last executing test programs:

2.478172472s ago: executing program 4 (id=885):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$nci(r1, &(0x7f0000000040)=@NCI_OP_NFCEE_MODE_SET_RSP={0x2, 0x0, 0x2, 0x1, 0x5, 0x1}, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000900)={'batadv0\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000c9618500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x2)
fallocate(r3, 0x0, 0x0, 0x1001f0)
sendmsg$kcm(r3, &(0x7f0000000400)={&(0x7f0000000280)=@sco={0x1f, @none}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000180)}, {&(0x7f00000004c0)="a78c2412152a234971a6b86f39d581c25c68d9d4774a5135031d2222da29195e7c169fcb3ba03e7e4cec8c048ae1f4138106245b6c5c4f6a2e2ac7d7a14c68e8b95fa8b33761108410efe7bb20bcd7db1f761998cbc8da2214e78ce1ad998a774a235a27cad0251cf57d4117885985c248634c8445577da8e6bb1c6d1f5712f86a5ea9952e55dbd5c8aa63580f8448557bbaec4cf8e30784900b6faf313616a09f9dc3f727a9a1a55b99ce8bbba02add941f66621b2655d9c7d3c03f03711b9caf66bb55fb96c3f8e105c8f19806e4", 0xcf}, {&(0x7f0000000300)="3ff0894d793ed7f10138fd519c3d1dec71f9164dc9c14d0137ccc7726e937325c4d990f0d32051efafc99c9e326183fec9394ef9f49b7e54441bc0d5828df815768e10e757c653bfecc8fe7cc2a270fa25cab0cd6a2af6282e1e24e7dd53136249291132324e3b6f48b0f3c7f0d3f41807b23c840fb41e64af334caa8fde8a", 0x7f}], 0x3, &(0x7f0000000b00)=[{0x58, 0x118, 0x100, "f0a0b53b90a7aa0bcca51ff828b71c04682d625d985da243f957307fa386db197c08d93acb3903035be892ce58a056a3b76308a7ee155f7b8f8c155ca7b01f39070e7f1327"}, {0xe8, 0x10c, 0x5, "ad3a7e96e663cd0a0480c410f3d4af526ca6501a646d71be2ea097381ee5c0c1d37f5bc84e26573f4dafc8beb33c6efe3ee8a0a65cd2942eec04e44ec909faaf2a9c1694423d9eb3d437f070867f159bdca7d45fe23425210a97f38499f52edab7e71fb23f670e4cd787aad26e98177c958eb950c3e320cc2354a8330bd0c696a7b5c8b89200db48c1f3d5e7ce377f8e53d98dbea18a858a516a2233734b586405d6b290bce868bf18d2b09d1b79366bae982d3574e7a9eb647f6934bee4e5adca752c85e1ddae28efc8f9224116991b07f89efe"}, {0xb0, 0x117, 0x6, "5d1fa06345961aa4322d22bf331ac0890f025f173f09ff9a6f6a764836187e8b3eaf21a64adc0290506ce360b880af55b38f2fd5044fbc02584a4c1b091e96b51d129ff0eca7980c532cdb9cbfee4a17501e6a69aeb1a324ef01a2a5be4d0708b828ea8ae183aee1629f9d9b361b6569a8987222c3bf35e898378160f2909a631334023ec2fab5bbfbf8e1499b659f36a595960de3b5753848"}, {0x1010, 0x11, 0x10000, "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"}, {0x78, 0x1f, 0x7b7, "fea7ced0410d5d48e5af4558768d17ca32775e14792b220f1924f8bab72c390cf0a08f2be0623a311fbb50dba9b54f10668226d7fb72c3c6322bc134faa0cef3bf58561eff1024ff0506a6b704efa37e6b04437ff3d04396eda40597dfc054e74868740948a731"}, {0xc0, 0x0, 0x6, "a074773f1a38036e8b7abf8511e09e6c1cb32d73093f6bae77345d897fa925c63b1f42f06200e09ee1db07d022793032904812b3b4fcb8e488411ac73b8a5ad5802b15017669866f57d8558eeca9d0ba81fd4f373673f805b191bdcc062b634a6488dd4192ad23f8c1a92cd237f8da529297fb4385b9f3188b674efa0d9bb8b56b2d21d579adfb67b78fac702bfce4ebd4db3267b837b52bf684d872bc9775a2e8a0b41beddfe9190965bb06daa9"}, {0x80, 0x112, 0xc, "ab1d6ae570b65fe67359f8032f009c29620e6853c3c0e709857272bce3ac8b3a473357df31685497669233173ff78299511388212fd09eda013d5f316cc7e17da50e1b97b46ef308f39f9dafdc409ff5c8ea9e936930a9f7b4267ddb38083ba32a9cbd0b8d7db9ebb72b7570fe771444"}], 0x13b8}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000006000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='mm_page_alloc\x00', r4}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x9, 0x590, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x2}, 0x4c58, 0x0, 0x0, 0x4, 0x8, 0xffffffff, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0xfffffffffffffffe}, 0x18)
syz_emit_ethernet(0x36, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x0)

2.428690683s ago: executing program 0 (id=887):
r0 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x4, @loopback={0x0, 0xa8aaaafffeaaaa1e}, 0x8000}, 0x1c)
syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
add_key(0x0, 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dba", 0x19, 0xfffffffffffffffd)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x1}})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, &(0x7f0000001200)=ANY=[@ANYRES16], 0x0, 0x5, 0x0, 0x0, 0x0, 0x26}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x1b)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r1, &(0x7f00000003c0)=""/4096, 0x1000)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_msfilter(r2, 0x0, 0x29, 0x0, 0x1c)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, 0x0, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x54a2)
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002640)=@newtaction={0xe8c, 0x30, 0x3f, 0x0, 0x0, {}, [{0xe78, 0x1, [@m_pedit={0xe74, 0x1, 0x0, 0x0, {{0xa}, {0xe48, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x24, 0x5, 0x0, 0x1, [{0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}]}]}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {0xfffffffc, 0x0, 0x0, 0x0, 0x100, 0x81}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x5943}, {0x0, 0x800000, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {}, {0x0, 0xa2}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x1000000, 0x1cbe}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x1}, {}, {}, {0x8}, {}, {0x0, 0xfffffffe, 0x400000}, {0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x4, 0xffffff6a}, {0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x800000}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x10000000, 0x0, 0x0, 0x8}, {0x0, 0x7fffffff}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x27a}, {0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0xfffffffc, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x2}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x0, 0xa, 0x0, 0x200}, {0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0xc}, {}, {0x0, 0x0, 0x2b7f}, {0x3ff, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0xcfc, 0x0, 0x0, 0xfffffffc}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0x800}, {0xfffffffd, 0x0, 0x0, 0x0, 0xa92}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x40000000, 0x1, 0x0, 0x10001}, {0x0, 0x0, 0x20}, {}, {0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, {0xfffffffc}, {}, {}, {}, {0x0, 0xa, 0xfffffffc}, {0x0, 0x0, 0x0, 0x8}, {0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x40, 0x0, 0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {0x5}, {}, {}, {0x0, 0x1}, {}, {}, {0x7, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe8c}}, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r4}, './file1\x00'})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x1d, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB="180000e5010011000000be230fdb68ff17110080", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000001859000003000000000000000000000018160000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000b7080000040000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a500000018140000", @ANYRES32, @ANYBLOB="000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000018130000", @ANYRES32, @ANYBLOB="0000000000000000bf91000000000000b7020000020000008500000085000000b7000000000000009500"], &(0x7f0000000200)='syzkaller\x00', 0x7, 0x1, &(0x7f0000000240)=""/1, 0x40f00, 0xc, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x2, 0x8, 0xfffffff9, 0x3}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x10001}, 0x94)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x2000c16, &(0x7f0000000400)={[{@oldalloc}, {@discard}]}, 0x1, 0x257, &(0x7f0000000500)="$eJzs3U9oFFccB/DfzO42TbKUtL0USv9AKaUNhPRW6CW9tBAoIZRSaAsppfSiJEJM8JZ48uJBj6KSk5cg3oweJZfgRRE8Rc0hXgQNHgweVFjZnQTyTxOzmx1xPh+YzEzy5v3eMPN9ExaGDaCweiJiICJKEdEbEZWISDY2+DJbetZ2ZzoXRiJqtd8eJ4122X5m/bjuiJiOiB8iYj5N4lA5YnLur+Wni798c3Ki8vWFuT8723qSa1aWl35dPT904vLg95M3bz8cSmIgqpvOq/WSHX5XTiI+Oohib4mknPcI2IvhY5fu1HP/cUR81ch/JdLILt6p8ffmK/HduVcde/rRrU/bOVag9Wq1Sv0ZOF0DCieNiGokaV9EZNtp2teX/Q9/t9SVHh4bP9r7/9jE6H95z1RAq1Qjln6+2nGle0v+H5Sy/APvqOxDqaXfh2fv1TdWS3kPCGiLz7JV/fnf+8/UtyH/UDjyD8Ul/1Bc8g/FJf9QXPIPxSX/UFzyD8Ul/1Bc+87/mRcHNyigLTbmHwAollrHvt4abv2LyEDb5T3/AAAAAAAAAAAAAAAAAAAA2810LoysL63psbxri+tnI1Z+yppur19qfB9xxPuNn11Pkk09Jnuq8Hp/f9FkB026mPPb1x/cz7f+jc/zrT81GjF9PCL6y+Xt91+ydv/t34e7/L3yb5MF3lCyZf/HP9pbf6vns/nWH1yMuFaff/p3mn/S+KSx3nn+qdavX5P1jzxrsgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADa5mUAAAD//7FLbdg=")

2.415375623s ago: executing program 4 (id=888):
socket$packet(0x11, 0xa, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000033be0000000000000000000400950000000000000067091b586e0b6a26b6c6681c009237b529734733a49d1d8dd4586500bad28cd23696c187adaecfd55009b3a429771ddb3cc848154e1335df4b"], 0x0}, 0x94)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
r2 = syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x3594, 0x10, 0x1003, 0x21e}, &(0x7f0000000240)=<r3=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r3, 0x0, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x10, 0x0, 0x0, 0x0, &(0x7f00000005c0)={0x0, 0x3938700}, 0x1, 0x8})
io_uring_enter(r2, 0x6efc, 0x3900, 0xb, 0x0, 0x0)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x1030000, 0x1000, 0x5, 0x4}, 0x20)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r5 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="600000002e000d190a762d7f089e", 0xe}, {&(0x7f0000000280)="68cabf2dfb58fc0a1d6b689866f05d490d010088a8ffff0200258f2e4409b8f9e6aaeb88bea123dc2c6726e89b1ae2f6e8bcb5ee52dcd7298d39093c510293bca0b646", 0x43}], 0x2}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r4}, &(0x7f0000000580), &(0x7f00000005c0)=r6}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xffffffffffffffff, 0x6}, 0x23, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x11, 0xa, 0x300)
r7 = getpid()
r8 = syz_pidfd_open(r7, 0x0)
setns(r8, 0x24020000)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)

2.320052254s ago: executing program 4 (id=889):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2b)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_tcp(0x2, 0x1, 0x0)
sched_rr_get_interval(0x0, &(0x7f00000001c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000001000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3, 0x0, 0x8}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280080001000800000006000200010000001ffe02000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)

2.161905477s ago: executing program 4 (id=891):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000340)=ANY=[])
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x1000416, &(0x7f0000000340)={[{@jqfmt_vfsv0}, {@dax}]}, 0xff, 0x263, &(0x7f0000000c00)="$eJzs3U9IHFccB/DfzO5q1aXY9lIo/QOllFYQeyv0Yi8tCEWklEJbsJTSS4sWrNKb9tRLDskxJMFTLhJyi8kxeJFcEgI5mcSDuQQSySGSQxLYsDsK/tlE4252gvP5wDoz+Ob93jDzfSOywwRQWP0RMRwRpYgYiIhKRCTbG3yUffo3N+d7lscjarXvHySNdtl2Zmu/voiYi4gvI2IpTeLPcsTM4s9rj1a+/fTYdOWTs4s/9XT0IDetr61+t3Fm9P8LI1/MXLtxbzSJ4ajuOK626Nq+kTRpUE4i3m5TsddRUs57BBzE2L/nb9Zz/05EfNzIfyXSyE7e8amupUp8fvp5+564f/29To4VaL9arVK/B87VgMJJI6IaSToYEdl6mg4OZn/D3yr1pn9NTv0z8Mfk9MTvec9UQLtUI1a/udR9sW9X/u+WsvwDR1T2T6nVH8YWbtdXNkp5DwjoiPezRf3+P/Dr7Gch/1A48g/FJf9QXPIPxSX/cPQ0+75pM/IPxSX/UFzyD8Ul/1Bch87/yaevblBAR2zPPwBQLLXuQz013P4HkYGOy3v+AQAAAAAAAAAAAAAAAAAA9prvWR7f+rSnx/K+La6cilj/Omu6t36p8T7iiDcaP3sfJjt6TA5U4cV++bDFDlp0Luenr9+8k2/9qx/kW392ImLuv4gYKpcb196OCyrZvP4O7619fl/5rcUCL2n3uwG++rGz9Xd7spBv/ZGViMv1+Weo2fyTxruNZfP5p1o/fy3W//txix0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQMc8CAAD//5WKauY=")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x17e)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48041, 0x0)
request_key(&(0x7f0000000240)='cifs.spnego\x00', &(0x7f0000000280)={'syz', 0x2}, &(0x7f0000000300)='keyring\x00', r1)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r5}, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r6 = mq_open(&(0x7f00000000c0)='${ \x00', 0x840, 0x8, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x5, 0x4}]})
socket$inet6_tcp(0xa, 0x1, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
r7 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, r3)
r8 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, r7)
add_key(&(0x7f0000000000)='rxrpc\x00', 0x0, &(0x7f00000002c0)="0000000000000002ff690000000000060000000000000000000200861f4104bfeacdd5a9007d16dcdc2850b5", 0x2c, r8)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$tcp_mem(0xffffffffffffff9c, 0x0, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r2, 0x0, 0x48c, &(0x7f00000000c0)={0x0, 'veth0_to_team\x00'}, 0x18)
ioctl$EXT4_IOC_MIGRATE(r2, 0x6609)
keyctl$setperm(0x5, r1, 0x800)
syz_io_uring_setup(0x253e, &(0x7f0000000380)={0x0, 0xc5d9, 0x0, 0x1, 0x395}, &(0x7f00000004c0), &(0x7f0000000500))

1.756983563s ago: executing program 2 (id=895):
r0 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r1 = inotify_init1(0x0)
r2 = inotify_add_watch(r1, &(0x7f0000000080)='./file0\x00', 0x40000022)
write$binfmt_elf32(r0, &(0x7f0000000000)=ANY=[@ANYRES64=r2], 0x69)
syz_io_uring_submit(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x181)
pipe2$9p(0x0, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r5, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
readv(r5, &(0x7f0000000100)=[{&(0x7f00000002c0)=""/215, 0xd7}], 0x1)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
close(r0)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, 0x0, 0x0)

1.635538005s ago: executing program 1 (id=896):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x2, 0x40001, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x2, @perf_config_ext={0x0, 0x10000}, 0x1320, 0x5, 0x3, 0x7, 0x4, 0x1088f105, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r3, &(0x7f0000000340)=ANY=[], 0xff2e)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
lsm_set_self_attr(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x1020, 0x0)

1.567390826s ago: executing program 3 (id=897):
syz_genetlink_get_family_id$fou(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x44000}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000500000001000000070000000000", @ANYRES32=0x1, @ANYRESOCT=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x2000000000000204, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000300000095000000000a00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
socket(0x10, 0x803, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d"], 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r4}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
r7 = dup(r6)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])

1.565706346s ago: executing program 0 (id=898):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
epoll_create(0x5)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x14480, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x3}}, './file0\x00'})
unshare(0x40020000)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/ip6_tables_names\x00')
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xf, &(0x7f0000000800)=ANY=[@ANYBLOB="180000000400000000000000feffffff18110000", @ANYRES32=<r4=>r2, @ANYBLOB="0000000000000000b702000014000000b70300000085a3008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000758b45ef8500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000001c0)={r3}, 0xc)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/partitions\x00', 0x0, 0x0)
preadv(r5, &(0x7f0000000180)=[{&(0x7f0000000580)=""/140, 0x8c}], 0x1, 0x4, 0x4)
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
utime(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x7, 0x5})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8], 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newtaction={0x88, 0x30, 0xb, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ct={0x70, 0x1, 0x0, 0x0, {{0x7}, {0x48, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfdb}}, @TCA_CT_MARK={0x8, 0x10}, @TCA_CT_MARK_MASK={0x8, 0x6, 0x4}, @TCA_CT_LABELS={0x14, 0x7, "cd151069c6b32d89c3c569fb5a944448"}, @TCA_CT_MARK_MASK={0x8, 0x6, 0x9}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000000)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0700000004000000080200000100000000000000", @ANYRES32, @ANYBLOB="00000000000000000000f64c3a4f00000000002dc217ef7d030000005035daf666116fff9db6a151d291ab69855dee733d582215f34f04c5fe15fc43d861e1ac608bb7ee57d4f984a7b1a200bf3092c9bde294325a2e2a7c6de39a16451c2dde4775c715221e008c8cfef678c3855d39970b5d81e7129c", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r12 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r12}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r13 = eventfd2(0x0, 0x0)
read$eventfd(r13, &(0x7f0000000040), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r11, @ANYRES64=r4], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.458950178s ago: executing program 3 (id=899):
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x1f, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63"], 0x0, 0x10000000, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x19, 0xc, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_opts(r1, 0x29, 0x4d, &(0x7f0000000140)=ANY=[@ANYRESDEC], 0x8)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
sendto$inet6(r2, &(0x7f0000000300), 0x5aa, 0x0, 0x0, 0xfffffffffffffdfd)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0406618, &(0x7f0000000500)={@id={0x2, 0x0, @c}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000400001afc18010000202070250000000000201c207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095fa97635953935609b55c84db346b8646d5e42c36604e03b2980f85f78b019f77bf0d75a58afe7c42bfca7143b655c5b1e8a98d3a4692a645c9829eecef319a15502ddeba0742461114e033a7659038c3569465898cb2fa8b7df1eff31eb8db00b63d"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a300000"], 0x118}}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x229ffa1c4ce5369, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe2(&(0x7f0000000000)={<r3=>0xffffffffffffffff}, 0x4000)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
fchmodat(r3, &(0x7f0000000200)='./file0\x00', 0x104)
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x84000)
tee(r3, r5, 0xfffffffffffffc01, 0x0)

1.261670211s ago: executing program 4 (id=900):
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x1f, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63"], 0x0, 0x10000000, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x19, 0xc, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_opts(r1, 0x29, 0x4d, &(0x7f0000000140)=ANY=[@ANYRESDEC], 0x8)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
sendto$inet6(r2, &(0x7f0000000300), 0x5aa, 0x0, 0x0, 0xfffffffffffffdfd)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0406618, &(0x7f0000000500)={@id={0x2, 0x0, @c}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000400001afc18010000202070250000000000201c207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095fa97635953935609b55c84db346b8646d5e42c36604e03b2980f85f78b019f77bf0d75a58afe7c42bfca7143b655c5b1e8a98d3a4692a645c9829eecef319a15502ddeba0742461114e033a7659038c3569465898cb2fa8b7df1eff31eb8db00b63d"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05"], 0x118}}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x229ffa1c4ce5369, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe2(&(0x7f0000000000)={<r3=>0xffffffffffffffff}, 0x4000)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
fchmodat(r3, &(0x7f0000000200)='./file0\x00', 0x104)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x84000)
tee(r3, r5, 0xfffffffffffffc01, 0x0)

