last executing test programs:

54.613530766s ago: executing program 0 (id=584):
socket(0x2, 0x80805, 0x0) (async)
r0 = socket(0x2, 0x80805, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
sendmmsg$inet_sctp(r0, &(0x7f0000000880)=[{&(0x7f0000000040)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x8040) (async)
sendmmsg$inet_sctp(r0, &(0x7f0000000880)=[{&(0x7f0000000040)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x8040)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000300)='5', 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c"], 0x30}], 0x1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
write$selinux_access(0xffffffffffffffff, 0x0, 0x56)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
munlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0xfffffffffffffffd}, 0x18)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
statfs(0x0, &(0x7f0000000280)=""/75) (async)
statfs(0x0, &(0x7f0000000280)=""/75)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x1200, 0x0, 0x3) (async)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x1200, 0x0, 0x3)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x3000010, &(0x7f0000000100)={[{@resuid}, {@nobh}]}, 0x1, 0x519, &(0x7f00000009c0)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x3000010, &(0x7f0000000100)={[{@resuid}, {@nobh}]}, 0x1, 0x519, &(0x7f00000009c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_uring_setup(0x6b9e, 0x0) (async)
io_uring_setup(0x6b9e, 0x0)
r4 = syz_pidfd_open(0xffffffffffffffff, 0x0)
pidfd_getfd(r4, r2, 0x0) (async)
pidfd_getfd(r4, r2, 0x0)
perf_event_open(0x0, 0x0, 0x2, 0xffffffffffffffff, 0x0)
r5 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000000c0), 0x0) (async)
pipe2$9p(&(0x7f00000000c0), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x19, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r6, 0x0, 0xb}, 0x18)

54.079583908s ago: executing program 0 (id=591):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="0203000303"], 0x18}, 0x1, 0x7}, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000057000000"], 0x0}, 0x94)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00'}, 0x10)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=ANY=[@ANYBLOB="38000000180001000000000000000000020000000000000900000000060015000200000014001680100008800c00018006000180"], 0x38}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010080030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a32000000009c000000060a010400000000000000000100000008000b400000000074000480340001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002205000200070000003c0001800c00010062697477697365002c000280080003400000000408000140000000140800024000000012040005800c000480070002006eee7e000900010073797a30"], 0x110}}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8f70000000000ff000044850000000e000000650000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000380), 0x84d03, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r8=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000007c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000f000000050030000000000005002f000000000008000300", @ANYRES32=r8], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x28, r7, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x30000000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000680)="65a233f1e7da87718634977b1679d550dbf88d77b965b04d308901e303000000000000008025d645d059ea3aed43345a8f885cf73f73b7409bf757655b30842be995b99bf95d5800d5cab731cdd73b002fcd1ac61a6961874f8de96569446f9adbab2319e5a7eea68dea248a18c4ab76902645212bb5bd5f3324071232f24ff59337048201f1deb559395dfeaba7dfe83f5b370e97e9fdb425565f60582e3fe2f8192be98549275abb15c29d9276f8ff18ae198f315bbea6864dc44a06de2d921db365bb66223b4d", 0xc8}], 0x1)

53.851733091s ago: executing program 0 (id=602):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="0203000303"], 0x18}, 0x1, 0x7}, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000057000000"], 0x0}, 0x94)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00'}, 0x10)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=ANY=[@ANYBLOB="38000000180001000000000000000000020000000000000900000000060015000200000014001680100008800c00018006000180"], 0x38}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010080030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a32000000009c000000060a010400000000000000000100000008000b400000000074000480340001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002205000200070000003c0001800c00010062697477697365002c000280080003400000000408000140000000140800024000000012040005800c000480070002006eee7e000900010073797a30"], 0x110}}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8f70000000000ff000044850000000e000000650000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000380), 0x84d03, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r8=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000007c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000f000000050030000000000005002f000000000008000300", @ANYRES32=r8], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x28, r7, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x30000000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000680)="65a233f1e7da87718634977b1679d550dbf88d77b965b04d308901e303000000000000008025d645d059ea3aed43345a8f885cf73f73b7409bf757655b30842be995b99bf95d5800d5cab731cdd73b002fcd1ac61a6961874f8de96569446f9adbab2319e5a7eea68dea248a18c4ab76902645212bb5bd5f3324071232f24ff59337048201f1deb559395dfeaba7dfe83f5b370e97e9fdb425565f60582e3fe2f8192be98549275abb15c29d9276f8ff18ae198f315bbea6864dc44a06de2d921db365bb66223b4d", 0xc8}], 0x1)

53.811548365s ago: executing program 0 (id=594):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x398fba87178c1956, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r4}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
mount(0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@nomblk_io_submit}]}, 0x1, 0xbac, &(0x7f00000017c0)="$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")
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r6, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
lseek(r6, 0x5, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r2}, 0x10)
mount$bind(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000800)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1a9851, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000003c0), 0x200044, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r7 = open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x2)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
dup(r8)

52.897452666s ago: executing program 0 (id=605):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x1d}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000040000000a"], 0x50)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xfd, 0x7fff0000}]})
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfd, 0x0, 0x7ffc9ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x6, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000020000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x6, &(0x7f0000000040)={0x21, {{0x29, 0x0, 0x2200000, @dev={0xfe, 0x80, '\x00', 0x17}, 0x8000006}}}, 0x88)

52.478200157s ago: executing program 0 (id=616):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000101"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000700000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70300000000000085a700001b000000b70000000000000095000000000000001f7cf1f5be65116bddd2502145aef70a01a11920201597de60a53adbddb8451a7787336484a8783ccaa0e2251f1a4074d1855809b35acee0df668f6202f7a6680d0d86676bcf0831467b6837bb79b0c2be5341ec1ac8e281a0a3e897756e3592b882e7fbfa1f677cc92d717735d018fdbdb3c75e88c8a6f4b1e7c652654d9805aaa475584fcaa73a496aed07e6da1b82663811b8cb0000000000000000000000000000000005e31186506ed7ad0d46c7ec4cf992f4a51a91066c1379b8ecd57f193f9ea933d5df71170616beaa"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x60100100, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8003}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x9c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x74, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x3c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_BITWISE_XOR={0x10, 0x5, 0x0, 0x1, [@NFTA_DATA_VALUE={0x9, 0x1, "72a2e87af0"}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x110}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r7}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r8=>r0, {0x7}}, './file0\x00'})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000180)={'syztnl1\x00', <r9=>0x0, 0x29, 0x1, 0x7e, 0x200, 0xa, @remote, @dev={0xfe, 0x80, '\x00', 0x1f}, 0x10, 0x7, 0x2, 0xda}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r8, 0x89f3, &(0x7f0000000200)={'syztnl0\x00', &(0x7f0000000280)={'syztnl2\x00', r9, 0x29, 0x3, 0x5, 0x1, 0x2, @loopback, @mcast2, 0x700, 0x20, 0xf, 0x4}})
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x8000000000002003, 0x0)

52.477730287s ago: executing program 32 (id=616):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000101"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000700000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70300000000000085a700001b000000b70000000000000095000000000000001f7cf1f5be65116bddd2502145aef70a01a11920201597de60a53adbddb8451a7787336484a8783ccaa0e2251f1a4074d1855809b35acee0df668f6202f7a6680d0d86676bcf0831467b6837bb79b0c2be5341ec1ac8e281a0a3e897756e3592b882e7fbfa1f677cc92d717735d018fdbdb3c75e88c8a6f4b1e7c652654d9805aaa475584fcaa73a496aed07e6da1b82663811b8cb0000000000000000000000000000000005e31186506ed7ad0d46c7ec4cf992f4a51a91066c1379b8ecd57f193f9ea933d5df71170616beaa"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x60100100, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8003}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x9c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x74, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x3c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_BITWISE_XOR={0x10, 0x5, 0x0, 0x1, [@NFTA_DATA_VALUE={0x9, 0x1, "72a2e87af0"}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x110}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r7}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r8=>r0, {0x7}}, './file0\x00'})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000180)={'syztnl1\x00', <r9=>0x0, 0x29, 0x1, 0x7e, 0x200, 0xa, @remote, @dev={0xfe, 0x80, '\x00', 0x1f}, 0x10, 0x7, 0x2, 0xda}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r8, 0x89f3, &(0x7f0000000200)={'syztnl0\x00', &(0x7f0000000280)={'syztnl2\x00', r9, 0x29, 0x3, 0x5, 0x1, 0x2, @loopback, @mcast2, 0x700, 0x20, 0xf, 0x4}})
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x8000000000002003, 0x0)

49.449279876s ago: executing program 5 (id=617):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x398fba87178c1956, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r4}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
mount(0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@nomblk_io_submit}]}, 0x1, 0xbac, &(0x7f00000017c0)="$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")
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r6, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
lseek(r6, 0x5, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r2}, 0x10)
mount$bind(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000800)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1a9851, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000003c0), 0x200044, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r7 = open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x2)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
dup(r8)

48.675285223s ago: executing program 5 (id=651):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[@ANYBLOB="02030003120000002cbd7000fbdbdf2502000900400000001cdc0dca1d9f688405000600000000000a004e2400000004ff01000000000000000000020001000059172d1000070c0100000005000500000000000a004e24fffffffd000000000000ff0700000000000000000600000000000000020013000300000029bd700003350000000008729b2f00"/148], 0x90}, 0x1, 0x7}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x77359400}, {0x0, 0x3938700}}, 0x0)
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$bt_hci(r4, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r4, &(0x7f0000000b00)=[{{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740), 0x5d, 0x0, 0x0, 0x41}}], 0x1, 0x40008c0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x6, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x4000000000000, 0x40, &(0x7f0000001200)=@raw={'raw\x00', 0x4001, 0x3, 0x3a0, 0x230, 0x700001b, 0x148, 0x0, 0x148, 0x308, 0x206, 0x240, 0x308, 0x240, 0x7fffffe, 0x0, {[{{@ip={@local, @rand_addr, 0x0, 0x0, 'tunl0\x00', 'bond_slave_1\x00', {0xff}}, 0x1ea, 0x1e8, 0x230, 0x0, {0x390, 0x8f00}, [@common=@inet=@hashlimit2={{0x150}, {'pim6reg1\x00', {0x5, 0x1ff, 0x1, 0x1, 0x1, 0x100, 0x1, 0x8, 0x20}, {0x8}}}, @common=@inet=@socket2={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x8, 0x9, 'snmp\x00', {0xc000}}}}, {{@uncond, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@set={{0x40}, {{0x0, [0x0, 0x6275dd3c01ecbf44, 0x2, 0x4, 0x4], 0x4, 0x2}}}]}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x400)
unshare(0x8000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='xprtrdma_marshal_failed\x00', r3, 0x0, 0xc}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2000003, 0x13, r6, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r7 = semget$private(0x0, 0x4000, 0x555)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1b, 0x200000bb, &(0x7f0000000700)=ANY=[@ANYRES64=r0, @ANYRES32=r7, @ANYBLOB="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"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
semtimedop(0x0, &(0x7f0000000040)=[{0x3, 0x8, 0x1800}], 0x1, 0x0)
unshare(0x2c040000)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB], 0x50)

45.754212981s ago: executing program 5 (id=678):
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x802}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
lstat(0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0, 0x1000)
socket$nl_route(0x10, 0x3, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001dc0)={0x81, 0x1, 0x180000}, 0x20)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
flock(r5, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4c5, &(0x7f0000010100)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r6, &(0x7f0000000080)=[{&(0x7f0000000100)="04", 0x1}], 0x1)

45.753594231s ago: executing program 33 (id=678):
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x802}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
lstat(0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0, 0x1000)
socket$nl_route(0x10, 0x3, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001dc0)={0x81, 0x1, 0x180000}, 0x20)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
flock(r5, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4c5, &(0x7f0000010100)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r6, &(0x7f0000000080)=[{&(0x7f0000000100)="04", 0x1}], 0x1)

3.100997354s ago: executing program 3 (id=1269):
socket$phonet_pipe(0x23, 0x5, 0x2)
r0 = syz_io_uring_setup(0x6440, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140))
syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x40, 0x0, 0x3, 0x3, 0x0, 0x7ff})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095", @ANYRESDEC=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)
r5 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x169a82, 0x109)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
socketpair(0x23, 0x2, 0x0, &(0x7f0000000300)={0x0, 0x0})
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000140)={'vxcan1\x00', <r7=>0x0})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102000028"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x6, 0x0, 0x7ffc1ffb}]})
setresuid(0xee00, 0x0, 0x0)
prlimit64(0x0, 0xd, &(0x7f00000000c0)={0x200000000005, 0x8000000000200003}, 0x0)
setpriority(0x2, 0x0, 0xffffffffffffffcd)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r11}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000200)=ANY=[@ANYRES64=r3, @ANYRES64=r10], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r12}, 0x10)
msgctl$IPC_SET(0x0, 0x1, &(0x7f00000004c0)={{0x1, 0x0, 0x0, 0x0, 0x0, 0x28, 0xad}, 0x0, 0x0, 0x9, 0x2, 0x7, 0x3, 0x1, 0xb, 0x64e, 0x7ff})
r13 = geteuid()
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000280)={{{@in=@remote, @in=@empty, 0x4e20, 0x4, 0x4e24, 0x5, 0x2, 0x0, 0x20, 0x88, r7, r13}, {0xe4b6, 0x1, 0x1, 0x5, 0x80000001, 0x0, 0x9, 0x7fffffffffffffff}, {0x4, 0x40000000007, 0x4, 0x9}, 0x7, 0x6e6bb7, 0x2, 0x0, 0x1, 0x2}, {{@in=@local, 0x4d6, 0x33}, 0xa, @in=@remote, 0x3506, 0x0, 0x3, 0x3, 0x7f, 0x1, 0x1}}, 0xe8)

3.073143736s ago: executing program 4 (id=1271):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000005c0)={[{@jqfmt_vfsold}, {@orlov}, {@user_xattr}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@nodiscard}]}, 0xfa, 0x47c, &(0x7f0000000a80)="$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")
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r2 = openat(r1, &(0x7f0000000000)='.\x00', 0x181000, 0x80)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001a", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000180)={'batadv0\x00', <r6=>0x0})
r7 = socket(0x2, 0x80805, 0x0)
r8 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000ec0)={'syz_tun\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001b00)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x25dfdbff, {0x60, 0x0, 0x0, r9, {0x0, 0x2}, {0xffff, 0xffff}, {0x4, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x18, 0x2, {{0x7fffffff, 0x14, 0xfcc, 0x400, 0x9}, 0x81, 0x0, 0xc8c3, 0x40, 0x4, 0x1c, 0x11, 0x9, 0x8, 0xffffffff, {0xfffffff9, 0x4, 0xad8, 0x7, 0x4, 0x4}}}}]}, 0x78}}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'lo\x00', <r12=>0x0})
sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000001400010000000000000000000a00a100", @ANYRES32=r12, @ANYBLOB="14000100fff1ffffffffffffff0000000000000108000800020400"], 0x34}}, 0x0)
r13 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x20048800)
connect$inet6(r13, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r13, &(0x7f0000000200), 0xfffffd9d)
getsockname(r13, &(0x7f0000000280)=@phonet, &(0x7f0000000080)=0x80)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000240)={'gre0\x00', &(0x7f00000002c0)={'syztnl0\x00', <r14=>0x0, 0x8000, 0x40, 0x4, 0x8, {{0xb, 0x4, 0x3, 0x1e, 0x2c, 0x65, 0x0, 0x8, 0x2f, 0x0, @multicast2, @dev={0xac, 0x14, 0x14, 0x43}, {[@timestamp={0x44, 0xc, 0x72, 0x0, 0x0, [0x6, 0x1]}, @rr={0x7, 0xb, 0x46, [@remote, @broadcast]}]}}}}})
sendmsg$ETHTOOL_MSG_WOL_GET(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x5000020}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)={0xf4, r4, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x10}, 0x4008044)
open_by_handle_at(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="4b000000020000000b"], 0x36f0516f)

2.781693735s ago: executing program 3 (id=1275):
syz_usb_connect$sierra_net(0x2, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r2 = syz_io_uring_setup(0xa4d, &(0x7f0000000480)={0x0, 0x0, 0x80, 0x1, 0x24f}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000340)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2c, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x42, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, {0x2}})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

2.079361784s ago: executing program 2 (id=1280):
syz_usb_connect$sierra_net(0x2, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r2 = syz_io_uring_setup(0xa4d, &(0x7f0000000480)={0x0, 0x0, 0x80, 0x1, 0x24f}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000340)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2c, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x42, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, {0x2}})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0)

1.81589644s ago: executing program 6 (id=1283):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@nomblk_io_submit}]}, 0x1, 0xbac, &(0x7f00000017c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
lseek(r0, 0x5, 0x4)

1.786358704s ago: executing program 4 (id=1284):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x81}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f0000000800)={'filter\x00', 0x104, 0x4, 0x3c8, 0x110, 0x110, 0x110, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@arp={@empty, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac}, {@empty, {[0x0, 0x0, 0x0, 0xff]}}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 'dvmrp0\x00', 'netdevsim0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @empty, @dev={0xac, 0x14, 0x14, 0x41}, @rand_addr=0x64010101, 0x8, 0x1}}}, {{@arp={@loopback, @local, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pim6reg0\x00', 'veth0\x00', {}, {}, 0x0, 0x20}, 0xc0, 0xe8}, @unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x80ca, 0x8}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)

1.662102676s ago: executing program 3 (id=1285):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='ext4_drop_inode\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200000, &(0x7f00000001c0)={[{@stripe={'stripe', 0x3d, 0xc}}, {@debug}]}, 0x1, 0x246, &(0x7f0000000ac0)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M")
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r2, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040), 0x4)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r3, 0x2007ffc)
r4 = fsopen(&(0x7f0000000080)='mqueue\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000001d40)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xaei\xb6\xb7\xc1Y\xd5YG\xf9\xc2\xf1\xa4\xdb$\xf6]\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\x03\x00\x00\x00\x00\x00\x00\x00\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^W\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B\xc5\x05\x9d\xd6\x02|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3q\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\x00\x00\x00\x00\x00\x00\x00\x00\x00\xef\xcd\xd3\t\x01A\xd5\x81\xc1;9\xeez\xba\x00\x00\x00\xdc\x94\xff)\xa4\xe6\xfb]\x90bG\x11\b\x98#\xaa99ez|\x8b5\x92\xa5\xba\x96\xb3\xb26I\xbb\xdeb\x95?\xc0\x81', &(0x7f0000000200)='sockfs\x00', 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
close(r4)
open(&(0x7f0000000340)='./file1\x00', 0x4000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_usb_connect$hid(0x2, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x243, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x1, 0x30, 0x2, [{{0x9, 0x4, 0x0, 0x8, 0x2, 0x3, 0x1, 0x7, 0x9, {0x9, 0x21, 0x5, 0x26, 0x1, {0x22, 0x2b0}}, {{{0x9, 0x5, 0x81, 0x3, 0xc6746ba18ac88c64, 0x3, 0x7f, 0xf8}}, [{{0x9, 0x5, 0x2, 0x3, 0x400, 0x5, 0x40, 0x1e}}]}}}]}}]}}, &(0x7f00000004c0)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x400, 0xf, 0x1, 0x0, 0x20, 0x9}, 0xad, &(0x7f0000000200)={0x5, 0xf, 0xad, 0x1, [@generic={0xa8, 0x10, 0x2, "d56db98ef1b268fb0bdabc04242575f943f27c7c8bd13c3ee127bc773eb3bee063f464f471cec681d3277e5636a8014837664adbcbac8514959932a7b05cf4aacf98404f894f6da445fd484ecf10a5c0fa2b346f98a5b903aeb2b6129a859fea0f419846d5ceae2de6cfeb170c713b71f392bb7946c6a48c61ff6248c88ba018ea28f8a708d13f3906b91c9b2775c2b799c1902f2d29f124e41bb74cce774ba7f892123720"}]}, 0x6, [{0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x422}}, {0x9a, &(0x7f0000000300)=@string={0x9a, 0x3, "93ecbfe73d713a4dac7d8e4a1d6a0d09ae4c865f21e5c74f4dd35862d4e16e7e5546a26e45988c20c1ae995f27e9aee2be978a8364235da7ae684d0085eeca8339e8f3228786aef7569f6a580960969014a4e51526205ed8b53669f6146bb71d24526638390280cc226e1e0ebe61abe8ce3a932407df287ed88418ba9470fd123c5fe6ac17b508ba1519fab678d19e1fee3566759b940e1d"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x406}}, {0xd6, &(0x7f0000001e40)=@string={0xcf, 0x3, "20f0759a94b50b13f6574bfa9675571b82f0813c5f2df5800aaf130088208769071f0ee37cc0c4b1dc678224e68128ee959dd741d650699df9ec610a9cd5f78e5bcf73dc0f8ef568000a105c0b8f554190b4422fd913259e74bbd5fabe01b6b35ae12a04e493f71136ba085ac3573c493e25afcf0560cc93fd7f82fefd7eadeb980a353ea3cddae98255d5e14abe072afeb8db8b5eb9f15f3d6f0934787f851fad7f6b5eccb23c7591462185d4802d034416f027590f90330fea25d14d7c83b816098bfd0d1298b43b5d1c5cd99e14a26b9e9fa5"}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x80c}}, {0x4, &(0x7f0000000480)=@lang_id={0x4, 0x3, 0x41f}}]})
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x52b, &(0x7f0000000f80)="$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")
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000d80)={[], [{@permit_directio}, {@subj_type={'subj_type', 0x3d, '\x00'}}]}, 0x1, 0x36b, &(0x7f0000000a00)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r6, &(0x7f0000000000)=""/48, 0x63)
ioctl$VFAT_IOCTL_READDIR_BOTH(r6, 0x82307201, &(0x7f0000000f80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r7, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x2}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
quotactl$Q_SYNC(0xffffffff8000011f, 0x0, 0x0, 0x0)

