]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   82.739505][ T5808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.739564][ T5808] RIP: 0033:0x7f4fdcceebe9
[   82.739592][ T5808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.739610][ T5808] RSP: 002b:00007f4fdb74f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   82.739631][ T5808] RAX: ffffffffffffffda RBX: 00007f4fdcf15fa0 RCX: 00007f4fdcceebe9
[   82.739645][ T5808] RDX: 000000000208e24b RSI: 0000200000000000 RDI: 0000000000000005
[   82.739657][ T5808] RBP: 00007f4fdb74f090 R08: 0000000000000000 R09: 0000000000000000
[   82.739672][ T5808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.739686][ T5808] R13: 00007f4fdcf16038 R14: 00007f4fdcf15fa0 R15: 00007ffee9d925d8
[   82.739706][ T5808]  </TASK>
[   82.957041][ T5818] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.004941][ T5818] batman_adv: batadv0: Removing interface: batadv_slave_0
[   83.014079][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.114097][ T5524] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm kworker/u8:59: bg 0: block 5: invalid block bitmap
[   83.143323][ T5524] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   83.155812][ T5524] EXT4-fs (loop3): This should not happen!! Data will be lost
[   83.155812][ T5524] 
[   83.165475][ T5524] EXT4-fs (loop3): Total free blocks count 0
[   83.171583][ T5524] EXT4-fs (loop3): Free/Dirty block details
[   83.177692][ T5524] EXT4-fs (loop3): free_blocks=0
[   83.182755][ T5524] EXT4-fs (loop3): dirty_blocks=4016
[   83.188034][ T5524] EXT4-fs (loop3): Block reservation details
[   83.194046][ T5524] EXT4-fs (loop3): i_reserved_data_blocks=4016
[   83.219260][ T5524] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 1960 with error 28
[   83.333359][ T5849] loop5: detected capacity change from 0 to 1024
[   83.357002][ T5849] EXT4-fs: Ignoring removed oldalloc option
[   83.362970][ T5849] EXT4-fs: Ignoring removed bh option
[   83.420335][ T5849] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.506221][ T5875] loop0: detected capacity change from 0 to 512
[   83.509130][ T3895] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.536223][ T5875] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.935: corrupted in-inode xattr: invalid ea_ino
[   83.580571][ T5875] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.935: couldn't read orphan inode 15 (err -117)
[   83.620014][ T5875] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.640078][ T5875] FAULT_INJECTION: forcing a failure.
[   83.640078][ T5875] name failslab, interval 1, probability 0, space 0, times 0
[   83.652746][ T5875] CPU: 1 UID: 0 PID: 5875 Comm: syz.0.935 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   83.652772][ T5875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   83.652839][ T5875] Call Trace:
[   83.652845][ T5875]  <TASK>
[   83.652853][ T5875]  __dump_stack+0x1d/0x30
[   83.652876][ T5875]  dump_stack_lvl+0xe8/0x140
[   83.652897][ T5875]  dump_stack+0x15/0x1b
[   83.652916][ T5875]  should_fail_ex+0x265/0x280
[   83.652946][ T5875]  should_failslab+0x8c/0xb0
[   83.652996][ T5875]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   83.653026][ T5875]  ? ext4_alloc_inode+0x38/0x310
[   83.653046][ T5875]  ? __pfx_ext4_alloc_inode+0x10/0x10
[   83.653064][ T5875]  ext4_alloc_inode+0x38/0x310
[   83.653081][ T5875]  ? __pfx_ext4_alloc_inode+0x10/0x10
[   83.653120][ T5875]  alloc_inode+0x3d/0x170
[   83.653145][ T5875]  iget_locked+0xf4/0x5c0
[   83.653171][ T5875]  ? obj_cgroup_charge_account+0x122/0x1a0
[   83.653242][ T5875]  __ext4_iget+0x152/0x2240
[   83.653277][ T5875]  ? kmem_cache_alloc_lru_noprof+0x229/0x310
[   83.653349][ T5875]  ? __d_alloc+0x3d/0x340
[   83.653377][ T5875]  ext4_lookup+0x161/0x390
[   83.653401][ T5875]  lookup_one_qstr_excl+0xc8/0x250
[   83.653434][ T5875]  do_renameat2+0x391/0xa10
[   83.653466][ T5875]  __x64_sys_renameat2+0x7e/0x90
[   83.653490][ T5875]  x64_sys_call+0x3f9/0x2ff0
[   83.653552][ T5875]  do_syscall_64+0xd2/0x200
[   83.653581][ T5875]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   83.653605][ T5875]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   83.653626][ T5875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.653710][ T5875] RIP: 0033:0x7fd8cc2cebe9
[   83.653724][ T5875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.653741][ T5875] RSP: 002b:00007fd8cad2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[   83.653759][ T5875] RAX: ffffffffffffffda RBX: 00007fd8cc4f5fa0 RCX: 00007fd8cc2cebe9
[   83.653772][ T5875] RDX: ffffffffffffff9c RSI: 0000200000000440 RDI: ffffffffffffff9c
[   83.653784][ T5875] RBP: 00007fd8cad2f090 R08: 0000000000000000 R09: 0000000000000000
[   83.653796][ T5875] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[   83.653845][ T5875] R13: 00007fd8cc4f6038 R14: 00007fd8cc4f5fa0 R15: 00007ffe3ec7a408
[   83.653863][ T5875]  </TASK>
[   83.888680][ T5894] validate_nla: 2 callbacks suppressed
[   83.888702][ T5894] netlink: 'syz.2.945': attribute type 1 has an invalid length.
[   83.901823][ T5894] netlink: 'syz.2.945': attribute type 2 has an invalid length.
[   83.921458][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.019845][ T5906] loop0: detected capacity change from 0 to 1024
[   84.040884][ T5906] EXT4-fs: Ignoring removed oldalloc option
[   84.046894][ T5906] EXT4-fs: Ignoring removed bh option
[   84.071514][ T5923] FAULT_INJECTION: forcing a failure.