896.628146ms ago: executing program 2 (id=901):
fcntl$lock(0xffffffffffffffff, 0x25, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
fcntl$lock(r0, 0x5, &(0x7f0000000400)={0x0, 0x4, 0xb, 0xb7})
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000040), 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./bus\x00', 0x2900088, &(0x7f0000000a00)=ANY=[@ANYBLOB="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", @ANYRESOCT, @ANYRES16], 0x97, 0x2b3, &(0x7f0000000bc0)="$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")
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = dup2(r4, r4)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
timer_create(0x0, 0x0, &(0x7f00009b1ffc))
timer_delete(0x0)
mkdirat(r5, &(0x7f0000000000)='./file0\x00', 0x21)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64, @ANYRES16=0x0], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r6 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x2000000, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c000", 0x0, 0x86, 0x0, 0x31, 0x0, &(0x7f00000001c0)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x50)
ftruncate(r6, 0x2007ffb)
sendfile(r6, r6, 0x0, 0x800000009)

829.956687ms ago: executing program 2 (id=902):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r2}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x0, 0xa, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x61980, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000001680), &(0x7f0000001340), 0xede8, r3}, 0x38)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/tcp\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdir(&(0x7f0000000200)='./file0\x00', 0x50)
pipe2$9p(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r6])

760.775508ms ago: executing program 1 (id=903):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x60800, 0x0)
sendfile(r2, r3, 0x0, 0x1000000000004)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000180)={0x0, 0xe8, &(0x7f0000000340)=[@in6={0xa, 0x4e21, 0x3, @private1, 0x5}, @in={0x2, 0x4e24, @local}, @in6={0xa, 0x4e20, 0xffffffff, @dev={0xfe, 0x80, '\x00', 0x33}, 0x1}, @in6={0xa, 0x4e20, 0x3, @loopback, 0x1ff}, @in6={0xa, 0x4e23, 0x903, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x5}, @in6={0xa, 0x4e23, 0xf, @loopback, 0x7fff}, @in={0x2, 0x4e22, @loopback}, @in={0x2, 0x4e20, @remote}, @in={0x2, 0x4e24, @private=0xa010101}, @in6={0xa, 0x4e24, 0x3, @remote, 0x800}]}, &(0x7f0000000200)=0x10)

760.233148ms ago: executing program 1 (id=904):
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0xed)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@dev={0xac, 0x14, 0x14, 0x29}, @remote}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8, 0x0, 0x0, 0x20}, @initr0, @jmp={0x5, 0x0, 0x0, 0x1, 0x4, 0xfffffffffffffffc, 0xfffffffffffffff0}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='rpcb_setport\x00', r2, 0x0, 0x4000000000000}, 0x18)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100), 0x4, 0x4eb, &(0x7f0000000540)="$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")

671.04424ms ago: executing program 1 (id=905):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000340)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000380)='%pK    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000580)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000c40)='sys_enter\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x75b, &(0x7f0000000d40)="$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")
utimes(&(0x7f0000000180)='./file0\x00', 0x0)

632.036ms ago: executing program 0 (id=906):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r3 = dup2(r2, r2)
write$tun(r3, 0x0, 0x46)

611.694621ms ago: executing program 0 (id=907):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r2}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x0, 0xa, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x61980, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000001680), &(0x7f0000001340), 0xede8, r3}, 0x38)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/tcp\x00')
mkdir(&(0x7f0000000200)='./file0\x00', 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='9p_protocol_dump\x00'}, 0x18)

598.307031ms ago: executing program 3 (id=908):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000024c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, r1, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004000}, 0x0)

582.434461ms ago: executing program 1 (id=909):
fcntl$lock(0xffffffffffffffff, 0x25, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
fcntl$lock(r0, 0x5, &(0x7f0000000400)={0x0, 0x4, 0xb, 0xb7})
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000040), 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./bus\x00', 0x2900088, &(0x7f0000000a00)=ANY=[@ANYBLOB="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", @ANYRESOCT, @ANYRES16], 0x97, 0x2b3, &(0x7f0000000bc0)="$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")
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
dup2(r4, r4)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
timer_create(0x0, 0x0, &(0x7f00009b1ffc))
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64, @ANYRES16=0x0], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r5 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x0)
ftruncate(r5, 0x2007ffb)
sendfile(r5, r5, 0x0, 0x800000009)

557.053861ms ago: executing program 3 (id=910):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{r1}, 0x0, &(0x7f0000000640)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18"], 0x0, 0x6, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
flistxattr(r4, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a"], 0x44}}, 0x0)

404.490994ms ago: executing program 4 (id=911):
r0 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r1 = inotify_init1(0x0)
r2 = inotify_add_watch(r1, &(0x7f0000000080)='./file0\x00', 0x40000022)
write$binfmt_elf32(r0, &(0x7f0000000000)=ANY=[@ANYRES64=r2], 0x69)
syz_io_uring_submit(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x181)
pipe2$9p(0x0, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r5, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
readv(r5, &(0x7f0000000100)=[{&(0x7f00000002c0)=""/215, 0xd7}], 0x1)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
close(r0)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, 0x0, 0x0)
execve(0x0, 0x0, 0x0)

347.462965ms ago: executing program 3 (id=912):
fcntl$lock(0xffffffffffffffff, 0x25, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
fcntl$lock(r0, 0x5, &(0x7f0000000400)={0x0, 0x4, 0xb, 0xb7})
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000040), 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./bus\x00', 0x2900088, &(0x7f0000000a00)=ANY=[@ANYBLOB="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", @ANYRESOCT, @ANYRES16], 0x97, 0x2b3, &(0x7f0000000bc0)="$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")
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = dup2(r4, r4)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
timer_create(0x0, 0x0, &(0x7f00009b1ffc))
timer_delete(0x0)
mkdirat(r5, &(0x7f0000000000)='./file0\x00', 0x21)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64, @ANYRES16=0x0], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r6 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x2000000, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c000", 0x0, 0x86, 0x0, 0x31, 0x0, &(0x7f00000001c0)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x50)
ftruncate(r6, 0x2007ffb)
sendfile(r6, r6, 0x0, 0x800000009)

346.031135ms ago: executing program 1 (id=913):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
epoll_create(0x5)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x14480, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x3}}, './file0\x00'})
unshare(0x40020000)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/ip6_tables_names\x00')
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xf, &(0x7f0000000800)=ANY=[@ANYBLOB="180000000400000000000000feffffff18110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b70300000085a3008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000758b45ef8500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000001c0)={r3}, 0xc)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/partitions\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000180)=[{&(0x7f0000000580)=""/140, 0x8c}], 0x1, 0x4, 0x4)
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
utime(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x7, 0x5})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newtaction={0x88, 0x30, 0xb, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ct={0x70, 0x1, 0x0, 0x0, {{0x7}, {0x48, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfdb}}, @TCA_CT_MARK={0x8, 0x10}, @TCA_CT_MARK_MASK={0x8, 0x6, 0x4}, @TCA_CT_LABELS={0x14, 0x7, "cd151069c6b32d89c3c569fb5a944448"}, @TCA_CT_MARK_MASK={0x8, 0x6, 0x9}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000000)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0700000004000000080200000100000000000000", @ANYRES32, @ANYBLOB="00000000000000000000f64c3a4f00000000002dc217ef7d030000005035daf666116fff9db6a151d291ab69855dee733d582215f34f04c5fe15fc43d861e1ac608bb7ee57d4f984a7b1a200bf3092c9bde294325a2e2a7c6de39a16451c2dde4775c715221e008c8cfef678c3855d39970b5d81e7129c", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r10 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r10}, &(0x7f0000bbdffc))
r11 = eventfd2(0x0, 0x0)
read$eventfd(r11, &(0x7f0000000040), 0x8)

173.296557ms ago: executing program 3 (id=914):
r0 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r1 = inotify_init1(0x0)
r2 = inotify_add_watch(r1, &(0x7f0000000080)='./file0\x00', 0x40000022)
write$binfmt_elf32(r0, &(0x7f0000000000)=ANY=[@ANYRES64=r2], 0x69)
syz_io_uring_submit(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x181)
pipe2$9p(0x0, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r5, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
readv(r5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close(r0)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, 0x0, 0x0)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

152.354108ms ago: executing program 2 (id=915):
fcntl$lock(0xffffffffffffffff, 0x25, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
fcntl$lock(r0, 0x5, &(0x7f0000000400)={0x0, 0x4, 0xb, 0xb7})
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000040), 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./bus\x00', 0x2900088, &(0x7f0000000a00)=ANY=[@ANYBLOB="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", @ANYRESOCT, @ANYRES16], 0x97, 0x2b3, &(0x7f0000000bc0)="$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")
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
dup2(r4, r4)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64, @ANYRES16=0x0], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r5 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x0)
ftruncate(r5, 0x2007ffb)
sendfile(r5, r5, 0x0, 0x800000009)

84.426019ms ago: executing program 2 (id=916):
perf_event_open(&(0x7f0000000140)={0x2, 0x51, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0x7}, 0x0, 0x10000, 0x547a, 0x1, 0xa, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x0, 0xffffffff})
setrlimit(0x8, &(0x7f0000000080))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r0, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
sendto$inet(r0, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)

15.481119ms ago: executing program 0 (id=917):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r3 = dup2(r2, r2)
write$tun(r3, 0x0, 0x46)

14.8266ms ago: executing program 0 (id=918):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1a1000e, &(0x7f00000003c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x5}}, {@nomblk_io_submit}]}, 0x5e, 0x52c, &(0x7f0000000e00)="$eJzs3c1vHGcZAPBnxrvBaVzWBQ6lUj9Eg5IKshvXtLU4tEUgbpVA5V4se2NZWWcj76aNrQoccUZICEElTpy4IHHjgoTyJyCkSuSOAIEQpHDgAAya2dnUWWYTW92PYP9+0rv7zju78zzvxDv7zkd2Aji1nouI1yNiISJeiIhG2Z6WJQ4GJX/dB3ff3chL3vzmX5NIyraIonrPufJti4OnSr29/avrnU57t5xu9Xeut3p7+5e2d9a32lvta6urKy+vvbL20trlifQz79erX/njD7/306+++qvPv/O7t/588Vt50l8u5w/7NTnF2os7xWM9Xxf31CJid7LB5mah7E993okAAHAk+Sj1ExHxmWL834iFYjRXGB3SLc4+OwAAAGASsteW4l9JRAYAAACcWK9FxFIkabO8FmAp0rTZHFzD+6l4LO10e/3PXeneuLaZz4tYjnp6ZbvTvlxeU7sc9SSfXinqH06/ODK9GhFPRMQPGmeL6eZGt7M574MfAAAAcEqcG9n//0djsP8PAAAAnDDLxWNj3mkAAAAAU7Q8pj2ZcR4AAADA9Izb/wcAAABOhK+98UZesuH9rzff3rtxtfv2pc1272pz58ZGc6O7e7251e1uFb/Zt/OgZdUjotPtXv9CxI2brX6712/19vbf2vnu0sy6AwAAAFR44tnbd5KIOPji2aLkzuQPC2Pe4FoBODHS47z4D9PLA5i9cV/zR3BmknkAs1ebdwLA/BzMOwFg3u77qY+KQcHiofp9xwx+Pb2cAACAybrw6dt3vl1x/r9WXs8PnFzHOv8PnCgf4fw/8H/O+X84verHGgHcmmImwLw87FYfi+NmVJ3/r7wyOMseuiwAAGCqlorybNoszwUuRZo2mxGPF//Vv55c2e60L0fExyPit436x/LpleKdidsDAgAAAAAAAAAAAAAAAAAAAAAAAMARZVkSGQAAAHCiRaR/Ssr7f11onF8aPT5wJvlnI8pber3z4zd/dHO9399dydv/dq+9/17Z/uI8jmAAAADAaVR74NzhfvpwPx4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJumDu+9uDMss4/7lSxGxXBW/FovF82LUI+KxvydRO/S+JCIWJhD/4FZEPFkVP8nTiuUyi9H4aUScnU38p7Msq4x/bgLx4TS7nW9/Xq/6/KXxXPFc/fmvleWjum/7d+YXh+ak97Z/C2O2f48fMcZT7/+8NTb+rYinatXbn2H8ZEz856sWWLFSvvmN/f3/aRwsPLKfRFyo/P5J7ovV6u9cb/X29i9t76xvtbfa11ZXV15ee2XtpbXLrSvbnXb5WBUivv/0L/8zEv3f2UDR/xgTf/kh/T+fV+qHGrPRMGWw92/e/eSgWh9ZRBH/4vPVf39PPiB+/jfx2fJ7IJ9/YVg/GNQPe+Znv3mmMrEy/uaY/j/s3//iuIWOeOHr3/n9EV8KAMxAb2//6nqn096deuW9LMtmFevolUiP+uJiuDjTNTbbynB0N7UQi49KT2dcOf9opHGcyiSObAEAAI+aDwf9884EAAAAAAAAAAAAAAAAAAAATq/eXqTT/jmx0ZgH8+kqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAD/TcAAP//WwHXuQ==")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r2, 0x2)
flock(r2, 0x1)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
r3 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SCALLUSERDATA(r3, 0x89e5, &(0x7f00000003c0)={0x15, "7d3c83c726da233cee89e28cee25714ba8a102c8f8dcd3bdeebf67e80d29efe6564a0fb17ed7e05d75037430d637ea1a3300cdde6623f05f4cd8f9cdd2c9e4e0e3754f9a9a5c831f061fa69b1ef7a79c2819499092dfc3ba3363db9bd432572f7c580cc995a51c216291fea7c7de71cfd571857f465f84314efacebc5d24429b"})
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1a1000e, &(0x7f00000003c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x5}}, {@nomblk_io_submit}]}, 0x5e, 0x52c, &(0x7f0000000e00)="$eJzs3c1vHGcZAPBnxrvBaVzWBQ6lUj9Eg5IKshvXtLU4tEUgbpVA5V4se2NZWWcj76aNrQoccUZICEElTpy4IHHjgoTyJyCkSuSOAIEQpHDgAAya2dnUWWYTW92PYP9+0rv7zju78zzvxDv7zkd2Aji1nouI1yNiISJeiIhG2Z6WJQ4GJX/dB3ff3chL3vzmX5NIyraIonrPufJti4OnSr29/avrnU57t5xu9Xeut3p7+5e2d9a32lvta6urKy+vvbL20trlifQz79erX/njD7/306+++qvPv/O7t/588Vt50l8u5w/7NTnF2os7xWM9Xxf31CJid7LB5mah7E993okAAHAk+Sj1ExHxmWL834iFYjRXGB3SLc4+OwAAAGASsteW4l9JRAYAAACcWK9FxFIkabO8FmAp0rTZHFzD+6l4LO10e/3PXeneuLaZz4tYjnp6ZbvTvlxeU7sc9SSfXinqH06/ODK9GhFPRMQPGmeL6eZGt7M574MfAAAAcEqcG9n//0djsP8PAAAAnDDLxWNj3mkAAAAAU7Q8pj2ZcR4AAADA9Izb/wcAAABOhK+98UZesuH9rzff3rtxtfv2pc1272pz58ZGc6O7e7251e1uFb/Zt/OgZdUjotPtXv9CxI2brX6712/19vbf2vnu0sy6AwAAAFR44tnbd5KIOPji2aLkzuQPC2Pe4FoBODHS47z4D9PLA5i9cV/zR3BmknkAs1ebdwLA/BzMOwFg3u77qY+KQcHiofp9xwx+Pb2cAACAybrw6dt3vl1x/r9WXs8PnFzHOv8PnCgf4fw/8H/O+X84verHGgHcmmImwLw87FYfi+NmVJ3/r7wyOMseuiwAAGCqlorybNoszwUuRZo2mxGPF//Vv55c2e60L0fExyPit436x/LpleKdidsDAgAAAAAAAAAAAAAAAAAAAAAAAMARZVkSGQAAAHCiRaR/Ssr7f11onF8aPT5wJvlnI8pber3z4zd/dHO9399dydv/dq+9/17Z/uI8jmAAAADAaVR74NzhfvpwPx4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJumDu+9uDMss4/7lSxGxXBW/FovF82LUI+KxvydRO/S+JCIWJhD/4FZEPFkVP8nTiuUyi9H4aUScnU38p7Msq4x/bgLx4TS7nW9/Xq/6/KXxXPFc/fmvleWjum/7d+YXh+ak97Z/C2O2f48fMcZT7/+8NTb+rYinatXbn2H8ZEz856sWWLFSvvmN/f3/aRwsPLKfRFyo/P5J7ovV6u9cb/X29i9t76xvtbfa11ZXV15ee2XtpbXLrSvbnXb5WBUivv/0L/8zEv3f2UDR/xgTf/kh/T+fV+qHGrPRMGWw92/e/eSgWh9ZRBH/4vPVf39PPiB+/jfx2fJ7IJ9/YVg/GNQPe+Znv3mmMrEy/uaY/j/s3//iuIWOeOHr3/n9EV8KAMxAb2//6nqn096deuW9LMtmFevolUiP+uJiuDjTNTbbynB0N7UQi49KT2dcOf9opHGcyiSObAEAAI+aDwf9884EAAAAAAAAAAAAAAAAAAAATq/eXqTT/jmx0ZgH8+kqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAD/TcAAP//WwHXuQ==") (async)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) (async)
open(&(0x7f0000000300)='.\x00', 0x0, 0x0) (async)
flock(r2, 0x2) (async)
flock(r2, 0x1) (async)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) (async)
syz_init_net_socket$x25(0x9, 0x5, 0x0) (async)
ioctl$SIOCX25SCALLUSERDATA(r3, 0x89e5, &(0x7f00000003c0)={0x15, "7d3c83c726da233cee89e28cee25714ba8a102c8f8dcd3bdeebf67e80d29efe6564a0fb17ed7e05d75037430d637ea1a3300cdde6623f05f4cd8f9cdd2c9e4e0e3754f9a9a5c831f061fa69b1ef7a79c2819499092dfc3ba3363db9bd432572f7c580cc995a51c216291fea7c7de71cfd571857f465f84314efacebc5d24429b"}) (async)