1.580172674s ago: executing program 4 (id=1287):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = socket(0x200000000000011, 0x2, 0xd)
bind$packet(r2, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r3 = socket$packet(0x11, 0x0, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=@bridge_dellink={0x2c, 0x13, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r4}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x5, 0x0, 0x1, {0x4}}]}]}, 0x2c}}, 0x0)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x32, &(0x7f0000000040)={@random="e90c610faca2", @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x2, 0x1, 0x2, 0xc, 0x100}}}}}}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f00000006c0)=ANY=[@ANYBLOB="af6bcdcdd8a1bbbbbbd5bbbb08004500001c0020097eb49fa659edf93bdad607db000002001190780000149829b30db7810058807741f5da8b788ad29838975e30f95f444385a7dd316dcc3da8ccfb600401773eb3753a1123fc9dfcdf14ec6514f6389999230f10fe98e0a0e91b2f2cb7dc6bcfed9ceef48badcf1b5cc6389b0a37d1debed6257b1b7a76839feee82f3990f7c8bf448445e9878fc787b0024a9ed4d587c6c210dbeaa1f38271f6ee2ebfe9830f9818529fb9817704f1956ed49d661a98dae2cab3ca43c6868b95e1dc8b4d9610212fe989e9701150ca2d24e9bdfc8934ccaa91580048eded064133cce70d0d7994513dd9c13201c2ff16bc30c4defbc054a986b2708436bfab0a47ed6582018e17bf87a530a426ed58b436d55b1e191134531e6c3dc84213916b08bb99cde338753adb8b4513c7cebd5fcc7dbc784a82f3d01f9df56cb0afd6568a13dd8a392ca51738cff8379080c08b6fdf630627fa2c5959bd10fba8d64cd3a61847a40af17cee4c86eb316b64286dfebc50e4ec245853845dbb8052284332f32561a9cf629cbbfda7952176f25aa0cc6270"], 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f00000000000000000000850000000e000000850000007d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000001040)='mem_disconnect\x00', r6}, 0x18)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000fc07ffff00000000000000008500000041000000850000000700000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x0, 0xe, 0x0, &(0x7f00000002c0)="ae24a21f9a824666f9acf0e0163f", 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x3}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
pipe(&(0x7f0000000080))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300), 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x12, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000730109000000000095", @ANYRESHEX=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e}, 0x94)

1.482366973s ago: executing program 4 (id=1288):
syz_mount_image$iso9660(&(0x7f0000000540), &(0x7f00000001c0)='./file1\x00', 0x14004, &(0x7f00000005c0)=ANY=[@ANYRES32=0x0], 0x4, 0x70a, &(0x7f00000232c0)="$eJzs3V+P21gZBvDnJJkkk0JVAapWVbdzOmWlqRhSJ7NNFRUkjHOSMSRxZHtgRkJaFTqDRs0UaItEc9PODX+k5Qtwtzdc8CFW4oKr/RZwBdIKhIR2BUJGPraTTOJkJm3a2aXPb7Qb5/j18etjr896xj4GERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERERQVgNw6gItO3uzq6czWq4Tif5ksXU/Ki2FdyMJm7OW+dKuF5AhP+gWMRbUfFbXxmFXA7/tY6r0berKIYfRQwuXL5098u5TLL8nIRfBBat8PHTwYN7/f7+ozPEZrFw9ecJmTMEtVTX9hy7Y7aUtD1H1ms149Z205NNu628Pc9XHWm5KuM7rtywbspKvb4lVXnP2em2GmZbJYV3vl41jJr8TiHa0QDKnrVtt9t2t6VjwtlhzB35/g+iAGV2pDw47O9vjeXzLK2Nw6BKSvKZ8eAwqHra5laNarVSqVYrtdv123cMIzdVYISEMYSpiKUftHSeMvHxusAiyzt5E72kjNX4j/FnAbRRRBc72IVM/bHQgAsHnRnzY0n//84tNXe94/1/0suvjGZfge7/r0Xfrs3q/2fkIiH1AmlzxIzyxX5WdEYSj/EUAzzAPfTRxz4eLaFuCbn20jXkjbgll5LPzJ8WFLqw4cGBjQ5MtPBFyLhEoo4aajDwHrbRhAeJJmy0oeBhDx58qPCIyoeZKpjw4cCFxAYs3IREBXXUsQUJhTL24GAHXbTQgIlPgiA4wKFu9604n+cpW40kqDJjIwrIJcfdPqpztnZW///DZ9HScf9vsP9/U0XHQSH6+GheDNFnQBBf/y9o7dVkQ0RERERERESvgtC/fRf6r/JvAwjQtNvKOBFTOLfsiIiIiIiIiGgZBIICrkJEd+XjbYjp638iIiIiIiIi+nwT+hk7AaCkb+oXo8elzvJLgOxrSJGIiIiIiIiIXpJ+8v9aHgj0Xf5rEAtd/xMRERERERHR58Cvx8bYz2XjMXaD5M/6GQBrfymID/9egLsijnu7XxVHZjjHPIpjpu4A8JtXxMV4oF79kQegv1nqqojXJoF/Jb99CH18kD7W//MgIoRwJxLIZ8crmJGACNdcy8Xf8D6uR4tcj8eZvz/IQM+JRhQuNe22KltO+24Fpnkx46td/+cPD38BuMPtPDjs75d/9JP+fZ3LcVh0fBRW+uxEOpn0xhjl8kSPt6CfuUgb3XgVzWSVv+l2SkKv10i2PwvzKDO+onk7oLYKRFv5S6xH+2w9iGJLg+GI+wJY04M/VMp6l53YendFjLKoTG552o6YseVFncWNKObGxo3oI2mTsJ6MKH4tC1TLk/sgTHQsi+p4Fqe3hfjHRPvPzwKiGLbFVpjFH8OKJtri+x9GC2/1dpPhMc6SxdRRQER0Xg5GvZAexHxqjP2ke0hOamfvd5AD4rPcjN59tJYg7j+S3v3J74Koh8oCufhvE+lrSfoVhGf0DaHryUcDuueupJzRjfKnQRCYF4sYP6P/NwiSDTIW6N2OgyCYPKP/YfQOpDjtqSz+HQTB3YruSX470at+EC7wwcz1eu1qFkUU8OTop/gkmb3/4/2H1epWzXjXMG5XsaL/VyH+yIJ9DxERTTn9HTs6IjMnQryL61Ed1+//7Z1o6kSP96X4lgLtFtDHfWwmrxBYS6+1hAN885/RbQib0VUrsF6KPksDefnS3fCqdhh7KHL6DS+bM6/qdGcZxerbG6rD2OS9Q5NXgKPYrVe8F4iIiF6v9Rn9MHCi/8fJ/r94ov/fxEYUsXEl9bq7NHZL4WZydTy8pB9cOE6NrZye/LeW3BhERERvCOV+LEr+r4Tr2r33KvV6xfS3lXQd67vStRstJe2ur1xr2+y2lOy5ju9YTlv2XBTsVeVJb6fXc1xfNh1X9hzP3tVvfpfxq9891TG7vm15vbYyPSUtp+ubli8btmfJ3s6327a3rVy9sNdTlt20LdO3na70nB3XUmUpPaXGAu2G6vp20w4nu7Ln2h3T3ZPfc9o7HSUbyrNcu+c7UYXJuuxu03E7utoygoVfdEhERPT/6PHTwYN7/f7+o8mJ1fDSPCo5xoyY6Yl8SoUcI4iIiOgzZtRdL7BQ8RUmREREREREREREREREREREREREREREREREU05/pG/BiZW0hwWBYcnPLsYleI7RI4ZT9Qi8bD6fun/SA/u9yOKZYYkAcIalkkciBg8+mhO8OixJmn885niRDHEJeOH2+esXgAu6BFFJbokHwPTzo0s/xtImvnEQteisGD0zdVZhuC9yy//PIZx4+PvpWSJs+SAIgvmLF062Yf7sx3MOwKP8nF2wesrx87rPRET0uv0vAAD//ySOL9Y=")
r0 = open(&(0x7f00000000c0)='.\x00', 0x10000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x4}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x200000000000002f, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00'}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x20ffe, 0x0, 0x0, 0x40f00, 0xac, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000f1ffff000000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000e}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

1.473275384s ago: executing program 1 (id=1290):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x4000000000000, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)

1.394248942s ago: executing program 1 (id=1291):
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x802}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
lstat(0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0, 0x1000)
socket$nl_route(0x10, 0x3, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001dc0)={0x81, 0x1, 0x180000}, 0x20)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
flock(r4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r5, &(0x7f0000000080)=[{&(0x7f0000000100)="04", 0x1}], 0x1)

1.330254919s ago: executing program 6 (id=1292):
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_RECVMSG={0xa, 0x34, 0x3, 0xffffffffffffffff, 0x0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000000240)}, 0x0, 0x40000000})
r0 = syz_io_uring_setup(0x749, &(0x7f0000000100)={0x0, 0x59c4, 0x800, 0x1000, 0x5cc}, &(0x7f0000000900)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x7, 0x4, 0x100, 0x401, 0x28}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x7}, 0x18)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/201, 0xc9}], 0x1)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x30, 0x4, 0x0, 0x2}]}, 0xffffffffffffff0e)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000500)='./file0\x00', 0x46, 0xc8000, 0x23456})
io_uring_enter(r0, 0x749f, 0x4, 0x1, 0x0, 0x0)

1.326832529s ago: executing program 2 (id=1293):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r1, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x47f8, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff0000", @ANYRES32=r2, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r0)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf25090000006400038008000100010000000800030004000000140002007665744e315f6d616376746170000000060004000200000008000500e0000000140002006970766c616e31"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

1.292276572s ago: executing program 2 (id=1294):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000940)='kmem_cache_free\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
r4 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xfffffdd6}], 0x1, 0x9c00, 0x0, 0x3)

979.790013ms ago: executing program 6 (id=1295):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000005c0)={[{@jqfmt_vfsold}, {@orlov}, {@user_xattr}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@nodiscard}]}, 0xfa, 0x47c, &(0x7f0000000a80)="$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")
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r2 = openat(r1, &(0x7f0000000000)='.\x00', 0x181000, 0x80)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001a", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000180)={'batadv0\x00', <r6=>0x0})
r7 = socket(0x2, 0x80805, 0x0)
r8 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000ec0)={'syz_tun\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001b00)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x25dfdbff, {0x60, 0x0, 0x0, r9, {0x0, 0x2}, {0xffff, 0xffff}, {0x4, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x18, 0x2, {{0x7fffffff, 0x14, 0xfcc, 0x400, 0x9}, 0x81, 0x0, 0xc8c3, 0x40, 0x4, 0x1c, 0x11, 0x9, 0x8, 0xffffffff, {0xfffffff9, 0x4, 0xad8, 0x7, 0x4, 0x4}}}}]}, 0x78}}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'lo\x00', <r12=>0x0})
sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000001400010000000000000000000a00a100", @ANYRES32=r12, @ANYBLOB="14000100fff1ffffffffffffff0000000000000108000800020400"], 0x34}}, 0x0)
r13 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x20048800)
connect$inet6(r13, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r13, &(0x7f0000000200), 0xfffffd9d)
getsockname(r13, &(0x7f0000000280)=@phonet, &(0x7f0000000080)=0x80)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000240)={'gre0\x00', &(0x7f00000002c0)={'syztnl0\x00', <r14=>0x0, 0x8000, 0x40, 0x4, 0x8, {{0xb, 0x4, 0x3, 0x1e, 0x2c, 0x65, 0x0, 0x8, 0x2f, 0x0, @multicast2, @dev={0xac, 0x14, 0x14, 0x43}, {[@timestamp={0x44, 0xc, 0x72, 0x0, 0x0, [0x6, 0x1]}, @rr={0x7, 0xb, 0x46, [@remote, @broadcast]}]}}}}})
sendmsg$ETHTOOL_MSG_WOL_GET(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x5000020}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)={0xf4, r4, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x10}, 0x4008044)
open_by_handle_at(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="4b000000020000000b"], 0x36f0516f)

971.300754ms ago: executing program 2 (id=1296):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r1, {0x5}}, './file0\x00'})
connect$rxrpc(r3, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e24, @multicast1}}, 0x24)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x4}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000200), r3)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYRES32=0x0], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000780)=@filter={'filter\x00', 0x4, 0x4, 0x13d8, 0xffffffff, 0x1218, 0x1218, 0x1218, 0xfeffffff, 0xffffffff, 0x1308, 0x1308, 0x1308, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x2f2, 0x1100, 0x1128, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x0, 0x1, './cgroup.cpu/syz0\x00', 0x1fc, {0x8}}}, @common=@eui64={{0x28}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x5}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@empty, 'pim6reg0\x00', {0xf18}}}}, {{@ipv6={@private0={0xfc, 0x0, '\x00', 0x1}, @rand_addr=' \x01\x00', [0xff, 0x0, 0xffffffff], [0x0, 0x0, 0xff000000, 0xff], 'team0\x00', '\x00', {0xff}, {}, 0xff, 0xe7, 0x4, 0x44}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@private0={0xfc, 0x0, '\x00', 0x1}, 'veth1_to_bond\x00', {0xffffffffffff3ebb}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x145b)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x5}, 0xa)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a300000000008000a40ffffffff580000000c0a010100000000000000000a0000060900020073797a30000000000900010073797a31000000012c0003802800008004000180200007800e0001"], 0xbc}, 0x1, 0x0, 0x0, 0x4000851}, 0x40)

970.695424ms ago: executing program 3 (id=1297):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="0203000303"], 0x18}, 0x1, 0x7}, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000057000000"], 0x0}, 0x94)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00'}, 0x10)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={0x0, 0x38}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010080030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a32000000009c000000060a010400000000000000000100000008000b400000000074000480340001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002205000200070000003c0001800c00010062697477697365002c000280080003400000000408000140000000140800024000000012040005800c000480070002006eee7e000900010073797a30"], 0x110}}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x5, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000380), 0x84d03, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r8=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000007c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000f000000050030000000000005002f000000000008000300", @ANYRES32=r8], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x28, r7, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x30000000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000680)="65a233f1e7da87718634977b1679d550dbf88d77b965b04d308901e303000000000000008025d645d059ea3aed43345a8f885cf73f73b7409bf757655b30842be995b99bf95d5800d5cab731cdd73b002fcd1ac61a6961874f8de96569446f9adbab2319e5a7eea68dea248a18c4ab76902645212bb5bd5f3324071232f24ff59337048201f1deb559395dfeaba7dfe83f5b370e97e9fdb425565f60582e3fe2f8192be98549275abb15c29d9276f8ff18ae198f315bbea6864dc44a06de2d921db365bb66223b4d", 0xc8}], 0x1)

805.57026ms ago: executing program 6 (id=1298):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x81}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f0000000800)={'filter\x00', 0x104, 0x4, 0x3c8, 0x110, 0x110, 0x110, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@arp={@empty, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac}, {@empty, {[0x0, 0x0, 0x0, 0xff]}}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 'dvmrp0\x00', 'netdevsim0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @empty, @dev={0xac, 0x14, 0x14, 0x41}, @rand_addr=0x64010101, 0x8, 0x1}}}, {{@arp={@loopback, @local, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pim6reg0\x00', 'veth0\x00', {}, {}, 0x0, 0x20}, 0xc0, 0xe8}, @unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x80ca, 0x8}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)

763.467614ms ago: executing program 6 (id=1299):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7fffffffffffffff}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x53b, &(0x7f0000000b80)="$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") (fail_nth: 7)

673.940493ms ago: executing program 6 (id=1300):
syz_usb_connect$sierra_net(0x2, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r2 = syz_io_uring_setup(0xa4d, &(0x7f0000000480)={0x0, 0x0, 0x80, 0x1, 0x24f}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000340)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2c, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r5}, &(0x7f0000000400), &(0x7f00000004c0)=r6}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r6}, 0x10)
process_mrelease(0xffffffffffffffff, 0x0)
getresgid(&(0x7f00000003c0), &(0x7f0000000640), &(0x7f0000000680))
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x42, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, {0x2}})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0)

670.066484ms ago: executing program 4 (id=1301):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(0x0, 0x5, 0x28000)
ioctl$USBDEVFS_SETINTERFACE(r2, 0x80085504, 0xfffffffffffffffc)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x8008a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x6}, 0x0, 0xc8, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r4)
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce8102031100fe08000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)

655.741125ms ago: executing program 3 (id=1302):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@nomblk_io_submit}]}, 0x1, 0xbac, &(0x7f00000017c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
lseek(r0, 0x5, 0x4)

441.983376ms ago: executing program 2 (id=1303):
r0 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000300)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xe, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x16)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000003000), r4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000003040)={'batadv0\x00', <r6=>0x0})
sendmsg$BATADV_CMD_TP_METER(r4, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002bbd7000fbdbdf25020000000a000900aaaaaaaaaa44000008000300", @ANYRES32=r6, @ANYBLOB='\b\x00\v'], 0x30}, 0x1, 0x0, 0x0, 0x20000050}, 0x20040084)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r1}, 0x38)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x18)
epoll_create1(0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r9, 0x29, 0x20, &(0x7f0000000180)={@loopback={0xfec0ffff00006600}, 0x8000000, 0x0, 0x1, 0x1}, 0x29)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r7, 0x0, 0x2}, 0x18)
add_key(&(0x7f0000000000)='ceph\x00', 0x0, &(0x7f0000000080)="010000000037a788a11d1f000000000000006923c63a4541062101b60a2156566de77062086575a59ea9cb", 0x2b, r0)

441.334057ms ago: executing program 1 (id=1304):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r1, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x47f8, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff0000", @ANYRES32=r2, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r0)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf25090000006400038008000100010000000800030004000000140002007665744e315f6d616376746170000000060004000200000008000500e0000000140002006970766c616e31"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

