last executing test programs:

4.590381741s ago: executing program 4 (id=1138):
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = io_uring_setup(0x3450, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1)

4.219265357s ago: executing program 4 (id=1144):
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002300"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r1 = getpid()
process_vm_readv(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004cc0)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)="a1", 0x1}], 0x1, &(0x7f0000000a40)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="0000000014"], 0x30, 0x40400d1}}], 0x1, 0x10)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x400000, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5ee936880fe8549b4ed347779cab4ffd4e0b62c53a1c01db28f2b3f91c34211c9353bc1dece61511917c2245fd66cb8dffeacb4d46d627c97b498bf1ff6b313bfbc9765457c831771d5eec7997ec242e4505f01c1bb3e069b2e630f42a2be86598a61", 0x64}, {&(0x7f0000000300)='V', 0x1}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000340)="b768eb20304f2fdc5a9694a4867840d93170ca1a86406f", 0xfffffec0}], 0x4, 0x0, 0x0, 0x8010}, 0x0)
dup2(r3, r2)
setsockopt$sock_attach_bpf(r3, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmmsg(r2, &(0x7f0000004b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000003600)=[{&(0x7f00000012c0)="23a0be3ec0d9edaccda531874ecf98434f3d10665f6e0346136984c1f2f15d", 0x1f}, {&(0x7f0000001300)="11ca5641cbf9577fa297e890dc4746449416908fa7066d54ca4ed8fb87a71d621ef53449e793c55ba58eab20a5044fd1ec07cc77e4e3bf3b8da2812b8943441c0c565de0c5dbc8c8", 0x48}, {&(0x7f0000001380)="190be02b544a87c33aa4aaaaabfccb6154043a8b5a2ea95211900186170c7a4f2651d264466253c5f9851a58793efcaf45a2c0f7546bf143b9bff46892f86a3e98e625eabbd1043b1e15036c9cf221d620f792d835bcad5a583cdd666c527279ce68530f3e71f6c170d033e0eec71d019b7058f398e887abb014e1930ffe52fe9b32fb847022f7298ba564e6fabd049f56aefe1e966ab30d411e62a5394c8bc6146b171d44ce5dc32018a6b0e15828d2e6853b3b2fec4d21c718e79ee351a06755a9", 0xc2}, {&(0x7f0000002600)="10470710797af31b3d0e1e5d6a8a110e205161c15b63824b139de0005a20e847b94c122dc2e7ceb6cbb49a3cd7566f32646afcf8d0cb3d9bfa22e3f3a3b148e4accb61dbd45b1f206df5ef5ecee238f9ad262d5b27bb5f6f2713e32ab61fcdcd949020bd434e6d341036403f2a0b5cc7e9e844d55c10298560ce5d8e3c0e37bef92616615a210f7f7ca721b98c72f7aab70e88c58d58325a1ff932b22d00258d180f70e8ba83721d8ed0020f0bc7dd6e32405f7868e06723b9873060e832da96acd114c36f07649a874991352a6ca8f0924acc4cd614e536c4560f619189b067160a802b90652e801b008c76cda51deb8dba72d7e375fa898c82e53b9ea45afef85aa3c903d6565f0c3b435b3d721de214f9ec539ab6d809c3732701ccf70b329ffab7d433f8e539b415d8691f7ec0a685792600d9908c003e1984328027937f98c3d8ff3ee434c25dec1341fb03f95aaf030d2cd52cdbc2b85586cba51526cd0f3eb6d46195102abe000e6ad1d381ecc3c9d9075009aa12c3bc56e5447add48ceb55f29b91c4cb628e1fae7d1812a43145607db3d23e90bb73ec12d99b7c642327b492d7038032e26804d36edb95b54366a2101e9419b7f98ddf654e2700d40c2f83ae492c15aa62069cdd321df874588ef8ad3b8d79a5d05c6e1785a14277af5ce69e15043b0d8579a7606f469bf6d157163bc09f7d281f295cff4cadce38fe24e2a420bc363c2a68e1d5594923d4285a40bb7aa96e655b10ad67656c2e340da3e8592b780b1950e63c9d600eb8d76e5ac3cd537d93132c57a2a43803dc28e04489a3ea68a71e52811000a6ebc5680cdb98af1e6ddc88562c442bc5c61060aa1b61486a6c84719d0d6b3f155b723471e70001138e4e023c89f00698aba1a3b38d5f69bee1fc076c75df92e3cb3ac41b2cbad30f4f7b746d80bd49e981a65d70f7631db375c445601a69d8f0fd1b174695fd670e8d0a82b420aab0356ba86f0e4572865505676acb5d81d215f3e37f62807ce97f5bc47bb747df70ae1589d806c9e51e5f5c8561605277f6dea51bfdf887d93f63a829ecfd18a4da3071af7d77d86591d407b156052f5a5dbbba74a16d041c6932373e71c4ad7ef06886e29e9139a687abf0f306e9e423f01e2ffb2758ba78b5ba69db675eb1dc55b60b052a48065d8cc3b66594d3351f1f7e99e294f49761f7db3a114fe680e4c9faec8bb4fdb70838dc73d3cd5c1a61f7f2f7a441a048e0aae3c7fd10b8df8d77fe861e9c241d54533091e1e9439a00820e84a609fb55ed6d02c7b1ffe904b907955d03345058bcaec1528b91532eb4dd0a1917514db1ca20607131efcac877242a5359ec0b21f343806f9fb672b51747dd6d8a649b9bd5f796efb6939680cbd619c3c8706ac883087b341726f9c6f64c98b0c9cb2d7737a8e08ded30d55c6541925b194f25ad1aa042f3db1c5501fc03b5d626f2e429e87435fdbfaad3e4949874bc8e70d0e0a2659557e19088617ab10e50fb4b1d99e6d2052596c363480ba99150979a744f489db9f56750e106224b9c4201d6815e322e1c30de74ce20345bbd3cd2d0b9e74b92b411763bb8c8664e031eb0b41f3e6282d23ae92eddf981c764112ba1e598920c12fed15e06e56cfd76a76d7ce6f7dab7c0d3b50e40f63e4895eabd964e74f9c7c5b9d61480f9055ff36ac5000ff8f7cb1", 0x4b4}], 0x4}}], 0x6, 0x200040d1)

3.30833368s ago: executing program 1 (id=1150):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

