last executing test programs:

14.527913659s ago: executing program 0 (id=74):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000810500"/20, @ANYRES32, @ANYBLOB="0000000000000000280012800a00010063616e"], 0x48}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x2000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

14.367401312s ago: executing program 0 (id=75):
modify_ldt$write(0x1, &(0x7f0000000040)={0x4, 0x1000, 0x2000}, 0x10)

14.367130902s ago: executing program 0 (id=76):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000140), 0x1, 0x4fa, &(0x7f0000000ac0)="$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")
r2 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r3, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r2, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000300)={0xc, r2, 0x0, 0x0, 0x1, 0x7})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
ioctl$TUNSETLINK(r4, 0x400454cd, 0x305)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$netlink(0x10, 0x3, 0x10)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
openat$zero(0xffffffffffffff9c, 0x0, 0x20100, 0x0)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000f8dbdf2503"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

13.44978835s ago: executing program 0 (id=84):
socket$tipc(0x1e, 0x5, 0x0)
symlink(0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x3753, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
syz_open_procfs(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={0xffffffffffffffff, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f00000001c0), 0x6, 0x5fc, &(0x7f0000000600)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
stat(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000002c0)='kfree\x00', r0, 0x0, 0x9}, 0x64)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r1 = syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r1, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x11)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)
socket$packet(0x11, 0x3, 0x300)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4c, 0x9, 0xffffffff, 0x2, 0x20000002}, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
preadv2(r5, &(0x7f0000000000)=[{&(0x7f0000000380)=""/258, 0x102}], 0x1, 0x6, 0x5, 0x29)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

12.649469105s ago: executing program 0 (id=95):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r0, 0x4)
r1 = accept4$unix(r0, 0x0, 0x0, 0x800)
recvfrom$unix(r1, &(0x7f0000000140)=""/248, 0x40000, 0x120, 0x0, 0x0)

12.216158934s ago: executing program 0 (id=104):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000008850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @cgroup_sock_addr=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0)

12.216038684s ago: executing program 32 (id=104):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000008850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @cgroup_sock_addr=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0)

1.850967624s ago: executing program 5 (id=272):
open_tree(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
gettid()
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = syz_clone(0x4000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket(0x28, 0x5, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/consoles\x00', 0x0, 0x0)
r5 = syz_io_uring_setup(0x49d, &(0x7f00000003c0)={0x0, 0x9f4b, 0x800, 0x1, 0x144}, &(0x7f00000001c0)=<r6=>0x0, &(0x7f0000000240)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd=r4, 0x7, &(0x7f00000000c0)=""/207, 0xcf, 0x10, 0x1})
io_uring_enter(r5, 0xfd0, 0x4c0, 0x43, 0x0, 0xf5)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
r8 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$tcp_congestion(r8, &(0x7f0000000100)='reno\x00', 0x5)
write$tcp_congestion(r8, &(0x7f0000000300)='reno\x00', 0x5)
wait4(r1, &(0x7f0000000240), 0x40000000, 0x0)
syz_open_procfs(r1, &(0x7f0000000340)='net/rt_acct\x00')
r9 = syz_clone3(&(0x7f00000007c0)={0x40000, &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000240), {0x23}, &(0x7f0000000480)=""/153, 0x99, &(0x7f0000000640)=""/201, &(0x7f0000000300)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x4}, 0x58)
r10 = getpid()
process_vm_readv(r9, &(0x7f0000000380)=[{&(0x7f0000000300)=""/52, 0x34}, {&(0x7f0000000ac0)=""/154, 0x9a}, {&(0x7f0000000a40)=""/108, 0x6c}, {&(0x7f00000002c0)=""/39, 0x27}], 0x4, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
r11 = getpid()
r12 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r12, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)
r13 = syz_open_procfs(0x0, &(0x7f00000041c0)='net/packet\x00')
preadv(r13, &(0x7f0000004300)=[{&(0x7f0000004200)=""/221, 0xdd}], 0x1, 0x10001, 0xfffffffd)
pread64(r13, &(0x7f0000004380)=""/246, 0xf6, 0x2)
syz_clone3(&(0x7f0000000840)={0x28200000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f00000000c0), {0x2e}, &(0x7f00000003c0)=""/186, 0xba, &(0x7f0000000100)=""/46, &(0x7f0000000540)=[0xffffffffffffffff, r1, r9, r10, r11, r12], 0x6, {r13}}, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000900)=ANY=[@ANYRES64=r4, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000", @ANYRES32], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r13, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)

1.755681847s ago: executing program 4 (id=278):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1800}, 0x20) (fail_nth: 2)

1.710230857s ago: executing program 4 (id=279):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(0xffffffffffffffff, 0xc, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
r3 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
fsmount(r3, 0x0, 0x5)

1.681088728s ago: executing program 4 (id=280):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x3004000, &(0x7f0000000340), 0x2, 0x7ad, &(0x7f0000000380)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000bc0)={@map, 0xffffffffffffffff, 0x38, 0x28}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x10000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fffffff}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYRES64=r1], 0x7c}}, 0x24044080)
sendmsg$NFT_BATCH(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}]}], {0x14}}, 0x64}}, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040))

1.313826585s ago: executing program 5 (id=283):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x6, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000001300)=""/238, 0xee}], 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000980), r1)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="210229bd7000fcdbdf2505000000080009000b0000005eda5c91115d4880b79053613297c37e4695dced6d37c5d76cb387c163d74fe29b3c939a339b6cfad4055f5da620cb74fe3c5bec"], 0x1c}, 0x1, 0x0, 0x0, 0x4044090}, 0x10)
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, 0x0, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x12, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00[\x00'], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setsig(r3, 0xa, 0x13)
fcntl$setlease(r3, 0x400, 0x0)
timer_create(0x0, &(0x7f00000005c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280)=<r7=>0x0)
timer_settime(r7, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r8, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'veth0_virt_wifi\x00', 0x2400000}, 0x18)

1.303955715s ago: executing program 2 (id=285):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r3)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000030000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000009500000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r6}, 0x10)
process_mrelease(0xffffffffffffffff, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
poll(&(0x7f0000000140)=[{r0, 0x200}, {r4, 0x4410}], 0x2, 0x100)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0xe4, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x20000000, {0x0, 0x0, 0x0, r8, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xe}}, [@TCA_STAB={0xb8, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x10, 0x3, 0x6cbf, 0x7, 0x2, 0x903, 0x3, 0x5}}, {0xe, 0x2, [0x9, 0x400, 0x1000, 0xc8d, 0x7]}}, {{0x1c, 0x1, {0x81, 0x7, 0xdb52, 0x0, 0x0, 0x6, 0x7, 0x2}}, {0x8, 0x2, [0x1, 0x1]}}, {{0x1c, 0x1, {0x9b, 0x7, 0x100, 0x7, 0x1, 0x0, 0x8}}, {0x4}}, {{0x1c, 0x1, {0x8e, 0xe, 0x1, 0x1, 0x0, 0x3, 0x7f, 0x1}}, {0x6, 0x2, [0x9]}}, {{0x1c, 0x1, {0xa, 0x54, 0x40, 0x4, 0x2, 0x30, 0x208}}, {0x4}}]}, @TCA_RATE={0x6, 0x5, {0x3, 0x8}}]}, 0xe4}, 0x1, 0x0, 0x0, 0x20000001}, 0x20000804)
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x25dfdbfe, {0x0, 0x0, 0x0, r8, {0x0, 0x1}, {0x2, 0xb}, {0x5, 0xd}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x4010004)
ioctl$SIOCSIFHWADDR(r3, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

1.134238509s ago: executing program 2 (id=289):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0xfffffff8, 0x1, 0x10000, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_read_part_table(0x1060, &(0x7f0000000000)="$eJzsz8FpAlEUBdA7n/mZCQSyTxFTRxaBrLJOE/bhypUd2I7FiIJ8YRwtQV2cs3k8ePfBDc9VcmqttXLb345J9zVmSsm2Jqm/U9Jm6Yd7bH+dbTinbuqSTbKu+U/qe5KPJN3PMCar75Skn48+D+Pyo8vf7qFdAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBFXQIAAP//s1YVKg==")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001c00)=ANY=[@ANYBLOB="0b00000005000200070000000900000001000001", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1d64, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000680)=ANY=[@ANYBLOB="0600000004000000be7000005c00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000002000000000000000000000000000000000000c200000000000000c0e0e759af1e6a3905503df4b605d3aa8d5fd082ab4a932f82e991f4bc3fd0b8b00d4b4ba305e6b91897dab37c85833947efb5d1489ecd057bd45a4580af1c7bdc1ca6e741b6bf046e26f01d158f28fefaa8bd3524ba8fe67e97f425fc1dff6f47698ed3ec4799908e7c58bb883f7ae2e95b696039a7f4ffae3147f2e20fdd4af37d306a2514b7e11747"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000540)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2}, 0x94)

1.133710668s ago: executing program 3 (id=290):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(0xffffffffffffffff, 0xc, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
r3 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
fsmount(r3, 0x0, 0x5)

1.114959379s ago: executing program 3 (id=291):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1800}, 0x20)

1.102356329s ago: executing program 3 (id=292):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000e40)='./file2\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x404c844, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x8)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000500), r4)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000540)={0x14, r5, 0x1, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x400c090}, 0x40)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r7, 0x0, 0x5}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
r8 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r8, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(r8, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x100000}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)
sendmmsg$inet6(r3, &(0x7f0000004580)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00'], 0x28}}], 0x1, 0x0)
socket(0xa, 0x3, 0x3a)
r9 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000003c0)={'bridge0\x00'})
r10 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MIF(r10, 0x29, 0xca, &(0x7f0000000400)={0x2, 0x1, 0x10}, 0xc)
ioctl$SIOCGETLINKNAME(r10, 0x89e0, &(0x7f0000000580)={0x2, 0x1})
r11 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r11, &(0x7f0000f67fe4)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
connect$inet6(r11, &(0x7f0000000380)={0xa, 0x4f23, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xb}, 0x1c)
syz_emit_ethernet(0x3a, &(0x7f0000002100)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0x18, @multicast1}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data}}}}}, 0x0)

1.004726781s ago: executing program 1 (id=293):
open_tree(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
gettid()
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = syz_clone(0x4000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket(0x28, 0x5, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/consoles\x00', 0x0, 0x0)
r5 = syz_io_uring_setup(0x49d, &(0x7f00000003c0)={0x0, 0x9f4b, 0x800, 0x1, 0x144}, &(0x7f00000001c0)=<r6=>0x0, &(0x7f0000000240)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd=r4, 0x7, &(0x7f00000000c0)=""/207, 0xcf, 0x10, 0x1})
io_uring_enter(r5, 0xfd0, 0x4c0, 0x43, 0x0, 0xf5)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
r8 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$tcp_congestion(r8, &(0x7f0000000100)='reno\x00', 0x5)
write$tcp_congestion(r8, &(0x7f0000000300)='reno\x00', 0x5)
wait4(r1, &(0x7f0000000240), 0x40000000, 0x0)
syz_open_procfs(r1, &(0x7f0000000340)='net/rt_acct\x00')
r9 = syz_clone3(&(0x7f00000007c0)={0x40000, &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000240), {0x23}, &(0x7f0000000480)=""/153, 0x99, &(0x7f0000000640)=""/201, &(0x7f0000000300)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x4}, 0x58)
r10 = getpid()
process_vm_readv(r9, &(0x7f0000000380)=[{&(0x7f0000000300)=""/52, 0x34}, {&(0x7f0000000ac0)=""/154, 0x9a}, {&(0x7f0000000a40)=""/108, 0x6c}, {&(0x7f00000002c0)=""/39, 0x27}], 0x4, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
r11 = getpid()
r12 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r12, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)
r13 = syz_open_procfs(0x0, &(0x7f00000041c0)='net/packet\x00')
preadv(r13, &(0x7f0000004300)=[{&(0x7f0000004200)=""/221, 0xdd}], 0x1, 0x10001, 0xfffffffd)
pread64(r13, &(0x7f0000004380)=""/246, 0xf6, 0x2)
syz_clone3(&(0x7f0000000840)={0x28200000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f00000000c0), {0x2e}, &(0x7f00000003c0)=""/186, 0xba, &(0x7f0000000100)=""/46, &(0x7f0000000540)=[0xffffffffffffffff, r1, r9, r10, r11, r12], 0x6, {r13}}, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000900)=ANY=[@ANYRES64=r4, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000", @ANYRES32], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r13, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)

908.032883ms ago: executing program 2 (id=294):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TCSBRKP(r1, 0x5425, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$TCSETSW2(r2, 0x5408, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "23f555d9adb42d4408020e90d1beaa82dc1ecf"})
ioctl$TIOCGPGRP(r1, 0x5437, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1800}, 0x20)

838.495644ms ago: executing program 3 (id=295):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x8}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0xffff, 0x0, @loopback, 0x40000000}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_128={{0x303}, "227d7944e182680c", "527b0afd542e83083f4e3fc43dccde5c", "fd596dc9", "6f086b719b2c7d13"}, 0x28)
close(r1)

815.771815ms ago: executing program 4 (id=296):
bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)=@o_path={&(0x7f0000000080)='./file2\x00', 0x0, 0x4000}, 0x18)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e24, @empty}, 0x10)
recvmmsg(r0, &(0x7f0000004ec0)=[{{0x0, 0x51, 0x0}, 0x3}], 0x1, 0x10102, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r1, 0x11, 0xa, &(0x7f0000000040)=0x4, 0x4)
sendmsg(r1, &(0x7f0000002c40)={&(0x7f0000000140)=@in={0x2, 0x4e24, @empty}, 0x80, &(0x7f0000001780)=[{&(0x7f00000001c0)='k', 0x1}], 0x1}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'macvtap0\x00'})
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r4=>0x0})
bind$packet(r3, &(0x7f0000000300)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @remote}, 0x14)
r5 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0xffb8)
bind$packet(r5, &(0x7f0000000280)={0x11, 0x0, r7, 0x1, 0xf, 0x6, @link_local}, 0x14)
preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000780)=""/219, 0xdb}], 0x1, 0x3b, 0x0)

785.115856ms ago: executing program 3 (id=297):
open_tree(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
gettid()
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = syz_clone(0x4000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket(0x28, 0x5, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/consoles\x00', 0x0, 0x0)
r5 = syz_io_uring_setup(0x49d, &(0x7f00000003c0)={0x0, 0x9f4b, 0x800, 0x1, 0x144}, &(0x7f00000001c0)=<r6=>0x0, &(0x7f0000000240)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd=r4, 0x7, &(0x7f00000000c0)=""/207, 0xcf, 0x10, 0x1})
io_uring_enter(r5, 0xfd0, 0x4c0, 0x43, 0x0, 0xf5)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
r8 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$tcp_congestion(r8, &(0x7f0000000100)='reno\x00', 0x5)
write$tcp_congestion(r8, &(0x7f0000000300)='reno\x00', 0x5)
wait4(r1, &(0x7f0000000240), 0x40000000, 0x0)
syz_open_procfs(r1, &(0x7f0000000340)='net/rt_acct\x00')
r9 = syz_clone3(&(0x7f00000007c0)={0x40000, &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000240), {0x23}, &(0x7f0000000480)=""/153, 0x99, &(0x7f0000000640)=""/201, &(0x7f0000000300)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x4}, 0x58)
r10 = getpid()
process_vm_readv(r9, &(0x7f0000000380)=[{&(0x7f0000000300)=""/52, 0x34}, {&(0x7f0000000ac0)=""/154, 0x9a}, {&(0x7f0000000a40)=""/108, 0x6c}, {&(0x7f00000002c0)=""/39, 0x27}], 0x4, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
r11 = getpid()
r12 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r12, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)
r13 = syz_open_procfs(0x0, &(0x7f00000041c0)='net/packet\x00')
preadv(r13, &(0x7f0000004300)=[{&(0x7f0000004200)=""/221, 0xdd}], 0x1, 0x10001, 0xfffffffd)
pread64(r13, &(0x7f0000004380)=""/246, 0xf6, 0x2)
syz_clone3(&(0x7f0000000840)={0x28200000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f00000000c0), {0x2e}, &(0x7f00000003c0)=""/186, 0xba, &(0x7f0000000100)=""/46, &(0x7f0000000540)=[0xffffffffffffffff, r1, r9, r10, r11, r12], 0x6, {r13}}, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000900)=ANY=[@ANYRES64=r4, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000", @ANYRES32], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r13, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)