0s ago: executing program 2 (id=919):
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x1f, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63"], 0x0, 0x10000000, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x19, 0xc, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_opts(r1, 0x29, 0x4d, &(0x7f0000000140)=ANY=[@ANYRESDEC], 0x8)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
sendto$inet6(r2, &(0x7f0000000300), 0x5aa, 0x0, 0x0, 0xfffffffffffffdfd)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0406618, &(0x7f0000000500)={@id={0x2, 0x0, @c}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000400001afc18010000202070250000000000201c207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095fa97635953935609b55c84db346b8646d5e42c36604e03b2980f85f78b019f77bf0d75a58afe7c42bfca7143b655c5b1e8a98d3a4692a645c9829eecef319a15502ddeba0742461114e033a7659038c3569465898cb2fa8b7df1eff31eb8db00b63d"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a300000"], 0x118}}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x229ffa1c4ce5369, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe2(&(0x7f0000000000)={<r3=>0xffffffffffffffff}, 0x4000)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
fchmodat(r3, &(0x7f0000000200)='./file0\x00', 0x104)
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x84000)
tee(r3, r5, 0xfffffffffffffc01, 0x0)

kernel console output (not intermixed with test programs):

ounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.679286][ T4405] bond2: entered promiscuous mode
[   59.684485][ T4405] bond2: entered allmulticast mode
[   59.690192][ T4405] 8021q: adding VLAN 0 to HW filter on device bond2
[   59.705789][ T4408] loop0: detected capacity change from 0 to 1024
[   59.841945][ T4419] vhci_hcd: default hub control req: 6031 v09fa i0008 l0
[   59.912183][ T4421] __nla_validate_parse: 8 callbacks suppressed
[   59.912203][ T4421] netlink: 16 bytes leftover after parsing attributes in process `syz.0.343'.
[   60.072654][ T4427] loop2: detected capacity change from 0 to 256
[   60.073209][ T4427] msdos: Unknown parameter 'dotsutable'
[   60.126815][ T4429] loop2: detected capacity change from 0 to 256
[   60.243381][ T4434] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4434 comm=syz.1.348
[   60.243911][ T4434] netlink: 'syz.1.348': attribute type 10 has an invalid length.
[   60.266254][ T4434] team0: Device hsr_slave_0 failed to register rx_handler
[   60.298528][ T4436] bond1: entered promiscuous mode
[   60.298546][ T4436] bond1: entered allmulticast mode
[   60.298747][ T4436] 8021q: adding VLAN 0 to HW filter on device bond1
[   60.512808][ T4441] netlink: 'syz.3.351': attribute type 4 has an invalid length.
[   60.526085][ T4441] netlink: 'syz.3.351': attribute type 4 has an invalid length.
[   60.537804][ T4441] sch_tbf: peakrate 2147483647 is lower than or equals to rate 14994183814011043569 !
[   60.579252][ T4443] loop4: detected capacity change from 0 to 128
[   60.587679][ T4443] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   60.602463][   T29] kauditd_printk_skb: 720 callbacks suppressed
[   60.602479][   T29] audit: type=1400 audit(60.588:3370): avc:  denied  { create } for  pid=4442 comm="syz.4.352" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   60.629467][ T4443] FAULT_INJECTION: forcing a failure.
[   60.629467][ T4443] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.642659][ T4443] CPU: 1 UID: 0 PID: 4443 Comm: syz.4.352 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   60.642744][ T4443] Tainted: [W]=WARN
[   60.642750][ T4443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   60.642762][ T4443] Call Trace:
[   60.642769][ T4443]  <TASK>
[   60.642845][ T4443]  __dump_stack+0x1d/0x30
[   60.642865][ T4443]  dump_stack_lvl+0xe8/0x140
[   60.642914][ T4443]  dump_stack+0x15/0x1b
[   60.642935][ T4443]  should_fail_ex+0x265/0x280
[   60.643051][ T4443]  should_fail+0xb/0x20
[   60.643084][ T4443]  should_fail_usercopy+0x1a/0x20
[   60.643174][ T4443]  strncpy_from_user+0x25/0x230
[   60.643212][ T4443]  ? kmem_cache_alloc_noprof+0x186/0x310
[   60.643244][ T4443]  ? getname_flags+0x80/0x3b0
[   60.643289][ T4443]  getname_flags+0xae/0x3b0
[   60.643315][ T4443]  path_setxattrat+0x223/0x310
[   60.643355][ T4443]  __x64_sys_lsetxattr+0x71/0x90
[   60.643449][ T4443]  x64_sys_call+0x1e36/0x2fb0
[   60.643473][ T4443]  do_syscall_64+0xd2/0x200
[   60.643519][ T4443]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.643553][ T4443]  ? clear_bhb_loop+0x40/0x90
[   60.643581][ T4443]  ? clear_bhb_loop+0x40/0x90
[   60.643603][ T4443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.643629][ T4443] RIP: 0033:0x7fedf84ee929
[   60.643647][ T4443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.643743][ T4443] RSP: 002b:00007fedf6b57038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   60.643766][ T4443] RAX: ffffffffffffffda RBX: 00007fedf8715fa0 RCX: 00007fedf84ee929
[   60.643778][ T4443] RDX: 0000200000000040 RSI: 0000200000000300 RDI: 0000200000000100
[   60.643789][ T4443] RBP: 00007fedf6b57090 R08: 0000000000000000 R09: 0000000000000000
[   60.643801][ T4443] R10: 000000000000fe37 R11: 0000000000000246 R12: 0000000000000001
[   60.643940][ T4443] R13: 0000000000000000 R14: 00007fedf8715fa0 R15: 00007ffd15bc7148
[   60.644015][ T4443]  </TASK>
[   60.644070][   T29] audit: type=1400 audit(60.608:3371): avc:  denied  { read write open } for  pid=4442 comm="syz.4.352" path="/75/file1/file1" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   60.864177][   T29] audit: type=1400 audit(60.788:3372): avc:  denied  { ioctl } for  pid=4447 comm="syz.3.353" path="socket:[7442]" dev="sockfs" ino=7442 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   60.891528][ T3306] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   60.943732][ T4457] netlink: 16 bytes leftover after parsing attributes in process `syz.4.354'.
[   60.953596][   T29] audit: type=1326 audit(60.938:3373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4456 comm="syz.4.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   60.979697][   T29] audit: type=1326 audit(60.958:3374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4456 comm="syz.4.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   61.002604][   T29] audit: type=1326 audit(60.958:3375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4456 comm="syz.4.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   61.025292][   T29] audit: type=1326 audit(60.958:3376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4456 comm="syz.4.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   61.048253][   T29] audit: type=1326 audit(60.958:3377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4456 comm="syz.4.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   61.071086][   T29] audit: type=1326 audit(60.958:3378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4456 comm="syz.4.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   61.094120][   T29] audit: type=1326 audit(60.958:3379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4456 comm="syz.4.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   61.152714][ T4469] bond3: entered promiscuous mode
[   61.157843][ T4469] bond3: entered allmulticast mode
[   61.165427][ T4472] loop1: detected capacity change from 0 to 512
[   61.174567][ T4469] 8021q: adding VLAN 0 to HW filter on device bond3
[   61.188969][ T4472] netlink: 'syz.1.361': attribute type 10 has an invalid length.
[   61.206526][ T4476] xt_NFQUEUE: number of total queues is 0
[   61.241627][ T4479] loop2: detected capacity change from 0 to 1024
[   61.248590][ T4479] EXT4-fs: Ignoring removed nobh option
[   61.254265][ T4479] EXT4-fs: Ignoring removed bh option
[   61.255781][ T4482] netlink: 'syz.4.365': attribute type 13 has an invalid length.
[   61.270473][ T4482] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[   61.281317][ T4482] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[   61.289054][ T4482] gretap1: entered promiscuous mode
[   61.294336][ T4482] gretap1: entered allmulticast mode
[   61.317823][ T4486] netlink: 16 bytes leftover after parsing attributes in process `syz.1.367'.
[   61.340705][ T4488] netlink: 8 bytes leftover after parsing attributes in process `syz.4.368'.
[   61.368486][ T4488] bridge0: port 2(macvlan2) entered blocking state
[   61.375231][ T4488] bridge0: port 2(macvlan2) entered disabled state
[   61.383092][ T4488] macvlan2: entered allmulticast mode
[   61.388629][ T4488] bridge0: entered allmulticast mode
[   61.400295][ T4488] macvlan2: left allmulticast mode
[   61.405645][ T4488] bridge0: left allmulticast mode
[   61.435413][ T4496] netlink: 16 bytes leftover after parsing attributes in process `syz.2.372'.
[   61.473244][ T4496] loop2: detected capacity change from 0 to 1024
[   61.480017][ T4496] EXT4-fs: Ignoring removed orlov option
[   61.481570][ T4500] netlink: 20 bytes leftover after parsing attributes in process `syz.4.373'.
[   61.485937][ T4496] ext4: Bad value for 'init_itable'
[   61.547671][ T4506] loop4: detected capacity change from 0 to 512
[   61.564965][ T4508] bond2: entered promiscuous mode
[   61.565046][ T4506] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #12: comm syz.4.375: corrupted in-inode xattr: invalid ea_ino
[   61.570099][ T4508] bond2: entered allmulticast mode
[   61.586642][ T4506] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.375: couldn't read orphan inode 12 (err -117)
[   61.589159][ T4508] 8021q: adding VLAN 0 to HW filter on device bond2
[   61.605753][ T4506] EXT4-fs (loop4): shut down requested (1)
[   61.635398][ T4515] netlink: 8 bytes leftover after parsing attributes in process `syz.1.379'.
[   61.646194][ T4516] xt_hashlimit: max too large, truncated to 1048576
[   61.672447][ T4519] netlink: 'syz.1.380': attribute type 13 has an invalid length.
[   61.684154][ T4519] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[   61.695924][ T4519] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[   61.705168][ T4519] gretap1: entered promiscuous mode
[   61.710439][ T4519] gretap1: entered allmulticast mode
[   61.824232][ T4530] loop1: detected capacity change from 0 to 512
[   61.848701][ T4534] loop0: detected capacity change from 0 to 512
[   61.994487][ T4551] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   62.010245][ T4555] netlink: 8 bytes leftover after parsing attributes in process `syz.0.390'.
[   62.038403][ T4557] bond3: entered promiscuous mode
[   62.043588][ T4557] bond3: entered allmulticast mode
[   62.049745][ T4557] 8021q: adding VLAN 0 to HW filter on device bond3
[   62.053608][ T4560] loop0: detected capacity change from 0 to 512
[   62.075275][ T4560] EXT4-fs (loop0): 1 orphan inode deleted
[   62.084594][ T4560] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   62.122142][ T4560] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.135058][ T4566] netlink: 'syz.3.394': attribute type 13 has an invalid length.
[   62.140359][ T4564] ------------[ cut here ]------------
[   62.148410][ T4564] WARNING: CPU: 1 PID: 4564 at mm/page_alloc.c:4935 __alloc_frozen_pages_noprof+0x218/0x360
[   62.154632][ T4566] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[   62.158641][ T4564] Modules linked in:
[   62.169793][ T4566] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[   62.172182][ T4564] CPU: 1 UID: 0 PID: 4564 Comm: syz.1.393 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   62.172222][ T4564] Tainted: [W]=WARN
[   62.172230][ T4564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   62.172243][ T4564] RIP: 0010:__alloc_frozen_pages_noprof+0x218/0x360
[   62.181388][ T4566] gretap1: entered promiscuous mode
[   62.193813][ T4564] Code: 83 3d f3 4e 50 05 02 72 0e 48 83 b8 e0 fb ff ff 00 0f 84 48 ff ff ff 81 ca 00 01 00 00 e9 3d ff ff ff c6 05 7a 47 4c 05 01 90 <0f> 0b 90 31 c0 eb 84 a9 00 00 08 00 75 52 44 89 f1 81 e1 7f ff ff
[   62.197651][ T4566] gretap1: entered allmulticast mode
[   62.207731][ T4564] RSP: 0018:ffffc90012263a98 EFLAGS: 00010246
[   62.207759][ T4564] RAX: ca12ec2c08ad0f00 RBX: 0000000000000016 RCX: 0000000000000000
[   62.207774][ T4564] RDX: 0000000000000000 RSI: 0000000000000016 RDI: 0000000000040dc0
[   62.207798][ T4564] RBP: 0000000000000dc0 R08: ffff888108a05bd8 R09: 0000000000000000
[   62.275196][ T4564] R10: ffff888119611c10 R11: 0001888119611c10 R12: ffffc90012263d28
[   62.283296][ T4564] R13: 000000006174732f R14: 0000000000040dc0 R15: 0000000000000000
[   62.291337][ T4564] FS:  00007fc2541776c0(0000) GS:ffff8882aef2e000(0000) knlGS:0000000000000000
[   62.300404][ T4564] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   62.307159][ T4564] CR2: 0000200000004000 CR3: 000000011997e000 CR4: 00000000003506f0
[   62.312207][ T4568] Cannot find add_set index 0 as target
[   62.315192][ T4564] Call Trace:
[   62.324079][ T4564]  <TASK>
[   62.327074][ T4564]  ? __rcu_read_unlock+0x4f/0x70
[   62.332343][ T4564]  __alloc_pages_noprof+0x9/0x20
[   62.337338][ T4564]  ___kmalloc_large_node+0x73/0x140
[   62.342619][ T4564]  __kmalloc_large_node_noprof+0x16/0xa0
[   62.348398][ T4564]  __kmalloc_noprof+0x2ab/0x3e0
[   62.353332][ T4564]  ? hashtab_init+0x9b/0xe0
[   62.357891][ T4564]  hashtab_init+0x9b/0xe0
[   62.362264][ T4564]  symtab_init+0x2c/0x40
[   62.366642][ T4564]  policydb_read+0x516/0x1330
[   62.371480][ T4564]  ? security_load_policy+0x90/0x890
[   62.376859][ T4564]  security_load_policy+0xba/0x890
[   62.382156][ T4564]  ? rep_movs_alternative+0x4a/0x90
[   62.387394][ T4564]  sel_write_load+0x1d4/0x380
[   62.392115][ T4564]  ? __pfx_sel_write_load+0x10/0x10
[   62.397364][ T4564]  vfs_write+0x269/0x8e0
[   62.401702][ T4564]  ? __cond_resched+0x4e/0x90
[   62.406499][ T4564]  ksys_write+0xda/0x1a0
[   62.410902][ T4564]  __x64_sys_write+0x40/0x50
[   62.415574][ T4564]  x64_sys_call+0x2cdd/0x2fb0
[   62.420322][ T4564]  do_syscall_64+0xd2/0x200
[   62.424971][ T4564]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   62.431146][ T4564]  ? clear_bhb_loop+0x40/0x90
[   62.435886][ T4564]  ? clear_bhb_loop+0x40/0x90
[   62.440665][ T4564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.446614][ T4564] RIP: 0033:0x7fc255b0e929
[   62.451121][ T4564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.470883][ T4564] RSP: 002b:00007fc254177038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   62.479347][ T4564] RAX: ffffffffffffffda RBX: 00007fc255d35fa0 RCX: 00007fc255b0e929
[   62.487362][ T4564] RDX: 00000000000044f0 RSI: 0000200000000000 RDI: 0000000000000004
[   62.495446][ T4564] RBP: 00007fc255b90b39 R08: 0000000000000000 R09: 0000000000000000
[   62.503501][ T4564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   62.511533][ T4564] R13: 0000000000000000 R14: 00007fc255d35fa0 R15: 00007ffcb45f4f38
[   62.519549][ T4564]  </TASK>
[   62.522632][ T4564] ---[ end trace 0000000000000000 ]---
[   62.528204][ T4564] SELinux: failed to load policy
[   62.536526][ T4571] netlink: 8 bytes leftover after parsing attributes in process `syz.2.396'.
[   62.551149][ T4571] bridge0: port 2(macvlan2) entered blocking state
[   62.557739][ T4571] bridge0: port 2(macvlan2) entered disabled state
[   62.564490][ T4571] macvlan2: entered allmulticast mode
[   62.570031][ T4571] bridge0: entered allmulticast mode
[   62.576263][ T4571] macvlan2: left allmulticast mode
[   62.581485][ T4571] bridge0: left allmulticast mode
[   62.667877][ T4579] loop1: detected capacity change from 0 to 512
[   62.747980][ T4594] bridge0: port 1(syz_tun) entered blocking state
[   62.754729][ T4594] bridge0: port 1(syz_tun) entered disabled state
[   62.761453][ T4594] syz_tun: entered allmulticast mode
[   62.767300][ T4594] syz_tun: entered promiscuous mode
[   62.772979][ T4594] bridge0: port 1(syz_tun) entered blocking state
[   62.779426][ T4594] bridge0: port 1(syz_tun) entered forwarding state
[   62.787854][ T4594] netlink: 8 bytes leftover after parsing attributes in process `syz.3.402'.
[   62.820813][ T4598] loop2: detected capacity change from 0 to 128
[   62.827766][ T4598] EXT4-fs: Ignoring removed oldalloc option
[   62.838421][ T4597] loop3: detected capacity change from 0 to 2048
[   62.846649][ T4597] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   62.899453][ T4605] netlink: 'syz.3.405': attribute type 13 has an invalid length.
[   62.909347][ T4606] loop1: detected capacity change from 0 to 128
[   62.909928][ T4605] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2
[   62.916075][ T4606] EXT4-fs: Ignoring removed oldalloc option
[   62.927827][ T4605] gretap2: default qdisc (pfifo_fast) fail, fallback to noqueue
[   62.939754][ T4605] gretap2: entered promiscuous mode
[   62.945148][ T4605] gretap2: entered allmulticast mode
[   63.582728][ T4621] loop1: detected capacity change from 0 to 1024
[   63.583191][ T4621] EXT4-fs: Ignoring removed nobh option
[   63.595020][ T4621] EXT4-fs: Ignoring removed bh option
[   63.603938][ T4621] FAULT_INJECTION: forcing a failure.
[   63.603938][ T4621] name failslab, interval 1, probability 0, space 0, times 0
[   63.603968][ T4621] CPU: 1 UID: 0 PID: 4621 Comm: syz.1.412 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   63.604002][ T4621] Tainted: [W]=WARN
[   63.604008][ T4621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   63.604020][ T4621] Call Trace:
[   63.604029][ T4621]  <TASK>
[   63.604041][ T4621]  __dump_stack+0x1d/0x30
[   63.604116][ T4621]  dump_stack_lvl+0xe8/0x140
[   63.604139][ T4621]  dump_stack+0x15/0x1b
[   63.604159][ T4621]  should_fail_ex+0x265/0x280
[   63.604211][ T4621]  should_failslab+0x8c/0xb0
[   63.604232][ T4621]  __kmalloc_noprof+0xa5/0x3e0
[   63.604308][ T4621]  ? ext4_find_extent+0x16b/0x7a0
[   63.604347][ T4621]  ? mark_reg_read+0x59/0x340
[   63.604372][ T4621]  ext4_find_extent+0x16b/0x7a0
[   63.604413][ T4621]  ext4_ext_map_blocks+0x11f/0x38a0
[   63.604487][ T4621]  ? __check_reg_arg+0x252/0x270
[   63.604516][ T4621]  ? check_return_code+0x9a6/0xcd0
[   63.604592][ T4621]  ? pop_stack+0x76/0x220
[   63.604642][ T4621]  ext4_map_query_blocks+0xa8/0x480
[   63.604693][ T4621]  ext4_map_blocks+0x3a1/0xd70
[   63.604767][ T4621]  ? xas_load+0x413/0x430
[   63.604810][ T4621]  ? xa_load+0xb1/0xe0
[   63.604833][ T4621]  ext4_getblk+0x114/0x510
[   63.604891][ T4621]  ext4_bread_batch+0x5c/0x320
[   63.604923][ T4621]  __ext4_find_entry+0x840/0xf40
[   63.605028][ T4621]  ? __d_lookup_rcu+0x251/0x2a0
[   63.605065][ T4621]  ? d_alloc_parallel+0xb9a/0xc40
[   63.605175][ T4621]  ext4_lookup+0xbb/0x390
[   63.605214][ T4621]  __lookup_slow+0x190/0x250
[   63.605288][ T4621]  lookup_slow+0x3c/0x60
[   63.605319][ T4621]  walk_component+0x1ec/0x220
[   63.605349][ T4621]  path_lookupat+0xfe/0x2a0
[   63.605381][ T4621]  filename_lookup+0x147/0x340
[   63.605426][ T4621]  filename_setxattr+0x56/0x400
[   63.605512][ T4621]  path_setxattrat+0x2c9/0x310
[   63.605560][ T4621]  __x64_sys_lsetxattr+0x71/0x90
[   63.605586][ T4621]  x64_sys_call+0x1e36/0x2fb0
[   63.605615][ T4621]  do_syscall_64+0xd2/0x200
[   63.605719][ T4621]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   63.605756][ T4621]  ? clear_bhb_loop+0x40/0x90
[   63.605785][ T4621]  ? clear_bhb_loop+0x40/0x90
[   63.605816][ T4621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.605923][ T4621] RIP: 0033:0x7fc255b0e929
[   63.605943][ T4621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.605985][ T4621] RSP: 002b:00007fc254177038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   63.606011][ T4621] RAX: ffffffffffffffda RBX: 00007fc255d35fa0 RCX: 00007fc255b0e929
[   63.606028][ T4621] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000200000000000
[   63.606045][ T4621] RBP: 00007fc254177090 R08: 0000000000000002 R09: 0000000000000000
[   63.606073][ T4621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.606089][ T4621] R13: 0000000000000000 R14: 00007fc255d35fa0 R15: 00007ffcb45f4f38