[   84.071514][ T5923] name failslab, interval 1, probability 0, space 0, times 0
[   84.084159][ T5923] CPU: 1 UID: 0 PID: 5923 Comm: syz.3.958 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   84.084187][ T5923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.084212][ T5923] Call Trace:
[   84.084219][ T5923]  <TASK>
[   84.084227][ T5923]  __dump_stack+0x1d/0x30
[   84.084249][ T5923]  dump_stack_lvl+0xe8/0x140
[   84.084359][ T5923]  dump_stack+0x15/0x1b
[   84.084377][ T5923]  should_fail_ex+0x265/0x280
[   84.084413][ T5923]  should_failslab+0x8c/0xb0
[   84.084448][ T5923]  kmem_cache_alloc_noprof+0x50/0x310
[   84.084553][ T5923]  ? skb_clone+0x151/0x1f0
[   84.084574][ T5923]  skb_clone+0x151/0x1f0
[   84.084594][ T5923]  __netlink_deliver_tap+0x2c9/0x500
[   84.084635][ T5923]  netlink_unicast+0x66b/0x690
[   84.084703][ T5923]  netlink_sendmsg+0x58b/0x6b0
[   84.084741][ T5923]  ? __pfx_netlink_sendmsg+0x10/0x10
[   84.084772][ T5923]  __sock_sendmsg+0x142/0x180
[   84.084808][ T5923]  ____sys_sendmsg+0x31e/0x4e0
[   84.084878][ T5923]  ___sys_sendmsg+0x17b/0x1d0
[   84.084923][ T5923]  __x64_sys_sendmsg+0xd4/0x160
[   84.085010][ T5923]  x64_sys_call+0x191e/0x2ff0
[   84.085029][ T5923]  do_syscall_64+0xd2/0x200
[   84.085052][ T5923]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.085153][ T5923]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.085174][ T5923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.085198][ T5923] RIP: 0033:0x7f4fdcceebe9
[   84.085214][ T5923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.085233][ T5923] RSP: 002b:00007f4fdb74f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.085253][ T5923] RAX: ffffffffffffffda RBX: 00007f4fdcf15fa0 RCX: 00007f4fdcceebe9
[   84.085316][ T5923] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[   84.085328][ T5923] RBP: 00007f4fdb74f090 R08: 0000000000000000 R09: 0000000000000000
[   84.085339][ T5923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.085350][ T5923] R13: 00007f4fdcf16038 R14: 00007f4fdcf15fa0 R15: 00007ffee9d925d8
[   84.085367][ T5923]  </TASK>
[   84.350652][ T5906] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.378861][ T5933] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   84.443567][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.587280][ T5966] loop0: detected capacity change from 0 to 1024
[   84.594129][ T5962] FAULT_INJECTION: forcing a failure.
[   84.594129][ T5962] name failslab, interval 1, probability 0, space 0, times 0
[   84.606901][ T5962] CPU: 1 UID: 0 PID: 5962 Comm: syz.1.976 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   84.606930][ T5962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.606940][ T5962] Call Trace:
[   84.606946][ T5962]  <TASK>
[   84.606953][ T5962]  __dump_stack+0x1d/0x30
[   84.606974][ T5962]  dump_stack_lvl+0xe8/0x140
[   84.607060][ T5962]  dump_stack+0x15/0x1b
[   84.607075][ T5962]  should_fail_ex+0x265/0x280
[   84.607106][ T5962]  should_failslab+0x8c/0xb0
[   84.607205][ T5962]  kmem_cache_alloc_noprof+0x50/0x310
[   84.607230][ T5962]  ? security_file_alloc+0x32/0x100
[   84.607308][ T5962]  security_file_alloc+0x32/0x100
[   84.607335][ T5962]  init_file+0x5c/0x1d0
[   84.607367][ T5962]  alloc_empty_file+0x8b/0x200
[   84.607468][ T5962]  alloc_file_pseudo+0xc6/0x160
[   84.607499][ T5962]  __shmem_file_setup+0x1de/0x210
[   84.607607][ T5962]  shmem_file_setup+0x3b/0x50
[   84.607654][ T5962]  __se_sys_memfd_create+0x2c3/0x590
[   84.607675][ T5962]  __x64_sys_memfd_create+0x31/0x40
[   84.607694][ T5962]  x64_sys_call+0x2abe/0x2ff0
[   84.607714][ T5962]  do_syscall_64+0xd2/0x200
[   84.607742][ T5962]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.607768][ T5962]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.607834][ T5962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.607856][ T5962] RIP: 0033:0x7fecabdcebe9
[   84.607872][ T5962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.607890][ T5962] RSP: 002b:00007fecaa82ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   84.607911][ T5962] RAX: ffffffffffffffda RBX: 000000000000045c RCX: 00007fecabdcebe9
[   84.607924][ T5962] RDX: 00007fecaa82eef0 RSI: 0000000000000000 RDI: 00007fecabe527e8
[   84.607938][ T5962] RBP: 0000200000002400 R08: 00007fecaa82ebb7 R09: 00007fecaa82ee40
[   84.607949][ T5962] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[   84.607962][ T5962] R13: 00007fecaa82eef0 R14: 00007fecaa82eeb0 R15: 0000200000000880
[   84.608053][ T5962]  </TASK>
[   84.611629][ T5966] EXT4-fs: Ignoring removed oldalloc option
[   84.818167][ T5966] EXT4-fs: Ignoring removed bh option
[   84.869372][ T5966] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.931943][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.266380][   T29] kauditd_printk_skb: 635 callbacks suppressed
[   85.266394][   T29] audit: type=1326 audit(1754705600.033:5255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.324867][   T29] audit: type=1326 audit(1754705600.073:5256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.348327][   T29] audit: type=1326 audit(1754705600.073:5257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.371859][   T29] audit: type=1326 audit(1754705600.073:5258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.395274][   T29] audit: type=1326 audit(1754705600.073:5259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.419083][   T29] audit: type=1326 audit(1754705600.073:5260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.442475][   T29] audit: type=1326 audit(1754705600.073:5261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.465777][   T29] audit: type=1326 audit(1754705600.073:5262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.489335][   T29] audit: type=1326 audit(1754705600.073:5263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.512841][   T29] audit: type=1326 audit(1754705600.073:5264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6011 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   85.566917][ T5999] loop3: detected capacity change from 0 to 128
[   85.921862][ T6040] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   85.934418][ T6042] loop1: detected capacity change from 0 to 512
[   85.943114][ T6042] EXT4-fs: Ignoring removed orlov option
[   85.952542][ T6044] __nla_validate_parse: 23 callbacks suppressed
[   85.952604][ T6044] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1011'.