372.088423ms ago: executing program 4 (id=1305):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = shmget$private(0x0, 0x3000, 0x80, &(0x7f0000ffd000/0x3000)=nil)
r2 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049dd)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002300)={0x18, 0x34, 0x107, 0xffffffff, 0xfffffffe, {0x1, 0x7c}, [@nested={0x4, 0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
shmat(r1, &(0x7f0000ffc000/0x3000)=nil, 0x4000)
r4 = syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000000)='./bus\x00', 0x3000046, &(0x7f00000004c0)={[{@usrquota}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x81, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
setxattr$system_posix_acl(0x0, &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYBLOB], 0x24, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r5=>r4, {0xd}}, './file0\x00'})
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), r5)
bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x28, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94)
open(&(0x7f0000000000)='./bus\x00', 0x1050c1, 0x170)
remap_file_pages(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r7 = gettid()
setxattr$incfs_id(&(0x7f0000000140)='./bus\x00', &(0x7f00000002c0), &(0x7f0000000300)={'0000000000000000000000000000000', 0x30}, 0x20, 0x1)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, r6, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PID={0x8, 0x1c, r7}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)

352.495775ms ago: executing program 1 (id=1306):
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_RECVMSG={0xa, 0x34, 0x3, 0xffffffffffffffff, 0x0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x1}, 0x0, 0x40000000})
r0 = syz_io_uring_setup(0x749, 0x0, &(0x7f0000000900)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x7, 0x4, 0x100, 0x401, 0x28}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x7}, 0x18)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/201, 0xc9}], 0x1)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x30, 0x4, 0x0, 0x2}]}, 0xffffffffffffff0e)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000500)='./file0\x00', 0x46, 0xc8000, 0x23456})
io_uring_enter(r0, 0x749f, 0x4, 0x1, 0x0, 0x0)

348.037686ms ago: executing program 2 (id=1307):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000940)='kmem_cache_free\x00', r1}, 0x18)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
r4 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xfffffdd6}], 0x1, 0x9c00, 0x0, 0x3)

243.790006ms ago: executing program 1 (id=1308):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = shmget$private(0x0, 0x3000, 0x80, &(0x7f0000ffd000/0x3000)=nil)
r2 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049dd)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002300)={0x18, 0x34, 0x107, 0xffffffff, 0xfffffffe, {0x1, 0x7c}, [@nested={0x4, 0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
shmat(r1, &(0x7f0000ffc000/0x3000)=nil, 0x4000)
r4 = syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000000)='./bus\x00', 0x3000046, &(0x7f00000004c0)={[{@usrquota}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x81, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
setxattr$system_posix_acl(0x0, &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYBLOB], 0x24, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r5=>r4, {0xd}}, './file0\x00'})
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), r5)
bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x28, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94)
open(&(0x7f0000000000)='./bus\x00', 0x1050c1, 0x170)
remap_file_pages(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r7 = gettid()
setxattr$incfs_id(&(0x7f0000000140)='./bus\x00', &(0x7f00000002c0), &(0x7f0000000300)={'0000000000000000000000000000000', 0x30}, 0x20, 0x1)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, r6, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PID={0x8, 0x1c, r7}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000) (fail_nth: 2)

15.198399ms ago: executing program 3 (id=1309):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000005c0)={[{@jqfmt_vfsold}, {@orlov}, {@user_xattr}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@nodiscard}]}, 0xfa, 0x47c, &(0x7f0000000a80)="$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")
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r2 = openat(r1, &(0x7f0000000000)='.\x00', 0x181000, 0x80)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001a", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000180)={'batadv0\x00', <r6=>0x0})
r7 = socket(0x2, 0x80805, 0x0)
r8 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000ec0)={'syz_tun\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001b00)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x25dfdbff, {0x60, 0x0, 0x0, r9, {0x0, 0x2}, {0xffff, 0xffff}, {0x4, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x18, 0x2, {{0x7fffffff, 0x14, 0xfcc, 0x400, 0x9}, 0x81, 0x0, 0xc8c3, 0x40, 0x4, 0x1c, 0x11, 0x9, 0x8, 0xffffffff, {0xfffffff9, 0x4, 0xad8, 0x7, 0x4, 0x4}}}}]}, 0x78}}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'lo\x00', <r12=>0x0})
sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000001400010000000000000000000a00a100", @ANYRES32=r12, @ANYBLOB="14000100fff1ffffffffffffff0000000000000108000800020400"], 0x34}}, 0x0)
r13 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x20048800)
connect$inet6(r13, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r13, &(0x7f0000000200), 0xfffffd9d)
getsockname(r13, &(0x7f0000000280)=@phonet, &(0x7f0000000080)=0x80)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000240)={'gre0\x00', &(0x7f00000002c0)={'syztnl0\x00', <r14=>0x0, 0x8000, 0x40, 0x4, 0x8, {{0xb, 0x4, 0x3, 0x1e, 0x2c, 0x65, 0x0, 0x8, 0x2f, 0x0, @multicast2, @dev={0xac, 0x14, 0x14, 0x43}, {[@timestamp={0x44, 0xc, 0x72, 0x0, 0x0, [0x6, 0x1]}, @rr={0x7, 0xb, 0x46, [@remote, @broadcast]}]}}}}})
sendmsg$ETHTOOL_MSG_WOL_GET(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x5000020}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)={0xf4, r4, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x10}, 0x4008044)
open_by_handle_at(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="4b000000020000000b"], 0x36f0516f)

0s ago: executing program 1 (id=1310):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x81}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f0000000800)={'filter\x00', 0x104, 0x4, 0x3c8, 0x110, 0x110, 0x110, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@arp={@empty, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac}, {@empty, {[0x0, 0x0, 0x0, 0xff]}}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 'dvmrp0\x00', 'netdevsim0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @empty, @dev={0xac, 0x14, 0x14, 0x41}, @rand_addr=0x64010101, 0x8, 0x1}}}, {{@arp={@loopback, @local, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pim6reg0\x00', 'veth0\x00', {}, {}, 0x0, 0x20}, 0xc0, 0xe8}, @unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x80ca, 0x8}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)

kernel console output (not intermixed with test programs):