[   63.606115][ T4621]  </TASK>
[   63.701356][ T4625] loop2: detected capacity change from 0 to 512
[   64.040260][ T4644] loop2: detected capacity change from 0 to 1024
[   64.175791][ T4652] bridge0: port 2(macvlan2) entered blocking state
[   64.175921][ T4652] bridge0: port 2(macvlan2) entered disabled state
[   64.176008][ T4652] macvlan2: entered allmulticast mode
[   64.176022][ T4652] bridge0: entered allmulticast mode
[   64.183060][ T4652] macvlan2: left allmulticast mode
[   64.205636][ T4652] bridge0: left allmulticast mode
[   64.539564][ T4673] loop1: detected capacity change from 0 to 1024
[   64.549352][ T4673] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.430: Failed to acquire dquot type 0
[   64.562009][ T4673] EXT4-fs (loop1): 1 truncate cleaned up
[   64.628108][ T4673] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.430: Failed to acquire dquot type 0
[   64.646538][ T4673] ext4: Unknown parameter '§oþš"âêË;šKf(o'
[   64.696869][ T4677] loop1: detected capacity change from 0 to 1024
[   64.769282][ T4679] bridge0: port 2(macvlan2) entered blocking state
[   64.775964][ T4679] bridge0: port 2(macvlan2) entered disabled state
[   64.782758][ T4679] macvlan2: entered allmulticast mode
[   64.788189][ T4679] bridge0: entered allmulticast mode
[   64.794180][ T4679] macvlan2: left allmulticast mode
[   64.799403][ T4679] bridge0: left allmulticast mode
[   64.956006][ T4687] bridge0: port 1(syz_tun) entered disabled state
[   65.067462][ T4692] loop0: detected capacity change from 0 to 1024
[   65.074643][ T4692] EXT4-fs: Ignoring removed orlov option
[   65.144232][ T4697] loop0: detected capacity change from 0 to 512
[   65.162838][ T4697] EXT4-fs error (device loop0): ext4_lookup:1787: inode #12: comm syz.0.439: iget: bad i_size value: 2533274857506816
[   65.283470][ T4711] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   65.299989][ T4711] __nla_validate_parse: 5 callbacks suppressed
[   65.300006][ T4711] netlink: 3 bytes leftover after parsing attributes in process `+}[@'.
[   65.385996][ T4718] xt_CT: No such helper "snmp_trap"
[   65.409609][ T4721] loop2: detected capacity change from 0 to 512
[   65.417775][ T4722] loop0: detected capacity change from 0 to 128
[   65.424722][ T4722] EXT4-fs: Ignoring removed oldalloc option
[   65.425113][ T4721] EXT4-fs (loop2): 1 orphan inode deleted
[   65.439622][ T4721] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   65.448637][ T4721] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.612644][   T29] kauditd_printk_skb: 641 callbacks suppressed
[   65.612660][   T29] audit: type=1326 audit(65.598:4015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4680 comm="syz.3.433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1cb16d58e7 code=0x7ffc0000
[   65.641838][   T29] audit: type=1326 audit(65.598:4016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4680 comm="syz.3.433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1cb167ab19 code=0x7ffc0000
[   65.664460][   T29] audit: type=1326 audit(65.598:4017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4680 comm="syz.3.433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   65.700237][ T4729] netlink: 'syz.3.449': attribute type 13 has an invalid length.
[   65.710421][ T4729] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap3
[   65.720812][ T4729] gretap3: default qdisc (pfifo_fast) fail, fallback to noqueue
[   65.728551][ T4729] gretap3: entered promiscuous mode
[   65.733775][ T4729] gretap3: entered allmulticast mode
[   65.775528][   T29] audit: type=1400 audit(65.758:4018): avc:  denied  { create } for  pid=4732 comm="syz.3.451" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   65.796037][   T29] audit: type=1400 audit(65.758:4019): avc:  denied  { mounton } for  pid=4732 comm="syz.3.451" path="/85/file0" dev="tmpfs" ino=478 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   65.860080][   T29] audit: type=1400 audit(65.838:4020): avc:  denied  { unlink } for  pid=3314 comm="syz-executor" name="file0" dev="tmpfs" ino=478 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   65.887639][ T4737] netlink: 'syz.3.453': attribute type 1 has an invalid length.
[   65.930506][ T4742] FAULT_INJECTION: forcing a failure.
[   65.930506][ T4742] name failslab, interval 1, probability 0, space 0, times 0
[   65.943283][ T4742] CPU: 1 UID: 0 PID: 4742 Comm: syz.3.455 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   65.943324][ T4742] Tainted: [W]=WARN
[   65.943332][ T4742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   65.943347][ T4742] Call Trace:
[   65.943361][ T4742]  <TASK>
[   65.943370][ T4742]  __dump_stack+0x1d/0x30
[   65.943393][ T4742]  dump_stack_lvl+0xe8/0x140
[   65.943436][ T4742]  dump_stack+0x15/0x1b
[   65.943457][ T4742]  should_fail_ex+0x265/0x280
[   65.943508][ T4742]  ? allocate_cgrp_cset_links+0x7e/0x1f0
[   65.943618][ T4742]  should_failslab+0x8c/0xb0
[   65.943645][ T4742]  __kmalloc_cache_noprof+0x4c/0x320
[   65.943675][ T4742]  allocate_cgrp_cset_links+0x7e/0x1f0
[   65.943761][ T4742]  find_css_set+0x596/0xd20
[   65.943806][ T4742]  ? __pfx_autoremove_wake_function+0x10/0x10
[   65.943872][ T4742]  cgroup_migrate_prepare_dst+0x75/0x3f0
[   65.943909][ T4742]  cgroup_attach_task+0x1bd/0x450
[   65.944030][ T4742]  __cgroup1_procs_write+0x1c5/0x230
[   65.944057][ T4742]  ? __pfx_cgroup1_procs_write+0x10/0x10
[   65.944099][ T4742]  cgroup1_procs_write+0x2a/0x40
[   65.944157][ T4742]  cgroup_file_write+0x194/0x350
[   65.944190][ T4742]  ? __pfx_cgroup_file_write+0x10/0x10
[   65.944250][ T4742]  kernfs_fop_write_iter+0x1c1/0x2d0
[   65.944274][ T4742]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   65.944298][ T4742]  vfs_write+0x4a0/0x8e0
[   65.944342][ T4742]  ksys_write+0xda/0x1a0
[   65.944381][ T4742]  __x64_sys_write+0x40/0x50
[   65.944451][ T4742]  x64_sys_call+0x2cdd/0x2fb0
[   65.944519][ T4742]  do_syscall_64+0xd2/0x200
[   65.944535][ T4742]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.944572][ T4742]  ? clear_bhb_loop+0x40/0x90
[   65.944590][ T4742]  ? clear_bhb_loop+0x40/0x90
[   65.944621][ T4742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.944639][ T4742] RIP: 0033:0x7f1cb16de929
[   65.944653][ T4742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.944712][ T4742] RSP: 002b:00007f1cafd47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   65.944728][ T4742] RAX: ffffffffffffffda RBX: 00007f1cb1905fa0 RCX: 00007f1cb16de929
[   65.944739][ T4742] RDX: 0000000000000012 RSI: 0000200000000400 RDI: 0000000000000004
[   65.944749][ T4742] RBP: 00007f1cafd47090 R08: 0000000000000000 R09: 0000000000000000
[   65.944759][ T4742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.944770][ T4742] R13: 0000000000000000 R14: 00007f1cb1905fa0 R15: 00007ffc2cc6e168
[   65.944845][ T4742]  </TASK>
[   65.948196][ T4742] can0: slcan on ptm2.
[   66.224688][ T4748] FAULT_INJECTION: forcing a failure.
[   66.224688][ T4748] name failslab, interval 1, probability 0, space 0, times 0
[   66.237404][ T4748] CPU: 1 UID: 0 PID: 4748 Comm: syz.0.457 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   66.237445][ T4748] Tainted: [W]=WARN
[   66.237452][ T4748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   66.237513][ T4748] Call Trace:
[   66.237522][ T4748]  <TASK>
[   66.237529][ T4748]  __dump_stack+0x1d/0x30
[   66.237576][ T4748]  dump_stack_lvl+0xe8/0x140
[   66.237651][ T4748]  dump_stack+0x15/0x1b
[   66.237665][ T4748]  should_fail_ex+0x265/0x280
[   66.237692][ T4748]  should_failslab+0x8c/0xb0
[   66.237719][ T4748]  __kmalloc_noprof+0xa5/0x3e0
[   66.237779][ T4748]  ? kobject_get_path+0x92/0x1c0
[   66.237799][ T4748]  kobject_get_path+0x92/0x1c0
[   66.237855][ T4748]  kobject_uevent_env+0x1da/0x570
[   66.237877][ T4748]  ? device_pm_check_callbacks+0x683/0x6a0
[   66.237905][ T4748]  kobject_uevent+0x1d/0x30
[   66.237929][ T4748]  device_del+0x710/0x790
[   66.237950][ T4748]  device_unregister+0x15/0x40
[   66.237969][ T4748]  bdi_unregister+0x307/0x3a0
[   66.237990][ T4748]  generic_shutdown_super+0x1ab/0x210
[   66.238014][ T4748]  kill_anon_super+0x2a/0x130
[   66.238072][ T4748]  v9fs_kill_super+0x2f/0x70
[   66.238097][ T4748]  deactivate_locked_super+0x72/0x1c0
[   66.238183][ T4748]  deactivate_super+0x97/0xa0
[   66.238205][ T4748]  cleanup_mnt+0x269/0x2e0
[   66.238225][ T4748]  __cleanup_mnt+0x19/0x20
[   66.238242][ T4748]  task_work_run+0x131/0x1a0
[   66.238314][ T4748]  exit_to_user_mode_loop+0xe4/0x100
[   66.238335][ T4748]  do_syscall_64+0x1d6/0x200
[   66.238349][ T4748]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   66.238370][ T4748]  ? clear_bhb_loop+0x40/0x90
[   66.238417][ T4748]  ? clear_bhb_loop+0x40/0x90
[   66.238460][ T4748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.238489][ T4748] RIP: 0033:0x7f412671e929
[   66.238504][ T4748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.238527][ T4748] RSP: 002b:00007f4124d87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   66.238550][ T4748] RAX: 0000000000000000 RBX: 00007f4126945fa0 RCX: 00007f412671e929
[   66.238567][ T4748] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000140
[   66.238578][ T4748] RBP: 00007f4124d87090 R08: 0000000000000000 R09: 0000000000000000
[   66.238651][ T4748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.238661][ T4748] R13: 0000000000000000 R14: 00007f4126945fa0 R15: 00007fff90547ff8
[   66.238677][ T4748]  </TASK>
[   66.485824][ T4741] can0 (unregistered): slcan off ptm2.
[   66.527850][ T4750] netlink: 16 bytes leftover after parsing attributes in process `syz.3.458'.
[   66.537991][   T29] audit: type=1326 audit(66.518:4021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4749 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   66.560834][   T29] audit: type=1326 audit(66.518:4022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4749 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   66.583701][   T29] audit: type=1326 audit(66.518:4023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4749 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   66.607086][ T4752] loop0: detected capacity change from 0 to 1024
[   66.614911][   T29] audit: type=1326 audit(66.518:4024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4749 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   66.672318][ T4754] loop3: detected capacity change from 0 to 4096
[   66.757922][ T4764] netlink: 'syz.0.465': attribute type 10 has an invalid length.
[   66.774031][ T4764] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[   66.788081][ T4764] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[   66.800632][ T4764] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[   66.819281][ T4764] loop0: detected capacity change from 0 to 1024
[   66.829362][ T4764] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   66.838949][ T4764] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   66.848849][ T4764] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   66.859644][ T4764] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   66.869800][ T4764] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: inode #5: comm syz.0.465: unexpected bad inode w/o EXT4_IGET_BAD
[   66.883333][ T4764] EXT4-fs (loop0): no journal found
[   66.888591][ T4764] EXT4-fs (loop0): can't get journal size
[   66.894665][ T4764] EXT4-fs error (device loop0): __ext4_fill_super:5500: inode #2: comm syz.0.465: iget: special inode unallocated
[   66.907180][ T4764] EXT4-fs (loop0): get root inode failed
[   66.912953][ T4764] EXT4-fs (loop0): mount failed
[   66.974355][ T4775] netlink: 'syz.4.468': attribute type 13 has an invalid length.
[   66.996082][ T4777] loop4: detected capacity change from 0 to 512
[   66.998793][ T4777] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e01c, mo2=0002]
[   67.010589][ T4777] System zones: 1-12
[   67.010795][ T4777] EXT4-fs error (device loop4): dx_probe:791: inode #2: comm syz.4.469: Directory hole found for htree index block 0
[   67.029503][ T4777] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -117
[   67.029544][ T4777] EXT4-fs error (device loop4): dx_probe:791: inode #2: comm syz.4.469: Directory hole found for htree index block 0
[   67.029666][ T4777] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[   67.083681][ T4782] netlink: 16 bytes leftover after parsing attributes in process `syz.4.470'.
[   67.108673][ T4783] loop0: detected capacity change from 0 to 128
[   67.108953][ T4783] EXT4-fs: Ignoring removed oldalloc option
[   67.138115][ T4785] loop4: detected capacity change from 0 to 2048
[   67.139196][ T4785] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   67.201513][ T4790] loop4: detected capacity change from 0 to 1024
[   67.410356][ T4800] loop4: detected capacity change from 0 to 128
[   67.410692][ T4800] vfat: Unknown parameter '0xffffffffffffffff0xffffffffffffffff›M´¡6ÄàŽ‹yÁH„ž@…dÚzŒ|°_ÂT ‚H7£Ok;R	°dXùµir$–<€L6j¯ø†øHÒÆ�|1�€-Y–«IueX„UJÖuÄì'
[   67.718893][ T4803] netdevsim netdevsim1: Direct firmware load for ./file0 failed with error -2
[   67.834382][ T4810] netlink: 8 bytes leftover after parsing attributes in process `syz.0.479'.
[   67.841331][ T4812] netlink: 16 bytes leftover after parsing attributes in process `syz.1.481'.
[   67.858311][ T4814] netlink: 8 bytes leftover after parsing attributes in process `syz.3.482'.
[   67.868792][ T4810] bridge0: port 2(macvlan2) entered blocking state
[   67.875464][ T4810] bridge0: port 2(macvlan2) entered disabled state
[   67.883338][ T4810] macvlan2: entered allmulticast mode
[   67.888774][ T4810] bridge0: entered allmulticast mode
[   67.894952][ T4810] macvlan2: left allmulticast mode
[   67.900121][ T4810] bridge0: left allmulticast mode
[   67.918084][ T4814] bridge0: port 2(macvlan2) entered blocking state
[   67.924814][ T4814] bridge0: port 2(macvlan2) entered disabled state
[   67.944112][ T4814] macvlan2: entered allmulticast mode
[   67.949649][ T4814] bridge0: entered allmulticast mode
[   67.966868][ T4814] macvlan2: left allmulticast mode
[   67.972219][ T4814] bridge0: left allmulticast mode
[   68.119258][ T4826] bond4: entered promiscuous mode
[   68.124398][ T4826] bond4: entered allmulticast mode
[   68.129961][ T4826] 8021q: adding VLAN 0 to HW filter on device bond4
[   68.142229][ T4826] bond4 (unregistering): Released all slaves
[   68.268889][ T4830] loop0: detected capacity change from 0 to 1024
[   68.333666][ T4834] loop1: detected capacity change from 0 to 128
[   68.383628][ T4830] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #15: block 3: comm syz.0.485: lblock 3 mapped to illegal pblock 3 (length 1)
[   68.398868][ T4830] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[   68.411240][ T4830] EXT4-fs (loop0): This should not happen!! Data will be lost
[   68.411240][ T4830] 
[   68.772253][ T4834] syz.1.488: attempt to access beyond end of device
[   68.772253][ T4834] loop1: rw=2049, sector=145, nr_sectors = 8 limit=128
[   68.785471][ T4725] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   68.788081][ T4834] syz.1.488: attempt to access beyond end of device
[   68.788081][ T4834] loop1: rw=2049, sector=161, nr_sectors = 8 limit=128
[   68.814074][ T4834] syz.1.488: attempt to access beyond end of device
[   68.814074][ T4834] loop1: rw=2049, sector=177, nr_sectors = 8 limit=128
[   68.835769][ T4834] syz.1.488: attempt to access beyond end of device
[   68.835769][ T4834] loop1: rw=2049, sector=193, nr_sectors = 8 limit=128
[   68.849554][ T4834] syz.1.488: attempt to access beyond end of device
[   68.849554][ T4834] loop1: rw=2049, sector=209, nr_sectors = 8 limit=128
[   68.863298][ T4834] syz.1.488: attempt to access beyond end of device
[   68.863298][ T4834] loop1: rw=2049, sector=225, nr_sectors = 8 limit=128
[   69.121031][ T4838] loop4: detected capacity change from 0 to 128
[   69.127805][ T4838] EXT4-fs: Ignoring removed oldalloc option
[   69.190720][ T4834] syz.1.488: attempt to access beyond end of device
[   69.190720][ T4834] loop1: rw=2049, sector=241, nr_sectors = 8 limit=128
[   69.211501][ T4834] syz.1.488: attempt to access beyond end of device
[   69.211501][ T4834] loop1: rw=2049, sector=257, nr_sectors = 8 limit=128
[   69.234443][ T4834] syz.1.488: attempt to access beyond end of device
[   69.234443][ T4834] loop1: rw=2049, sector=273, nr_sectors = 8 limit=128
[   69.268201][ T4834] syz.1.488: attempt to access beyond end of device
[   69.268201][ T4834] loop1: rw=2049, sector=289, nr_sectors = 8 limit=128
[   69.737524][ T4843] loop2: detected capacity change from 0 to 512
[   69.744172][ T4843] EXT4-fs: Ignoring removed orlov option
[   69.750145][ T4843] EXT4-fs: Mount option(s) incompatible with ext3
[   69.962592][ T4864] loop2: detected capacity change from 0 to 1024
[   70.223030][ T4877] netlink: 4 bytes leftover after parsing attributes in process `syz.2.504'.
[   70.247660][ T4877] netlink: 'syz.2.504': attribute type 2 has an invalid length.
[   70.259968][ T4877] netlink: 4 bytes leftover after parsing attributes in process `syz.2.504'.
[   70.260455][ T4877] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2
[   70.375268][ T4885] netlink: 8 bytes leftover after parsing attributes in process `syz.2.507'.
[   70.418269][ T4885] bridge0: port 2(macvlan2) entered blocking state
[   70.418318][ T4885] bridge0: port 2(macvlan2) entered disabled state
[   70.418433][ T4885] macvlan2: entered allmulticast mode
[   70.418451][ T4885] bridge0: entered allmulticast mode
[   70.425701][ T4885] macvlan2: left allmulticast mode
[   70.425722][ T4885] bridge0: left allmulticast mode
[   70.647025][ T4894] netlink: 12 bytes leftover after parsing attributes in process `syz.0.510'.
[   70.683084][ T4896] loop0: detected capacity change from 0 to 512
[   70.713683][ T4896] EXT4-fs (loop0): 1 orphan inode deleted
[   70.724621][ T4896] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   70.733283][ T4896] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   70.742502][ T4896] random: crng reseeded on system resumption
[   70.742503][   T29] kauditd_printk_skb: 298 callbacks suppressed
[   70.742547][   T29] audit: type=1400 audit(70.728:4323): avc:  denied  { append } for  pid=4895 comm="syz.0.511" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   70.779845][   T29] audit: type=1326 audit(70.758:4324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4895 comm="syz.0.511" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f412671e929 code=0x0
[   71.210212][   T29] audit: type=1326 audit(71.188:4325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4907 comm="syz.3.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   71.233208][   T29] audit: type=1326 audit(71.188:4326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4907 comm="syz.3.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   71.255917][   T29] audit: type=1326 audit(71.188:4327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4907 comm="syz.3.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   71.258694][ T4908] loop3: detected capacity change from 0 to 1024
[   71.278699][   T29] audit: type=1326 audit(71.188:4328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4907 comm="syz.3.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1cb16de963 code=0x7ffc0000
[   71.278734][   T29] audit: type=1326 audit(71.188:4329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4907 comm="syz.3.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1cb16dd3df code=0x7ffc0000
[   71.278762][   T29] audit: type=1326 audit(71.188:4330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4907 comm="syz.3.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1cb16de9b7 code=0x7ffc0000