[   85.967945][ T6044] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   85.986270][ T6042] EXT4-fs: journaled quota format not specified
[   85.999855][ T6044] batman_adv: batadv0: Removing interface: batadv_slave_0
[   86.010921][ T6042] loop1: detected capacity change from 0 to 512
[   86.030384][ T6042] EXT4-fs: inline encryption not supported
[   86.050722][ T6042] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   86.060689][ T6042] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   86.093680][ T6042] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1010'.
[   86.102717][ T6042] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1010'.
[   86.139495][ T6048] usb usb8: usbfs: process 6048 (syz.0.1013) did not claim interface 0 before use
[   86.144640][ T6049] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1010'.
[   86.197986][ T6042] netlink: 340 bytes leftover after parsing attributes in process `syz.1.1010'.
[   86.493863][ T6083] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1022'.
[   86.728887][ T6096] loop1: detected capacity change from 0 to 512
[   86.750059][ T6096] EXT4-fs: Ignoring removed orlov option
[   86.780037][ T6096] EXT4-fs: journaled quota format not specified
[   86.932511][ T6096] loop1: detected capacity change from 0 to 512
[   86.941054][ T5964] loop5: detected capacity change from 0 to 4096
[   86.984940][ T6096] EXT4-fs: inline encryption not supported
[   87.006379][ T5964] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   87.019211][ T6096] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   87.050122][ T6096] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   87.068479][ T6096] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1030'.
[   87.071772][ T5964] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.077561][ T6096] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1030'.
[   87.078310][ T6096] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1030'.
[   87.113052][ T6096] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   87.140884][ T6108] netlink: 'syz.2.1034': attribute type 1 has an invalid length.
[   87.148629][ T6108] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.1034'.
[   87.184470][ T3895] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.264099][ T6112] netlink: 'syz.0.1036': attribute type 1 has an invalid length.
[   87.271924][ T6112] netlink: 'syz.0.1036': attribute type 2 has an invalid length.
[   87.505901][ T6138] loop2: detected capacity change from 0 to 512
[   87.521504][ T6138] EXT4-fs: Ignoring removed orlov option
[   87.537574][ T6138] EXT4-fs: journaled quota format not specified
[   87.578004][ T6138] loop2: detected capacity change from 0 to 512
[   87.612813][ T6138] EXT4-fs: inline encryption not supported
[   87.643135][ T6138] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   87.656512][ T6138] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[   87.693138][ T6156] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   87.696703][ T6138] tipc: Started in network mode
[   87.705550][ T6138] tipc: Node identity ac14140f, cluster identity 4711
[   87.715823][ T6138] tipc: New replicast peer: 255.255.255.255
[   87.721990][ T6138] tipc: Enabled bearer <udp:syz2>, priority 10
[   87.985459][ T6187] loop1: detected capacity change from 0 to 1024
[   87.994918][ T6193] loop3: detected capacity change from 0 to 128
[   88.015317][ T6187] EXT4-fs: Ignoring removed oldalloc option
[   88.021340][ T6187] EXT4-fs: Ignoring removed bh option
[   88.053389][ T6187] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.073577][ T6187] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.352910][ T6231] netlink: 'syz.1.1085': attribute type 1 has an invalid length.
[   88.360758][ T6231] netlink: 'syz.1.1085': attribute type 2 has an invalid length.
[   88.728241][ T6273] FAULT_INJECTION: forcing a failure.
[   88.728241][ T6273] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.741334][ T6273] CPU: 0 UID: 0 PID: 6273 Comm: syz.0.1092 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   88.741366][ T6273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   88.741384][ T6273] Call Trace:
[   88.741389][ T6273]  <TASK>
[   88.741395][ T6273]  __dump_stack+0x1d/0x30
[   88.741415][ T6273]  dump_stack_lvl+0xe8/0x140
[   88.741433][ T6273]  dump_stack+0x15/0x1b
[   88.741448][ T6273]  should_fail_ex+0x265/0x280
[   88.741511][ T6273]  should_fail+0xb/0x20
[   88.741544][ T6273]  should_fail_usercopy+0x1a/0x20
[   88.741665][ T6273]  _copy_from_user+0x1c/0xb0
[   88.741709][ T6273]  ____sys_sendmsg+0x1c5/0x4e0
[   88.741748][ T6273]  ___sys_sendmsg+0x17b/0x1d0
[   88.741801][ T6273]  __sys_sendmmsg+0x178/0x300
[   88.741903][ T6273]  __x64_sys_sendmmsg+0x57/0x70
[   88.741924][ T6273]  x64_sys_call+0x1c4a/0x2ff0
[   88.742023][ T6273]  do_syscall_64+0xd2/0x200
[   88.742047][ T6273]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   88.742081][ T6273]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   88.742156][ T6273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.742180][ T6273] RIP: 0033:0x7fd8cc2cebe9
[   88.742197][ T6273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.742217][ T6273] RSP: 002b:00007fd8cad0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   88.742297][ T6273] RAX: ffffffffffffffda RBX: 00007fd8cc4f6090 RCX: 00007fd8cc2cebe9
[   88.742308][ T6273] RDX: 000000000000001a RSI: 0000200000000780 RDI: 0000000000000003
[   88.742320][ T6273] RBP: 00007fd8cad0e090 R08: 0000000000000000 R09: 0000000000000000
[   88.742333][ T6273] R10: 0000000004008804 R11: 0000000000000246 R12: 0000000000000001
[   88.742347][ T6273] R13: 00007fd8cc4f6128 R14: 00007fd8cc4f6090 R15: 00007ffe3ec7a408
[   88.742369][ T6273]  </TASK>
[   88.929273][ T1074] tipc: Node number set to 2886997007
[   88.999381][ T6285] netlink: 'syz.2.1098': attribute type 1 has an invalid length.
[   89.070188][ T6299] loop2: detected capacity change from 0 to 512
[   89.090132][ T6299] EXT4-fs (loop2): 1 truncate cleaned up
[   89.090364][ T6302] loop3: detected capacity change from 0 to 1024
[   89.096333][ T6299] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.142149][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.164829][ T6302] EXT4-fs: Ignoring removed oldalloc option
[   89.170784][ T6302] EXT4-fs: Ignoring removed bh option
[   89.235196][ T6302] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.276480][ T6302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.303141][ T6327] loop2: detected capacity change from 0 to 1024
[   89.327510][ T6327] EXT4-fs: Ignoring removed oldalloc option
[   89.333505][ T6327] EXT4-fs: Ignoring removed bh option
[   89.395796][ T6327] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.444766][ T6327] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.765644][ T6394] netlink: 'syz.1.1124': attribute type 1 has an invalid length.