irty error
[  111.465067][ T6118] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #19: comm syz.6.832: corrupted inode contents
[  111.479110][ T6118] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2996: inode #19: comm syz.6.832: mark_inode_dirty error
[  111.491392][ T6118] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2999: inode #19: comm syz.6.832: mark inode dirty (error -117)
[  111.513105][ T6144] random: crng reseeded on system resumption
[  111.522908][ T6118] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117)
[  111.548173][ T6146] loop4: detected capacity change from 0 to 164
[  111.559617][ T6146] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  111.591770][ T6152] FAULT_INJECTION: forcing a failure.
[  111.591770][ T6152] name failslab, interval 1, probability 0, space 0, times 0
[  111.604745][ T6152] CPU: 0 UID: 0 PID: 6152 Comm: syz.6.844 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  111.604775][ T6152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  111.604789][ T6152] Call Trace:
[  111.604795][ T6152]  <TASK>
[  111.604831][ T6152]  __dump_stack+0x1d/0x30
[  111.604859][ T6152]  dump_stack_lvl+0xe8/0x140
[  111.604884][ T6152]  dump_stack+0x15/0x1b
[  111.604907][ T6152]  should_fail_ex+0x265/0x280
[  111.605097][ T6152]  should_failslab+0x8c/0xb0
[  111.605132][ T6152]  kmem_cache_alloc_noprof+0x50/0x480
[  111.605233][ T6152]  ? getname_flags+0x80/0x3b0
[  111.605362][ T6152]  getname_flags+0x80/0x3b0
[  111.605397][ T6152]  user_path_at+0x28/0x130
[  111.605489][ T6152]  __se_sys_mount+0x25b/0x2e0
[  111.605520][ T6152]  __x64_sys_mount+0x67/0x80
[  111.605544][ T6152]  x64_sys_call+0x2b51/0x3000
[  111.605600][ T6152]  do_syscall_64+0xd2/0x200
[  111.605633][ T6152]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  111.605663][ T6152]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  111.605747][ T6152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.605823][ T6152] RIP: 0033:0x7f3ea800eec9
[  111.605841][ T6152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.605859][ T6152] RSP: 002b:00007f3ea6a6f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  111.605878][ T6152] RAX: ffffffffffffffda RBX: 00007f3ea8265fa0 RCX: 00007f3ea800eec9
[  111.605895][ T6152] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000200000000000
[  111.605911][ T6152] RBP: 00007f3ea6a6f090 R08: 0000000000000000 R09: 0000000000000000
[  111.605927][ T6152] R10: 0000000000001001 R11: 0000000000000246 R12: 0000000000000001
[  111.605943][ T6152] R13: 00007f3ea8266038 R14: 00007f3ea8265fa0 R15: 00007ffd24ca7198
[  111.605969][ T6152]  </TASK>
[  111.809528][ T6156] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  111.841698][ T6160] sd 0:0:1:0: device reset
[  111.869333][ T6159] loop6: detected capacity change from 0 to 4096
[  111.876796][ T6159] EXT4-fs: Ignoring removed nomblk_io_submit option
[  112.078853][ T6169] netlink: 24 bytes leftover after parsing attributes in process `syz.2.851'.
[  112.119866][ T6169] IPVS: Error connecting to the multicast addr
[  112.185554][ T6173] random: crng reseeded on system resumption
[  112.233057][ T6177] loop6: detected capacity change from 0 to 512
[  112.263140][ T6177] EXT4-fs error (device loop6): ext4_orphan_get:1418: comm syz.6.855: bad orphan inode 11862016
[  112.301502][ T6177] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.336070][ T6177] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #19: comm syz.6.855: corrupted inode contents
[  112.358470][ T6177] EXT4-fs error (device loop6): ext4_dirty_inode:6517: inode #19: comm syz.6.855: mark_inode_dirty error
[  112.386429][ T6177] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #19: comm syz.6.855: corrupted inode contents
[  112.445056][ T6177] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2996: inode #19: comm syz.6.855: mark_inode_dirty error
[  112.476173][ T6177] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2999: inode #19: comm syz.6.855: mark inode dirty (error -117)
[  112.490239][ T6177] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117)
[  112.546934][ T6197] loop3: detected capacity change from 0 to 512
[  112.742995][ T6197] ext4 filesystem being mounted at /176/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.848490][ T6211] netlink: 24 bytes leftover after parsing attributes in process `syz.1.865'.
[  112.860889][ T6211] IPVS: Error connecting to the multicast addr
[  112.918723][ T6216] random: crng reseeded on system resumption
[  113.036202][ T6223] loop3: detected capacity change from 0 to 164
[  113.062558][ T6223] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  113.143796][ T6224] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  113.364275][ T6235] FAULT_INJECTION: forcing a failure.
[  113.364275][ T6235] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.377704][ T6235] CPU: 0 UID: 0 PID: 6235 Comm: syz.4.875 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  113.377768][ T6235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  113.377784][ T6235] Call Trace:
[  113.377793][ T6235]  <TASK>
[  113.377803][ T6235]  __dump_stack+0x1d/0x30
[  113.377829][ T6235]  dump_stack_lvl+0xe8/0x140
[  113.377899][ T6235]  dump_stack+0x15/0x1b
[  113.377921][ T6235]  should_fail_ex+0x265/0x280
[  113.377960][ T6235]  should_fail+0xb/0x20
[  113.377938][ T6234] loop2: detected capacity change from 0 to 512
[  113.377993][ T6235]  should_fail_usercopy+0x1a/0x20
[  113.378067][ T6235]  _copy_from_user+0x1c/0xb0
[  113.378104][ T6235]  memdup_user+0x5e/0xd0
[  113.378141][ T6235]  strndup_user+0x68/0xb0
[  113.378175][ T6235]  keyctl_restrict_keyring+0x15a/0x1b0
[  113.378237][ T6235]  __se_sys_keyctl+0x1ed/0xb80
[  113.378355][ T6235]  ? bpf_trace_run2+0x124/0x1c0
[  113.378401][ T6235]  ? __bpf_trace_sys_enter+0x10/0x30
[  113.378441][ T6235]  __x64_sys_keyctl+0x67/0x80
[  113.378486][ T6235]  x64_sys_call+0x2f7c/0x3000
[  113.378552][ T6235]  do_syscall_64+0xd2/0x200
[  113.378587][ T6235]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  113.378677][ T6235]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  113.378708][ T6235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.378740][ T6235] RIP: 0033:0x7ff52dcbeec9
[  113.378794][ T6235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.378821][ T6235] RSP: 002b:00007ff52c727038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  113.378846][ T6235] RAX: ffffffffffffffda RBX: 00007ff52df15fa0 RCX: 00007ff52dcbeec9
[  113.378864][ T6235] RDX: 0000200000000200 RSI: 000000002689f776 RDI: 000000000000001d
[  113.378881][ T6235] RBP: 00007ff52c727090 R08: 0000000000000000 R09: 0000000000000000
[  113.378899][ T6235] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[  113.378916][ T6235] R13: 00007ff52df16038 R14: 00007ff52df15fa0 R15: 00007ffd78b0ddc8
[  113.379022][ T6235]  </TASK>
[  113.593304][ T6238] loop6: detected capacity change from 0 to 2048
[  113.688239][   T29] kauditd_printk_skb: 615 callbacks suppressed
[  113.688259][   T29] audit: type=1400 audit(1760573662.852:4821): avc:  denied  { read } for  pid=6237 comm="syz.4.877" name="usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  113.719911][ T6234] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.874: bad orphan inode 11862016
[  113.732891][ T6234] ext4 filesystem being mounted at /167/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.743805][   T29] audit: type=1400 audit(1760573662.852:4822): avc:  denied  { open } for  pid=6237 comm="syz.4.877" path="/dev/usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  113.767858][   T29] audit: type=1400 audit(1760573662.902:4823): avc:  denied  { ioctl } for  pid=6237 comm="syz.4.877" path="/dev/usbmon7" dev="devtmpfs" ino=163 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  113.793655][ T6244] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=48774 sclass=netlink_tcpdiag_socket pid=6244 comm=syz.4.877
[  113.807900][ T6234] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #19: comm syz.2.874: corrupted inode contents
[  113.834192][ T6234] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #19: comm syz.2.874: mark_inode_dirty error
[  113.846375][ T6234] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #19: comm syz.2.874: corrupted inode contents
[  113.859893][ T6234] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2996: inode #19: comm syz.2.874: mark_inode_dirty error
[  113.872443][ T6234] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2999: inode #19: comm syz.2.874: mark inode dirty (error -117)
[  113.886480][ T6234] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[  113.894260][ T6252] IPVS: Error connecting to the multicast addr
[  113.956314][   T29] audit: type=1326 audit(1760573663.102:4824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.1.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83438eec9 code=0x7ffc0000
[  113.979801][   T29] audit: type=1326 audit(1760573663.102:4825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.1.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83438eec9 code=0x7ffc0000
[  114.003317][   T29] audit: type=1326 audit(1760573663.102:4826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.1.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83438eec9 code=0x7ffc0000
[  114.015480][ T6260] __nla_validate_parse: 3 callbacks suppressed
[  114.015520][ T6260] netlink: 8 bytes leftover after parsing attributes in process `syz.4.883'.
[  114.027007][   T29] audit: type=1326 audit(1760573663.102:4827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.1.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fe83438eec9 code=0x7ffc0000
[  114.066406][   T29] audit: type=1326 audit(1760573663.102:4828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.1.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83438eec9 code=0x7ffc0000
[  114.090541][   T29] audit: type=1326 audit(1760573663.102:4829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.1.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83438eec9 code=0x7ffc0000
[  114.114746][   T29] audit: type=1326 audit(1760573663.102:4830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6255 comm="syz.1.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe83438eec9 code=0x7ffc0000
[  114.142194][ T6254] random: crng reseeded on system resumption
[  114.297859][ T6271] netlink: 'syz.6.886': attribute type 39 has an invalid length.
[  114.362135][ T6277] lo speed is unknown, defaulting to 1000
[  114.395480][ T6280] loop2: detected capacity change from 0 to 1024
[  114.422745][ T6282] loop6: detected capacity change from 0 to 2048
[  114.494911][ T6277] lo speed is unknown, defaulting to 1000
[  114.550501][ T6292] loop3: detected capacity change from 0 to 164
[  114.566498][ T6292] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  114.614910][ T6294] loop6: detected capacity change from 0 to 1024
[  114.625349][ T6294] EXT4-fs error (device loop6): ext4_iget_extra_inode:5075: inode #15: comm syz.6.892: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  114.635954][ T6296] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  114.706372][ T6294] EXT4-fs error (device loop6): ext4_iget_extra_inode:5075: inode #15: comm syz.6.892: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  114.753416][ T6298] loop6: detected capacity change from 0 to 512
[  114.771744][ T6298] EXT4-fs error (device loop6): ext4_orphan_get:1418: comm syz.6.893: bad orphan inode 11862016
[  114.783696][ T6298] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.798727][ T6298] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #19: comm syz.6.893: corrupted inode contents
[  114.811155][ T6298] EXT4-fs error (device loop6): ext4_dirty_inode:6517: inode #19: comm syz.6.893: mark_inode_dirty error
[  114.822676][ T6298] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #19: comm syz.6.893: corrupted inode contents
[  114.834926][ T6298] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2996: inode #19: comm syz.6.893: mark_inode_dirty error
[  114.847546][ T6298] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2999: inode #19: comm syz.6.893: mark inode dirty (error -117)
[  114.860624][ T6298] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117)
[  114.929656][ T6302] netlink: 24 bytes leftover after parsing attributes in process `syz.6.894'.
[  114.939629][ T6302] IPVS: Error connecting to the multicast addr
[  114.964503][ T6304] loop6: detected capacity change from 0 to 1024
[  114.975756][ T6304] FAULT_INJECTION: forcing a failure.
[  114.975756][ T6304] name failslab, interval 1, probability 0, space 0, times 0
[  114.988537][ T6304] CPU: 1 UID: 0 PID: 6304 Comm: syz.6.895 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  114.988565][ T6304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  114.988579][ T6304] Call Trace:
[  114.988586][ T6304]  <TASK>
[  114.988596][ T6304]  __dump_stack+0x1d/0x30
[  114.988624][ T6304]  dump_stack_lvl+0xe8/0x140
[  114.988652][ T6304]  dump_stack+0x15/0x1b
[  114.988672][ T6304]  should_fail_ex+0x265/0x280
[  114.988705][ T6304]  should_failslab+0x8c/0xb0
[  114.988730][ T6304]  __kmalloc_noprof+0xa5/0x570
[  114.988856][ T6304]  ? copy_splice_read+0xc2/0x660
[  114.988927][ T6304]  copy_splice_read+0xc2/0x660
[  114.988952][ T6304]  ? __pfx_ext4_file_splice_read+0x10/0x10
[  114.988984][ T6304]  splice_direct_to_actor+0x290/0x680
[  114.989046][ T6304]  ? __pfx_direct_splice_actor+0x10/0x10
[  114.989118][ T6304]  do_splice_direct+0xda/0x150
[  114.989137][ T6304]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  114.989199][ T6304]  do_sendfile+0x380/0x650
[  114.989232][ T6304]  __x64_sys_sendfile64+0x105/0x150
[  114.989260][ T6304]  x64_sys_call+0x2bb4/0x3000
[  114.989279][ T6304]  do_syscall_64+0xd2/0x200
[  114.989347][ T6304]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  114.989411][ T6304]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  114.989431][ T6304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.989450][ T6304] RIP: 0033:0x7f3ea800eec9
[  114.989465][ T6304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.989569][ T6304] RSP: 002b:00007f3ea6a6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  114.989595][ T6304] RAX: ffffffffffffffda RBX: 00007f3ea8265fa0 RCX: 00007f3ea800eec9
[  114.989647][ T6304] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  114.989659][ T6304] RBP: 00007f3ea6a6f090 R08: 0000000000000000 R09: 0000000000000000
[  114.989672][ T6304] R10: 000000000003ffff R11: 0000000000000246 R12: 0000000000000001
[  114.989689][ T6304] R13: 00007f3ea8266038 R14: 00007f3ea8265fa0 R15: 00007ffd24ca7198
[  114.989717][ T6304]  </TASK>
[  115.226846][ T6308] random: crng reseeded on system resumption
[  115.363118][ T6314] loop6: detected capacity change from 0 to 8192
[  115.371501][ T6320] loop4: detected capacity change from 0 to 2048
[  115.378917][ T6314] vfat: Unknown parameter 'À'
[  115.431928][ T6320]  loop4: p1 p3
[  115.435526][ T6320] loop4: p1 start 458752 is beyond EOD, truncated
[  115.442027][ T6320] loop4: p3 start 8388352 is beyond EOD, truncated
[  115.498537][ T6324] loop3: detected capacity change from 0 to 2048
[  115.581672][ T6333] netlink: 24 bytes leftover after parsing attributes in process `syz.2.906'.
[  115.626566][ T6333] IPVS: Error connecting to the multicast addr
[  115.659544][ T6337] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  115.751941][ T6346] SELinux:  policydb version 4376 does not match my version range 15-35
[  115.760710][ T6346] SELinux: failed to load policy
[  115.795812][ T6351] loop3: detected capacity change from 0 to 164
[  115.803096][ T6350] random: crng reseeded on system resumption
[  115.809691][ T6351] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  115.814676][ T6350] net_ratelimit: 71 callbacks suppressed
[  115.814698][ T6350] batadv0: mtu less than device minimum
[  115.830299][ T6350] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  115.840671][ T6350] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  115.851061][ T6350] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  115.861787][ T6350] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  115.872447][ T6350] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  115.874122][ T6353] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  115.883028][ T6350] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  115.902133][ T6350] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  115.912964][ T6350] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  115.923526][ T6350] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  116.328485][ T6369] process 'syz.1.919' launched './file0' with NULL argv: empty string added
[  116.358942][ T6371] netlink: 24 bytes leftover after parsing attributes in process `syz.1.920'.
[  116.368271][ T6371] IPVS: Error connecting to the multicast addr
[  116.578002][ T6379] loop2: detected capacity change from 0 to 2048
[  116.609841][ T6383] random: crng reseeded on system resumption
[  116.675308][ T6389] FAULT_INJECTION: forcing a failure.
[  116.675308][ T6389] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.688950][ T6389] CPU: 1 UID: 0 PID: 6389 Comm: syz.6.927 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  116.689024][ T6389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  116.689039][ T6389] Call Trace:
[  116.689045][ T6389]  <TASK>
[  116.689053][ T6389]  __dump_stack+0x1d/0x30
[  116.689076][ T6389]  dump_stack_lvl+0xe8/0x140
[  116.689096][ T6389]  dump_stack+0x15/0x1b
[  116.689118][ T6389]  should_fail_ex+0x265/0x280
[  116.689184][ T6389]  should_fail+0xb/0x20
[  116.689232][ T6389]  should_fail_usercopy+0x1a/0x20
[  116.689259][ T6389]  strncpy_from_user+0x25/0x230
[  116.689299][ T6389]  strncpy_from_bpfptr+0x43/0x50
[  116.689361][ T6389]  bpf_prog_load+0x883/0x1100
[  116.689395][ T6389]  ? security_bpf+0x2b/0x90
[  116.689430][ T6389]  __sys_bpf+0x469/0x7c0
[  116.689486][ T6389]  __x64_sys_bpf+0x41/0x50
[  116.689645][ T6389]  x64_sys_call+0x2aee/0x3000
[  116.689667][ T6389]  do_syscall_64+0xd2/0x200
[  116.689692][ T6389]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  116.689724][ T6389]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  116.689806][ T6389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.689828][ T6389] RIP: 0033:0x7f3ea800eec9
[  116.689847][ T6389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.689872][ T6389] RSP: 002b:00007f3ea6a6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  116.689943][ T6389] RAX: ffffffffffffffda RBX: 00007f3ea8265fa0 RCX: 00007f3ea800eec9
[  116.689959][ T6389] RDX: 0000000000000094 RSI: 0000200000000400 RDI: 0000000000000005
[  116.689976][ T6389] RBP: 00007f3ea6a6f090 R08: 0000000000000000 R09: 0000000000000000
[  116.690019][ T6389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.690035][ T6389] R13: 00007f3ea8266038 R14: 00007f3ea8265fa0 R15: 00007ffd24ca7198
[  116.690059][ T6389]  </TASK>
[  116.878121][ T6387] loop3: detected capacity change from 0 to 2048
[  116.911206][ T6387] EXT4-fs error (device loop3): ext4_ext_precache:649: inode #2: comm syz.3.926: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  116.937150][ T6396] FAULT_INJECTION: forcing a failure.
[  116.937150][ T6396] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.950502][ T6396] CPU: 0 UID: 0 PID: 6396 Comm: syz.1.929 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  116.950606][ T6396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  116.950678][ T6396] Call Trace:
[  116.950685][ T6396]  <TASK>
[  116.950757][ T6396]  __dump_stack+0x1d/0x30
[  116.950799][ T6396]  dump_stack_lvl+0xe8/0x140
[  116.950817][ T6396]  dump_stack+0x15/0x1b
[  116.950893][ T6396]  should_fail_ex+0x265/0x280
[  116.951001][ T6396]  should_fail+0xb/0x20
[  116.951037][ T6396]  should_fail_usercopy+0x1a/0x20
[  116.951120][ T6396]  _copy_from_iter+0xd2/0xe80
[  116.951192][ T6396]  ? __alloc_skb+0x1b2/0x320
[  116.951274][ T6396]  ? __build_skb_around+0x1ab/0x200
[  116.951386][ T6396]  ? __alloc_skb+0x24c/0x320
[  116.951464][ T6396]  tipc_msg_build+0x2e1/0x840
[  116.951500][ T6396]  ? __rcu_read_unlock+0x4f/0x70
[  116.951538][ T6396]  __tipc_sendstream+0x663/0xb20
[  116.951609][ T6396]  ? __pfx_woken_wake_function+0x10/0x10
[  116.951684][ T6396]  tipc_sendstream+0x3e/0x60
[  116.951766][ T6396]  ? __pfx_tipc_sendstream+0x10/0x10
[  116.951807][ T6396]  __sock_sendmsg+0x145/0x180
[  116.951825][ T6396]  sock_write_iter+0x1a7/0x1f0
[  116.951869][ T6396]  ? __pfx_sock_write_iter+0x10/0x10
[  116.951994][ T6396]  vfs_write+0x52a/0x960
[  116.952020][ T6396]  ksys_write+0xda/0x1a0
[  116.952043][ T6396]  __x64_sys_write+0x40/0x50
[  116.952064][ T6396]  x64_sys_call+0x2802/0x3000
[  116.952083][ T6396]  do_syscall_64+0xd2/0x200
[  116.952123][ T6396]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  116.952219][ T6396]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  116.952252][ T6396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.952272][ T6396] RIP: 0033:0x7fe83438eec9
[  116.952288][ T6396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.952324][ T6396] RSP: 002b:00007fe832df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  116.952341][ T6396] RAX: ffffffffffffffda RBX: 00007fe8345e5fa0 RCX: 00007fe83438eec9
[  116.952358][ T6396] RDX: 000000002000011a RSI: 0000200000000340 RDI: 0000000000000003
[  116.952369][ T6396] RBP: 00007fe832df7090 R08: 0000000000000000 R09: 0000000000000000
[  116.952380][ T6396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.952391][ T6396] R13: 00007fe8345e6038 R14: 00007fe8345e5fa0 R15: 00007ffc367ac038
[  116.952482][ T6396]  </TASK>
[  117.236931][ T6402] netlink: 24 bytes leftover after parsing attributes in process `syz.6.931'.
[  117.272013][ T6402] IPVS: Error connecting to the multicast addr
[  117.303560][ T6409] netlink: 60 bytes leftover after parsing attributes in process `syz.6.934'.
[  117.312675][ T6409] IPVS: Unknown mcast interface: 
[  117.484398][ T6420] loop6: detected capacity change from 0 to 164
[  117.512566][ T6420] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  117.640371][ T6423] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  117.655499][ T6425] random: crng reseeded on system resumption
[  117.748483][ T6429] loop3: detected capacity change from 0 to 2048
[  118.144953][ T6446] netlink: 24 bytes leftover after parsing attributes in process `syz.4.945'.
[  118.196020][ T6448] netlink: 60 bytes leftover after parsing attributes in process `syz.1.947'.
[  118.235653][ T6452] FAULT_INJECTION: forcing a failure.
[  118.235653][ T6452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.249183][ T6452] CPU: 0 UID: 0 PID: 6452 Comm: syz.1.949 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  118.249216][ T6452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  118.249306][ T6452] Call Trace:
[  118.249315][ T6452]  <TASK>
[  118.249325][ T6452]  __dump_stack+0x1d/0x30
[  118.249352][ T6452]  dump_stack_lvl+0xe8/0x140
[  118.249447][ T6452]  dump_stack+0x15/0x1b
[  118.249469][ T6452]  should_fail_ex+0x265/0x280