[   71.352925][   T29] audit: type=1326 audit(71.238:4331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4907 comm="syz.3.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1cb16dd290 code=0x7ffc0000
[   71.375609][   T29] audit: type=1326 audit(71.238:4332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4907 comm="syz.3.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1cb16de52b code=0x7ffc0000
[   71.479485][ T4913] loop2: detected capacity change from 0 to 512
[   71.492742][ T4913] EXT4-fs mount: 47 callbacks suppressed
[   71.492762][ T4913] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.533512][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.597126][ T4926] bond1: entered promiscuous mode
[   71.602343][ T4926] bond1: entered allmulticast mode
[   71.602698][ T4929] netlink: 8 bytes leftover after parsing attributes in process `syz.2.520'.
[   71.609598][ T4926] 8021q: adding VLAN 0 to HW filter on device bond1
[   71.626778][ T4926] bond1 (unregistering): Released all slaves
[   71.640274][ T4929] bridge0: port 2(macvlan2) entered blocking state
[   71.647106][ T4929] bridge0: port 2(macvlan2) entered disabled state
[   71.653866][ T4929] macvlan2: entered allmulticast mode
[   71.659265][ T4929] bridge0: entered allmulticast mode
[   71.665562][ T4929] macvlan2: left allmulticast mode
[   71.670770][ T4929] bridge0: left allmulticast mode
[   71.765071][ T4933] pim6reg1: entered promiscuous mode
[   71.770496][ T4933] pim6reg1: entered allmulticast mode
[   71.778883][ T4933] netlink: 96 bytes leftover after parsing attributes in process `syz.1.523'.
[   71.876088][ T4945] loop1: detected capacity change from 0 to 1024
[   72.014801][ T4953] loop1: detected capacity change from 0 to 512
[   72.032498][ T4953] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.051385][ T4963] netlink: 8 bytes leftover after parsing attributes in process `syz.4.532'.
[   72.062235][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.074786][ T4963] bridge0: port 2(macvlan2) entered blocking state
[   72.081438][ T4963] bridge0: port 2(macvlan2) entered disabled state
[   72.088204][ T4963] macvlan2: entered allmulticast mode
[   72.093724][ T4963] bridge0: entered allmulticast mode
[   72.099556][ T4963] macvlan2: left allmulticast mode
[   72.104912][ T4963] bridge0: left allmulticast mode
[   72.177573][ T4972] loop4: detected capacity change from 0 to 2048
[   72.185812][ T4972] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   72.202227][ T4972] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.225205][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.721630][ T4999] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   72.722247][ T4998] IPVS: stopping master sync thread 4999 ...
[   72.815199][ T5004] loop3: detected capacity change from 0 to 512
[   72.832261][ T5004] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.858491][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.899106][ T5013] loop3: detected capacity change from 0 to 512
[   72.907701][ T5013] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   72.919357][ T5013] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[   72.929550][ T5013] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.545: Corrupt directory, running e2fsck is recommended
[   72.942845][ T5013] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[   72.951361][ T5013] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.545: corrupted in-inode xattr: invalid ea_ino
[   72.966506][ T5013] EXT4-fs (loop3): Remounting filesystem read-only
[   72.973755][ T5013] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.998566][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.033733][ T5019] loop3: detected capacity change from 0 to 2048
[   73.042506][ T5019] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   73.054963][ T5021] FAULT_INJECTION: forcing a failure.
[   73.054963][ T5021] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.068167][ T5021] CPU: 0 UID: 0 PID: 5021 Comm: syz.1.548 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   73.068209][ T5021] Tainted: [W]=WARN
[   73.068217][ T5021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.068250][ T5021] Call Trace:
[   73.068255][ T5021]  <TASK>
[   73.068261][ T5021]  __dump_stack+0x1d/0x30
[   73.068282][ T5021]  dump_stack_lvl+0xe8/0x140
[   73.068301][ T5021]  dump_stack+0x15/0x1b
[   73.068322][ T5021]  should_fail_ex+0x265/0x280
[   73.068423][ T5021]  should_fail+0xb/0x20
[   73.068498][ T5021]  should_fail_usercopy+0x1a/0x20
[   73.068527][ T5021]  _copy_from_user+0x1c/0xb0
[   73.068544][ T5021]  move_addr_to_kernel+0x7e/0x130
[   73.068636][ T5021]  io_connect_prep+0x14d/0x170
[   73.068676][ T5021]  io_submit_sqes+0x5e2/0xfd0
[   73.068727][ T5021]  __se_sys_io_uring_enter+0x1c1/0x1b70
[   73.068761][ T5021]  ? 0xffffffff81000000
[   73.068776][ T5021]  ? __rcu_read_unlock+0x4f/0x70
[   73.068813][ T5021]  ? get_pid_task+0x96/0xd0
[   73.068835][ T5021]  ? proc_fail_nth_write+0x12d/0x160
[   73.068873][ T5021]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   73.068964][ T5021]  ? vfs_write+0x75e/0x8e0
[   73.068992][ T5021]  ? __rcu_read_unlock+0x4f/0x70
[   73.069052][ T5021]  ? __fget_files+0x184/0x1c0
[   73.069074][ T5021]  ? fput+0x8f/0xc0
[   73.069103][ T5021]  __x64_sys_io_uring_enter+0x78/0x90
[   73.069138][ T5021]  x64_sys_call+0x28c8/0x2fb0
[   73.069218][ T5021]  do_syscall_64+0xd2/0x200
[   73.069240][ T5021]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.069269][ T5021]  ? clear_bhb_loop+0x40/0x90
[   73.069358][ T5021]  ? clear_bhb_loop+0x40/0x90
[   73.069384][ T5021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.069489][ T5021] RIP: 0033:0x7fc255b0e929
[   73.069507][ T5021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.069528][ T5021] RSP: 002b:00007fc254177038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   73.069550][ T5021] RAX: ffffffffffffffda RBX: 00007fc255d35fa0 RCX: 00007fc255b0e929
[   73.069565][ T5021] RDX: 0000000000000000 RSI: 00000000000047ba RDI: 0000000000000003
[   73.069579][ T5021] RBP: 00007fc254177090 R08: 0000000000000000 R09: 0000000000000000
[   73.069669][ T5021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.069691][ T5021] R13: 0000000000000000 R14: 00007fc255d35fa0 R15: 00007ffcb45f4f38
[   73.069709][ T5021]  </TASK>
[   73.070682][ T5019] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.260706][ T5029] SELinux: failed to load policy
[   73.339023][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.475608][ T5041] loop3: detected capacity change from 0 to 1024
[   73.484975][ T5041] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.555: Failed to acquire dquot type 0
[   73.497770][ T5044] loop4: detected capacity change from 0 to 128
[   73.499687][ T5041] EXT4-fs (loop3): 1 truncate cleaned up
[   73.510269][ T5041] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.523869][ T5044] EXT4-fs: Ignoring removed nobh option
[   73.533562][ T5044] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   73.547312][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.550808][ T5047] netlink: 8 bytes leftover after parsing attributes in process `syz.2.557'.
[   73.560125][ T5044] FAULT_INJECTION: forcing a failure.
[   73.560125][ T5044] name failslab, interval 1, probability 0, space 0, times 0
[   73.570204][ T5047] bridge0: port 2(macvlan2) entered blocking state
[   73.577901][ T5044] CPU: 0 UID: 0 PID: 5044 Comm: syz.4.556 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   73.577941][ T5044] Tainted: [W]=WARN
[   73.577949][ T5044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.577992][ T5044] Call Trace:
[   73.578001][ T5044]  <TASK>
[   73.578012][ T5044]  __dump_stack+0x1d/0x30
[   73.578043][ T5044]  dump_stack_lvl+0xe8/0x140
[   73.578071][ T5044]  dump_stack+0x15/0x1b
[   73.578095][ T5044]  should_fail_ex+0x265/0x280
[   73.578196][ T5044]  ? alloc_pipe_info+0xae/0x350
[   73.578241][ T5044]  should_failslab+0x8c/0xb0
[   73.578278][ T5044]  __kmalloc_cache_noprof+0x4c/0x320
[   73.578390][ T5044]  alloc_pipe_info+0xae/0x350
[   73.578517][ T5044]  splice_direct_to_actor+0x592/0x680
[   73.578557][ T5044]  ? kstrtouint_from_user+0x9f/0xf0
[   73.578597][ T5044]  ? __pfx_direct_splice_actor+0x10/0x10
[   73.578636][ T5044]  ? __rcu_read_unlock+0x4f/0x70
[   73.578685][ T5044]  ? get_pid_task+0x96/0xd0
[   73.578710][ T5044]  ? avc_policy_seqno+0x15/0x30
[   73.578782][ T5044]  ? selinux_file_permission+0x1e4/0x320
[   73.578814][ T5044]  do_splice_direct+0xda/0x150
[   73.578853][ T5044]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   73.578899][ T5044]  do_sendfile+0x380/0x650
[   73.579011][ T5044]  __x64_sys_sendfile64+0x105/0x150
[   73.579095][ T5044]  x64_sys_call+0xb39/0x2fb0
[   73.579126][ T5044]  do_syscall_64+0xd2/0x200
[   73.579149][ T5044]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.579184][ T5044]  ? clear_bhb_loop+0x40/0x90
[   73.579213][ T5044]  ? clear_bhb_loop+0x40/0x90
[   73.579285][ T5044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.579314][ T5044] RIP: 0033:0x7fedf84ee929
[   73.579335][ T5044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.579360][ T5044] RSP: 002b:00007fedf6b57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   73.579431][ T5044] RAX: ffffffffffffffda RBX: 00007fedf8715fa0 RCX: 00007fedf84ee929
[   73.579442][ T5044] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000006
[   73.579454][ T5044] RBP: 00007fedf6b57090 R08: 0000000000000000 R09: 0000000000000000
[   73.579468][ T5044] R10: 000000007ffff03f R11: 0000000000000246 R12: 0000000000000001
[   73.579485][ T5044] R13: 0000000000000000 R14: 00007fedf8715fa0 R15: 00007ffd15bc7148
[   73.579520][ T5044]  </TASK>
[   73.819103][ T5047] bridge0: port 2(macvlan2) entered disabled state
[   73.826612][ T5047] macvlan2: entered allmulticast mode
[   73.827034][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.832056][ T5047] bridge0: entered allmulticast mode
[   73.848368][ T5047] macvlan2: left allmulticast mode
[   73.853681][ T5047] bridge0: left allmulticast mode
[   73.873816][ T5049] loop3: detected capacity change from 0 to 512
[   73.881936][ T3306] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   73.891402][ T5049] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   73.918050][ T5049] EXT4-fs (loop3): 1 truncate cleaned up
[   73.927045][ T5049] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.927714][ T5055] netlink: 8 bytes leftover after parsing attributes in process `syz.4.560'.
[   73.950600][ T5053] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.962021][ T5049] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.558: inode #86: comm syz.3.558: iget: illegal inode #
[   73.978676][ T5049] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.558: error while reading EA inode 86 err=-117
[   74.011098][ T5055] bridge0: port 2(macvlan2) entered blocking state
[   74.017842][ T5055] bridge0: port 2(macvlan2) entered disabled state
[   74.025773][ T5063] FAULT_INJECTION: forcing a failure.
[   74.025773][ T5063] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.027241][ T5055] macvlan2: entered allmulticast mode
[   74.038944][ T5063] CPU: 0 UID: 0 PID: 5063 Comm: syz.1.563 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   74.038987][ T5063] Tainted: [W]=WARN
[   74.039013][ T5063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   74.039029][ T5063] Call Trace:
[   74.039037][ T5063]  <TASK>
[   74.039045][ T5063]  __dump_stack+0x1d/0x30
[   74.039072][ T5063]  dump_stack_lvl+0xe8/0x140
[   74.039100][ T5063]  dump_stack+0x15/0x1b
[   74.039165][ T5063]  should_fail_ex+0x265/0x280
[   74.039270][ T5063]  should_fail+0xb/0x20
[   74.039307][ T5063]  should_fail_usercopy+0x1a/0x20
[   74.039350][ T5063]  _copy_from_user+0x1c/0xb0
[   74.039377][ T5063]  memdup_user+0x5e/0xd0
[   74.039412][ T5063]  strndup_user+0x68/0xb0
[   74.039442][ T5063]  __se_sys_add_key+0x128/0x350
[   74.039477][ T5063]  __x64_sys_add_key+0x67/0x80
[   74.039509][ T5063]  x64_sys_call+0x1d0d/0x2fb0
[   74.039538][ T5063]  do_syscall_64+0xd2/0x200
[   74.039590][ T5063]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   74.039626][ T5063]  ? clear_bhb_loop+0x40/0x90
[   74.039705][ T5063]  ? clear_bhb_loop+0x40/0x90
[   74.039750][ T5063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.039851][ T5063] RIP: 0033:0x7fc255b0e929
[   74.039874][ T5063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.039899][ T5063] RSP: 002b:00007fc254177038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[   74.039952][ T5063] RAX: ffffffffffffffda RBX: 00007fc255d35fa0 RCX: 00007fc255b0e929
[   74.039970][ T5063] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000200000000100
[   74.039987][ T5063] RBP: 00007fc254177090 R08: 000000002af865b2 R09: 0000000000000000
[   74.040004][ T5063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.040019][ T5063] R13: 0000000000000000 R14: 00007fc255d35fa0 R15: 00007ffcb45f4f38
[   74.040045][ T5063]  </TASK>
[   74.170173][ T5073] loop1: detected capacity change from 0 to 512
[   74.184268][ T5055] bridge0: entered allmulticast mode
[   74.224018][ T5073] EXT4-fs (loop1): 1 orphan inode deleted
[   74.253794][ T5055] macvlan2: left allmulticast mode
[   74.254649][ T5073] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.259099][ T5055] bridge0: left allmulticast mode
[   74.271847][   T37] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[   74.288254][ T5071] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.288314][ T5071] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   74.309351][ T5060] netlink: 8 bytes leftover after parsing attributes in process `syz.2.562'.
[   74.320316][ T5061] netlink: 8 bytes leftover after parsing attributes in process `syz.2.562'.
[   74.331532][ T5053] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.351409][ T5071] random: crng reseeded on system resumption
[   74.371097][ T5079] netlink: 'syz.2.568': attribute type 13 has an invalid length.
[   74.404036][ T5053] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.455563][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.469934][ T5053] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.486137][ T5083] loop2: detected capacity change from 0 to 512
[   74.502902][ T5083] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.527177][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.548875][ T5053] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.560358][ T5053] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.572184][ T5053] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.583518][ T5053] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.342280][ T5103] netlink: 8 bytes leftover after parsing attributes in process `syz.3.577'.
[   75.356461][ T5103] bridge0: port 2(macvlan2) entered blocking state
[   75.356575][ T5103] bridge0: port 2(macvlan2) entered disabled state
[   75.356788][ T5103] macvlan2: entered allmulticast mode
[   75.375477][ T5103] bridge0: entered allmulticast mode
[   75.385721][ T5103] macvlan2: left allmulticast mode
[   75.385739][ T5103] bridge0: left allmulticast mode
[   75.438717][ T5106] loop2: detected capacity change from 0 to 256
[   75.444942][ T5106] loop2: detected capacity change from 0 to 128
[   75.459796][ T5110] netlink: 'syz.4.580': attribute type 13 has an invalid length.
[   75.480427][ T5112] netlink: 12 bytes leftover after parsing attributes in process `syz.4.581'.
[   75.508699][ T5114] netlink: 16 bytes leftover after parsing attributes in process `syz.4.582'.
[   75.522332][ T5106] bio_check_eod: 102 callbacks suppressed
[   75.522347][ T5106] syz.2.578: attempt to access beyond end of device
[   75.522347][ T5106] loop2: rw=0, sector=121, nr_sectors = 120 limit=128
[   75.554820][ T3441] kworker/u8:7: attempt to access beyond end of device
[   75.554820][ T3441] loop2: rw=1, sector=241, nr_sectors = 800 limit=128
[   75.576782][ T5119] FAULT_INJECTION: forcing a failure.
[   75.576782][ T5119] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.590063][ T5119] CPU: 0 UID: 0 PID: 5119 Comm: syz.0.585 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   75.590110][ T5119] Tainted: [W]=WARN
[   75.590117][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   75.590132][ T5119] Call Trace:
[   75.590139][ T5119]  <TASK>
[   75.590147][ T5119]  __dump_stack+0x1d/0x30
[   75.590169][ T5119]  dump_stack_lvl+0xe8/0x140
[   75.590227][ T5119]  dump_stack+0x15/0x1b
[   75.590247][ T5119]  should_fail_ex+0x265/0x280
[   75.590292][ T5119]  should_fail+0xb/0x20
[   75.590376][ T5119]  should_fail_usercopy+0x1a/0x20
[   75.590409][ T5119]  strncpy_from_user+0x25/0x230
[   75.590431][ T5119]  ? kmem_cache_alloc_noprof+0x186/0x310
[   75.590568][ T5119]  ? getname_flags+0x80/0x3b0
[   75.590610][ T5119]  getname_flags+0xae/0x3b0
[   75.590632][ T5119]  __x64_sys_renameat2+0x5f/0x90
[   75.590656][ T5119]  x64_sys_call+0x2bf6/0x2fb0
[   75.590682][ T5119]  do_syscall_64+0xd2/0x200
[   75.590732][ T5119]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   75.590822][ T5119]  ? clear_bhb_loop+0x40/0x90
[   75.590848][ T5119]  ? clear_bhb_loop+0x40/0x90
[   75.590900][ T5119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.590925][ T5119] RIP: 0033:0x7f412671e929
[   75.590943][ T5119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.590965][ T5119] RSP: 002b:00007f4124d87038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[   75.590993][ T5119] RAX: ffffffffffffffda RBX: 00007f4126945fa0 RCX: 00007f412671e929
[   75.591045][ T5119] RDX: ffffffffffffff9c RSI: 0000200000000240 RDI: ffffffffffffff9c
[   75.591060][ T5119] RBP: 00007f4124d87090 R08: 0000000000000000 R09: 0000000000000000
[   75.591075][ T5119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.591089][ T5119] R13: 0000000000000000 R14: 00007f4126945fa0 R15: 00007fff90547ff8
[   75.591112][ T5119]  </TASK>
[   75.792330][ T5116] loop4: detected capacity change from 0 to 512
[   75.801557][ T5122] netlink: 8 bytes leftover after parsing attributes in process `syz.2.584'.
[   75.815782][ T5116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.819077][ T5122] bridge0: port 2(macvlan2) entered blocking state
[   75.835051][ T5122] bridge0: port 2(macvlan2) entered disabled state
[   75.842036][ T5122] macvlan2: entered allmulticast mode
[   75.847487][ T5122] bridge0: entered allmulticast mode
[   75.855223][ T5122] macvlan2: left allmulticast mode
[   75.860969][ T5122] bridge0: left allmulticast mode
[   75.869237][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.904816][ T5135] loop3: detected capacity change from 0 to 128
[   75.914796][ T5135] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   75.922940][ T5135] FAT-fs (loop3): Filesystem has been set read-only
[   75.930278][ T5135] syz.3.589: attempt to access beyond end of device
[   75.930278][ T5135] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   75.944897][ T5135] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   75.952924][ T5135] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   75.961466][ T5135] syz.3.589: attempt to access beyond end of device
[   75.961466][ T5135] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.979061][ T5135] syz.3.589: attempt to access beyond end of device
[   75.979061][ T5135] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.995428][ T5135] syz.3.589: attempt to access beyond end of device
[   75.995428][ T5135] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   76.009059][ T5135] syz.3.589: attempt to access beyond end of device
[   76.009059][ T5135] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   76.022486][ T5143] netlink: 'syz.4.592': attribute type 13 has an invalid length.
[   76.022775][ T5135] syz.3.589: attempt to access beyond end of device
[   76.022775][ T5135] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   76.044468][ T5135] syz.3.589: attempt to access beyond end of device