[   89.856527][ T6407] FAULT_INJECTION: forcing a failure.
[   89.856527][ T6407] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.869706][ T6407] CPU: 1 UID: 0 PID: 6407 Comm: syz.2.1127 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   89.869802][ T6407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.869815][ T6407] Call Trace:
[   89.869823][ T6407]  <TASK>
[   89.869830][ T6407]  __dump_stack+0x1d/0x30
[   89.869849][ T6407]  dump_stack_lvl+0xe8/0x140
[   89.869868][ T6407]  dump_stack+0x15/0x1b
[   89.869886][ T6407]  should_fail_ex+0x265/0x280
[   89.870014][ T6407]  should_fail+0xb/0x20
[   89.870041][ T6407]  should_fail_usercopy+0x1a/0x20
[   89.870062][ T6407]  _copy_from_user+0x1c/0xb0
[   89.870091][ T6407]  ____sys_sendmsg+0x1c5/0x4e0
[   89.870136][ T6407]  ___sys_sendmsg+0x17b/0x1d0
[   89.870183][ T6407]  __sys_sendmmsg+0x178/0x300
[   89.870268][ T6407]  __x64_sys_sendmmsg+0x57/0x70
[   89.870286][ T6407]  x64_sys_call+0x1c4a/0x2ff0
[   89.870310][ T6407]  do_syscall_64+0xd2/0x200
[   89.870468][ T6407]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.870490][ T6407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.870587][ T6407] RIP: 0033:0x7faef1f0ebe9
[   89.870603][ T6407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.870619][ T6407] RSP: 002b:00007faef0977038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   89.870640][ T6407] RAX: ffffffffffffffda RBX: 00007faef2135fa0 RCX: 00007faef1f0ebe9
[   89.870672][ T6407] RDX: 000000000000001a RSI: 0000200000000780 RDI: 0000000000000003
[   89.870687][ T6407] RBP: 00007faef0977090 R08: 0000000000000000 R09: 0000000000000000
[   89.870701][ T6407] R10: 0000000004008804 R11: 0000000000000246 R12: 0000000000000001
[   89.870715][ T6407] R13: 00007faef2136038 R14: 00007faef2135fa0 R15: 00007fffa0034298
[   89.870736][ T6407]  </TASK>
[   90.063006][ T6412] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   90.093338][ T6414] loop2: detected capacity change from 0 to 1024
[   90.100101][ T6414] EXT4-fs: Ignoring removed oldalloc option
[   90.106349][ T6414] EXT4-fs: Ignoring removed bh option
[   90.173439][ T6424] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   90.260850][ T6437] netlink: 'syz.1.1137': attribute type 1 has an invalid length.
[   90.296483][ T6439] netlink: 'syz.2.1142': attribute type 1 has an invalid length.
[   90.352686][ T6445] FAULT_INJECTION: forcing a failure.
[   90.352686][ T6445] name failslab, interval 1, probability 0, space 0, times 0
[   90.365534][ T6445] CPU: 0 UID: 0 PID: 6445 Comm: syz.0.1145 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   90.365565][ T6445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   90.365579][ T6445] Call Trace:
[   90.365585][ T6445]  <TASK>
[   90.365594][ T6445]  __dump_stack+0x1d/0x30
[   90.365617][ T6445]  dump_stack_lvl+0xe8/0x140
[   90.365702][ T6445]  dump_stack+0x15/0x1b
[   90.365721][ T6445]  should_fail_ex+0x265/0x280
[   90.365756][ T6445]  should_failslab+0x8c/0xb0
[   90.365828][ T6445]  kmem_cache_alloc_noprof+0x50/0x310
[   90.365859][ T6445]  ? security_inode_alloc+0x37/0x100
[   90.365931][ T6445]  security_inode_alloc+0x37/0x100
[   90.365956][ T6445]  inode_init_always_gfp+0x4b7/0x500
[   90.365978][ T6445]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   90.366002][ T6445]  alloc_inode+0x58/0x170
[   90.366026][ T6445]  new_inode+0x1d/0xe0
[   90.366122][ T6445]  shmem_get_inode+0x244/0x750
[   90.366151][ T6445]  __shmem_file_setup+0x113/0x210
[   90.366259][ T6445]  shmem_file_setup+0x3b/0x50
[   90.366296][ T6445]  __se_sys_memfd_create+0x2c3/0x590
[   90.366370][ T6445]  __x64_sys_memfd_create+0x31/0x40
[   90.366439][ T6445]  x64_sys_call+0x2abe/0x2ff0
[   90.366459][ T6445]  do_syscall_64+0xd2/0x200
[   90.366483][ T6445]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   90.366505][ T6445]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   90.366530][ T6445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.366584][ T6445] RIP: 0033:0x7fd8cc2cebe9
[   90.366601][ T6445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.366695][ T6445] RSP: 002b:00007fd8cad2ed68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   90.366716][ T6445] RAX: ffffffffffffffda RBX: 000000000000407c RCX: 00007fd8cc2cebe9
[   90.366728][ T6445] RDX: 00007fd8cad2edec RSI: 0000000000000000 RDI: 00007fd8cc3527e8
[   90.366739][ T6445] RBP: 0000200000008140 R08: 00007fd8cad2eb07 R09: 0000000000000000
[   90.366777][ T6445] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   90.366846][ T6445] R13: 00007fd8cad2edec R14: 00007fd8cad2edf0 R15: 00007ffe3ec7a408
[   90.366867][ T6445]  </TASK>
[   90.604086][   T29] kauditd_printk_skb: 444 callbacks suppressed
[   90.604100][   T29] audit: type=1326 audit(1754705605.373:5709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6444 comm="syz.0.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.633788][   T29] audit: type=1326 audit(1754705605.373:5710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6444 comm="syz.0.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.657240][   T29] audit: type=1326 audit(1754705605.373:5711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6444 comm="syz.0.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.680762][   T29] audit: type=1326 audit(1754705605.373:5712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6444 comm="syz.0.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.710769][   T29] audit: type=1326 audit(1754705605.373:5713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6444 comm="syz.0.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.734285][   T29] audit: type=1326 audit(1754705605.383:5714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6444 comm="syz.0.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.764195][ T6451] loop2: detected capacity change from 0 to 1024
[   90.779816][ T6451] EXT4-fs: Ignoring removed oldalloc option
[   90.785756][ T6451] EXT4-fs: Ignoring removed bh option
[   90.815274][   T29] audit: type=1326 audit(1754705605.583:5715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.842367][   T29] audit: type=1326 audit(1754705605.583:5716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.865727][   T29] audit: type=1326 audit(1754705605.583:5717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.889256][   T29] audit: type=1326 audit(1754705605.583:5718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd8cc2cebe9 code=0x7ffc0000
[   90.986271][ T6471] loop2: detected capacity change from 0 to 512
[   91.008442][ T6471] EXT4-fs: Ignoring removed orlov option
[   91.014725][ T6471] EXT4-fs: journaled quota format not specified
[   91.150263][ T6471] loop2: detected capacity change from 0 to 512
[   91.150520][ T6490] __nla_validate_parse: 25 callbacks suppressed
[   91.150564][ T6490] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1162'.
