last executing test programs:

1m2.505138863s ago: executing program 1 (id=3203):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYRES32=0x0], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x10, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r1, 0x0, 0x100000000}, 0x18)
fcntl$setpipe(r0, 0x407, 0x8)
inotify_init()
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x10008)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='mpol=interleave,mpol=l'])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000017c0)={0x7cd6}, 0x8)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x804c040}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xf}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x70, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0xf, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x40, 0x2, [@TCA_CGROUP_EMATCHES={0x3c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x2c, 0x1, 0x0, 0x0, {{0x800, 0x7, 0x1}, {{0xfff2, 0x0, 0x1}, {0x3, 0x1, 0x1}}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xe85, 0x1, 0xc}, {0x4, 0x80000000, 0x3, 0x1, 0xf, 0x1}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8}}]}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r7, 0xffffffffffffffff, 0x0)

1m1.65301238s ago: executing program 1 (id=3208):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="580000000201050000000000000000000a000009440001800c000280050001002100000006000340000000002c00018014000300"], 0x58}, 0x1, 0x0, 0x0, 0x80}, 0x8010)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000efffffff850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x140000, 0x0, 0x0, 0x0, 0x5}, [@map_idx_val={0x18, 0xa, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1000}, @map_val={0x18, 0x3, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfa8c}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x46}]}, &(0x7f0000000180)='GPL\x00', 0xda4, 0xad, &(0x7f0000000440)=""/173, 0x40f00, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x4, 0x3, 0x1, 0x9}, 0x10, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000500)=[{0x1, 0x3, 0xc, 0x3}, {0x5, 0x3, 0x0, 0x9}, {0x5, 0x3, 0x6, 0x1}], 0x10, 0x78}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000300)='io_uring_register\x00', r3, 0x0, 0x3ff}, 0x18)
time(0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000000))
ioctl$PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000100)={0x2, &(0x7f0000000080)=[{0x40, 0x0, 0x38, 0x8}, {0x6, 0xfc}]})
write(r2, &(0x7f00000001c0)="44c6", 0x2)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="40000000480001ffffffe000000000000a00806e08000000e0000001140001800d2a79075827af5aa534d6815c2e93f10c0002"], 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004880)

1m1.258115257s ago: executing program 1 (id=3212):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4c00000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800e00010069703665727370616e000000100002800400120006001800177b000008000a00", @ANYRES32=r3], 0x4c}, 0x1, 0x0, 0x0, 0x40001}, 0x4000)
sendmmsg$inet(r0, 0x0, 0x0, 0x4000800)

1m0.874006184s ago: executing program 1 (id=3218):
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file1\x00', 0x2800810, &(0x7f00000025c0)=ANY=[], 0x3, 0x15d, &(0x7f0000000f00)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x10, 0x103)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_FLUSH(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x1c, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040001}, 0x1)
openat$selinux_policy(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setresgid(0xee00, 0xee01, 0x0)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000040)=ANY=[], 0x1, 0x1b1, &(0x7f0000000540)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_getaffinity(0x0, 0x8, &(0x7f00000001c0))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
syz_clone(0x22180, 0x0, 0xa42f, 0x0, 0x0, 0x0)
getpeername$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000380))
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ioprio_set$pid(0x3, 0x0, 0x4007)

1m0.796164816s ago: executing program 1 (id=3219):
socket(0xa, 0x3, 0x3a)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000004000000e27f0000010000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000200000000000000000000000006fa84215380fedf841868633fcf8b49b90dc206ada4c3a5fccbc7d84b6d09f88a4329f3f"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="180057df8976fdc6ea910000000000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0x0, 0x8000008, 0x3, 0x4, 0x1, 0x0, 0x7cce8c743ee810df})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read(r1, &(0x7f0000000840)=""/40, 0x28)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000180)={0x381, @time={0x5}, 0x40, {0xc0, 0xff}, 0x46, 0x1, 0x1})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f0000000bc0)={0x800100, 0x0, 0x0, 0x724f, 0x0, 0x55a})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x3, &(0x7f0000000300)=[{0x3, 0x9, 0xb, 0x8}, {0xfffb, 0x23, 0x1, 0x7}, {0x4, 0x87, 0x2, 0xffffff7f}]})
close_range(r3, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r4}, 0x18)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000780), r7)
getsockname$packet(r7, &(0x7f0000000300)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r8, @ANYBLOB="0100000000000000240012000c000100627269646765000e140002000800070005"], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendto$packet(r5, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x11, 0x8100, r8, 0x1, 0x0, 0x6, @local}, 0x14)

1m0.509271302s ago: executing program 1 (id=3226):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002080)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
rename(&(0x7f0000000240)='./file0\x00', &(0x7f0000000c40)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')
r1 = socket$kcm(0xa, 0x2, 0x73)
dup2(r0, r1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x800000000006}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x7, 0x0, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x0, 0x7fff, 0x0, {0x0, 0x1}, {0x4a, 0x2}, @period={0x5d, 0xa370, 0x0, 0x7f, 0x2, {0x1, 0x3, 0x4, 0x2}, 0x0, 0x0}})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
umount2(&(0x7f0000000580)='./file0\x00', 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x18)
ioprio_get$uid(0x3, 0x0)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
write$char_usb(r3, &(0x7f0000000040)="e2", 0x12d8)

1m0.507594652s ago: executing program 32 (id=3226):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002080)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
rename(&(0x7f0000000240)='./file0\x00', &(0x7f0000000c40)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')
r1 = socket$kcm(0xa, 0x2, 0x73)
dup2(r0, r1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x800000000006}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x7, 0x0, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x0, 0x7fff, 0x0, {0x0, 0x1}, {0x4a, 0x2}, @period={0x5d, 0xa370, 0x0, 0x7f, 0x2, {0x1, 0x3, 0x4, 0x2}, 0x0, 0x0}})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
umount2(&(0x7f0000000580)='./file0\x00', 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x18)
ioprio_get$uid(0x3, 0x0)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
write$char_usb(r3, &(0x7f0000000040)="e2", 0x12d8)

3.041896581s ago: executing program 2 (id=4031):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000007000000010001004900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, 0x0, &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r3, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)

3.011800781s ago: executing program 2 (id=4032):
socket(0xa, 0x3, 0x3a)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000004000000e27f00000100000012000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000200000000000000000000000006fa84215380fedf841868633fcf8b49b90dc206ada4c3a5fccbc7d84b6d09f88a4329f3f"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="180057df8976fdc6ea910000000000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0x0, 0x8000008, 0x3, 0x4, 0x1, 0x0, 0x7cce8c743ee810df})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read(r1, &(0x7f0000000840)=""/40, 0x28)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000180)={0x381, @time={0x5}, 0x40, {0xc0, 0xff}, 0x46, 0x1, 0x1})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f0000000bc0)={0x800100, 0x0, 0x0, 0x724f, 0x0, 0x55a})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r4}, 0x18)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000780), r7)
getsockname$packet(r7, &(0x7f0000000300)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r8, @ANYBLOB="0100000000000000240012000c000100627269646765000e140002000800070005"], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendto$packet(r5, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x11, 0x8100, r8, 0x1, 0x0, 0x6, @local}, 0x14)

2.850815155s ago: executing program 2 (id=4034):
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r1, 0x0, 0x22, &(0x7f0000000540)=0x1ff, 0x4)
sendto$inet(r1, 0x0, 0x0, 0x40004, &(0x7f00000000c0)={0x2, 0x4e20, @remote}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}, 0xc4}], 0x1, 0x12061, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000040)="2703022b590241c90000002f1eafbcf706e105000000894f000f1102ee1680ca82973d2bd4b8bf4a8291a14b8a34f90186cee844000000080000000019b0fb0bba", 0x1a}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b7d050139bf7ada32bc9e37eed1153ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d3333ce2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb0000000000000000", 0x87}, {&(0x7f0000000280)="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", 0x1a1}, {&(0x7f0000000180)="6fe4dd9eeba3271dc700b581440284", 0xfe69}], 0x4}, 0x0)
r3 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r6, &(0x7f00000047c0)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000040)={0x18, 0x7a, 0x601, 0x70bd2a, 0x4000000, "", [@typed={0x7, 0x0, 0x0, 0x0, @str='\x00\x00\x00'}]}, 0x18}], 0x1}, 0x0)
sendmsg$SMC_PNETID_GET(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f0000000180)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="3c000000100037040050b24195d4000000ffffff", @ANYRES32=r7, @ANYBLOB="0b120500000000001c0012800b00010069703667726500000c00028008000100", @ANYRES32=r7], 0x3c}}, 0x4000010)
sendmmsg$inet(r4, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000240)={r7, 0x1, 0x6, @random="7853b96be079"}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$tipc(r9, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20040018}, 0x0)
setsockopt$sock_attach_bpf(r8, 0x1, 0x21, &(0x7f0000000040), 0x4)
recvmsg(r8, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)
close(r9)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)

2.660197769s ago: executing program 3 (id=4037):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10080, 0x0, 0x0, 0x2, 0x4, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000002000000a003000005000000000000", @ANYRES32, @ANYBLOB="0000000000000000405d86327c0001"], 0x48)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0}, 0xfc00)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="32222ff6fc4ac2209cf1db7aeb3a1968a6"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000fc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000800000000000000ff03000018210000", @ANYRES32=r2, @ANYBLOB="00000012b88ba2970e00000000000000"], &(0x7f00000001c0)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x2c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x8, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r1, r0], 0x0, 0x10, 0x4}, 0x94)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)
r5 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000000)=ANY=[@ANYRES16=r4], 0xfe33)
r6 = socket$netlink(0x10, 0x3, 0x8)
r7 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x1)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000200)={0x0, r6}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xa, 0xc, &(0x7f0000000c40)=ANY=[@ANYBLOB="9271981d225f617ffe446c069f48d04eb555cb47c161c25a080cb5cdf097ad0d9d867cbcf6e975affc9c2ea8a1636e1fb4026c85fcf106a93616d3a4c09d07d096b7a30e66011e41ffd59f7cce5607218aa21ffa72e481c1623f7d78792d55dd2c83bd08dbb1b3ae99f6a83783063468e3ad6e92c2a8bd93bc2ebb4d8cee34d5145b8a84f5976a5136a70ba84f48ad5c6fd0f18817d0e77434ea540863a6e94406a6ba9e2a67139e76fb209cbd7c0a6afeb30f8d8d113cbe8127b93822e379af256e0a40a2435e85d6237de11205995016b71917631adc90aee5", @ANYRESOCT, @ANYRESDEC=r3, @ANYBLOB="f6d94e5a9a019c690be0ae81aa3dffeb3e884196ac42d1843c38ce91470efefb02c8dd08fdc0127b236a7e536ea58c70a1aae56ca316300e72c163d5089e85cec122", @ANYRES32=r0, @ANYRESOCT=r3, @ANYBLOB="3736dda031d27211fb5087db21b5040907d83d9b94af990fab37033e44c18504b49471832439c4bbb4b2c15ea800000000fbd1e8e694a4ccefe075567283eb9287b4850146ffb3a65a95e2fbce93a65f354eec119bcd1e673707fc5fbc40931d06694a8714eacc2908e93331470365015f8c7cbccc000000527a52d2615e9b6378d5501d176c360cf01f09", @ANYRES64=r3, @ANYBLOB='*@B', @ANYRESDEC=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r10, 0x0, 0x2}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
r11 = syz_open_procfs(0x0, &(0x7f0000000000)='cgroup\x00')
preadv(r11, &(0x7f00000000c0)=[{&(0x7f0000000380)=""/131, 0x83}], 0x1, 0x12e, 0x0)
fchdir(r8)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r12, 0x0, 0x22)
syz_usbip_server_init(0x6)

2.494927601s ago: executing program 5 (id=4039):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x9, 0xfffffffe, 0x0, 0x2}, 0x10)
write(r0, &(0x7f0000000080)="240000001e005f0214fffffffffffff807000000010000000000007bc8801ff2176e8bf2", 0x24)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000f00000018110000", @ANYRES32=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a30000000000800410073697700140033006c6f"], 0xffaf}, 0x1, 0x0, 0x0, 0x854}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$UHID_CREATE2(r4, 0x0, 0x8)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r0)
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r2, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000001b40)={0xa4e, r5, 0x200, 0x70bd2c, 0x25dfdbfe, {{}, {@val, @void}}, [@fils_params=[@NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x4}, @NL80211_ATTR_FILS_ERP_RRK={0xaa, 0xfc, "5590313adca076075308c1c05710c7420c11f5a12fcd965f2f67c1b7ec6c2fab7326dbf426abcdbc4494f93fa5b7c03ffa601e0a6d76b0828a8e889b3d5f4623df73452d848ece10f869c17ebad61ebd7557397e59332862b95e8b1d28b1af091cda164c39a855d61db3b3afa853ad0fe052ec76fab8546a53f15f0fbfd60dac4c5fe1330f1c7b5b709b843d43e0be6ec20455e78e9eb515ad0fdbca4a9f5e74598f598a9cb0"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xb, 0xf9, "7aaf7e5df5cf67"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x5, 0xf9, '\b'}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x4}, @NL80211_ATTR_FILS_ERP_USERNAME={0x12, 0xf9, "c6d040aebe680360df8b252f96c1"}, @NL80211_ATTR_FILS_ERP_RRK={0x1004, 0xfc, "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"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x8, 0xf9, "24741cfc"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xc, 0xf9, "81f947c27cc771c4"}]]}, 0x1110}, 0x1, 0x0, 0x0, 0x4010}, 0x40080)
r6 = mq_open(&(0x7f0000000080)='eth0\x00#~\x02\x00\x00\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfd\x05\x00\x00\x00\x00\x00\x80\x00\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94uu_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18A\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x05\x00\x00\x000\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xce\x00\x00\x00\xe8\vq+\xbb\xc7\xaf\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r6, &(0x7f000001a600)=""/102385, 0x18ff1, 0x0, 0x0)

2.323378665s ago: executing program 4 (id=4041):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r1, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20040018}, 0x0)
sendmsg$inet(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x21, &(0x7f0000000040), 0x4)
recvmsg(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)
close(r1)

2.163131908s ago: executing program 0 (id=4047):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYBLOB="18000000000000000000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r0}, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)

2.146435659s ago: executing program 0 (id=4048):
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)

1.816311005s ago: executing program 3 (id=4049):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
r5 = fsopen(&(0x7f0000000080)='devtmpfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000180), 0x0, 0x8, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000000)={0x500, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="020200090f000000000000000000000005000600000000000a0000000000000000000000000000000000000000000000000000000000000002000100000004d20000020300000020050005002f8000000a00000000000000ff0100000000000000000000000000010000000000000000010018"], 0x78}}, 0x0)

1.632420818s ago: executing program 5 (id=4050):
sched_setattr(0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a00000200ffff240001801400018008000100e000000108fa0200e00000010c00028005000100000000002c00028014000180080001000000000008000200ac1e02010c00028005000100000000000600034000020000"], 0x64}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r3}, 0x10)
syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x66002)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4, 0x0, 0xfffffffffffffffd}, 0x18)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000100)={<r6=>0xffffffffffffffff}, 0x13f, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000000)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000380), r6, 0x0, 0x1, 0x4}}, 0x20)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socket$rds(0x15, 0x5, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$eJzs3ctvVNUfAPDvvX3S/n62EBPFhZAYA4nS0gKGGBPp3hB8/AOVFkIolLQ1sUDCkOjSuHFh4sqF+F8oiTvjwq0L94aEGMNCDJExd3qnTKcz0+c8mPl8kqH31Xu+t/Tbc+6Zc+4E0LOOZv+kEYcj4kYSMVaxrz/ynUfXjnv01+2L2SuJYvHDP5O4fScpVJ4ryb+O5t/871gkv6YRh/o2l7u8evPq7MLC/FK+Prly7cbk8urNE1euzV6evzx/ffqt6bNnTp85O3Vy79dX5btvniRT3/9+Polz8TSPLbuu6uOG9lRyVvbRKK55XLk9+7me3eO5O8XfY+Xfk2eS6g10rEt53g5ExEsxFn0V/5tj8fn7bQ0OaKpiEuU6Cug5SZ38/3mm0V+G4abFA7RKuR1QvrevdR+8WdrkVgnQCg9n1jqk1nJ/ICLK+d+f950Nl/oGRh4lG/p5kojYW8/cmqyMX346/1n2ijr9cEBzFO6We7mr6/+klJvjMVxaG3mUbsz/QrGY5i2BbPsHuyy/un9e/kPrFO5GxMt5/T8Y287/NM/dcv5/vMvy5T8AAAAAAADsn/szEfFmrfF/6fr4n8Ea439GI+LcPpS/9ft/6YN8Iak6dHAfioee9nAm4p2a43/Xx/iO9+Vr/y+NB7iVXLqyMH8yIl6IiOMxMJStT1Wdt3KE8IkvDn1dr/zK8X/ZKyu/PBYwP9OD/qqJuHOzK7N7vW4g4uHdiFdK43+P5Fs2jv/J6v+kRv2f5feNbZZx6PV7F+rt2zr/gWYpfhtxrGb9/6y5nTR+PsdkqT0wWW4VbPbqrS9/qFd+df434RKBOrL6f6Rx/g8llc/rWd7Z+bOb9FOr/cV6+3fb/h9MPuqLik6AT2dXVpamIgaT9zZvn95ZzNCt8nw4Enm+ZPl//LXG/X/r7f+KPDwQEYVtlDe8xX7tf2ifLP/nGtf/4xvr/50vTN8b/7Fe+Re2Vf+fLtXpx/Mt+v+g0ubncWw3QdsSLgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA859KI+F8k6cT6cppOTESMRsSLMZIuLC6vvHFp8ZPrc9m+iPEYSMuf9Du2tp6UP/9/vGJ9umr9VEQcjIiv+g6U1icuLi7MtfviAQAAAAAAAAAAAAAAAAAAoEOMlub8F4eq5/9n/uhrd3RA0/XnX+U79J7+XX9ncWhfAwFabvf5DzzHsnv+HeT/QDNjAdqgfv4/flIsaWk4QAtp/0Pv2mX+e7sAuoD6H3rVNvv0hpsdB9AO6n8AAAAAAOgqB4/c/y2JiMLbB0qvzGC+z2B/6G5puwMA2sYYXuhd/YvtjgBoF/f4QLK+9E/Nyf71R/8nzQkIAAAAAAAAAAAAANjk2GHz/6FXNZ7/b2w/dLMG8/9rJb/HBUAXqf/RH+p+6Hbu8YGtanvz/wEAAAAAAAAAAACgAwzfvDq7sDC/tLz6/C282xlh7GyhMNsRYexgoXgnovExT5tT+kBEdMoPYWk5i6ZVZZUfwdHGS27z3yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDdfwEAAP//+sobJQ==")
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file0/file0\x00', &(0x7f00000003c0), 0x2000)
r8 = semget(0x3, 0x3, 0x120)
semctl$SEM_STAT(r8, 0x0, 0x12, &(0x7f0000000680)=""/255)
r9 = openat$cgroup_freezer_state(r7, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r9, &(0x7f0000000040)='FROZEN\x00', 0x7)
sendfile(r9, r9, 0x0, 0x9)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
r11 = dup(r10)
connect$inet6(r11, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c)
setsockopt$IPT_SO_SET_REPLACE(r11, 0x4000000000000, 0x4, 0x0, 0x0)
bind$inet(r11, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)