[   76.044468][ T5135] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   76.052965][ T5146] netlink: 16 bytes leftover after parsing attributes in process `syz.4.593'.
[   76.058401][ T5135] syz.3.589: attempt to access beyond end of device
[   76.058401][ T5135] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   76.080624][   T29] kauditd_printk_skb: 590 callbacks suppressed
[   76.080641][   T29] audit: type=1326 audit(76.048:4920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.109648][   T29] audit: type=1326 audit(76.048:4921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.132281][   T29] audit: type=1326 audit(76.048:4922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.155045][   T29] audit: type=1326 audit(76.048:4923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.178008][   T29] audit: type=1326 audit(76.048:4924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.200655][   T29] audit: type=1326 audit(76.048:4925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.223424][   T29] audit: type=1326 audit(76.048:4926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.246352][   T29] audit: type=1326 audit(76.048:4927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.269162][   T29] audit: type=1326 audit(76.048:4928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.291842][   T29] audit: type=1326 audit(76.048:4929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5145 comm="syz.4.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   76.323658][ T5141] netlink: 8 bytes leftover after parsing attributes in process `syz.2.591'.
[   76.347217][ T5141] bridge0: port 2(macvlan2) entered blocking state
[   76.353944][ T5141] bridge0: port 2(macvlan2) entered disabled state
[   76.361776][ T5141] macvlan2: entered allmulticast mode
[   76.367219][ T5141] bridge0: entered allmulticast mode
[   76.374157][ T5141] macvlan2: left allmulticast mode
[   76.379366][ T5141] bridge0: left allmulticast mode
[   76.387292][ T5150] loop4: detected capacity change from 0 to 164
[   76.401559][ T5150] iso9660: Corrupted directory entry in block 4 of inode 1792
[   76.495110][ T5155] loop4: detected capacity change from 0 to 512
[   76.523170][ T5155] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.556773][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.568289][ T5161] bond1: entered promiscuous mode
[   76.573502][ T5161] bond1: entered allmulticast mode
[   76.579136][ T5161] 8021q: adding VLAN 0 to HW filter on device bond1
[   76.593767][ T5164] FAULT_INJECTION: forcing a failure.
[   76.593767][ T5164] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.594869][ T5161] bond1 (unregistering): Released all slaves
[   76.606958][ T5164] CPU: 0 UID: 0 PID: 5164 Comm: syz.4.600 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   76.606998][ T5164] Tainted: [W]=WARN
[   76.607005][ T5164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   76.607020][ T5164] Call Trace:
[   76.607029][ T5164]  <TASK>
[   76.607040][ T5164]  __dump_stack+0x1d/0x30
[   76.607069][ T5164]  dump_stack_lvl+0xe8/0x140
[   76.607122][ T5164]  dump_stack+0x15/0x1b
[   76.607143][ T5164]  should_fail_ex+0x265/0x280
[   76.607186][ T5164]  should_fail+0xb/0x20
[   76.607229][ T5164]  should_fail_usercopy+0x1a/0x20
[   76.607271][ T5164]  _copy_from_user+0x1c/0xb0
[   76.607296][ T5164]  copy_from_sockptr+0x5e/0xa0
[   76.607338][ T5164]  do_tcp_getsockopt+0x967/0x1af0
[   76.607458][ T5164]  ? avc_has_perm_noaudit+0x1b1/0x200
[   76.607567][ T5164]  ? avc_has_perm+0xd3/0x150
[   76.607606][ T5164]  tcp_getsockopt+0x6e/0xe0
[   76.607650][ T5164]  sock_common_getsockopt+0x5d/0x70
[   76.607685][ T5164]  ? __pfx_sock_common_getsockopt+0x10/0x10
[   76.607719][ T5164]  do_sock_getsockopt+0x200/0x240
[   76.607858][ T5164]  __x64_sys_getsockopt+0x11e/0x1a0
[   76.607947][ T5164]  x64_sys_call+0x12aa/0x2fb0
[   76.608033][ T5164]  do_syscall_64+0xd2/0x200
[   76.608058][ T5164]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.608093][ T5164]  ? clear_bhb_loop+0x40/0x90
[   76.608145][ T5164]  ? clear_bhb_loop+0x40/0x90
[   76.608212][ T5164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.608239][ T5164] RIP: 0033:0x7fedf84ee929
[   76.608260][ T5164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.608285][ T5164] RSP: 002b:00007fedf6b57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   76.608311][ T5164] RAX: ffffffffffffffda RBX: 00007fedf8715fa0 RCX: 00007fedf84ee929
[   76.608326][ T5164] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000003
[   76.608343][ T5164] RBP: 00007fedf6b57090 R08: 00002000000000c0 R09: 0000000000000000
[   76.608359][ T5164] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[   76.608421][ T5164] R13: 0000000000000000 R14: 00007fedf8715fa0 R15: 00007ffd15bc7148
[   76.608445][ T5164]  </TASK>
[   76.838603][ T5166] netlink: 8 bytes leftover after parsing attributes in process `syz.4.601'.
[   76.852275][ T5166] bridge0: port 2(macvlan2) entered blocking state
[   76.858921][ T5166] bridge0: port 2(macvlan2) entered disabled state
[   76.865949][ T5166] macvlan2: entered allmulticast mode
[   76.865952][ T5169] loop0: detected capacity change from 0 to 2048
[   76.871477][ T5166] bridge0: entered allmulticast mode
[   76.883735][ T5166] macvlan2: left allmulticast mode
[   76.886977][ T5169] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   76.888911][ T5166] bridge0: left allmulticast mode
[   76.916722][ T5171] bond1: entered promiscuous mode
[   76.921970][ T5171] bond1: entered allmulticast mode
[   76.927842][ T5171] 8021q: adding VLAN 0 to HW filter on device bond1
[   76.934380][ T5169] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.955884][ T5171] bond1 (unregistering): Released all slaves
[   76.964977][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.975882][ T5176] netlink: 16 bytes leftover after parsing attributes in process `syz.2.604'.
[   77.110692][ T5180] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16384 sclass=netlink_audit_socket pid=5180 comm=syz.2.607
[   77.138327][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.698865][ T5215] netlink: 8 bytes leftover after parsing attributes in process `syz.3.617'.
[   77.704097][ T5215] bridge0: port 2(macvlan2) entered blocking state
[   77.715066][ T5215] bridge0: port 2(macvlan2) entered disabled state
[   77.715864][ T5215] macvlan2: entered allmulticast mode
[   77.715880][ T5215] bridge0: entered allmulticast mode
[   77.722703][ T5215] macvlan2: left allmulticast mode
[   77.738691][ T5215] bridge0: left allmulticast mode
[   77.788546][ T5217] loop2: detected capacity change from 0 to 1024
[   77.860823][ T5223] loop3: detected capacity change from 0 to 512
[   77.871532][ T5225] loop0: detected capacity change from 0 to 512
[   77.885239][ T5225] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.901580][ T5225] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   77.922065][ T5223] EXT4-fs (loop3): 1 orphan inode deleted
[   77.924130][ T5225] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 32768 with max blocks 23 with error 28
[   77.934368][ T5223] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.940561][ T5225] EXT4-fs (loop0): This should not happen!! Data will be lost
[   77.940561][ T5225] 
[   77.962769][ T5225] EXT4-fs (loop0): Total free blocks count 0
[   77.968788][ T5225] EXT4-fs (loop0): Free/Dirty block details
[   77.974940][ T5225] EXT4-fs (loop0): free_blocks=39627
[   77.980475][ T5225] EXT4-fs (loop0): dirty_blocks=23
[   77.985700][ T5225] EXT4-fs (loop0): Block reservation details
[   77.991788][ T5225] EXT4-fs (loop0): i_reserved_data_blocks=23
[   77.998074][   T37] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[   78.038351][ T5223] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   78.069265][ T5237] netlink: 8 bytes leftover after parsing attributes in process `syz.1.626'.
[   78.078622][ T5223] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.088854][ T5223] random: crng reseeded on system resumption
[   78.103255][ T5239] bond4: entered promiscuous mode
[   78.108383][ T5239] bond4: entered allmulticast mode
[   78.110150][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.113912][ T5239] 8021q: adding VLAN 0 to HW filter on device bond4
[   78.132974][ T5239] bond4 (unregistering): Released all slaves
[   78.147067][ T5237] bridge0: port 2(macvlan2) entered blocking state
[   78.153777][ T5237] bridge0: port 2(macvlan2) entered disabled state
[   78.160591][ T5237] macvlan2: entered allmulticast mode
[   78.166033][ T5237] bridge0: entered allmulticast mode
[   78.171922][ T5237] macvlan2: left allmulticast mode
[   78.177056][ T5237] bridge0: left allmulticast mode
[   78.263939][ T5248] netlink: 8 bytes leftover after parsing attributes in process `syz.1.630'.
[   78.282788][ T5248] bridge0: port 2(macvlan2) entered blocking state
[   78.289483][ T5248] bridge0: port 2(macvlan2) entered disabled state
[   78.314301][ T5248] macvlan2: entered allmulticast mode
[   78.319757][ T5248] bridge0: entered allmulticast mode
[   78.335215][ T5248] macvlan2: left allmulticast mode
[   78.340464][ T5248] bridge0: left allmulticast mode
[   78.888463][ T5259] loop2: detected capacity change from 0 to 1024
[   79.141856][ T5273] bridge0: port 2(macvlan2) entered blocking state
[   79.141966][ T5273] bridge0: port 2(macvlan2) entered disabled state
[   79.142057][ T5273] macvlan2: entered allmulticast mode
[   79.142074][ T5273] bridge0: entered allmulticast mode
[   79.142626][ T5273] macvlan2: left allmulticast mode
[   79.142644][ T5273] bridge0: left allmulticast mode
[   79.175085][ T5274] bond4: entered promiscuous mode
[   79.182982][ T5274] bond4: entered allmulticast mode
[   79.188620][ T5274] 8021q: adding VLAN 0 to HW filter on device bond4
[   79.208977][ T5274] bond4 (unregistering): Released all slaves
[   79.365133][ T5289] netlink: 'syz.4.646': attribute type 13 has an invalid length.
[   79.406239][ T5294] loop4: detected capacity change from 0 to 512
[   79.413079][ T5294] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   79.461805][ T5297] loop4: detected capacity change from 0 to 1024
[   79.471204][ T5297] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.649: Failed to acquire dquot type 0
[   79.491676][ T5297] EXT4-fs (loop4): 1 truncate cleaned up
[   79.498331][ T5297] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.525815][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.681379][ T5306] bond4: entered promiscuous mode
[   79.686457][ T5306] bond4: entered allmulticast mode
[   79.691869][ T5306] 8021q: adding VLAN 0 to HW filter on device bond4
[   79.703394][ T5306] bond4 (unregistering): Released all slaves
[   79.773025][ T5309] loop4: detected capacity change from 0 to 256
[   79.786074][ T5309] loop4: detected capacity change from 0 to 128
[   79.901821][ T5314] loop2: detected capacity change from 0 to 256
[   79.908812][ T5314] msdos: Unknown parameter 'dotsutable'
[   79.946282][ T5316] bond1: entered promiscuous mode
[   79.951420][ T5316] bond1: entered allmulticast mode
[   79.956876][ T5316] 8021q: adding VLAN 0 to HW filter on device bond1
[   79.966672][ T5316] bond1 (unregistering): Released all slaves
[   80.078043][ T5323] loop0: detected capacity change from 0 to 512
[   80.092914][ T5323] EXT4-fs (loop0): 1 orphan inode deleted
[   80.099356][ T5323] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.116314][ T5323] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.124905][ T5323] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.195520][ T5330] loop1: detected capacity change from 0 to 512
[   80.202640][ T5330] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   80.222436][ T5330] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.280768][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.743710][ T5340] loop4: detected capacity change from 0 to 512
[   80.762474][ T5340] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.789190][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.864542][ T5353] FAULT_INJECTION: forcing a failure.
[   80.864542][ T5353] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.877738][ T5353] CPU: 1 UID: 0 PID: 5353 Comm: syz.4.666 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   80.877778][ T5353] Tainted: [W]=WARN
[   80.877786][ T5353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   80.877803][ T5353] Call Trace:
[   80.877811][ T5353]  <TASK>
[   80.877820][ T5353]  __dump_stack+0x1d/0x30
[   80.877846][ T5353]  dump_stack_lvl+0xe8/0x140
[   80.877868][ T5353]  dump_stack+0x15/0x1b
[   80.877883][ T5353]  should_fail_ex+0x265/0x280
[   80.877919][ T5353]  should_fail+0xb/0x20
[   80.877943][ T5353]  should_fail_usercopy+0x1a/0x20
[   80.878031][ T5353]  _copy_from_user+0x1c/0xb0
[   80.878049][ T5353]  move_addr_to_kernel+0x7e/0x130
[   80.878071][ T5353]  io_connect_prep+0x14d/0x170
[   80.878136][ T5353]  io_submit_sqes+0x5e2/0xfd0
[   80.878233][ T5353]  __se_sys_io_uring_enter+0x1c1/0x1b70
[   80.878259][ T5353]  ? 0xffffffff81000000
[   80.878270][ T5353]  ? __rcu_read_unlock+0x4f/0x70
[   80.878321][ T5353]  ? get_pid_task+0x96/0xd0
[   80.878339][ T5353]  ? proc_fail_nth_write+0x12d/0x160
[   80.878414][ T5353]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   80.878451][ T5353]  ? vfs_write+0x75e/0x8e0
[   80.878558][ T5353]  ? putname+0xda/0x100
[   80.878576][ T5353]  ? __rcu_read_unlock+0x4f/0x70
[   80.878653][ T5353]  ? __fget_files+0x184/0x1c0
[   80.878670][ T5353]  ? fput+0x8f/0xc0
[   80.878691][ T5353]  __x64_sys_io_uring_enter+0x78/0x90
[   80.878718][ T5353]  x64_sys_call+0x28c8/0x2fb0
[   80.878746][ T5353]  do_syscall_64+0xd2/0x200
[   80.878834][ T5353]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.878857][ T5353]  ? clear_bhb_loop+0x40/0x90
[   80.878876][ T5353]  ? clear_bhb_loop+0x40/0x90
[   80.878896][ T5353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.878935][ T5353] RIP: 0033:0x7fedf84ee929
[   80.878949][ T5353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.879021][ T5353] RSP: 002b:00007fedf6b57038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   80.879037][ T5353] RAX: ffffffffffffffda RBX: 00007fedf8715fa0 RCX: 00007fedf84ee929
[   80.879048][ T5353] RDX: 0000000000000000 RSI: 00000000000047ba RDI: 0000000000000004
[   80.879059][ T5353] RBP: 00007fedf6b57090 R08: 0000000000000000 R09: 0000000000000000
[   80.879069][ T5353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.879079][ T5353] R13: 0000000000000000 R14: 00007fedf8715fa0 R15: 00007ffd15bc7148
[   80.879160][ T5353]  </TASK>
[   80.880436][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.151466][   T29] kauditd_printk_skb: 585 callbacks suppressed
[   81.151492][   T29] audit: type=1400 audit(81.138:5512): avc:  denied  { create } for  pid=5354 comm="syz.3.667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   81.192372][   T29] audit: type=1400 audit(81.168:5513): avc:  denied  { accept } for  pid=5354 comm="syz.3.667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   81.232915][ T5364] netlink: 'syz.3.671': attribute type 13 has an invalid length.
[   81.257705][ T5365] loop1: detected capacity change from 0 to 512
[   81.265319][ T5365] journal_path: Lookup failure for './file0/../file0'
[   81.272205][ T5365] EXT4-fs: error: could not find journal device path
[   81.282796][ T5369] loop3: detected capacity change from 0 to 512
[   81.284625][   T29] audit: type=1400 audit(81.268:5514): avc:  denied  { watch watch_reads } for  pid=5366 comm="syz.2.673" path="/154" dev="tmpfs" ino=839 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   81.317770][ T5367] wireguard0: entered promiscuous mode
[   81.323378][ T5367] wireguard0: entered allmulticast mode
[   81.331170][ T5369] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.352143][ T5369] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   81.380369][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.398704][ T5380] __nla_validate_parse: 2 callbacks suppressed
[   81.398724][ T5380] netlink: 8 bytes leftover after parsing attributes in process `syz.1.678'.
[   81.403824][   T29] audit: type=1326 audit(81.378:5515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5381 comm="syz.3.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   81.409214][ T5380] bridge0: port 2(macvlan2) entered blocking state
[   81.413837][   T29] audit: type=1326 audit(81.378:5516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5381 comm="syz.3.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   81.436544][ T5380] bridge0: port 2(macvlan2) entered disabled state
[   81.445423][   T29] audit: type=1326 audit(81.428:5517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5381 comm="syz.3.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1cb16de929 code=0x7ffc0000
[   81.466742][ T5380] macvlan2: entered allmulticast mode
[   81.474360][ T5382] loop3: detected capacity change from 0 to 256
[   81.494858][ T5380] bridge0: entered allmulticast mode
[   81.515232][   T29] audit: type=1326 audit(81.428:5518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5381 comm="syz.3.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1cb16de963 code=0x7ffc0000
[   81.537860][   T29] audit: type=1326 audit(81.458:5519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5381 comm="syz.3.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1cb16dd3df code=0x7ffc0000
[   81.543865][ T5382] loop3: detected capacity change from 0 to 128
[   81.560379][   T29] audit: type=1326 audit(81.458:5520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5381 comm="syz.3.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1cb16de9b7 code=0x7ffc0000
[   81.589374][   T29] audit: type=1326 audit(81.458:5521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5381 comm="syz.3.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1cb16dd290 code=0x7ffc0000
[   81.600027][ T5382] bio_check_eod: 18003 callbacks suppressed
[   81.600047][ T5382] syz.3.677: attempt to access beyond end of device
[   81.600047][ T5382] loop3: rw=0, sector=121, nr_sectors = 120 limit=128
[   81.634968][ T5380] macvlan2: left allmulticast mode
[   81.640163][ T5380] bridge0: left allmulticast mode
[   81.646651][ T5384] usb usb1: usbfs: process 5384 (syz.2.679) did not claim interface 0 before use
[   81.657340][   T12] kworker/u8:0: attempt to access beyond end of device
[   81.657340][   T12] loop3: rw=1, sector=241, nr_sectors = 800 limit=128
[   81.753620][ T5396] netlink: 'syz.2.685': attribute type 13 has an invalid length.
[   81.787935][ T5402] loop2: detected capacity change from 0 to 512
[   81.795220][ T5402] journal_path: Lookup failure for './file0/../file0'
[   81.802143][ T5402] EXT4-fs: error: could not find journal device path
[   81.816012][ T5404] netlink: 8 bytes leftover after parsing attributes in process `syz.3.689'.
[   81.829269][ T5404] bridge0: port 2(macvlan2) entered blocking state
[   81.835946][ T5404] bridge0: port 2(macvlan2) entered disabled state
[   81.840396][ T5406] loop2: detected capacity change from 0 to 128
[   81.843379][ T5404] macvlan2: entered allmulticast mode
[   81.854326][ T5404] bridge0: entered allmulticast mode
[   81.865412][ T5404] macvlan2: left allmulticast mode
[   81.870676][ T5404] bridge0: left allmulticast mode
[   81.874591][ T5406] syz.2.690: attempt to access beyond end of device
[   81.874591][ T5406] loop2: rw=0, sector=121, nr_sectors = 120 limit=128
[   81.901268][   T37] kworker/u8:2: attempt to access beyond end of device
[   81.901268][   T37] loop2: rw=1, sector=241, nr_sectors = 800 limit=128
[   81.948648][ T5412] SELinux: syz.2.692 (5412) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   82.002999][ T5416] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=7184 sclass=netlink_xfrm_socket pid=5416 comm=syz.2.694