3.283177991s ago: executing program 1 (id=1151):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$eJzs3MGLG1UcB/Bf19rW1N2sWqstiA+96GVo9uBFL0G2IA0obSO0gjB1JxoyJiETFiJi9eTVv0M8ehPEm1724t/gbS8eexBHTNR2l3hYdDewfD6X/OD3vuQ9BgbeMG/23/jq40Gvynr5NNbOnIm1cUR6kCLFWvzt83j19R9/euHWnbs32p3O9s2Urrdvt15LKW28+P17n37z0g/Ti+9+u/Hd+djbfH//161f9i7vXdn//fZH/Sr1qzQcTVOe7o1G0/xeWaSdfjXIUnqnLPKqSP1hVUwO9HvlaDyepXy4s94YT4qqSvlwlgbFLE1HaTqZpfzDvD9MWZal9UbwX3S/flDXdURdPx7noq7r+oloxMV4MtZjI5qxGU/F0/FMXIpn43I8F8/HlfmoVc8bAAAAAAAAAAAAAAAAAAAAThfn/wEAAAAAAAAAAAAAAAAAAGD1bt25e6Pd6WzfTOlCRPnlbne3u/hd9Nu96EcZRVyLZvwW89P/C4v6+lud7WtpbjO+KO//lb+/233sYL41/5zA0nxrkU8H8+ej8Wh+K5pxaXl+a2n+Qrzy8iP5LJrx8wcxijJ24s/sw/xnrZTefLtzKH91Pg4AAABOgyz9Y+n+Pcv+rb/IH+H5wKH99dm4ena1ayeimn0yyMuymBxbcS6O/S8UCsX/XKz6zsRJeHjRVz0TAAAAAAAAAAAAjuIkXidc9RoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA/2IFjAQAAAABh/tZpdGwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBVAAAA//8xgdSv")
fsopen(0x0, 0x0)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000380), 0x210340, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="757466383d302c696f636861727365743d69736f383835392d312c666d61736b3d30303030303030303030303030303030303030303036362c756e695f786c6174653d312c756e695f786c6174653d302c726f6469722c73686f72746e616d653d6c6f7765722c756e695f786c6174653d302c757466383d302c757466383d312c73686f72746e616d653d77696e39352c726f6469722c6e66733d6e6f7374616c655f726f2c726f6469722c757466383d312c73686f72746e616d653d77696e6e742c636865636b3d72656c617865642c00c63b831754d4eeec4cf38c28cf1e3409b9950bbab09abe8d407d1c7c935e034461a37ac3113829124efad15a202673b20ad011cb0f0cedb0cef9f6ec5e2634db26ef8581fd506844d0133ac021c0172b4b36a109949512e8dc6a8c7d603e3ef3cd57451eaee1b0e4804b9ea88fcad7afb59594dcfeaf8d34935fa0e54a36c57d964429e7ec869287810e5d97759017ace0c3f5"], 0x6, 0x2c3, &(0x7f0000000900)="$eJzs3T+LHGUcB/Df7M3OrlrsFlYiOKCFVciltdlDEhCvMmyhFnqYC8jtItzBgX9wTWVrY2HhKxAEX4iN70CwFeyMEHhkZmeyu5dlcxuyJyafT5MnzzzfeX7Ps8PdXHHPffzq9OROGXfvffV79PtZdEYxivtZDKMTrW9ixei7AAD+z+6nFH+luW1yWUT0d1cWALBDl/v+ny+av1xJWQDADt1+/4N3Dw4Pb75Xlv24Nf32fFz9ZF/9O79+cDc+jUkcx/UYxIOI+kWhG/XbQtW8lVKa5WVlGG9MZ+fjKjn96Nfm/gd/RtT5/RjEsO56+LZR5985vLlfzi3lZ1UdLzbzj6r8jRjEyw/DK/kba/IxLuLN15fqvxaD+O2T+CwmcacuYpH/er8s307f//3lh1V5VT6bnY979biFtHfFHw0AAAAAAAAAAAAAAAAAAAAAAM+wa83ZOb2oz++puprzd/YeVP/pRtkarp7PM89n7Y2WzwdKKc1S/Nier3O9LMvUDFzk83glXz5YEAAAAAAAAAAAAAAAAAAAAJ5fZ59/cXI0mRyfPpVGexpAHhH/3I540vuMlnpei82De82cR5NJp2mujsmXe2KvHZNFbCyjWsST7kYeW639hUdqbho//bzt7P3Hj+mun+tpNtqn6+QoW7+HvWh7+s1G/VBELMYUccm5ios9aTC/T9rqIyjWXhpsvfbipbox2zAmsk2FvfXHfOeanuziKop6V9fGu01jKX7h2bjU8xz9efzRrxWZ0zoAAAAAAAAAAAAAAAAAAGCnFr/9u+bivY3RTurtrCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuFKLv/+/RWPWhI9Pz/LHDC7i9Ow/XiIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADPgX8DAAD//x0KWZ8=")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0xb6c2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

3.236304502s ago: executing program 4 (id=1153):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x2000000, &(0x7f0000000080), 0x1, 0x45f, &(0x7f0000001300)="$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")
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYRES16=r0, @ANYRES32, @ANYRESOCT], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r1}, &(0x7f0000000680), &(0x7f00000006c0)}, 0x20)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000004c0)={0x0, r2}, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYRES8=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000980)={{r3}, &(0x7f0000000580), &(0x7f0000000940)=r4}, 0x20)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r6}, &(0x7f0000000800), &(0x7f0000000840)=r7}, 0x20)
r8 = socket(0x10, 0x3, 0x0)
connect$netlink(r8, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r8, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x30, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x3, 0xfc, "0062ba7d820000000001001f820dac4eb71f11"})
r9 = syz_open_pts(r5, 0x0)
r10 = dup(r9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1e, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r11}, 0x10)
clock_gettime(0xa00, 0x0)
fsetxattr$security_selinux(r10, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000200)={'vcan0\x00', 0x4000})

2.944078576s ago: executing program 0 (id=1155):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @union]}}, 0x0, 0x36, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r1, 0x0, 0x0, 0xfff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000040), &(0x7f00000000c0)=0xc)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x2000044, &(0x7f0000000040)={[{@max_batch_time={'max_batch_time', 0x3d, 0x8}}, {@jqfmt_vfsold}, {@quota}]}, 0x2, 0x500, &(0x7f0000000b00)="$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")
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x13)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r3, r3, 0x1e, 0x0, @val=@netfilter={0x5, 0x0, 0x8, 0x1}}, 0x20)
clock_gettime(0x6, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
write$vga_arbiter(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="746172676574205043493a373a623231612e3500cc919fb1dd2fae31065c9237d7aef634e0962c545af07d003598d6"], 0x14)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)
sendmsg$nl_generic(r2, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f0000000000)={'wg0\x00'})
syz_emit_ethernet(0x6e, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x5dc, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @loopback={0x4000000}, @local, [@srh={0x2b, 0x0, 0x4, 0x0, 0x0, 0x10}]}}}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_ext={0x1c, 0x3, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe3c2, 0x0, 0x0, 0x0, 0x8}}, &(0x7f00000001c0)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000240)={0xa, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x1d0cd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x81, @void, @value}, 0x94)