1.359613944s ago: executing program 4 (id=4051):
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x4, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000380), 0x1000a)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r0, 0x0)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x2000414, &(0x7f0000000340)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000540)="$eJzs3MFqE18Ux/Hzb/pv0pQ2EURQUA+60c3QxgfQIC2IAaU2RV0IUzvRkDEpM0MlIjYbcetzFJfuBPUFuhE37t0VQXDThTjiTKZN2rSmbdLE9PuBck9y7o+5bdNyUuis3339pFRwjYLpyVBCZUikJhsi6T9V3X/1dSioR6RRTS6P/fhy9s69+zezudz0rOpMdu5KRlUnzr9/+vzNhY/e2PzbiXdxWUs/WP+e+bp2au30+q+5x0VXi66WK56aulCpeOaCbeli0S0Zqrdty3QtLZZdy2nqF+zK0lJVzfLieHLJsVxXzXJVS1ZVvYp6TlXNR2axrIZh6HhSjrfhNvbkV2dnzeyubT/W0ROh60ZbPek42VrrZn71CM4EAAD6zN7zfzjr7z7/5+bDtcPzvwjzf5fUmh79Zf7HQHCcrJms//w2Y/4HAAAAAAAAAAAAAAAAAAAAAOBfsOH7Kd/3U9EafcRFJCEi0eNenxPdccDv/9UeHRcd1vCPewkR+9VyfjkfrmE/W5Ci2GLJpKTkZ/B6qAvrmRu56UkNpOWDvVLPryznYxKP8pF0q/y5E1NhXpvz/0uy8foZScnJ1tfPtMyPyKWLDXlDUvLpoVTElsXgdb2VfzGlev1Wblt+NNgHAAAAAMAgMHTTjvfvQT/YkJCd/TC/j78PbHt/PSxn2rlFJQAAAAAAODS3+qxk2rblHKCIi8gh4oNaxKQvjrGtuCYifXCMoyoSIhI+oweJf9uMt5Xy29gzLCI9/7Lso+j1byYAAAAAnbY19O8j9PllF08EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDx0+79wKL9O1pRY494w+ViR/4JAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH3kdwAAAP//R8IgDA==")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3)
syz_open_procfs(0x0, &(0x7f0000000580)='smaps_rollup\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xae, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mremap(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffd000/0x3000)=nil)

1.174112237s ago: executing program 0 (id=4052):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xd146, 0x0, 0x40003, 0x288}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='kfree\x00', r4, 0x0, 0xfffffffffffffffc}, 0x18)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r0, 0x0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[], 0x30}})
io_uring_enter(r1, 0x6b03, 0xd5c5, 0x4, 0x0, 0x0)

1.151116557s ago: executing program 0 (id=4053):
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000200), 0x1, 0x4bc, &(0x7f0000000a40)="$eJzs3ctvW1UaAPDPdpMmaWb6mNGo7UjTSh2p81DjPDRqMjObWc3MotJoKrEBqYTEDSVOHMVOaaIuUth1wQKBQEIs2PMXsKErKiTEGvaIBSqCEiRAQjK613abOHGwII1p7u8n3ebch/2dU+s7Ovf4Xt8AMuts8k8uYjgiPoyIo43VrQecbfzZuH9zJllyUa9f/iKXHpestw5tve5IRKxHxEBE/P/fEc/ktsetrq7NT5fLpeXmerG2sFSsrq5duLYwPVeaKy2OTV6cmpocnRif2rO23n7puduX3vlv/9vfvHjv7svvvZtUa7i5b3M79lKj6X1xfNO2QxHxz0cRrAcKzfYM9roi/CTJ5/ebiDiX5v/RKKSfJpAF9Xq9/n39cKfd63XgwMqnY+BcfiQiGuV8fmSkMYb/bQzly5Vq7a9XKyuLs42x8rHoy1+9Vi6NNs8VjkVfLlkfS8sP18fb1ici0jHwK4XBdH1kplKe3d+uDmhzpC3/vy408h/ICKf8kF3yH7JL/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv+QXfIfskv+Qyb979KlZKm37n+fvb66Ml+5fmG2VJ0fWViZGZmpLC+NzFUqc+k9Ows/9n7lSmVp7G+xcqNYK1Vrxerq2pWFyspi7Up6X/+VUt++tAroxvEzdz7ORcT63wfTJdHf3CdX4WCr13PR63uQgd4o9LoDAnrG1B9kl3N8oP0netvHBQOdXrj0cL4QeLzke10BoGfOn/L9H2SV+X/ILvP/kF3G+MAOj+jbYrf5f+DxZP4fsmu4w/O/frXp2V2jEfHriPio0He49awv4CDIf5Zrjv/PH/3jcPve/ty36VcE/RHx/BuXX7sxXastjyXbv3ywvfZ6c/v4phd2PGEAeqWVp608BgCya+P+zZnWsp9xP/9X4yKE7fEPNecmB9LvKIc2cluuVcjt0bUL67ci4uRO8XPN5503TmSGNgrb4p9o/s013iKt76H0uen7E//Upvh/2BT/9M/+X4FsuJP0P6M75V8+zel4kH9b+5/hPbp2onP/l3/Q/xU69H9nuozx7JsvfNox/q2I0zvGb8UbSGO1x0/qdr7L+PeeeuJ3nfbV32q8z07xW5JSsbawVKyurl1If0durrQ4NnlxampydGJ8qpjOURdbM9Xb/ePkB3d3a/9Qh/i7tT/Z9ucu2//d799/8uwu8f90bufP/8Qu8Qcj4i9dxv9q/JOnO+1L4s92aH9+l/jJtoku41df/c/hLg8FAPZBdXVtfrpcLi0rKCj0pHDrl1GNtkKveybgUauuJqfmSdL3uiYAAAAAAAAAAABAt/bjcuJetxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CD4IQAA//9HcdTQ")
gettid()
r0 = gettid()
tkill(r0, 0x28)
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x1a2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000002, 0x30, r1, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0x63, 0x0, &(0x7f0000000000)="ff", 0x0, 0x149d, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x50)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB="ac020000", @ANYRES16=r7, @ANYBLOB="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"], 0x2ac}}, 0x0)
r8 = syz_io_uring_setup(0x3, &(0x7f0000000580)={0x0, 0x226f, 0x1500, 0x1, 0xeffffffd}, &(0x7f0000000240), &(0x7f0000000300))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r8, 0x21, &(0x7f0000000440), 0x1)
r9 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r10, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmmsg$inet(r2, &(0x7f0000002d40)=[{{&(0x7f0000000080)={0x2, 0x4e22, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000001700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @multicast2, @multicast2}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x15}, @remote}}}], 0x40}}, {{0x0, 0x0, 0x0}}], 0x2, 0x4000800)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0xa4c42, 0x108)
fallocate(r1, 0x0, 0xbf5, 0x2000402)

927.610932ms ago: executing program 3 (id=4054):
socket(0xa, 0x3, 0x3a)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000004000000e27f00000100000012000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000200000000000000000000000006fa84215380fedf841868633fcf8b49b90dc206ada4c3a5fccbc7d84b6d09f88a4329f3f"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="180057df8976fdc6ea910000000000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0x0, 0x8000008, 0x3, 0x4, 0x1, 0x0, 0x7cce8c743ee810df})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read(r1, &(0x7f0000000840)=""/40, 0x28)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000180)={0x381, @time={0x5}, 0x40, {0xc0, 0xff}, 0x46, 0x1, 0x1})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f0000000bc0)={0x800100, 0x0, 0x0, 0x724f, 0x0, 0x55a})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
close_range(r3, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r4}, 0x18)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000780), r7)
getsockname$packet(r7, &(0x7f0000000300)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r8, @ANYBLOB="0100000000000000240012000c000100627269646765000e140002000800070005"], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendto$packet(r5, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x11, 0x8100, r8, 0x1, 0x0, 0x6, @local}, 0x14)

890.522632ms ago: executing program 4 (id=4055):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000011c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
utimes(&(0x7f0000000340)='./file0\x00', 0x0)

861.251783ms ago: executing program 2 (id=4056):
r0 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f00000002c0)='./file0\x00', 0x200011, 0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xe, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff8500000071000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x53, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000f8dbdf"], 0x114}], 0x1, 0x0, 0x0, 0x44}, 0x20004080)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c0000006c00fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="2000000000280000180034801400350064766d727030000000000000000000001400350062726964676530000000000000000000"], 0x4c}, 0x1, 0x0, 0x0, 0x4044064}, 0x40000)
getdents64(r0, &(0x7f00000006c0)=""/252, 0xfc)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/syz1\x00', 0x1ff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r6)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="796100000000000000007e00000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x4008084}, 0x0)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000500)={0x0, 0x7, 0x7, [0x5, 0xe, 0x7, 0x8000, 0x24, 0x3, 0x2]}, &(0x7f0000000440)=0x16)

848.496364ms ago: executing program 4 (id=4057):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f0000000780)=[{0x200000000006, 0xf, 0x6, 0x7ffc1ffb}]})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)

815.248424ms ago: executing program 4 (id=4058):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1807000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c0000000206030000000000000000000000000014000780080012400000000005001500020000000500010006000000050005"], 0x4c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000080900010073797a30000000005c000000030a03000000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000000032800048008000240000000120800014000000000140004"], 0xa4}}, 0x0)

790.694774ms ago: executing program 4 (id=4059):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10080, 0x0, 0x0, 0x2, 0x4, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000002000000a003000005000000000000", @ANYRES32, @ANYBLOB="0000000000000000405d86327c0001"], 0x48)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0}, 0xfc00)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="32222ff6fc4ac2209cf1db7aeb3a1968a6"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000fc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000800000000000000ff03000018210000", @ANYRES32=r2, @ANYBLOB="00000012b88ba2970e00000000000000"], &(0x7f00000001c0)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x2c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x8, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r1, r0], 0x0, 0x10, 0x4}, 0x94)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)
r5 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000000)=ANY=[@ANYRES16=r4], 0xfe33)
r6 = socket$netlink(0x10, 0x3, 0x8)
r7 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x1)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000200)={0x0, r6}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xa, 0xc, &(0x7f0000000c40)=ANY=[@ANYBLOB="9271981d225f617ffe446c069f48d04eb555cb47c161c25a080cb5cdf097ad0d9d867cbcf6e975affc9c2ea8a1636e1fb4026c85fcf106a93616d3a4c09d07d096b7a30e66011e41ffd59f7cce5607218aa21ffa72e481c1623f7d78792d55dd2c83bd08dbb1b3ae99f6a83783063468e3ad6e92c2a8bd93bc2ebb4d8cee34d5145b8a84f5976a5136a70ba84f48ad5c6fd0f18817d0e77434ea540863a6e94406a6ba9e2a67139e76fb209cbd7c0a6afeb30f8d8d113cbe8127b93822e379af256e0a40a2435e85d6237de11205995016b71917631adc90aee5", @ANYRESOCT, @ANYRESDEC=r3, @ANYBLOB="f6d94e5a9a019c690be0ae81aa3dffeb3e884196ac42d1843c38ce91470efefb02c8dd08fdc0127b236a7e536ea58c70a1aae56ca316300e72c163d5089e85cec122", @ANYRES32=r0, @ANYRESOCT=r3, @ANYBLOB="3736dda031d27211fb5087db21b5040907d83d9b94af990fab37033e44c18504b49471832439c4bbb4b2c15ea800000000fbd1e8e694a4ccefe075567283eb9287b4850146ffb3a65a95e2fbce93a65f354eec119bcd1e673707fc5fbc40931d06694a8714eacc2908e93331470365015f8c7cbccc000000527a52d2615e9b6378d5501d176c360cf01f09", @ANYRES64=r3, @ANYBLOB='*@B', @ANYRESDEC=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r10, 0x0, 0x2}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
r11 = syz_open_procfs(0x0, &(0x7f0000000000)='cgroup\x00')
preadv(r11, &(0x7f00000000c0)=[{&(0x7f0000000380)=""/131, 0x83}], 0x1, 0x12e, 0x0)
fchdir(r8)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r12, 0x0, 0x22)
syz_usbip_server_init(0x6)

690.077366ms ago: executing program 5 (id=4060):
r0 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r0, &(0x7f0000000340)={0x28, 0x0, 0x2710, @local}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
connect$vsock_stream(r0, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)

638.777307ms ago: executing program 2 (id=4061):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x101000)
ioctl$HIDIOCGFEATURE(r2, 0x4004480d, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x2e0, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x10)
r4 = syz_io_uring_setup(0x1108, &(0x7f0000000880)={0x0, 0x2, 0x80, 0x2, 0x21e}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f0000000100)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r4, 0x471b, 0xfffffffe, 0x20, 0x0, 0xffffffffffffff68)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x20042, 0x1})

459.783491ms ago: executing program 5 (id=4062):
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000180), 0x1, 0x451, &(0x7f0000000780)="$eJzs289vFFUcAPDvTFug/LAV8Qc/1CoaG3+0tKBy8KLRxIMmJl7wWNtCkIUaWhMhRNEYPBoS78ajiX+BJ70Y9WTiVe+GhBguoqc1szvD/mC3tMu2g+znkwx9b+YN7333zdt9M283gIE1kf2TROyMiN8jYqyebS0wUf9z/dqF+X+uXZhPolp9+6+kVu7vaxfmi6LFeTvyzGQakX6WxP4O9S6fO39qrlJZPJvnp1dOvz+9fO78cydPz51YPLF4Zvbo0SOHZ158Yfb5vsR5b9bWfR8tHdj7+juX35w/dvndn78dKuJvi6NPJlY7+GS12ufqyrWrKZ0Ml9gQ1iUbA1l3jdTG/1gMRaPzxuK1T0ttHLChqrkuhy9WgbtYEmW3AChH8UGf3f8W2+bNPsp39eX6DVAW9/V8qx8ZjjQvM9J2f9tPExFx7OK/X2VbbMxzCACAFt9n859nO83/0nigqdw9+drQeL6Wsjsi7ouIPRFxf0St7IMR8dA6629fJLl5/pNe6SmwNcrmfy/la1ut879i9hfjQ3luVy3+keT4ycriofw1mYyRrVl+ZpU6fnj1ty+6HWue/2VbVn8xF8zbcWV4a+s5C3Mrc7cTc7Orn0TsG+4Uf3JjJSCJiL0Rsa/HOk4+/c2BbsduHf8q+rDOVP064ql6/1+MtvgLyerrk9PborJ4aLq4Km72y6+X3upW/23F3wdZ/2/veP3fiH88aV6vXV5/HZf++LzrPc1UT9d/Y8eW/O+HcysrZ2citiRv1BvdvH+2cW6RL8pn8U8e7Dz+d0fjldgfEdlF/HBEPBIRj+Z991hEPB4RB9viar6//umVJ97rFv+d0P8Lbf0/3lqkrf8biS3RvqdzYujUj9+1/o+N5Nre/47UUpP5nrW8/62lXb1dzQAAAPD/k0bEzkjSqRvp0XRqqv4d/j2xPa0sLa88c3zpgzML9d8IjMdIWjzpGmt6HjqT39YX+dm2/OH8ufGXQ6O1/NT8UmWh7OBhwO24afyntfGf+XOo7NYBG87vtWBwNY3/pMx2AJvP5z8MLuMfBleH8T9aRjuAzdfp8//jEtoBbL628W/ZDwaI+38YXMY/DK7m8e8LADAwlkfj1j+S75TYFr2cJXHXJCK9I5rRn0TS4yhYa2Jn2QGuP1H2OxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEB//BcAAP//pgHvrg==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000080)=""/109, 0x6d)
lseek(r0, 0x3, 0x1)
getdents64(r0, 0x0, 0x0)

410.224702ms ago: executing program 0 (id=4063):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYRES32=0x0], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x10, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r1, 0x0, 0x100000000}, 0x18)
fcntl$setpipe(r0, 0x407, 0x8)
inotify_init()
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x18)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x10008)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='mpol=interleave,mpol=l'])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000017c0)={0x7cd6}, 0x8)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x804c040}, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xf}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x70, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0xf, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x40, 0x2, [@TCA_CGROUP_EMATCHES={0x3c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x2c, 0x1, 0x0, 0x0, {{0x800, 0x7, 0x1}, {{0xfff2, 0x0, 0x1}, {0x3, 0x1, 0x1}}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xe85, 0x1, 0xc}, {0x4, 0x80000000, 0x3, 0x1, 0xf, 0x1}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8}}]}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r8, 0xffffffffffffffff, 0x0)

250.589325ms ago: executing program 5 (id=4064):
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000180), 0x1, 0x451, &(0x7f0000000780)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000080)=""/109, 0x6d)
lseek(r0, 0x3, 0x1)
getdents64(r0, 0x0, 0x0)

196.479636ms ago: executing program 0 (id=4065):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYRESDEC=0x0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='cachefiles_io_error\x00', r0, 0x0, 0x50ca57aa}, 0x18)
socket$inet6(0xa, 0x3, 0x3c)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x3, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000007c0)=ANY=[], 0x110}}, 0x20000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000240)={[{@i_version}, {@init_itable}, {@noblock_validity}]}, 0x1, 0x71e, &(0x7f0000000f40)="$eJzs3U1rXNUbAPDn3nb+yb+NJoKKLyAVxYqlkya2lK6sC9FNMVBwm4bkJsTc9MbMTG1CF+nKrYii4Ea/gxtXims/gF9BQbTURV1F7rykbzPNVJMMZH4/uNPn3Hub55yZzHkgZ5gTwNA6UT6kEc9HxEwSMd4+n0REpRkdjbjYuu/2rRvz5ZHE9vblP5LmPWU77vk/peMRsRURz0XET5WIU+nDeWsbmytzeZ6tt9uT9dW1ydrG5unl1bmlbCm7euHs2emz589duLB3Y33j/Q+erZ57Z+z7mcXZk1O/fpfExRhrX7t3HHup9ZxUyqfwPu/uR7IBSgbdAf6V8q15pPUuj2diPI40IwDgMNseidgGAIZMov4DwJDp/B2gs7a3X+tgvfz+dkSMdst/tL1mNtpchzx2O7lvZSKJiImD7CiH0tbNiLgyceLh37/koTXbx3VmLzrIvvqxnH8udpt/0p35J7rMP6Odz078R73nv7v5j/SY/2b6zPHei42iZ/6bES8c7ZY/2cmf9Mh/pc/8P9xZ+LvXte1vI17rWn+S+3L1/nzI5OJynp1pPXbPcaJx48NHjf9Yj/xbu4x/rc/xj3328s9bj8j/+iuPfv275S9r4qd95v+k8tYXva6V+Rd6jH+31/+bPvOff+mjzT5vBQAAAAAAAAAAAAAAAAAAAAAAAAAAgEMhjYixSNLqTpym1WprD++n41iaF7X6qcWicXUhmntlT0Ql7XzV8nirnZTtqfb38Xfa0w+034yIpyLi85H/N9vV+SJfGPTgAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDt+AP7//810tr/HwA45EYH3QEA4MCp/wAwfNR/ABg+6j8ADB/1HwCGj/oPAMNH/QcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADggM1culQe27dv3Zgv2wvXNhorxbXTC1ltpbramK/OF+tr1aWiWMqz6nyxutvPy4tibXo6Gtcn61mtPlnb2JxdLRpX67PLq3NL2WxWOZBRAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDjGWseSVqNiLQZp2m1GvFERExEJVlczrMzEfFkRPwyUhkp21OD7jQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHaxubKXJ5n6wKBQLATDHpmAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIN3d9PvQfcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYp/S2JiPI4Of7q2INX/5fcGWn+GxEff335y+tz9fr6VHn+z53z9a/a56cH0X8AYDedOt2p4wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQTW1jc2Uuz7P1fQwGPUYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPbOPwEAAP//vT/OxQ==")
r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x82, 0x1, 0x0, r1, &(0x7f0000000000), 0x100000, 0x3000}])

162.540546ms ago: executing program 2 (id=4066):
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r1, 0x0, 0x22, &(0x7f0000000540)=0x1ff, 0x4)
sendto$inet(r1, 0x0, 0x0, 0x40004, &(0x7f00000000c0)={0x2, 0x4e20, @remote}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}, 0xc4}], 0x1, 0x12061, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000040)="2703022b590241c90000002f1eafbcf706e105000000894f000f1102ee1680ca82973d2bd4b8bf4a8291a14b8a34f90186cee844000000080000000019b0fb0bba", 0x1a}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b7d050139bf7ada32bc9e37eed1153ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d3333ce2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb0000000000000000", 0x87}, {&(0x7f0000000280)="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", 0x1a1}, {&(0x7f0000000180)="6fe4dd9eeba3271dc700b581440284", 0xfe69}], 0x4}, 0x0)
r3 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r6, &(0x7f00000047c0)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000040)={0x18, 0x7a, 0x601, 0x70bd2a, 0x4000000, "", [@typed={0x7, 0x0, 0x0, 0x0, @str='\x00\x00\x00'}]}, 0x18}], 0x1}, 0x0)
sendmsg$SMC_PNETID_GET(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f0000000180)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="3c000000100037040050b24195d4000000ffffff", @ANYRES32=r7, @ANYBLOB="0b120500000000001c0012800b00010069703667726500000c00028008000100", @ANYRES32=r7], 0x3c}}, 0x4000010)
sendmmsg$inet(r4, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000240)={r7, 0x1, 0x6, @random="7853b96be079"}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$tipc(r9, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20040018}, 0x0)
setsockopt$sock_attach_bpf(r8, 0x1, 0x21, &(0x7f0000000040), 0x4)
recvmsg(r8, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)
close(r9)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)