[   91.172970][ T6471] EXT4-fs: inline encryption not supported
[   91.202522][ T6471] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   91.216623][ T6471] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[   91.289147][ T6471] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1155'.
[   91.298104][ T6471] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1155'.
[   91.336860][ T6471] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1155'.
[   91.356889][ T6471] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   91.489460][ T6509] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1168'.
[   91.508822][ T6513] netlink: 'syz.5.1169': attribute type 1 has an invalid length.
[   91.516733][ T6513] netlink: 199820 bytes leftover after parsing attributes in process `syz.5.1169'.
[   91.554750][ T6516] loop3: detected capacity change from 0 to 512
[   91.594990][ T6524] loop2: detected capacity change from 0 to 1024
[   91.601718][ T6516] EXT4-fs (loop3): 1 truncate cleaned up
[   91.608633][ T6524] EXT4-fs: Ignoring removed oldalloc option
[   91.614592][ T6524] EXT4-fs: Ignoring removed bh option
[   91.636021][ T6516] FAULT_INJECTION: forcing a failure.
[   91.636021][ T6516] name failslab, interval 1, probability 0, space 0, times 0
[   91.648878][ T6516] CPU: 1 UID: 0 PID: 6516 Comm: syz.3.1172 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   91.648987][ T6516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   91.649044][ T6516] Call Trace:
[   91.649050][ T6516]  <TASK>
[   91.649073][ T6516]  __dump_stack+0x1d/0x30
[   91.649093][ T6516]  dump_stack_lvl+0xe8/0x140
[   91.649113][ T6516]  dump_stack+0x15/0x1b
[   91.649132][ T6516]  should_fail_ex+0x265/0x280
[   91.649176][ T6516]  should_failslab+0x8c/0xb0
[   91.649203][ T6516]  kmem_cache_alloc_noprof+0x50/0x310
[   91.649308][ T6516]  ? ext4_mb_new_blocks+0x2ce/0x2080
[   91.649334][ T6516]  ? __mark_inode_dirty+0x1ac/0x760
[   91.649360][ T6516]  ext4_mb_new_blocks+0x2ce/0x2080
[   91.649485][ T6516]  ? ext4_new_meta_blocks+0xff/0x1b0
[   91.649518][ T6516]  ext4_ind_map_blocks+0xb4c/0x14f0
[   91.649555][ T6516]  ext4_map_blocks+0x598/0xd00
[   91.649584][ T6516]  ? __pfx_workingset_update_node+0x10/0x10
[   91.649636][ T6516]  _ext4_get_block+0x10a/0x350
[   91.649668][ T6516]  ext4_get_block+0x39/0x50
[   91.649696][ T6516]  ext4_block_write_begin+0x5e5/0xc00
[   91.649726][ T6516]  ? __pfx_ext4_get_block+0x10/0x10
[   91.649799][ T6516]  ? folio_mapping+0xb9/0x120
[   91.649831][ T6516]  ext4_write_begin+0x61e/0xe70
[   91.649864][ T6516]  ext4_da_write_begin+0x1fb/0x6e0
[   91.649944][ T6516]  ? balance_dirty_pages_ratelimited_flags+0x40b/0x5e0
[   91.649975][ T6516]  generic_perform_write+0x181/0x490
[   91.650013][ T6516]  ext4_buffered_write_iter+0x1ee/0x3c0
[   91.650052][ T6516]  ext4_file_write_iter+0x383/0xf00
[   91.650082][ T6516]  ? 0xffffffff81000000
[   91.650094][ T6516]  ? __rcu_read_unlock+0x4f/0x70
[   91.650118][ T6516]  ? avc_policy_seqno+0x15/0x30
[   91.650217][ T6516]  ? selinux_file_permission+0x1e4/0x320
[   91.650254][ T6516]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   91.650368][ T6516]  vfs_write+0x4a0/0x8e0
[   91.650398][ T6516]  __x64_sys_pwrite64+0xfd/0x150
[   91.650478][ T6516]  x64_sys_call+0xc4d/0x2ff0
[   91.650502][ T6516]  do_syscall_64+0xd2/0x200
[   91.650527][ T6516]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   91.650562][ T6516]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   91.650582][ T6516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.650620][ T6516] RIP: 0033:0x7f4fdcceebe9
[   91.650634][ T6516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.650653][ T6516] RSP: 002b:00007f4fdb74f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   91.650674][ T6516] RAX: ffffffffffffffda RBX: 00007f4fdcf15fa0 RCX: 00007f4fdcceebe9
[   91.650711][ T6516] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000006
[   91.650725][ T6516] RBP: 00007f4fdb74f090 R08: 0000000000000000 R09: 0000000000000000
[   91.650737][ T6516] R10: 000000000000fecc R11: 0000000000000246 R12: 0000000000000002
[   91.650750][ T6516] R13: 00007f4fdcf16038 R14: 00007f4fdcf15fa0 R15: 00007ffee9d925d8
[   91.650767][ T6516]  </TASK>
[   91.981305][ T6524] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1174'.