719.995146ms ago: executing program 1 (id=298):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/15], 0x0, 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000810500"/20, @ANYRES32, @ANYBLOB="0000000000000000280012800a00010063616e"], 0x48}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x2000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

719.681426ms ago: executing program 1 (id=299):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x20000000, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x3, 0x6361, 0x5, 0xfffffffd, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x20000804)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {0x0, 0x1}, {0x2, 0xb}, {0x5, 0xd}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x4010004)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) (fail_nth: 2)

696.172157ms ago: executing program 4 (id=300):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x11cfa, 0x0, 0x8000007, 0x3, 0x4, 0x1, 0x0, 0x6})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0xff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfc, 0x0, 0x7ffc0002}]})
r3 = perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x1}, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000d40)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x8000000000000000, 0x7}, 0x4130, 0x0, 0x0, 0x5, 0x0, 0x0, 0x9}, 0x0, 0xc, r3, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4, 0x2}, 0x0, 0x0, r3, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000bc0)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000c40)={0x0, r3}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x5, &(0x7f0000006680))
pivot_root(0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
syz_clone(0x21205400, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000440)={[{@grpquota}, {@lazytime}, {@minixdf}, {@acl}, {@resuid}, {@noinit_itable}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
r5 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
getdents(r5, &(0x7f0000001fc0)=""/184, 0xb8)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0x8, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f0000000140)={0x800100, 0xffffffff, 0x2, 0xe1db, 0x1101, 0xff})
close(r0)

399.921473ms ago: executing program 2 (id=301):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(0xffffffffffffffff, 0xc, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
r3 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
fsmount(r3, 0x0, 0x5)

367.479424ms ago: executing program 5 (id=302):
symlink(0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xd146, 0x0, 0xc, 0x288}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff9}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r6}, 0x18)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r2, 0x0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}})
io_uring_enter(r3, 0x3516, 0x0, 0x4, 0x0, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0xc, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x9, 0x6}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}}, 0x0)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000008, 0x10010, r1, 0x6010c000)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="60000000020601020000000000000000000000000900020073797a31000000000500010007000000050005000a00000014000780080013400000040008001240fffffffa11000300686173683a6e65742c6e657400000000050004"], 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

341.928604ms ago: executing program 2 (id=303):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000002c0), 0x4)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x6, 0x0, 0x1, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x1, 0x3}, 0x50)
r4 = fsmount(r0, 0x1, 0x82)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_lsm={0x1d, 0xd, &(0x7f0000000140)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2d}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x654}, @cb_func={0x18, 0x2, 0x4, 0x0, 0xffffffffffffffff}], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0xfb, &(0x7f0000000380)=""/251, 0x41000, 0x17, '\x00', 0x0, 0x1b, r2, 0x8, &(0x7f0000000300)={0x8, 0x2}, 0x8, 0x10, &(0x7f0000000480)={0x3, 0x6, 0x1, 0x3}, 0x10, 0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000580)=[r3, 0xffffffffffffffff, r4], &(0x7f00000005c0)=[{0x3, 0x10000, 0x1, 0x1}], 0x10, 0xd01}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$SIOCSIFMTU(r5, 0x8922, &(0x7f0000000b40)={'dummy0\x00'})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000001000040000000000000000000300000a20000000000a05000000000000000000070000000900010073797a300000000044000000090a010400000000000000000700ffff08000a40000000030900020073797a31000000000900010073797a3000000000080005400000002105000d40930000005c0000000c0a01020000000000000000070000000900020073797a31000000000900010073797a3000000000300003802c0000800400018024000b80100001800c000100636f756e7465720010000180090001006c617374"], 0xe8}, 0x1, 0x0, 0x0, 0x10}, 0x0)

291.926865ms ago: executing program 4 (id=304):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
futex(&(0x7f000000cffc)=0x4, 0x9, 0x4, 0x0, 0x0, 0x400000)
futex(&(0x7f000000cffc)=0x4, 0x9, 0x4, 0x0, 0x0, 0x400000)
futex(&(0x7f000000cffc), 0x4, 0x0, &(0x7f0000fd7ff0), &(0x7f0000048000)=0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000300)="b9ff030768f1258c989e14f05c71", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xd, 0x4, 0x4, 0xffffffff, 0x0, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x50)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

275.246125ms ago: executing program 2 (id=305):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200a}, 0x94)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6"], 0x0}, 0x94)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x810004, &(0x7f0000000ac0)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x04\xc3\x00\x00\x00\x00\x00\x00\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000004c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@noblock_validity}, {@orlov}]}, 0x1, 0x599, &(0x7f0000001280)="$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")
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="070000000400000008000000d900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000edffffff0000000000"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r4, 0x0, 0xfffffffffffffffc}, 0x18)
socket$kcm(0xa, 0xf3533c6b60774f2f, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r5, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x3e, &(0x7f0000000100)=r6, 0x4)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x39, 0x1, 0x0, 0x8, 0x0, 0xa, 0x66420, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_config_ext={0x3ff, 0x100000001}, 0x63d8, 0x10000, 0x0, 0x1, 0x8, 0x2000a, 0xb, 0x0, 0x0, 0x0, 0x8000000000000002}, 0xffffffffffffffff, 0xffffffdffbffffff, 0xffffffffffffffff, 0x2)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="01032757c38d085641a7260000000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x20040005}, 0x8840)

274.907916ms ago: executing program 1 (id=306):
socket(0x10, 0x803, 0x0)
syz_socket_connect_nvme_tcp()
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x6, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="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", @ANYRES16=r0, @ANYBLOB="000000180576191868f3b40056ee884285000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00'}, 0x10)
faccessat(0xffffffffffffffff, 0x0, 0x5)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000280)={[{@grpquota}, {@journal_checksum}]}, 0x1, 0x46f, &(0x7f0000001200)="$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")
signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0x4]}, 0x8, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x10000802, 0x80, 0x0, 0x40000}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESDEC], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r1, &(0x7f0000001640)={0xfc, {"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", 0x1000}}, 0x1066)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffeb9}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x9, 0x3, &(0x7f0000000500)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3a56735ae5cec9c4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r2, 0x4, 0x0, 0xfffffffffffffdae, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x405}, 0x4e4a9eaac70c947b)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
linkat(r3, &(0x7f0000000440)='./file0/file0\x00', 0xffffffffffffffff, 0x0, 0x1400)
socket$nl_netfilter(0x10, 0x3, 0xc)
modify_ldt$write(0x1, &(0x7f0000000040)={0x4, 0x1000, 0x2000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)

256.034016ms ago: executing program 5 (id=307):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040))

246.852036ms ago: executing program 3 (id=308):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = getpgrp(0x0)
syz_pidfd_open(r0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x16, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='syzkaller\x00', 0xa, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x43, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdir(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000500)='kmem_cache_free\x00', r2}, 0x18)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xfffffffffffffd74, 0x40004, 0x0, 0x0)
recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000000000000000000009952c587aca5f0aa6ba084b7f59d3807612056b4754c1cfdfe060b49a98d95c13d9da59e0a20e95a3defb18b94b39f292c27da82eda4c1381392902b25ce8d4485ea8cae6c7922dc267bfc3d20b0c8e55045a84f02ec397cb9594ce63473f19e472dc572b05c87a"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sys_enter\x00', r3}, 0x10)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
r4 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0xc5)
close(r4)
rseq(&(0x7f0000000600)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
r5 = inotify_init1(0x800)
fcntl$setstatus(r4, 0x4, 0x2c00)
r6 = gettid()
fcntl$setown(r4, 0x8, r6)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(r5, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000100)='./control\x00')

179.972997ms ago: executing program 5 (id=309):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd71, 0xffffffffffffffff}, 0x78)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=ANY=[@ANYBLOB="84000000180001002cbd7000ffdbdf251d0107000c000b00040000a00300008015000100030000a006000000bac45f9ce14233bd0000000008000900", @ANYRES32=r5, @ANYBLOB="0c000b00000000e0020000a015000200010000a0070300007f15f0386605000b0200000008000a"], 0x84}}, 0x0)
ioctl$PPPIOCSMRU1(r4, 0x40047454, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000001a00)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5}, 0x50)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x102})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'rose0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r9}, 0x18)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
io_setup(0x3ff, &(0x7f0000000500)=<r11=>0x0)
io_getevents(r11, 0x3, 0x3, &(0x7f0000001dc0)=[{}, {}, {}], 0x0)
io_submit(r11, 0x1, &(0x7f0000000300)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r10, 0x0}])
io_destroy(r11)
sendmsg$nl_route(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r7], 0x20}}, 0x0)
close_range(r0, r8, 0x0)

142.664488ms ago: executing program 1 (id=310):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/15], 0x0, 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000810500"/20, @ANYRES32, @ANYBLOB="0000000000000000280012800a00010063616e"], 0x48}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x2000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

85.292999ms ago: executing program 1 (id=311):
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300000000000085daf461dc47e4bb2deedcbf512e000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket(0x10, 0x3, 0x9)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000013c0)=ANY=[@ANYBLOB="14000000530401"], 0x28}, 0x1, 0x0, 0x0, 0x2404d}, 0x40000)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x5}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x800, 0x4, 0x80, 0x2, 0x46b}, 0x4, 0x0, 0x9, 0x7, 0x7, 0x1, 0x2, 0x17, 0x7, 0x6, {0xa, 0x2, 0x3, 0xfffffffd, 0x5, 0xc}}}}]}, 0x78}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', r4, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0xfff2}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004080}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[], 0x1, 0x325, &(0x7f0000001740)="$eJzs3M9LI2cYwPEnMRljrE4OpaWF4kt7aS+DpvfSUBRKAxVrSn9A6Wgmbcg0kUywpJRVT3vZw7J/xB7Eozdh9R/wsrc97WVvXhb2sB6WnWV+JVGTNUZj1vX7AZmXeZ9n5n19NTzvQObol/v/VEqOUTIbEk8piYmIHItkJC6RWHiM+21NOm3KV5Mvnnz206+//ZDL5+eXlFrILX+dVUpNzzz69/+JMGxvXA4zfxw9zz47/Ojwk6PXy3+XHVV2VLXWUKZaqT1tmCu2pYplp2IotWhbpmOpctWx6kG/uyFiW6pk19bWmsqsFqfSa3XLcZRZbaqK1VSNmmrUm8r8yyxXlWEYaiot6GUjPBa2l5bM3IAXWb3CAWGI6vWcOSYiE2d6CtsjGRAAABipsP5vVftxr6QfpP5PdK3/dz4/aEz+vDsd1v97mlf/i3TU/3+2r2WpYrxV/6dEpF3/14L9wVXX/2cropvt3snFEddtNbVu8Zeq/3FDePV/Ovz/9W39vjPrN6j/AQAAAAAAAAAAAAAAAAAAAAC4CY5dV3ddVw+OY+FZVx8XkZT/DZKgf8TDxJCcXP/2D+t/O7Rf3JGYFrHvrhfWC8ExDDgQEVssmRVdXvl/DyGvrW0qP0h5MrJf/SDM31gvBJ8luZKU/fw50SVzOt91F77Pz8+pgOx7eVF+UtKd+VnR5cPu+dnT+UnvqMmXX3TkG6LL41WpiS3F8JtxUf6dOaW++zF/6v4TfhwAAAAAAO8DQ7Vkov3veGe/cbY/2B8H/cH+OiHdnw8E++vZrvv7hHyaGNWsAQAAAAC4XZzmfxXTtq36kBpbIjLkW/RoRDPsNyt6QW6PmJjEenVdQSO6+WDp3tguNwzZdN3wTLKv31h8oKHOaBdclK6N6LFRrxhZHOTKri5y2aX8+MHDl2+PCZ6MifRzwW92U+fMdNCGdt5Mk9f2AQQAAADg2rSL/ujMt6MdEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAt9AFXh6WPBms9f3KsVHPEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhXvAkAAP//5Mv/6w==")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r9, &(0x7f0000004200)='t', 0x1)
sendfile(r9, r8, 0x0, 0x3ffff)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r9, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="20000000000801010000000000000000070000020c0004800800064000000009b2be66f641fedf79fc5c5b601536378b79397055d886523d3897a8186e5c04c772e8c378d2c4ac4e856cde4ef18f25334fa6f2961e34397016504b6d9d8fc4473542128c216bcbaa86eea9bcff2e86dd834dfc12c42597b4094b155b117aefb4eb87cc80a0aaac12a6e39db944eca9fea8428eb3a13a581abed0ad16c650ba7be052341d692d04ce68ce37ccd1e1639b12f2be111dad9e41c7e572be1c0c6d1ec2865ec5213df2843621de338a85c229e73abc58d3495d52642eac21f9d57b332a86b5d3dc7cc22777b433288ae6c25532"], 0x20}, 0x1, 0x0, 0x0, 0x80b0}, 0x20000804)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(r9, r8, 0x0, 0x7ffff000)