71.873328ms ago: executing program 5 (id=4067):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)

26.844489ms ago: executing program 3 (id=4068):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000011c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
utimes(&(0x7f0000000340)='./file0\x00', 0x0)

26.016469ms ago: executing program 3 (id=4069):
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x4, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000380), 0x1000a)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r0, 0x0)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x2000414, &(0x7f0000000340)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000540)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3)
syz_open_procfs(0x0, &(0x7f0000000580)='smaps_rollup\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xae, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mremap(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffd000/0x3000)=nil)

0s ago: executing program 3 (id=4070):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x14)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000002480)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x7, 0x9)
setpriority(0x0, 0x0, 0xacf0165)
read(r5, &(0x7f0000032440)=""/102364, 0x18fdc)
write$P9_RAUTH(r6, &(0x7f0000000a00)={0x14, 0x67, 0x2, {0x4}}, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844)

kernel console output (not intermixed with test programs):

000000000000
[  250.500426][T14307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555589e1c808
[  250.500437][T14307] RBP: 00007f99b06e7da0 R08: 0000000000000000 R09: 7fffffffffffffff
[  250.500449][T14307] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000003d2c4
[  250.500466][T14307] R13: 00007ffe4ea04640 R14: ffffffffffffffff R15: 00007ffe4ea04660
[  250.500485][T14307]  </TASK>
[  250.500541][T14307] memory: usage 307200kB, limit 307200kB, failcnt 571
[  250.549793][T14344] loop3: detected capacity change from 0 to 2048
[  250.554675][T14307] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0
[  250.554695][T14307] kmem: usage 307100kB, limit 9007199254740988kB, failcnt 0
[  250.554710][T14307] Memory cgroup stats for /syz2:
[  250.555055][T14307] cache 0
[  250.606218][T14346] batadv1: entered promiscuous mode
[  250.606354][T14307] rss 0
[  250.611462][T14346] batadv1: entered allmulticast mode
[  250.616838][T14307] shmem 0
[  250.616849][T14307] mapped_file 0
[  250.616859][T14307] dirty 0
[  250.806434][T14307] writeback 0
[  250.809906][T14307] workingset_refault_anon 92
[  250.814524][T14307] workingset_refault_file 600
[  250.819255][T14307] swap 184320
[  250.822606][T14307] swapcached 8192
[  250.826244][T14307] pgpgin 306773
[  250.829708][T14307] pgpgout 306748
[  250.833291][T14307] pgfault 271197
[  250.836832][T14307] pgmajfault 49
[  250.840291][T14307] inactive_anon 0
[  250.844007][T14307] active_anon 8192
[  250.847725][T14307] inactive_file 0
[  250.851372][T14307] active_file 94208
[  250.855217][T14307] unevictable 0
[  250.858684][T14307] hierarchical_memory_limit 314572800
[  250.864081][T14307] hierarchical_memsw_limit 9223372036854771712
[  250.870389][T14307] total_cache 0
[  250.873975][T14307] total_rss 0
[  250.877257][T14307] total_shmem 0
[  250.880814][T14307] total_mapped_file 0
[  250.884827][T14307] total_dirty 0
[  250.888333][T14307] total_writeback 0
[  250.892202][T14307] total_workingset_refault_anon 92
[  250.897497][T14307] total_workingset_refault_file 600
[  250.902715][T14307] total_swap 184320
[  250.906527][T14307] total_swapcached 8192
[  250.910676][T14307] total_pgpgin 306773
[  250.914690][T14307] total_pgpgout 306748
[  250.918786][T14307] total_pgfault 271197
[  250.922947][T14307] total_pgmajfault 49
[  250.926937][T14307] total_inactive_anon 0
[  250.931085][T14307] total_active_anon 8192
[  250.935380][T14307] total_inactive_file 0
[  250.939730][T14307] total_active_file 94208
[  250.944117][T14307] total_unevictable 0
[  250.948126][T14307] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3626,pid=14307,uid=0
[  250.962842][T14307] Memory cgroup out of memory: Killed process 14307 (syz.2.3626) total-vm:93824kB, anon-rss:1136kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  251.145376][T14350] netlink: 'syz.3.3641': attribute type 7 has an invalid length.
[  251.189422][T14354] loop4: detected capacity change from 0 to 512
[  251.197439][T14354] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  251.230092][T14366] loop0: detected capacity change from 0 to 512
[  251.236685][T14354] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.3643: invalid indirect mapped block 4294967295 (level 0)
[  251.247725][T14366] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  251.259636][T14368] loop5: detected capacity change from 0 to 2048
[  251.266447][T14354] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.3643: invalid indirect mapped block 4294967295 (level 1)
[  251.272991][T14368] EXT4-fs: Ignoring removed i_version option
[  251.281224][T14354] EXT4-fs (loop4): 1 orphan inode deleted
[  251.292439][T14354] EXT4-fs (loop4): 1 truncate cleaned up
[  251.347775][T14368] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.359518][T14376] loop3: detected capacity change from 0 to 128
[  251.424813][T14377] 8021q: adding VLAN 0 to HW filter on device bond0
[  251.963579][   T29] kauditd_printk_skb: 264 callbacks suppressed
[  251.963598][   T29] audit: type=1326 audit(1759683476.818:18213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14367 comm="syz.5.3648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  251.993492][   T29] audit: type=1326 audit(1759683476.818:18214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14367 comm="syz.5.3648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  252.029359][T12066] EXT4-fs unmount: 41 callbacks suppressed
[  252.029374][T12066] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.081984][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.375368][T14397] validate_nla: 1 callbacks suppressed
[  252.375383][T14397] netlink: 'syz.5.3656': attribute type 7 has an invalid length.
[  252.389551][T14397] __nla_validate_parse: 13 callbacks suppressed
[  252.389571][T14397] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3656'.
[  252.485189][T14413] loop5: detected capacity change from 0 to 1024
[  252.498483][T14413] EXT4-fs: test_dummy_encryption option not supported
[  252.530418][T14413] netlink: 14 bytes leftover after parsing attributes in process `syz.5.3663'.
[  252.557715][T14413] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  252.584271][T14413] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  252.612770][T14413] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  252.626363][T14383] syz.0.3653 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[  252.642564][T14383] CPU: 1 UID: 0 PID: 14383 Comm: syz.0.3653 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  252.642608][T14383] Tainted: [W]=WARN
[  252.642617][T14383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  252.642683][T14383] Call Trace:
[  252.642691][T14383]  <TASK>
[  252.642701][T14383]  __dump_stack+0x1d/0x30
[  252.642749][T14383]  dump_stack_lvl+0xe8/0x140
[  252.642853][T14383]  dump_stack+0x15/0x1b
[  252.642983][T14383]  dump_header+0x81/0x220
[  252.643020][T14383]  oom_kill_process+0x342/0x400
[  252.643065][T14383]  out_of_memory+0x979/0xb80
[  252.643131][T14383]  try_charge_memcg+0x5e6/0x9e0
[  252.643170][T14383]  obj_cgroup_charge_pages+0xa6/0x150
[  252.643212][T14383]  __memcg_kmem_charge_page+0x9f/0x170
[  252.643263][T14383]  __alloc_frozen_pages_noprof+0x188/0x360
[  252.643366][T14383]  alloc_pages_mpol+0xb3/0x260
[  252.643405][T14383]  ? alloc_pages_noprof+0x61/0x130
[  252.643532][T14383]  alloc_pages_noprof+0x90/0x130
[  252.643579][T14383]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  252.643626][T14383]  __kvmalloc_node_noprof+0x483/0x670
[  252.643686][T14383]  ? ip_set_alloc+0x24/0x30
[  252.643730][T14383]  ? ip_set_alloc+0x24/0x30
[  252.643822][T14383]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  252.643863][T14383]  ip_set_alloc+0x24/0x30
[  252.643965][T14383]  hash_netiface_create+0x282/0x740
[  252.644011][T14383]  ? __pfx_hash_netiface_create+0x10/0x10
[  252.644103][T14383]  ip_set_create+0x3cc/0x970
[  252.644154][T14383]  nfnetlink_rcv_msg+0x4c6/0x590
[  252.644214][T14383]  netlink_rcv_skb+0x120/0x220
[  252.644310][T14383]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  252.644369][T14383]  nfnetlink_rcv+0x167/0x16c0
[  252.644407][T14383]  ? kmem_cache_free+0xe4/0x3d0
[  252.644467][T14383]  ? __kfree_skb+0x109/0x150
[  252.644582][T14383]  ? nlmon_xmit+0x4f/0x60
[  252.644621][T14383]  ? consume_skb+0x49/0x150
[  252.644652][T14383]  ? nlmon_xmit+0x4f/0x60
[  252.644771][T14383]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  252.644793][T14383]  ? __dev_queue_xmit+0x1200/0x2000
[  252.644877][T14383]  ? __dev_queue_xmit+0x182/0x2000
[  252.644918][T14383]  ? ref_tracker_free+0x37d/0x3e0
[  252.644969][T14383]  ? __netlink_deliver_tap+0x4dc/0x500
[  252.644994][T14383]  netlink_unicast+0x5c0/0x690
[  252.645035][T14383]  netlink_sendmsg+0x58b/0x6b0
[  252.645133][T14383]  ? __pfx_netlink_sendmsg+0x10/0x10
[  252.645154][T14383]  __sock_sendmsg+0x145/0x180
[  252.645230][T14383]  ____sys_sendmsg+0x31e/0x4e0
[  252.645296][T14383]  ___sys_sendmsg+0x17b/0x1d0
[  252.645341][T14383]  __x64_sys_sendmsg+0xd4/0x160
[  252.645370][T14383]  x64_sys_call+0x191e/0x3000
[  252.645391][T14383]  do_syscall_64+0xd2/0x200
[  252.645418][T14383]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  252.645503][T14383]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  252.645607][T14383]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.645630][T14383] RIP: 0033:0x7f0a6ff7eec9
[  252.645651][T14383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  252.645676][T14383] RSP: 002b:00007f0a6e9e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  252.645720][T14383] RAX: ffffffffffffffda RBX: 00007f0a701d5fa0 RCX: 00007f0a6ff7eec9
[  252.645737][T14383] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  252.645829][T14383] RBP: 00007f0a70001f91 R08: 0000000000000000 R09: 0000000000000000
[  252.645841][T14383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  252.645853][T14383] R13: 00007f0a701d6038 R14: 00007f0a701d5fa0 R15: 00007ffd0c435ac8
[  252.645933][T14383]  </TASK>
[  252.645988][T14383] memory: usage 307096kB, limit 307200kB, failcnt 669
[  253.005638][T14383] memory+swap: usage 307096kB, limit 9007199254740988kB, failcnt 0
[  253.013574][T14383] kmem: usage 306812kB, limit 9007199254740988kB, failcnt 0
[  253.020907][T14383] Memory cgroup stats for /syz0:
[  253.021407][T14383] cache 24576
[  253.029731][T14383] rss 208896
[  253.032960][T14383] shmem 0
[  253.035900][T14383] mapped_file 24576
[  253.039730][T14383] dirty 4096
[  253.042960][T14383] writeback 0
[  253.046257][T14383] workingset_refault_anon 153
[  253.050940][T14383] workingset_refault_file 1656
[  253.055736][T14383] swap 0
[  253.058612][T14383] swapcached 20480
[  253.062332][T14383] pgpgin 364363
[  253.065849][T14383] pgpgout 364293
[  253.069484][T14383] pgfault 299954
[  253.073067][T14383] pgmajfault 95
[  253.076534][T14383] inactive_anon 184320
[  253.080612][T14383] active_anon 24576
[  253.084514][T14383] inactive_file 0
[  253.088182][T14383] active_file 77824
[  253.092002][T14383] unevictable 0
[  253.095510][T14383] hierarchical_memory_limit 314572800
[  253.100896][T14383] hierarchical_memsw_limit 9223372036854771712
[  253.107191][T14383] total_cache 24576
[  253.111014][T14383] total_rss 208896
[  253.114843][T14383] total_shmem 0
[  253.118314][T14383] total_mapped_file 24576
[  253.122674][T14383] total_dirty 4096
[  253.123231][T14413] bond0 (unregistering): Released all slaves
[  253.126397][T14383] total_writeback 0
[  253.126409][T14383] total_workingset_refault_anon 153
[  253.141492][T14383] total_workingset_refault_file 1656
[  253.146921][T14383] total_swap 0
[  253.150298][T14383] total_swapcached 20480
[  253.154550][T14383] total_pgpgin 364363
[  253.158626][T14383] total_pgpgout 364293
[  253.162991][T14383] total_pgfault 299954
[  253.167241][T14383] total_pgmajfault 95
[  253.171221][T14383] total_inactive_anon 184320
[  253.175906][T14383] total_active_anon 24576
[  253.180715][T14383] total_inactive_file 0
[  253.184962][T14383] total_active_file 77824
[  253.189372][T14383] total_unevictable 0
[  253.193363][T14383] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.3653,pid=14382,uid=0
[  253.208126][T14383] Memory cgroup out of memory: Killed process 14382 (syz.0.3653) total-vm:94088kB, anon-rss:1316kB, file-rss:22248kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  253.556312][T14426] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3669'.
[  253.590310][T14426] loop4: detected capacity change from 0 to 1024
[  253.616494][T14426] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  253.626487][T14426] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  253.676700][T14426] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  253.706924][T14426] EXT4-fs error (device loop4): ext4_get_journal_inode:5808: inode #32: comm syz.4.3669: iget: special inode unallocated
[  253.732566][T14426] EXT4-fs (loop4): no journal found
[  253.737827][T14426] EXT4-fs (loop4): can't get journal size
[  253.766822][T14426] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  253.839653][T14429] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  253.846408][T14429] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  253.864384][T14439] tmpfs: Bad value for 'mpol'
[  253.872762][T14429] vhci_hcd vhci_hcd.0: Device attached
[  253.880666][T14440] vhci_hcd: connection closed
[  253.880817][   T12] vhci_hcd: stop threads
[  253.890169][   T12] vhci_hcd: release socket
[  253.894632][   T12] vhci_hcd: disconnect device
[  253.931465][T14447] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3675'.
[  253.946544][T14447] batadv1: entered promiscuous mode
[  253.951822][T14447] batadv1: entered allmulticast mode
[  253.966057][T14443] netlink: 'syz.5.3674': attribute type 7 has an invalid length.
[  253.973965][T14443] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3674'.
[  254.032921][T14450] Falling back ldisc for ttyS3.
[  254.041486][T14450] loop2: detected capacity change from 0 to 128
[  254.043128][T14457] netlink: 3 bytes leftover after parsing attributes in process `syz.5.3679'.
[  254.060057][T14457] batadv1: entered promiscuous mode
[  254.065381][T14457] batadv1: entered allmulticast mode
[  254.129359][T14463] loop3: detected capacity change from 0 to 512
[  254.136984][T14463] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  254.154754][T14463] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.3682: invalid indirect mapped block 4294967295 (level 0)
[  254.169431][T14463] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.3682: invalid indirect mapped block 4294967295 (level 1)
[  254.189092][T14463] EXT4-fs (loop3): 1 orphan inode deleted
[  254.195028][T14463] EXT4-fs (loop3): 1 truncate cleaned up
[  254.202235][T14463] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  254.229598][   T29] audit: type=1326 audit(1759683479.078:18215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14466 comm="syz.5.3683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  254.244559][T14467] loop5: detected capacity change from 0 to 2048
[  254.253280][   T29] audit: type=1326 audit(1759683479.078:18216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14466 comm="syz.5.3683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  254.283588][   T29] audit: type=1326 audit(1759683479.078:18217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14466 comm="syz.5.3683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  254.302699][T14467] EXT4-fs: Ignoring removed i_version option
[  254.307268][   T29] audit: type=1326 audit(1759683479.078:18218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14466 comm="syz.5.3683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  254.336848][   T29] audit: type=1326 audit(1759683479.078:18219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14466 comm="syz.5.3683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  254.360550][   T29] audit: type=1326 audit(1759683479.078:18220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14466 comm="syz.5.3683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  254.384300][   T29] audit: type=1326 audit(1759683479.078:18221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14466 comm="syz.5.3683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  254.408786][   T29] audit: type=1326 audit(1759683479.078:18222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14466 comm="syz.5.3683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  254.438961][T14467] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  254.479109][T12066] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.497067][T14467] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  254.566239][T11732] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.633546][T14479] loop3: detected capacity change from 0 to 512
[  254.640381][T14479] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  254.665743][T14479] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.3685: invalid indirect mapped block 4294967295 (level 0)
[  254.702836][T14479] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.3685: invalid indirect mapped block 4294967295 (level 1)
[  254.723813][T14479] EXT4-fs (loop3): 1 orphan inode deleted
[  254.729751][T14479] EXT4-fs (loop3): 1 truncate cleaned up
[  254.738564][T14479] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  254.791705][T11732] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.834767][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.836846][T14459] syz.2.3680 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  254.857971][T14459] CPU: 0 UID: 0 PID: 14459 Comm: syz.2.3680 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  254.858010][T14459] Tainted: [W]=WARN
[  254.858019][T14459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  254.858098][T14459] Call Trace:
[  254.858108][T14459]  <TASK>
[  254.858145][T14459]  __dump_stack+0x1d/0x30
[  254.858195][T14459]  dump_stack_lvl+0xe8/0x140
[  254.858296][T14459]  dump_stack+0x15/0x1b
[  254.858337][T14459]  dump_header+0x81/0x220
[  254.858969][T14459]  oom_kill_process+0x342/0x400
[  254.859005][T14459]  out_of_memory+0x979/0xb80
[  254.859052][T14459]  try_charge_memcg+0x5e6/0x9e0
[  254.859107][T14459]  ? css_rstat_updated+0x60/0x240
[  254.859156][T14459]  obj_cgroup_charge_pages+0xa6/0x150
[  254.859209][T14459]  __memcg_kmem_charge_page+0x9f/0x170
[  254.859250][T14459]  __alloc_frozen_pages_noprof+0x188/0x360
[  254.859286][T14459]  alloc_pages_mpol+0xb3/0x260
[  254.859354][T14459]  alloc_pages_noprof+0x90/0x130
[  254.859461][T14459]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  254.859506][T14459]  __kvmalloc_node_noprof+0x483/0x670
[  254.859546][T14459]  ? ip_set_alloc+0x24/0x30
[  254.859587][T14459]  ? ip_set_alloc+0x24/0x30
[  254.859655][T14459]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  254.859694][T14459]  ip_set_alloc+0x24/0x30
[  254.859727][T14459]  hash_netiface_create+0x282/0x740
[  254.859778][T14459]  ? __pfx_hash_netiface_create+0x10/0x10
[  254.859823][T14459]  ip_set_create+0x3cc/0x970
[  254.859900][T14459]  ? __nla_parse+0x40/0x60
[  254.859986][T14459]  nfnetlink_rcv_msg+0x4c6/0x590
[  254.860058][T14459]  netlink_rcv_skb+0x120/0x220
[  254.860084][T14459]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  254.860131][T14459]  nfnetlink_rcv+0x167/0x16c0
[  254.860184][T14459]  ? __free_frozen_pages+0x284/0x510
[  254.860223][T14459]  ? free_large_kmalloc+0xb1/0x100
[  254.860331][T14459]  ? bpf_check+0xc239/0xd9d0
[  254.860467][T14459]  ? __alloc_frozen_pages_noprof+0x188/0x360
[  254.860508][T14459]  ? css_rstat_updated+0xb7/0x240
[  254.860608][T14459]  ? __rcu_read_unlock+0x34/0x70
[  254.860631][T14459]  ? __rcu_read_unlock+0x4f/0x70
[  254.860668][T14459]  ? should_fail_ex+0x30/0x280
[  254.860774][T14459]  ? selinux_nlmsg_lookup+0x99/0x890
[  254.860799][T14459]  ? __rcu_read_unlock+0x34/0x70