[   92.104117][ T6554] loop5: detected capacity change from 0 to 512
[   92.138009][ T6554] EXT4-fs: Ignoring removed orlov option
[   92.150646][ T6560] loop3: detected capacity change from 0 to 1024
[   92.157737][ T6554] EXT4-fs: journaled quota format not specified
[   92.169724][ T6554] loop5: detected capacity change from 0 to 512
[   92.176214][ T6554] EXT4-fs: inline encryption not supported
[   92.186056][ T6560] EXT4-fs: Ignoring removed oldalloc option
[   92.192038][ T6560] EXT4-fs: Ignoring removed bh option
[   92.208492][ T6554] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   92.219463][ T6554] EXT4-fs (loop5): can't mount with journal_checksum, fs mounted w/o journal
[   92.251205][ T6560] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1191'.
[   92.277200][ T6554] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1189'.
[   92.286309][ T6554] netlink: 152 bytes leftover after parsing attributes in process `syz.5.1189'.
[   92.296786][ T6571] FAULT_INJECTION: forcing a failure.
[   92.296786][ T6571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.309882][ T6571] CPU: 1 UID: 0 PID: 6571 Comm: syz.3.1195 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   92.309912][ T6571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   92.309926][ T6571] Call Trace:
[   92.309931][ T6571]  <TASK>
[   92.309939][ T6571]  __dump_stack+0x1d/0x30
[   92.310024][ T6571]  dump_stack_lvl+0xe8/0x140
[   92.310045][ T6571]  dump_stack+0x15/0x1b
[   92.310063][ T6571]  should_fail_ex+0x265/0x280
[   92.310098][ T6571]  should_fail+0xb/0x20
[   92.310156][ T6554] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   92.310198][ T6571]  should_fail_usercopy+0x1a/0x20
[   92.310220][ T6571]  _copy_from_iter+0xcf/0xe40
[   92.310320][ T6571]  ? __build_skb_around+0x1a0/0x200
[   92.310353][ T6571]  ? __alloc_skb+0x223/0x320
[   92.310385][ T6571]  netlink_sendmsg+0x471/0x6b0
[   92.310422][ T6571]  ? __pfx_netlink_sendmsg+0x10/0x10
[   92.310546][ T6571]  __sock_sendmsg+0x142/0x180
[   92.310572][ T6571]  ____sys_sendmsg+0x31e/0x4e0
[   92.310611][ T6571]  ___sys_sendmsg+0x17b/0x1d0
[   92.310700][ T6571]  __x64_sys_sendmsg+0xd4/0x160
[   92.310790][ T6571]  x64_sys_call+0x191e/0x2ff0
[   92.310813][ T6571]  do_syscall_64+0xd2/0x200
[   92.310839][ T6571]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   92.310906][ T6571]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   92.310929][ T6571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.310952][ T6571] RIP: 0033:0x7f4fdcceebe9
[   92.311047][ T6571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.311066][ T6571] RSP: 002b:00007f4fdb74f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   92.311086][ T6571] RAX: ffffffffffffffda RBX: 00007f4fdcf15fa0 RCX: 00007f4fdcceebe9
[   92.311099][ T6571] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[   92.311112][ T6571] RBP: 00007f4fdb74f090 R08: 0000000000000000 R09: 0000000000000000
[   92.311125][ T6571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.311179][ T6571] R13: 00007f4fdcf16038 R14: 00007f4fdcf15fa0 R15: 00007ffee9d925d8
[   92.311198][ T6571]  </TASK>
[   92.603518][ T6589] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   92.616456][ T6589] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   92.685919][ T6589] netlink: 'syz.5.1202': attribute type 10 has an invalid length.
[   92.693881][ T6589] dummy0: entered promiscuous mode
[   92.700575][ T6589] batman_adv: batadv0: Interface deactivated: dummy0
[   92.707293][ T6589] batman_adv: batadv0: Removing interface: dummy0
[   92.744616][ T6589] bridge0: port 3(dummy0) entered blocking state
[   92.751045][ T6589] bridge0: port 3(dummy0) entered disabled state
[   92.780237][ T6589] dummy0: entered allmulticast mode
[   92.786232][ T6589] bridge0: port 3(dummy0) entered blocking state
[   92.792819][ T6589] bridge0: port 3(dummy0) entered forwarding state
[   93.264956][ T6656] loop2: detected capacity change from 0 to 1024
[   93.271608][ T6656] EXT4-fs: Ignoring removed oldalloc option
[   93.277546][ T6656] EXT4-fs: Ignoring removed bh option
[   93.420113][ T6676] IPv6: Can't replace route, no match found
[   93.427583][ T6678] loop2: detected capacity change from 0 to 512
[   93.435255][ T6678] EXT4-fs: Ignoring removed orlov option
[   93.443310][ T6678] EXT4-fs: journaled quota format not specified
[   93.450170][ T6676] loop5: detected capacity change from 0 to 1024
[   93.458667][ T6676] ext4: Unknown parameter 'smackfsroot'
[   93.472213][ T6678] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   93.484350][ T6676] rdma_op ffff888125962980 conn xmit_rdma 0000000000000000
[   93.503449][ T6681] loop3: detected capacity change from 0 to 1024
[   93.533053][ T6685] netlink: 'syz.5.1242': attribute type 1 has an invalid length.
[   93.541985][ T6681] EXT4-fs: Ignoring removed oldalloc option
[   93.547906][ T6681] EXT4-fs: Ignoring removed bh option
[   93.739119][ T6719] netlink: 'syz.3.1257': attribute type 1 has an invalid length.
[   93.858754][ T6735] FAULT_INJECTION: forcing a failure.