[  118.249515][ T6452]  should_fail+0xb/0x20
[  118.249623][ T6452]  should_fail_usercopy+0x1a/0x20
[  118.249652][ T6452]  _copy_from_iter+0xd2/0xe80
[  118.249682][ T6452]  ? __build_skb_around+0x1ab/0x200
[  118.249717][ T6452]  ? __alloc_skb+0x223/0x320
[  118.249769][ T6452]  netlink_sendmsg+0x471/0x6b0
[  118.249814][ T6452]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.249855][ T6452]  __sock_sendmsg+0x145/0x180
[  118.249913][ T6452]  ____sys_sendmsg+0x31e/0x4e0
[  118.249964][ T6452]  ___sys_sendmsg+0x17b/0x1d0
[  118.250036][ T6452]  __x64_sys_sendmsg+0xd4/0x160
[  118.250079][ T6452]  x64_sys_call+0x191e/0x3000
[  118.250115][ T6452]  do_syscall_64+0xd2/0x200
[  118.250148][ T6452]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  118.250188][ T6452]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  118.250223][ T6452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.250252][ T6452] RIP: 0033:0x7fe83438eec9
[  118.250273][ T6452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.250366][ T6452] RSP: 002b:00007fe832df7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.250392][ T6452] RAX: ffffffffffffffda RBX: 00007fe8345e5fa0 RCX: 00007fe83438eec9
[  118.250410][ T6452] RDX: 0000000020008000 RSI: 0000200000000480 RDI: 0000000000000006
[  118.250427][ T6452] RBP: 00007fe832df7090 R08: 0000000000000000 R09: 0000000000000000
[  118.250458][ T6452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.250471][ T6452] R13: 00007fe8345e6038 R14: 00007fe8345e5fa0 R15: 00007ffc367ac038
[  118.250495][ T6452]  </TASK>
[  118.471678][ T6454] netlink: 128 bytes leftover after parsing attributes in process `syz.4.950'.
[  118.500651][ T6454] random: crng reseeded on system resumption
[  118.584523][ T6458] loop6: detected capacity change from 0 to 4096
[  118.617847][ T6462] netlink: 48 bytes leftover after parsing attributes in process `syz.4.954'.
[  118.639208][ T6458] EXT4-fs: Ignoring removed nomblk_io_submit option
[  118.731697][   T29] kauditd_printk_skb: 609 callbacks suppressed
[  118.731714][   T29] audit: type=1326 audit(1760573667.902:5440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ea800eec9 code=0x7ffc0000
[  118.761811][   T29] audit: type=1326 audit(1760573667.902:5441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3ea800ef03 code=0x7ffc0000
[  118.785655][   T29] audit: type=1326 audit(1760573667.902:5442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f3ea800ef87 code=0x7ffc0000
[  118.809167][   T29] audit: type=1326 audit(1760573667.902:5443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f3ea7fc632d code=0x7ffc0000
[  118.832613][   T29] audit: type=1326 audit(1760573667.902:5444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f3ea8043609 code=0x7ffc0000
[  118.856365][   T29] audit: type=1326 audit(1760573667.902:5445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f3ea7fc6397 code=0x7ffc0000
[  118.880266][   T29] audit: type=1326 audit(1760573667.902:5446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f3ea7fc5aa7 code=0x7ffc0000
[  118.904419][   T29] audit: type=1326 audit(1760573667.902:5447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f3ea7fc5b06 code=0x7ffc0000
[  118.928249][   T29] audit: type=1326 audit(1760573667.902:5448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ea800eec9 code=0x7ffc0000
[  119.004531][   T29] audit: type=1326 audit(1760573667.902:5449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.6.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ea800eec9 code=0x7ffc0000
[  119.019641][ T3731] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  119.029057][ T5238] Bluetooth: hci0: command 0x1003 tx timeout
[  119.100317][ T6474] FAULT_INJECTION: forcing a failure.
[  119.100317][ T6474] name failslab, interval 1, probability 0, space 0, times 0
[  119.113320][ T6474] CPU: 0 UID: 0 PID: 6474 Comm: syz.3.957 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  119.113370][ T6474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  119.113406][ T6474] Call Trace:
[  119.113414][ T6474]  <TASK>
[  119.113422][ T6474]  __dump_stack+0x1d/0x30
[  119.113444][ T6474]  dump_stack_lvl+0xe8/0x140
[  119.113463][ T6474]  dump_stack+0x15/0x1b
[  119.113480][ T6474]  should_fail_ex+0x265/0x280
[  119.113520][ T6474]  should_failslab+0x8c/0xb0
[  119.113626][ T6474]  __kmalloc_node_track_caller_noprof+0xa5/0x580
[  119.113659][ T6474]  ? security_set_bools+0x85/0x340
[  119.113701][ T6474]  kmemdup_noprof+0x2b/0x70
[  119.113735][ T6474]  security_set_bools+0x85/0x340
[  119.113809][ T6474]  sel_commit_bools_write+0x1ea/0x270
[  119.113848][ T6474]  vfs_writev+0x406/0x8b0
[  119.113881][ T6474]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  119.114003][ T6474]  ? mutex_lock+0xd/0x30
[  119.114022][ T6474]  do_writev+0xe7/0x210
[  119.114115][ T6474]  __x64_sys_writev+0x45/0x50
[  119.114144][ T6474]  x64_sys_call+0x1e9a/0x3000
[  119.114173][ T6474]  do_syscall_64+0xd2/0x200
[  119.114227][ T6474]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  119.114264][ T6474]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  119.114370][ T6474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.114399][ T6474] RIP: 0033:0x7f297e5aeec9
[  119.114415][ T6474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.114434][ T6474] RSP: 002b:00007f297d017038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  119.114524][ T6474] RAX: ffffffffffffffda RBX: 00007f297e805fa0 RCX: 00007f297e5aeec9
[  119.114540][ T6474] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000003
[  119.114553][ T6474] RBP: 00007f297d017090 R08: 0000000000000000 R09: 0000000000000000
[  119.114565][ T6474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.114589][ T6474] R13: 00007f297e806038 R14: 00007f297e805fa0 R15: 00007ffda7affe38
[  119.114616][ T6474]  </TASK>
[  119.361899][ T6481] netlink: 24 bytes leftover after parsing attributes in process `syz.6.959'.
[  119.380243][ T6481] IPVS: Error connecting to the multicast addr
[  119.397509][ T6483] loop2: detected capacity change from 0 to 164
[  119.421651][ T6485] loop6: detected capacity change from 0 to 128
[  119.421755][ T6483] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  119.480772][ T6489] netlink: 128 bytes leftover after parsing attributes in process `syz.1.963'.
[  119.502161][ T6489] random: crng reseeded on system resumption
[  119.569299][ T6494] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  119.671332][ T6498] FAULT_INJECTION: forcing a failure.
[  119.671332][ T6498] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  119.684986][ T6498] CPU: 1 UID: 0 PID: 6498 Comm: syz.1.967 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  119.685016][ T6498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  119.685029][ T6498] Call Trace:
[  119.685037][ T6498]  <TASK>
[  119.685046][ T6498]  __dump_stack+0x1d/0x30
[  119.685074][ T6498]  dump_stack_lvl+0xe8/0x140
[  119.685098][ T6498]  dump_stack+0x15/0x1b
[  119.685119][ T6498]  should_fail_ex+0x265/0x280
[  119.685171][ T6498]  should_fail_alloc_page+0xf2/0x100
[  119.685218][ T6498]  __alloc_frozen_pages_noprof+0xff/0x360
[  119.685271][ T6498]  alloc_pages_mpol+0xb3/0x260
[  119.685300][ T6498]  vma_alloc_folio_noprof+0x1aa/0x300
[  119.685323][ T6498]  handle_mm_fault+0xec2/0x2be0
[  119.685348][ T6498]  ? vma_start_read+0x141/0x1f0
[  119.685452][ T6498]  do_user_addr_fault+0x630/0x1080
[  119.685617][ T6498]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  119.685650][ T6498]  exc_page_fault+0x62/0xa0
[  119.685675][ T6498]  asm_exc_page_fault+0x26/0x30
[  119.685740][ T6498] RIP: 0033:0x7fe83433c3ab
[  119.685759][ T6498] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[  119.685816][ T6498] RSP: 002b:00007fe832df4e10 EFLAGS: 00010246
[  119.685832][ T6498] RAX: 00007fe832df6f30 RBX: 00007fe8345b7640 RCX: 0000000000000000
[  119.685844][ T6498] RDX: 00007fe832df6f78 RSI: 00007fe8343eedf8 RDI: 00007fe832df4e30
[  119.685856][ T6498] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  119.685895][ T6498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.685910][ T6498] R13: 00007fe8345e6038 R14: 00007fe8345e5fa0 R15: 00007ffc367ac038
[  119.685935][ T6498]  </TASK>
[  119.685947][ T6498] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  119.993118][ T6504] netlink: 24 bytes leftover after parsing attributes in process `syz.4.972'.
[  120.100064][ T6510] loop6: detected capacity change from 0 to 2048
[  120.117475][ T6512] SELinux:  policydb version 4376 does not match my version range 15-35
[  120.136878][ T6512] SELinux: failed to load policy
[  120.194433][ T6521] loop3: detected capacity change from 0 to 512
[  120.366999][ T6523] netlink: 128 bytes leftover after parsing attributes in process `syz.4.977'.
[  120.388628][ T6523] random: crng reseeded on system resumption
[  120.402310][ T6521] ext4 filesystem being mounted at /197/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  120.585819][ T6537] loop6: detected capacity change from 0 to 1024
[  120.633034][ T6548] netlink: 24 bytes leftover after parsing attributes in process `syz.4.984'.
[  120.706691][ T6553] netlink: 24 bytes leftover after parsing attributes in process `syz.6.985'.
[  120.716775][ T6553] IPVS: Error connecting to the multicast addr
[  121.037130][ T6562] loop4: detected capacity change from 0 to 4096
[  121.058187][ T6562] EXT4-fs: Ignoring removed nomblk_io_submit option
[  121.448198][ T6569] loop2: detected capacity change from 0 to 164
[  121.458312][ T6571] netlink: 44 bytes leftover after parsing attributes in process `syz.1.991'.
[  121.467372][ T6571] netlink: 12 bytes leftover after parsing attributes in process `syz.1.991'.
[  121.478062][ T6571] random: crng reseeded on system resumption
[  121.485326][ T6569] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  121.491002][ T6571] net_ratelimit: 30 callbacks suppressed
[  121.491051][ T6571] batadv0: mtu less than device minimum
[  121.505661][ T6571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  121.516718][ T6571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  121.527231][ T6571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  121.537989][ T6571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  121.548645][ T6571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  121.559379][ T6571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  121.570135][ T6571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  121.580777][ T6571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  121.591689][ T6571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  121.681742][ T6576] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  121.733555][ T6578] netlink: 24 bytes leftover after parsing attributes in process `syz.6.994'.
[  121.737297][ T6580] loop4: detected capacity change from 0 to 2048
[  121.742538][ T6578] netlink: 212 bytes leftover after parsing attributes in process `syz.6.994'.
[  122.157976][ T6593] tipc: Started in network mode
[  122.163093][ T6593] tipc: Node identity ac14140f, cluster identity 4711
[  122.170472][ T6593] tipc: New replicast peer: 255.255.255.255
[  122.176738][ T6593] tipc: Enabled bearer <udp:syz2>, priority 10
[  122.313697][ T6603] loop4: detected capacity change from 0 to 512
[  122.321990][ T6603] EXT4-fs: Ignoring removed oldalloc option
[  122.330349][ T6603] EXT4-fs (loop4): 1 truncate cleaned up
[  122.341471][ T6605] random: crng reseeded on system resumption
[  122.350410][ T6603] EXT4-fs error (device loop4): ext4_lookup:1787: inode #14: comm syz.4.1002: invalid fast symlink length 39
[  122.363512][ T6603] EXT4-fs (loop4): Remounting filesystem read-only
[  122.371628][ T6603] netlink: 'syz.4.1002': attribute type 1 has an invalid length.
[  122.506357][ T6612] loop4: detected capacity change from 0 to 4096
[  122.513204][ T6612] EXT4-fs: Ignoring removed nomblk_io_submit option
[  122.614124][ T6623] loop6: detected capacity change from 0 to 2048
[  122.642528][ T6625] IPVS: Error connecting to the multicast addr
[  122.827666][ T6636] loop2: detected capacity change from 0 to 164
[  122.835475][ T6636] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  122.844423][ T6638] FAULT_INJECTION: forcing a failure.
[  122.844423][ T6638] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.855923][ T6634] lo speed is unknown, defaulting to 1000
[  122.857876][ T6638] CPU: 0 UID: 0 PID: 6638 Comm: syz.6.1013 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  122.857962][ T6638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  122.857983][ T6638] Call Trace:
[  122.857992][ T6638]  <TASK>
[  122.858002][ T6638]  __dump_stack+0x1d/0x30
[  122.858041][ T6638]  dump_stack_lvl+0xe8/0x140
[  122.858070][ T6638]  dump_stack+0x15/0x1b
[  122.858094][ T6638]  should_fail_ex+0x265/0x280
[  122.858166][ T6638]  should_fail+0xb/0x20
[  122.858211][ T6638]  should_fail_usercopy+0x1a/0x20
[  122.858240][ T6638]  _copy_to_user+0x20/0xa0
[  122.858335][ T6638]  __se_sys_move_pages+0xfbc/0x1360
[  122.858399][ T6638]  ? __bpf_trace_sys_enter+0x10/0x30
[  122.858436][ T6638]  ? trace_sys_enter+0xd0/0xf0
[  122.858506][ T6638]  __x64_sys_move_pages+0x78/0x90
[  122.858549][ T6638]  x64_sys_call+0x2f87/0x3000
[  122.858619][ T6638]  do_syscall_64+0xd2/0x200
[  122.858653][ T6638]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  122.858706][ T6638]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  122.858748][ T6638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.858831][ T6638] RIP: 0033:0x7f3ea800eec9
[  122.858859][ T6638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.858885][ T6638] RSP: 002b:00007f3ea6a6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[  122.858942][ T6638] RAX: ffffffffffffffda RBX: 00007f3ea8265fa0 RCX: 00007f3ea800eec9
[  122.859024][ T6638] RDX: 0000200000000080 RSI: 0000000000001efe RDI: 0000000000000000
[  122.859042][ T6638] RBP: 00007f3ea6a6f090 R08: 0000200000000040 R09: 0000000000000000
[  122.859060][ T6638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.859078][ T6638] R13: 00007f3ea8266038 R14: 00007f3ea8265fa0 R15: 00007ffd24ca7198
[  122.859107][ T6638]  </TASK>
[  122.893164][ T6640] loop6: detected capacity change from 0 to 512
[  122.932627][ T6634] lo speed is unknown, defaulting to 1000
[  123.049842][ T6644] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  123.073948][ T6640] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.087061][ T6640] FAULT_INJECTION: forcing a failure.
[  123.087061][ T6640] name failslab, interval 1, probability 0, space 0, times 0
[  123.099780][ T6640] CPU: 0 UID: 0 PID: 6640 Comm: syz.6.1015 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  123.099812][ T6640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  123.099825][ T6640] Call Trace:
[  123.099857][ T6640]  <TASK>
[  123.099866][ T6640]  __dump_stack+0x1d/0x30
[  123.099893][ T6640]  dump_stack_lvl+0xe8/0x140
[  123.099919][ T6640]  dump_stack+0x15/0x1b
[  123.099942][ T6640]  should_fail_ex+0x265/0x280
[  123.100166][ T6640]  should_failslab+0x8c/0xb0
[  123.100203][ T6640]  __kmalloc_noprof+0xa5/0x570
[  123.100237][ T6640]  ? ext4_find_extent+0x16b/0x7a0
[  123.100285][ T6640]  ext4_find_extent+0x16b/0x7a0
[  123.100390][ T6640]  ext4_ext_map_blocks+0x11f/0x38a0
[  123.100422][ T6640]  ? find_get_block_common+0x736/0x960
[  123.100484][ T6640]  ext4_map_blocks+0x5ee/0xd00
[  123.100557][ T6640]  ext4_alloc_file_blocks+0x2a9/0x800
[  123.100654][ T6640]  ext4_do_fallocate+0x13b/0x3f0
[  123.100717][ T6640]  ext4_fallocate+0x20d/0x2f0
[  123.100746][ T6640]  vfs_fallocate+0x3b6/0x400
[  123.100775][ T6640]  __x64_sys_fallocate+0x7a/0xd0
[  123.100817][ T6640]  x64_sys_call+0x2518/0x3000
[  123.100925][ T6640]  do_syscall_64+0xd2/0x200
[  123.100986][ T6640]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  123.101024][ T6640]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  123.101061][ T6640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.101086][ T6640] RIP: 0033:0x7f3ea800eec9
[  123.101106][ T6640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.101131][ T6640] RSP: 002b:00007f3ea6a6f038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  123.101197][ T6640] RAX: ffffffffffffffda RBX: 00007f3ea8265fa0 RCX: 00007f3ea800eec9
[  123.101211][ T6640] RDX: 0000000000000bf5 RSI: 0000000000000000 RDI: 0000000000000006
[  123.101224][ T6640] RBP: 00007f3ea6a6f090 R08: 0000000000000000 R09: 0000000000000000
[  123.101236][ T6640] R10: 0000000002000402 R11: 0000000000000246 R12: 0000000000000001
[  123.101248][ T6640] R13: 00007f3ea8266038 R14: 00007f3ea8265fa0 R15: 00007ffd24ca7198
[  123.101269][ T6640]  </TASK>
[  123.319780][ T3510] tipc: Node number set to 2886997007
[  123.354670][ T6647] random: crng reseeded on system resumption
[  123.498717][ T6662] IPVS: Error connecting to the multicast addr
[  123.516320][ T6663] loop6: detected capacity change from 0 to 4096
[  123.535607][ T6663] EXT4-fs: Ignoring removed nomblk_io_submit option
[  123.543219][ T6666] loop4: detected capacity change from 0 to 2048
[  123.653740][ T6675] netlink: 'syz.1.1025': attribute type 4 has an invalid length.
[  123.684308][ T6675] hsr_slave_0: left promiscuous mode
[  123.703923][ T6675] hsr_slave_1: left promiscuous mode
[  123.814909][ T6683] loop6: detected capacity change from 0 to 512
[  123.831311][ T6683] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  123.862053][ T6683] EXT4-fs (loop6): 1 truncate cleaned up
[  123.963884][ T6696] FAULT_INJECTION: forcing a failure.
[  123.963884][ T6696] name failslab, interval 1, probability 0, space 0, times 0
[  123.976944][ T6696] CPU: 0 UID: 0 PID: 6696 Comm: syz.2.1031 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  123.976973][ T6696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  123.976989][ T6696] Call Trace:
[  123.977005][ T6696]  <TASK>
[  123.977017][ T6696]  __dump_stack+0x1d/0x30
[  123.977041][ T6696]  dump_stack_lvl+0xe8/0x140
[  123.977067][ T6696]  dump_stack+0x15/0x1b
[  123.977089][ T6696]  should_fail_ex+0x265/0x280
[  123.977165][ T6696]  should_failslab+0x8c/0xb0
[  123.977202][ T6696]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  123.977302][ T6696]  ? __alloc_skb+0x101/0x320
[  123.977336][ T6696]  __alloc_skb+0x101/0x320
[  123.977369][ T6696]  netlink_alloc_large_skb+0xbf/0xf0
[  123.977405][ T6696]  netlink_sendmsg+0x3cf/0x6b0
[  123.977583][ T6696]  ? __pfx_netlink_sendmsg+0x10/0x10
[  123.977623][ T6696]  __sock_sendmsg+0x145/0x180
[  123.977650][ T6696]  ____sys_sendmsg+0x31e/0x4e0
[  123.977689][ T6696]  ___sys_sendmsg+0x17b/0x1d0
[  123.977760][ T6696]  __x64_sys_sendmsg+0xd4/0x160
[  123.977800][ T6696]  x64_sys_call+0x191e/0x3000
[  123.977826][ T6696]  do_syscall_64+0xd2/0x200
[  123.977861][ T6696]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  123.977957][ T6696]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  123.977980][ T6696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.978072][ T6696] RIP: 0033:0x7fbba573eec9
[  123.978093][ T6696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.978117][ T6696] RSP: 002b:00007fbba419f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  123.978142][ T6696] RAX: ffffffffffffffda RBX: 00007fbba5995fa0 RCX: 00007fbba573eec9
[  123.978159][ T6696] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000006
[  123.978173][ T6696] RBP: 00007fbba419f090 R08: 0000000000000000 R09: 0000000000000000
[  123.978190][ T6696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.978246][ T6696] R13: 00007fbba5996038 R14: 00007fbba5995fa0 R15: 00007ffddaeeaab8
[  123.978272][ T6696]  </TASK>
[  124.024760][   T29] kauditd_printk_skb: 206 callbacks suppressed
[  124.024787][   T29] audit: type=1400 audit(3521147336.864:5654): avc:  denied  { setopt } for  pid=6690 comm="syz.1.1029" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  124.076136][ T6700] random: crng reseeded on system resumption
[  124.079760][   T29] audit: type=1400 audit(3521147336.914:5655): avc:  denied  { write } for  pid=6690 comm="syz.1.1029" path="socket:[17992]" dev="sockfs" ino=17992 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  124.217071][ T6705] FAULT_INJECTION: forcing a failure.
[  124.217071][ T6705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.217321][   T29] audit: type=1400 audit(3521147337.064:5656): avc:  denied  { bind } for  pid=6701 comm="syz.4.1033" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  124.241875][ T6705] CPU: 0 UID: 0 PID: 6705 Comm: syz.4.1034 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  124.241948][ T6705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  124.241964][ T6705] Call Trace:
[  124.241974][ T6705]  <TASK>
[  124.241985][ T6705]  __dump_stack+0x1d/0x30
[  124.242034][ T6705]  dump_stack_lvl+0xe8/0x140
[  124.242062][ T6705]  dump_stack+0x15/0x1b
[  124.242087][ T6705]  should_fail_ex+0x265/0x280
[  124.242219][ T6705]  should_fail+0xb/0x20
[  124.242262][ T6705]  should_fail_usercopy+0x1a/0x20
[  124.242294][ T6705]  _copy_from_iter+0xd2/0xe80
[  124.242332][ T6705]  ? __build_skb_around+0x1ab/0x200
[  124.242373][ T6705]  ? __alloc_skb+0x223/0x320
[  124.242413][ T6705]  netlink_sendmsg+0x471/0x6b0
[  124.242460][ T6705]  ? __pfx_netlink_sendmsg+0x10/0x10
[  124.242570][ T6705]  __sock_sendmsg+0x145/0x180
[  124.242599][ T6705]  ____sys_sendmsg+0x31e/0x4e0
[  124.242703][ T6705]  ___sys_sendmsg+0x17b/0x1d0
[  124.242767][ T6705]  __x64_sys_sendmsg+0xd4/0x160
[  124.242877][ T6705]  x64_sys_call+0x191e/0x3000
[  124.242907][ T6705]  do_syscall_64+0xd2/0x200
[  124.242955][ T6705]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  124.242997][ T6705]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  124.243028][ T6705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.243059][ T6705] RIP: 0033:0x7ff52dcbeec9
[  124.243083][ T6705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.243143][ T6705] RSP: 002b:00007ff52c727038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  124.243169][ T6705] RAX: ffffffffffffffda RBX: 00007ff52df15fa0 RCX: 00007ff52dcbeec9
[  124.243187][ T6705] RDX: 0000000020008000 RSI: 0000200000000480 RDI: 0000000000000003
[  124.243205][ T6705] RBP: 00007ff52c727090 R08: 0000000000000000 R09: 0000000000000000
[  124.243223][ T6705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.243241][ T6705] R13: 00007ff52df16038 R14: 00007ff52df15fa0 R15: 00007ffd78b0ddc8
[  124.243269][ T6705]  </TASK>
[  124.272404][ T6707] loop4: detected capacity change from 0 to 512
[  124.275563][   T29] audit: type=1400 audit(3521147337.074:5657): avc:  denied  { read write } for  pid=6701 comm="syz.4.1033" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  124.286511][ T6707] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  124.295797][   T29] audit: type=1400 audit(3521147337.074:5658): avc:  denied  { open } for  pid=6701 comm="syz.4.1033" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  124.386844][ T6709] __nla_validate_parse: 12 callbacks suppressed
[  124.386947][ T6709] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1036'.