[  254.860873][T14459]  ? __netlink_lookup+0x266/0x2a0
[  254.860902][T14459]  netlink_unicast+0x5c0/0x690
[  254.860938][T14459]  netlink_sendmsg+0x58b/0x6b0
[  254.860967][T14459]  ? __pfx_netlink_sendmsg+0x10/0x10
[  254.861018][T14459]  __sock_sendmsg+0x145/0x180
[  254.861053][T14459]  ____sys_sendmsg+0x31e/0x4e0
[  254.861085][T14459]  ___sys_sendmsg+0x17b/0x1d0
[  254.861128][T14459]  __x64_sys_sendmsg+0xd4/0x160
[  254.861229][T14459]  x64_sys_call+0x191e/0x3000
[  254.861256][T14459]  do_syscall_64+0xd2/0x200
[  254.861302][T14459]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  254.861351][T14459]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  254.861376][T14459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.861404][T14459] RIP: 0033:0x7f99b048eec9
[  254.861474][T14459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.861492][T14459] RSP: 002b:00007f99aeef7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  254.861512][T14459] RAX: ffffffffffffffda RBX: 00007f99b06e5fa0 RCX: 00007f99b048eec9
[  254.861557][T14459] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  254.861575][T14459] RBP: 00007f99b0511f91 R08: 0000000000000000 R09: 0000000000000000
[  254.861591][T14459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  254.861608][T14459] R13: 00007f99b06e6038 R14: 00007f99b06e5fa0 R15: 00007ffe4ea043e8
[  254.861680][T14459]  </TASK>
[  254.861690][T14459] memory: usage 307200kB, limit 307200kB, failcnt 816
[  255.220941][T14496] siw: device registration error -23
[  255.224195][T14459] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[  255.244113][T14459] kmem: usage 307100kB, limit 9007199254740988kB, failcnt 0
[  255.251475][T14459] Memory cgroup stats for /syz2:
[  255.252181][T14459] cache 4096
[  255.254183][T14483] netlink: 'syz.3.3687': attribute type 7 has an invalid length.
[  255.257179][T14459] rss 4096
[  255.260367][T14483] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3687'.
[  255.268112][T14459] shmem 0
[  255.268123][T14459] mapped_file 4096
[  255.268133][T14459] dirty 0
[  255.289789][T14459] writeback 0
[  255.293121][T14459] workingset_refault_anon 128
[  255.297818][T14459] workingset_refault_file 1429
[  255.302662][T14459] swap 188416
[  255.306001][T14459] swapcached 4096
[  255.309646][T14459] pgpgin 316748
[  255.313150][T14459] pgpgout 316723
[  255.316705][T14459] pgfault 281105
[  255.320266][T14459] pgmajfault 78
[  255.323885][T14459] inactive_anon 4096
[  255.327808][T14459] active_anon 0
[  255.331524][T14459] inactive_file 98304
[  255.335585][T14459] active_file 0
[  255.339176][T14459] unevictable 0
[  255.342692][T14459] hierarchical_memory_limit 314572800
[  255.348071][T14459] hierarchical_memsw_limit 9223372036854771712
[  255.354389][T14459] total_cache 4096
[  255.358221][T14459] total_rss 4096
[  255.359799][T14500] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3695'.
[  255.361777][T14459] total_shmem 0
[  255.361789][T14459] total_mapped_file 4096
[  255.361799][T14459] total_dirty 0
[  255.361873][T14459] total_writeback 0
[  255.386255][T14459] total_workingset_refault_anon 128
[  255.391757][T14459] total_workingset_refault_file 1429
[  255.397160][T14459] total_swap 188416
[  255.401053][T14459] total_swapcached 4096
[  255.405263][T14459] total_pgpgin 316748
[  255.409242][T14459] total_pgpgout 316723
[  255.413345][T14459] total_pgfault 281105
[  255.417498][T14459] total_pgmajfault 78
[  255.421478][T14459] total_inactive_anon 4096
[  255.426102][T14459] total_active_anon 0
[  255.430105][T14459] total_inactive_file 98304
[  255.434712][T14459] total_active_file 0
[  255.438749][T14459] total_unevictable 0
[  255.442766][T14459] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3680,pid=14458,uid=0
[  255.447132][T14503] loop4: detected capacity change from 0 to 128
[  255.457542][T14459] Memory cgroup out of memory: Killed process 14458 (syz.2.3680) total-vm:93824kB, anon-rss:1264kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  255.481885][T14503] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  255.521398][T14500] loop5: detected capacity change from 0 to 1024
[  255.524796][T14503] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  255.545302][T14500] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  255.555252][T14500] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  255.568707][T14500] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  255.581965][T14500] EXT4-fs error (device loop5): ext4_get_journal_inode:5808: inode #32: comm syz.5.3695: iget: special inode unallocated
[  255.595102][T14505] loop3: detected capacity change from 0 to 512
[  255.601623][T14500] EXT4-fs (loop5): no journal found
[  255.606932][T14500] EXT4-fs (loop5): can't get journal size
[  255.613500][T14505] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  255.624276][T14500] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  255.702171][T14507] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3697'.
[  255.720168][T14507] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3697'.
[  255.733361][T14510] loop4: detected capacity change from 0 to 512
[  255.740618][T14510] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  255.754059][T14510] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.3698: invalid indirect mapped block 4294967295 (level 0)
[  255.775139][T14505] netlink: 'syz.3.3697': attribute type 1 has an invalid length.
[  255.778905][T14510] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.3698: invalid indirect mapped block 4294967295 (level 1)
[  255.791220][T14505] 8021q: adding VLAN 0 to HW filter on device bond2
[  255.817342][T14510] EXT4-fs (loop4): 1 orphan inode deleted
[  255.823237][T14510] EXT4-fs (loop4): 1 truncate cleaned up
[  255.829591][T14510] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  255.861285][T12066] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.922857][T14514] Falling back ldisc for ttyS3.
[  255.930573][T14514] loop2: detected capacity change from 0 to 128
[  256.006848][T14522] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  256.094802][T14524] loop0: detected capacity change from 0 to 2048
[  256.109192][T14524] EXT4-fs: Ignoring removed i_version option
[  256.137519][T14524] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.151840][T14524] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  256.177592][T14533] batadv1: entered promiscuous mode
[  256.182969][T14533] batadv1: entered allmulticast mode
[  256.216266][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.300317][T14537] loop2: detected capacity change from 0 to 128
[  256.311336][T14537] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  256.323770][T14537] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  256.366272][T14535] netlink: 'syz.5.3707': attribute type 7 has an invalid length.
[  256.419878][T13028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.423108][T14545] batadv1: entered promiscuous mode
[  256.434265][T14545] batadv1: entered allmulticast mode
[  256.481435][T14552] siw: device registration error -23
[  256.522792][T14550] Falling back ldisc for ttyS3.
[  256.530974][T14550] loop0: detected capacity change from 0 to 128
[  256.622133][T14559] loop5: detected capacity change from 0 to 512
[  256.630112][T14559] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  256.656761][T14559] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3717: invalid indirect mapped block 4294967295 (level 0)
[  256.671565][T14559] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3717: invalid indirect mapped block 4294967295 (level 1)
[  256.686500][T14559] EXT4-fs (loop5): 1 orphan inode deleted
[  256.692339][T14559] EXT4-fs (loop5): 1 truncate cleaned up
[  256.699374][T14559] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.773456][T14569] batadv1: entered promiscuous mode
[  256.779929][T14569] batadv1: entered allmulticast mode
[  256.866412][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.946602][T14574] loop4: detected capacity change from 0 to 128
[  256.953840][T14574] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  256.966305][T14574] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  256.995588][T14571] netlink: 'syz.5.3721': attribute type 7 has an invalid length.
[  257.372975][T14586] Falling back ldisc for ttyS3.
[  257.384375][T14586] loop2: detected capacity change from 0 to 128
[  257.430839][T14597] __nla_validate_parse: 7 callbacks suppressed
[  257.430859][T14597] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3731'.
[  257.533999][T14602] netlink: 'syz.0.3733': attribute type 7 has an invalid length.
[  257.541874][T14602] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3733'.
[  257.565768][T14600] syz!: rxe_newlink: already configured on team_slave_0
[  257.641978][T14605] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3734'.
[  257.652448][T14607] loop2: detected capacity change from 0 to 512
[  257.659449][T14607] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[  257.671798][T14605] batadv1: entered promiscuous mode
[  257.677157][T14605] batadv1: entered allmulticast mode
[  257.749573][T14607] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3735'.
[  257.759526][T14607] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3735'.
[  257.768439][T14607] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3735'.
[  257.781748][T14607] netlink: 'syz.2.3735': attribute type 1 has an invalid length.
[  257.796543][T14607] 8021q: adding VLAN 0 to HW filter on device bond1
[  257.850195][T14610] tmpfs: Bad value for 'mpol'
[  257.905188][T14612] netlink: 3 bytes leftover after parsing attributes in process `syz.5.3737'.
[  257.947002][T14612] batadv1: entered promiscuous mode
[  257.952650][T14612] batadv1: entered allmulticast mode
[  258.004218][T14616] tmpfs: Bad value for 'mpol'
[  258.192700][T14622] Falling back ldisc for ttyS3.
[  258.207565][T14622] loop0: detected capacity change from 0 to 128
[  258.237246][T14627] netlink: 'syz.5.3744': attribute type 7 has an invalid length.
[  258.245193][T14627] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3744'.
[  258.322530][T14631] loop5: detected capacity change from 0 to 1024
[  258.329350][T14631] EXT4-fs: test_dummy_encryption option not supported
[  258.374541][T14631] netlink: 14 bytes leftover after parsing attributes in process `syz.5.3746'.
[  258.463899][T14636] loop5: detected capacity change from 0 to 512
[  258.481377][T14636] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  258.503985][T14636] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3748: invalid indirect mapped block 4294967295 (level 0)
[  258.544741][T14636] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3748: invalid indirect mapped block 4294967295 (level 1)
[  258.579090][T14636] EXT4-fs (loop5): 1 orphan inode deleted
[  258.585031][T14636] EXT4-fs (loop5): 1 truncate cleaned up
[  258.593372][T14636] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.720599][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.748275][   T29] kauditd_printk_skb: 76 callbacks suppressed
[  258.748294][   T29] audit: type=1326 audit(1759683483.598:18299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  258.778112][   T29] audit: type=1326 audit(1759683483.598:18300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  258.820236][   T29] audit: type=1326 audit(1759683483.598:18301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  258.820309][   T29] audit: type=1326 audit(1759683483.598:18302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  258.820416][   T29] audit: type=1326 audit(1759683483.598:18303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  258.820451][   T29] audit: type=1326 audit(1759683483.598:18304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  258.820485][   T29] audit: type=1326 audit(1759683483.598:18305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  258.820526][   T29] audit: type=1326 audit(1759683483.598:18306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  258.820633][   T29] audit: type=1326 audit(1759683483.598:18307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  258.820704][   T29] audit: type=1326 audit(1759683483.598:18308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14643 comm="syz.5.3751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  259.350458][T14646] tmpfs: Bad value for 'mpol'
[  259.411155][T14655] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3756'.
[  259.529376][T14658] loop5: detected capacity change from 0 to 2048
[  259.529992][T14658] EXT4-fs: Ignoring removed i_version option
[  259.563471][T14658] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  259.563545][T14658] ext4 filesystem being mounted at /125/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  259.640298][T14664] batadv1: entered promiscuous mode
[  259.640319][T14664] batadv1: entered allmulticast mode
[  259.777075][T14676] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  259.796862][T14676] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  259.812151][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.821574][T14677] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  259.830155][T14676] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  259.846163][T14676] bond0 (unregistering): Released all slaves
[  259.879606][T14683] tmpfs: Bad value for 'mpol'
[  260.252579][T14701] batadv1: entered promiscuous mode
[  260.258134][T14701] batadv1: entered allmulticast mode
[  260.354336][T14699] loop5: detected capacity change from 0 to 512
[  260.847605][T14713] loop3: detected capacity change from 0 to 512
[  260.899619][T14713] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  260.966134][T14713] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.3777: invalid indirect mapped block 4294967295 (level 0)
[  260.986680][T14699] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  260.990390][T14713] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.3777: invalid indirect mapped block 4294967295 (level 1)
[  261.011365][T14713] EXT4-fs (loop3): 1 orphan inode deleted
[  261.017426][T14713] EXT4-fs (loop3): 1 truncate cleaned up
[  261.023511][T14713] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.058579][T14699] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3773: invalid indirect mapped block 4294967295 (level 0)
[  261.083871][T14699] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3773: invalid indirect mapped block 4294967295 (level 1)
[  261.108756][T14699] EXT4-fs (loop5): 1 orphan inode deleted
[  261.114622][T14699] EXT4-fs (loop5): 1 truncate cleaned up
[  261.121019][T14699] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.905506][T11732] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.917370][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.669589][T14770] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  262.676273][T14770] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  262.684497][T14770] vhci_hcd vhci_hcd.0: Device attached
[  262.709677][T14768] loop5: detected capacity change from 0 to 512
[  262.725631][T14768] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  262.749310][T14768] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3799: invalid indirect mapped block 4294967295 (level 0)
[  262.782073][T14768] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3799: invalid indirect mapped block 4294967295 (level 1)
[  262.797654][T14768] EXT4-fs (loop5): 1 orphan inode deleted
[  262.803526][T14768] EXT4-fs (loop5): 1 truncate cleaned up
[  262.811563][T14768] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.864696][T14778] __nla_validate_parse: 10 callbacks suppressed
[  262.864713][T14778] netlink: 3 bytes leftover after parsing attributes in process `syz.4.3801'.
[  262.896346][T14771] vhci_hcd: connection closed
[  262.896664][T11881] vhci_hcd: stop threads
[  262.905683][T11881] vhci_hcd: release socket
[  262.910124][T11881] vhci_hcd: disconnect device
[  262.922160][T14778] batadv1: entered promiscuous mode
[  262.927488][T14778] batadv1: entered allmulticast mode
[  262.929386][T14780] loop3: detected capacity change from 0 to 2048
[  262.940719][T14780] EXT4-fs: Ignoring removed i_version option
[  262.955372][T14780] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.967998][T14780] ext4 filesystem being mounted at /203/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  262.979654][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.090646][T14792] netlink: 3 bytes leftover after parsing attributes in process `syz.4.3805'.
[  263.128469][T14792] batadv1: entered promiscuous mode
[  263.133850][T14792] batadv1: entered allmulticast mode
[  263.256026][T11732] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.328932][T14801] netlink: 72 bytes leftover after parsing attributes in process `syz.4.3808'.
[  263.442520][T14807] syz!: rxe_newlink: already configured on team_slave_0
[  263.466726][T14808] loop0: detected capacity change from 0 to 2048
[  263.481753][T14808] EXT4-fs: Ignoring removed i_version option
[  263.503929][T14808] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.532484][T14808] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  263.561816][T14786] syz.5.3803 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[  263.576430][T14786] CPU: 1 UID: 0 PID: 14786 Comm: syz.5.3803 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  263.576517][T14786] Tainted: [W]=WARN
[  263.576527][T14786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  263.576544][T14786] Call Trace:
[  263.576553][T14786]  <TASK>
[  263.576565][T14786]  __dump_stack+0x1d/0x30
[  263.576609][T14786]  dump_stack_lvl+0xe8/0x140
[  263.576717][T14786]  dump_stack+0x15/0x1b
[  263.576753][T14786]  dump_header+0x81/0x220
[  263.576784][T14786]  oom_kill_process+0x342/0x400
[  263.576900][T14786]  out_of_memory+0x979/0xb80
[  263.576933][T14786]  try_charge_memcg+0x5e6/0x9e0
[  263.576966][T14786]  obj_cgroup_charge_pages+0xa6/0x150
[  263.577165][T14786]  __memcg_kmem_charge_page+0x9f/0x170
[  263.577207][T14786]  __alloc_frozen_pages_noprof+0x188/0x360
[  263.577244][T14786]  alloc_pages_mpol+0xb3/0x260
[  263.577298][T14786]  ? alloc_pages_noprof+0xf4/0x130
[  263.577343][T14786]  alloc_pages_noprof+0x90/0x130
[  263.577383][T14786]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  263.577435][T14786]  __kvmalloc_node_noprof+0x483/0x670
[  263.577537][T14786]  ? ip_set_alloc+0x24/0x30
[  263.577577][T14786]  ? ip_set_alloc+0x24/0x30
[  263.577607][T14786]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  263.577654][T14786]  ip_set_alloc+0x24/0x30
[  263.577695][T14786]  hash_netiface_create+0x282/0x740
[  263.577742][T14786]  ? __pfx_hash_netiface_create+0x10/0x10
[  263.577830][T14786]  ip_set_create+0x3cc/0x970
[  263.577870][T14786]  ? __nla_parse+0x40/0x60
[  263.577980][T14786]  nfnetlink_rcv_msg+0x4c6/0x590
[  263.578047][T14786]  netlink_rcv_skb+0x120/0x220
[  263.578068][T14786]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  263.578162][T14786]  nfnetlink_rcv+0x167/0x16c0
[  263.578201][T14786]  ? kmem_cache_free+0xe4/0x3d0
[  263.578237][T14786]  ? __kfree_skb+0x109/0x150
[  263.578284][T14786]  ? nlmon_xmit+0x4f/0x60
[  263.578399][T14786]  ? consume_skb+0x49/0x150
[  263.578428][T14786]  ? nlmon_xmit+0x4f/0x60
[  263.578466][T14786]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  263.578521][T14786]  ? __dev_queue_xmit+0x1200/0x2000
[  263.578556][T14786]  ? __dev_queue_xmit+0x182/0x2000
[  263.578588][T14786]  ? ref_tracker_free+0x37d/0x3e0
[  263.578635][T14786]  ? __netlink_deliver_tap+0x4dc/0x500
[  263.578689][T14786]  netlink_unicast+0x5c0/0x690
[  263.578813][T14786]  netlink_sendmsg+0x58b/0x6b0
[  263.578917][T14786]  ? __pfx_netlink_sendmsg+0x10/0x10
[  263.578941][T14786]  __sock_sendmsg+0x145/0x180
[  263.578989][T14786]  ____sys_sendmsg+0x31e/0x4e0
[  263.579016][T14786]  ___sys_sendmsg+0x17b/0x1d0
[  263.579049][T14786]  __x64_sys_sendmsg+0xd4/0x160
[  263.579150][T14786]  x64_sys_call+0x191e/0x3000
[  263.579177][T14786]  do_syscall_64+0xd2/0x200
[  263.579213][T14786]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  263.579247][T14786]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  263.579355][T14786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.579376][T14786] RIP: 0033:0x7f469337eec9