0s ago: executing program 5 (id=312):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x6, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000001300)=""/238, 0xee}], 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000980), r1)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="210229bd7000fcdbdf2505000000080009000b0000005eda5c91115d4880b79053613297c37e4695dced6d37c5d76cb387c163d74fe29b3c939a339b6cfad4055f5da620cb74fe3c5bec"], 0x1c}, 0x1, 0x0, 0x0, 0x4044090}, 0x10)
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, 0x0, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x12, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00[\x00'], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setsig(r3, 0xa, 0x13)
fcntl$setlease(r3, 0x400, 0x0)
timer_create(0x0, &(0x7f00000005c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280)=<r7=>0x0)
timer_settime(r7, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r8, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'veth0_virt_wifi\x00', 0x2400000}, 0x18)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.211' (ED25519) to the list of known hosts.
[   77.535737][   T29] audit: type=1400 audit(1757698127.541:62): avc:  denied  { mounton } for  pid=3306 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   77.536605][ T3306] cgroup: Unknown subsys name 'net'
[   77.558477][   T29] audit: type=1400 audit(1757698127.541:63): avc:  denied  { mount } for  pid=3306 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   77.585905][   T29] audit: type=1400 audit(1757698127.571:64): avc:  denied  { unmount } for  pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   77.720141][ T3306] cgroup: Unknown subsys name 'cpuset'
[   77.726232][ T3306] cgroup: Unknown subsys name 'rlimit'
[   77.834858][   T29] audit: type=1400 audit(1757698127.841:65): avc:  denied  { setattr } for  pid=3306 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   77.858135][   T29] audit: type=1400 audit(1757698127.841:66): avc:  denied  { create } for  pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   77.878569][   T29] audit: type=1400 audit(1757698127.841:67): avc:  denied  { write } for  pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   77.891192][ T3308] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   77.898924][   T29] audit: type=1400 audit(1757698127.841:68): avc:  denied  { read } for  pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   77.927862][   T29] audit: type=1400 audit(1757698127.871:69): avc:  denied  { mounton } for  pid=3306 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   77.932097][ T3306] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   77.952657][   T29] audit: type=1400 audit(1757698127.871:70): avc:  denied  { mount } for  pid=3306 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   77.984560][   T29] audit: type=1400 audit(1757698127.921:71): avc:  denied  { relabelto } for  pid=3308 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   79.147472][ T3326] chnl_net:caif_netlink_parms(): no params data found
[   79.162271][ T3317] chnl_net:caif_netlink_parms(): no params data found
[   79.188558][ T3316] chnl_net:caif_netlink_parms(): no params data found
[   79.251890][ T3326] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.258951][ T3326] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.266374][ T3326] bridge_slave_0: entered allmulticast mode
[   79.272696][ T3326] bridge_slave_0: entered promiscuous mode
[   79.283316][ T3326] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.290390][ T3326] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.297482][ T3326] bridge_slave_1: entered allmulticast mode
[   79.304027][ T3326] bridge_slave_1: entered promiscuous mode
[   79.318005][ T3317] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.325352][ T3317] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.332469][ T3317] bridge_slave_0: entered allmulticast mode
[   79.338599][ T3317] bridge_slave_0: entered promiscuous mode
[   79.361730][ T3317] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.368856][ T3317] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.376138][ T3317] bridge_slave_1: entered allmulticast mode
[   79.382472][ T3317] bridge_slave_1: entered promiscuous mode
[   79.394508][ T3326] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.416653][ T3326] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.437543][ T3323] chnl_net:caif_netlink_parms(): no params data found
[   79.447206][ T3317] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.460499][ T3316] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.467567][ T3316] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.474720][ T3316] bridge_slave_0: entered allmulticast mode
[   79.481067][ T3316] bridge_slave_0: entered promiscuous mode
[   79.491952][ T3316] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.498999][ T3316] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.506208][ T3316] bridge_slave_1: entered allmulticast mode
[   79.512727][ T3316] bridge_slave_1: entered promiscuous mode
[   79.519690][ T3317] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.535613][ T3326] team0: Port device team_slave_0 added
[   79.541428][ T3327] chnl_net:caif_netlink_parms(): no params data found
[   79.551004][ T3326] team0: Port device team_slave_1 added
[   79.586423][ T3316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.606771][ T3326] batman_adv: batadv0: Adding interface: batadv_slave_0
[   79.613784][ T3326] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.639799][ T3326] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   79.650953][ T3326] batman_adv: batadv0: Adding interface: batadv_slave_1
[   79.657897][ T3326] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.683971][ T3326] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   79.695832][ T3316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.705704][ T3317] team0: Port device team_slave_0 added
[   79.712057][ T3317] team0: Port device team_slave_1 added
[   79.757818][ T3323] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.764973][ T3323] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.772928][ T3323] bridge_slave_0: entered allmulticast mode
[   79.779136][ T3323] bridge_slave_0: entered promiscuous mode
[   79.786410][ T3316] team0: Port device team_slave_0 added
[   79.792945][ T3316] team0: Port device team_slave_1 added
[   79.798774][ T3317] batman_adv: batadv0: Adding interface: batadv_slave_0
[   79.805724][ T3317] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.831642][ T3317] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   79.849106][ T3323] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.856270][ T3323] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.863526][ T3323] bridge_slave_1: entered allmulticast mode
[   79.869935][ T3323] bridge_slave_1: entered promiscuous mode
[   79.881129][ T3317] batman_adv: batadv0: Adding interface: batadv_slave_1
[   79.888140][ T3317] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.914417][ T3317] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   79.949331][ T3316] batman_adv: batadv0: Adding interface: batadv_slave_0
[   79.956287][ T3316] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.982183][ T3316] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   79.993693][ T3316] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.000727][ T3316] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.026621][ T3316] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.043768][ T3326] hsr_slave_0: entered promiscuous mode
[   80.049894][ T3326] hsr_slave_1: entered promiscuous mode
[   80.056867][ T3323] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.067342][ T3323] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.079037][ T3327] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.086203][ T3327] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.093436][ T3327] bridge_slave_0: entered allmulticast mode
[   80.099826][ T3327] bridge_slave_0: entered promiscuous mode
[   80.106817][ T3327] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.113887][ T3327] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.121121][ T3327] bridge_slave_1: entered allmulticast mode
[   80.127545][ T3327] bridge_slave_1: entered promiscuous mode
[   80.175135][ T3323] team0: Port device team_slave_0 added
[   80.185720][ T3327] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.196101][ T3327] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.207089][ T3317] hsr_slave_0: entered promiscuous mode
[   80.213403][ T3317] hsr_slave_1: entered promiscuous mode
[   80.219171][ T3317] debugfs: 'hsr0' already exists in 'hsr'
[   80.224935][ T3317] Cannot create hsr debugfs directory
[   80.235765][ T3323] team0: Port device team_slave_1 added
[   80.257064][ T3316] hsr_slave_0: entered promiscuous mode
[   80.263113][ T3316] hsr_slave_1: entered promiscuous mode
[   80.268830][ T3316] debugfs: 'hsr0' already exists in 'hsr'
[   80.274561][ T3316] Cannot create hsr debugfs directory
[   80.287077][ T3327] team0: Port device team_slave_0 added
[   80.304162][ T3323] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.311164][ T3323] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.337173][ T3323] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.352806][ T3327] team0: Port device team_slave_1 added
[   80.367710][ T3323] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.374749][ T3323] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.400747][ T3323] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.448263][ T3327] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.455275][ T3327] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.481217][ T3327] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.505970][ T3327] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.512946][ T3327] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.538931][ T3327] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.566852][ T3323] hsr_slave_0: entered promiscuous mode
[   80.572830][ T3323] hsr_slave_1: entered promiscuous mode
[   80.578706][ T3323] debugfs: 'hsr0' already exists in 'hsr'
[   80.584437][ T3323] Cannot create hsr debugfs directory
[   80.643004][ T3327] hsr_slave_0: entered promiscuous mode
[   80.648899][ T3327] hsr_slave_1: entered promiscuous mode
[   80.654676][ T3327] debugfs: 'hsr0' already exists in 'hsr'
[   80.660402][ T3327] Cannot create hsr debugfs directory
[   80.693780][ T3326] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   80.702202][ T3326] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   80.719508][ T3326] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   80.740843][ T3326] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   80.764753][ T3317] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   80.781192][ T3317] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   80.790202][ T3317] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   80.807308][ T3317] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   80.846892][ T3316] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   80.859756][ T3316] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   80.872788][ T3316] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   80.883535][ T3316] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   80.915285][ T3323] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   80.925078][ T3323] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   80.933697][ T3323] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   80.942737][ T3323] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   80.954167][ T3317] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.986221][ T3326] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.993944][ T3327] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   81.009255][ T3317] 8021q: adding VLAN 0 to HW filter on device team0
[   81.016980][ T3327] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   81.034251][ T3326] 8021q: adding VLAN 0 to HW filter on device team0
[   81.042323][ T3327] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   81.053398][ T1453] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.060468][ T1453] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.070244][ T3327] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   81.084610][ T1453] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.091681][ T1453] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.102308][ T1453] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.109579][ T1453] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.123848][ T1453] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.131090][ T1453] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.185687][ T3316] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.194134][ T3326] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   81.207297][ T3317] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   81.233748][ T3323] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.251909][ T3323] 8021q: adding VLAN 0 to HW filter on device team0
[   81.261320][ T3316] 8021q: adding VLAN 0 to HW filter on device team0
[   81.273883][ T1453] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.280999][ T1453] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.296628][ T1453] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.303883][ T1453] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.312318][ T1453] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.319387][ T1453] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.331091][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.338147][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.356143][ T3317] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.377609][ T3327] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.385304][ T3316] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   81.395910][ T3316] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   81.431629][ T3326] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.445446][ T3327] 8021q: adding VLAN 0 to HW filter on device team0
[   81.464054][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.471211][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.485414][ T3317] veth0_vlan: entered promiscuous mode
[   81.493727][ T3317] veth1_vlan: entered promiscuous mode
[   81.526116][ T3316] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.536211][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.543391][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.558830][ T3317] veth0_macvtap: entered promiscuous mode
[   81.566442][ T3317] veth1_macvtap: entered promiscuous mode
[   81.586690][ T3327] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   81.597141][ T3327] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   81.620531][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.641830][ T3323] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.663603][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.671328][ T3326] veth0_vlan: entered promiscuous mode
[   81.700147][ T3326] veth1_vlan: entered promiscuous mode
[   81.711877][   T51] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.740777][ T3326] veth0_macvtap: entered promiscuous mode
[   81.748219][   T51] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.758002][   T51] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.781217][   T51] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.796987][ T3327] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.805447][ T3326] veth1_macvtap: entered promiscuous mode
[   81.832405][ T3323] veth0_vlan: entered promiscuous mode
[   81.845500][ T3326] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.854817][ T3323] veth1_vlan: entered promiscuous mode
[   81.855453][ T3317] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   81.865973][ T3316] veth0_vlan: entered promiscuous mode
[   81.890795][ T3326] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.901930][   T31] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.913100][ T3316] veth1_vlan: entered promiscuous mode
[   81.929405][ T3323] veth0_macvtap: entered promiscuous mode
[   81.943016][   T31] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.960138][ T3323] veth1_macvtap: entered promiscuous mode
[   81.976604][ T3323] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.993099][ T3482] ipvlan2: entered promiscuous mode
[   81.999624][ T3482] bridge0: port 3(ipvlan2) entered blocking state
[   82.006195][ T3482] bridge0: port 3(ipvlan2) entered disabled state
[   82.013476][ T3482] ipvlan2: entered allmulticast mode
[   82.018809][ T3482] bridge0: entered allmulticast mode
[   82.024534][ T3482] ipvlan2: left allmulticast mode
[   82.029576][ T3482] bridge0: left allmulticast mode
[   82.036876][   T31] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.048288][ T3316] veth0_macvtap: entered promiscuous mode