[  124.397170][ T6707] EXT4-fs (loop4): 1 truncate cleaned up
[  124.397680][ T6709] IPVS: Error connecting to the multicast addr
[  124.526134][   T29] audit: type=1400 audit(3521147337.404:5659): avc:  denied  { write } for  pid=6712 comm="syz.3.1037" laddr=fe80::ac14:140d lport=255 faddr=ff02::1 fport=20002 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  124.602853][   T29] audit: type=1400 audit(3521147337.404:5660): avc:  denied  { execute_no_trans } for  pid=6712 comm="syz.3.1037" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=172 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  124.697780][ T6720] loop6: detected capacity change from 0 to 2048
[  124.719514][ T6722] loop2: detected capacity change from 0 to 164
[  124.726999][ T6722] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  124.737591][ T6726] FAULT_INJECTION: forcing a failure.
[  124.737591][ T6726] name failslab, interval 1, probability 0, space 0, times 0
[  124.750572][ T6726] CPU: 1 UID: 0 PID: 6726 Comm: syz.4.1041 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  124.750616][ T6726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  124.750685][ T6726] Call Trace:
[  124.750690][ T6726]  <TASK>
[  124.750697][ T6726]  __dump_stack+0x1d/0x30
[  124.750723][ T6726]  dump_stack_lvl+0xe8/0x140
[  124.750748][ T6726]  dump_stack+0x15/0x1b
[  124.750771][ T6726]  should_fail_ex+0x265/0x280
[  124.750825][ T6726]  should_failslab+0x8c/0xb0
[  124.750927][ T6726]  kmem_cache_alloc_noprof+0x50/0x480
[  124.750963][ T6726]  ? security_file_alloc+0x32/0x100
[  124.751005][ T6726]  security_file_alloc+0x32/0x100
[  124.751037][ T6726]  init_file+0x5c/0x1d0
[  124.751117][ T6726]  alloc_empty_file+0x8b/0x200
[  124.751159][ T6726]  alloc_file_pseudo+0xc6/0x160
[  124.751238][ T6726]  __shmem_file_setup+0x1de/0x210
[  124.751273][ T6726]  shmem_file_setup+0x3b/0x50
[  124.751313][ T6726]  __se_sys_memfd_create+0x2c3/0x590
[  124.751386][ T6726]  __x64_sys_memfd_create+0x31/0x40
[  124.751415][ T6726]  x64_sys_call+0x2ac2/0x3000
[  124.751439][ T6726]  do_syscall_64+0xd2/0x200
[  124.751498][ T6726]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  124.751572][ T6726]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  124.751607][ T6726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.751636][ T6726] RIP: 0033:0x7ff52dcbeec9
[  124.751656][ T6726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.751680][ T6726] RSP: 002b:00007ff52c726e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  124.751745][ T6726] RAX: ffffffffffffffda RBX: 000000000000053b RCX: 00007ff52dcbeec9
[  124.751762][ T6726] RDX: 00007ff52c726ef0 RSI: 0000000000000000 RDI: 00007ff52dd42960
[  124.751779][ T6726] RBP: 0000200000000b80 R08: 00007ff52c726bb7 R09: 00007ff52c726e40
[  124.751794][ T6726] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000002c0
[  124.751809][ T6726] R13: 00007ff52c726ef0 R14: 00007ff52c726eb0 R15: 00002000000001c0
[  124.751834][ T6726]  </TASK>
[  125.043390][ T6730] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1043'.
[  125.053968][ T6730] random: crng reseeded on system resumption
[  125.067673][ T6731] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  125.089674][   T29] audit: type=1400 audit(3521147337.964:5661): avc:  denied  { setopt } for  pid=6732 comm="syz.4.1044" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  125.109534][   T29] audit: type=1400 audit(3521147337.964:5662): avc:  denied  { create } for  pid=6732 comm="syz.4.1044" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  125.140630][ T6735] loop4: detected capacity change from 0 to 512
[  125.148550][ T6735] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  125.179029][   T29] audit: type=1400 audit(3521147337.974:5663): avc:  denied  { wake_alarm } for  pid=6732 comm="syz.4.1044" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  125.182159][ T6735] EXT4-fs (loop4): 1 truncate cleaned up
[  125.357275][ T6743] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1048'.
[  125.421149][ T6749] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1049'.
[  125.442865][ T6738] FAULT_INJECTION: forcing a failure.
[  125.442865][ T6738] name failslab, interval 1, probability 0, space 0, times 0
[  125.446699][ T6749] IPVS: Error connecting to the multicast addr
[  125.455598][ T6738] CPU: 0 UID: 0 PID: 6738 Comm: syz.6.1046 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  125.455631][ T6738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  125.455647][ T6738] Call Trace:
[  125.455655][ T6738]  <TASK>
[  125.455664][ T6738]  __dump_stack+0x1d/0x30
[  125.455690][ T6738]  dump_stack_lvl+0xe8/0x140
[  125.455716][ T6738]  dump_stack+0x15/0x1b
[  125.455805][ T6738]  should_fail_ex+0x265/0x280
[  125.455936][ T6738]  should_failslab+0x8c/0xb0
[  125.456003][ T6738]  __kmalloc_noprof+0xa5/0x570
[  125.456043][ T6738]  ? read_commands+0x4d/0x160
[  125.456093][ T6738]  read_commands+0x4d/0x160
[  125.456139][ T6738]  ? sk_skb_reason_drop+0xbd/0x270
[  125.456208][ T6738]  hci_mgmt_cmd+0x7f5/0x8a0
[  125.456254][ T6738]  hci_sock_sendmsg+0x518/0x910
[  125.456351][ T6738]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  125.456393][ T6738]  __sock_sendmsg+0x145/0x180
[  125.456421][ T6738]  sock_write_iter+0x1a7/0x1f0
[  125.456496][ T6738]  aio_write+0x2e5/0x410
[  125.456551][ T6738]  io_submit_one+0xacd/0x11d0
[  125.456604][ T6738]  __se_sys_io_submit+0xfb/0x280
[  125.456668][ T6738]  __x64_sys_io_submit+0x43/0x50
[  125.456706][ T6738]  x64_sys_call+0x2d6c/0x3000
[  125.456737][ T6738]  do_syscall_64+0xd2/0x200
[  125.456772][ T6738]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  125.456896][ T6738]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  125.456940][ T6738]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.456970][ T6738] RIP: 0033:0x7f3ea800eec9
[  125.456994][ T6738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.457018][ T6738] RSP: 002b:00007f3ea6a6f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  125.457119][ T6738] RAX: ffffffffffffffda RBX: 00007f3ea8265fa0 RCX: 00007f3ea800eec9
[  125.457141][ T6738] RDX: 0000200000000240 RSI: 0000000000000001 RDI: 00007f3ea6a0a000
[  125.457180][ T6738] RBP: 00007f3ea6a6f090 R08: 0000000000000000 R09: 0000000000000000
[  125.457198][ T6738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.457217][ T6738] R13: 00007f3ea8266038 R14: 00007f3ea8265fa0 R15: 00007ffd24ca7198
[  125.457245][ T6738]  </TASK>
[  125.780157][ T6759] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1053'.
[  125.818282][ T6763] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1054'.
[  125.836990][ T6763] random: crng reseeded on system resumption
[  125.885768][ T6768] loop6: detected capacity change from 0 to 512
[  125.893076][ T6768] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  125.913786][ T6769] loop2: detected capacity change from 0 to 2048
[  125.926373][ T6768] EXT4-fs (loop6): 1 truncate cleaned up
[  125.960372][ T6769] Alternate GPT is invalid, using primary GPT.
[  125.966820][ T6769]  loop2: p1 p2 p3
[  126.012719][ T6774] loop4: detected capacity change from 0 to 2048
[  126.161742][ T6786] loop2: detected capacity change from 0 to 4096
[  126.168929][ T6786] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.212692][ T6791] FAULT_INJECTION: forcing a failure.
[  126.212692][ T6791] name failslab, interval 1, probability 0, space 0, times 0
[  126.225386][ T6791] CPU: 1 UID: 0 PID: 6791 Comm: syz.1.1060 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  126.225430][ T6791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  126.225504][ T6791] Call Trace:
[  126.225514][ T6791]  <TASK>
[  126.225532][ T6791]  __dump_stack+0x1d/0x30
[  126.225555][ T6791]  dump_stack_lvl+0xe8/0x140
[  126.225574][ T6791]  dump_stack+0x15/0x1b
[  126.225596][ T6791]  should_fail_ex+0x265/0x280
[  126.225686][ T6791]  should_failslab+0x8c/0xb0
[  126.225719][ T6791]  kmem_cache_alloc_noprof+0x50/0x480
[  126.225778][ T6791]  ? security_file_alloc+0x32/0x100
[  126.225815][ T6791]  security_file_alloc+0x32/0x100
[  126.225848][ T6791]  init_file+0x5c/0x1d0
[  126.226014][ T6791]  alloc_empty_file+0x8b/0x200
[  126.226065][ T6791]  alloc_file_pseudo+0xc6/0x160
[  126.226188][ T6791]  anon_inode_getfile_fmode+0xa5/0x140
[  126.226232][ T6791]  do_eventfd+0x116/0x1b0
[  126.226257][ T6791]  __x64_sys_eventfd+0x20/0x30
[  126.226352][ T6791]  x64_sys_call+0x2ea0/0x3000
[  126.226381][ T6791]  do_syscall_64+0xd2/0x200
[  126.226406][ T6791]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  126.226429][ T6791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.226521][ T6791] RIP: 0033:0x7fe83438eec9
[  126.226539][ T6791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.226562][ T6791] RSP: 002b:00007fe832df7038 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  126.226595][ T6791] RAX: ffffffffffffffda RBX: 00007fe8345e5fa0 RCX: 00007fe83438eec9
[  126.226690][ T6791] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  126.226784][ T6791] RBP: 00007fe832df7090 R08: 0000000000000000 R09: 0000000000000000
[  126.226801][ T6791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.226818][ T6791] R13: 00007fe8345e6038 R14: 00007fe8345e5fa0 R15: 00007ffc367ac038
[  126.226845][ T6791]  </TASK>
[  126.461755][ T6794] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1061'.
[  126.496482][ T6797] loop4: detected capacity change from 0 to 512
[  126.504115][ T6797] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  126.521246][ T6797] EXT4-fs (loop4): 1 truncate cleaned up
[  126.538672][ T6797] syzkaller1: entered promiscuous mode
[  126.544507][ T6797] syzkaller1: entered allmulticast mode
[  126.596680][ T6809] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1067'.
[  126.608553][ T6809] random: crng reseeded on system resumption
[  126.642479][ T6810] loop3: detected capacity change from 0 to 2048
[  126.762866][ T6817] loop4: detected capacity change from 0 to 2048
[  126.828510][ T6824] loop3: detected capacity change from 0 to 512
[  126.901947][ T6824] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  126.966966][ T6824] bridge_slave_0: left promiscuous mode
[  126.972927][ T6824] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.984066][ T6826] FAULT_INJECTION: forcing a failure.
[  126.984066][ T6826] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.997406][ T6826] CPU: 0 UID: 0 PID: 6826 Comm: syz.4.1073 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  126.997443][ T6826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  126.997475][ T6826] Call Trace:
[  126.997482][ T6826]  <TASK>
[  126.997490][ T6826]  __dump_stack+0x1d/0x30
[  126.997512][ T6826]  dump_stack_lvl+0xe8/0x140
[  126.997532][ T6826]  dump_stack+0x15/0x1b
[  126.997629][ T6826]  should_fail_ex+0x265/0x280
[  126.997665][ T6826]  should_fail+0xb/0x20
[  126.997701][ T6826]  should_fail_usercopy+0x1a/0x20
[  126.997735][ T6826]  _copy_from_user+0x1c/0xb0
[  126.997798][ T6826]  memdup_user+0x5e/0xd0
[  126.997823][ T6826]  strndup_user+0x68/0xb0
[  126.997850][ T6826]  perf_uprobe_init+0x48/0x150
[  126.997931][ T6826]  perf_uprobe_event_init+0xc4/0x140
[  126.997958][ T6826]  perf_try_init_event+0xd9/0x540
[  126.997989][ T6826]  ? perf_event_alloc+0xb1c/0x1740
[  126.998018][ T6826]  perf_event_alloc+0xb27/0x1740
[  126.998082][ T6826]  __se_sys_perf_event_open+0x615/0x11c0
[  126.998127][ T6826]  __x64_sys_perf_event_open+0x67/0x80
[  126.998155][ T6826]  x64_sys_call+0x7bd/0x3000
[  126.998184][ T6826]  do_syscall_64+0xd2/0x200
[  126.998215][ T6826]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  126.998252][ T6826]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  126.998285][ T6826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.998307][ T6826] RIP: 0033:0x7ff52dcbeec9
[  126.998325][ T6826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.998350][ T6826] RSP: 002b:00007ff52c727038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  126.998399][ T6826] RAX: ffffffffffffffda RBX: 00007ff52df15fa0 RCX: 00007ff52dcbeec9
[  126.998416][ T6826] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  126.998428][ T6826] RBP: 00007ff52c727090 R08: 0000000000000000 R09: 0000000000000000
[  126.998440][ T6826] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  126.998452][ T6826] R13: 00007ff52df16038 R14: 00007ff52df15fa0 R15: 00007ffd78b0ddc8
[  126.998479][ T6826]  </TASK>
[  127.208363][ T6824] bridge_slave_1: left allmulticast mode
[  127.214284][ T6824] bridge_slave_1: left promiscuous mode
[  127.216710][ T6827] loop4: detected capacity change from 0 to 2048
[  127.220083][ T6824] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.236585][ T6824] bond0: (slave bond_slave_0): Releasing backup interface
[  127.247254][ T6824] bond0: (slave bond_slave_1): Releasing backup interface
[  127.260138][ T6824] team0: Port device team_slave_0 removed
[  127.271129][ T6824] team0: Port device team_slave_1 removed
[  127.277087][ T6827] Alternate GPT is invalid, using primary GPT.
[  127.280037][ T6824] net_ratelimit: 30 callbacks suppressed
[  127.280060][ T6824] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  127.283671][ T6827]  loop4: p1 p2 p3
[  127.319598][   T36] syz!: Port: 1 Link DOWN
[  127.405952][ T6832] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1075'.
[  127.483951][ T6841] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1078'.
[  127.505514][ T6841] random: crng reseeded on system resumption
[  127.585791][ T6848] pimreg: entered allmulticast mode
[  127.691770][ T6857] loop2: detected capacity change from 0 to 164
[  127.699136][ T6857] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  127.707111][ T6854] loop6: detected capacity change from 0 to 2048
[  127.765146][ T6860] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  127.854624][ T6864] loop3: detected capacity change from 0 to 512
[  127.862077][ T6864] EXT4-fs: Ignoring removed orlov option
[  127.870561][ T6864] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  127.881921][ T6864] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #15: comm syz.3.1087: corrupted in-inode xattr: e_value size too large
[  127.897164][ T6864] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1087: couldn't read orphan inode 15 (err -117)
[  127.998890][ T6871] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  128.885460][ T6884] random: crng reseeded on system resumption
[  128.891677][ T6883] loop4: detected capacity change from 0 to 512
[  128.896984][ T6886] IPVS: Error connecting to the multicast addr
[  128.913965][ T6884] batadv0: mtu less than device minimum
[  128.920458][ T6884] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  128.931134][ T6884] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  128.941934][ T6884] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  128.952898][ T6884] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  128.963594][ T6884] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  128.974261][ T6884] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  128.976147][ T6883] EXT4-fs (loop4): orphan cleanup on readonly fs
[  128.985081][ T6884] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  128.991908][ T6883] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1093: bg 0: block 248: padding at end of block bitmap is not set
[  129.002009][ T6884] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  129.016586][ T6883] __quota_error: 65 callbacks suppressed
[  129.016607][ T6883] Quota error (device loop4): write_blk: dquota write failed
[  129.040200][ T6883] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  129.050957][ T6883] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1093: Failed to acquire dquot type 1
[  129.069853][ T6883] EXT4-fs (loop4): 1 truncate cleaned up
[  129.079709][   T29] audit: type=1326 audit(3521147341.954:5729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6880 comm="syz.4.1093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff52dcbd710 code=0x7ffc0000
[  129.104320][   T29] audit: type=1326 audit(3521147341.964:5730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6880 comm="syz.4.1093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7ff52dcbdc17 code=0x7ffc0000
[  129.129601][ T6897] FAULT_INJECTION: forcing a failure.
[  129.129601][ T6897] name failslab, interval 1, probability 0, space 0, times 0
[  129.129637][ T6897] CPU: 1 UID: 0 PID: 6897 Comm: syz.6.1098 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  129.129736][ T6897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  129.129750][ T6897] Call Trace:
[  129.129757][ T6897]  <TASK>
[  129.129765][ T6897]  __dump_stack+0x1d/0x30
[  129.129790][ T6897]  dump_stack_lvl+0xe8/0x140
[  129.129858][ T6897]  dump_stack+0x15/0x1b
[  129.129883][ T6897]  should_fail_ex+0x265/0x280
[  129.129931][ T6897]  should_failslab+0x8c/0xb0
[  129.129968][ T6897]  kmem_cache_alloc_noprof+0x50/0x480
[  129.130027][ T6897]  ? security_inode_alloc+0x37/0x100
[  129.130077][ T6897]  security_inode_alloc+0x37/0x100
[  129.130105][ T6897]  inode_init_always_gfp+0x4b7/0x500
[  129.130140][ T6897]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  129.130248][ T6897]  alloc_inode+0x58/0x170
[  129.130286][ T6897]  new_inode+0x1d/0xe0
[  129.130322][ T6897]  shmem_get_inode+0x244/0x750
[  129.130465][ T6897]  __shmem_file_setup+0x113/0x210
[  129.130576][ T6897]  shmem_file_setup+0x3b/0x50
[  129.130679][ T6897]  __se_sys_memfd_create+0x2c3/0x590
[  129.130715][ T6897]  __x64_sys_memfd_create+0x31/0x40
[  129.130814][ T6897]  x64_sys_call+0x2ac2/0x3000
[  129.130847][ T6897]  do_syscall_64+0xd2/0x200
[  129.130882][ T6897]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  129.130922][ T6897]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  129.130962][ T6897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.130993][ T6897] RIP: 0033:0x7f3ea800eec9
[  129.131016][ T6897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.131042][ T6897] RSP: 002b:00007f3ea6a4dd68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  129.131069][ T6897] RAX: ffffffffffffffda RBX: 00000000000005df RCX: 00007f3ea800eec9
[  129.131087][ T6897] RDX: 00007f3ea6a4ddec RSI: 0000000000000000 RDI: 00007f3ea8092960
[  129.131126][ T6897] RBP: 0000200000000000 R08: 00007f3ea6a4db07 R09: 0000000000000000
[  129.131144][ T6897] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[  129.131162][ T6897] R13: 00007f3ea6a4ddec R14: 00007f3ea6a4ddf0 R15: 00007ffd24ca7198
[  129.131190][ T6897]  </TASK>
[  129.143046][ T6897] loop6: detected capacity change from 0 to 128
[  129.152999][   T29] audit: type=1326 audit(3521147341.964:5731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6880 comm="syz.4.1093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff52dcbd710 code=0x7ffc0000
[  129.225068][ T6883] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.1093: deleted inode referenced: 12
[  129.228893][   T29] audit: type=1326 audit(3521147341.964:5732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6880 comm="syz.4.1093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  129.315640][ T6895] loop2: detected capacity change from 0 to 4096
[  129.323440][   T29] audit: type=1326 audit(3521147341.964:5733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6880 comm="syz.4.1093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  129.420233][ T6895] EXT4-fs: Ignoring removed nomblk_io_submit option
[  129.427555][   T29] audit: type=1326 audit(3521147342.074:5734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6880 comm="syz.4.1093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  129.487775][   T29] audit: type=1326 audit(3521147342.074:5735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6880 comm="syz.4.1093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  129.511931][   T29] audit: type=1326 audit(3521147342.074:5736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6880 comm="syz.4.1093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  129.559521][ T6906] FAULT_INJECTION: forcing a failure.
[  129.559521][ T6906] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  129.573137][ T6906] CPU: 0 UID: 0 PID: 6906 Comm: syz.3.1101 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  129.573231][ T6906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  129.573258][ T6906] Call Trace:
[  129.573266][ T6906]  <TASK>
[  129.573274][ T6906]  __dump_stack+0x1d/0x30
[  129.573301][ T6906]  dump_stack_lvl+0xe8/0x140
[  129.573327][ T6906]  dump_stack+0x15/0x1b
[  129.573412][ T6906]  should_fail_ex+0x265/0x280
[  129.573534][ T6906]  should_fail_alloc_page+0xf2/0x100
[  129.573577][ T6906]  __alloc_frozen_pages_noprof+0xff/0x360
[  129.573665][ T6906]  alloc_pages_mpol+0xb3/0x260
[  129.573692][ T6906]  alloc_pages_noprof+0x90/0x130
[  129.573785][ T6906]  pte_alloc_one+0x1e/0xd0
[  129.573810][ T6906]  __pte_alloc+0x32/0x290
[  129.573854][ T6906]  handle_mm_fault+0x1c18/0x2be0
[  129.573950][ T6906]  ? __rcu_read_lock+0x37/0x50
[  129.573983][ T6906]  ? __pte_offset_map_lock+0x1d4/0x230
[  129.574027][ T6906]  __get_user_pages+0x102a/0x1ed0
[  129.574062][ T6906]  __gup_longterm_locked+0x8ef/0xe60
[  129.574114][ T6906]  ? exc_page_fault+0x62/0xa0
[  129.574163][ T6906]  ? __rcu_read_unlock+0x4f/0x70
[  129.574213][ T6906]  ? bpf_trace_run3+0x12c/0x1d0
[  129.574247][ T6906]  pin_user_pages_remote+0x7e/0xb0
[  129.574322][ T6906]  process_vm_rw+0x484/0x960
[  129.574386][ T6906]  __x64_sys_process_vm_readv+0x78/0x90
[  129.574421][ T6906]  x64_sys_call+0x1874/0x3000
[  129.574498][ T6906]  do_syscall_64+0xd2/0x200
[  129.574530][ T6906]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  129.574572][ T6906]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  129.574602][ T6906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.574649][ T6906] RIP: 0033:0x7f297e5aeec9
[  129.574664][ T6906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.574763][ T6906] RSP: 002b:00007f297d017038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  129.574793][ T6906] RAX: ffffffffffffffda RBX: 00007f297e805fa0 RCX: 00007f297e5aeec9
[  129.574840][ T6906] RDX: 0000000000000048 RSI: 0000200000008400 RDI: 000000000000022d
[  129.574852][ T6906] RBP: 00007f297d017090 R08: 0000000000000286 R09: 0000000000000000
[  129.574867][ T6906] R10: 0000200000008640 R11: 0000000000000246 R12: 0000000000000001
[  129.574939][ T6906] R13: 00007f297e806038 R14: 00007f297e805fa0 R15: 00007ffda7affe38
[  129.574965][ T6906]  </TASK>
[  129.816383][ T6897] ext4 filesystem being mounted at /70/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  129.951994][ T6910] loop6: detected capacity change from 0 to 512
[  129.963584][ T6913] loop2: detected capacity change from 0 to 164
[  129.969398][ T6910] EXT4-fs: Ignoring removed orlov option
[  129.971347][ T6913] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  129.984382][ T6910] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  129.996830][ T6910] EXT4-fs error (device loop6): ext4_iget_extra_inode:5075: inode #15: comm syz.6.1102: corrupted in-inode xattr: e_value size too large