2.630031311s ago: executing program 4 (id=1158):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="00e789da34e04a1ffbc2f05cefeb4ee6d5ae1071124b2c2fb684f5c7ac05000000c7880f67e775c748f6381a3e01e7f93330b30b90bbb4d2b697899a16f2df4fa2a8f06ac2c5352ddcae2b83672ef3d9f532e55f4e798924ac6332751e737383f6890d2dcfcbdbd41940a64c7b4374674e7bb6dd0d1b8d3d62f6d77b0282e166e2ce4c353d2d4d315a81146bf46a1508ef0d2ddc7d0b447fe17b85b292d13cea2256a16cab12d75a852bc680da7ea837480feb2e0500001e0000000000003bc18c52d0351cd285197b0641569048b5b416ba1c570000000000100083794afff0a9eed63b1226b18c4b455ab222d7ae1be52a22e8ec8bf2c0c7d99770415863f50aa18bcb66061a29bc55105f3482ed752f882d224a386b51836c1b437036b677156e22e174ff516dbab0b2cdf52bee43c4ffffffffffffffffd9487b8663a339b98df63b4bf3e97f02d6f1e7e65f968dd90841506355d9ac40f1b434c8a9b5bd91a70c53a5aadbebd9ed9d0a55bd47a967163e0c02753f8895bfbf1b41b5490667c241068d59983ae1d0f03e650f5357425284b76d793e25a2558fa437e38b8200000000630000000000000000000000000000000000000000000000e911000000000066e073c14bb74617079e0b6ecfc830db14244567fd8f4e4e5903eaf983786e28295783f130b95dc37f59a658000e88047db7783ce8a9cba6c255902cfb83946ea3f5f7a8cee911b2b37ae4b01e65ea86d5ea7ae17b2a9bc250c9b8fc9fbc04617939bdd13457954172d18701768f8a461bee740f2d82ae566d2e30a93ad2b201a6d16a93c75a950cc437e7f25d3aadddb8edd028d84490b6bafd636aa4fb482a8a4b3987dafe58e742448c4b36b03790090198145dee533257bb9050554f8cace210a5bc5c768f83e99019f7c00ff9ca679768dbba3f7d21c545c99c2f7688f7030fe37121d625d1f81018feb74c9d48eebdf1702550b097271ab9bd38c62f4b31fd9482c05ba0", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$eJzs3MGLG1UcB/Bf19rW1N2sWqstiA+96GVo9uBFL0G2IA0obSO0gjB1JxoyJiETFiJi9eTVv0M8ehPEm1724t/gbS8eexBHTNR2l3hYdDewfD6X/OD3vuQ9BgbeMG/23/jq40Gvynr5NNbOnIm1cUR6kCLFWvzt83j19R9/euHWnbs32p3O9s2Urrdvt15LKW28+P17n37z0g/Ti+9+u/Hd+djbfH//161f9i7vXdn//fZH/Sr1qzQcTVOe7o1G0/xeWaSdfjXIUnqnLPKqSP1hVUwO9HvlaDyepXy4s94YT4qqSvlwlgbFLE1HaTqZpfzDvD9MWZal9UbwX3S/flDXdURdPx7noq7r+oloxMV4MtZjI5qxGU/F0/FMXIpn43I8F8/HlfmoVc8bAAAAAAAAAAAAAAAAAAAAThfn/wEAAAAAAAAAAAAAAAAAAGD1bt25e6Pd6WzfTOlCRPnlbne3u/hd9Nu96EcZRVyLZvwW89P/C4v6+lud7WtpbjO+KO//lb+/233sYL41/5zA0nxrkU8H8+ej8Wh+K5pxaXl+a2n+Qrzy8iP5LJrx8wcxijJ24s/sw/xnrZTefLtzKH91Pg4AAABOgyz9Y+n+Pcv+rb/IH+H5wKH99dm4ena1ayeimn0yyMuymBxbcS6O/S8UCsX/XKz6zsRJeHjRVz0TAAAAAAAAAAAAjuIkXidc9RoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA/2IFjAQAAAABh/tZpdGwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBVAAAA//8xgdSv")
fsopen(0x0, 0x0)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000380), 0x210340, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="757466383d302c696f636861727365743d69736f383835392d312c666d61736b3d30303030303030303030303030303030303030303036362c756e695f786c6174653d312c756e695f786c6174653d302c726f6469722c73686f72746e616d653d6c6f7765722c756e695f786c6174653d302c757466383d302c757466383d312c73686f72746e616d653d77696e39352c726f6469722c6e66733d6e6f7374616c655f726f2c726f6469722c757466383d312c73686f72746e616d653d77696e6e742c636865636b3d72656c617865642c00c63b831754d4eeec4cf38c28cf1e3409b9950bbab09abe8d407d1c7c935e034461a37ac3113829124efad15a202673b20ad011cb0f0cedb0cef9f6ec5e2634db26ef8581fd506844d0133ac021c0172b4b36a109949512e8dc6a8c7d603e3ef3cd57451eaee1b0e4804b9ea88fcad7afb59594dcfeaf8d34935fa0e54a36c57d964429e7ec869287810e5d97759017ace0c3f5"], 0x6, 0x2c3, &(0x7f0000000900)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0xb6c2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

2.420087284s ago: executing program 0 (id=1159):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000080)=@framed={{0x18, 0x3}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @initr0, @generic={0x65}, @initr0={0x18, 0x0, 0x0, 0x0, 0x20000000}, @exit, @alu={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.368825895s ago: executing program 1 (id=1160):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0xa, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
syz_io_uring_setup(0xbc2, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1af}, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001480)=ANY=[@ANYBLOB="1c0000003e000701fcfffffffadbdf25017c000006"], 0x1c}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

2.364997825s ago: executing program 3 (id=1162):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

2.329816015s ago: executing program 0 (id=1163):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000008850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x7, 0x0, 0x7fff0000}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f00000006c0)={[{@errors_remount}, {@sysvgroups}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000001000)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0xe4)
r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x3)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000240)={0x3920e, r2, 0x18, 0x0, 0x2})
r4 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
ioctl$TIOCSETD(r4, 0x5423, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
r6 = io_uring_setup(0xad5, &(0x7f0000000040)={0x0, 0xfffffffc})
close(r6)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ffb000/0x4000)=nil)
clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000004c0)='kfree\x00', r7}, 0x10)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001480)=@newsa={0xf0, 0x10, 0x713, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x5e}, {@in6=@loopback, 0x4d4, 0x32}, @in=@dev, {0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4da}, {0x0, 0x200000000, 0x0, 0x100000}, {}, 0x1, 0x0, 0x2, 0x1}}, 0xf0}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
memfd_secret(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
cachestat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$TIOCGETD(r9, 0x5424, &(0x7f0000000080))

2.296929786s ago: executing program 3 (id=1164):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r1, &(0x7f0000000240), 0xfffffecc)
ioctl$TIOCSSOFTCAR(r1, 0x541a, &(0x7f0000000000)=0x81d)

2.259806186s ago: executing program 1 (id=1165):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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")
fsopen(0x0, 0x0)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000380), 0x210340, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r3 = getpid()
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x6, 0x2c3, &(0x7f0000000900)="$eJzs3T+LHGUcB/Df7M3OrlrsFlYiOKCFVciltdlDEhCvMmyhFnqYC8jtItzBgX9wTWVrY2HhKxAEX4iN70CwFeyMEHhkZmeyu5dlcxuyJyafT5MnzzzfeX7Ps8PdXHHPffzq9OROGXfvffV79PtZdEYxivtZDKMTrW9ixei7AAD+z+6nFH+luW1yWUT0d1cWALBDl/v+ny+av1xJWQDADt1+/4N3Dw4Pb75Xlv24Nf32fFz9ZF/9O79+cDc+jUkcx/UYxIOI+kWhG/XbQtW8lVKa5WVlGG9MZ+fjKjn96Nfm/gd/RtT5/RjEsO56+LZR5985vLlfzi3lZ1UdLzbzj6r8jRjEyw/DK/kba/IxLuLN15fqvxaD+O2T+CwmcacuYpH/er8s307f//3lh1V5VT6bnY979biFtHfFHw0AAAAAAAAAAAAAAAAAAAAAAM+wa83ZOb2oz++puprzd/YeVP/pRtkarp7PM89n7Y2WzwdKKc1S/Nier3O9LMvUDFzk83glXz5YEAAAAAAAAAAAAAAAAAAAAJ5fZ59/cXI0mRyfPpVGexpAHhH/3I540vuMlnpei82De82cR5NJp2mujsmXe2KvHZNFbCyjWsST7kYeW639hUdqbho//bzt7P3Hj+mun+tpNtqn6+QoW7+HvWh7+s1G/VBELMYUccm5ios9aTC/T9rqIyjWXhpsvfbipbox2zAmsk2FvfXHfOeanuziKop6V9fGu01jKX7h2bjU8xz9efzRrxWZ0zoAAAAAAAAAAAAAAAAAAGCnFr/9u+bivY3RTurtrCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuFKLv/+/RWPWhI9Pz/LHDC7i9Ow/XiIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADPgX8DAAD//x0KWZ8=")
r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0xb6c2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x18)
unshare(0x20020000)
syz_io_uring_setup(0x4169, 0x0, 0x0, &(0x7f0000000040)=<r9=>0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x9, &(0x7f00000001c0)=0xffffffff, 0x4)
syz_io_uring_submit(0x0, r9, 0x0)
io_uring_register$IORING_REGISTER_NAPI(r4, 0x1b, &(0x7f00000002c0)={0x800}, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

1.97818434s ago: executing program 2 (id=1166):
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = io_uring_setup(0x3450, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1)

1.579718266s ago: executing program 2 (id=1167):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r1, @ANYRESDEC=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c757466383d302c757365667265652c646973636172642c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c756e695f786c6174653d302c756e695f786c6174653d302c0008442895b66131b4e4d54b2ba6ae54dabaa5206d4a2a060b5ccc774b3ec4c81a1a9852327ff871d16d0d9344e764c68194b9d9d0be76c595bac1fc5a0a8256a7b77e071e9bdd6100f9aeb8576d329be6e4bb168f1434000000", @ANYRESHEX=0x0], 0xfd, 0x296, &(0x7f0000001080)="$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")
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
faccessat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x5, 0x300)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r5=>r0, {0xc}}, './file0\x00'})
read$ptp(r5, &(0x7f0000000280)=""/68, 0x44)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000ac0)={0x14, 0x1, 0x3, 0x101}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0xfffffffffff7bbfe, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000040)='fib6_table_lookup\x00', r6}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x89f1, &(0x7f0000000080))