[   82.056179][ T3323] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.065385][   T31] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.075749][ T3316] veth1_macvtap: entered promiscuous mode
[   82.089182][ T3488] tmpfs: Unknown parameter 'mpo‚'
[   82.095856][ T3488] nfs4: Bad value for 'source'
[   82.103441][   T31] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.119256][ T3327] veth0_vlan: entered promiscuous mode
[   82.128197][   T31] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.140270][ T3482] syz.1.2 (3482) used greatest stack depth: 10272 bytes left
[   82.147917][ T3488] loop0: detected capacity change from 0 to 512
[   82.158486][ T3327] veth1_vlan: entered promiscuous mode
[   82.168866][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.177587][   T31] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.196393][ T3492] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   82.204475][ T3327] veth0_macvtap: entered promiscuous mode
[   82.218714][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.225998][   T31] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.234861][ T3490] Zero length message leads to an empty skb
[   82.237539][ T3327] veth1_macvtap: entered promiscuous mode
[   82.241093][ T3491] netlink: 14 bytes leftover after parsing attributes in process `syz.1.6'.
[   82.257243][ T3491] hsr_slave_0: left promiscuous mode
[   82.258335][ T3488] EXT4-fs warning (device loop0): ext4_xattr_inode_get:556: inode #11: comm syz.0.1: EA inode hash validation failed
[   82.275118][ T3491] hsr_slave_1: left promiscuous mode
[   82.276702][ T3488] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   82.295268][ T3488] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #15: comm syz.0.1: corrupted inode contents
[   82.307118][ T3488] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #15: comm syz.0.1: mark_inode_dirty error
[   82.310167][   T31] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.320289][ T3488] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #15: comm syz.0.1: corrupted inode contents
[   82.347589][ T3488] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #15: comm syz.0.1: mark_inode_dirty error
[   82.350602][ T3327] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.367374][   T31] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.387518][   T31] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.396312][ T3488] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #15: comm syz.0.1: mark inode dirty (error -117)
[   82.399319][ T3327] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.418094][ T3488] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117)
[   82.426382][   T31] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.428552][ T3488] EXT4-fs (loop0): 1 orphan inode deleted
[   82.442961][ T3488] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.454183][ T2799] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.471474][ T2799] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.497422][ T2799] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.519182][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.545737][   T31] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.547437][   T29] kauditd_printk_skb: 50 callbacks suppressed
[   82.547457][   T29] audit: type=1400 audit(1757698132.551:122): avc:  denied  { execute } for  pid=3505 comm="syz.3.4" path="/0/cpu.stat" dev="tmpfs" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   82.567016][   T29] audit: type=1400 audit(1757698132.571:123): avc:  denied  { connect } for  pid=3497 comm="syz.2.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   82.656135][   T29] audit: type=1400 audit(1757698132.641:124): avc:  denied  { name_bind } for  pid=3516 comm="syz.3.9" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   82.656180][   T29] audit: type=1400 audit(1757698132.641:125): avc:  denied  { node_bind } for  pid=3516 comm="syz.3.9" saddr=::ffff:172.20.20.187 src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   82.732835][ T3519] FAULT_INJECTION: forcing a failure.
[   82.732835][ T3519] name failslab, interval 1, probability 0, space 0, times 0
[   82.732949][ T3519] CPU: 0 UID: 0 PID: 3519 Comm: syz.0.10 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   82.732969][ T3519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   82.732980][ T3519] Call Trace:
[   82.733019][ T3519]  <TASK>
[   82.733025][ T3519]  __dump_stack+0x1d/0x30
[   82.733046][ T3519]  dump_stack_lvl+0xe8/0x140
[   82.733065][ T3519]  dump_stack+0x15/0x1b
[   82.733080][ T3519]  should_fail_ex+0x265/0x280
[   82.733103][ T3519]  should_failslab+0x8c/0xb0
[   82.733150][ T3519]  kmem_cache_alloc_noprof+0x50/0x310
[   82.733175][ T3519]  ? skb_clone+0x151/0x1f0
[   82.733278][ T3519]  skb_clone+0x151/0x1f0
[   82.733307][ T3519]  __netlink_deliver_tap+0x2c9/0x500
[   82.733353][ T3519]  netlink_unicast+0x66b/0x690
[   82.733376][ T3519]  netlink_sendmsg+0x58b/0x6b0
[   82.733400][ T3519]  ? __pfx_netlink_sendmsg+0x10/0x10
[   82.733465][ T3519]  __sock_sendmsg+0x145/0x180
[   82.733495][ T3519]  sock_write_iter+0x165/0x1b0
[   82.733588][ T3519]  ? __pfx_sock_write_iter+0x10/0x10
[   82.733614][ T3519]  vfs_write+0x52a/0x960
[   82.733639][ T3519]  ksys_write+0xda/0x1a0
[   82.733731][ T3519]  __x64_sys_write+0x40/0x50
[   82.733860][ T3519]  x64_sys_call+0x27fe/0x2ff0
[   82.733881][ T3519]  do_syscall_64+0xd2/0x200
[   82.733910][ T3519]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   82.733933][ T3519]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   82.733967][ T3519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.733986][ T3519] RIP: 0033:0x7f75d3a8eba9
[   82.734078][ T3519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.734094][ T3519] RSP: 002b:00007f75d24ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   82.734116][ T3519] RAX: ffffffffffffffda RBX: 00007f75d3cd5fa0 RCX: 00007f75d3a8eba9
[   82.734128][ T3519] RDX: 0000000000000011 RSI: 0000200000000080 RDI: 0000000000000003
[   82.734140][ T3519] RBP: 00007f75d24ef090 R08: 0000000000000000 R09: 0000000000000000
[   82.734152][ T3519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.734163][ T3519] R13: 00007f75d3cd6038 R14: 00007f75d3cd5fa0 R15: 00007fffce81d4b8
[   82.734247][ T3519]  </TASK>
[   82.787161][ T3521] loop0: detected capacity change from 0 to 1024
[   82.787549][ T3521] journal_path: Non-blockdev passed as './file1'
[   82.787563][ T3521] EXT4-fs: error: could not find journal device path
[   82.808757][ T3523] netlink: 'syz.4.12': attribute type 10 has an invalid length.
[   82.866154][   T29] audit: type=1400 audit(1757698132.871:126): avc:  denied  { create } for  pid=3522 comm="syz.4.12" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   82.869557][   T29] audit: type=1400 audit(1757698132.871:127): avc:  denied  { bind } for  pid=3522 comm="syz.4.12" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   82.893748][ T3530] ipvlan2: entered promiscuous mode
[   82.895854][   T29] audit: type=1400 audit(1757698132.871:128): avc:  denied  { write } for  pid=3522 comm="syz.4.12" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   82.902395][ T3530] bridge0: port 3(ipvlan2) entered blocking state
[   83.143366][ T3530] bridge0: port 3(ipvlan2) entered disabled state
[   83.159812][ T3530] ipvlan2: entered allmulticast mode
[   83.165151][ T3530] bridge0: entered allmulticast mode
[   83.173269][ T3530] ipvlan2: left allmulticast mode
[   83.173284][ T3530] bridge0: left allmulticast mode
[   83.334449][   T29] audit: type=1326 audit(1757698133.341:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3534 comm="syz.3.15" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   83.357854][   T29] audit: type=1326 audit(1757698133.341:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3534 comm="syz.3.15" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   83.381100][   T29] audit: type=1326 audit(1757698133.341:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3534 comm="syz.3.15" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   83.381505][ T3535] loop3: detected capacity change from 0 to 512
[   83.425192][ T3540] IPv6: Can't replace route, no match found
[   83.434939][ T3535] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   83.441799][ T3540] netlink: 'syz.2.16': attribute type 4 has an invalid length.
[   83.459213][ T3535] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   83.466810][ T3540] netlink: 'syz.2.16': attribute type 4 has an invalid length.
[   83.494665][ T3544] loop1: detected capacity change from 0 to 512
[   83.511043][ T3544] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   83.554885][ T3544] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   83.676897][ T3547] netlink: 8 bytes leftover after parsing attributes in process `syz.2.20'.
[   83.688874][ T3551] loop3: detected capacity change from 0 to 512
[   83.703520][ T3551] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   83.735140][ T3551] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   83.882564][ T3569] loop2: detected capacity change from 0 to 512
[   83.897780][ T3572] tmpfs: Unknown parameter 'mpo‚'
[   83.908539][ T3569] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   83.916440][ T3573] loop0: detected capacity change from 0 to 2048
[   83.929134][ T3572] nfs4: Bad value for 'source'
[   83.938741][ T3572] loop3: detected capacity change from 0 to 512
[   83.949897][ T3569] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[   83.960115][ T3572] EXT4-fs warning (device loop3): ext4_xattr_inode_get:556: inode #11: comm syz.3.26: EA inode hash validation failed
[   83.960886][ T3573] EXT4-fs (loop0): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.972927][ T3572] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #15: comm syz.3.26: corrupted inode contents
[   84.029934][ T3572] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #15: comm syz.3.26: mark_inode_dirty error
[   84.030596][ T3326] EXT4-fs (loop0): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[   84.065824][ T3572] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #15: comm syz.3.26: corrupted inode contents
[   84.089009][ T3584] loop1: detected capacity change from 0 to 164
[   84.095498][ T3572] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #15: comm syz.3.26: mark_inode_dirty error
[   84.097863][ T3583] FAULT_INJECTION: forcing a failure.
[   84.097863][ T3583] name failslab, interval 1, probability 0, space 0, times 0
[   84.110706][ T3572] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #15: comm syz.3.26: mark inode dirty (error -117)
[   84.119937][ T3583] CPU: 0 UID: 0 PID: 3583 Comm: syz.4.31 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.120004][ T3583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.120013][ T3583] Call Trace:
[   84.120019][ T3583]  <TASK>
[   84.120026][ T3583]  __dump_stack+0x1d/0x30
[   84.120079][ T3583]  dump_stack_lvl+0xe8/0x140
[   84.120098][ T3583]  dump_stack+0x15/0x1b
[   84.120114][ T3583]  should_fail_ex+0x265/0x280
[   84.120136][ T3583]  should_failslab+0x8c/0xb0
[   84.120167][ T3583]  kmem_cache_alloc_node_noprof+0x57/0x320
[   84.120200][ T3583]  ? __alloc_skb+0x101/0x320
[   84.120221][ T3583]  __alloc_skb+0x101/0x320
[   84.120242][ T3583]  netlink_alloc_large_skb+0xba/0xf0
[   84.120264][ T3583]  netlink_sendmsg+0x3cf/0x6b0
[   84.120316][ T3583]  ? __pfx_netlink_sendmsg+0x10/0x10
[   84.120341][ T3583]  __sock_sendmsg+0x145/0x180
[   84.120370][ T3583]  ____sys_sendmsg+0x31e/0x4e0
[   84.120462][ T3583]  ___sys_sendmsg+0x17b/0x1d0
[   84.120535][ T3583]  __x64_sys_sendmsg+0xd4/0x160
[   84.120563][ T3583]  x64_sys_call+0x191e/0x2ff0
[   84.120645][ T3583]  do_syscall_64+0xd2/0x200
[   84.120672][ T3583]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   84.120731][ T3583]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.120757][ T3583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.120834][ T3583] RIP: 0033:0x7f755e38eba9
[   84.120849][ T3583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.120944][ T3583] RSP: 002b:00007f755cdf7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.120963][ T3583] RAX: ffffffffffffffda RBX: 00007f755e5d5fa0 RCX: 00007f755e38eba9
[   84.120975][ T3583] RDX: 0000000020000010 RSI: 0000200000000080 RDI: 0000000000000005
[   84.120988][ T3583] RBP: 00007f755cdf7090 R08: 0000000000000000 R09: 0000000000000000
[   84.121068][ T3583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.121080][ T3583] R13: 00007f755e5d6038 R14: 00007f755e5d5fa0 R15: 00007fff980739c8
[   84.121097][ T3583]  </TASK>
[   84.174239][ T3587] netlink: 28 bytes leftover after parsing attributes in process `syz.4.32'.
[   84.220517][ T3572] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[   84.220570][ T3572] EXT4-fs (loop3): 1 orphan inode deleted
[   84.225217][ T3587] netlink: 28 bytes leftover after parsing attributes in process `syz.4.32'.
[   84.235133][ T3587] loop4: detected capacity change from 0 to 1024
[   84.307195][ T3572] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.316242][ T3587] =======================================================
[   84.316242][ T3587] WARNING: The mand mount option has been deprecated and
[   84.316242][ T3587]          and is ignored by this kernel. Remove the mand
[   84.316242][ T3587]          option from the mount to silence this warning.
[   84.316242][ T3587] =======================================================
[   84.322437][ T3584] process 'syz.1.30' launched '/dev/fd/3' with NULL argv: empty string added
[   84.335897][ T3587] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   84.454999][ T3587] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #3: block 1: comm syz.4.32: lblock 1 mapped to illegal pblock 1 (length 1)
[   84.479475][ T3587] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.32: Failed to acquire dquot type 0
[   84.491732][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.505038][ T3587] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.32: Freeing blocks not in datazone - block = 0, count = 4096
[   84.531845][ T3604] dns_resolver: Unsupported content type (231)
[   84.534791][ T3587] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.32: Invalid inode bitmap blk 0 in block_group 0
[   84.555496][ T3459] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[   84.589250][ T3587] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[   84.610577][ T3459] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 0
[   84.622139][ T3587] EXT4-fs (loop4): 1 orphan inode deleted
[   84.628229][ T3587] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.741313][ T3618] netlink: 12 bytes leftover after parsing attributes in process `syz.1.40'.
[   84.819474][ T3622] netlink: 'syz.1.41': attribute type 10 has an invalid length.
[   84.827144][ T3622] netlink: 40 bytes leftover after parsing attributes in process `syz.1.41'.
[   84.838424][ T3622] dummy0: entered promiscuous mode
[   84.843968][ T3623] Driver unsupported XDP return value 0 on prog  (id 34) dev N/A, expect packet loss!
[   84.854323][ T3622] bridge0: port 3(dummy0) entered blocking state
[   84.860836][ T3622] bridge0: port 3(dummy0) entered disabled state
[   84.882899][ T3622] dummy0: entered allmulticast mode
[   84.900155][ T3622] bridge0: port 3(dummy0) entered blocking state
[   84.906667][ T3622] bridge0: port 3(dummy0) entered forwarding state
[   84.920767][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.955486][ T3631] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=3631 comm=syz.1.44
[   85.186392][ T3641] FAULT_INJECTION: forcing a failure.
[   85.186392][ T3641] name failslab, interval 1, probability 0, space 0, times 0
[   85.199081][ T3641] CPU: 0 UID: 0 PID: 3641 Comm: syz.2.45 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.199109][ T3641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.199121][ T3641] Call Trace:
[   85.199128][ T3641]  <TASK>
[   85.199160][ T3641]  __dump_stack+0x1d/0x30
[   85.199181][ T3641]  dump_stack_lvl+0xe8/0x140
[   85.199214][ T3641]  dump_stack+0x15/0x1b
[   85.199281][ T3641]  should_fail_ex+0x265/0x280
[   85.199322][ T3641]  should_failslab+0x8c/0xb0
[   85.199347][ T3641]  __kmalloc_noprof+0xa5/0x3e0
[   85.199374][ T3641]  ? bpf_test_init+0xa9/0x160
[   85.199446][ T3641]  bpf_test_init+0xa9/0x160
[   85.199489][ T3641]  bpf_prog_test_run_xdp+0x274/0x910
[   85.199513][ T3641]  ? kstrtouint+0x76/0xc0
[   85.199579][ T3641]  ? __rcu_read_unlock+0x4f/0x70
[   85.199603][ T3641]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.199674][ T3641]  bpf_prog_test_run+0x227/0x390
[   85.199702][ T3641]  __sys_bpf+0x4b9/0x7b0
[   85.199804][ T3641]  __x64_sys_bpf+0x41/0x50
[   85.199872][ T3641]  x64_sys_call+0x2aea/0x2ff0
[   85.199971][ T3641]  do_syscall_64+0xd2/0x200
[   85.200002][ T3641]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   85.200026][ T3641]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   85.200053][ T3641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.200090][ T3641] RIP: 0033:0x7feb793aeba9