[  263.579391][T14786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.579409][T14786] RSP: 002b:00007f4691ddf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  263.579455][T14786] RAX: ffffffffffffffda RBX: 00007f46935d5fa0 RCX: 00007f469337eec9
[  263.579472][T14786] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  263.579498][T14786] RBP: 00007f4693401f91 R08: 0000000000000000 R09: 0000000000000000
[  263.579514][T14786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  263.579552][T14786] R13: 00007f46935d6038 R14: 00007f46935d5fa0 R15: 00007ffd06f3b218
[  263.579570][T14786]  </TASK>
[  263.579577][T14786] memory: usage 307200kB, limit 307200kB, failcnt 316
[  263.824344][T14815] loop4: detected capacity change from 0 to 512
[  263.828152][T14786] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  263.828169][T14786] kmem: usage 306968kB, limit 9007199254740988kB, failcnt 0
[  263.828184][T14786] Memory cgroup stats for /syz5:
[  263.828632][T14786] cache 0
[  263.849116][T14815] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  263.849403][T14786] rss 212992
[  263.863636][T14815] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.3811: invalid indirect mapped block 4294967295 (level 0)
[  263.879497][T14786] shmem 0
[  263.888422][T14815] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.3811: invalid indirect mapped block 4294967295 (level 1)
[  263.895989][T14786] mapped_file 0
[  263.896001][T14786] dirty 0
[  263.896010][T14786] writeback 0
[  263.896019][T14786] workingset_refault_anon 0
[  263.905134][T14815] EXT4-fs (loop4): 1 orphan inode deleted
[  263.911991][T14786] workingset_refault_file 0
[  263.912004][T14786] swap 0
[  263.920003][T14815] EXT4-fs (loop4): 1 truncate cleaned up
[  263.928091][T14786] swapcached 0
[  263.928102][T14786] pgpgin 45461
[  263.928111][T14786] pgpgout 45403
[  263.928120][T14786] pgfault 44278
[  263.928129][T14786] pgmajfault 0
[  263.933472][T14815] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.938004][T14786] inactive_anon 40960
[  264.078276][T14786] active_anon 172032
[  264.082186][T14786] inactive_file 0
[  264.085928][T14786] active_file 24576
[  264.089747][T14786] unevictable 0
[  264.093308][T14786] hierarchical_memory_limit 314572800
[  264.098783][T14786] hierarchical_memsw_limit 9223372036854771712
[  264.105060][T14786] total_cache 0
[  264.108568][T14786] total_rss 212992
[  264.112407][T14786] total_shmem 0
[  264.115906][T14786] total_mapped_file 0
[  264.119906][T14786] total_dirty 0
[  264.123524][T14786] total_writeback 0
[  264.127338][T14786] total_workingset_refault_anon 0
[  264.132416][T14786] total_workingset_refault_file 0
[  264.137480][T14786] total_swap 0
[  264.140886][T14786] total_swapcached 0
[  264.144820][T14786] total_pgpgin 45461
[  264.148730][T14786] total_pgpgout 45403
[  264.152742][T14786] total_pgfault 44278
[  264.156809][T14786] total_pgmajfault 0
[  264.160714][T14786] total_inactive_anon 40960
[  264.165257][T14786] total_active_anon 172032
[  264.169751][T14786] total_inactive_file 0
[  264.173996][T14786] total_active_file 24576
[  264.178347][T14786] total_unevictable 0
[  264.182334][T14786] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.3803,pid=14785,uid=0
[  264.190572][T14823] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3815'.
[  264.197222][T14786] Memory cgroup out of memory: Killed process 14785 (syz.5.3803) total-vm:94088kB, anon-rss:1264kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  264.238324][T14823] loop3: detected capacity change from 0 to 1024
[  264.264365][T14823] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  264.274205][T14823] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  264.312771][T14823] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  264.334472][T13028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.342214][T14823] EXT4-fs error (device loop3): ext4_get_journal_inode:5808: inode #32: comm syz.3.3815: iget: special inode unallocated
[  264.362595][T14823] EXT4-fs (loop3): no journal found
[  264.367952][T14823] EXT4-fs (loop3): can't get journal size
[  264.388233][T14823] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  264.402022][T12066] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.415031][T14825] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3817'.
[  264.521558][T14832] tmpfs: Bad value for 'mpol'
[  264.537566][   T29] kauditd_printk_skb: 187 callbacks suppressed
[  264.537583][   T29] audit: type=1326 audit(1759683489.388:18496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.572262][T14837] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3820'.
[  264.584803][T14837] batadv1: entered promiscuous mode
[  264.590059][T14837] batadv1: entered allmulticast mode
[  264.595584][   T29] audit: type=1326 audit(1759683489.388:18497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.619760][   T29] audit: type=1326 audit(1759683489.388:18498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.643520][   T29] audit: type=1326 audit(1759683489.388:18499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.667128][   T29] audit: type=1326 audit(1759683489.388:18500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.690816][   T29] audit: type=1326 audit(1759683489.388:18501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.714450][   T29] audit: type=1326 audit(1759683489.388:18502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.738064][   T29] audit: type=1326 audit(1759683489.388:18503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.741079][T14839] netlink: 72 bytes leftover after parsing attributes in process `syz.2.3821'.
[  264.761876][   T29] audit: type=1326 audit(1759683489.388:18504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.794424][   T29] audit: type=1326 audit(1759683489.388:18505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14834 comm="syz.4.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0beae9eec9 code=0x7ffc0000
[  264.862102][T14845] loop2: detected capacity change from 0 to 1024
[  264.868977][T14845] EXT4-fs: test_dummy_encryption option not supported
[  264.883292][T14845] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3824'.
[  264.930615][T14853] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3827'.
[  264.944431][T14853] batadv1: entered promiscuous mode
[  264.949727][T14853] batadv1: entered allmulticast mode
[  264.965142][T14856] siw: device registration error -23
[  265.015632][T14857] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  265.034087][T11732] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.085325][T14861] loop5: detected capacity change from 0 to 512
[  265.092139][T14861] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities
[  265.142590][T14865] tmpfs: Bad value for 'mpol'
[  265.168972][T14866] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3830'.
[  265.183938][T14861] netlink: 'syz.5.3830': attribute type 10 has an invalid length.
[  265.192147][T14861] netlink: 'syz.5.3830': attribute type 1 has an invalid length.
[  265.206267][T14861] 8021q: adding VLAN 0 to HW filter on device bond0
[  265.480350][T14878] loop5: detected capacity change from 0 to 1024
[  265.487375][T14878] EXT4-fs: test_dummy_encryption option not supported
[  265.532223][T14882] tmpfs: Bad value for 'mpol'
[  265.615522][T14884] loop5: detected capacity change from 0 to 1024
[  265.622886][T14884] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  265.632747][T14884] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  265.642633][T14884] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  265.653379][T14884] EXT4-fs error (device loop5): ext4_get_journal_inode:5808: inode #32: comm syz.5.3840: iget: special inode unallocated
[  265.666518][T14884] EXT4-fs (loop5): no journal found
[  265.671962][T14884] EXT4-fs (loop5): can't get journal size
[  265.679100][T14884] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  265.822455][T14891] batadv1: entered promiscuous mode
[  265.827706][T14891] batadv1: entered allmulticast mode
[  265.954793][T14893] loop4: detected capacity change from 0 to 512
[  265.971936][T14893] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  265.978362][T14896] loop3: detected capacity change from 0 to 8192
[  266.002209][T14893] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.3843: invalid indirect mapped block 4294967295 (level 0)
[  266.028864][T14893] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.3843: invalid indirect mapped block 4294967295 (level 1)
[  266.045320][T14900] loop0: detected capacity change from 0 to 512
[  266.052334][T14900] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  266.053830][T14893] EXT4-fs (loop4): 1 orphan inode deleted
[  266.066943][T14893] EXT4-fs (loop4): 1 truncate cleaned up
[  266.093538][T14893] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  266.161218][T14907] netlink: 'syz.0.3845': attribute type 10 has an invalid length.
[  266.191109][T14900] netlink: 'syz.0.3845': attribute type 1 has an invalid length.
[  266.208520][T14900] 8021q: adding VLAN 0 to HW filter on device bond1
[  266.263095][T12066] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.388872][T14916] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  266.395529][T14916] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  266.405297][T14916] vhci_hcd vhci_hcd.0: Device attached
[  266.430334][T14920] vhci_hcd: connection closed
[  266.431648][T11876] vhci_hcd: stop threads
[  266.440758][T11876] vhci_hcd: release socket
[  266.445225][T11876] vhci_hcd: disconnect device
[  266.463264][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.507987][T14923] loop5: detected capacity change from 0 to 2048
[  266.522966][T14923] EXT4-fs: Ignoring removed i_version option
[  266.545374][T14923] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  266.570988][T14923] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.816125][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.861077][T14934] loop5: detected capacity change from 0 to 1024
[  266.868047][T14934] EXT4-fs: test_dummy_encryption option not supported
[  266.967534][T14914] syz.2.3851 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  266.981744][T14914] CPU: 0 UID: 0 PID: 14914 Comm: syz.2.3851 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  266.981836][T14914] Tainted: [W]=WARN
[  266.981845][T14914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  266.981868][T14914] Call Trace:
[  266.981877][T14914]  <TASK>
[  266.981887][T14914]  __dump_stack+0x1d/0x30
[  266.982003][T14914]  dump_stack_lvl+0xe8/0x140
[  266.982062][T14914]  dump_stack+0x15/0x1b
[  266.982148][T14914]  dump_header+0x81/0x220
[  266.982266][T14914]  oom_kill_process+0x342/0x400
[  266.982297][T14914]  out_of_memory+0x979/0xb80
[  266.982326][T14914]  try_charge_memcg+0x5e6/0x9e0
[  266.982356][T14914]  ? sysvec_apic_timer_interrupt+0x44/0x80
[  266.982481][T14914]  obj_cgroup_charge_pages+0xa6/0x150
[  266.982515][T14914]  __memcg_kmem_charge_page+0x9f/0x170
[  266.982573][T14914]  __alloc_frozen_pages_noprof+0x188/0x360
[  266.982620][T14914]  alloc_pages_mpol+0xb3/0x260
[  266.982720][T14914]  alloc_pages_noprof+0x90/0x130
[  266.982764][T14914]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  266.982880][T14914]  __kvmalloc_node_noprof+0x483/0x670
[  266.982919][T14914]  ? ip_set_alloc+0x24/0x30
[  266.982992][T14914]  ? ip_set_alloc+0x24/0x30
[  266.983022][T14914]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  266.983050][T14914]  ip_set_alloc+0x24/0x30
[  266.983260][T14914]  hash_netiface_create+0x282/0x740
[  266.983303][T14914]  ? __pfx_hash_netiface_create+0x10/0x10
[  266.983347][T14914]  ip_set_create+0x3cc/0x970
[  266.983372][T14914]  ? save_fpregs_to_fpstate+0x100/0x160
[  266.983484][T14914]  nfnetlink_rcv_msg+0x4c6/0x590
[  266.983608][T14914]  netlink_rcv_skb+0x120/0x220
[  266.983632][T14914]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  266.983676][T14914]  nfnetlink_rcv+0x167/0x16c0
[  266.983716][T14914]  ? __free_frozen_pages+0x284/0x510
[  266.983745][T14914]  ? free_large_kmalloc+0xb1/0x100
[  266.983851][T14914]  ? bpf_check+0xc239/0xd9d0
[  266.983895][T14914]  ? do_jit+0x8050/0x8280
[  266.983949][T14914]  ? xas_load+0x413/0x430
[  266.983979][T14914]  ? css_rstat_updated+0xb7/0x240
[  266.984014][T14914]  ? css_rstat_updated+0xb7/0x240
[  266.984057][T14914]  ? __rcu_read_unlock+0x34/0x70
[  266.984086][T14914]  ? __rcu_read_unlock+0x4f/0x70
[  266.984115][T14914]  ? should_fail_ex+0x30/0x280
[  266.984254][T14914]  ? sysvec_apic_timer_interrupt+0x44/0x80
[  266.984287][T14914]  ? __rcu_read_unlock+0x34/0x70
[  266.984319][T14914]  ? __netlink_lookup+0x266/0x2a0
[  266.984435][T14914]  netlink_unicast+0x5c0/0x690
[  266.984475][T14914]  netlink_sendmsg+0x58b/0x6b0
[  266.984498][T14914]  ? __pfx_netlink_sendmsg+0x10/0x10
[  266.984519][T14914]  __sock_sendmsg+0x145/0x180
[  266.984626][T14914]  ____sys_sendmsg+0x31e/0x4e0
[  266.984659][T14914]  ___sys_sendmsg+0x17b/0x1d0
[  266.984704][T14914]  __x64_sys_sendmsg+0xd4/0x160
[  266.984732][T14914]  x64_sys_call+0x191e/0x3000
[  266.984776][T14914]  do_syscall_64+0xd2/0x200
[  266.984881][T14914]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  266.984940][T14914]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  266.984971][T14914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.985032][T14914] RIP: 0033:0x7f99b048eec9
[  266.985052][T14914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.985086][T14914] RSP: 002b:00007f99aeef7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  266.985153][T14914] RAX: ffffffffffffffda RBX: 00007f99b06e5fa0 RCX: 00007f99b048eec9
[  266.985171][T14914] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  266.985188][T14914] RBP: 00007f99b0511f91 R08: 0000000000000000 R09: 0000000000000000
[  266.985202][T14914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  266.985214][T14914] R13: 00007f99b06e6038 R14: 00007f99b06e5fa0 R15: 00007ffe4ea043e8
[  266.985233][T14914]  </TASK>
[  267.352601][T14914] memory: usage 307200kB, limit 307200kB, failcnt 1219
[  267.359866][T14914] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0
[  267.367820][T14914] kmem: usage 307100kB, limit 9007199254740988kB, failcnt 0
[  267.375406][T14914] Memory cgroup stats for /syz2:
[  267.377080][T14914] cache 0
[  267.385059][T14914] rss 0
[  267.387846][T14914] shmem 0
[  267.390883][T14914] mapped_file 0
[  267.394461][T14914] dirty 0
[  267.397558][T14914] writeback 0
[  267.401017][T14914] workingset_refault_anon 195
[  267.405780][T14914] workingset_refault_file 2354
[  267.410587][T14914] swap 184320
[  267.413960][T14914] swapcached 8192
[  267.417678][T14914] pgpgin 345836
[  267.421152][T14914] pgpgout 345811
[  267.424742][T14914] pgfault 304198
[  267.424971][T14942] loop3: detected capacity change from 0 to 2048
[  267.428396][T14914] pgmajfault 126
[  267.428406][T14914] inactive_anon 8192
[  267.428416][T14914] active_anon 0
[  267.428426][T14914] inactive_file 94208
[  267.449689][T14914] active_file 0
[  267.453203][T14914] unevictable 0
[  267.456652][T14914] hierarchical_memory_limit 314572800
[  267.462019][T14914] hierarchical_memsw_limit 9223372036854771712
[  267.468219][T14914] total_cache 0
[  267.471684][T14914] total_rss 0
[  267.475009][T14914] total_shmem 0
[  267.478464][T14914] total_mapped_file 0
[  267.482553][T14914] total_dirty 0
[  267.486017][T14914] total_writeback 0
[  267.489815][T14914] total_workingset_refault_anon 195
[  267.495110][T14914] total_workingset_refault_file 2354
[  267.500438][T14914] total_swap 184320
[  267.504294][T14914] total_swapcached 8192
[  267.508445][T14914] total_pgpgin 345836
[  267.512455][T14914] total_pgpgout 345811
[  267.513114][T14946] loop4: detected capacity change from 0 to 128
[  267.516548][T14914] total_pgfault 304198
[  267.516559][T14914] total_pgmajfault 126
[  267.523571][T14946] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  267.526903][T14914] total_inactive_anon 8192
[  267.526924][T14914] total_active_anon 0
[  267.531251][T14946] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  267.542747][T14914] total_inactive_file 94208
[  267.542763][T14914] total_active_file 0
[  267.568786][T14914] total_unevictable 0
[  267.574655][T14914] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3851,pid=14913,uid=0
[  267.589409][T14914] Memory cgroup out of memory: Killed process 14913 (syz.2.3851) total-vm:95872kB, anon-rss:1136kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  267.642579][T14944] Falling back ldisc for ttyS3.
[  267.738045][T14951] batadv1: entered promiscuous mode
[  267.743589][T14951] batadv1: entered allmulticast mode
[  267.755676][T14952] loop4: detected capacity change from 0 to 1024
[  267.772399][T14952] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  267.782226][T14952] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  267.794346][T14952] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  267.828629][T14952] EXT4-fs error (device loop4): ext4_get_journal_inode:5808: inode #32: comm syz.4.3864: iget: special inode unallocated
[  267.867437][T14952] EXT4-fs (loop4): no journal found
[  267.872711][T14952] EXT4-fs (loop4): can't get journal size
[  267.903955][T14952] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  268.022626][T14957] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  268.029421][T14957] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  268.038775][T14957] vhci_hcd vhci_hcd.0: Device attached
[  268.044813][T14970] loop2: detected capacity change from 0 to 1024
[  268.048052][T14970] EXT4-fs: test_dummy_encryption option not supported
[  268.094102][T14967] vhci_hcd: connection closed
[  268.094600][   T12] vhci_hcd: stop threads
[  268.103641][   T12] vhci_hcd: release socket
[  268.108083][   T12] vhci_hcd: disconnect device
[  268.114686][T14970] __nla_validate_parse: 11 callbacks suppressed
[  268.114702][T14970] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3869'.
[  268.187865][T14979] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3872'.
[  268.536639][T14989] loop3: detected capacity change from 0 to 128
[  268.543573][T14989] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  268.555538][T14986] Falling back ldisc for ttyS3.
[  268.560948][T14989] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  268.592667][T12066] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.645548][T14994] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3879'.
[  268.661066][T14994] batadv1: entered promiscuous mode
[  268.666377][T14994] batadv1: entered allmulticast mode
[  268.772128][T14995] loop4: detected capacity change from 0 to 8192
[  268.926051][T14972] syz.5.3870 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[  268.940701][T14972] CPU: 0 UID: 0 PID: 14972 Comm: syz.5.3870 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  268.940821][T14972] Tainted: [W]=WARN
[  268.940830][T14972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  268.940847][T14972] Call Trace:
[  268.940856][T14972]  <TASK>
[  268.940866][T14972]  __dump_stack+0x1d/0x30
[  268.940911][T14972]  dump_stack_lvl+0xe8/0x140
[  268.940986][T14972]  dump_stack+0x15/0x1b
[  268.941018][T14972]  dump_header+0x81/0x220
[  268.941051][T14972]  oom_kill_process+0x342/0x400
[  268.941082][T14972]  out_of_memory+0x979/0xb80
[  268.941125][T14972]  try_charge_memcg+0x5e6/0x9e0
[  268.941160][T14972]  obj_cgroup_charge_pages+0xa6/0x150
[  268.941206][T14972]  __memcg_kmem_charge_page+0x9f/0x170
[  268.941249][T14972]  __alloc_frozen_pages_noprof+0x188/0x360
[  268.941367][T14972]  alloc_pages_mpol+0xb3/0x260
[  268.941409][T14972]  ? alloc_pages_noprof+0xf4/0x130
[  268.941515][T14972]  alloc_pages_noprof+0x90/0x130
[  268.941558][T14972]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  268.941673][T14972]  __kvmalloc_node_noprof+0x483/0x670
[  268.941712][T14972]  ? ip_set_alloc+0x24/0x30
[  268.941799][T14972]  ? ip_set_alloc+0x24/0x30
[  268.941838][T14972]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  268.941876][T14972]  ip_set_alloc+0x24/0x30
[  268.941915][T14972]  hash_netiface_create+0x282/0x740
[  268.942025][T14972]  ? __pfx_hash_netiface_create+0x10/0x10
[  268.942061][T14972]  ip_set_create+0x3cc/0x970
[  268.942091][T14972]  ? __nla_parse+0x40/0x60