[   82.011748][ T5415] bond1: entered promiscuous mode
[   82.021023][ T5415] bond1: entered allmulticast mode
[   82.027036][ T5415] 8021q: adding VLAN 0 to HW filter on device bond1
[   82.038137][ T5415] bond1 (unregistering): Released all slaves
[   82.248037][ T5430] loop3: detected capacity change from 0 to 512
[   82.285474][ T5430] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.339281][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.438861][ T5442] FAULT_INJECTION: forcing a failure.
[   82.438861][ T5442] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.452029][ T5442] CPU: 1 UID: 0 PID: 5442 Comm: syz.3.701 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   82.452070][ T5442] Tainted: [W]=WARN
[   82.452076][ T5442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   82.452159][ T5442] Call Trace:
[   82.452166][ T5442]  <TASK>
[   82.452174][ T5442]  __dump_stack+0x1d/0x30
[   82.452199][ T5442]  dump_stack_lvl+0xe8/0x140
[   82.452225][ T5442]  dump_stack+0x15/0x1b
[   82.452246][ T5442]  should_fail_ex+0x265/0x280
[   82.452285][ T5442]  should_fail+0xb/0x20
[   82.452370][ T5442]  should_fail_usercopy+0x1a/0x20
[   82.452409][ T5442]  _copy_to_user+0x20/0xa0
[   82.452434][ T5442]  simple_read_from_buffer+0xb5/0x130
[   82.452503][ T5442]  proc_fail_nth_read+0x100/0x140
[   82.452614][ T5442]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   82.452655][ T5442]  vfs_read+0x1a0/0x6f0
[   82.452712][ T5442]  ? __rcu_read_unlock+0x4f/0x70
[   82.452734][ T5442]  ? __rcu_read_unlock+0x4f/0x70
[   82.452761][ T5442]  ? __fget_files+0x184/0x1c0
[   82.452789][ T5442]  ksys_read+0xda/0x1a0
[   82.452852][ T5442]  __x64_sys_read+0x40/0x50
[   82.452883][ T5442]  x64_sys_call+0x2d77/0x2fb0
[   82.452978][ T5442]  do_syscall_64+0xd2/0x200
[   82.453001][ T5442]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.453027][ T5442]  ? clear_bhb_loop+0x40/0x90
[   82.453047][ T5442]  ? clear_bhb_loop+0x40/0x90
[   82.453104][ T5442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.453124][ T5442] RIP: 0033:0x7f1cb16dd33c
[   82.453138][ T5442] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   82.453161][ T5442] RSP: 002b:00007f1cafd47030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   82.453181][ T5442] RAX: ffffffffffffffda RBX: 00007f1cb1905fa0 RCX: 00007f1cb16dd33c
[   82.453262][ T5442] RDX: 000000000000000f RSI: 00007f1cafd470a0 RDI: 0000000000000005
[   82.453276][ T5442] RBP: 00007f1cafd47090 R08: 0000000000000000 R09: 0000000000000000
[   82.453354][ T5442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.453366][ T5442] R13: 0000000000000000 R14: 00007f1cb1905fa0 R15: 00007ffc2cc6e168
[   82.453385][ T5442]  </TASK>
[   82.714003][ T5446] netlink: 8 bytes leftover after parsing attributes in process `syz.3.703'.
[   82.729846][ T5446] bridge0: port 2(macvlan2) entered blocking state
[   82.736515][ T5446] bridge0: port 2(macvlan2) entered disabled state
[   82.753398][ T5446] macvlan2: entered allmulticast mode
[   82.758908][ T5446] bridge0: entered allmulticast mode
[   82.765992][ T5446] macvlan2: left allmulticast mode
[   82.771234][ T5446] bridge0: left allmulticast mode
[   82.852025][ T5457] loop2: detected capacity change from 0 to 1024
[   82.860726][ T5457] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.707: Failed to acquire dquot type 0
[   82.872755][ T5457] EXT4-fs (loop2): 1 truncate cleaned up
[   82.878761][ T5457] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.902738][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.923409][ T5464] netlink: 4 bytes leftover after parsing attributes in process `syz.2.709'.
[   82.964577][ T5467] loop2: detected capacity change from 0 to 2048
[   82.972437][ T5467] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   82.992165][ T5467] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.017885][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.089484][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.108013][ T5473] netlink: 'syz.2.713': attribute type 13 has an invalid length.
[   83.133803][ T5477] loop2: detected capacity change from 0 to 256
[   83.145278][ T5477] loop2: detected capacity change from 0 to 128
[   83.562652][ T5493] loop1: detected capacity change from 0 to 1024
[   83.572018][ T5493] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.719: Failed to acquire dquot type 0
[   83.584334][ T5493] EXT4-fs (loop1): 1 truncate cleaned up
[   83.590633][ T5493] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.618245][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.644343][ T5498] syz_tun: left allmulticast mode
[   83.649493][ T5498] syz_tun: left promiscuous mode
[   83.654717][ T5498] bridge0: port 1(syz_tun) entered disabled state
[   83.659313][ T5500] loop2: detected capacity change from 0 to 1024
[   83.693907][ T5500] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.722: Failed to acquire dquot type 0
[   83.716928][ T5506] netlink: 14 bytes leftover after parsing attributes in process `syz.4.724'.
[   83.734595][ T5500] EXT4-fs (loop2): 1 truncate cleaned up
[   83.741504][ T5500] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.768581][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.806268][ T5512] loop2: detected capacity change from 0 to 2048
[   83.815500][ T5512] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   83.833724][ T5512] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.874031][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.921081][ T5529] loop2: detected capacity change from 0 to 1024
[   83.944980][ T5529] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.965238][ T5529] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.730: Allocating blocks 449-513 which overlap fs metadata
[   83.987218][ T5528] EXT4-fs (loop2): pa ffff8881069a4770: logic 48, phys. 177, len 21
[   83.987252][ T5528] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   83.999529][ T5541] netlink: 8 bytes leftover after parsing attributes in process `syz.0.732'.
[   84.033219][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.044157][ T5541] bridge0: port 2(macvlan2) entered blocking state
[   84.044194][ T5541] bridge0: port 2(macvlan2) entered disabled state
[   84.044287][ T5541] macvlan2: entered allmulticast mode
[   84.044305][ T5541] bridge0: entered allmulticast mode
[   84.044879][ T5541] macvlan2: left allmulticast mode
[   84.044892][ T5541] bridge0: left allmulticast mode
[   84.072953][ T5545] loop1: detected capacity change from 0 to 1024
[   84.131741][ T5550] wireguard0: entered promiscuous mode
[   84.131762][ T5550] wireguard0: entered allmulticast mode
[   84.159136][ T5554] netlink: 8 bytes leftover after parsing attributes in process `syz.2.736'.
[   84.164005][ T5554] bridge0: port 2(macvlan2) entered blocking state
[   84.175160][ T5554] bridge0: port 2(macvlan2) entered disabled state
[   84.175517][ T5554] macvlan2: entered allmulticast mode
[   84.175536][ T5554] bridge0: entered allmulticast mode
[   84.182708][ T5554] macvlan2: left allmulticast mode
[   84.182775][ T5554] bridge0: left allmulticast mode
[   84.213424][ T5556] bridge0: port 1(syz_tun) entered blocking state
[   84.213472][ T5556] bridge0: port 1(syz_tun) entered disabled state
[   84.213660][ T5556] syz_tun: entered allmulticast mode
[   84.233803][ T5556] syz_tun: entered promiscuous mode
[   84.241258][ T5556] syz_tun: left allmulticast mode
[   84.241279][ T5556] syz_tun: left promiscuous mode
[   84.241519][ T5556] bridge0: port 1(syz_tun) entered disabled state
[   84.325295][ T5561] loop2: detected capacity change from 0 to 256
[   84.386926][ T5567] loop2: detected capacity change from 0 to 256
[   84.399408][ T5567] loop2: detected capacity change from 0 to 128
[   84.412947][ T5569] loop0: detected capacity change from 0 to 512
[   84.413646][ T5569] journal_path: Lookup failure for './file0/../file0'
[   84.413668][ T5569] EXT4-fs: error: could not find journal device path
[   84.462597][ T5578] loop2: detected capacity change from 0 to 256
[   84.470308][ T5578] loop2: detected capacity change from 0 to 128
[   84.744295][ T5588] loop4: detected capacity change from 0 to 2048
[   84.751885][ T5588] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   84.772813][ T5588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.799124][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.819467][ T5592] loop3: detected capacity change from 0 to 512
[   84.826251][ T5592] journal_path: Lookup failure for './file0/../file0'
[   84.833160][ T5592] EXT4-fs: error: could not find journal device path
[   84.833258][ T5593] loop0: detected capacity change from 0 to 128
[   84.848431][ T5593] EXT4-fs: Ignoring removed oldalloc option
[   84.855111][ T5595] loop4: detected capacity change from 0 to 512
[   84.863775][ T5593] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   84.878341][ T5595] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.879610][ T5598] syz_tun: left allmulticast mode
[   84.896004][ T5598] syz_tun: left promiscuous mode
[   84.897911][ T5595] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   84.901089][ T5598] bridge0: port 1(syz_tun) entered disabled state
[   84.934936][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.959979][ T5603] loop4: detected capacity change from 0 to 256
[   85.000671][ T5605] loop3: detected capacity change from 0 to 2048
[   85.008408][ T5605] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   85.022249][ T5605] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.047418][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.075843][ T5612] loop3: detected capacity change from 0 to 512
[   85.083494][ T5612] journal_path: Lookup failure for './file0/../file0'
[   85.090365][ T5612] EXT4-fs: error: could not find journal device path
[   85.123268][ T5616] loop3: detected capacity change from 0 to 1024
[   85.132152][ T5616] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.757: Failed to acquire dquot type 0
[   85.144007][ T5616] EXT4-fs (loop3): 1 truncate cleaned up
[   85.211086][ T5626] loop1: detected capacity change from 0 to 512
[   85.217925][ T5626] journal_path: Lookup failure for './file0/../file0'
[   85.224875][ T5626] EXT4-fs: error: could not find journal device path
[   85.255398][ T5629] loop1: detected capacity change from 0 to 512
[   85.273995][ T5629] EXT4-fs (loop1): 1 orphan inode deleted
[   85.286145][ T5629] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   85.295056][ T5629] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   85.307461][ T5629] random: crng reseeded on system resumption
[   85.379051][ T5636] syz_tun: left allmulticast mode
[   85.384230][ T5636] syz_tun: left promiscuous mode
[   85.389428][ T5636] bridge0: port 1(syz_tun) entered disabled state
[   85.449944][ T5641] netlink: 8 bytes leftover after parsing attributes in process `syz.2.765'.
[   85.462649][ T5641] bridge0: port 1(macvlan2) entered blocking state
[   85.469232][ T5641] bridge0: port 1(macvlan2) entered disabled state
[   85.476305][ T5641] macvlan2: entered allmulticast mode
[   85.481771][ T5641] bridge0: entered allmulticast mode
[   85.487718][ T5641] macvlan2: left allmulticast mode
[   85.492926][ T5641] bridge0: left allmulticast mode
[   85.593048][ T5651] netlink: 8 bytes leftover after parsing attributes in process `syz.2.770'.
[   85.605858][ T5651] bridge0: port 1(macvlan2) entered blocking state
[   85.612642][ T5651] bridge0: port 1(macvlan2) entered disabled state
[   85.619308][ T5651] macvlan2: entered allmulticast mode
[   85.624798][ T5651] bridge0: entered allmulticast mode
[   85.631526][ T5651] macvlan2: left allmulticast mode
[   85.636706][ T5651] bridge0: left allmulticast mode
[   85.661901][ T5654] loop0: detected capacity change from 0 to 1024
[   85.671245][ T5654] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.771: Failed to acquire dquot type 0
[   85.683007][ T5654] EXT4-fs (loop0): 1 truncate cleaned up
[   85.715880][ T5658] loop0: detected capacity change from 0 to 256
[   85.728252][ T5658] loop0: detected capacity change from 0 to 128
[   85.751141][ T5658] syz.0.772: attempt to access beyond end of device
[   85.751141][ T5658] loop0: rw=0, sector=121, nr_sectors = 120 limit=128
[   85.775237][ T1729] kworker/u8:6: attempt to access beyond end of device
[   85.775237][ T1729] loop0: rw=1, sector=241, nr_sectors = 800 limit=128
[   85.811687][ T5666] bridge0: port 1(syz_tun) entered blocking state
[   85.818297][ T5666] bridge0: port 1(syz_tun) entered disabled state
[   85.825259][ T5666] syz_tun: entered allmulticast mode
[   85.831231][ T5666] syz_tun: entered promiscuous mode
[   85.836839][ T5666] bridge0: port 1(syz_tun) entered blocking state
[   85.843311][ T5666] bridge0: port 1(syz_tun) entered forwarding state
[   85.856784][ T5666] syz_tun: left allmulticast mode
[   85.861966][ T5666] syz_tun: left promiscuous mode
[   85.867124][ T5666] bridge0: port 1(syz_tun) entered disabled state
[   85.919719][ T5668] netlink: 'syz.2.776': attribute type 13 has an invalid length.
[   85.929511][ T5668] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[   85.939926][ T5668] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[   85.947796][ T5668] gretap1: entered promiscuous mode
[   85.953100][ T5668] gretap1: entered allmulticast mode
[   86.032364][ T5672] netlink: 8 bytes leftover after parsing attributes in process `syz.4.778'.
[   86.046849][ T5672] bridge0: port 2(macvlan2) entered blocking state
[   86.053535][ T5672] bridge0: port 2(macvlan2) entered disabled state
[   86.060826][ T5672] macvlan2: entered allmulticast mode
[   86.066246][ T5672] bridge0: entered allmulticast mode
[   86.073306][ T5672] macvlan2: left allmulticast mode
[   86.078508][ T5672] bridge0: left allmulticast mode
[   86.176798][ T5675] loop4: detected capacity change from 0 to 1024
[   86.242422][ T5678] loop3: detected capacity change from 0 to 512
[   86.319891][ T5687] loop3: detected capacity change from 0 to 1024
[   86.343264][ T5687] __quota_error: 749 callbacks suppressed
[   86.343287][ T5687] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[   86.359625][ T5687] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[   86.369061][ T5687] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.782: Failed to acquire dquot type 0
[   86.382858][ T5687] EXT4-fs (loop3): 1 truncate cleaned up
[   86.411034][ T5694] netlink: 8 bytes leftover after parsing attributes in process `syz.4.785'.
[   86.424874][ T5694] bridge0: port 2(macvlan2) entered blocking state
[   86.431578][ T5694] bridge0: port 2(macvlan2) entered disabled state
[   86.438434][ T5694] macvlan2: entered allmulticast mode
[   86.444162][ T5694] bridge0: entered allmulticast mode
[   86.450056][ T5694] macvlan2: left allmulticast mode
[   86.455296][ T5694] bridge0: left allmulticast mode
[   86.464989][ T5698] bridge0: port 1(syz_tun) entered blocking state
[   86.471597][ T5698] bridge0: port 1(syz_tun) entered disabled state
[   86.478218][ T5698] syz_tun: entered allmulticast mode
[   86.484271][ T5698] syz_tun: entered promiscuous mode
[   86.490043][ T5698] bridge0: port 1(syz_tun) entered blocking state
[   86.496524][ T5698] bridge0: port 1(syz_tun) entered forwarding state
[   86.509452][ T5698] syz_tun: left allmulticast mode
[   86.514680][ T5698] syz_tun: left promiscuous mode
[   86.519751][ T5698] bridge0: port 1(syz_tun) entered disabled state
[   86.602111][ T5705] netlink: 8 bytes leftover after parsing attributes in process `syz.2.790'.
[   86.615386][ T5705] bridge0: port 1(macvlan2) entered blocking state
[   86.622206][ T5705] bridge0: port 1(macvlan2) entered disabled state
[   86.631810][ T5705] macvlan2: entered allmulticast mode
[   86.637387][ T5705] bridge0: entered allmulticast mode
[   86.643405][ T5705] macvlan2: left allmulticast mode
[   86.648567][ T5705] bridge0: left allmulticast mode
[   86.738977][ T5711] 9pnet_fd: Insufficient options for proto=fd
[   86.775331][ T5710] loop2: detected capacity change from 0 to 512
[   86.840695][ T5720] loop2: detected capacity change from 0 to 1024
[   87.039650][ T5729] loop0: detected capacity change from 0 to 256
[   87.046565][ T5729] msdos: Unknown parameter 'dotsutable'
[   88.022130][   T29] audit: type=1326 audit(88.008:6261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5747 comm="syz.0.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f412671e929 code=0x7ffc0000
[   88.045287][ T5748] loop0: detected capacity change from 0 to 256
[   88.045915][   T29] audit: type=1326 audit(88.008:6262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5747 comm="syz.0.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f412671e929 code=0x7ffc0000
[   88.057726][ T5748] loop0: detected capacity change from 0 to 128
[   88.074456][   T29] audit: type=1326 audit(88.008:6263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5747 comm="syz.0.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f412671e963 code=0x7ffc0000
[   88.103362][   T29] audit: type=1326 audit(88.008:6264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5747 comm="syz.0.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f412671d3df code=0x7ffc0000
[   88.126062][   T29] audit: type=1326 audit(88.008:6265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5747 comm="syz.0.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f412671e9b7 code=0x7ffc0000
[   88.148752][   T29] audit: type=1326 audit(88.028:6266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5747 comm="syz.0.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f412671d290 code=0x7ffc0000
[   88.171482][   T29] audit: type=1326 audit(88.028:6267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5747 comm="syz.0.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f412671e52b code=0x7ffc0000
[   88.194578][   T29] audit: type=1326 audit(88.038:6268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5747 comm="syz.0.804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f412671d58a code=0x7ffc0000
[   88.234238][ T5753] loop3: detected capacity change from 0 to 512
[   88.328117][ T5768] netlink: 'syz.3.811': attribute type 13 has an invalid length.
[   88.339255][ T5768] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap4
[   88.353560][ T5770] 9pnet_fd: Insufficient options for proto=fd
[   88.362737][ T5768] gretap4: default qdisc (pfifo_fast) fail, fallback to noqueue
[   88.394327][ T5768] gretap4: entered promiscuous mode
[   88.399774][ T5768] gretap4: entered allmulticast mode
[   88.418706][ T5773] netlink: 8 bytes leftover after parsing attributes in process `syz.4.812'.
[   88.453400][ T5773] bridge0: port 2(macvlan2) entered blocking state
[   88.460005][ T5773] bridge0: port 2(macvlan2) entered disabled state
[   88.467269][ T5773] macvlan2: entered allmulticast mode
[   88.472804][ T5773] bridge0: entered allmulticast mode
[   88.479459][ T5773] macvlan2: left allmulticast mode
[   88.484644][ T5773] bridge0: left allmulticast mode
[   88.820113][ T5807] loop0: detected capacity change from 0 to 512
[   88.833225][ T5807] EXT4-fs (loop0): 1 orphan inode deleted
[   88.842350][ T5807] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.851199][ T5807] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   88.860153][ T5807] random: crng reseeded on system resumption
[   89.292277][ T5812] loop3: detected capacity change from 0 to 256
[   89.299825][ T5812] msdos: Unknown parameter 'dotsutable'
[   89.307339][ T5814] netlink: 8 bytes leftover after parsing attributes in process `syz.1.825'.
[   89.321883][ T5814] bridge0: port 1(macvlan2) entered blocking state
[   89.328639][ T5814] bridge0: port 1(macvlan2) entered disabled state
[   89.337293][ T5814] macvlan2: entered allmulticast mode
[   89.342802][ T5814] bridge0: entered allmulticast mode