[   85.200106][ T3641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.200123][ T3641] RSP: 002b:00007feb77e0f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.200165][ T3641] RAX: ffffffffffffffda RBX: 00007feb795f5fa0 RCX: 00007feb793aeba9
[   85.200179][ T3641] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[   85.200192][ T3641] RBP: 00007feb77e0f090 R08: 0000000000000000 R09: 0000000000000000
[   85.200204][ T3641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.200217][ T3641] R13: 00007feb795f6038 R14: 00007feb795f5fa0 R15: 00007ffc4d185a28
[   85.200237][ T3641]  </TASK>
[   85.636316][ T3646] loop0: detected capacity change from 0 to 764
[   85.752158][ T3646] netlink: 16 bytes leftover after parsing attributes in process `syz.0.46'.
[   85.973392][ T3671] tmpfs: Unknown parameter 'mpo‚'
[   85.982767][ T3673] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   85.994538][ T3671] nfs4: Bad value for 'source'
[   86.000603][ T3671] loop2: detected capacity change from 0 to 512
[   86.002706][ T3673] netlink: 4 bytes leftover after parsing attributes in process `syz.3.54'.
[   86.024897][ T3671] EXT4-fs warning (device loop2): ext4_xattr_inode_get:556: inode #11: comm syz.2.57: EA inode hash validation failed
[   86.025056][ T3671] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.57: corrupted inode contents
[   86.029721][ T3671] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #15: comm syz.2.57: mark_inode_dirty error
[   86.029914][ T3671] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.57: corrupted inode contents
[   86.029999][ T3671] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #15: comm syz.2.57: mark_inode_dirty error
[   86.030084][ T3671] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #15: comm syz.2.57: mark inode dirty (error -117)
[   86.030224][ T3671] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   86.030312][ T3671] EXT4-fs (loop2): 1 orphan inode deleted
[   86.030739][ T3671] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.046304][ T3673] veth0_macvtap: left promiscuous mode
[   86.047041][ T3679] loop0: detected capacity change from 0 to 164
[   86.047998][ T3679] Unable to read rock-ridge attributes
[   86.086155][ T3679] FAULT_INJECTION: forcing a failure.
[   86.086155][ T3679] name failslab, interval 1, probability 0, space 0, times 0
[   86.086179][ T3679] CPU: 1 UID: 0 PID: 3679 Comm: syz.0.59 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   86.086200][ T3679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   86.086211][ T3679] Call Trace:
[   86.086233][ T3679]  <TASK>
[   86.086238][ T3679]  __dump_stack+0x1d/0x30
[   86.086256][ T3679]  dump_stack_lvl+0xe8/0x140
[   86.086271][ T3679]  dump_stack+0x15/0x1b
[   86.086283][ T3679]  should_fail_ex+0x265/0x280
[   86.086302][ T3679]  should_failslab+0x8c/0xb0
[   86.086392][ T3679]  __kmalloc_noprof+0xa5/0x3e0
[   86.086413][ T3679]  ? do_handle_open+0x3a3/0x6b0
[   86.086435][ T3679]  do_handle_open+0x3a3/0x6b0
[   86.086456][ T3679]  __x64_sys_open_by_handle_at+0x44/0x50
[   86.086506][ T3679]  x64_sys_call+0x279b/0x2ff0
[   86.086522][ T3679]  do_syscall_64+0xd2/0x200
[   86.086546][ T3679]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   86.086583][ T3679]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   86.086662][ T3679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.086678][ T3679] RIP: 0033:0x7f75d3a8eba9
[   86.086690][ T3679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.086703][ T3679] RSP: 002b:00007f75d24ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[   86.086781][ T3679] RAX: ffffffffffffffda RBX: 00007f75d3cd5fa0 RCX: 00007f75d3a8eba9
[   86.086861][ T3679] RDX: 0000000000000000 RSI: 0000200000000180 RDI: ffffffffffffff9c
[   86.086947][ T3679] RBP: 00007f75d24ef090 R08: 0000000000000000 R09: 0000000000000000
[   86.086956][ T3679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.086965][ T3679] R13: 00007f75d3cd6038 R14: 00007f75d3cd5fa0 R15: 00007fffce81d4b8
[   86.087012][ T3679]  </TASK>
[   86.154343][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.276399][ T3673] loop3: detected capacity change from 0 to 512
[   86.329128][ T3684] netlink: 24 bytes leftover after parsing attributes in process `syz.1.60'.
[   86.359381][ T3686] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=3686 comm=syz.0.62
[   86.390018][ T3673] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   86.403154][ T3673] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   86.451680][ T3673] EXT4-fs (loop3): 1 truncate cleaned up
[   86.462788][ T3673] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.532731][    C0] hrtimer: interrupt took 36446 ns
[   86.658310][ T3712] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=3712 comm=syz.2.68
[   86.671719][ T3709] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=3709 comm=syz.4.66
[   86.738850][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.584493][ T3727] loop3: detected capacity change from 0 to 1024
[   87.617793][ T3727] journal_path: Non-blockdev passed as './file1'
[   87.624197][ T3727] EXT4-fs: error: could not find journal device path
[   87.741360][ T3730] loop3: detected capacity change from 0 to 1024
[   87.831319][ T3732] netlink: 24 bytes leftover after parsing attributes in process `syz.0.74'.
[   87.977811][ T3730] journal_path: Non-blockdev passed as './file1'
[   87.984202][ T3730] EXT4-fs: error: could not find journal device path
[   88.205044][ T3739] loop0: detected capacity change from 0 to 512
[   88.283903][ T3739] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.313906][ T3739] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   88.370897][   T29] kauditd_printk_skb: 548 callbacks suppressed
[   88.370911][   T29] audit: type=1400 audit(1757698138.381:677): avc:  denied  { write open } for  pid=3738 comm="syz.0.76" path="/18/bus/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   88.415116][   T29] audit: type=1400 audit(1757698138.411:678): avc:  denied  { read } for  pid=3738 comm="syz.0.76" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   88.436984][   T29] audit: type=1400 audit(1757698138.411:679): avc:  denied  { create } for  pid=3717 comm="syz.1.72" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   88.453244][ T3756] usb usb8: usbfs: process 3756 (syz.1.72) did not claim interface 0 before use
[   88.456438][   T29] audit: type=1400 audit(1757698138.411:680): avc:  denied  { bind } for  pid=3717 comm="syz.1.72" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   88.484707][   T29] audit: type=1400 audit(1757698138.421:681): avc:  denied  { write } for  pid=3717 comm="syz.1.72" name="001" dev="devtmpfs" ino=168 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   88.488216][ T3757] netlink: 256 bytes leftover after parsing attributes in process `syz.0.76'.
[   88.588988][   T29] audit: type=1400 audit(1757698138.481:682): avc:  denied  { ioctl } for  pid=3738 comm="syz.0.76" path="/18/bus/file1" dev="loop0" ino=15 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   88.693398][   T29] audit: type=1400 audit(1757698138.701:683): avc:  denied  { read write } for  pid=3749 comm="syz.3.79" name="rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   88.717478][   T29] audit: type=1400 audit(1757698138.701:684): avc:  denied  { open } for  pid=3749 comm="syz.3.79" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   88.797180][   T29] audit: type=1326 audit(1757698138.801:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3765 comm="syz.4.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755e38eba9 code=0x7ffc0000
[   88.824345][ T3768] loop3: detected capacity change from 0 to 764
[   88.836225][   T29] audit: type=1326 audit(1757698138.811:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3765 comm="syz.4.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755e38eba9 code=0x7ffc0000
[   88.889692][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.928882][ T3768] netlink: 16 bytes leftover after parsing attributes in process `syz.3.83'.
[   88.935824][ T3770] loop0: detected capacity change from 0 to 1024
[   88.968006][ T3770] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   89.000157][ T3770] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #3: block 1: comm syz.0.84: lblock 1 mapped to illegal pblock 1 (length 1)
[   89.019802][ T3774] loop3: detected capacity change from 0 to 512
[   89.027195][ T3778] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=3778 comm=syz.4.87
[   89.041487][ T3774] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   89.065694][ T3770] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.84: Failed to acquire dquot type 0
[   89.077041][ T3774] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[   89.095022][ T3770] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.84: Freeing blocks not in datazone - block = 0, count = 4096
[   89.187837][ T3783] loop3: detected capacity change from 0 to 1024
[   89.194656][ T3770] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.84: Invalid inode bitmap blk 0 in block_group 0
[   89.202105][ T3783] journal_path: Non-blockdev passed as './file1'
[   89.213463][ T3783] EXT4-fs: error: could not find journal device path
[   89.220490][   T51] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[   89.224461][ T3770] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   89.246303][ T3787] FAULT_INJECTION: forcing a failure.
[   89.246303][ T3787] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   89.259388][ T3787] CPU: 1 UID: 0 PID: 3787 Comm: syz.1.90 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   89.259469][ T3787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.259478][ T3787] Call Trace:
[   89.259484][ T3787]  <TASK>
[   89.259490][ T3787]  __dump_stack+0x1d/0x30
[   89.259587][ T3787]  dump_stack_lvl+0xe8/0x140
[   89.259604][ T3787]  dump_stack+0x15/0x1b
[   89.259670][ T3787]  should_fail_ex+0x265/0x280
[   89.259694][ T3787]  should_fail+0xb/0x20
[   89.259715][ T3787]  should_fail_usercopy+0x1a/0x20
[   89.259738][ T3787]  _copy_from_user+0x1c/0xb0
[   89.259818][ T3787]  __copy_msghdr+0x244/0x300
[   89.259840][ T3787]  ___sys_sendmsg+0x109/0x1d0
[   89.259952][ T3787]  __sys_sendmmsg+0x178/0x300
[   89.259983][ T3787]  __x64_sys_sendmmsg+0x57/0x70
[   89.260117][ T3787]  x64_sys_call+0x1c4a/0x2ff0
[   89.260175][ T3787]  do_syscall_64+0xd2/0x200
[   89.260206][ T3787]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   89.260231][ T3787]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.260334][ T3787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.260356][ T3787] RIP: 0033:0x7f216abbeba9
[   89.260508][ T3787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.260602][ T3787] RSP: 002b:00007f216961f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   89.260628][ T3787] RAX: ffffffffffffffda RBX: 00007f216ae05fa0 RCX: 00007f216abbeba9
[   89.260642][ T3787] RDX: 0000000000000002 RSI: 0000200000000a40 RDI: 0000000000000003
[   89.260654][ T3787] RBP: 00007f216961f090 R08: 0000000000000000 R09: 0000000000000000
[   89.260666][ T3787] R10: 0000000004004040 R11: 0000000000000246 R12: 0000000000000001
[   89.260676][ T3787] R13: 00007f216ae06038 R14: 00007f216ae05fa0 R15: 00007fff624eb208
[   89.260692][ T3787]  </TASK>
[   89.268563][ T3770] EXT4-fs (loop0): 1 orphan inode deleted
[   89.299977][   T51] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 0
[   89.305063][ T3770] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.661995][ T3791] loop3: detected capacity change from 0 to 1024
[   89.667516][ T3802] netlink: 24 bytes leftover after parsing attributes in process `syz.2.94'.
[   89.688787][ T3326] EXT4-fs error (device loop0): ext4_readdir:264: inode #2: block 16: comm syz-executor: path /19/file0: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[   89.711792][ T3326] EXT4-fs error (device loop0): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 11
[   89.724218][ T3791] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.725831][ T3326] EXT4-fs error (device loop0): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 11
[   89.731170][ T3791] EXT4-fs error (device loop3): __ext4_new_inode:1073: comm syz.3.91: reserved inode found cleared - inode=18
[   89.733494][ T3791] netlink: 36 bytes leftover after parsing attributes in process `syz.3.91'.
[   89.756191][ T3806] loop1: detected capacity change from 0 to 2048
[   89.822511][ T3818] loop2: detected capacity change from 0 to 764
[   89.837626][ T3818] netlink: 16 bytes leftover after parsing attributes in process `syz.2.96'.
[   89.852341][ T3806] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.950901][ T3806] tipc: Enabling of bearer <eth:syzkaller0
> rejected, failed to enable media
[   89.963478][ T3833] loop2: detected capacity change from 0 to 1024
[   89.974020][ T3833] journal_path: Non-blockdev passed as './file1'
[   89.980397][ T3833] EXT4-fs: error: could not find journal device path
[   89.987903][ T3801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.999733][   T51] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[   90.031785][   T31] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.061781][   T51] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 0
[   90.122723][   T31] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.181883][   T31] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.189712][ T3853] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.200700][ T3853] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.229730][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.263348][   T31] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.283161][ T3877] netlink: 24 bytes leftover after parsing attributes in process `syz.3.106'.
[   90.355117][ T3884] loop3: detected capacity change from 0 to 764
[   90.441231][ T3884] netlink: 8 bytes leftover after parsing attributes in process `syz.3.107'.
[   90.441603][   T31] bridge_slave_1: left allmulticast mode
[   90.455695][   T31] bridge_slave_1: left promiscuous mode
[   90.461436][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.469984][   T31] bridge_slave_0: left allmulticast mode
[   90.470365][ T3317] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[   90.475651][   T31] bridge_slave_0: left promiscuous mode
[   90.495871][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.495948][ T3317] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   90.515786][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.573117][ T3903] loop1: detected capacity change from 0 to 128
[   90.641686][   T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   90.652011][   T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   90.661983][   T31] bond0 (unregistering): Released all slaves
[   90.670504][ T3903] netlink: 8 bytes leftover after parsing attributes in process `syz.1.108'.
[   90.719449][   T31] hsr_slave_0: left promiscuous mode
[   90.738365][   T31] hsr_slave_1: left promiscuous mode
[   90.756339][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   90.763899][   T31] batman_adv: batadv0: Removing interface: batadv_slave_0
[   90.772964][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   90.780385][   T31] batman_adv: batadv0: Removing interface: batadv_slave_1
[   90.792240][   T31] veth1_macvtap: left promiscuous mode
[   90.797751][   T31] veth0_macvtap: left promiscuous mode
[   90.803443][   T31] veth1_vlan: left promiscuous mode
[   90.808710][   T31] veth0_vlan: left promiscuous mode
[   90.866059][   T31] team0 (unregistering): Port device team_slave_1 removed
[   90.878152][   T31] team0 (unregistering): Port device team_slave_0 removed
[   90.925116][ T3921] loop4: detected capacity change from 0 to 512
[   90.973938][ T3854] chnl_net:caif_netlink_parms(): no params data found
[   90.989814][ T3921] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   91.019539][ T3921] EXT4-fs (loop4): can't mount with journal_checksum, fs mounted w/o journal
[   91.080073][ T3854] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.080103][ T3854] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.080228][ T3854] bridge_slave_0: entered allmulticast mode
[   91.080759][ T3854] bridge_slave_0: entered promiscuous mode
[   91.082068][ T3854] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.082096][ T3854] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.082231][ T3854] bridge_slave_1: entered allmulticast mode
[   91.082840][ T3854] bridge_slave_1: entered promiscuous mode
[   91.100403][ T3945] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   91.195170][ T3954] netlink: 24 bytes leftover after parsing attributes in process `syz.1.116'.
[   91.212117][ T3854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.225465][ T3854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.259156][ T3854] team0: Port device team_slave_0 added
[   91.286977][ T3854] team0: Port device team_slave_1 added