1.473792608s ago: executing program 0 (id=1168):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000080)=@framed={{0x18, 0x3}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @initr0, @generic={0x65}, @initr0={0x18, 0x0, 0x0, 0x0, 0x20000000}, @exit, @alu={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.410077529s ago: executing program 3 (id=1169):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000000c00"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000050c00280eeb555d4c66d17ee18f700bfa200000000000007020000f8ffff0000000000008e0000000100"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0xfffffffffffffe36, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000200), &(0x7f0000000800)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000002500)='\f7', 0x2}, {&(0x7f0000000000)='0', 0x1}], 0x2)

1.409304699s ago: executing program 3 (id=1170):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @union]}}, 0x0, 0x36, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r1, 0x0, 0x0, 0xfff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000040), &(0x7f00000000c0)=0xc)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x2000044, &(0x7f0000000040)={[{@max_batch_time={'max_batch_time', 0x3d, 0x8}}, {@jqfmt_vfsold}, {@quota}]}, 0x2, 0x500, &(0x7f0000000b00)="$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")
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x13)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r3, r3, 0x1e, 0x0, @val=@netfilter={0x5, 0x0, 0x8, 0x1}}, 0x20)
clock_gettime(0x6, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
write$vga_arbiter(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="746172676574205043493a373a623231612e3500cc919fb1dd2fae31065c9237d7aef634e0962c545af07d003598d6"], 0x14)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)
sendmsg$nl_generic(r2, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f0000000000)={'wg0\x00'})
syz_emit_ethernet(0x6e, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x5dc, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @loopback={0x4000000}, @local, [@srh={0x2b, 0x0, 0x4, 0x0, 0x0, 0x10}]}}}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_ext={0x1c, 0x3, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe3c2, 0x0, 0x0, 0x0, 0x8}}, &(0x7f00000001c0)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000240)={0xa, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x1d0cd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x81, @void, @value}, 0x94)

1.307174211s ago: executing program 1 (id=1171):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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")
fsopen(0x0, 0x0)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000380), 0x210340, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x6, 0x2c3, &(0x7f0000000900)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0xb6c2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

1.267336691s ago: executing program 0 (id=1172):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) (fail_nth: 1)

1.248376451s ago: executing program 3 (id=1173):
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, 0x0, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r0 = openat$ppp(0xffffffffffffff9c, 0x0, 0x800, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$key(0xf, 0x3, 0x2)
unshare(0x2a020400)
pipe(&(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
vmsplice(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)='=', 0x1}], 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x2000, 0xf, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x18)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000001040)=ANY=[@ANYBLOB="38010000100013070000000000000000ffffffff000000000000000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032000000ff0100000000000000000000000000010000000000000000862300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000159e000000000000000000000a000200000000000000000048000200656362286369706865725f6e756c6c29"], 0x138}, 0x1, 0xe}, 0x40000)
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000780)={0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone3(&(0x7f0000000340)={0x20000000, 0x0, 0x0, 0x0, {0xb}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.194279072s ago: executing program 2 (id=1174):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

1.165924003s ago: executing program 2 (id=1175):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000080)=@framed={{0x18, 0x3}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @initr0, @generic={0x65}, @initr0={0x18, 0x0, 0x0, 0x0, 0x20000000}, @exit, @alu={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.145926193s ago: executing program 4 (id=1176):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$eJzs3MGLG1UcB/Bf19rW1N2sWqstiA+96GVo9uBFL0G2IA0obSO0gjB1JxoyJiETFiJi9eTVv0M8ehPEm1724t/gbS8eexBHTNR2l3hYdDewfD6X/OD3vuQ9BgbeMG/23/jq40Gvynr5NNbOnIm1cUR6kCLFWvzt83j19R9/euHWnbs32p3O9s2Urrdvt15LKW28+P17n37z0g/Ti+9+u/Hd+djbfH//161f9i7vXdn//fZH/Sr1qzQcTVOe7o1G0/xeWaSdfjXIUnqnLPKqSP1hVUwO9HvlaDyepXy4s94YT4qqSvlwlgbFLE1HaTqZpfzDvD9MWZal9UbwX3S/flDXdURdPx7noq7r+oloxMV4MtZjI5qxGU/F0/FMXIpn43I8F8/HlfmoVc8bAAAAAAAAAAAAAAAAAAAAThfn/wEAAAAAAAAAAAAAAAAAAGD1bt25e6Pd6WzfTOlCRPnlbne3u/hd9Nu96EcZRVyLZvwW89P/C4v6+lud7WtpbjO+KO//lb+/233sYL41/5zA0nxrkU8H8+ej8Wh+K5pxaXl+a2n+Qrzy8iP5LJrx8wcxijJ24s/sw/xnrZTefLtzKH91Pg4AAABOgyz9Y+n+Pcv+rb/IH+H5wKH99dm4ena1ayeimn0yyMuymBxbcS6O/S8UCsX/XKz6zsRJeHjRVz0TAAAAAAAAAAAAjuIkXidc9RoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA/2IFjAQAAAABh/tZpdGwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBVAAAA//8xgdSv")
fsopen(0x0, 0x0)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000380), 0x210340, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x6, 0x2c3, &(0x7f0000000900)="$eJzs3T+LHGUcB/Df7M3OrlrsFlYiOKCFVciltdlDEhCvMmyhFnqYC8jtItzBgX9wTWVrY2HhKxAEX4iN70CwFeyMEHhkZmeyu5dlcxuyJyafT5MnzzzfeX7Ps8PdXHHPffzq9OROGXfvffV79PtZdEYxivtZDKMTrW9ixei7AAD+z+6nFH+luW1yWUT0d1cWALBDl/v+ny+av1xJWQDADt1+/4N3Dw4Pb75Xlv24Nf32fFz9ZF/9O79+cDc+jUkcx/UYxIOI+kWhG/XbQtW8lVKa5WVlGG9MZ+fjKjn96Nfm/gd/RtT5/RjEsO56+LZR5985vLlfzi3lZ1UdLzbzj6r8jRjEyw/DK/kba/IxLuLN15fqvxaD+O2T+CwmcacuYpH/er8s307f//3lh1V5VT6bnY979biFtHfFHw0AAAAAAAAAAAAAAAAAAAAAAM+wa83ZOb2oz++puprzd/YeVP/pRtkarp7PM89n7Y2WzwdKKc1S/Nier3O9LMvUDFzk83glXz5YEAAAAAAAAAAAAAAAAAAAAJ5fZ59/cXI0mRyfPpVGexpAHhH/3I540vuMlnpei82De82cR5NJp2mujsmXe2KvHZNFbCyjWsST7kYeW639hUdqbho//bzt7P3Hj+mun+tpNtqn6+QoW7+HvWh7+s1G/VBELMYUccm5ios9aTC/T9rqIyjWXhpsvfbipbox2zAmsk2FvfXHfOeanuziKop6V9fGu01jKX7h2bjU8xz9efzRrxWZ0zoAAAAAAAAAAAAAAAAAAGCnFr/9u+bivY3RTurtrCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuFKLv/+/RWPWhI9Pz/LHDC7i9Ow/XiIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADPgX8DAAD//x0KWZ8=")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0xb6c2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

1.081569634s ago: executing program 2 (id=1177):
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = io_uring_setup(0x3450, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1)

213.226057ms ago: executing program 0 (id=1178):
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000900)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f00000002c0)='./file0\x00')
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)={0x20, 0x2, 0x1, 0x201, 0x0, 0x0, {0x3, 0x0, 0x46}, [@CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x1}, @CTA_TUPLE_ORIG={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4048000}, 0xc000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x18, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x80000000}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r3, &(0x7f0000003280)={0x1, 0x10, 0xfa00, {0x0}}, 0x18)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
sendfile(r3, r2, 0x0, 0x7ffff000)
fallocate(r0, 0x1, 0x0, 0x1001f0)