[  268.942143][T14972]  nfnetlink_rcv_msg+0x4c6/0x590
[  268.942196][T14972]  netlink_rcv_skb+0x120/0x220
[  268.942215][T14972]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  268.942261][T14972]  nfnetlink_rcv+0x167/0x16c0
[  268.942331][T14972]  ? kmem_cache_free+0xe4/0x3d0
[  268.942378][T14972]  ? __kfree_skb+0x109/0x150
[  268.942419][T14972]  ? nlmon_xmit+0x4f/0x60
[  268.942459][T14972]  ? consume_skb+0x49/0x150
[  268.942513][T14972]  ? nlmon_xmit+0x4f/0x60
[  268.942557][T14972]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  268.942586][T14972]  ? __dev_queue_xmit+0x1200/0x2000
[  268.942612][T14972]  ? __dev_queue_xmit+0x182/0x2000
[  268.942697][T14972]  ? ref_tracker_free+0x37d/0x3e0
[  268.942750][T14972]  ? __netlink_deliver_tap+0x4dc/0x500
[  268.942845][T14972]  netlink_unicast+0x5c0/0x690
[  268.942964][T14972]  netlink_sendmsg+0x58b/0x6b0
[  268.942994][T14972]  ? __pfx_netlink_sendmsg+0x10/0x10
[  268.943050][T14972]  __sock_sendmsg+0x145/0x180
[  268.943119][T14972]  ____sys_sendmsg+0x31e/0x4e0
[  268.943150][T14972]  ___sys_sendmsg+0x17b/0x1d0
[  268.943195][T14972]  __x64_sys_sendmsg+0xd4/0x160
[  268.943362][T14972]  x64_sys_call+0x191e/0x3000
[  268.943394][T14972]  do_syscall_64+0xd2/0x200
[  268.943503][T14972]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  268.943537][T14972]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  268.943570][T14972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.943598][T14972] RIP: 0033:0x7f469337eec9
[  268.943617][T14972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.943721][T14972] RSP: 002b:00007f4691ddf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  268.943745][T14972] RAX: ffffffffffffffda RBX: 00007f46935d5fa0 RCX: 00007f469337eec9
[  268.943762][T14972] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  268.943779][T14972] RBP: 00007f4693401f91 R08: 0000000000000000 R09: 0000000000000000
[  268.943795][T14972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  268.943864][T14972] R13: 00007f46935d6038 R14: 00007f46935d5fa0 R15: 00007ffd06f3b218
[  268.943917][T14972]  </TASK>
[  269.294331][T14972] memory: usage 307200kB, limit 307200kB, failcnt 405
[  269.301144][T14972] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  269.309079][T14972] kmem: usage 306976kB, limit 9007199254740988kB, failcnt 0
[  269.316476][T14972] Memory cgroup stats for /syz5:
[  269.324435][T15009] loop2: detected capacity change from 0 to 512
[  269.330259][T14972] cache 0
[  269.337459][T15009] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[  269.338923][T14972] rss 204800
[  269.350917][T14972] shmem 0
[  269.353894][T14972] mapped_file 0
[  269.357392][T14972] dirty 0
[  269.360346][T14972] writeback 0
[  269.363714][T14972] workingset_refault_anon 0
[  269.368214][T14972] workingset_refault_file 0
[  269.372755][T14972] swap 0
[  269.375687][T14972] swapcached 0
[  269.379051][T14972] pgpgin 58249
[  269.382513][T14972] pgpgout 58193
[  269.385964][T14972] pgfault 49631
[  269.389424][T14972] pgmajfault 0
[  269.392888][T14972] inactive_anon 40960
[  269.396917][T14972] active_anon 163840
[  269.400907][T14972] inactive_file 0
[  269.404601][T14972] active_file 24576
[  269.408471][T14972] unevictable 0
[  269.409799][T15010] netlink: 'syz.2.3884': attribute type 10 has an invalid length.
[  269.411941][T14972] hierarchical_memory_limit 314572800
[  269.411955][T14972] hierarchical_memsw_limit 9223372036854771712
[  269.411968][T14972] total_cache 0
[  269.425111][T15010] netlink: 'syz.2.3884': attribute type 1 has an invalid length.
[  269.425245][T14972] total_rss 204800
[  269.439200][T15010] 8021q: adding VLAN 0 to HW filter on device bond0
[  269.442662][T14972] total_shmem 0
[  269.456541][T14972] total_mapped_file 0
[  269.460562][T14972] total_dirty 0
[  269.464099][T14972] total_writeback 0
[  269.467918][T14972] total_workingset_refault_anon 0
[  269.473077][T14972] total_workingset_refault_file 0
[  269.478143][T14972] total_swap 0
[  269.481659][T14972] total_swapcached 0
[  269.485654][T14972] total_pgpgin 58249
[  269.489593][T14972] total_pgpgout 58193
[  269.493601][T14972] total_pgfault 49631
[  269.497597][T14972] total_pgmajfault 0
[  269.501505][T14972] total_inactive_anon 40960
[  269.506065][T14972] total_active_anon 163840
[  269.510494][T14972] total_inactive_file 0
[  269.514692][T14972] total_active_file 24576
[  269.519082][T14972] total_unevictable 0
[  269.523090][T14972] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.3870,pid=14969,uid=0
[  269.538238][T14972] Memory cgroup out of memory: Killed process 14969 (syz.5.3870) total-vm:93956kB, anon-rss:1264kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  269.600343][T15013] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3885'.
[  269.819090][T15020] tmpfs: Bad value for 'mpol'
[  269.844291][   T29] kauditd_printk_skb: 74 callbacks suppressed
[  269.844307][   T29] audit: type=1326 audit(1759683494.698:18580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  269.936177][   T29] audit: type=1326 audit(1759683494.728:18581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  269.959762][   T29] audit: type=1326 audit(1759683494.728:18582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  269.983395][   T29] audit: type=1326 audit(1759683494.728:18583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  270.007006][   T29] audit: type=1326 audit(1759683494.728:18584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  270.030871][   T29] audit: type=1326 audit(1759683494.728:18585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  270.054514][   T29] audit: type=1326 audit(1759683494.728:18586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  270.078250][   T29] audit: type=1326 audit(1759683494.728:18587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  270.101959][   T29] audit: type=1326 audit(1759683494.728:18588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  270.125602][   T29] audit: type=1326 audit(1759683494.728:18589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15017 comm="syz.3.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fba63aceec9 code=0x7ffc0000
[  270.162521][T15029] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3893'.
[  270.191496][T15029] batadv1: entered promiscuous mode
[  270.196808][T15029] batadv1: entered allmulticast mode
[  270.212022][T15023] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(11)
[  270.218699][T15023] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  270.227032][T15023] vhci_hcd vhci_hcd.0: Device attached
[  270.239502][T15034] vhci_hcd: connection closed
[  270.239821][   T12] vhci_hcd: stop threads
[  270.248993][   T12] vhci_hcd: release socket
[  270.253483][   T12] vhci_hcd: disconnect device
[  270.263748][T15038] netlink: 3 bytes leftover after parsing attributes in process `syz.4.3895'.
[  270.272761][T15039] loop2: detected capacity change from 0 to 1024
[  270.279632][T15039] EXT4-fs: test_dummy_encryption option not supported
[  270.283268][T15038] batadv1: entered promiscuous mode
[  270.291652][T15038] batadv1: entered allmulticast mode
[  270.292570][T15039] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3891'.
[  270.331995][   T23] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  270.339894][   T23] hid-generic 0000:0000:0000.0029: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  270.392530][T15042] Falling back ldisc for ttyS3.
[  270.400300][T15042] loop2: detected capacity change from 0 to 128
[  270.423180][T15047] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3898'.
[  270.517306][T15056] tmpfs: Bad value for 'mpol'
[  270.637120][T15065] siw: device registration error -23
[  270.735798][T15061] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[  270.742469][T15061] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  270.751197][T15061] vhci_hcd vhci_hcd.0: Device attached
[  270.759572][T15067] vhci_hcd: connection closed
[  270.760402][T11876] vhci_hcd: stop threads
[  270.769442][T11876] vhci_hcd: release socket
[  270.773945][T11876] vhci_hcd: disconnect device
[  270.800707][T15070] loop5: detected capacity change from 0 to 1024
[  270.807656][T15070] EXT4-fs: test_dummy_encryption option not supported
[  270.821292][T15070] netlink: 14 bytes leftover after parsing attributes in process `syz.5.3907'.
[  270.932304][T15074] netlink: 3 bytes leftover after parsing attributes in process `syz.5.3909'.
[  270.945552][T15074] batadv1: entered promiscuous mode
[  270.950802][T15074] batadv1: entered allmulticast mode
[  271.067098][T15076] loop3: detected capacity change from 0 to 2048
[  271.076332][T15076] EXT4-fs: Ignoring removed i_version option
[  271.104845][T15076] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  271.117423][T15076] ext4 filesystem being mounted at /223/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  271.216562][T15085] loop5: detected capacity change from 0 to 1024
[  271.235047][T15085] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  271.245013][T15085] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  271.292464][T15085] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  271.320662][T15085] EXT4-fs error (device loop5): ext4_get_journal_inode:5808: inode #32: comm syz.5.3913: iget: special inode unallocated
[  271.337164][T15063] syz.0.3905 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  271.346195][T15085] EXT4-fs (loop5): no journal found
[  271.351406][T15063] CPU: 1 UID: 0 PID: 15063 Comm: syz.0.3905 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  271.351450][T15063] Tainted: [W]=WARN
[  271.351483][T15063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  271.351501][T15063] Call Trace:
[  271.351511][T15063]  <TASK>
[  271.351575][T15063]  __dump_stack+0x1d/0x30
[  271.351609][T15063]  dump_stack_lvl+0xe8/0x140
[  271.351644][T15063]  dump_stack+0x15/0x1b
[  271.351765][T15063]  dump_header+0x81/0x220
[  271.351806][T15063]  oom_kill_process+0x342/0x400
[  271.351916][T15063]  out_of_memory+0x979/0xb80
[  271.351956][T15063]  try_charge_memcg+0x5e6/0x9e0
[  271.352002][T15063]  obj_cgroup_charge_pages+0xa6/0x150
[  271.352123][T15063]  __memcg_kmem_charge_page+0x9f/0x170
[  271.352169][T15063]  __alloc_frozen_pages_noprof+0x188/0x360
[  271.352217][T15063]  alloc_pages_mpol+0xb3/0x260
[  271.352307][T15063]  ? alloc_pages_noprof+0x61/0x130
[  271.352354][T15063]  alloc_pages_noprof+0x90/0x130
[  271.352459][T15063]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  271.352519][T15063]  __kvmalloc_node_noprof+0x483/0x670
[  271.352617][T15063]  ? ip_set_alloc+0x24/0x30
[  271.352659][T15063]  ? ip_set_alloc+0x24/0x30
[  271.352733][T15063]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  271.352772][T15063]  ip_set_alloc+0x24/0x30
[  271.352814][T15063]  hash_netiface_create+0x282/0x740
[  271.352917][T15063]  ? __pfx_hash_netiface_create+0x10/0x10
[  271.352970][T15063]  ip_set_create+0x3cc/0x970
[  271.353013][T15063]  ? __nla_parse+0x40/0x60
[  271.353047][T15063]  nfnetlink_rcv_msg+0x4c6/0x590
[  271.353177][T15063]  netlink_rcv_skb+0x120/0x220
[  271.353204][T15063]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  271.353256][T15063]  nfnetlink_rcv+0x167/0x16c0
[  271.353343][T15063]  ? kmem_cache_free+0xe4/0x3d0
[  271.353383][T15063]  ? __kfree_skb+0x109/0x150
[  271.353428][T15063]  ? nlmon_xmit+0x4f/0x60
[  271.353554][T15063]  ? consume_skb+0x49/0x150
[  271.353598][T15063]  ? nlmon_xmit+0x4f/0x60
[  271.353644][T15063]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  271.353677][T15063]  ? __dev_queue_xmit+0x1200/0x2000
[  271.353729][T15063]  ? __dev_queue_xmit+0x182/0x2000
[  271.353839][T15063]  ? ref_tracker_free+0x37d/0x3e0
[  271.353931][T15063]  ? __netlink_deliver_tap+0x4dc/0x500
[  271.354038][T15063]  netlink_unicast+0x5c0/0x690
[  271.354085][T15063]  netlink_sendmsg+0x58b/0x6b0
[  271.354180][T15063]  ? __pfx_netlink_sendmsg+0x10/0x10
[  271.354210][T15063]  __sock_sendmsg+0x145/0x180
[  271.354248][T15063]  ____sys_sendmsg+0x31e/0x4e0
[  271.354373][T15063]  ___sys_sendmsg+0x17b/0x1d0
[  271.354501][T15063]  __x64_sys_sendmsg+0xd4/0x160
[  271.354538][T15063]  x64_sys_call+0x191e/0x3000
[  271.354567][T15063]  do_syscall_64+0xd2/0x200
[  271.354648][T15063]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  271.354745][T15063]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  271.354783][T15063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.354814][T15063] RIP: 0033:0x7f0a6ff7eec9
[  271.354837][T15063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  271.354882][T15063] RSP: 002b:00007f0a6e9e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  271.354909][T15063] RAX: ffffffffffffffda RBX: 00007f0a701d5fa0 RCX: 00007f0a6ff7eec9
[  271.354928][T15063] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  271.354946][T15063] RBP: 00007f0a70001f91 R08: 0000000000000000 R09: 0000000000000000
[  271.354963][T15063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  271.354981][T15063] R13: 00007f0a701d6038 R14: 00007f0a701d5fa0 R15: 00007ffd0c435ac8
[  271.355008][T15063]  </TASK>
[  271.355052][T15063] memory: usage 307200kB, limit 307200kB, failcnt 933
[  271.356625][T15085] EXT4-fs (loop5): can't get journal size
[  271.368007][T15063] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[  271.384247][T15085] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  271.385253][T15063] kmem: usage 307148kB, limit 9007199254740988kB, failcnt 0
[  271.482856][T15092] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  271.487648][T15063] Memory cgroup stats for /syz0:
[  271.760094][T15063] cache 0
[  271.768142][T15063] rss 0
[  271.770971][T15063] shmem 0
[  271.773953][T15063] mapped_file 0
[  271.774176][   T10] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  271.777422][T15063] dirty 0
[  271.777432][T15063] writeback 0
[  271.777442][T15063] workingset_refault_anon 185
[  271.785451][   T10] hid-generic 0000:0000:0000.002A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  271.787896][T15063] workingset_refault_file 2135
[  271.810343][T15063] swap 188416
[  271.813766][T15063] swapcached 0
[  271.817165][T15063] pgpgin 387654
[  271.820637][T15063] pgpgout 387641
[  271.824354][T15063] pgfault 317008
[  271.827987][T15063] pgmajfault 116
[  271.831540][T15063] inactive_anon 0
[  271.835272][T15063] active_anon 0
[  271.838746][T15063] inactive_file 0
[  271.842409][T15063] active_file 53248
[  271.846243][T15063] unevictable 0
[  271.849756][T15063] hierarchical_memory_limit 314572800
[  271.855492][T15063] hierarchical_memsw_limit 9223372036854771712
[  271.861742][T15063] total_cache 0
[  271.865373][T15063] total_rss 0
[  271.868682][T15063] total_shmem 0
[  271.872165][T15063] total_mapped_file 0
[  271.876313][T15063] total_dirty 0
[  271.879776][T15063] total_writeback 0
[  271.883629][T15063] total_workingset_refault_anon 185
[  271.888828][T15063] total_workingset_refault_file 2135
[  271.894221][T15063] total_swap 188416
[  271.898059][T15063] total_swapcached 0
[  271.902095][T15063] total_pgpgin 387654
[  271.906118][T15063] total_pgpgout 387641
[  271.910199][T15063] total_pgfault 317008
[  271.914331][T15063] total_pgmajfault 116
[  271.918521][T15063] total_inactive_anon 0
[  271.922701][T15063] total_active_anon 0
[  271.926689][T15063] total_inactive_file 0
[  271.930862][T15063] total_active_file 53248
[  271.935232][T15063] total_unevictable 0
[  271.939741][T15063] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.3905,pid=15062,uid=0
[  271.954808][T15063] Memory cgroup out of memory: Killed process 15062 (syz.0.3905) total-vm:95872kB, anon-rss:1264kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  272.029160][T11732] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  272.054603][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  272.320092][T15112] loop3: detected capacity change from 0 to 1024
[  272.327066][T15112] EXT4-fs: test_dummy_encryption option not supported
[  272.355215][T15112] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  272.532218][T15112] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  272.587456][T15112] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  272.642927][T15112] bond0 (unregistering): Released all slaves
[  273.149527][T15123] __nla_validate_parse: 4 callbacks suppressed
[  273.149547][T15123] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3927'.
[  273.184203][T15127] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3929'.
[  273.194815][T15123] batadv1: entered promiscuous mode
[  273.200124][T15123] batadv1: entered allmulticast mode
[  273.210917][T15127] batadv1: entered promiscuous mode
[  273.216237][T15127] batadv1: entered allmulticast mode
[  273.524801][T15139] tmpfs: Bad value for 'mpol'
[  273.746602][ T3397] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  273.773881][ T3397] hid-generic 0000:0000:0000.002B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  273.866169][T15147] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3937'.
[  273.943392][T15152] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3938'.
[  273.961928][T15154] loop2: detected capacity change from 0 to 1024
[  273.982236][T15154] EXT4-fs: test_dummy_encryption option not supported
[  274.021088][T15154] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3940'.
[  274.063926][T15158] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3941'.
[  274.080696][T15158] loop4: detected capacity change from 0 to 1024
[  274.103196][T15158] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  274.113102][T15158] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  274.138546][T15160] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3943'.
[  274.146003][T15158] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  274.165707][T15160] batadv1: entered promiscuous mode
[  274.171512][T15160] batadv1: entered allmulticast mode
[  274.171610][T15158] EXT4-fs error (device loop4): ext4_get_journal_inode:5808: inode #32: comm syz.4.3941: iget: special inode unallocated
[  274.212564][T15158] EXT4-fs (loop4): no journal found
[  274.217843][T15158] EXT4-fs (loop4): can't get journal size
[  274.238781][T15158] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  274.519256][T15176] loop0: detected capacity change from 0 to 2048
[  274.547362][T15176] EXT4-fs: Ignoring removed i_version option
[  274.564896][T15181] tmpfs: Bad value for 'mpol'
[  274.600525][T15176] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  274.641352][T15186] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3952'.
[  274.766135][T15176] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  274.845438][T15189] loop2: detected capacity change from 0 to 2048
[  274.853588][   T29] kauditd_printk_skb: 30 callbacks suppressed
[  274.853617][   T29] audit: type=1326 audit(1759683499.698:18620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f99b048db2a code=0x7ffc0000
[  274.863041][T15189] EXT4-fs: Ignoring removed i_version option
[  274.902514][   T29] audit: type=1326 audit(1759683499.718:18621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f99b048db2a code=0x7ffc0000
[  274.926177][   T29] audit: type=1326 audit(1759683499.718:18622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f99b048d617 code=0x7ffc0000
[  274.950169][   T29] audit: type=1326 audit(1759683499.718:18623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f99b049066a code=0x7ffc0000
[  274.991534][T12066] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.992039][T13028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.026917][T15189] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  275.042336][T15196] loop4: detected capacity change from 0 to 1024
[  275.045146][T15189] ext4 filesystem being mounted at /176/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  275.062473][   T29] audit: type=1326 audit(1759683499.908:18624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f99b048d710 code=0x7ffc0000
[  275.086166][T15196] EXT4-fs: test_dummy_encryption option not supported
[  275.089059][T15194] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  275.099598][T15194] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  275.107897][T15194] vhci_hcd vhci_hcd.0: Device attached
[  275.124801][T15196] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3956'.