[   91.368627][ T3854] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.375640][ T3854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.401595][ T3854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.423099][ T3977] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   91.447437][ T3981] loop1: detected capacity change from 0 to 1024
[   91.455761][ T3977] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   91.516884][ T3986] FAULT_INJECTION: forcing a failure.
[   91.516884][ T3986] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   91.530240][ T3986] CPU: 0 UID: 0 PID: 3986 Comm: syz.3.120 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   91.530267][ T3986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   91.530278][ T3986] Call Trace:
[   91.530303][ T3986]  <TASK>
[   91.530310][ T3986]  __dump_stack+0x1d/0x30
[   91.530331][ T3986]  dump_stack_lvl+0xe8/0x140
[   91.530406][ T3986]  dump_stack+0x15/0x1b
[   91.530419][ T3986]  should_fail_ex+0x265/0x280
[   91.530439][ T3986]  should_fail_alloc_page+0xf2/0x100
[   91.530464][ T3986]  __alloc_frozen_pages_noprof+0xff/0x360
[   91.530529][ T3986]  alloc_pages_mpol+0xb3/0x250
[   91.530562][ T3986]  alloc_pages_noprof+0x90/0x130
[   91.530591][ T3986]  pgd_alloc+0x51/0x2e0
[   91.530610][ T3986]  mm_init+0x377/0x7f0
[   91.530710][ T3986]  ? kmem_cache_alloc_noprof+0x220/0x310
[   91.530752][ T3986]  copy_mm+0x101/0x370
[   91.530784][ T3986]  copy_process+0xd08/0x2000
[   91.530882][ T3986]  kernel_clone+0x16c/0x5c0
[   91.530988][ T3986]  __x64_sys_clone+0xe6/0x120
[   91.531019][ T3986]  x64_sys_call+0x119c/0x2ff0
[   91.531042][ T3986]  do_syscall_64+0xd2/0x200
[   91.531074][ T3986]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   91.531108][ T3986]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   91.531150][ T3986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.531171][ T3986] RIP: 0033:0x7fdedc9aeba9
[   91.531185][ T3986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.531199][ T3986] RSP: 002b:00007fdedb3d4fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   91.531236][ T3986] RAX: ffffffffffffffda RBX: 00007fdedcbf6180 RCX: 00007fdedc9aeba9
[   91.531247][ T3986] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042164000
[   91.531260][ T3986] RBP: 00007fdedb3d5090 R08: 0000000000000000 R09: 0000000000000000
[   91.531273][ T3986] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   91.531285][ T3986] R13: 00007fdedcbf6218 R14: 00007fdedcbf6180 R15: 00007fff4dd148e8
[   91.531379][ T3986]  </TASK>
[   91.535935][ T3981] EXT4-fs: Ignoring removed orlov option
[   91.778624][ T3977] bond0 (unregistering): Released all slaves
[   91.798185][ T3981] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.814524][ T3854] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.821537][ T3854] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.847631][ T3854] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.882299][ T3854] hsr_slave_0: entered promiscuous mode
[   91.888855][ T3854] hsr_slave_1: entered promiscuous mode
[   92.337815][ T3854] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   92.349971][ T3854] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   92.360234][ T3854] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   92.369236][ T3854] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   92.404387][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.464099][ T3854] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.482987][ T3854] 8021q: adding VLAN 0 to HW filter on device team0
[   92.503852][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.510960][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.520418][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.527526][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.557188][ T3854] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   92.618038][ T3854] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.637087][ T4067] serio: Serial port ptm0
[   92.696729][ T4070] loop4: detected capacity change from 0 to 512
[   92.728505][ T4070] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   92.751851][ T4070] EXT4-fs (loop4): can't mount with journal_checksum, fs mounted w/o journal
[   92.760488][ T3854] veth0_vlan: entered promiscuous mode
[   92.772231][ T4083] FAULT_INJECTION: forcing a failure.
[   92.772231][ T4083] name failslab, interval 1, probability 0, space 0, times 0
[   92.772442][ T3854] veth1_vlan: entered promiscuous mode
[   92.785029][ T4083] CPU: 1 UID: 0 PID: 4083 Comm: syz.2.139 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   92.785131][ T4083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   92.785143][ T4083] Call Trace:
[   92.785150][ T4083]  <TASK>
[   92.785157][ T4083]  __dump_stack+0x1d/0x30
[   92.785237][ T4083]  dump_stack_lvl+0xe8/0x140
[   92.785255][ T4083]  dump_stack+0x15/0x1b
[   92.785327][ T4083]  should_fail_ex+0x265/0x280
[   92.785350][ T4083]  should_failslab+0x8c/0xb0
[   92.785397][ T4083]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   92.785425][ T4083]  ? sidtab_sid2str_get+0xa0/0x130
[   92.785500][ T4083]  kmemdup_noprof+0x2b/0x70
[   92.785591][ T4083]  sidtab_sid2str_get+0xa0/0x130
[   92.785617][ T4083]  security_sid_to_context_core+0x1eb/0x2e0
[   92.785639][ T4083]  security_sid_to_context+0x27/0x40
[   92.785658][ T4083]  avc_audit_post_callback+0x10f/0x520
[   92.785699][ T4083]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   92.785723][ T4083]  common_lsm_audit+0x1bb/0x230
[   92.785753][ T4083]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   92.785792][ T4083]  slow_avc_audit+0x104/0x140
[   92.785878][ T4083]  avc_has_perm+0x13a/0x180
[   92.785902][ T4083]  selinux_socket_getsockopt+0x175/0x1b0
[   92.785935][ T4083]  security_socket_getsockopt+0x46/0x80
[   92.786023][ T4083]  do_sock_getsockopt+0x57/0x240
[   92.786048][ T4083]  __x64_sys_getsockopt+0x11e/0x1a0
[   92.786130][ T4083]  x64_sys_call+0x2bc6/0x2ff0
[   92.786150][ T4083]  do_syscall_64+0xd2/0x200
[   92.786181][ T4083]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   92.786205][ T4083]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   92.786287][ T4083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.786309][ T4083] RIP: 0033:0x7feb793aeba9
[   92.786324][ T4083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.786341][ T4083] RSP: 002b:00007feb77e0f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   92.786360][ T4083] RAX: ffffffffffffffda RBX: 00007feb795f5fa0 RCX: 00007feb793aeba9
[   92.786372][ T4083] RDX: 0000000000000008 RSI: 000000000000010c RDI: 0000000000000004
[   92.786453][ T4083] RBP: 00007feb77e0f090 R08: 00002000000002c0 R09: 0000000000000000
[   92.786466][ T4083] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[   92.786497][ T4083] R13: 00007feb795f6038 R14: 00007feb795f5fa0 R15: 00007ffc4d185a28
[   92.786579][ T4083]  </TASK>
[   93.038528][ T3854] veth0_macvtap: entered promiscuous mode
[   93.051478][ T3854] veth1_macvtap: entered promiscuous mode
[   93.081756][ T3854] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.089574][ T4089] __nla_validate_parse: 3 callbacks suppressed
[   93.089587][ T4089] netlink: 44 bytes leftover after parsing attributes in process `syz.1.141'.
[   93.111563][ T3854] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.114391][   T56] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.114487][   T56] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.114554][   T56] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.114639][   T56] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.120794][ T4089] netlink: 12 bytes leftover after parsing attributes in process `syz.1.141'.
[   93.171726][ T4094] SELinux: security_context_str_to_sid (Ö) failed with errno=-22
[   93.176153][ T4094] loop2: detected capacity change from 0 to 1024
[   93.176428][ T4094] EXT4-fs: Ignoring removed orlov option
[   93.186490][ T4097] netlink: 8 bytes leftover after parsing attributes in process `syz.3.144'.
[   93.274035][ T4108] loop3: detected capacity change from 0 to 128
[   93.274785][ T4094] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   93.274840][ T4094] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.381101][   T29] kauditd_printk_skb: 742 callbacks suppressed
[   93.381115][   T29] audit: type=1400 audit(1757698143.391:1425): avc:  denied  { create } for  pid=4114 comm="syz.5.149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   93.424316][ T4115] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4115 comm=syz.5.149
[   93.464789][   T29] audit: type=1400 audit(1757698143.471:1426): avc:  denied  { unlink } for  pid=3854 comm="syz-executor" name="file0" dev="tmpfs" ino=28 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   93.575107][   T29] audit: type=1400 audit(1757698143.581:1427): avc:  denied  { unmount } for  pid=3327 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   93.688349][   T29] audit: type=1326 audit(1757698143.691:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.3.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   93.763932][   T29] audit: type=1326 audit(1757698143.721:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.3.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   93.787399][   T29] audit: type=1326 audit(1757698143.721:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.3.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   93.868912][ T4139] FAULT_INJECTION: forcing a failure.
[   93.868912][ T4139] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.882293][ T4139] CPU: 0 UID: 0 PID: 4139 Comm: syz.5.160 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   93.882322][ T4139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   93.882420][ T4139] Call Trace:
[   93.882426][ T4139]  <TASK>
[   93.882434][ T4139]  __dump_stack+0x1d/0x30
[   93.882466][ T4139]  dump_stack_lvl+0xe8/0x140
[   93.882499][ T4139]  dump_stack+0x15/0x1b
[   93.882520][ T4139]  should_fail_ex+0x265/0x280
[   93.882597][ T4139]  should_fail+0xb/0x20
[   93.882660][ T4139]  should_fail_usercopy+0x1a/0x20
[   93.882733][ T4139]  _copy_from_user+0x1c/0xb0
[   93.882765][ T4139]  __se_sys_mount+0x10d/0x2e0
[   93.882788][ T4139]  ? fput+0x8f/0xc0
[   93.882887][ T4139]  ? ksys_write+0x192/0x1a0
[   93.882911][ T4139]  __x64_sys_mount+0x67/0x80
[   93.882934][ T4139]  x64_sys_call+0x2b4d/0x2ff0
[   93.882999][ T4139]  do_syscall_64+0xd2/0x200
[   93.883032][ T4139]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   93.883057][ T4139]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   93.883086][ T4139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.883142][ T4139] RIP: 0033:0x7f2abba4eba9
[   93.883157][ T4139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.883214][ T4139] RSP: 002b:00007f2aba4af038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   93.883233][ T4139] RAX: ffffffffffffffda RBX: 00007f2abbc95fa0 RCX: 00007f2abba4eba9
[   93.883278][ T4139] RDX: 0000200000000640 RSI: 0000200000000000 RDI: 0000000000000000
[   93.883291][ T4139] RBP: 00007f2aba4af090 R08: 0000200000000200 R09: 0000000000000000
[   93.883304][ T4139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.883317][ T4139] R13: 00007f2abbc96038 R14: 00007f2abbc95fa0 R15: 00007ffe1a086e28
[   93.883335][ T4139]  </TASK>
[   93.885023][   T29] audit: type=1400 audit(1757698143.891:1431): avc:  denied  { mounton } for  pid=4138 comm="syz.5.160" path="/6/file0" dev="tmpfs" ino=49 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   94.088262][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   94.131088][ T4151] FAULT_INJECTION: forcing a failure.
[   94.131088][ T4151] name failslab, interval 1, probability 0, space 0, times 0
[   94.143837][ T4151] CPU: 1 UID: 0 PID: 4151 Comm: syz.4.163 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   94.143881][ T4151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   94.143892][ T4151] Call Trace:
[   94.143897][ T4151]  <TASK>
[   94.143903][ T4151]  __dump_stack+0x1d/0x30
[   94.143925][ T4151]  dump_stack_lvl+0xe8/0x140
[   94.144054][ T4151]  dump_stack+0x15/0x1b
[   94.144070][ T4151]  should_fail_ex+0x265/0x280
[   94.144092][ T4151]  should_failslab+0x8c/0xb0
[   94.144160][ T4151]  kmem_cache_alloc_noprof+0x50/0x310
[   94.144249][ T4151]  ? skb_clone+0x151/0x1f0
[   94.144275][ T4151]  skb_clone+0x151/0x1f0
[   94.144298][ T4151]  __netlink_deliver_tap+0x2c9/0x500
[   94.144348][ T4151]  ? netlink_attachskb+0x2d0/0x610
[   94.144365][ T4151]  netlink_sendskb+0x126/0x150
[   94.144382][ T4151]  netlink_unicast+0x2a2/0x690
[   94.144403][ T4151]  netlink_ack+0x4c8/0x500
[   94.144427][ T4151]  netlink_rcv_skb+0x192/0x220
[   94.144486][ T4151]  ? __pfx_genl_rcv_msg+0x10/0x10
[   94.144517][ T4151]  genl_rcv+0x28/0x40
[   94.144543][ T4151]  netlink_unicast+0x5bd/0x690
[   94.144617][ T4151]  netlink_sendmsg+0x58b/0x6b0
[   94.144641][ T4151]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.144764][ T4151]  __sock_sendmsg+0x145/0x180
[   94.144873][ T4151]  ____sys_sendmsg+0x31e/0x4e0
[   94.144975][ T4151]  ___sys_sendmsg+0x17b/0x1d0
[   94.145008][ T4151]  __x64_sys_sendmsg+0xd4/0x160
[   94.145034][ T4151]  x64_sys_call+0x191e/0x2ff0
[   94.145055][ T4151]  do_syscall_64+0xd2/0x200
[   94.145110][ T4151]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   94.145132][ T4151]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   94.145159][ T4151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.145251][ T4151] RIP: 0033:0x7f755e38eba9
[   94.145266][ T4151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.145282][ T4151] RSP: 002b:00007f755cdf7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.145299][ T4151] RAX: ffffffffffffffda RBX: 00007f755e5d5fa0 RCX: 00007f755e38eba9
[   94.145365][ T4151] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[   94.145378][ T4151] RBP: 00007f755cdf7090 R08: 0000000000000000 R09: 0000000000000000
[   94.145390][ T4151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.145470][ T4151] R13: 00007f755e5d6038 R14: 00007f755e5d5fa0 R15: 00007fff980739c8
[   94.145486][ T4151]  </TASK>
[   94.159726][ T4147] loop5: detected capacity change from 0 to 128
[   94.160093][ T4149] serio: Serial port ptm0
[   94.161888][ T4147] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[   94.161906][ T4147] FAT-fs (loop5): Filesystem has been set read-only
[   94.161916][ T4147] syz.5.162: attempt to access beyond end of device
[   94.161916][ T4147] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   94.161993][ T4147] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[   94.162009][ T4147] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[   94.162225][ T4147] syz.5.162: attempt to access beyond end of device
[   94.162225][ T4147] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.162297][ T4147] syz.5.162: attempt to access beyond end of device
[   94.162297][ T4147] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.162346][ T4147] syz.5.162: attempt to access beyond end of device
[   94.162346][ T4147] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.162376][ T4147] syz.5.162: attempt to access beyond end of device
[   94.162376][ T4147] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.162404][ T4147] syz.5.162: attempt to access beyond end of device
[   94.162404][ T4147] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.162462][ T4147] syz.5.162: attempt to access beyond end of device
[   94.162462][ T4147] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.162513][ T4147] syz.5.162: attempt to access beyond end of device
[   94.162513][ T4147] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.162564][ T4147] syz.5.162: attempt to access beyond end of device
[   94.162564][ T4147] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.162607][ T4147] syz.5.162: attempt to access beyond end of device
[   94.162607][ T4147] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.219529][   T29] audit: type=1400 audit(1757698144.221:1432): avc:  denied  { bind } for  pid=4148 comm="syz.2.161" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   94.230378][ T4147] Buffer I/O error on dev loop5, logical block 2065, async page read
[   94.230403][ T4147] Buffer I/O error on dev loop5, logical block 2066, async page read
[   94.230419][ T4147] Buffer I/O error on dev loop5, logical block 2067, async page read
[   94.230474][ T4147] Buffer I/O error on dev loop5, logical block 2068, async page read
[   94.230491][ T4147] Buffer I/O error on dev loop5, logical block 2069, async page read
[   94.230507][ T4147] Buffer I/O error on dev loop5, logical block 2070, async page read
[   94.230523][ T4147] Buffer I/O error on dev loop5, logical block 2071, async page read
[   94.230540][ T4147] Buffer I/O error on dev loop5, logical block 2072, async page read
[   94.230635][ T4157] Buffer I/O error on dev loop5, logical block 2065, async page read