212.625267ms ago: executing program 1 (id=1179):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
openat2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$selinux_create(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x242002, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200080, &(0x7f0000000080), 0x3, 0x56d, &(0x7f0000000c00)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000005980)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x44}, 0x0) (fail_nth: 1)
sendmsg$NFT_MSG_GETCHAIN(r1, 0x0, 0x0)

161.757218ms ago: executing program 2 (id=1180):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000380)='svcrdma_encode_wseg\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x1)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x1}, 0x4) (async)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x1}, 0x4)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @random="e5db029ea53c"}) (async)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @random="e5db029ea53c"})
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000240)=ANY=[], 0xffdd) (async)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000240)=ANY=[], 0xffdd)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) (async)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x1007, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], 0x0)
syz_read_part_table(0x60d, &(0x7f0000002240)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xc082, 0x1db)
writev(r5, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x100000}], 0x1) (async)
writev(r5, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x100000}], 0x1)
futex(0x0, 0x85, 0x3, 0x0, 0x0, 0xe5fffffd)
bind$netlink(r0, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x2fffffffd}, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(r1)
openat$selinux_context(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) (async)
openat$selinux_context(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000800000000000000000018"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$kcm(0x11, 0x3, 0x0) (async)
r6 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r6, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r6, &(0x7f0000000040)={&(0x7f0000000280)=@caif=@dgm={0x25, 0x9, 0x9}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000580)="6204270059020000000005000000bcf706e12b30087f5c582d26196642c47a5f8786ee601e65ab3c06d4b8bf4a81cb3e247345af215542f41ddf82f618438a34f90186cee8441e2305e495d04ad68ab8fef69df82de6456fbb48b63f60c9c9097be968ea872c4801e5d0711b4373c7224ed7a9cbd49d40f82bdb6afc0036824be26fc96e49a70e90797e6caa1b38ddacb3cb2b3eac7c068a185b644582f25edfa3d6a46e2a894ca809a422a6a29bd7145bb6e7992570484d6a710292ea0c3f97b7cbff701684b13c5593262534a7af9eab48f2ca2d74d9a4de33", 0xda}, {&(0x7f0000000840)="294f28dfe56d2c8ba23606bc7ecd1f634665cb5bed07bac5684da6eb21da1d6926910c5a0c653b0106869a8049d2a44ce42557b2e72e2bd367e9d01a5e7380cc4fc8e7c9044cc4115b978ca7427d749beaefdf2e48b369cb169ad7b1ced26bb161297c7e56a3e83e91b379c179017f8b4657d1b22eca6bca33036d33e1a684059c5301001ca6637ac780ab2bcfc22a666cd4e5876f11e9aee4724b7cb59731c97e70ebd7f7483994eb07de2f5d6a9448c3206cff6d290b433f331c2399e99ee3bdecf5689eddc3e54908000000a933bbc47b65ca6e9d7efbee6e3b1dbe87313111e85336d6890002db17751b6044f964dc90ea466f90856112be7f0a54b39a3f66cc4c39544300093158af39cdde429f50d8c7fbc0efaccca18e94b87dc586ee60baa55469755ab00e92b607f2aeee00ad72fb29c1847f85b2f8ec3a34864b18eaaa131a4940c9af11606e5d9360c3f4a2c8308d50c34b1bbaac018469ac346dc2a539e20350297097e7bf21ea0c2a0aa083b2b3543af05c7fb5391a1c81304b520fafb941b2dc3cfb03c3dd8567a459752a5ca573ee7cf4f518af508d141c98dc9914df1521e9ee49decdf2418e7f74adea9fda805bc75906dafd279aee36397966427cdef205c67fbbb3d5", 0x1cc}, {&(0x7f0000000240)="0a985d1d79f1a4808522ea9d683db55887d78e0ee8c6461be13ffb947d06000000000000002f070c5972a678243d296da511560df0c2", 0x36}], 0x3}, 0x8006)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{}, &(0x7f0000000040), &(0x7f0000000140)}, 0x20) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{}, &(0x7f0000000040), &(0x7f0000000140)}, 0x20)
r7 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x50)

161.081988ms ago: executing program 3 (id=1181):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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")
fsopen(0x0, 0x0)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000380), 0x210340, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r3 = getpid()
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x6, 0x2c3, &(0x7f0000000900)="$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")
r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0xb6c2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x18)
unshare(0x20020000)
syz_io_uring_setup(0x4169, 0x0, 0x0, &(0x7f0000000040)=<r9=>0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x9, &(0x7f00000001c0)=0xffffffff, 0x4)
syz_io_uring_submit(0x0, r9, 0x0)
io_uring_register$IORING_REGISTER_NAPI(r4, 0x1b, &(0x7f00000002c0)={0x800}, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

0s ago: executing program 4 (id=1182):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000080)=@framed={{0x18, 0x3}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @initr0, @generic={0x65}, @initr0={0x18, 0x0, 0x0, 0x0, 0x20000000}, @exit, @alu={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

kernel console output (not intermixed with test programs):