[   89.348840][ T5814] macvlan2: left allmulticast mode
[   89.354165][ T5814] bridge0: left allmulticast mode
[   89.367576][ T5816] loop3: detected capacity change from 0 to 2048
[   89.375208][ T5816] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   89.416143][ T5820] loop3: detected capacity change from 0 to 1024
[   89.923740][ T5847] loop1: detected capacity change from 0 to 2048
[   89.931309][ T5847] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   90.186712][ T5858] loop4: detected capacity change from 0 to 512
[   90.256541][ T5865] FAULT_INJECTION: forcing a failure.
[   90.256541][ T5865] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.269871][ T5865] CPU: 1 UID: 0 PID: 5865 Comm: syz.4.841 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   90.269904][ T5865] Tainted: [W]=WARN
[   90.269916][ T5865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   90.269929][ T5865] Call Trace:
[   90.269936][ T5865]  <TASK>
[   90.269943][ T5865]  __dump_stack+0x1d/0x30
[   90.269966][ T5865]  dump_stack_lvl+0xe8/0x140
[   90.270030][ T5865]  dump_stack+0x15/0x1b
[   90.270062][ T5865]  should_fail_ex+0x265/0x280
[   90.270090][ T5865]  should_fail+0xb/0x20
[   90.270174][ T5865]  should_fail_usercopy+0x1a/0x20
[   90.270293][ T5865]  _copy_to_user+0x20/0xa0
[   90.270311][ T5865]  simple_read_from_buffer+0xb5/0x130
[   90.270339][ T5865]  proc_fail_nth_read+0x100/0x140
[   90.270374][ T5865]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   90.270402][ T5865]  vfs_read+0x1a0/0x6f0
[   90.270470][ T5865]  ? __rcu_read_unlock+0x4f/0x70
[   90.270489][ T5865]  ? __fget_files+0x184/0x1c0
[   90.270563][ T5865]  ksys_read+0xda/0x1a0
[   90.270602][ T5865]  __x64_sys_read+0x40/0x50
[   90.270638][ T5865]  x64_sys_call+0x2d77/0x2fb0
[   90.270665][ T5865]  do_syscall_64+0xd2/0x200
[   90.270713][ T5865]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   90.270760][ T5865]  ? clear_bhb_loop+0x40/0x90
[   90.270789][ T5865]  ? clear_bhb_loop+0x40/0x90
[   90.270868][ T5865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.270887][ T5865] RIP: 0033:0x7fedf84ed33c
[   90.270900][ T5865] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   90.270924][ T5865] RSP: 002b:00007fedf6b57030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   90.270941][ T5865] RAX: ffffffffffffffda RBX: 00007fedf8715fa0 RCX: 00007fedf84ed33c
[   90.270993][ T5865] RDX: 000000000000000f RSI: 00007fedf6b570a0 RDI: 0000000000000004
[   90.271004][ T5865] RBP: 00007fedf6b57090 R08: 0000000000000000 R09: 0000000000000000
[   90.271014][ T5865] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000001
[   90.271025][ T5865] R13: 0000000000000000 R14: 00007fedf8715fa0 R15: 00007ffd15bc7148
[   90.271041][ T5865]  </TASK>
[   90.561117][ T5872] loop2: detected capacity change from 0 to 256
[   90.574314][ T5872] loop2: detected capacity change from 0 to 128
[   90.637782][ T5875] loop2: detected capacity change from 0 to 512
[   90.645226][ T5875] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   90.656853][ T5875] EXT4-fs (loop2): 1 truncate cleaned up
[   90.666770][ T5875] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #2: block 3: comm syz.2.845: lblock 1 mapped to illegal pblock 3 (length 1)
[   90.768346][ T5882] loop2: detected capacity change from 0 to 1024
[   90.777681][ T5882] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.847: Failed to acquire dquot type 0
[   90.789944][ T5882] EXT4-fs (loop2): 1 truncate cleaned up
[   90.819838][ T5885] bridge0: port 1(syz_tun) entered blocking state
[   90.826532][ T5885] bridge0: port 1(syz_tun) entered disabled state
[   90.833678][ T5885] syz_tun: entered allmulticast mode
[   90.839708][ T5885] syz_tun: entered promiscuous mode
[   90.840139][ T5887] loop1: detected capacity change from 0 to 1024
[   90.845973][ T5885] bridge0: port 1(syz_tun) entered blocking state
[   90.857924][ T5885] bridge0: port 1(syz_tun) entered forwarding state
[   90.875805][ T5885] syz_tun: left allmulticast mode
[   90.881022][ T5885] syz_tun: left promiscuous mode
[   90.886107][ T5885] bridge0: port 1(syz_tun) entered disabled state
[   90.957812][ T5889] loop2: detected capacity change from 0 to 512
[   90.972731][ T5889] EXT4-fs (loop2): 1 orphan inode deleted
[   90.985975][ T5889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.994766][ T5889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.997797][ T5893] loop1: detected capacity change from 0 to 256
[   91.014432][ T5893] loop1: detected capacity change from 0 to 128
[   91.084555][ T5895] loop1: detected capacity change from 0 to 512
[   91.130731][ T5903] loop1: detected capacity change from 0 to 2048
[   91.138022][ T5903] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   91.353234][   T29] kauditd_printk_skb: 264 callbacks suppressed
[   91.353254][   T29] audit: type=1326 audit(91.338:6531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.382327][   T29] audit: type=1326 audit(91.338:6532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.412308][ T5918] loop3: detected capacity change from 0 to 256
[   91.413477][   T29] audit: type=1326 audit(91.388:6533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.441502][   T29] audit: type=1326 audit(91.388:6534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.464204][   T29] audit: type=1326 audit(91.388:6535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.486984][   T29] audit: type=1326 audit(91.388:6536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.509624][   T29] audit: type=1326 audit(91.388:6537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.532316][   T29] audit: type=1326 audit(91.388:6538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.555094][   T29] audit: type=1326 audit(91.388:6539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.577973][   T29] audit: type=1326 audit(91.388:6540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.4.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedf84ee929 code=0x7ffc0000
[   91.610604][ T5921] netlink: 'syz.4.858': attribute type 1 has an invalid length.
[   91.626000][ T5921] 8021q: adding VLAN 0 to HW filter on device bond4
[   91.666907][ T5916] vlan2: entered allmulticast mode
[   91.672147][ T5916] geneve1: entered allmulticast mode
[   91.680507][ T5916] bond4: (slave vlan2): making interface the new active one
[   91.691460][ T5916] bond4: (slave vlan2): Enslaving as an active interface with an up link
[   91.841718][ T5928] loop0: detected capacity change from 0 to 1024
[   91.852137][ T5928] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.862: Failed to acquire dquot type 0
[   91.864038][ T5928] EXT4-fs (loop0): 1 truncate cleaned up
[   91.899190][ T5931] loop0: detected capacity change from 0 to 256
[   91.910317][ T5934] loop4: detected capacity change from 0 to 128
[   91.911127][ T5931] loop0: detected capacity change from 0 to 128
[   91.917669][ T5934] EXT4-fs: Ignoring removed oldalloc option
[   91.945337][ T5931] syz.0.863: attempt to access beyond end of device
[   91.945337][ T5931] loop0: rw=0, sector=121, nr_sectors = 120 limit=128
[   91.971282][   T37] kworker/u8:2: attempt to access beyond end of device
[   91.971282][   T37] loop0: rw=1, sector=241, nr_sectors = 800 limit=128
[   92.003311][ T5937] loop0: detected capacity change from 0 to 1024
[   92.136084][ T5942] loop1: detected capacity change from 0 to 256
[   92.143198][ T5942] msdos: Unknown parameter 'dotsutable'
[   92.195438][ T5946] loop0: detected capacity change from 0 to 512
[   92.319675][ T5966] loop0: detected capacity change from 0 to 128
[   92.360124][ T5968] loop0: detected capacity change from 0 to 256
[   92.372898][ T5968] loop0: detected capacity change from 0 to 128
[   92.400013][ T5968] syz.0.874: attempt to access beyond end of device
[   92.400013][ T5968] loop0: rw=0, sector=121, nr_sectors = 120 limit=128
[   92.426637][   T37] kworker/u8:2: attempt to access beyond end of device
[   92.426637][   T37] loop0: rw=1, sector=241, nr_sectors = 800 limit=128
[   92.456741][ T5970] loop0: detected capacity change from 0 to 256
[   92.463718][ T5970] msdos: Unknown parameter 'dotsutable'
[   92.496659][ T5972] netlink: 8 bytes leftover after parsing attributes in process `syz.0.876'.
[   92.510281][ T5972] bridge0: port 2(macvlan2) entered blocking state
[   92.516981][ T5972] bridge0: port 2(macvlan2) entered disabled state
[   92.524948][ T5972] macvlan2: entered allmulticast mode
[   92.530366][ T5972] bridge0: entered allmulticast mode
[   92.536294][ T5972] macvlan2: left allmulticast mode
[   92.541596][ T5972] bridge0: left allmulticast mode
[   92.685227][ T5981] loop3: detected capacity change from 0 to 1024
[   92.694198][ T5981] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.880: Failed to acquire dquot type 0
[   92.707086][ T5981] EXT4-fs (loop3): 1 truncate cleaned up
[   92.785935][ T5985] loop3: detected capacity change from 0 to 512
[   93.048993][ T5997] loop1: detected capacity change from 0 to 2048
[   93.067112][ T5997] FAULT_INJECTION: forcing a failure.
[   93.067112][ T5997] name failslab, interval 1, probability 0, space 0, times 0
[   93.080004][ T5997] CPU: 1 UID: 0 PID: 5997 Comm: syz.1.883 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   93.080053][ T5997] Tainted: [W]=WARN
[   93.080060][ T5997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   93.080075][ T5997] Call Trace:
[   93.080083][ T5997]  <TASK>
[   93.080094][ T5997]  __dump_stack+0x1d/0x30
[   93.080121][ T5997]  dump_stack_lvl+0xe8/0x140
[   93.080174][ T5997]  dump_stack+0x15/0x1b
[   93.080269][ T5997]  should_fail_ex+0x265/0x280
[   93.080307][ T5997]  should_failslab+0x8c/0xb0
[   93.080331][ T5997]  __kmalloc_noprof+0xa5/0x3e0
[   93.080354][ T5997]  ? ext4_find_extent+0x16b/0x7a0
[   93.080530][ T5997]  ext4_find_extent+0x16b/0x7a0
[   93.080553][ T5997]  ? __smp_call_single_queue+0x10b/0x380
[   93.080595][ T5997]  ? folio_mark_accessed+0x240/0x3d0
[   93.080624][ T5997]  ext4_ext_map_blocks+0x11f/0x38a0
[   93.080651][ T5997]  ? find_get_block_common+0x736/0x960
[   93.080764][ T5997]  ? bdev_getblk+0x66/0x3d0
[   93.080791][ T5997]  ? ext4_get_group_desc+0x16b/0x190
[   93.080823][ T5997]  ? folio_mark_accessed+0x240/0x3d0
[   93.080856][ T5997]  ext4_map_query_blocks+0xa8/0x480
[   93.080890][ T5997]  ext4_map_blocks+0x3a1/0xd70
[   93.081047][ T5997]  ? kmem_cache_alloc_noprof+0x220/0x310
[   93.081072][ T5997]  ? alloc_buffer_head+0x1c3/0x1f0
[   93.081100][ T5997]  _ext4_get_block+0x10a/0x350
[   93.081178][ T5997]  ext4_get_block_unwritten+0x2a/0xb0
[   93.081208][ T5997]  ext4_block_write_begin+0x3d0/0xa60
[   93.081230][ T5997]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[   93.081285][ T5997]  ext4_convert_inline_data_to_extent+0x3de/0x7b0
[   93.081319][ T5997]  ext4_try_to_write_inline_data+0x54/0x90
[   93.081454][ T5997]  ext4_write_begin+0x148/0xd30
[   93.081479][ T5997]  ? ext4_mark_iloc_dirty+0xd3f/0xda0
[   93.081514][ T5997]  ? __ext4_journal_get_write_access+0x1d1/0x350
[   93.081545][ T5997]  ext4_da_write_begin+0x1e0/0x670
[   93.081571][ T5997]  ? balance_dirty_pages_ratelimited_flags+0x40b/0x5e0
[   93.081595][ T5997]  generic_perform_write+0x181/0x490
[   93.081693][ T5997]  ext4_buffered_write_iter+0x1ee/0x3c0
[   93.081715][ T5997]  ext4_file_write_iter+0x383/0xf00
[   93.081734][ T5997]  ? __kmalloc_noprof+0x1dd/0x3e0
[   93.081782][ T5997]  ? iovec_from_user+0x84/0x210
[   93.081802][ T5997]  ? iovec_from_user+0x179/0x210
[   93.081822][ T5997]  do_iter_readv_writev+0x421/0x4c0
[   93.081892][ T5997]  vfs_writev+0x2df/0x8b0
[   93.081920][ T5997]  __se_sys_pwritev2+0xfc/0x1c0
[   93.081938][ T5997]  __x64_sys_pwritev2+0x67/0x80
[   93.081955][ T5997]  x64_sys_call+0x1cea/0x2fb0
[   93.081996][ T5997]  do_syscall_64+0xd2/0x200
[   93.082011][ T5997]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   93.082043][ T5997]  ? clear_bhb_loop+0x40/0x90
[   93.082121][ T5997]  ? clear_bhb_loop+0x40/0x90
[   93.082140][ T5997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.082159][ T5997] RIP: 0033:0x7fc255b0e929
[   93.082206][ T5997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.082221][ T5997] RSP: 002b:00007fc254177038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   93.082237][ T5997] RAX: ffffffffffffffda RBX: 00007fc255d35fa0 RCX: 00007fc255b0e929
[   93.082264][ T5997] RDX: 0000000000000014 RSI: 0000200000000240 RDI: 0000000000000004
[   93.082278][ T5997] RBP: 00007fc254177090 R08: 0000000000000000 R09: 0000000000000003
[   93.082293][ T5997] R10: 0000000000007800 R11: 0000000000000246 R12: 0000000000000001
[   93.082322][ T5997] R13: 0000000000000000 R14: 00007fc255d35fa0 R15: 00007ffcb45f4f38
[   93.082345][ T5997]  </TASK>
[   93.639744][ T6017] netlink: 8 bytes leftover after parsing attributes in process `syz.4.889'.
[   93.666425][ T6017] bridge0: port 2(macvlan2) entered blocking state
[   93.673137][ T6017] bridge0: port 2(macvlan2) entered disabled state
[   93.688001][ T6017] macvlan2: entered allmulticast mode
[   93.693517][ T6017] bridge0: entered allmulticast mode
[   93.701026][ T6018] loop0: detected capacity change from 0 to 128
[   93.711797][ T6017] macvlan2: left allmulticast mode
[   93.717001][ T6017] bridge0: left allmulticast mode
[   93.721011][ T6018] EXT4-fs: Ignoring removed oldalloc option
[   93.796803][ T6023] loop4: detected capacity change from 0 to 128
[   93.810759][ T6023] EXT4-fs: dax option not supported
[   94.058948][ T6027] loop2: detected capacity change from 0 to 512
[   94.137896][ T6034] loop2: detected capacity change from 0 to 256
[   94.158756][ T6034] msdos: Unknown parameter 'dotsutable'
[   94.162681][ T6036] bond4: entered promiscuous mode
[   94.169462][ T6036] bond4: entered allmulticast mode
[   94.188973][ T6036] 8021q: adding VLAN 0 to HW filter on device bond4
[   94.217190][ T6036] bond4 (unregistering): Released all slaves
[   95.058426][ T6056] loop2: detected capacity change from 0 to 256
[   95.070661][ T6056] loop2: detected capacity change from 0 to 128
[   95.092486][ T6056] syz.2.901: attempt to access beyond end of device
[   95.092486][ T6056] loop2: rw=0, sector=121, nr_sectors = 120 limit=128
[   95.117205][ T3441] kworker/u8:7: attempt to access beyond end of device
[   95.117205][ T3441] loop2: rw=1, sector=241, nr_sectors = 800 limit=128
[   95.195556][ T6062] loop1: detected capacity change from 0 to 512
[   95.273290][ T6067] loop1: detected capacity change from 0 to 2048
[   95.292305][ T6067] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   95.399959][ T6077] loop1: detected capacity change from 0 to 256
[   95.423325][ T6079] bond1: entered promiscuous mode
[   95.424045][ T6077] loop1: detected capacity change from 0 to 128
[   95.428554][ T6079] bond1: entered allmulticast mode
[   95.433699][ T6079] 8021q: adding VLAN 0 to HW filter on device bond1
[   95.466738][ T6079] bond1 (unregistering): Released all slaves
[   95.524274][ T6077] syz.1.909: attempt to access beyond end of device
[   95.524274][ T6077] loop1: rw=0, sector=121, nr_sectors = 120 limit=128
[   95.587481][ T6085] loop3: detected capacity change from 0 to 256
[   95.601485][ T1729] kworker/u8:6: attempt to access beyond end of device
[   95.601485][ T1729] loop1: rw=1, sector=241, nr_sectors = 800 limit=128
[   95.632149][ T6085] loop3: detected capacity change from 0 to 128
[   95.713444][ T6085] syz.3.912: attempt to access beyond end of device
[   95.713444][ T6085] loop3: rw=0, sector=121, nr_sectors = 120 limit=128
[   95.750175][   T51] kworker/u8:3: attempt to access beyond end of device
[   95.750175][   T51] loop3: rw=1, sector=241, nr_sectors = 800 limit=128
[   95.805107][ T6092] loop2: detected capacity change from 0 to 256
[   95.824846][ T6092] loop2: detected capacity change from 0 to 128
[   95.877212][ T6098] capability: warning: `syz.2.916' uses deprecated v2 capabilities in a way that may be insecure
[   95.947348][ T6102] loop0: detected capacity change from 0 to 512
[   95.961599][ T6102] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.968823][ T6102] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   95.978854][ T6102] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[   95.986994][ T6102] System zones: 0-2, 18-18, 34-34
[   95.992867][ T6102] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.918: iget: bad i_size value: 360287970189639680
[   96.006163][ T6102] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.918: couldn't read orphan inode 15 (err -117)
[   96.020702][ T6101] ==================================================================
[   96.028838][ T6101] BUG: KCSAN: data-race in call_rcu / mas_state_walk
[   96.035553][ T6101] 
[   96.037884][ T6101] write to 0xffff888103d19a08 of 8 bytes by task 6102 on cpu 0:
[   96.045523][ T6101]  call_rcu+0x51/0x3f0
[   96.049617][ T6101]  mas_replace_node+0x2e7/0x410
[   96.054486][ T6101]  mas_wr_store_entry+0x2406/0x2b50
[   96.059707][ T6101]  mas_store_prealloc+0x74d/0x9e0
[   96.064759][ T6101]  vma_iter_store_new+0x1c5/0x200
[   96.069802][ T6101]  mmap_region+0x102c/0x1580
[   96.074407][ T6101]  do_mmap+0x9b3/0xbe0
[   96.078498][ T6101]  vm_mmap_pgoff+0x17a/0x2e0
[   96.083104][ T6101]  ksys_mmap_pgoff+0xc2/0x310
[   96.087804][ T6101]  x64_sys_call+0x1602/0x2fb0
[   96.092496][ T6101]  do_syscall_64+0xd2/0x200
[   96.097011][ T6101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.102919][ T6101] 
[   96.105253][ T6101] read to 0xffff888103d19a08 of 8 bytes by task 6101 on cpu 1:
[   96.112808][ T6101]  mas_state_walk+0x28f/0x650
[   96.117507][ T6101]  mas_walk+0x30/0x120
[   96.121600][ T6101]  lock_vma_under_rcu+0xa2/0x2f0
[   96.126557][ T6101]  do_user_addr_fault+0x233/0x1090
[   96.131694][ T6101]  exc_page_fault+0x62/0xa0
[   96.136218][ T6101]  asm_exc_page_fault+0x26/0x30
[   96.141080][ T6101] 
[   96.143408][ T6101] value changed: 0x0000555584768fff -> 0x0000000000000000
[   96.150521][ T6101] 
[   96.152847][ T6101] Reported by Kernel Concurrency Sanitizer on:
[   96.159022][ T6101] CPU: 1 UID: 0 PID: 6101 Comm: syz.0.918 Tainted: G        W           6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(voluntary) 
[   96.172927][ T6101] Tainted: [W]=WARN
[   96.176753][ T6101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   96.186819][ T6101] ==================================================================
[   96.391572][   T29] kauditd_printk_skb: 757 callbacks suppressed
[   96.391590][   T29] audit: type=1326 audit(96.378:7294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa1721f58e7 code=0x7ffc0000
[   96.420505][   T29] audit: type=1326 audit(96.378:7295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa17219ab19 code=0x7ffc0000
[   96.443124][   T29] audit: type=1326 audit(96.378:7296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7fa1721fe929 code=0x7ffc0000
[   96.466278][   T29] audit: type=1326 audit(96.448:7297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa1721f58e7 code=0x7ffc0000
[   96.488864][   T29] audit: type=1326 audit(96.448:7298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa17219ab19 code=0x7ffc0000
[   96.511442][   T29] audit: type=1326 audit(96.448:7299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7fa1721fe929 code=0x7ffc0000
[   96.534227][   T29] audit: type=1326 audit(96.498:7300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa1721f58e7 code=0x7ffc0000
[   96.556867][   T29] audit: type=1326 audit(96.498:7301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa17219ab19 code=0x7ffc0000
[   96.579589][   T29] audit: type=1326 audit(96.498:7302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7fa1721fe929 code=0x7ffc0000
[   96.602885][   T29] audit: type=1326 audit(96.538:7303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6103 comm="syz.2.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa1721f58e7 code=0x7ffc0000