[   94.230652][ T4157] Buffer I/O error on dev loop5, logical block 2066, async page read
[   94.233019][ T4155] loop4: detected capacity change from 0 to 8192
[   94.276076][ T4159] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[   94.463079][   T29] audit: type=1400 audit(1757698144.461:1433): avc:  denied  { validate_trans } for  pid=4154 comm="syz.4.165" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   94.841224][   T29] audit: type=1326 audit(1757698144.841:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4164 comm="syz.1.167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216abbeba9 code=0x7ffc0000
[   95.005135][ T4171] loop3: detected capacity change from 0 to 164
[   95.026844][ T4171] rock: directory entry would overflow storage
[   95.033137][ T4171] rock: sig=0x66, size=4, remaining=3
[   95.043914][ T4171] rock: directory entry would overflow storage
[   95.050151][ T4171] rock: sig=0x66, size=4, remaining=3
[   95.072126][ T4181] loop5: detected capacity change from 0 to 128
[   95.181065][ T4194] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4194 comm=syz.4.178
[   95.270802][ T4202] netlink: 96 bytes leftover after parsing attributes in process `syz.1.181'.
[   95.319385][ T4206] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.341334][ T4202] loop1: detected capacity change from 0 to 1024
[   95.347954][ T4202] EXT4-fs: inline encryption not supported
[   95.379986][ T4202] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   95.442072][ T4202] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   95.455806][ T4202] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.181: lblock 2 mapped to illegal pblock 2 (length 1)
[   95.456076][ T4211] serio: Serial port ptm0
[   95.472601][ T4202] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.181: lblock 0 mapped to illegal pblock 48 (length 1)
[   95.488459][ T4202] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.181: Failed to acquire dquot type 0
[   95.500996][ T4202] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   95.501020][ T4206] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.510490][ T4202] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.181: mark_inode_dirty error
[   95.532240][ T4202] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   95.543750][ T4202] EXT4-fs (loop1): 1 orphan inode deleted
[   95.549929][ T4202] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.563135][   T56] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[   95.578233][ T4206] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.578644][   T56] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 0
[   95.603902][ T4202] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.614182][ T4202] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.181: Invalid inode table block 1 in block_group 0
[   95.627118][ T4202] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   95.636731][ T4202] EXT4-fs error (device loop1): ext4_quota_off:7221: inode #3: comm syz.1.181: mark_inode_dirty error
[   95.670749][ T4206] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.689030][ T4202] netlink: 8 bytes leftover after parsing attributes in process `syz.1.181'.
[   95.759711][   T51] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.768415][   T51] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.783283][   T51] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.791642][   T51] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.915338][ T4222] loop4: detected capacity change from 0 to 8192
[   95.989921][ T4232] netlink: 14 bytes leftover after parsing attributes in process `syz.5.191'.
[   96.004401][ T4234] netlink: 24 bytes leftover after parsing attributes in process `syz.1.192'.
[   96.033242][ T4232] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   96.043072][ T4238] netlink: 'syz.3.194': attribute type 1 has an invalid length.
[   96.060125][ T4239] loop5: detected capacity change from 0 to 1024
[   96.070365][ T4232] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   96.075531][ T4239] EXT4-fs: Ignoring removed orlov option
[   96.087613][ T4232] bond0 (unregistering): Released all slaves
[   96.099370][ T4239] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.108598][ T4238] loop3: detected capacity change from 0 to 512
[   96.151759][ T4238] EXT4-fs: Ignoring removed oldalloc option
[   96.177724][ T4238] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.194: Parent and EA inode have the same ino 15
[   96.245097][ T4238] EXT4-fs (loop3): 1 orphan inode deleted
[   96.263189][ T4238] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.382797][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.396939][ T4251] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[   96.444973][ T4258] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=4258 comm=syz.1.199
[   96.582470][ T4265] SELinux: security_context_str_to_sid (Ö) failed with errno=-22
[   96.854623][ T3854] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.871069][ T4260] loop3: detected capacity change from 0 to 1024
[   96.884599][ T4260] EXT4-fs: Ignoring removed orlov option
[   96.902383][ T4260] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   96.929900][ T4260] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.204762][ T4282] netlink: 24 bytes leftover after parsing attributes in process `syz.5.205'.
[   97.249787][ T4287] loop2: detected capacity change from 0 to 1024
[   97.256664][ T4287] EXT4-fs: inline encryption not supported
[   97.263139][ T4287] EXT4-fs: Ignoring removed bh option
[   97.287560][ T4290] rdma_op ffff88810445b180 conn xmit_rdma 0000000000000000
[   97.312691][ T4293] netlink: 14 bytes leftover after parsing attributes in process `syz.5.210'.
[   97.325362][ T4287] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.346219][ T4296] loop1: detected capacity change from 0 to 512
[   97.356077][ T4296] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.365807][ T4287] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.369154][ T4293] loop5: detected capacity change from 0 to 1024
[   97.380944][ T4296] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1128: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   97.383501][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   97.396883][ T4293] EXT4-fs: Ignoring removed orlov option
[   97.411957][ T4296] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.211: bg 0: block 248: padding at end of block bitmap is not set
[   97.427513][ T4296] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.211: Failed to acquire dquot type 1
[   97.440173][ T4296] EXT4-fs (loop1): 1 truncate cleaned up
[   97.443021][ T4293] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.446455][ T4296] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[   97.492536][ T4296] syz.1.211 (4296) used greatest stack depth: 9200 bytes left
[   97.501707][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[   97.534335][ T4313] netlink: 24 bytes leftover after parsing attributes in process `syz.1.217'.
[   97.540751][ T4315] FAULT_INJECTION: forcing a failure.
[   97.540751][ T4315] name failslab, interval 1, probability 0, space 0, times 0
[   97.555839][ T4315] CPU: 1 UID: 0 PID: 4315 Comm: syz.2.218 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   97.555865][ T4315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   97.555884][ T4315] Call Trace:
[   97.555890][ T4315]  <TASK>
[   97.555897][ T4315]  __dump_stack+0x1d/0x30
[   97.555937][ T4315]  dump_stack_lvl+0xe8/0x140
[   97.555952][ T4315]  dump_stack+0x15/0x1b
[   97.555965][ T4315]  should_fail_ex+0x265/0x280
[   97.555984][ T4315]  should_failslab+0x8c/0xb0
[   97.556039][ T4315]  __kmalloc_noprof+0xa5/0x3e0
[   97.556060][ T4315]  ? bpf_test_init+0xa9/0x160
[   97.556078][ T4315]  bpf_test_init+0xa9/0x160
[   97.556095][ T4315]  bpf_prog_test_run_xdp+0x274/0x910
[   97.556164][ T4315]  ? kstrtouint+0x76/0xc0
[   97.556182][ T4315]  ? __rcu_read_unlock+0x4f/0x70
[   97.556201][ T4315]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   97.556219][ T4315]  bpf_prog_test_run+0x227/0x390
[   97.556307][ T4315]  __sys_bpf+0x4b9/0x7b0
[   97.556332][ T4315]  __x64_sys_bpf+0x41/0x50
[   97.556350][ T4315]  x64_sys_call+0x2aea/0x2ff0
[   97.556382][ T4315]  do_syscall_64+0xd2/0x200
[   97.556406][ T4315]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   97.556424][ T4315]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   97.556522][ T4315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.556538][ T4315] RIP: 0033:0x7feb793aeba9
[   97.556550][ T4315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.556564][ T4315] RSP: 002b:00007feb77e0f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   97.556606][ T4315] RAX: ffffffffffffffda RBX: 00007feb795f5fa0 RCX: 00007feb793aeba9
[   97.556624][ T4315] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[   97.556634][ T4315] RBP: 00007feb77e0f090 R08: 0000000000000000 R09: 0000000000000000
[   97.556643][ T4315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.556652][ T4315] R13: 00007feb795f6038 R14: 00007feb795f5fa0 R15: 00007ffc4d185a28
[   97.556666][ T4315]  </TASK>
[   97.815101][ T3854] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.829184][ T4332] program syz.3.223 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.896716][ T4351] FAULT_INJECTION: forcing a failure.
[   97.896716][ T4351] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.909863][ T4351] CPU: 1 UID: 0 PID: 4351 Comm: syz.3.230 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   97.909964][ T4351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   97.909975][ T4351] Call Trace:
[   97.909983][ T4351]  <TASK>
[   97.909991][ T4351]  __dump_stack+0x1d/0x30
[   97.910012][ T4351]  dump_stack_lvl+0xe8/0x140
[   97.910028][ T4351]  dump_stack+0x15/0x1b
[   97.910042][ T4351]  should_fail_ex+0x265/0x280
[   97.910122][ T4351]  should_fail+0xb/0x20
[   97.910139][ T4351]  should_fail_usercopy+0x1a/0x20
[   97.910158][ T4351]  _copy_from_user+0x1c/0xb0
[   97.910232][ T4351]  simple_transaction_get+0xe2/0x130
[   97.910253][ T4351]  selinux_transaction_write+0x9d/0x110
[   97.910280][ T4351]  ? __pfx_selinux_transaction_write+0x10/0x10
[   97.910455][ T4351]  vfs_write+0x269/0x960
[   97.910477][ T4351]  ? __rcu_read_unlock+0x4f/0x70
[   97.910499][ T4351]  ? __fget_files+0x184/0x1c0
[   97.910590][ T4351]  ksys_write+0xda/0x1a0
[   97.910612][ T4351]  __x64_sys_write+0x40/0x50
[   97.910658][ T4351]  x64_sys_call+0x27fe/0x2ff0
[   97.910675][ T4351]  do_syscall_64+0xd2/0x200
[   97.910717][ T4351]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   97.910811][ T4351]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   97.910841][ T4351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.910859][ T4351] RIP: 0033:0x7fdedc9aeba9
[   97.910981][ T4351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.911069][ T4351] RSP: 002b:00007fdedb417038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   97.911088][ T4351] RAX: ffffffffffffffda RBX: 00007fdedcbf5fa0 RCX: 00007fdedc9aeba9
[   97.911099][ T4351] RDX: 000000000000005a RSI: 0000200000000540 RDI: 0000000000000006
[   97.911109][ T4351] RBP: 00007fdedb417090 R08: 0000000000000000 R09: 0000000000000000
[   97.911196][ T4351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.911207][ T4351] R13: 00007fdedcbf6038 R14: 00007fdedcbf5fa0 R15: 00007fff4dd148e8
[   97.911222][ T4351]  </TASK>
[   98.135514][ T4359] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4359 comm=syz.3.232
[   98.199280][ T4374] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=4374 comm=syz.5.234
[   98.211637][ T4376] capability: warning: `syz.2.236' uses deprecated v2 capabilities in a way that may be insecure
[   98.212311][ T4375] __nla_validate_parse: 1 callbacks suppressed
[   98.212322][ T4375] netlink: 14 bytes leftover after parsing attributes in process `syz.3.235'.
[   98.222696][ T4376] FAULT_INJECTION: forcing a failure.
[   98.222696][ T4376] name failslab, interval 1, probability 0, space 0, times 0
[   98.250137][ T4376] CPU: 0 UID: 0 PID: 4376 Comm: syz.2.236 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   98.250161][ T4376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.250171][ T4376] Call Trace:
[   98.250177][ T4376]  <TASK>
[   98.250184][ T4376]  __dump_stack+0x1d/0x30
[   98.250203][ T4376]  dump_stack_lvl+0xe8/0x140
[   98.250255][ T4376]  dump_stack+0x15/0x1b
[   98.250264][ T4376]  should_fail_ex+0x265/0x280
[   98.250278][ T4376]  should_failslab+0x8c/0xb0
[   98.250292][ T4376]  kmem_cache_alloc_node_noprof+0x57/0x320
[   98.250365][ T4376]  ? __alloc_skb+0x101/0x320
[   98.250378][ T4376]  __alloc_skb+0x101/0x320
[   98.250390][ T4376]  sock_omalloc+0x81/0xf0
[   98.250403][ T4376]  msg_zerocopy_realloc+0x84/0x420
[   98.250449][ T4376]  ? __ipv6_dev_get_saddr+0x246/0x270
[   98.250465][ T4376]  __ip6_append_data+0xa80/0x2390
[   98.250482][ T4376]  ? ip6_route_output_flags+0x229/0x2c0
[   98.250530][ T4376]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   98.250548][ T4376]  ? __rcu_read_unlock+0x4f/0x70
[   98.250559][ T4376]  ? __pfx_ip6_mtu+0x10/0x10
[   98.250570][ T4376]  ? ip6_mtu+0xf5/0x120
[   98.250581][ T4376]  ip6_make_skb+0x1da/0x4a0
[   98.250606][ T4376]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   98.250641][ T4376]  udpv6_sendmsg+0x137e/0x1590
[   98.250652][ T4376]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   98.250691][ T4376]  ? _raw_spin_unlock_bh+0x36/0x40
[   98.250709][ T4376]  ? __pfx_udpv6_sendmsg+0x10/0x10
[   98.250719][ T4376]  inet6_sendmsg+0xac/0xd0
[   98.250729][ T4376]  __sock_sendmsg+0x8b/0x180
[   98.250774][ T4376]  __sys_sendto+0x268/0x330
[   98.250791][ T4376]  __x64_sys_sendto+0x76/0x90
[   98.250864][ T4376]  x64_sys_call+0x2d05/0x2ff0
[   98.250875][ T4376]  do_syscall_64+0xd2/0x200
[   98.250907][ T4376]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   98.250936][ T4376]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.250951][ T4376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.250963][ T4376] RIP: 0033:0x7feb793aeba9
[   98.250972][ T4376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.250982][ T4376] RSP: 002b:00007feb77e0f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   98.251026][ T4376] RAX: ffffffffffffffda RBX: 00007feb795f5fa0 RCX: 00007feb793aeba9
[   98.251033][ T4376] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   98.251040][ T4376] RBP: 00007feb77e0f090 R08: 00002000000000c0 R09: 000000000000001c
[   98.251046][ T4376] R10: 00000000340108a0 R11: 0000000000000246 R12: 0000000000000001
[   98.251053][ T4376] R13: 00007feb795f6038 R14: 00007feb795f5fa0 R15: 00007ffc4d185a28
[   98.251063][ T4376]  </TASK>
[   98.253379][ T4375] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   98.288730][ T4377] loop3: detected capacity change from 0 to 1024
[   98.530460][ T4377] EXT4-fs: Ignoring removed orlov option
[   98.539877][ T4375] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   98.551183][ T4375] bond0 (unregistering): Released all slaves
[   98.562927][ T4377] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.618728][ T4387] FAULT_INJECTION: forcing a failure.
[   98.618728][ T4387] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.631882][ T4387] CPU: 1 UID: 0 PID: 4387 Comm: syz.2.240 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   98.631982][ T4387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.632007][ T4387] Call Trace:
[   98.632014][ T4387]  <TASK>
[   98.632022][ T4387]  __dump_stack+0x1d/0x30
[   98.632044][ T4387]  dump_stack_lvl+0xe8/0x140
[   98.632098][ T4387]  dump_stack+0x15/0x1b
[   98.632115][ T4387]  should_fail_ex+0x265/0x280
[   98.632139][ T4387]  should_fail+0xb/0x20
[   98.632159][ T4387]  should_fail_usercopy+0x1a/0x20
[   98.632258][ T4387]  _copy_from_user+0x1c/0xb0
[   98.632372][ T4387]  __copy_msghdr+0x244/0x300
[   98.632398][ T4387]  ___sys_sendmsg+0x109/0x1d0
[   98.632495][ T4387]  __x64_sys_sendmsg+0xd4/0x160
[   98.632524][ T4387]  x64_sys_call+0x191e/0x2ff0
[   98.632546][ T4387]  do_syscall_64+0xd2/0x200
[   98.632610][ T4387]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   98.632640][ T4387]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.632669][ T4387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.632690][ T4387] RIP: 0033:0x7feb793aeba9
[   98.632706][ T4387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.632761][ T4387] RSP: 002b:00007feb77e0f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.632781][ T4387] RAX: ffffffffffffffda RBX: 00007feb795f5fa0 RCX: 00007feb793aeba9
[   98.632793][ T4387] RDX: 0000000000000000 RSI: 0000200000000b40 RDI: 0000000000000006
[   98.632813][ T4387] RBP: 00007feb77e0f090 R08: 0000000000000000 R09: 0000000000000000
[   98.632825][ T4387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.632837][ T4387] R13: 00007feb795f6038 R14: 00007feb795f5fa0 R15: 00007ffc4d185a28
[   98.632856][ T4387]  </TASK>
[   98.640134][   T29] kauditd_printk_skb: 161 callbacks suppressed