  73.227045][   T29] kauditd_printk_skb: 139 callbacks suppressed
[   73.227059][   T29] audit: type=1107 audit(1745169876.830:1806): pid=5101 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='@'
[   73.259572][ T3381] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   73.320929][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.362988][   T29] audit: type=1326 audit(1745169877.310:1807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb907e8e169 code=0x7ffc0000
[   73.416929][   T29] audit: type=1326 audit(1745169877.340:1808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb907e8e169 code=0x7ffc0000
[   73.440346][   T29] audit: type=1326 audit(1745169877.340:1809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fb907e8e169 code=0x7ffc0000
[   73.463832][   T29] audit: type=1326 audit(1745169877.340:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb907e8e169 code=0x7ffc0000
[   73.487253][   T29] audit: type=1326 audit(1745169877.340:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb907e8e169 code=0x7ffc0000
[   73.510600][   T29] audit: type=1326 audit(1745169877.340:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb907e8e169 code=0x7ffc0000
[   73.533931][   T29] audit: type=1326 audit(1745169877.340:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb907e8e169 code=0x7ffc0000
[   73.557261][   T29] audit: type=1326 audit(1745169877.340:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb907e8e169 code=0x7ffc0000
[   73.580711][   T29] audit: type=1326 audit(1745169877.340:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb907e8e169 code=0x7ffc0000
[   73.641250][ T5138] loop3: detected capacity change from 0 to 2048
[   73.644538][ T5136] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5136 comm=syz.2.574
[   73.693209][ T5138] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.722818][ T5142] loop4: detected capacity change from 0 to 512
[   73.775242][ T5142] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   73.849357][ T5142] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   73.862111][ T5142] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.953825][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   74.025081][ T5162] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[   74.195044][ T5178] loop4: detected capacity change from 0 to 2048
[   74.220741][ T5178] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.342706][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.512047][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.972226][ T5224] loop1: detected capacity change from 0 to 2048
[   75.010408][ T5227] loop2: detected capacity change from 0 to 512
[   75.030439][ T5224] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.053834][ T5227] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   75.082427][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.121272][ T5227] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   75.169112][ T5227] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.184064][ T5236] loop1: detected capacity change from 0 to 128
[   75.239620][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   75.305295][ T5238] loop4: detected capacity change from 0 to 512
[   75.313479][ T5240] loop2: detected capacity change from 0 to 2048
[   75.325545][ T5238] EXT4-fs: Ignoring removed oldalloc option
[   75.331595][ T5238] EXT4-fs: Ignoring removed nobh option
[   75.373643][ T5240] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.393232][ T5238] EXT4-fs error (device loop4): ext4_orphan_get:1390: inode #15: comm syz.4.618: iget: bad extended attribute block 1
[   75.413755][ T5238] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.618: couldn't read orphan inode 15 (err -117)
[   75.497693][ T5261] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[   75.505815][ T5238] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.543386][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.730317][ T5267] FAULT_INJECTION: forcing a failure.
[   75.730317][ T5267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.743673][ T5267] CPU: 1 UID: 0 PID: 5267 Comm: syz.1.629 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   75.743700][ T5267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   75.743715][ T5267] Call Trace:
[   75.743722][ T5267]  <TASK>
[   75.743730][ T5267]  dump_stack_lvl+0xf6/0x150
[   75.743808][ T5267]  dump_stack+0x15/0x1a
[   75.743830][ T5267]  should_fail_ex+0x261/0x270
[   75.743860][ T5267]  should_fail+0xb/0x10
[   75.743956][ T5267]  should_fail_usercopy+0x1a/0x20
[   75.743988][ T5267]  _copy_from_user+0x1c/0xa0
[   75.744023][ T5267]  copy_msghdr_from_user+0x54/0x2b0
[   75.744103][ T5267]  ? __fget_files+0x186/0x1c0
[   75.744132][ T5267]  __sys_sendmsg+0x141/0x240
[   75.744177][ T5267]  __x64_sys_sendmsg+0x46/0x50
[   75.744259][ T5267]  x64_sys_call+0x26f3/0x2e10
[   75.744350][ T5267]  do_syscall_64+0xc9/0x1a0
[   75.744374][ T5267]  ? clear_bhb_loop+0x25/0x80
[   75.744394][ T5267]  ? clear_bhb_loop+0x25/0x80
[   75.744465][ T5267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.744491][ T5267] RIP: 0033:0x7fb907e8e169
[   75.744509][ T5267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.744598][ T5267] RSP: 002b:00007fb9064f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.744616][ T5267] RAX: ffffffffffffffda RBX: 00007fb9080b5fa0 RCX: 00007fb907e8e169
[   75.744627][ T5267] RDX: 0000000000000000 RSI: 00002000000037c0 RDI: 0000000000000003
[   75.744640][ T5267] RBP: 00007fb9064f7090 R08: 0000000000000000 R09: 0000000000000000
[   75.744654][ T5267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.744668][ T5267] R13: 0000000000000000 R14: 00007fb9080b5fa0 R15: 00007ffc273052c8
[   75.744751][ T5267]  </TASK>
[   75.756368][ T5269] loop4: detected capacity change from 0 to 512
[   75.934751][ T5269] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   75.951211][ T5271] loop1: detected capacity change from 0 to 128
[   76.014785][ T5269] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   76.040375][ T5269] ext4 filesystem being mounted at /117/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.101545][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   76.157755][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.226972][ T5283] loop2: detected capacity change from 0 to 512
[   76.274322][ T5283] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.290421][ T5283] ext4 filesystem being mounted at /137/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   76.353898][ T5298] loop1: detected capacity change from 0 to 128
[   76.493831][ T5312] FAULT_INJECTION: forcing a failure.
[   76.493831][ T5312] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.493857][ T5312] CPU: 1 UID: 0 PID: 5312 Comm: syz.1.646 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   76.493886][ T5312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   76.493897][ T5312] Call Trace:
[   76.493902][ T5312]  <TASK>
[   76.493909][ T5312]  dump_stack_lvl+0xf6/0x150
[   76.493951][ T5312]  dump_stack+0x15/0x1a
[   76.494058][ T5312]  should_fail_ex+0x261/0x270
[   76.494083][ T5312]  should_fail+0xb/0x10
[   76.494101][ T5312]  should_fail_usercopy+0x1a/0x20
[   76.494123][ T5312]  _copy_from_user+0x1c/0xa0
[   76.494253][ T5312]  copy_from_sockptr_offset+0x6d/0xb0
[   76.494297][ T5312]  do_ipt_set_ctl+0x5ba/0x830
[   76.494329][ T5312]  ? _raw_spin_unlock_bh+0x36/0x40
[   76.494483][ T5312]  nf_setsockopt+0x195/0x1b0
[   76.494511][ T5312]  ip_setsockopt+0xea/0x100
[   76.494547][ T5312]  tcp_setsockopt+0x93/0xb0
[   76.494593][ T5312]  sock_common_setsockopt+0x64/0x80
[   76.494700][ T5312]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   76.494743][ T5312]  __sys_setsockopt+0x187/0x200
[   76.494787][ T5312]  __x64_sys_setsockopt+0x66/0x80
[   76.494815][ T5312]  x64_sys_call+0x2a09/0x2e10
[   76.494916][ T5312]  do_syscall_64+0xc9/0x1a0
[   76.494969][ T5312]  ? clear_bhb_loop+0x25/0x80
[   76.494994][ T5312]  ? clear_bhb_loop+0x25/0x80
[   76.495019][ T5312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.495116][ T5312] RIP: 0033:0x7fb907e8e169
[   76.495129][ T5312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.495293][ T5312] RSP: 002b:00007fb9064f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   76.495315][ T5312] RAX: ffffffffffffffda RBX: 00007fb9080b5fa0 RCX: 00007fb907e8e169
[   76.495328][ T5312] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000006
[   76.495338][ T5312] RBP: 00007fb9064f7090 R08: 00000000000004f0 R09: 0000000000000000
[   76.495349][ T5312] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[   76.495359][ T5312] R13: 0000000000000000 R14: 00007fb9080b5fa0 R15: 00007ffc273052c8
[   76.495377][ T5312]  </TASK>
[   76.581390][ T5319] xt_bpf: check failed: parse error
[   77.051193][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.081881][ T5354] FAULT_INJECTION: forcing a failure.
[   77.081881][ T5354] name failslab, interval 1, probability 0, space 0, times 0
[   77.081968][ T5354] CPU: 1 UID: 0 PID: 5354 Comm: syz.2.664 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   77.081993][ T5354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   77.082008][ T5354] Call Trace:
[   77.082014][ T5354]  <TASK>
[   77.082022][ T5354]  dump_stack_lvl+0xf6/0x150