[  130.011259][ T6910] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.1102: couldn't read orphan inode 15 (err -117)
[  130.039709][ T6917] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  130.085260][ T6919] __nla_validate_parse: 6 callbacks suppressed
[  130.085281][ T6919] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1102'.
[  130.105729][ T6923] FAULT_INJECTION: forcing a failure.
[  130.105729][ T6923] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  130.119024][ T6923] CPU: 1 UID: 0 PID: 6923 Comm: syz.3.1106 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  130.119062][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  130.119078][ T6923] Call Trace:
[  130.119086][ T6923]  <TASK>
[  130.119095][ T6923]  __dump_stack+0x1d/0x30
[  130.119122][ T6923]  dump_stack_lvl+0xe8/0x140
[  130.119148][ T6923]  dump_stack+0x15/0x1b
[  130.119238][ T6923]  should_fail_ex+0x265/0x280
[  130.119292][ T6923]  should_fail+0xb/0x20
[  130.119333][ T6923]  should_fail_usercopy+0x1a/0x20
[  130.119394][ T6923]  _copy_from_iter+0xd2/0xe80
[  130.119423][ T6923]  ? __build_skb_around+0x1ab/0x200
[  130.119457][ T6923]  ? __alloc_skb+0x223/0x320
[  130.119509][ T6923]  netlink_sendmsg+0x471/0x6b0
[  130.119567][ T6923]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.119607][ T6923]  __sock_sendmsg+0x145/0x180
[  130.119635][ T6923]  ____sys_sendmsg+0x31e/0x4e0
[  130.119707][ T6923]  ___sys_sendmsg+0x17b/0x1d0
[  130.119763][ T6923]  __x64_sys_sendmsg+0xd4/0x160
[  130.119808][ T6923]  x64_sys_call+0x191e/0x3000
[  130.119895][ T6923]  do_syscall_64+0xd2/0x200
[  130.119926][ T6923]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  130.119962][ T6923]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  130.120065][ T6923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.120095][ T6923] RIP: 0033:0x7f297e5aeec9
[  130.120115][ T6923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.120140][ T6923] RSP: 002b:00007f297d017038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  130.120165][ T6923] RAX: ffffffffffffffda RBX: 00007f297e805fa0 RCX: 00007f297e5aeec9
[  130.120204][ T6923] RDX: 0000000020008000 RSI: 0000200000000480 RDI: 0000000000000006
[  130.120221][ T6923] RBP: 00007f297d017090 R08: 0000000000000000 R09: 0000000000000000
[  130.120237][ T6923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.120257][ T6923] R13: 00007f297e806038 R14: 00007f297e805fa0 R15: 00007ffda7affe38
[  130.120291][ T6923]  </TASK>
[  130.372999][ T6932] random: crng reseeded on system resumption
[  130.380609][ T6934] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1110'.
[  130.390778][ T6934] IPVS: Error connecting to the multicast addr
[  130.446691][ T6943] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1115'.
[  130.484730][ T6944] loop6: detected capacity change from 0 to 4096
[  130.491926][ T6944] EXT4-fs: Ignoring removed nomblk_io_submit option
[  130.717657][ T6962] loop4: detected capacity change from 0 to 2048
[  130.767665][ T6964] loop3: detected capacity change from 0 to 512
[  130.778726][ T6964] EXT4-fs: Ignoring removed orlov option
[  130.794980][ T6962] Alternate GPT is invalid, using primary GPT.
[  130.801373][ T6962]  loop4: p1 p2 p3
[  130.822579][ T6964] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  130.866796][ T6964] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #15: comm syz.3.1122: corrupted in-inode xattr: e_value size too large
[  130.893514][ T6964] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1122: couldn't read orphan inode 15 (err -117)
[  130.908279][ T6973] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1125'.
[  130.917939][ T6973] IPVS: Error connecting to the multicast addr
[  130.932845][ T6972] random: crng reseeded on system resumption
[  130.961529][ T6964] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1122'.
[  131.009131][ T6980] bridge0: port 1(macsec1) entered blocking state
[  131.015957][ T6980] bridge0: port 1(macsec1) entered disabled state
[  131.023796][ T6980] macsec1: entered allmulticast mode
[  131.029144][ T6980] bridge0: entered allmulticast mode
[  131.046318][ T6980] macsec1: left allmulticast mode
[  131.051850][ T6980] bridge0: left allmulticast mode
[  131.069956][ T6986] netlink: 60 bytes leftover after parsing attributes in process `syz.6.1131'.
[  131.079862][ T6986] IPVS: Unknown mcast interface: 
[  131.085086][ T6986] FAULT_INJECTION: forcing a failure.
[  131.085086][ T6986] name failslab, interval 1, probability 0, space 0, times 0
[  131.098120][ T6986] CPU: 0 UID: 0 PID: 6986 Comm: syz.6.1131 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  131.098150][ T6986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  131.098165][ T6986] Call Trace:
[  131.098256][ T6986]  <TASK>
[  131.098264][ T6986]  __dump_stack+0x1d/0x30
[  131.098286][ T6986]  dump_stack_lvl+0xe8/0x140
[  131.098309][ T6986]  dump_stack+0x15/0x1b
[  131.098326][ T6986]  should_fail_ex+0x265/0x280
[  131.098437][ T6986]  should_failslab+0x8c/0xb0
[  131.098466][ T6986]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  131.098505][ T6986]  ? __alloc_skb+0x101/0x320
[  131.098532][ T6986]  __alloc_skb+0x101/0x320
[  131.098628][ T6986]  netlink_ack+0xfd/0x500
[  131.098657][ T6986]  ? __pfx_ip_vs_genl_set_daemon+0x10/0x10
[  131.098708][ T6986]  netlink_rcv_skb+0x192/0x220
[  131.098754][ T6986]  ? __pfx_genl_rcv_msg+0x10/0x10
[  131.098814][ T6986]  genl_rcv+0x28/0x40
[  131.098893][ T6986]  netlink_unicast+0x5c0/0x690
[  131.098922][ T6986]  netlink_sendmsg+0x58b/0x6b0
[  131.099015][ T6986]  ? __pfx_netlink_sendmsg+0x10/0x10
[  131.099047][ T6986]  __sock_sendmsg+0x145/0x180
[  131.099068][ T6986]  ____sys_sendmsg+0x31e/0x4e0
[  131.099217][ T6986]  ___sys_sendmsg+0x17b/0x1d0
[  131.099321][ T6986]  __x64_sys_sendmsg+0xd4/0x160
[  131.099361][ T6986]  x64_sys_call+0x191e/0x3000
[  131.099384][ T6986]  do_syscall_64+0xd2/0x200
[  131.099476][ T6986]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  131.099506][ T6986]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  131.099529][ T6986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.099642][ T6986] RIP: 0033:0x7f3ea800eec9
[  131.099660][ T6986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.099758][ T6986] RSP: 002b:00007f3ea6a6f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  131.099778][ T6986] RAX: ffffffffffffffda RBX: 00007f3ea8265fa0 RCX: 00007f3ea800eec9
[  131.099791][ T6986] RDX: 0000000000000000 RSI: 0000200000001ac0 RDI: 0000000000000007
[  131.099804][ T6986] RBP: 00007f3ea6a6f090 R08: 0000000000000000 R09: 0000000000000000
[  131.099817][ T6986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.099829][ T6986] R13: 00007f3ea8266038 R14: 00007f3ea8265fa0 R15: 00007ffd24ca7198
[  131.099910][ T6986]  </TASK>
[  131.365385][ T6991] loop4: detected capacity change from 0 to 4096
[  131.372306][ T6991] EXT4-fs: Ignoring removed nomblk_io_submit option
[  131.395941][ T6998] loop2: detected capacity change from 0 to 164
[  131.435460][ T6998] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  131.488643][ T7003] random: crng reseeded on system resumption
[  131.520394][ T7005] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  131.561256][ T7007] loop6: detected capacity change from 0 to 1024
[  131.568245][ T7007] EXT4-fs: inline encryption not supported
[  131.574669][ T7007] EXT4-fs: Ignoring removed nomblk_io_submit option
[  131.581733][ T7007] EXT4-fs: Ignoring removed bh option
[  132.081009][ T7016] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1140'.
[  132.090600][ T7016] IPVS: Error connecting to the multicast addr
[  132.129104][ T7020] loop4: detected capacity change from 0 to 2048
[  132.155411][ T7027] FAULT_INJECTION: forcing a failure.
[  132.155411][ T7027] name failslab, interval 1, probability 0, space 0, times 0
[  132.168136][ T7027] CPU: 1 UID: 0 PID: 7027 Comm: syz.3.1145 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  132.168173][ T7027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  132.168191][ T7027] Call Trace:
[  132.168199][ T7027]  <TASK>
[  132.168208][ T7027]  __dump_stack+0x1d/0x30
[  132.168309][ T7027]  dump_stack_lvl+0xe8/0x140
[  132.168331][ T7027]  dump_stack+0x15/0x1b
[  132.168348][ T7027]  should_fail_ex+0x265/0x280
[  132.168388][ T7027]  should_failslab+0x8c/0xb0
[  132.168424][ T7027]  __kmalloc_node_track_caller_noprof+0xa5/0x580
[  132.168530][ T7027]  ? vfs_parse_fs_qstr+0x99/0x110
[  132.168564][ T7027]  kmemdup_nul+0x36/0xc0
[  132.168662][ T7027]  vfs_parse_fs_qstr+0x99/0x110
[  132.168695][ T7027]  do_new_mount+0x1c2/0x660
[  132.168729][ T7027]  path_mount+0x4a5/0xb70
[  132.168757][ T7027]  ? user_path_at+0x109/0x130
[  132.168869][ T7027]  __se_sys_mount+0x28c/0x2e0
[  132.168898][ T7027]  ? fput+0x8f/0xc0
[  132.168941][ T7027]  __x64_sys_mount+0x67/0x80
[  132.168973][ T7027]  x64_sys_call+0x2b51/0x3000
[  132.169047][ T7027]  do_syscall_64+0xd2/0x200
[  132.169078][ T7027]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  132.169106][ T7027]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  132.169200][ T7027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.169230][ T7027] RIP: 0033:0x7f297e5aeec9
[  132.169251][ T7027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.169276][ T7027] RSP: 002b:00007f297d017038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  132.169302][ T7027] RAX: ffffffffffffffda RBX: 00007f297e805fa0 RCX: 00007f297e5aeec9
[  132.169358][ T7027] RDX: 0000200000001440 RSI: 0000200000001400 RDI: 00002000000013c0
[  132.169371][ T7027] RBP: 00007f297d017090 R08: 0000200000000080 R09: 0000000000000000
[  132.169386][ T7027] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000002
[  132.169403][ T7027] R13: 00007f297e806038 R14: 00007f297e805fa0 R15: 00007ffda7affe38
[  132.169429][ T7027]  </TASK>
[  132.387169][ T7030] loop6: detected capacity change from 0 to 512
[  132.430854][ T7030] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1146: bg 0: block 248: padding at end of block bitmap is not set
[  132.517500][ T7030] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.1146: Failed to acquire dquot type 1
[  132.560308][ T7030] EXT4-fs (loop6): 1 truncate cleaned up
[  132.560372][ T7043] random: crng reseeded on system resumption
[  132.572662][ T7030] EXT4-fs mount: 101 callbacks suppressed
[  132.572684][ T7030] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.598685][ T5170] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.608528][ T7030] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.641513][ T7046] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1151'.
[  132.671731][ T7056] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1154'.
[  132.673875][ T7054] loop4: detected capacity change from 0 to 4096
[  132.688253][ T7056] IPVS: Error connecting to the multicast addr
[  132.688366][ T7054] EXT4-fs: Ignoring removed nomblk_io_submit option
[  132.703913][ T7054] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.753240][ T7030] syz.6.1146 (7030) used greatest stack depth: 9120 bytes left
[  132.881142][ T5624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.903193][ T7067] loop3: detected capacity change from 0 to 164
[  132.922547][ T7067] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  133.007019][ T7070] loop2: detected capacity change from 0 to 512
[  133.338909][ T7073] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  133.389728][ T5170] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.422347][ T7070] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.435227][ T7070] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.563020][ T7082] netlink: 'syz.6.1162': attribute type 12 has an invalid length.
[  133.571105][ T7082] netlink: 'syz.6.1162': attribute type 29 has an invalid length.
[  133.579062][ T7082] netlink: 148 bytes leftover after parsing attributes in process `syz.6.1162'.
[  133.588263][ T7082] netlink: 'syz.6.1162': attribute type 2 has an invalid length.
[  133.599214][ T7083] loop4: detected capacity change from 0 to 2048
[  133.668869][ T7083] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.683133][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.700718][ T7088] loop6: detected capacity change from 0 to 128
[  133.714988][ T7088] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  133.746741][ T7088] ext4 filesystem being mounted at /87/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  133.877446][ T7087] bridge0: port 3(macvlan2) entered blocking state
[  133.884433][ T7087] bridge0: port 3(macvlan2) entered disabled state
[  133.901067][ T7087] macvlan2: entered allmulticast mode
[  133.906623][ T7087] bridge0: entered allmulticast mode
[  133.942766][ T5170] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.952329][ T7087] macvlan2: left allmulticast mode
[  133.957469][ T7087] bridge0: left allmulticast mode
[  133.965876][ T7094] random: crng reseeded on system resumption
[  134.011241][ T7100] IPVS: Error connecting to the multicast addr
[  134.055847][ T5624] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  134.084758][ T7104] loop2: detected capacity change from 0 to 4096
[  134.097857][   T29] kauditd_printk_skb: 77 callbacks suppressed
[  134.097876][   T29] audit: type=1326 audit(3521147346.974:5812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.103606][ T1035] hid_parser_main: 57 callbacks suppressed
[  134.103632][ T1035] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  134.127672][   T29] audit: type=1326 audit(3521147346.974:5813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.127805][   T29] audit: type=1326 audit(3521147346.974:5814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.141805][ T1035] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  134.164956][   T29] audit: type=1326 audit(3521147346.974:5815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.221903][   T29] audit: type=1326 audit(3521147346.974:5816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.246431][   T29] audit: type=1326 audit(3521147346.974:5817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.270216][   T29] audit: type=1326 audit(3521147346.974:5818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.294024][   T29] audit: type=1326 audit(3521147346.974:5819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.317477][   T29] audit: type=1326 audit(3521147346.974:5820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.341652][   T29] audit: type=1326 audit(3521147346.974:5821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.4.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff52dcbeec9 code=0x7ffc0000
[  134.365880][ T7104] EXT4-fs: Ignoring removed nomblk_io_submit option
[  134.427144][ T7104] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.777912][ T7127] loop6: detected capacity change from 0 to 512
[  134.788287][ T7102] net_ratelimit: 11 callbacks suppressed
[  134.788303][ T7102] Set syz1 is full, maxelem 65536 reached
[  134.812783][ T7127] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.826856][ T7127] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.080620][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.144358][ T7131] __nla_validate_parse: 4 callbacks suppressed
[  135.144378][ T7131] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1179'.
[  135.163134][ T7135] random: crng reseeded on system resumption
[  135.171078][ T7134] loop2: detected capacity change from 0 to 2048
[  135.185164][ T7134] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.227913][ T7143] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1182'.
[  135.238461][ T7142] netlink: 'syz.4.1183': attribute type 12 has an invalid length.
[  135.246393][ T7142] netlink: 'syz.4.1183': attribute type 29 has an invalid length.
[  135.254371][ T7142] netlink: 148 bytes leftover after parsing attributes in process `syz.4.1183'.
[  135.263903][ T7142] netlink: 'syz.4.1183': attribute type 2 has an invalid length.
[  135.319366][ T7143] IPVS: Error connecting to the multicast addr
[  135.336197][ T5624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.391575][ T7151] loop4: detected capacity change from 0 to 512
[  135.398676][ T7151] EXT4-fs: Ignoring removed orlov option
[  135.430639][ T7151] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  135.439906][ T7151] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.1187: corrupted in-inode xattr: e_value size too large
[  135.461885][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.493817][ T7151] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1187: couldn't read orphan inode 15 (err -117)
[  135.521591][ T7154] loop6: detected capacity change from 0 to 4096
[  135.522220][ T7151] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.528724][ T7154] EXT4-fs: Ignoring removed nomblk_io_submit option
[  135.550955][ T7151] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1187'.
[  135.562419][ T7159] loop2: detected capacity change from 0 to 512
[  135.582801][ T7154] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.623388][ T7162] loop3: detected capacity change from 0 to 512
[  135.693858][ T7159] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  135.708927][ T7162] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.722322][ T7162] ext4 filesystem being mounted at /232/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.749080][ T7159] EXT4-fs (loop2): orphan cleanup on readonly fs
[  135.797770][ T7159] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  135.902934][ T7159] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  135.950833][ T7159] EXT4-fs (loop2): 1 truncate cleaned up
[  135.964707][ T7159] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  136.090762][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.394040][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.420910][ T7173] random: crng reseeded on system resumption
[  136.421881][ T5624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.459984][ T7177] FAULT_INJECTION: forcing a failure.
[  136.459984][ T7177] name failslab, interval 1, probability 0, space 0, times 0
[  136.472804][ T7177] CPU: 0 UID: 0 PID: 7177 Comm: syz.3.1192 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  136.472887][ T7177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  136.472904][ T7177] Call Trace:
[  136.472913][ T7177]  <TASK>
[  136.472921][ T7177]  __dump_stack+0x1d/0x30
[  136.472946][ T7177]  dump_stack_lvl+0xe8/0x140
[  136.472971][ T7177]  dump_stack+0x15/0x1b
[  136.472993][ T7177]  should_fail_ex+0x265/0x280
[  136.473057][ T7177]  should_failslab+0x8c/0xb0
[  136.473102][ T7177]  __kmalloc_noprof+0xa5/0x570
[  136.473139][ T7177]  ? bcm_rx_setup+0x36d/0xe10
[  136.473170][ T7177]  bcm_rx_setup+0x36d/0xe10
[  136.473199][ T7177]  ? selinux_socket_sendmsg+0x175/0x1b0
[  136.473246][ T7177]  bcm_sendmsg+0x1b2/0x480
[  136.473273][ T7177]  ? __pfx_bcm_sendmsg+0x10/0x10
[  136.473321][ T7177]  __sock_sendmsg+0x145/0x180
[  136.473350][ T7177]  ____sys_sendmsg+0x31e/0x4e0
[  136.473392][ T7177]  ___sys_sendmsg+0x17b/0x1d0
[  136.473505][ T7177]  __x64_sys_sendmsg+0xd4/0x160
[  136.473550][ T7177]  x64_sys_call+0x191e/0x3000
[  136.473580][ T7177]  do_syscall_64+0xd2/0x200
[  136.473611][ T7177]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  136.473648][ T7177]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  136.473734][ T7177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.473762][ T7177] RIP: 0033:0x7f297e5aeec9
[  136.473781][ T7177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.473882][ T7177] RSP: 002b:00007f297d017038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  136.473903][ T7177] RAX: ffffffffffffffda RBX: 00007f297e805fa0 RCX: 00007f297e5aeec9
[  136.473921][ T7177] RDX: 0000000024000895 RSI: 0000200000000640 RDI: 0000000000000004
[  136.473937][ T7177] RBP: 00007f297d017090 R08: 0000000000000000 R09: 0000000000000000
[  136.473954][ T7177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  136.473971][ T7177] R13: 00007f297e806038 R14: 00007f297e805fa0 R15: 00007ffda7affe38
[  136.474063][ T7177]  </TASK>
[  136.960389][ T7188] loop2: detected capacity change from 0 to 512
[  137.070747][ T7192] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1197'.
[  137.080952][ T7192] IPVS: Error connecting to the multicast addr
[  137.089505][ T7188] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.104331][ T7188] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.302113][ T7200] loop3: detected capacity change from 0 to 164
[  137.329410][ T7200] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  137.397563][ T7201] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  137.602792][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.745042][ T7208] loop6: detected capacity change from 0 to 4096
[  137.766929][ T7208] EXT4-fs: Ignoring removed nomblk_io_submit option
[  137.776049][ T7208] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.838282][ T7213] macvtap1: entered allmulticast mode
[  137.843875][ T7213] bridge0: entered allmulticast mode
[  137.878748][ T7213] bridge0: port 1(macvtap1) entered blocking state
[  137.885607][ T7213] bridge0: port 1(macvtap1) entered disabled state
[  137.912767][ T7213] bridge0: left allmulticast mode
[  138.003317][ T7218] random: crng reseeded on system resumption
[  138.073719][ T5170] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.099795][ T7222] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1209'.
[  138.265685][ T5624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.305583][ T7236] serio: Serial port ptm0
[  138.324622][ T7220] loop2: detected capacity change from 0 to 4096
[  138.333365][ T7220] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.349401][ T7220] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1208: Failed to acquire dquot type 1
[  138.404618][ T7241] loop4: detected capacity change from 0 to 512
[  138.455491][ T7241] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.468468][ T7241] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.914034][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.953125][ T7250] random: crng reseeded on system resumption
[  138.985923][ T7252] loop2: detected capacity change from 0 to 256
[  138.994564][ T7252] FAT-fs (loop2): bogus number of FAT sectors
[  139.000980][ T7252] FAT-fs (loop2): Can't find a valid FAT filesystem
[  139.062268][ T5170] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.097053][ T7255] loop6: detected capacity change from 0 to 512
[  139.101464][ T7256] loop4: detected capacity change from 0 to 164
[  139.105311][ T7255] EXT4-fs: Ignoring removed orlov option
[  139.116182][ T7256] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  139.129014][ T7255] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  139.146629][ T7255] EXT4-fs error (device loop6): ext4_iget_extra_inode:5075: inode #15: comm syz.6.1220: corrupted in-inode xattr: e_value size too large
[  139.180922][ T7263] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1222'.
[  139.190354][ T7263] IPVS: Error connecting to the multicast addr