[   98.640195][   T29] audit: type=1326 audit(1757698148.641:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   98.843221][   T29] audit: type=1326 audit(1757698148.641:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   98.866864][   T29] audit: type=1326 audit(1757698148.661:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   98.890260][   T29] audit: type=1326 audit(1757698148.771:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   98.913609][   T29] audit: type=1326 audit(1757698148.771:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   98.937100][   T29] audit: type=1326 audit(1757698148.771:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   98.960432][   T29] audit: type=1326 audit(1757698148.771:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   98.983717][   T29] audit: type=1326 audit(1757698148.771:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdedc9aeba9 code=0x7ffc0000
[   99.368287][ T4404] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4404 comm=syz.4.246
[   99.395088][   T29] audit: type=1326 audit(1757698149.161:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4396 comm="syz.4.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755e38eba9 code=0x7ffc0000
[   99.401868][ T4406] netlink: 24 bytes leftover after parsing attributes in process `syz.2.247'.
[   99.418915][   T29] audit: type=1326 audit(1757698149.161:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4396 comm="syz.4.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755e38eba9 code=0x7ffc0000
[   99.507051][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.517100][ T4412] loop5: detected capacity change from 0 to 764
[   99.526641][ T4408] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=4408 comm=syz.4.248
[   99.581377][ T4417] netlink: 12 bytes leftover after parsing attributes in process `syz.2.252'.
[   99.617653][ T4420] serio: Serial port ptm0
[   99.789859][ T4438] serio: Serial port ptm1
[   99.804928][ T4441] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[   99.821070][ T4443] loop1: detected capacity change from 0 to 512
[   99.830961][ T4443] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   99.843227][ T4443] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   99.957065][ T4449] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4449 comm=syz.2.258
[   99.978285][ T4450] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[  100.058567][ T4454] netlink: 24 bytes leftover after parsing attributes in process `syz.2.260'.
[  100.105135][ T4456] FAULT_INJECTION: forcing a failure.
[  100.105135][ T4456] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.118268][ T4456] CPU: 1 UID: 0 PID: 4456 Comm: syz.2.261 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.118291][ T4456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  100.118300][ T4456] Call Trace:
[  100.118306][ T4456]  <TASK>
[  100.118313][ T4456]  __dump_stack+0x1d/0x30
[  100.118415][ T4456]  dump_stack_lvl+0xe8/0x140
[  100.118477][ T4456]  dump_stack+0x15/0x1b
[  100.118490][ T4456]  should_fail_ex+0x265/0x280
[  100.118513][ T4456]  should_fail+0xb/0x20
[  100.118561][ T4456]  should_fail_usercopy+0x1a/0x20
[  100.118581][ T4456]  strncpy_from_user+0x25/0x230
[  100.118606][ T4456]  ? kmem_cache_alloc_noprof+0x186/0x310
[  100.118628][ T4456]  ? getname_flags+0x80/0x3b0
[  100.118681][ T4456]  getname_flags+0xae/0x3b0
[  100.118704][ T4456]  user_path_at+0x28/0x130
[  100.118805][ T4456]  __x64_sys_umount+0x85/0xe0
[  100.118821][ T4456]  x64_sys_call+0xdd2/0x2ff0
[  100.118879][ T4456]  do_syscall_64+0xd2/0x200
[  100.118928][ T4456]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  100.118955][ T4456]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  100.118981][ T4456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.119035][ T4456] RIP: 0033:0x7feb793aeba9
[  100.119047][ T4456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.119061][ T4456] RSP: 002b:00007feb77e0f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  100.119080][ T4456] RAX: ffffffffffffffda RBX: 00007feb795f5fa0 RCX: 00007feb793aeba9
[  100.119093][ T4456] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000280
[  100.119106][ T4456] RBP: 00007feb77e0f090 R08: 0000000000000000 R09: 0000000000000000
[  100.119119][ T4456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.119212][ T4456] R13: 00007feb795f6038 R14: 00007feb795f5fa0 R15: 00007ffc4d185a28
[  100.119230][ T4456]  </TASK>
[  100.594288][ T4501] FAULT_INJECTION: forcing a failure.
[  100.594288][ T4501] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.607487][ T4501] CPU: 0 UID: 0 PID: 4501 Comm: syz.4.278 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.607570][ T4501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  100.607580][ T4501] Call Trace:
[  100.607586][ T4501]  <TASK>
[  100.607593][ T4501]  __dump_stack+0x1d/0x30
[  100.607611][ T4501]  dump_stack_lvl+0xe8/0x140
[  100.607677][ T4501]  dump_stack+0x15/0x1b
[  100.607694][ T4501]  should_fail_ex+0x265/0x280
[  100.607717][ T4501]  should_fail+0xb/0x20
[  100.607736][ T4501]  should_fail_usercopy+0x1a/0x20
[  100.607781][ T4501]  _copy_from_user+0x1c/0xb0
[  100.607809][ T4501]  __copy_msghdr+0x244/0x300
[  100.607834][ T4501]  ___sys_sendmsg+0x109/0x1d0
[  100.607870][ T4501]  __x64_sys_sendmsg+0xd4/0x160
[  100.607915][ T4501]  x64_sys_call+0x191e/0x2ff0
[  100.607936][ T4501]  do_syscall_64+0xd2/0x200
[  100.607966][ T4501]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  100.608023][ T4501]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  100.608050][ T4501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.608141][ T4501] RIP: 0033:0x7f755e38eba9
[  100.608156][ T4501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.608172][ T4501] RSP: 002b:00007f755cdf7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.608204][ T4501] RAX: ffffffffffffffda RBX: 00007f755e5d5fa0 RCX: 00007f755e38eba9
[  100.608216][ T4501] RDX: 0000000000000020 RSI: 0000200000000400 RDI: 0000000000000003
[  100.608228][ T4501] RBP: 00007f755cdf7090 R08: 0000000000000000 R09: 0000000000000000
[  100.608240][ T4501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.608252][ T4501] R13: 00007f755e5d6038 R14: 00007f755e5d5fa0 R15: 00007fff980739c8
[  100.608269][ T4501]  </TASK>
[  100.686152][ T4508] loop4: detected capacity change from 0 to 2048
[  100.698400][ T4508] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.762106][ T4514] veth1_to_bond: entered allmulticast mode
[  100.899379][ T4514] veth1_to_bond: left allmulticast mode
[  101.037150][ T4524] serio: Serial port ptm0
[  101.064271][ T4527] syzkaller0: entered promiscuous mode
[  101.069824][ T4527] syzkaller0: entered allmulticast mode
[  101.167063][ T4537] SELinux:  Context  is not valid (left unmapped).
[  101.174575][ T4537] blkio.reset_stats is deprecated
[  101.180871][ T4537] tipc: Enabling of bearer <ib:bond0> rejected, failed to enable media
[  101.215355][ T4539] loop2: detected capacity change from 0 to 8192
[  101.243951][ T4545] loop3: detected capacity change from 0 to 2048
[  101.260792][ T4545] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.273111][ T4539]  loop2: p1 p2 < > p3 p4 < p5 >
[  101.278096][ T4539] loop2: partition table partially beyond EOD, truncated
[  101.289935][ T4539] loop2: p1 size 100663296 extends beyond EOD, truncated
[  101.303774][ T4539] loop2: p2 start 591104 is beyond EOD, truncated
[  101.310424][ T4539] loop2: p3 start 33572980 is beyond EOD, truncated
[  101.337359][ T4539] loop2: p5 size 100663296 extends beyond EOD, truncated
[  101.473186][ T4545] pim6reg: entered allmulticast mode
[  101.509830][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.520832][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.577469][ T4567] netlink: 24 bytes leftover after parsing attributes in process `syz.1.298'.
[  101.603032][ T4571] tipc: Started in network mode
[  101.607971][ T4571] tipc: Node identity 3ecfda235738, cluster identity 4711
[  101.615176][ T4571] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  101.622973][ T4571] syzkaller0: entered promiscuous mode
[  101.628435][ T4571] syzkaller0: entered allmulticast mode
[  101.636240][ T4571] FAULT_INJECTION: forcing a failure.
[  101.636240][ T4571] name failslab, interval 1, probability 0, space 0, times 0
[  101.648974][ T4571] CPU: 1 UID: 0 PID: 4571 Comm: syz.1.299 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  101.648999][ T4571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  101.649009][ T4571] Call Trace:
[  101.649017][ T4571]  <TASK>
[  101.649023][ T4571]  __dump_stack+0x1d/0x30
[  101.649042][ T4571]  dump_stack_lvl+0xe8/0x140
[  101.649061][ T4571]  dump_stack+0x15/0x1b
[  101.649105][ T4571]  should_fail_ex+0x265/0x280
[  101.649128][ T4571]  should_failslab+0x8c/0xb0
[  101.649151][ T4571]  kmem_cache_alloc_node_noprof+0x57/0x320
[  101.649179][ T4571]  ? __alloc_skb+0x101/0x320
[  101.649202][ T4571]  __alloc_skb+0x101/0x320
[  101.649279][ T4571]  rtmsg_ifinfo_build_skb+0x5f/0x1b0
[  101.649305][ T4571]  ? __rcu_read_unlock+0x4f/0x70
[  101.649325][ T4571]  ? __pfx_rtnetlink_event+0x10/0x10
[  101.649419][ T4571]  rtnetlink_event+0x18c/0x200
[  101.649447][ T4571]  raw_notifier_call_chain+0x6f/0x1b0
[  101.649466][ T4571]  ? call_netdevice_notifiers_info+0x9c/0x100
[  101.649498][ T4571]  call_netdevice_notifiers_info+0xae/0x100
[  101.649595][ T4571]  netif_set_mtu_ext+0x356/0x470
[  101.649618][ T4571]  netif_set_mtu+0x4a/0xf0
[  101.649641][ T4571]  dev_set_mtu+0xc1/0x170
[  101.649702][ T4571]  dev_ifsioc+0x474/0xaa0
[  101.649727][ T4571]  ? __rcu_read_unlock+0x4f/0x70
[  101.649747][ T4571]  dev_ioctl+0x70a/0x960
[  101.649772][ T4571]  sock_do_ioctl+0x197/0x220
[  101.649865][ T4571]  sock_ioctl+0x41b/0x610
[  101.649898][ T4571]  ? __pfx_sock_ioctl+0x10/0x10
[  101.649925][ T4571]  __se_sys_ioctl+0xce/0x140
[  101.650018][ T4571]  __x64_sys_ioctl+0x43/0x50
[  101.650033][ T4571]  x64_sys_call+0x1816/0x2ff0
[  101.650117][ T4571]  do_syscall_64+0xd2/0x200
[  101.650148][ T4571]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  101.650171][ T4571]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  101.650237][ T4571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.650257][ T4571] RIP: 0033:0x7f216abbeba9
[  101.650333][ T4571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.650349][ T4571] RSP: 002b:00007f216961f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  101.650368][ T4571] RAX: ffffffffffffffda RBX: 00007f216ae05fa0 RCX: 00007f216abbeba9
[  101.650447][ T4571] RDX: 0000200000002280 RSI: 0000000000008922 RDI: 0000000000000005
[  101.650459][ T4571] RBP: 00007f216961f090 R08: 0000000000000000 R09: 0000000000000000
[  101.650471][ T4571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.650484][ T4571] R13: 00007f216ae06038 R14: 00007f216ae05fa0 R15: 00007fff624eb208
[  101.650559][ T4571]  </TASK>
[  101.651501][ T4571] tipc: Resetting bearer <eth:syzkaller0>
[  101.696930][ T4575] loop4: detected capacity change from 0 to 512
[  101.920368][ T4570] tipc: Resetting bearer <eth:syzkaller0>
[  101.928236][ T4570] tipc: Disabling bearer <eth:syzkaller0>
[  101.944914][ T4575] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.957828][ T4575] ext4 filesystem being mounted at /49/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  101.971002][ T4575] EXT4-fs error (device loop4): ext4_lookup:1787: inode #12: comm syz.4.300: iget: bad i_size value: 2533274857506816
[  102.003933][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.081859][ T4591] loop1: detected capacity change from 0 to 512
[  102.098427][ T4591] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  102.108568][ T4591] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[  102.114723][ T4598] netlink: 24 bytes leftover after parsing attributes in process `syz.5.309'.
[  102.196066][ T4606] SELinux: security_context_str_to_sid (Ö) failed with errno=-22
[  102.211614][ T4608] netlink: 24 bytes leftover after parsing attributes in process `syz.1.310'.
[  102.222619][ T4606] loop2: detected capacity change from 0 to 1024
[  102.229377][ T4606] EXT4-fs: Ignoring removed orlov option
[  102.255416][ T4606] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  102.267534][ T4606] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.300068][ T4615] serio: Serial port ptm0
[  102.321136][ T4616] loop1: detected capacity change from 0 to 128
[  102.388761][ T4616] ==================================================================
[  102.396869][ T4616] BUG: KCSAN: data-race in __xa_set_mark / xas_find_marked
[  102.404088][ T4616] 
[  102.406416][ T4616] write to 0xffff88811a851414 of 4 bytes by task 4620 on cpu 0:
[  102.414049][ T4616]  __xa_set_mark+0x172/0x1a0
[  102.418638][ T4616]  __folio_mark_dirty+0x3af/0x4d0
[  102.423673][ T4616]  mark_buffer_dirty+0x11e/0x210
[  102.428609][ T4616]  block_write_end+0x12d/0x210
[  102.433372][ T4616]  generic_write_end+0x56/0x150
[  102.438228][ T4616]  fat_write_end+0x4f/0x160
[  102.442736][ T4616]  generic_perform_write+0x30f/0x490
[  102.448015][ T4616]  __generic_file_write_iter+0x9e/0x120
[  102.453581][ T4616]  generic_file_write_iter+0x8d/0x2f0
[  102.459035][ T4616]  iter_file_splice_write+0x663/0xa60
[  102.464401][ T4616]  direct_splice_actor+0x153/0x2a0
[  102.469518][ T4616]  splice_direct_to_actor+0x30f/0x680
[  102.474885][ T4616]  do_splice_direct+0xda/0x150
[  102.479647][ T4616]  do_sendfile+0x380/0x650
[  102.484080][ T4616]  __x64_sys_sendfile64+0x105/0x150
[  102.489288][ T4616]  x64_sys_call+0x2bb0/0x2ff0
[  102.493972][ T4616]  do_syscall_64+0xd2/0x200
[  102.498494][ T4616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.504384][ T4616] 
[  102.506792][ T4616] read to 0xffff88811a851414 of 4 bytes by task 4616 on cpu 1:
[  102.514330][ T4616]  xas_find_marked+0x5dc/0x620
[  102.519186][ T4616]  find_get_entry+0x5d/0x380
[  102.523772][ T4616]  filemap_get_folios_tag+0x92/0x210
[  102.529080][ T4616]  file_write_and_wait_range+0x1ea/0x2c0
[  102.534721][ T4616]  __generic_file_fsync+0x46/0x140
[  102.539833][ T4616]  fat_file_fsync+0x49/0x100
[  102.544412][ T4616]  vfs_fsync_range+0x10d/0x130
[  102.549193][ T4616]  generic_file_write_iter+0x1b8/0x2f0
[  102.554642][ T4616]  iter_file_splice_write+0x663/0xa60
[  102.560011][ T4616]  direct_splice_actor+0x153/0x2a0
[  102.565116][ T4616]  splice_direct_to_actor+0x30f/0x680
[  102.570487][ T4616]  do_splice_direct+0xda/0x150
[  102.575252][ T4616]  do_sendfile+0x380/0x650
[  102.579679][ T4616]  __x64_sys_sendfile64+0x105/0x150
[  102.584885][ T4616]  x64_sys_call+0x2bb0/0x2ff0
[  102.589643][ T4616]  do_syscall_64+0xd2/0x200
[  102.594155][ T4616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.600053][ T4616] 
[  102.602365][ T4616] value changed: 0x04000021 -> 0x0e000021
[  102.608073][ T4616] 
[  102.610387][ T4616] Reported by Kernel Concurrency Sanitizer on:
[  102.616529][ T4616] CPU: 1 UID: 0 PID: 4616 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[  102.625725][ T4616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  102.635771][ T4616] ==================================================================
[  102.818072][ T4620] ==================================================================
[  102.826182][ T4620] BUG: KCSAN: data-race in filemap_splice_read / filemap_splice_read
[  102.834257][ T4620] 
[  102.836577][ T4620] write to 0xffff8881047b7168 of 8 bytes by task 4616 on cpu 1:
[  102.844209][ T4620]  filemap_splice_read+0x4f4/0x740
[  102.849328][ T4620]  splice_direct_to_actor+0x26f/0x680
[  102.854699][ T4620]  do_splice_direct+0xda/0x150
[  102.859468][ T4620]  do_sendfile+0x380/0x650
[  102.863885][ T4620]  __x64_sys_sendfile64+0x105/0x150
[  102.869086][ T4620]  x64_sys_call+0x2bb0/0x2ff0
[  102.873761][ T4620]  do_syscall_64+0xd2/0x200
[  102.878271][ T4620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.884156][ T4620] 
[  102.886467][ T4620] write to 0xffff8881047b7168 of 8 bytes by task 4620 on cpu 0:
[  102.894094][ T4620]  filemap_splice_read+0x4f4/0x740
[  102.899209][ T4620]  splice_direct_to_actor+0x26f/0x680
[  102.904576][ T4620]  do_splice_direct+0xda/0x150
[  102.909344][ T4620]  do_sendfile+0x380/0x650
[  102.913771][ T4620]  __x64_sys_sendfile64+0x105/0x150
[  102.918968][ T4620]  x64_sys_call+0x2bb0/0x2ff0
[  102.923646][ T4620]  do_syscall_64+0xd2/0x200
[  102.928149][ T4620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.934037][ T4620] 
[  102.936348][ T4620] value changed: 0x0000000000000828 -> 0x0000000000000829
[  102.943467][ T4620] 
[  102.945873][ T4620] Reported by Kernel Concurrency Sanitizer on:
[  102.952022][ T4620] CPU: 0 UID: 0 PID: 4620 Comm: syz.1.311 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  102.961738][ T4620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  102.971790][ T4620] ==================================================================
[  103.070323][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.