[   93.858754][ T6735] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.871950][ T6735] CPU: 1 UID: 0 PID: 6735 Comm: syz.5.1264 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   93.872050][ T6735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   93.872064][ T6735] Call Trace:
[   93.872070][ T6735]  <TASK>
[   93.872078][ T6735]  __dump_stack+0x1d/0x30
[   93.872152][ T6735]  dump_stack_lvl+0xe8/0x140
[   93.872173][ T6735]  dump_stack+0x15/0x1b
[   93.872192][ T6735]  should_fail_ex+0x265/0x280
[   93.872278][ T6735]  should_fail+0xb/0x20
[   93.872342][ T6735]  should_fail_usercopy+0x1a/0x20
[   93.872360][ T6735]  _copy_from_user+0x1c/0xb0
[   93.872463][ T6735]  memdup_user+0x5e/0xd0
[   93.872488][ T6735]  strndup_user+0x68/0xb0
[   93.872513][ T6735]  __se_sys_mount+0x8e/0x2e0
[   93.872534][ T6735]  ? fput+0x8f/0xc0
[   93.872697][ T6735]  ? ksys_write+0x192/0x1a0
[   93.872725][ T6735]  __x64_sys_mount+0x67/0x80
[   93.872807][ T6735]  x64_sys_call+0x2b4d/0x2ff0
[   93.872832][ T6735]  do_syscall_64+0xd2/0x200
[   93.872928][ T6735]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   93.872955][ T6735]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   93.872981][ T6735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.873004][ T6735] RIP: 0033:0x7fb41475ebe9
[   93.873073][ T6735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.873127][ T6735] RSP: 002b:00007fb4131bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   93.873148][ T6735] RAX: ffffffffffffffda RBX: 00007fb414985fa0 RCX: 00007fb41475ebe9
[   93.873162][ T6735] RDX: 00002000000002c0 RSI: 0000200000000280 RDI: 0000200000000100
[   93.873176][ T6735] RBP: 00007fb4131bf090 R08: 0000200000000300 R09: 0000000000000000
[   93.873190][ T6735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.873203][ T6735] R13: 00007fb414986038 R14: 00007fb414985fa0 R15: 00007ffd2f526e68
[   93.873224][ T6735]  </TASK>
[   94.185023][ T6759] FAULT_INJECTION: forcing a failure.
[   94.185023][ T6759] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.198114][ T6759] CPU: 0 UID: 0 PID: 6759 Comm: syz.1.1275 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   94.198156][ T6759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   94.198168][ T6759] Call Trace:
[   94.198174][ T6759]  <TASK>
[   94.198181][ T6759]  __dump_stack+0x1d/0x30
[   94.198282][ T6759]  dump_stack_lvl+0xe8/0x140
[   94.198304][ T6759]  dump_stack+0x15/0x1b
[   94.198322][ T6759]  should_fail_ex+0x265/0x280
[   94.198357][ T6759]  should_fail+0xb/0x20
[   94.198427][ T6759]  should_fail_usercopy+0x1a/0x20
[   94.198489][ T6759]  _copy_from_iter+0xcf/0xe40
[   94.198589][ T6759]  ? __build_skb_around+0x1a0/0x200
[   94.198675][ T6759]  ? __alloc_skb+0x223/0x320
[   94.198773][ T6759]  netlink_sendmsg+0x471/0x6b0
[   94.198810][ T6759]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.198846][ T6759]  __sock_sendmsg+0x142/0x180
[   94.198905][ T6759]  ____sys_sendmsg+0x31e/0x4e0
[   94.198942][ T6759]  ___sys_sendmsg+0x17b/0x1d0
[   94.199015][ T6759]  __x64_sys_sendmsg+0xd4/0x160
[   94.199127][ T6759]  x64_sys_call+0x191e/0x2ff0
[   94.199190][ T6759]  do_syscall_64+0xd2/0x200
[   94.199216][ T6759]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   94.199241][ T6759]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   94.199318][ T6759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.199337][ T6759] RIP: 0033:0x7fecabdcebe9
[   94.199351][ T6759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.199423][ T6759] RSP: 002b:00007fecaa82f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.199497][ T6759] RAX: ffffffffffffffda RBX: 00007fecabff5fa0 RCX: 00007fecabdcebe9
[   94.199512][ T6759] RDX: 0000000024008854 RSI: 0000200000000200 RDI: 0000000000000003
[   94.199524][ T6759] RBP: 00007fecaa82f090 R08: 0000000000000000 R09: 0000000000000000
[   94.199537][ T6759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.199549][ T6759] R13: 00007fecabff6038 R14: 00007fecabff5fa0 R15: 00007ffde99f9708
[   94.199568][ T6759]  </TASK>
[   94.540286][ T6778] loop1: detected capacity change from 0 to 128
[   94.564448][ T6778] FAULT_INJECTION: forcing a failure.
[   94.564448][ T6778] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.577623][ T6778] CPU: 0 UID: 0 PID: 6778 Comm: syz.1.1284 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   94.577650][ T6778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   94.577662][ T6778] Call Trace:
[   94.577668][ T6778]  <TASK>
[   94.577675][ T6778]  __dump_stack+0x1d/0x30
[   94.577695][ T6778]  dump_stack_lvl+0xe8/0x140
[   94.577714][ T6778]  dump_stack+0x15/0x1b
[   94.577771][ T6778]  should_fail_ex+0x265/0x280
[   94.577803][ T6778]  should_fail+0xb/0x20
[   94.577830][ T6778]  should_fail_usercopy+0x1a/0x20
[   94.577849][ T6778]  _copy_to_user+0x20/0xa0
[   94.577952][ T6778]  simple_read_from_buffer+0xb5/0x130
[   94.577974][ T6778]  proc_fail_nth_read+0x10e/0x150
[   94.578054][ T6778]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   94.578079][ T6778]  vfs_read+0x1a0/0x6f0
[   94.578125][ T6778]  ? __rcu_read_unlock+0x4f/0x70
[   94.578196][ T6778]  ? __fget_files+0x184/0x1c0
[   94.578221][ T6778]  ksys_read+0xda/0x1a0
[   94.578243][ T6778]  __x64_sys_read+0x40/0x50
[   94.578263][ T6778]  x64_sys_call+0x27bc/0x2ff0
[   94.578324][ T6778]  do_syscall_64+0xd2/0x200
[   94.578347][ T6778]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   94.578415][ T6778]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   94.578436][ T6778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.578457][ T6778] RIP: 0033:0x7fecabdcd5fc
[   94.578471][ T6778] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   94.578488][ T6778] RSP: 002b:00007fecaa82f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   94.578574][ T6778] RAX: ffffffffffffffda RBX: 00007fecabff5fa0 RCX: 00007fecabdcd5fc
[   94.578596][ T6778] RDX: 000000000000000f RSI: 00007fecaa82f0a0 RDI: 0000000000000004
[   94.578608][ T6778] RBP: 00007fecaa82f090 R08: 0000000000000000 R09: 0000000000000000
[   94.578620][ T6778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.578632][ T6778] R13: 00007fecabff6038 R14: 00007fecabff5fa0 R15: 00007ffde99f9708
[   94.578649][ T6778]  </TASK>
[   94.814150][ T6792] loop0: detected capacity change from 0 to 512
[   94.821877][ T6792] EXT4-fs: Ignoring removed orlov option
[   94.835012][ T6794] loop1: detected capacity change from 0 to 1024
[   94.838173][ T6792] EXT4-fs: journaled quota format not specified
[   94.856710][ T6792] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   94.869599][ T6794] EXT4-fs: Ignoring removed oldalloc option
[   94.875612][ T6794] EXT4-fs: Ignoring removed bh option
[   94.927370][ T6802] netlink: 'syz.5.1294': attribute type 1 has an invalid length.