[   77.082045][ T5354]  dump_stack+0x15/0x1a
[   77.082060][ T5354]  should_fail_ex+0x261/0x270
[   77.082091][ T5354]  should_failslab+0x8f/0xb0
[   77.082117][ T5354]  __kmalloc_node_track_caller_noprof+0xaa/0x410
[   77.082151][ T5354]  ? sidtab_sid2str_get+0xb8/0x140
[   77.082169][ T5354]  ? vsnprintf+0x84d/0x8a0
[   77.082277][ T5354]  kmemdup_noprof+0x2b/0x70
[   77.082310][ T5354]  sidtab_sid2str_get+0xb8/0x140
[   77.082336][ T5354]  security_sid_to_context_core+0x1eb/0x2f0
[   77.082370][ T5354]  security_sid_to_context+0x27/0x30
[   77.082417][ T5354]  selinux_lsmprop_to_secctx+0x6c/0xf0
[   77.082434][ T5354]  security_lsmprop_to_secctx+0x40/0x80
[   77.082473][ T5354]  audit_log_task_context+0x7a/0x180
[   77.082552][ T5354]  audit_log_task+0xfb/0x250
[   77.082646][ T5354]  audit_seccomp+0x62/0x100
[   77.082667][ T5354]  __seccomp_filter+0x694/0x10e0
[   77.082747][ T5354]  ? read_tsc+0x9/0x20
[   77.082834][ T5354]  ? ktime_get+0x1ef/0x210
[   77.082871][ T5354]  ? lapic_next_event+0x11/0x20
[   77.082928][ T5354]  ? clockevents_program_event+0x196/0x1f0
[   77.082964][ T5354]  __secure_computing+0x7e/0x150
[   77.082985][ T5354]  syscall_trace_enter+0xcf/0x1f0
[   77.083016][ T5354]  do_syscall_64+0xaa/0x1a0
[   77.083043][ T5354]  ? clear_bhb_loop+0x25/0x80
[   77.083064][ T5354]  ? clear_bhb_loop+0x25/0x80
[   77.083083][ T5354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.083132][ T5354] RIP: 0033:0x7f8c66a9e169
[   77.083148][ T5354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.083204][ T5354] RSP: 002b:00007f8c65107038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[   77.083224][ T5354] RAX: ffffffffffffffda RBX: 00007f8c66cc5fa0 RCX: 00007f8c66a9e169
[   77.083237][ T5354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[   77.083249][ T5354] RBP: 00007f8c65107090 R08: 0000000000001000 R09: 0000000000000000
[   77.083290][ T5354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.083303][ T5354] R13: 0000000000000000 R14: 00007f8c66cc5fa0 R15: 00007fffda7bb5c8
[   77.083340][ T5354]  </TASK>
[   77.175360][ T5362] loop2: detected capacity change from 0 to 2048
[   77.204295][ T5362] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.275605][ T5362] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[   77.475145][ T5362] EXT4-fs (loop2): This should not happen!! Data will be lost
[   77.475145][ T5362] 
[   77.475218][ T5362] EXT4-fs (loop2): Total free blocks count 0
[   77.490931][ T5362] EXT4-fs (loop2): Free/Dirty block details
[   77.490948][ T5362] EXT4-fs (loop2): free_blocks=0
[   77.490963][ T5362] EXT4-fs (loop2): dirty_blocks=0
[   77.506827][ T5362] EXT4-fs (loop2): Block reservation details
[   77.506843][ T5362] EXT4-fs (loop2): i_reserved_data_blocks=0
[   77.520876][    T9] usb 1-1: enqueue for inactive port 0
[   77.520899][    T9] usb 1-1: enqueue for inactive port 0
[   77.553423][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.563039][ T5374] loop3: detected capacity change from 0 to 2048
[   77.589105][    T9] vhci_hcd: vhci_device speed not set
[   77.599231][ T5374] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.711062][ T5374] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2 with max blocks 1 with error 28
[   77.723369][ T5374] EXT4-fs (loop3): This should not happen!! Data will be lost
[   77.723369][ T5374] 
[   77.733107][ T5374] EXT4-fs (loop3): Total free blocks count 0
[   77.739199][ T5374] EXT4-fs (loop3): Free/Dirty block details
[   77.745279][ T5374] EXT4-fs (loop3): free_blocks=0
[   77.750315][ T5374] EXT4-fs (loop3): dirty_blocks=0
[   77.754986][ T5396] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5396 comm=syz.2.677
[   77.755341][ T5374] EXT4-fs (loop3): Block reservation details
[   77.767746][ T5396] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5396 comm=syz.2.677
[   77.768474][ T5396] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5396 comm=syz.2.677
[   77.773955][ T5374] EXT4-fs (loop3): i_reserved_data_blocks=0
[   77.816113][ T5398] loop1: detected capacity change from 0 to 512
[   77.823402][ T5398] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   77.841122][ T5398] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   77.853740][ T5398] ext4 filesystem being mounted at /142/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.878024][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.915382][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   77.964093][ T5410] loop3: detected capacity change from 0 to 2048
[   77.981087][ T5410] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.081267][ T5410] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2 with max blocks 1 with error 28
[   78.081363][ T5410] EXT4-fs (loop3): This should not happen!! Data will be lost
[   78.081363][ T5410] 
[   78.081377][ T5410] EXT4-fs (loop3): Total free blocks count 0
[   78.081392][ T5410] EXT4-fs (loop3): Free/Dirty block details
[   78.081404][ T5410] EXT4-fs (loop3): free_blocks=0
[   78.081419][ T5410] EXT4-fs (loop3): dirty_blocks=0
[   78.081432][ T5410] EXT4-fs (loop3): Block reservation details
[   78.081445][ T5410] EXT4-fs (loop3): i_reserved_data_blocks=0
[   78.127011][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.254599][ T5424] loop3: detected capacity change from 0 to 1024
[   78.271707][ T5424] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.271806][ T5424] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.308207][ T3515] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:8: bg 0: block 393: padding at end of block bitmap is not set
[   78.308416][ T3515] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117
[   78.335340][ T3515] EXT4-fs (loop3): This should not happen!! Data will be lost
[   78.335340][ T3515] 
[   78.336326][ T5424] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.368749][   T29] kauditd_printk_skb: 348 callbacks suppressed
[   78.368811][   T29] audit: type=1400 audit(1745169882.310:2163): avc:  denied  { connect } for  pid=5427 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   78.369096][   T29] audit: type=1400 audit(1745169882.320:2164): avc:  denied  { write } for  pid=5427 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   78.370066][ T5428] SET target dimension over the limit!
[   78.370880][ T5428] netlink: '+}[@': attribute type 15 has an invalid length.
[   78.496018][ T5435] binfmt_misc: register: failed to install interpreter file ./file0
[   78.554615][   T29] audit: type=1400 audit(1745169882.500:2165): avc:  denied  { mount } for  pid=5441 comm="syz.0.694" name="/" dev="ramfs" ino=9975 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   78.612932][ T5444] loop4: detected capacity change from 0 to 512
[   78.613180][ T5444] EXT4-fs: Ignoring removed oldalloc option
[   78.613203][ T5444] EXT4-fs: Ignoring removed nobh option
[   78.639234][ T5444] EXT4-fs error (device loop4): ext4_orphan_get:1390: inode #15: comm syz.4.695: iget: bad extended attribute block 1
[   78.639435][ T5444] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.695: couldn't read orphan inode 15 (err -117)
[   78.640030][ T5444] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.688402][   T29] audit: type=1400 audit(1745169882.630:2166): avc:  denied  { create } for  pid=5451 comm="syz.0.698" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   78.711067][   T29] audit: type=1400 audit(1745169882.660:2167): avc:  denied  { write } for  pid=5451 comm="syz.0.698" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   78.711110][   T29] audit: type=1326 audit(1745169882.660:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5451 comm="syz.0.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   78.711140][   T29] audit: type=1326 audit(1745169882.660:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5451 comm="syz.0.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   78.711270][   T29] audit: type=1326 audit(1745169882.660:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5451 comm="syz.0.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   78.719037][   T29] audit: type=1326 audit(1745169882.660:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5451 comm="syz.0.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   78.824063][   T29] audit: type=1326 audit(1745169882.660:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5451 comm="syz.0.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   78.832490][ T5456] loop2: detected capacity change from 0 to 512
[   78.854620][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.883781][ T5456] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.896919][ T5456] ext4 filesystem being mounted at /144/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   78.910918][ T5463] random: crng reseeded on system resumption
[   79.101225][ T5484] loop4: detected capacity change from 0 to 512
[   79.101487][ T5484] EXT4-fs: Ignoring removed oldalloc option
[   79.113626][ T5484] EXT4-fs: Ignoring removed nobh option
[   79.129280][ T5484] EXT4-fs error (device loop4): ext4_orphan_get:1390: inode #15: comm syz.4.712: iget: bad extended attribute block 1
[   79.142196][ T5484] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.712: couldn't read orphan inode 15 (err -117)