[  275.147574][   T29] audit: type=1326 audit(1759683499.968:18625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f99b048dc17 code=0x7ffc0000
[  275.171172][   T29] audit: type=1326 audit(1759683499.968:18626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f99b048d710 code=0x7ffc0000
[  275.194766][   T29] audit: type=1326 audit(1759683499.968:18627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99b048eec9 code=0x7ffc0000
[  275.211464][   T10] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  275.218361][   T29] audit: type=1326 audit(1759683499.968:18628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99b048eec9 code=0x7ffc0000
[  275.230730][   T10] hid-generic 0000:0000:0000.002C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  275.251239][T15197] vhci_hcd: connection closed
[  275.260962][T10883] vhci_hcd: stop threads
[  275.269963][T10883] vhci_hcd: release socket
[  275.274427][T10883] vhci_hcd: disconnect device
[  275.279494][T15200] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3955'.
[  275.297673][   T29] audit: type=1326 audit(1759683500.098:18629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15188 comm="syz.2.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f99b048eec9 code=0x7ffc0000
[  275.334412][T15200] batadv1: entered promiscuous mode
[  275.339659][T15200] batadv1: entered allmulticast mode
[  275.504257][T12568] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.656334][T15217] tmpfs: Bad value for 'mpol'
[  275.679997][T15225] tmpfs: Bad value for 'mpol'
[  275.805953][T15231] loop5: detected capacity change from 0 to 512
[  275.823870][T15231] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  275.843974][T15237] batadv1: entered promiscuous mode
[  275.849673][T15237] batadv1: entered allmulticast mode
[  275.858268][T15231] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3970: invalid indirect mapped block 4294967295 (level 0)
[  275.881963][T15231] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.3970: invalid indirect mapped block 4294967295 (level 1)
[  275.902953][T15231] EXT4-fs (loop5): 1 orphan inode deleted
[  275.909109][T15231] EXT4-fs (loop5): 1 truncate cleaned up
[  275.929940][T15244] loop0: detected capacity change from 0 to 1024
[  275.937565][T15231] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  275.952966][T15244] EXT4-fs: test_dummy_encryption option not supported
[  276.179130][T15253] batadv1: entered promiscuous mode
[  276.184416][T15253] batadv1: entered allmulticast mode
[  276.265366][T15255] tmpfs: Bad value for 'mpol'
[  276.272281][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.443275][T15266] siw: device registration error -23
[  276.483914][T15267] tmpfs: Bad value for 'mpol'
[  276.510966][T15269] loop4: detected capacity change from 0 to 1024
[  276.530015][T15270] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(11)
[  276.536675][T15270] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  276.539007][T15269] EXT4-fs: test_dummy_encryption option not supported
[  276.544858][T15270] vhci_hcd vhci_hcd.0: Device attached
[  276.586601][T15228] syz.2.3968 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  276.600786][T15228] CPU: 1 UID: 0 PID: 15228 Comm: syz.2.3968 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  276.600848][T15228] Tainted: [W]=WARN
[  276.600858][T15228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  276.600875][T15228] Call Trace:
[  276.600884][T15228]  <TASK>
[  276.600895][T15228]  __dump_stack+0x1d/0x30
[  276.600940][T15228]  dump_stack_lvl+0xe8/0x140
[  276.600991][T15228]  dump_stack+0x15/0x1b
[  276.601143][T15228]  dump_header+0x81/0x220
[  276.601185][T15228]  oom_kill_process+0x342/0x400
[  276.601268][T15228]  out_of_memory+0x979/0xb80
[  276.601308][T15228]  try_charge_memcg+0x5e6/0x9e0
[  276.601337][T15228]  ? __pfx_perf_pmu_nop_void+0x10/0x10
[  276.601485][T15228]  obj_cgroup_charge_pages+0xa6/0x150
[  276.601524][T15228]  __memcg_kmem_charge_page+0x9f/0x170
[  276.601574][T15228]  __alloc_frozen_pages_noprof+0x188/0x360
[  276.601622][T15228]  alloc_pages_mpol+0xb3/0x260
[  276.601665][T15228]  ? alloc_pages_noprof+0x61/0x130
[  276.601743][T15228]  alloc_pages_noprof+0x90/0x130
[  276.601778][T15228]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  276.601832][T15228]  __kvmalloc_node_noprof+0x483/0x670
[  276.601936][T15228]  ? ip_set_alloc+0x24/0x30
[  276.601973][T15228]  ? ip_set_alloc+0x24/0x30
[  276.602015][T15228]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  276.602067][T15228]  ip_set_alloc+0x24/0x30
[  276.602108][T15228]  hash_netiface_create+0x282/0x740
[  276.602154][T15228]  ? __pfx_hash_netiface_create+0x10/0x10
[  276.602275][T15228]  ip_set_create+0x3cc/0x970
[  276.602376][T15228]  ? __nla_parse+0x40/0x60
[  276.602406][T15228]  nfnetlink_rcv_msg+0x4c6/0x590
[  276.602468][T15228]  netlink_rcv_skb+0x120/0x220
[  276.602549][T15228]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  276.602636][T15228]  nfnetlink_rcv+0x167/0x16c0
[  276.602676][T15228]  ? __free_frozen_pages+0x284/0x510
[  276.602717][T15228]  ? free_large_kmalloc+0xb1/0x100
[  276.602750][T15228]  ? bpf_check+0xc239/0xd9d0
[  276.602825][T15228]  ? __alloc_frozen_pages_noprof+0x188/0x360
[  276.602872][T15228]  ? css_rstat_updated+0xb7/0x240
[  276.602917][T15228]  ? __rcu_read_unlock+0x34/0x70
[  276.603004][T15228]  ? __rcu_read_unlock+0x4f/0x70
[  276.603113][T15228]  ? should_fail_ex+0x30/0x280
[  276.603157][T15228]  ? selinux_nlmsg_lookup+0x99/0x890
[  276.603202][T15228]  ? __rcu_read_unlock+0x34/0x70
[  276.603245][T15228]  ? __netlink_lookup+0x266/0x2a0
[  276.603352][T15228]  netlink_unicast+0x5c0/0x690
[  276.603400][T15228]  netlink_sendmsg+0x58b/0x6b0
[  276.603432][T15228]  ? __pfx_netlink_sendmsg+0x10/0x10
[  276.603481][T15228]  __sock_sendmsg+0x145/0x180
[  276.603525][T15228]  ____sys_sendmsg+0x31e/0x4e0
[  276.603556][T15228]  ___sys_sendmsg+0x17b/0x1d0
[  276.603653][T15228]  __x64_sys_sendmsg+0xd4/0x160
[  276.603754][T15228]  x64_sys_call+0x191e/0x3000
[  276.603781][T15228]  do_syscall_64+0xd2/0x200
[  276.603814][T15228]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  276.603928][T15228]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  276.603962][T15228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.604046][T15228] RIP: 0033:0x7f99b048eec9
[  276.604065][T15228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.604089][T15228] RSP: 002b:00007f99aeef7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  276.604115][T15228] RAX: ffffffffffffffda RBX: 00007f99b06e5fa0 RCX: 00007f99b048eec9
[  276.604176][T15228] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000004
[  276.604204][T15228] RBP: 00007f99b0511f91 R08: 0000000000000000 R09: 0000000000000000
[  276.604220][T15228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  276.604236][T15228] R13: 00007f99b06e6038 R14: 00007f99b06e5fa0 R15: 00007ffe4ea043e8
[  276.604260][T15228]  </TASK>
[  276.966234][T15228] memory: usage 307200kB, limit 307200kB, failcnt 1591
[  276.973138][T15228] memory+swap: usage 307376kB, limit 9007199254740988kB, failcnt 0
[  276.981040][T15228] kmem: usage 307100kB, limit 9007199254740988kB, failcnt 0
[  276.988460][T15228] Memory cgroup stats for /syz2:
[  276.988831][T15228] cache 0
[  276.996797][T15228] rss 0
[  276.999566][T15228] shmem 0
[  277.002619][T15228] mapped_file 0
[  277.006093][T15228] dirty 0
[  277.009040][T15228] writeback 4096
[  277.012627][T15228] workingset_refault_anon 244
[  277.017541][T15228] workingset_refault_file 2779
[  277.022470][T15228] swap 180224
[  277.025992][T15228] swapcached 8192
[  277.029643][T15228] pgpgin 365182
[  277.033160][T15228] pgpgout 365157
[  277.036762][T15228] pgfault 316365
[  277.040374][T15228] pgmajfault 164
[  277.043957][T15228] inactive_anon 8192
[  277.047860][T15228] active_anon 0
[  277.051330][T15228] inactive_file 8192
[  277.055277][T15228] active_file 45056
[  277.059097][T15228] unevictable 0
[  277.062598][T15228] hierarchical_memory_limit 314572800
[  277.067981][T15228] hierarchical_memsw_limit 9223372036854771712
[  277.074249][T15228] total_cache 0
[  277.077775][T15228] total_rss 0
[  277.081141][T15228] total_shmem 0
[  277.084641][T15228] total_mapped_file 0
[  277.088639][T15228] total_dirty 0
[  277.092150][T15228] total_writeback 4096
[  277.096254][T15228] total_workingset_refault_anon 244
[  277.101564][T15228] total_workingset_refault_file 2779
[  277.106910][T15228] total_swap 180224
[  277.110740][T15228] total_swapcached 8192
[  277.115091][T15228] total_pgpgin 365182
[  277.119142][T15228] total_pgpgout 365157
[  277.123251][T15228] total_pgfault 316365
[  277.127331][T15228] total_pgmajfault 164
[  277.131426][T15228] total_inactive_anon 8192
[  277.135907][T15228] total_active_anon 0
[  277.139897][T15228] total_inactive_file 8192
[  277.144503][T15228] total_active_file 45056
[  277.149209][T15228] total_unevictable 0
[  277.153257][T15228] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3968,pid=15227,uid=0
[  277.168278][T15228] Memory cgroup out of memory: Killed process 15227 (syz.2.3968) total-vm:93824kB, anon-rss:1264kB, file-rss:22052kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  277.185856][T15271] vhci_hcd: connection closed
[  277.190948][T10883] vhci_hcd: stop threads
[  277.199948][T10883] vhci_hcd: release socket
[  277.204559][T10883] vhci_hcd: disconnect device
[  277.262501][   T10] usb 12-1: enqueue for inactive port 0
[  277.345027][T15281] loop0: detected capacity change from 0 to 2048
[  277.352135][T15281] EXT4-fs: Ignoring removed i_version option
[  277.389022][T15285] siw: device registration error -23
[  277.398834][T15281] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  277.411245][T15281] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  277.472529][   T10] usb 12-1: enqueue for inactive port 0
[  277.503019][ T3390] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  277.511095][ T3390] hid-generic 0000:0000:0000.002D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  277.520967][T15291] Falling back ldisc for ttyS3.
[  277.528287][T15291] loop2: detected capacity change from 0 to 128
[  277.558177][T15297] tmpfs: Bad value for 'mpol'
[  277.590720][T13028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.634358][T15302] loop0: detected capacity change from 0 to 1024
[  277.641427][T15302] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  277.651238][T15302] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  277.663709][T15302] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  277.673876][T15302] EXT4-fs error (device loop0): ext4_get_journal_inode:5808: inode #32: comm syz.0.3999: iget: special inode unallocated
[  277.686831][T15302] EXT4-fs (loop0): no journal found
[  277.692071][T15302] EXT4-fs (loop0): can't get journal size
[  277.701362][T15302] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  277.760998][T15307] loop5: detected capacity change from 0 to 2048
[  277.778685][T15307] EXT4-fs: Ignoring removed i_version option
[  277.889246][T15307] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  277.901625][T15307] ext4 filesystem being mounted at /170/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.177580][T15325] __nla_validate_parse: 11 callbacks suppressed
[  278.177597][T15325] netlink: 3 bytes leftover after parsing attributes in process `syz.2.4009'.
[  278.196402][T15325] batadv1: entered promiscuous mode
[  278.201745][T15325] batadv1: entered allmulticast mode
[  278.246676][T15327] loop3: detected capacity change from 0 to 2048
[  278.253495][T15327] EXT4-fs: Ignoring removed i_version option
[  278.264091][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.274322][T15327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.293648][T15327] ext4 filesystem being mounted at /242/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.476602][T13028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.536370][T11732] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.592805][   T10] usb usb12-port1: attempt power cycle
[  278.610398][T15312] syz.4.4004 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  278.624616][T15312] CPU: 0 UID: 0 PID: 15312 Comm: syz.4.4004 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  278.624680][T15312] Tainted: [W]=WARN
[  278.624689][T15312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  278.624706][T15312] Call Trace:
[  278.624714][T15312]  <TASK>
[  278.624724][T15312]  __dump_stack+0x1d/0x30
[  278.624765][T15312]  dump_stack_lvl+0xe8/0x140
[  278.624956][T15312]  dump_stack+0x15/0x1b
[  278.624985][T15312]  dump_header+0x81/0x220
[  278.625077][T15312]  oom_kill_process+0x342/0x400
[  278.625118][T15312]  out_of_memory+0x979/0xb80
[  278.625147][T15312]  try_charge_memcg+0x5e6/0x9e0
[  278.625175][T15312]  obj_cgroup_charge_pages+0xa6/0x150
[  278.625251][T15312]  __memcg_kmem_charge_page+0x9f/0x170
[  278.625293][T15312]  __alloc_frozen_pages_noprof+0x188/0x360
[  278.625336][T15312]  alloc_pages_mpol+0xb3/0x260
[  278.625375][T15312]  ? alloc_pages_noprof+0xf4/0x130
[  278.625473][T15312]  alloc_pages_noprof+0x90/0x130
[  278.625517][T15312]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  278.625564][T15312]  __kvmalloc_node_noprof+0x483/0x670
[  278.625592][T15312]  ? ip_set_alloc+0x24/0x30
[  278.625642][T15312]  ? ip_set_alloc+0x24/0x30
[  278.625677][T15312]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  278.625711][T15312]  ip_set_alloc+0x24/0x30
[  278.625762][T15312]  hash_netiface_create+0x282/0x740
[  278.625807][T15312]  ? __pfx_hash_netiface_create+0x10/0x10
[  278.625846][T15312]  ip_set_create+0x3cc/0x970
[  278.625877][T15312]  ? __nla_parse+0x40/0x60
[  278.625978][T15312]  nfnetlink_rcv_msg+0x4c6/0x590
[  278.626013][T15312]  ? cmp_ex_search+0x25/0x40
[  278.626101][T15312]  netlink_rcv_skb+0x120/0x220
[  278.626130][T15312]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  278.626177][T15312]  nfnetlink_rcv+0x167/0x16c0
[  278.626214][T15312]  ? kmem_cache_free+0xe4/0x3d0
[  278.626314][T15312]  ? __kfree_skb+0x109/0x150
[  278.626354][T15312]  ? nlmon_xmit+0x4f/0x60
[  278.626391][T15312]  ? consume_skb+0x49/0x150
[  278.626489][T15312]  ? nlmon_xmit+0x4f/0x60
[  278.626525][T15312]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  278.626551][T15312]  ? __dev_queue_xmit+0x1200/0x2000
[  278.626569][T15312]  ? __dev_queue_xmit+0x182/0x2000
[  278.626601][T15312]  ? do_user_addr_fault+0xd9e/0x1080
[  278.626619][T15312]  ? do_user_addr_fault+0xd9e/0x1080
[  278.626640][T15312]  ? ref_tracker_free+0x37d/0x3e0
[  278.626687][T15312]  ? __netlink_deliver_tap+0x4dc/0x500
[  278.626718][T15312]  netlink_unicast+0x5c0/0x690
[  278.626772][T15312]  netlink_sendmsg+0x58b/0x6b0
[  278.626802][T15312]  ? __pfx_netlink_sendmsg+0x10/0x10
[  278.626827][T15312]  __sock_sendmsg+0x145/0x180
[  278.626884][T15312]  ____sys_sendmsg+0x31e/0x4e0
[  278.626907][T15312]  ___sys_sendmsg+0x17b/0x1d0
[  278.626940][T15312]  __x64_sys_sendmsg+0xd4/0x160
[  278.627005][T15312]  x64_sys_call+0x191e/0x3000
[  278.627042][T15312]  do_syscall_64+0xd2/0x200
[  278.627077][T15312]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  278.627139][T15312]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  278.627173][T15312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.627202][T15312] RIP: 0033:0x7f0beae9eec9
[  278.627224][T15312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.627249][T15312] RSP: 002b:00007f0be9907038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  278.627342][T15312] RAX: ffffffffffffffda RBX: 00007f0beb0f5fa0 RCX: 00007f0beae9eec9
[  278.627359][T15312] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000004
[  278.627376][T15312] RBP: 00007f0beaf21f91 R08: 0000000000000000 R09: 0000000000000000
[  278.627393][T15312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  278.627409][T15312] R13: 00007f0beb0f6038 R14: 00007f0beb0f5fa0 R15: 00007ffdd0ffffc8
[  278.627515][T15312]  </TASK>
[  278.627648][T15312] memory: usage 307200kB, limit 307200kB, failcnt 1168
[  278.644899][T15344] netlink: 3 bytes leftover after parsing attributes in process `syz.5.4016'.
[  278.653393][T15312] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[  278.653413][T15312] kmem: usage 307116kB, limit 9007199254740988kB, failcnt 0
[  278.653433][T15312] Memory cgroup stats for /syz4:
[  278.682846][T15312] cache 0
[  278.697447][T15344] batadv1: entered promiscuous mode
[  278.702573][T15312] rss 4096
[  278.708379][T15344] batadv1: entered allmulticast mode
[  278.713163][T15312] shmem 0
[  279.055084][T15312] mapped_file 0
[  279.058540][T15312] dirty 0
[  279.061476][T15312] writeback 0
[  279.064852][T15312] workingset_refault_anon 137
[  279.069528][T15312] workingset_refault_file 3498
[  279.074324][T15312] swap 188416
[  279.077602][T15312] swapcached 4096
[  279.081239][T15312] pgpgin 415811
[  279.084740][T15312] pgpgout 415790
[  279.088291][T15312] pgfault 355159
[  279.091831][T15312] pgmajfault 110
[  279.095404][T15312] inactive_anon 4096
[  279.099311][T15312] active_anon 0
[  279.102799][T15312] inactive_file 81920
[  279.106823][T15312] active_file 0
[  279.110279][T15312] unevictable 0
[  279.113752][T15312] hierarchical_memory_limit 314572800
[  279.119130][T15312] hierarchical_memsw_limit 9223372036854771712
[  279.125399][T15312] total_cache 0
[  279.128869][T15312] total_rss 4096
[  279.132436][T15312] total_shmem 0
[  279.135901][T15312] total_mapped_file 0
[  279.139907][T15312] total_dirty 0
[  279.143579][T15312] total_writeback 0
[  279.147382][T15312] total_workingset_refault_anon 137
[  279.152597][T15312] total_workingset_refault_file 3498
[  279.157879][T15312] total_swap 188416
[  279.161681][T15312] total_swapcached 4096
[  279.165940][T15312] total_pgpgin 415811
[  279.169935][T15312] total_pgpgout 415790
[  279.174073][T15312] total_pgfault 355159
[  279.178138][T15312] total_pgmajfault 110
[  279.182215][T15312] total_inactive_anon 4096
[  279.186650][T15312] total_active_anon 0
[  279.190632][T15312] total_inactive_file 81920
[  279.195145][T15312] total_active_file 0
[  279.199162][T15312] total_unevictable 0
[  279.202456][T11876] batman_adv: batadv1: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[  279.203173][T15312] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.4004,pid=15311,uid=0
[  279.227520][T15312] Memory cgroup out of memory: Killed process 15311 (syz.4.4004) total-vm:93824kB, anon-rss:1264kB, file-rss:22052kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  279.394262][T15351] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  279.400953][T15351] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  279.414490][T15351] vhci_hcd vhci_hcd.0: Device attached
[  279.431429][T15358] vhci_hcd: connection closed
[  279.433729][   T12] vhci_hcd: stop threads
[  279.442793][   T12] vhci_hcd: release socket
[  279.447391][   T12] vhci_hcd: disconnect device
[  279.461164][T15362] loop5: detected capacity change from 0 to 1024
[  279.468040][T15362] EXT4-fs: test_dummy_encryption option not supported
[  279.477850][T15365] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4024'.
[  279.491649][T15362] netlink: 14 bytes leftover after parsing attributes in process `syz.5.4022'.
[  279.500912][T15365] loop4: detected capacity change from 0 to 1024
[  279.508202][T15365] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  279.518158][T15365] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  279.528256][T15365] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  279.538558][T15367] Falling back ldisc for ttyS3.
[  279.545365][T15365] EXT4-fs error (device loop4): ext4_get_journal_inode:5808: inode #32: comm syz.4.4024: iget: special inode unallocated
[  279.559608][T15367] loop2: detected capacity change from 0 to 128
[  279.573614][T15365] EXT4-fs (loop4): no journal found
[  279.578979][T15365] EXT4-fs (loop4): can't get journal size
[  279.701470][T15387] netlink: 3 bytes leftover after parsing attributes in process `syz.5.4033'.
[  279.713739][T15387] batadv1: entered promiscuous mode
[  279.718970][T15387] batadv1: entered allmulticast mode
[  279.787523][T15385] netlink: 'syz.2.4032': attribute type 7 has an invalid length.
[  279.795405][T15385] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4032'.