[   95.146576][ T6825] loop2: detected capacity change from 0 to 512
[   95.189351][ T6825] EXT4-fs: Ignoring removed orlov option
[   95.219047][ T6825] EXT4-fs: journaled quota format not specified
[   95.235221][ T6825] loop2: detected capacity change from 0 to 512
[   95.251977][ T6825] EXT4-fs: inline encryption not supported
[   95.299231][ T6825] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   95.313212][ T6825] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[   95.361953][ T6825] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   95.465932][ T6833] loop0: detected capacity change from 0 to 1024
[   95.494938][ T6833] EXT4-fs: Ignoring removed oldalloc option
[   95.501012][ T6833] EXT4-fs: Ignoring removed bh option
[   95.507930][ T6829] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.518744][ T6829] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.653778][ T6853] loop0: detected capacity change from 0 to 128
[   95.677556][ T6855] loop2: detected capacity change from 0 to 512
[   95.706565][ T6855] EXT4-fs (loop2): 1 truncate cleaned up
[   95.780145][ T6862] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   95.821952][   T29] kauditd_printk_skb: 811 callbacks suppressed
[   95.821968][   T29] audit: type=1400 audit(1754705610.593:6530): avc:  denied  { remount } for  pid=6854 comm="syz.2.1316" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   95.861011][ T6869] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   95.890617][ T6879] loop5: detected capacity change from 0 to 1024
[   95.899094][ T6879] EXT4-fs: Ignoring removed oldalloc option
[   95.905084][ T6879] EXT4-fs: Ignoring removed bh option
[   95.942610][   T29] audit: type=1400 audit(1754705610.713:6531): avc:  denied  { mount } for  pid=6854 comm="syz.2.1316" name="/" dev="hugetlbfs" ino=17646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[   95.967501][   T29] audit: type=1400 audit(1754705610.743:6532): avc:  denied  { ioctl } for  pid=6854 comm="syz.2.1316" path="/303/file1/file1" dev="loop2" ino=15 ioctlcmd=0xf512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   95.995598][   T29] audit: type=1326 audit(1754705610.763:6533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6878 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb414755ba7 code=0x7ffc0000
[   96.019013][   T29] audit: type=1326 audit(1754705610.763:6534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6878 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb4146fadd9 code=0x7ffc0000
[   96.042354][   T29] audit: type=1326 audit(1754705610.763:6535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6878 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb414755ba7 code=0x7ffc0000
[   96.065890][   T29] audit: type=1326 audit(1754705610.763:6536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6878 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb4146fadd9 code=0x7ffc0000
[   96.089281][   T29] audit: type=1326 audit(1754705610.763:6537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6878 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb41475ebe9 code=0x7ffc0000
[   96.126264][   T29] audit: type=1326 audit(1754705610.813:6538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6878 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb41475ebe9 code=0x7ffc0000
[   96.149773][   T29] audit: type=1326 audit(1754705610.813:6539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6878 comm="syz.5.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb41475ebe9 code=0x7ffc0000
[   96.163621][ T6890] loop5: detected capacity change from 0 to 512
[   96.195078][ T6890] EXT4-fs: Ignoring removed nobh option
[   96.205344][ T6890] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec018, mo2=0002]
[   96.215660][ T6890] System zones: 0-2, 18-18, 34-34
[   96.236234][ T6890] ext4 filesystem being mounted at /246/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.264151][ T6890] __nla_validate_parse: 27 callbacks suppressed
[   96.264196][ T6890] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1327'.
[   96.398394][ T6911] usb usb8: usbfs: process 6911 (syz.2.1334) did not claim interface 0 before use
[   96.424972][ T2990] ==================================================================
[   96.433069][ T2990] BUG: KCSAN: data-race in d_delete / step_into
[   96.439320][ T2990] 
[   96.441636][ T2990] read-write to 0xffff888106dc23c0 of 4 bytes by task 4082 on cpu 1:
[   96.449680][ T2990]  d_delete+0x15a/0x180
[   96.453834][ T2990]  d_delete_notify+0x32/0x100
[   96.458499][ T2990]  vfs_unlink+0x30b/0x420
[   96.462815][ T2990]  do_unlinkat+0x24e/0x480
[   96.467219][ T2990]  __x64_sys_unlink+0x2e/0x40
[   96.471884][ T2990]  x64_sys_call+0x2dc0/0x2ff0
[   96.476552][ T2990]  do_syscall_64+0xd2/0x200
[   96.481048][ T2990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.486930][ T2990] 
[   96.489237][ T2990] read to 0xffff888106dc23c0 of 4 bytes by task 2990 on cpu 0:
[   96.496763][ T2990]  step_into+0x12f/0x820
[   96.500999][ T2990]  walk_component+0x162/0x220
[   96.506191][ T2990]  path_lookupat+0xfe/0x2a0
[   96.510691][ T2990]  filename_lookup+0x147/0x340
[   96.515457][ T2990]  do_readlinkat+0x7d/0x320
[   96.519959][ T2990]  __x64_sys_readlink+0x47/0x60
[   96.524809][ T2990]  x64_sys_call+0x28da/0x2ff0
[   96.529474][ T2990]  do_syscall_64+0xd2/0x200
[   96.533969][ T2990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.539852][ T2990] 
[   96.542156][ T2990] value changed: 0x00300180 -> 0x00004080
[   96.547851][ T2990] 
[   96.550154][ T2990] Reported by Kernel Concurrency Sanitizer on:
[   96.556285][ T2990] CPU: 0 UID: 0 PID: 2990 Comm: udevd Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(voluntary) 
[   96.567900][ T2990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   96.577940][ T2990] ==================================================================