[  139.197240][ T7255] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.1220: couldn't read orphan inode 15 (err -117)
[  139.211010][ T7268] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  139.212068][ T7255] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.298424][ T7255] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1220'.
[  139.308812][ T7272] loop2: detected capacity change from 0 to 1024
[  139.332049][ T7272] EXT4-fs: Ignoring removed nobh option
[  139.349737][ T7272] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  139.362550][ T5624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.365911][ T7272] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #11: comm syz.2.1228: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  139.390963][ T7272] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1228: couldn't read orphan inode 11 (err -117)
[  139.403643][ T7272] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.419923][   T29] kauditd_printk_skb: 492 callbacks suppressed
[  139.420011][   T29] audit: type=1400 audit(3521147352.304:6311): avc:  denied  { create } for  pid=7271 comm="syz.2.1228" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  139.448990][ T7272] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1228: Invalid block bitmap block 0 in block_group 0
[  139.462836][ T7272] Quota error (device loop2): write_blk: dquota write failed
[  139.470279][ T7272] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  139.480673][ T7272] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1228: Failed to acquire dquot type 0
[  139.513978][   T29] audit: type=1326 audit(3521147352.394:6312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7276 comm="syz.3.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f297e5aeec9 code=0x7ffc0000
[  139.542812][   T29] audit: type=1326 audit(3521147352.394:6313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7276 comm="syz.3.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f297e5aeec9 code=0x7ffc0000
[  139.566387][   T29] audit: type=1326 audit(3521147352.394:6314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7276 comm="syz.3.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f297e5aeec9 code=0x7ffc0000
[  139.590057][   T29] audit: type=1326 audit(3521147352.394:6315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7276 comm="syz.3.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f297e5aeec9 code=0x7ffc0000
[  139.621708][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.631297][ T7281] random: crng reseeded on system resumption
[  139.663437][   T29] audit: type=1400 audit(3521147352.544:6316): avc:  denied  { mount } for  pid=7283 comm="syz.6.1233" name="/" dev="ramfs" ino=20034 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  139.686958][   T29] audit: type=1326 audit(3521147352.564:6317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7276 comm="syz.3.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f297e5aeec9 code=0x7ffc0000
[  139.710831][   T29] audit: type=1326 audit(3521147352.564:6318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7276 comm="syz.3.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f297e5aeec9 code=0x7ffc0000
[  140.004471][ T7294] loop2: detected capacity change from 0 to 512
[  140.053054][ T7294] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.079746][ T7294] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.556688][ T7301] loop3: detected capacity change from 0 to 128
[  140.836769][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.951509][ T7309] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1238'.
[  140.991924][ T7309] IPVS: Error connecting to the multicast addr
[  141.014953][ T7311] loop4: detected capacity change from 0 to 512
[  141.021775][ T7311] EXT4-fs: Ignoring removed orlov option
[  141.032222][ T7311] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  141.061436][ T7311] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.1240: corrupted in-inode xattr: e_value size too large
[  141.076326][ T7311] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1240: couldn't read orphan inode 15 (err -117)
[  141.089073][ T7311] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.114899][ T7311] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1240'.
[  141.228822][ T7320] random: crng reseeded on system resumption
[  141.242864][ T7316] loop2: detected capacity change from 0 to 4096
[  141.267552][ T7316] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.434017][ T7330] loop3: detected capacity change from 0 to 164
[  141.494473][ T7332] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8 sclass=netlink_route_socket pid=7332 comm=syz.6.1247
[  141.546753][ T7330] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  141.655510][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.821926][ T7341] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  141.897165][ T7346] loop6: detected capacity change from 0 to 2048
[  142.041541][ T7349] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1253'.
[  142.051064][ T7349] IPVS: Error connecting to the multicast addr
[  142.305103][ T7346] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.328875][ T7358] random: crng reseeded on system resumption
[  142.359736][ T5624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.560513][ T7372] loop3: detected capacity change from 0 to 4096
[  142.567480][ T7372] EXT4-fs: Ignoring removed nomblk_io_submit option
[  142.576380][ T7372] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.604953][ T5170] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.728110][ T7387] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1265'.
[  142.731292][ T7389] loop6: detected capacity change from 0 to 164
[  142.757486][ T7390] loop2: detected capacity change from 0 to 2048
[  142.771110][ T7390] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.784503][ T7389] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  142.815061][ T7394] random: crng reseeded on system resumption
[  142.832427][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.846989][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.871671][ T7396] loop4: detected capacity change from 0 to 512
[  142.879234][ T7400] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  142.880846][ T7396] EXT4-fs: Ignoring removed orlov option
[  142.899461][ T7396] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  142.912422][ T7396] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.1271: corrupted in-inode xattr: e_value size too large
[  142.934653][ T7396] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1271: couldn't read orphan inode 15 (err -117)
[  142.947721][ T7396] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.051858][ T7396] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1271'.
[  143.063053][ T7396] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1271'.
[  143.093055][ T7419] FAULT_INJECTION: forcing a failure.
[  143.093055][ T7419] name failslab, interval 1, probability 0, space 0, times 0
[  143.105883][ T7419] CPU: 0 UID: 0 PID: 7419 Comm: syz.3.1275 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  143.105918][ T7419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  143.105935][ T7419] Call Trace:
[  143.105942][ T7419]  <TASK>
[  143.106024][ T7419]  __dump_stack+0x1d/0x30
[  143.106051][ T7419]  dump_stack_lvl+0xe8/0x140
[  143.106111][ T7419]  dump_stack+0x15/0x1b
[  143.106134][ T7419]  should_fail_ex+0x265/0x280
[  143.106180][ T7419]  ? io_getxattr_prep+0x129/0x200
[  143.106268][ T7419]  should_failslab+0x8c/0xb0
[  143.106305][ T7419]  __kmalloc_cache_noprof+0x4c/0x4a0
[  143.106457][ T7419]  ? __io_alloc_req_refill+0x12e/0x1d0
[  143.106486][ T7419]  io_getxattr_prep+0x129/0x200
[  143.106524][ T7419]  io_submit_sqes+0x5ef/0x1060
[  143.106655][ T7419]  __se_sys_io_uring_enter+0x1c1/0x1b70
[  143.106703][ T7419]  ? 0xffffffff81000000
[  143.106773][ T7419]  ? __rcu_read_unlock+0x4f/0x70
[  143.106806][ T7419]  ? get_pid_task+0x96/0xd0
[  143.106911][ T7419]  ? proc_fail_nth_write+0x13b/0x160
[  143.106951][ T7419]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  143.106991][ T7419]  ? vfs_write+0x7e8/0x960
[  143.107018][ T7419]  ? __rcu_read_unlock+0x4f/0x70
[  143.107074][ T7419]  ? __fget_files+0x184/0x1c0
[  143.107107][ T7419]  ? fput+0x8f/0xc0
[  143.107145][ T7419]  __x64_sys_io_uring_enter+0x78/0x90
[  143.107260][ T7419]  x64_sys_call+0x2df0/0x3000
[  143.107284][ T7419]  do_syscall_64+0xd2/0x200
[  143.107316][ T7419]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  143.107348][ T7419]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  143.107378][ T7419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.107406][ T7419] RIP: 0033:0x7f297e5aeec9
[  143.107424][ T7419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.107525][ T7419] RSP: 002b:00007f297d017038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  143.107551][ T7419] RAX: ffffffffffffffda RBX: 00007f297e805fa0 RCX: 00007f297e5aeec9
[  143.107613][ T7419] RDX: 0000000000000000 RSI: 00000000000047bc RDI: 0000000000000006
[  143.107627][ T7419] RBP: 00007f297d017090 R08: 0000000000000000 R09: 0000000000000000
[  143.107644][ T7419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.107660][ T7419] R13: 00007f297e806038 R14: 00007f297e805fa0 R15: 00007ffda7affe38
[  143.107685][ T7419]  </TASK>
[  143.813282][ T7431] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1279'.
[  143.833761][ T7431] IPVS: Error connecting to the multicast addr
[  144.044244][ T7435] loop6: detected capacity change from 0 to 2048
[  144.062757][ T7435] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.119390][ T7439] random: crng reseeded on system resumption
[  144.125173][ T5624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.131145][ T7439] batadv0: mtu less than device minimum
[  144.140583][ T7439] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  144.151219][ T7439] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  144.161767][ T7439] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  144.172261][ T7439] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  144.182750][ T7439] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  144.193386][ T7439] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  144.204236][ T7439] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  144.215393][ T7439] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  144.225845][ T7439] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  144.240750][ T7442] loop3: detected capacity change from 0 to 128
[  144.248094][ T5170] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.257729][ T7442] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  144.267720][ T7442] System zones: 1-3, 19-19, 35-36
[  144.273483][ T7442] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  144.286000][ T7442] ext4 filesystem being mounted at /248/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  144.318649][ T7445] loop6: detected capacity change from 0 to 4096
[  144.326928][ T7445] EXT4-fs: Ignoring removed nomblk_io_submit option
[  144.339373][ T7445] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.356207][ T7442] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  144.364753][ T7442] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  144.409323][ T7457] loop4: detected capacity change from 0 to 164
[  144.416737][ T7457] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  144.507231][ T7463] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  144.573260][ T5624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.608939][ T7467] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1293'.
[  144.619343][ T7467] IPVS: Error connecting to the multicast addr
[  144.660992][ T7470] loop2: detected capacity change from 0 to 2048
[  144.672668][ T7470] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.911575][ T3313] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  144.939178][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.971037][ T7477] loop6: detected capacity change from 0 to 512
[  144.977935][ T7477] EXT4-fs: Ignoring removed orlov option
[  144.984639][ T7477] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  144.995990][ T7477] EXT4-fs error (device loop6): ext4_iget_extra_inode:5075: inode #15: comm syz.6.1295: corrupted in-inode xattr: e_value size too large
[  145.011764][ T7477] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.1295: couldn't read orphan inode 15 (err -117)
[  145.025067][ T7477] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.042092][ T7477] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1295'.
[  145.086580][ T7477] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1295'.
[  145.125643][ T5624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.152714][ T7484] random: crng reseeded on system resumption
[  145.178520][ T7489] FAULT_INJECTION: forcing a failure.
[  145.178520][ T7489] name failslab, interval 1, probability 0, space 0, times 0
[  145.178756][ T7486] xt_cgroup: xt_cgroup: no path or classid specified
[  145.191417][ T7489] CPU: 0 UID: 0 PID: 7489 Comm: syz.6.1299 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  145.191488][ T7489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  145.191507][ T7489] Call Trace:
[  145.191522][ T7489]  <TASK>
[  145.191535][ T7489]  __dump_stack+0x1d/0x30
[  145.191565][ T7489]  dump_stack_lvl+0xe8/0x140
[  145.191693][ T7489]  dump_stack+0x15/0x1b
[  145.191716][ T7489]  should_fail_ex+0x265/0x280
[  145.191767][ T7489]  should_failslab+0x8c/0xb0
[  145.191837][ T7489]  kmem_cache_alloc_noprof+0x50/0x480
[  145.191876][ T7489]  ? security_file_alloc+0x32/0x100
[  145.191914][ T7489]  security_file_alloc+0x32/0x100
[  145.191977][ T7489]  init_file+0x5c/0x1d0
[  145.192021][ T7489]  alloc_empty_file+0x8b/0x200
[  145.192066][ T7489]  alloc_file_pseudo+0xc6/0x160
[  145.192157][ T7489]  __shmem_file_setup+0x1de/0x210
[  145.192205][ T7489]  shmem_file_setup+0x3b/0x50
[  145.192258][ T7489]  __se_sys_memfd_create+0x2c3/0x590
[  145.192292][ T7489]  __x64_sys_memfd_create+0x31/0x40
[  145.192323][ T7489]  x64_sys_call+0x2ac2/0x3000
[  145.192354][ T7489]  do_syscall_64+0xd2/0x200
[  145.192399][ T7489]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  145.192476][ T7489]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  145.192529][ T7489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.192560][ T7489] RIP: 0033:0x7f3ea800eec9
[  145.192580][ T7489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.192641][ T7489] RSP: 002b:00007f3ea6a6ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  145.192668][ T7489] RAX: ffffffffffffffda RBX: 000000000000053b RCX: 00007f3ea800eec9
[  145.192733][ T7489] RDX: 00007f3ea6a6eef0 RSI: 0000000000000000 RDI: 00007f3ea8092960
[  145.192750][ T7489] RBP: 0000200000000b80 R08: 00007f3ea6a6ebb7 R09: 00007f3ea6a6ee40
[  145.192768][ T7489] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[  145.192786][ T7489] R13: 00007f3ea6a6eef0 R14: 00007f3ea6a6eeb0 R15: 00002000000001c0
[  145.192813][ T7489]  </TASK>
[  145.304042][ T7494] loop3: detected capacity change from 0 to 4096
[  145.423810][ T7494] EXT4-fs: Ignoring removed nomblk_io_submit option
[  145.440741][ T7494] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.497124][ T7503] IPVS: Error connecting to the multicast addr
[  145.521750][ T7505] loop4: detected capacity change from 0 to 512
[  145.528495][   T29] kauditd_printk_skb: 99 callbacks suppressed
[  145.528509][   T29] audit: type=1400 audit(3521147358.404:6418): avc:  denied  { mounton } for  pid=7504 comm="syz.4.1305" path="/133/file0" dev="tmpfs" ino=752 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  145.588272][ T7505] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  145.597059][ T7505] EXT4-fs (loop4): orphan cleanup on readonly fs
[  145.615090][ T7505] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #16: comm syz.4.1305: corrupted inode contents
[  145.632657][ T7505] EXT4-fs (loop4): Remounting filesystem read-only
[  145.639449][ T7505] EXT4-fs (loop4): 1 truncate cleaned up
[  145.648384][ T7512] loop2: detected capacity change from 0 to 2048
[  145.671713][ T7515] FAULT_INJECTION: forcing a failure.
[  145.671713][ T7515] name failslab, interval 1, probability 0, space 0, times 0
[  145.684496][ T7515] CPU: 1 UID: 0 PID: 7515 Comm: syz.1.1308 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  145.684576][ T7515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  145.684589][ T7515] Call Trace:
[  145.684598][ T7515]  <TASK>
[  145.684606][ T7515]  __dump_stack+0x1d/0x30
[  145.684672][ T7515]  dump_stack_lvl+0xe8/0x140
[  145.684696][ T7515]  dump_stack+0x15/0x1b
[  145.684718][ T7515]  should_fail_ex+0x265/0x280
[  145.684765][ T7515]  should_failslab+0x8c/0xb0
[  145.684864][ T7515]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  145.684898][ T7515]  ? __alloc_skb+0x101/0x320
[  145.684969][ T7515]  __alloc_skb+0x101/0x320
[  145.684995][ T7515]  netlink_alloc_large_skb+0xbf/0xf0
[  145.685022][ T7515]  netlink_sendmsg+0x3cf/0x6b0
[  145.685102][ T7515]  ? __pfx_netlink_sendmsg+0x10/0x10
[  145.685143][ T7515]  __sock_sendmsg+0x145/0x180
[  145.685169][ T7515]  ____sys_sendmsg+0x31e/0x4e0
[  145.685206][ T7515]  ___sys_sendmsg+0x17b/0x1d0
[  145.685252][ T7515]  __x64_sys_sendmsg+0xd4/0x160
[  145.685359][ T7515]  x64_sys_call+0x191e/0x3000
[  145.685463][ T7515]  do_syscall_64+0xd2/0x200
[  145.685487][ T7515]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  145.685521][ T7515]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  145.685564][ T7515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.685586][ T7515] RIP: 0033:0x7fe83438eec9
[  145.685605][ T7515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.685629][ T7515] RSP: 002b:00007fe832df7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  145.685727][ T7515] RAX: ffffffffffffffda RBX: 00007fe8345e5fa0 RCX: 00007fe83438eec9
[  145.685740][ T7515] RDX: 0000000004000000 RSI: 0000200000000280 RDI: 0000000000000004
[  145.685757][ T7515] RBP: 00007fe832df7090 R08: 0000000000000000 R09: 0000000000000000
[  145.685813][ T7515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.685826][ T7515] R13: 00007fe8345e6038 R14: 00007fe8345e5fa0 R15: 00007ffc367ac038
[  145.685870][ T7515]  </TASK>
[  145.894298][ T4211] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  145.905234][ T4211] Quota error (device loop4): write_blk: dquota write failed
[  145.912955][ T4211] Quota error (device loop4): remove_free_dqentry: Can't write block (5) with free entries
[  145.923429][ T4211] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  145.931362][ T7512] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.934026][ T4211] Quota error (device loop4): write_blk: dquota write failed
[  145.953929][ T4211] Quota error (device loop4): free_dqentry: Can't move quota data block (5) to free list
[  145.963954][ T4211] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  145.974368][ T4211] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  145.983427][ T4211] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  145.993891][ T7505] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  146.008468][ T7505] ==================================================================
[  146.016771][ T7505] BUG: KCSAN: data-race in __wb_update_bandwidth / percpu_counter_add_batch
[  146.025763][ T7505] 
[  146.028118][ T7505] read-write to 0xffff8881017bd148 of 8 bytes by interrupt on cpu 0:
[  146.036307][ T7505]  percpu_counter_add_batch+0x110/0x130
[  146.042087][ T7505]  __wb_writeout_add+0x42/0x1b0
[  146.047012][ T7505]  __folio_end_writeback+0x14b/0x3b0
[  146.052497][ T7505]  folio_end_writeback_no_dropbehind+0x6d/0x1b0
[  146.058779][ T7505]  folio_end_writeback+0x1c/0x70
[  146.063745][ T7505]  end_buffer_async_write+0x156/0x1f0
[  146.069145][ T7505]  end_bio_bh_io_sync+0x79/0xa0
[  146.074030][ T7505]  bio_endio+0x37e/0x420
[  146.078843][ T7505]  blk_update_request+0x336/0x730
[  146.083975][ T7505]  blk_mq_end_request+0x26/0x50
[  146.088941][ T7505]  lo_complete_rq+0x98/0x140
[  146.093731][ T7505]  blk_done_softirq+0x77/0xb0
[  146.099059][ T7505]  handle_softirqs+0xba/0x290
[  146.103756][ T7505]  run_ksoftirqd+0x1c/0x30
[  146.108285][ T7505]  smpboot_thread_fn+0x32b/0x530
[  146.113250][ T7505]  kthread+0x489/0x510
[  146.117339][ T7505]  ret_from_fork+0x122/0x1b0
[  146.121968][ T7505]  ret_from_fork_asm+0x1a/0x30
[  146.126840][ T7505] 
[  146.129180][ T7505] read to 0xffff8881017bd148 of 8 bytes by task 7505 on cpu 1:
[  146.136736][ T7505]  __wb_update_bandwidth+0x98/0x5d0
[  146.141962][ T7505]  do_writepages+0x2dd/0x310
[  146.146604][ T7505]  filemap_write_and_wait_range+0x144/0x340
[  146.152644][ T7505]  sync_blockdev+0x35/0x50
[  146.157256][ T7505]  ext4_put_super+0x610/0x7d0
[  146.162056][ T7505]  generic_shutdown_super+0xe6/0x210
[  146.167456][ T7505]  kill_block_super+0x2a/0x70
[  146.172242][ T7505]  ext4_kill_sb+0x42/0x80
[  146.176631][ T7505]  deactivate_locked_super+0x75/0x1c0
[  146.182243][ T7505]  deactivate_super+0x97/0xa0
[  146.186959][ T7505]  cleanup_mnt+0x269/0x2e0
[  146.191593][ T7505]  __cleanup_mnt+0x19/0x20
[  146.196074][ T7505]  task_work_run+0x131/0x1a0
[  146.200702][ T7505]  exit_to_user_mode_loop+0xed/0x110
[  146.206125][ T7505]  do_syscall_64+0x1d6/0x200
[  146.210740][ T7505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.216770][ T7505] 
[  146.219136][ T7505] value changed: 0x0000000000001230 -> 0x0000000000001240
[  146.226278][ T7505] 
[  146.228828][ T7505] Reported by Kernel Concurrency Sanitizer on:
[  146.235177][ T7505] CPU: 1 UID: 0 PID: 7505 Comm: syz.4.1305 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  146.245017][ T7505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  146.255183][ T7505] ==================================================================
[  146.290915][ T7522] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  146.314277][ T7523] loop3: detected capacity change from 0 to 512
[  146.318804][ T7505] loop4: detected capacity change from 0 to 1024
[  146.327931][ T7505] EXT4-fs: Ignoring removed oldalloc option
[  146.334084][ T7505] EXT4-fs: Ignoring removed bh option
[  146.337507][ T7524] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  146.340397][ T7505] EXT4-fs: Mount option(s) incompatible with ext2
[  146.350864][ T7523] EXT4-fs: Ignoring removed orlov option
[  146.382334][ T7523] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  146.406580][ T7523] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #15: comm syz.3.1309: corrupted in-inode xattr: e_value size too large
[  146.421079][ T7523] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1309: couldn't read orphan inode 15 (err -117)
[  146.438006][ T7523] __nla_validate_parse: 1 callbacks suppressed
[  146.438022][ T7523] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1309'.
[  146.457242][ T7523] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1309'.