[  279.877640][   T29] kauditd_printk_skb: 94 callbacks suppressed
[  279.877656][   T29] audit: type=1326 audit(1759683504.728:18724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  279.925049][   T29] audit: type=1326 audit(1759683504.758:18725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  279.948770][   T29] audit: type=1326 audit(1759683504.758:18726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  279.972489][   T29] audit: type=1326 audit(1759683504.758:18727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  279.996098][   T29] audit: type=1326 audit(1759683504.758:18728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  280.019603][   T29] audit: type=1326 audit(1759683504.758:18729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  280.043556][   T29] audit: type=1326 audit(1759683504.758:18730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  280.067352][   T29] audit: type=1326 audit(1759683504.758:18731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  280.090993][   T29] audit: type=1326 audit(1759683504.758:18732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  280.114587][   T29] audit: type=1326 audit(1759683504.758:18733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15392 comm="syz.5.4035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f469337eec9 code=0x7ffc0000
[  280.139452][T15397] loop5: detected capacity change from 0 to 1024
[  280.146157][T15397] EXT4-fs: test_dummy_encryption option not supported
[  280.159186][T15397] netlink: 14 bytes leftover after parsing attributes in process `syz.5.4036'.
[  280.215653][T15404] netlink: 3 bytes leftover after parsing attributes in process `syz.0.4038'.
[  280.218825][T15407] siw: device registration error -23
[  280.237586][T15404] batadv1: entered promiscuous mode
[  280.242957][T15404] batadv1: entered allmulticast mode
[  280.279206][T15401] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  280.285945][T15401] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  280.299089][T15401] vhci_hcd vhci_hcd.0: Device attached
[  280.320626][T15408] vhci_hcd: connection closed
[  280.320903][T11876] vhci_hcd: stop threads
[  280.329935][T11876] vhci_hcd: release socket
[  280.334610][T11876] vhci_hcd: disconnect device
[  280.437659][T15419] tmpfs: Bad value for 'mpol'
[  280.630225][T15391] syz.2.4034 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[  280.644738][T15391] CPU: 0 UID: 0 PID: 15391 Comm: syz.2.4034 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  280.644829][T15391] Tainted: [W]=WARN
[  280.644915][T15391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  280.644948][T15391] Call Trace:
[  280.644954][T15391]  <TASK>
[  280.644962][T15391]  __dump_stack+0x1d/0x30
[  280.645023][T15391]  dump_stack_lvl+0xe8/0x140
[  280.645055][T15391]  dump_stack+0x15/0x1b
[  280.645172][T15391]  dump_header+0x81/0x220
[  280.645201][T15391]  oom_kill_process+0x342/0x400
[  280.645237][T15391]  out_of_memory+0x979/0xb80
[  280.645265][T15391]  try_charge_memcg+0x5e6/0x9e0
[  280.645380][T15391]  obj_cgroup_charge_pages+0xa6/0x150
[  280.645424][T15391]  __memcg_kmem_charge_page+0x9f/0x170
[  280.645456][T15391]  __alloc_frozen_pages_noprof+0x188/0x360
[  280.645499][T15391]  alloc_pages_mpol+0xb3/0x260
[  280.645543][T15391]  alloc_pages_noprof+0x90/0x130
[  280.645715][T15391]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  280.645754][T15391]  __kvmalloc_node_noprof+0x483/0x670
[  280.645788][T15391]  ? ip_set_alloc+0x24/0x30
[  280.645869][T15391]  ? ip_set_alloc+0x24/0x30
[  280.645896][T15391]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  280.645923][T15391]  ip_set_alloc+0x24/0x30
[  280.645986][T15391]  hash_netiface_create+0x282/0x740
[  280.646026][T15391]  ? __pfx_hash_netiface_create+0x10/0x10
[  280.646115][T15391]  ip_set_create+0x3cc/0x970
[  280.646221][T15391]  ? __nla_parse+0x40/0x60
[  280.646242][T15391]  nfnetlink_rcv_msg+0x4c6/0x590
[  280.646290][T15391]  netlink_rcv_skb+0x120/0x220
[  280.646306][T15391]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  280.646410][T15391]  nfnetlink_rcv+0x167/0x16c0
[  280.646511][T15391]  ? __list_del_entry_valid_or_report+0x65/0x130
[  280.646606][T15391]  ? __rmqueue_pcplist+0x9d2/0xbd0
[  280.646638][T15391]  ? should_failslab+0x7a/0xb0
[  280.646660][T15391]  ? should_fail_ex+0x30/0x280
[  280.646698][T15391]  ? selinux_nlmsg_lookup+0x99/0x890
[  280.646720][T15391]  ? __rcu_read_unlock+0x34/0x70
[  280.646741][T15391]  ? __netlink_lookup+0x266/0x2a0
[  280.646763][T15391]  netlink_unicast+0x5c0/0x690
[  280.646823][T15391]  netlink_sendmsg+0x58b/0x6b0
[  280.646865][T15391]  ? __pfx_netlink_sendmsg+0x10/0x10
[  280.646886][T15391]  __sock_sendmsg+0x145/0x180
[  280.646937][T15391]  ____sys_sendmsg+0x31e/0x4e0
[  280.646960][T15391]  ___sys_sendmsg+0x17b/0x1d0
[  280.646992][T15391]  __x64_sys_sendmsg+0xd4/0x160
[  280.647016][T15391]  x64_sys_call+0x191e/0x3000
[  280.647035][T15391]  do_syscall_64+0xd2/0x200
[  280.647108][T15391]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  280.647132][T15391]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  280.647156][T15391]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.647197][T15391] RIP: 0033:0x7f99b048eec9
[  280.647254][T15391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.647272][T15391] RSP: 002b:00007f99aeef7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  280.647289][T15391] RAX: ffffffffffffffda RBX: 00007f99b06e5fa0 RCX: 00007f99b048eec9
[  280.647301][T15391] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  280.647313][T15391] RBP: 00007f99b0511f91 R08: 0000000000000000 R09: 0000000000000000
[  280.647324][T15391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  280.647336][T15391] R13: 00007f99b06e6038 R14: 00007f99b06e5fa0 R15: 00007ffe4ea043e8
[  280.647458][T15391]  </TASK>
[  280.647464][T15391] memory: usage 307200kB, limit 307200kB, failcnt 1721
[  280.987914][T15391] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  280.995935][T15391] kmem: usage 306816kB, limit 9007199254740988kB, failcnt 0
[  281.003385][T15391] Memory cgroup stats for /syz2:
[  281.003769][T15391] cache 65536
[  281.012191][T15391] rss 229376
[  281.015423][T15391] shmem 0
[  281.018367][T15391] mapped_file 65536
[  281.022250][T15391] dirty 4096
[  281.025500][T15391] writeback 0
[  281.028780][T15391] workingset_refault_anon 268
[  281.033534][T15391] workingset_refault_file 2916
[  281.038341][T15391] swap 0
[  281.041184][T15391] swapcached 20480
[  281.044941][T15391] pgpgin 369075
[  281.048402][T15391] pgpgout 368980
[  281.052019][T15391] pgfault 321316
[  281.055598][T15391] pgmajfault 184
[  281.059152][T15391] inactive_anon 61440
[  281.063220][T15391] active_anon 167936
[  281.067120][T15391] inactive_file 0
[  281.070915][T15391] active_file 159744
[  281.074986][T15391] unevictable 0
[  281.078540][T15391] hierarchical_memory_limit 314572800
[  281.078995][T15432] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4050'.
[  281.084177][T15391] hierarchical_memsw_limit 9223372036854771712
[  281.099183][T15391] total_cache 65536
[  281.103017][T15391] total_rss 229376
[  281.106759][T15391] total_shmem 0
[  281.110226][T15391] total_mapped_file 65536
[  281.114574][T15391] total_dirty 4096
[  281.118331][T15391] total_writeback 0
[  281.122128][T15391] total_workingset_refault_anon 268
[  281.127341][T15391] total_workingset_refault_file 2916
[  281.132640][T15391] total_swap 0
[  281.136001][T15391] total_swapcached 20480
[  281.140229][T15391] total_pgpgin 369075
[  281.144231][T15391] total_pgpgout 368980
[  281.148330][T15391] total_pgfault 321316
[  281.152429][T15391] total_pgmajfault 184
[  281.156507][T15391] total_inactive_anon 61440
[  281.160998][T15391] total_active_anon 167936
[  281.165477][T15391] total_inactive_file 0
[  281.169684][T15391] total_active_file 159744
[  281.174166][T15391] total_unevictable 0
[  281.178142][T15391] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.4034,pid=15390,uid=0
[  281.192921][T15391] Memory cgroup out of memory: Killed process 15391 (syz.2.4034) total-vm:102560kB, anon-rss:1136kB, file-rss:30376kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
[  281.212661][   T10] usb usb12-port1: unable to enumerate USB device
[  281.219445][T15432] loop5: detected capacity change from 0 to 1024
[  281.227137][T15432] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  281.236942][T15432] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  281.247900][T15432] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  281.258375][T15432] EXT4-fs error (device loop5): ext4_get_journal_inode:5808: inode #32: comm syz.5.4050: iget: special inode unallocated
[  281.273465][T15432] EXT4-fs (loop5): no journal found
[  281.278759][T15432] EXT4-fs (loop5): can't get journal size
[  281.591467][T15443] loop0: detected capacity change from 0 to 512
[  281.614392][T15443] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  281.843331][T15449] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4053'.
[  281.859398][T15449] netlink: 'syz.0.4053': attribute type 10 has an invalid length.
[  281.867880][T15449] netlink: 'syz.0.4053': attribute type 1 has an invalid length.
[  281.885272][T15449] 8021q: adding VLAN 0 to HW filter on device bond2
[  281.973552][T15461] netlink: 'syz.3.4054': attribute type 7 has an invalid length.
[  282.078393][ T3383] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  282.114820][ T3383] hid-generic 0000:0000:0000.002E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  282.155593][T15463] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[  282.162253][T15463] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  282.170429][T15463] vhci_hcd vhci_hcd.0: Device attached
[  282.252908][T15472] loop5: detected capacity change from 0 to 512
[  282.275304][T15472] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  282.305342][T15472] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.4062: invalid indirect mapped block 4294967295 (level 0)
[  282.330029][T15472] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.4062: invalid indirect mapped block 4294967295 (level 1)
[  282.345190][T15469] vhci_hcd: connection closed
[  282.348349][T11876] vhci_hcd: stop threads
[  282.357442][T11876] vhci_hcd: release socket
[  282.357436][T15472] EXT4-fs (loop5): 1 orphan inode deleted
[  282.357459][T15472] EXT4-fs (loop5): 1 truncate cleaned up
[  282.361866][T11876] vhci_hcd: disconnect device
[  282.370406][T15472] EXT4-fs mount: 4 callbacks suppressed
[  282.370424][T15472] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  282.435382][T15478] tmpfs: Bad value for 'mpol'
[  282.453044][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.472911][T15480] loop5: detected capacity change from 0 to 512
[  282.479899][T15480] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  282.524168][T15480] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.4064: invalid indirect mapped block 4294967295 (level 0)
[  282.546840][T15480] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.4064: invalid indirect mapped block 4294967295 (level 1)
[  282.561324][T15483] loop0: detected capacity change from 0 to 2048
[  282.568355][T15483] EXT4-fs: Ignoring removed i_version option
[  282.575710][T15480] EXT4-fs (loop5): 1 orphan inode deleted
[  282.581481][T15480] EXT4-fs (loop5): 1 truncate cleaned up
[  282.587904][T15480] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  282.604190][T15483] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  282.632079][T13148] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.632482][T15483] ext4 filesystem being mounted at /171/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  282.737393][T15483] ==================================================================
[  282.745968][T15483] BUG: KCSAN: data-race in xas_find_marked / xas_init_marks
[  282.753289][T15483] 
[  282.755619][T15483] read-write to 0xffff888107354fe0 of 8 bytes by task 11876 on cpu 0:
[  282.763794][T15483]  xas_init_marks+0x18a/0x320
[  282.768486][T15483]  xas_store+0x3cf/0xce0
[  282.772748][T15483]  __filemap_remove_folio+0x195/0x2a0
[  282.778136][T15483]  folio_unmap_invalidate+0x1dd/0x360
[  282.783519][T15483]  folio_end_dropbehind+0x127/0x240
[  282.788750][T15483]  folio_end_writeback+0x24/0x70
[  282.793719][T15483]  ext4_finish_bio+0x459/0x8c0
[  282.798503][T15483]  ext4_release_io_end+0x9f/0x1f0
[  282.803547][T15483]  ext4_end_io_end+0x18d/0x240
[  282.808330][T15483]  ext4_end_io_rsv_work+0x151/0x1e0
[  282.813546][T15483]  process_scheduled_works+0x4ce/0x9d0
[  282.819022][T15483]  worker_thread+0x582/0x770
[  282.823629][T15483]  kthread+0x489/0x510
[  282.827801][T15483]  ret_from_fork+0x122/0x1b0
[  282.832399][T15483]  ret_from_fork_asm+0x1a/0x30
[  282.837175][T15483] 
[  282.839501][T15483] read to 0xffff888107354fe0 of 8 bytes by task 15483 on cpu 1:
[  282.847130][T15483]  xas_find_marked+0x218/0x620
[  282.851914][T15483]  find_get_entry+0x5d/0x380
[  282.856522][T15483]  filemap_get_folios_tag+0x13b/0x210
[  282.861911][T15483]  file_write_and_wait_range+0x1ea/0x2c0
[  282.867556][T15483]  generic_buffers_fsync_noflush+0x45/0x120
[  282.873658][T15483]  ext4_sync_file+0x1ab/0x690
[  282.878349][T15483]  vfs_fsync_range+0x10d/0x130
[  282.883126][T15483]  ext4_buffered_write_iter+0x34f/0x3c0
[  282.888677][T15483]  ext4_file_write_iter+0x387/0xf60
[  282.894164][T15483]  aio_write+0x2e5/0x410
[  282.898428][T15483]  io_submit_one+0xacd/0x11d0
[  282.903124][T15483]  __se_sys_io_submit+0xfb/0x280
[  282.908088][T15483]  __x64_sys_io_submit+0x43/0x50
[  282.913039][T15483]  x64_sys_call+0x2d6c/0x3000
[  282.917723][T15483]  do_syscall_64+0xd2/0x200
[  282.922239][T15483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.928384][T15483] 
[  282.930712][T15483] value changed: 0xffffffffffc00000 -> 0xfffffffff8000000
[  282.937819][T15483] 
[  282.940143][T15483] Reported by Kernel Concurrency Sanitizer on:
[  282.946322][T15483] CPU: 1 UID: 0 PID: 15483 Comm: syz.0.4065 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  282.957731][T15483] Tainted: [W]=WARN
[  282.961543][T15483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  282.971608][T15483] ==================================================================
[  283.050541][T15500] syz!: rxe_newlink: already configured on team_slave_0
[  283.104777][T13028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.341893][T15485] syz.2.4066 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[  283.356493][T15485] CPU: 1 UID: 0 PID: 15485 Comm: syz.2.4066 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  283.356591][T15485] Tainted: [W]=WARN
[  283.356597][T15485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  283.356609][T15485] Call Trace:
[  283.356616][T15485]  <TASK>
[  283.356623][T15485]  __dump_stack+0x1d/0x30
[  283.356726][T15485]  dump_stack_lvl+0xe8/0x140
[  283.356757][T15485]  dump_stack+0x15/0x1b
[  283.356784][T15485]  dump_header+0x81/0x220
[  283.356859][T15485]  oom_kill_process+0x342/0x400
[  283.356945][T15485]  out_of_memory+0x979/0xb80
[  283.357030][T15485]  try_charge_memcg+0x5e6/0x9e0
[  283.357050][T15485]  ? update_load_avg+0x1da/0x820
[  283.357158][T15485]  obj_cgroup_charge_pages+0xa6/0x150
[  283.357263][T15485]  __memcg_kmem_charge_page+0x9f/0x170
[  283.357305][T15485]  __alloc_frozen_pages_noprof+0x188/0x360
[  283.357394][T15485]  alloc_pages_mpol+0xb3/0x260
[  283.357429][T15485]  alloc_pages_noprof+0x90/0x130
[  283.357483][T15485]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  283.357521][T15485]  __kvmalloc_node_noprof+0x483/0x670
[  283.357548][T15485]  ? ip_set_alloc+0x24/0x30
[  283.357662][T15485]  ? ip_set_alloc+0x24/0x30
[  283.357690][T15485]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  283.357717][T15485]  ip_set_alloc+0x24/0x30
[  283.357824][T15485]  hash_netiface_create+0x282/0x740
[  283.357855][T15485]  ? __pfx_hash_netiface_create+0x10/0x10
[  283.357885][T15485]  ip_set_create+0x3cc/0x970
[  283.357910][T15485]  ? __nla_parse+0x40/0x60
[  283.358007][T15485]  nfnetlink_rcv_msg+0x4c6/0x590
[  283.358093][T15485]  netlink_rcv_skb+0x120/0x220
[  283.358110][T15485]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  283.358215][T15485]  nfnetlink_rcv+0x167/0x16c0
[  283.358243][T15485]  ? update_curr+0x111/0x1b0
[  283.358278][T15485]  ? enqueue_task_fair+0x891/0x980
[  283.358369][T15485]  ? _raw_spin_unlock+0x26/0x50
[  283.358409][T15485]  ? sched_balance_rq+0x18d4/0x1e20
[  283.358452][T15485]  ? should_fail_ex+0x30/0x280
[  283.358489][T15485]  ? selinux_nlmsg_lookup+0x99/0x890
[  283.358585][T15485]  ? __rcu_read_unlock+0x34/0x70
[  283.358647][T15485]  ? __netlink_lookup+0x266/0x2a0
[  283.358669][T15485]  netlink_unicast+0x5c0/0x690
[  283.358700][T15485]  netlink_sendmsg+0x58b/0x6b0
[  283.358751][T15485]  ? __pfx_netlink_sendmsg+0x10/0x10
[  283.358770][T15485]  __sock_sendmsg+0x145/0x180
[  283.358796][T15485]  ____sys_sendmsg+0x31e/0x4e0
[  283.358817][T15485]  ___sys_sendmsg+0x17b/0x1d0
[  283.358892][T15485]  __x64_sys_sendmsg+0xd4/0x160
[  283.358914][T15485]  x64_sys_call+0x191e/0x3000
[  283.358932][T15485]  do_syscall_64+0xd2/0x200
[  283.358956][T15485]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  283.359052][T15485]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  283.359075][T15485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.359134][T15485] RIP: 0033:0x7f99b048eec9
[  283.359148][T15485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  283.359164][T15485] RSP: 002b:00007f99aeef7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  283.359181][T15485] RAX: ffffffffffffffda RBX: 00007f99b06e5fa0 RCX: 00007f99b048eec9
[  283.359192][T15485] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  283.359203][T15485] RBP: 00007f99b0511f91 R08: 0000000000000000 R09: 0000000000000000
[  283.359213][T15485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  283.359266][T15485] R13: 00007f99b06e6038 R14: 00007f99b06e5fa0 R15: 00007ffe4ea043e8
[  283.359282][T15485]  </TASK>
[  283.359288][T15485] memory: usage 307200kB, limit 307200kB, failcnt 1871
[  283.707688][T15485] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  283.715612][T15485] kmem: usage 306832kB, limit 9007199254740988kB, failcnt 0
[  283.722981][T15485] Memory cgroup stats for /syz2:
[  283.723830][T15485] cache 65536
[  283.732227][T15485] rss 212992
[  283.735564][T15485] shmem 0
[  283.738499][T15485] mapped_file 65536
[  283.742296][T15485] dirty 4096
[  283.745572][T15485] writeback 0
[  283.748852][T15485] workingset_refault_anon 268
[  283.753702][T15485] workingset_refault_file 2916
[  283.758466][T15485] swap 0
[  283.761322][T15485] swapcached 20480
[  283.765058][T15485] pgpgin 374963
[  283.768577][T15485] pgpgout 374872
[  283.772134][T15485] pgfault 327384
[  283.775737][T15485] pgmajfault 184
[  283.779289][T15485] inactive_anon 20480
[  283.783290][T15485] active_anon 192512
[  283.787182][T15485] inactive_file 0
[  283.790871][T15485] active_file 159744
[  283.794878][T15485] unevictable 0
[  283.798338][T15485] hierarchical_memory_limit 314572800
[  283.803763][T15485] hierarchical_memsw_limit 9223372036854771712
[  283.809914][T15485] total_cache 65536
[  283.813760][T15485] total_rss 212992
[  283.817543][T15485] total_shmem 0
[  283.820998][T15485] total_mapped_file 65536
[  283.825344][T15485] total_dirty 4096
[  283.829061][T15485] total_writeback 0
[  283.832903][T15485] total_workingset_refault_anon 268
[  283.838136][T15485] total_workingset_refault_file 2916
[  283.843476][T15485] total_swap 0
[  283.846843][T15485] total_swapcached 20480
[  283.851073][T15485] total_pgpgin 374963
[  283.855100][T15485] total_pgpgout 374872
[  283.859173][T15485] total_pgfault 327384
[  283.863313][T15485] total_pgmajfault 184
[  283.867377][T15485] total_inactive_anon 20480
[  283.871875][T15485] total_active_anon 192512
[  283.876315][T15485] total_inactive_file 0
[  283.880465][T15485] total_active_file 159744
[  283.885073][T15485] total_unevictable 0
[  283.889095][T15485] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.4066,pid=15484,uid=0
[  283.903865][T15485] Memory cgroup out of memory: Killed process 15485 (syz.2.4066) total-vm:94088kB, anon-rss:1264kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000