[   79.142823][ T5484] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.169448][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.219547][ T5492] loop4: detected capacity change from 0 to 8192
[   79.460295][ T5514] loop1: detected capacity change from 0 to 2048
[   79.617823][ T5514] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.834066][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.939300][ T5514] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[   79.951955][ T5514] EXT4-fs (loop1): This should not happen!! Data will be lost
[   79.951955][ T5514] 
[   79.961682][ T5514] EXT4-fs (loop1): Total free blocks count 0
[   79.967707][ T5514] EXT4-fs (loop1): Free/Dirty block details
[   79.973916][ T5514] EXT4-fs (loop1): free_blocks=0
[   79.978875][ T5514] EXT4-fs (loop1): dirty_blocks=0
[   79.983943][ T5514] EXT4-fs (loop1): Block reservation details
[   79.990041][ T5514] EXT4-fs (loop1): i_reserved_data_blocks=0
[   80.008903][ T5531] loop2: detected capacity change from 0 to 1024
[   80.050483][ T5531] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.063587][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.083089][ T5537] loop3: detected capacity change from 0 to 512
[   80.127100][ T5537] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   80.127569][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.159457][ T5537] EXT4-fs (loop3): mount failed
[   80.366122][ T5564] loop4: detected capacity change from 0 to 8192
[   80.609143][ T5570] loop1: detected capacity change from 0 to 8192
[   80.934163][ T5581] loop2: detected capacity change from 0 to 512
[   81.275510][ T5581] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.311254][ T5581] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.360262][ T5580] netlink: 'syz.2.746': attribute type 11 has an invalid length.
[   81.393433][ T5580] netlink: 448 bytes leftover after parsing attributes in process `syz.2.746'.
[   81.415691][ T5581] netlink: 'syz.2.746': attribute type 11 has an invalid length.
[   81.438309][ T5581] netlink: 448 bytes leftover after parsing attributes in process `syz.2.746'.
[   81.480172][ T5580] syz.2.746 (5580) used greatest stack depth: 10528 bytes left
[   81.513425][ T5603] loop3: detected capacity change from 0 to 512
[   81.536942][ T5603] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   81.552897][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.578241][ T5610] loop2: detected capacity change from 0 to 512
[   81.586089][ T5603] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   81.599663][ T5603] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.634169][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   81.644302][ T5610] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   81.658033][ T5610] ext4 filesystem being mounted at /152/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.744854][ T5619] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[   81.896952][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   81.943627][ T5627] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   81.952389][ T5627] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   81.992002][ T5632] loop2: detected capacity change from 0 to 2048
[   82.111627][ T5632] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.266144][ T5632] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2 with max blocks 1 with error 28
[   82.278574][ T5632] EXT4-fs (loop2): This should not happen!! Data will be lost
[   82.278574][ T5632] 
[   82.288323][ T5632] EXT4-fs (loop2): Total free blocks count 0
[   82.294345][ T5632] EXT4-fs (loop2): Free/Dirty block details
[   82.300296][ T5632] EXT4-fs (loop2): free_blocks=0
[   82.305363][ T5632] EXT4-fs (loop2): dirty_blocks=0
[   82.310526][ T5632] EXT4-fs (loop2): Block reservation details
[   82.316531][ T5632] EXT4-fs (loop2): i_reserved_data_blocks=0
[   82.422166][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.442786][ T5641] loop4: detected capacity change from 0 to 128
[   82.715971][ T5659] loop1: detected capacity change from 0 to 8192
[   83.615394][   T29] kauditd_printk_skb: 157 callbacks suppressed
[   83.615407][   T29] audit: type=1400 audit(1745169887.560:2327): avc:  denied  { name_bind } for  pid=5676 comm="syz.2.778" src=3621 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   83.646254][   T29] audit: type=1326 audit(1745169887.600:2328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5671 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   83.669670][   T29] audit: type=1326 audit(1745169887.600:2329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.2.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c66a9e169 code=0x7ffc0000
[   83.669728][   T29] audit: type=1326 audit(1745169887.600:2330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5671 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   83.670985][   T29] audit: type=1326 audit(1745169887.600:2331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.2.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8c66a9e169 code=0x7ffc0000
[   83.671027][   T29] audit: type=1326 audit(1745169887.630:2332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5671 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   83.671057][   T29] audit: type=1326 audit(1745169887.630:2333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5671 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   83.671123][   T29] audit: type=1326 audit(1745169887.630:2334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5671 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   83.671297][   T29] audit: type=1326 audit(1745169887.630:2335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.2.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c66a9e169 code=0x7ffc0000
[   83.671568][   T29] audit: type=1326 audit(1745169887.630:2336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5671 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7f694536e169 code=0x7ffc0000
[   83.932081][ T5688] loop1: detected capacity change from 0 to 128
[   84.061416][ T5698] FAULT_INJECTION: forcing a failure.
[   84.061416][ T5698] name failslab, interval 1, probability 0, space 0, times 0
[   84.061452][ T5698] CPU: 1 UID: 0 PID: 5698 Comm: syz.2.786 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   84.061483][ T5698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   84.061497][ T5698] Call Trace:
[   84.061556][ T5698]  <TASK>
[   84.061563][ T5698]  dump_stack_lvl+0xf6/0x150
[   84.061586][ T5698]  dump_stack+0x15/0x1a
[   84.061602][ T5698]  should_fail_ex+0x261/0x270
[   84.061624][ T5698]  should_failslab+0x8f/0xb0
[   84.061645][ T5698]  __kmalloc_cache_noprof+0x55/0x320
[   84.061747][ T5698]  ? __ipv6_dev_ac_inc+0x1ea/0x6b0
[   84.061774][ T5698]  __ipv6_dev_ac_inc+0x1ea/0x6b0
[   84.061792][ T5698]  ? ipv6_chk_prefix+0x1b5/0x200
[   84.061838][ T5698]  ipv6_sock_ac_join+0x2fc/0x400
[   84.061928][ T5698]  do_ipv6_setsockopt+0x1a8f/0x2220
[   84.061956][ T5698]  ? kstrtouint+0x7b/0xc0
[   84.061980][ T5698]  ? avc_has_perm_noaudit+0x1cc/0x210
[   84.062148][ T5698]  ? selinux_netlbl_socket_setsockopt+0xea/0x2d0
[   84.062182][ T5698]  ? avc_has_perm+0xd6/0x150
[   84.062212][ T5698]  ipv6_setsockopt+0x57/0x130
[   84.062239][ T5698]  tcp_setsockopt+0x93/0xb0
[   84.062321][ T5698]  sock_common_setsockopt+0x64/0x80
[   84.062355][ T5698]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   84.062410][ T5698]  __sys_setsockopt+0x187/0x200
[   84.062447][ T5698]  __x64_sys_setsockopt+0x66/0x80
[   84.062505][ T5698]  x64_sys_call+0x2a09/0x2e10
[   84.062525][ T5698]  do_syscall_64+0xc9/0x1a0
[   84.062554][ T5698]  ? clear_bhb_loop+0x25/0x80
[   84.062580][ T5698]  ? clear_bhb_loop+0x25/0x80
[   84.062655][ T5698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.062776][ T5698] RIP: 0033:0x7f8c66a9e169
[   84.062793][ T5698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.062815][ T5698] RSP: 002b:00007f8c65107038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   84.062850][ T5698] RAX: ffffffffffffffda RBX: 00007f8c66cc5fa0 RCX: 00007f8c66a9e169
[   84.062865][ T5698] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000006
[   84.062879][ T5698] RBP: 00007f8c65107090 R08: 0000000000000020 R09: 0000000000000000
[   84.062894][ T5698] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[   84.062983][ T5698] R13: 0000000000000000 R14: 00007f8c66cc5fa0 R15: 00007fffda7bb5c8
[   84.063005][ T5698]  </TASK>
[   84.105186][ T5696] loop1: detected capacity change from 0 to 128
[   84.311244][ T5696] vfat: Unknown parameter 'd'
[   84.382777][ T5702] loop2: detected capacity change from 0 to 8192
[   84.568194][ T5705] can0: slcan on ttyS3.
[   85.170197][ T5733] FAULT_INJECTION: forcing a failure.
[   85.170197][ T5733] name failslab, interval 1, probability 0, space 0, times 0
[   85.183021][ T5733] CPU: 0 UID: 0 PID: 5733 Comm: syz.3.800 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   85.183049][ T5733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   85.183061][ T5733] Call Trace:
[   85.183068][ T5733]  <TASK>
[   85.183075][ T5733]  dump_stack_lvl+0xf6/0x150
[   85.183178][ T5733]  dump_stack+0x15/0x1a
[   85.183195][ T5733]  should_fail_ex+0x261/0x270
[   85.183219][ T5733]  should_failslab+0x8f/0xb0
[   85.183241][ T5733]  __kmalloc_cache_noprof+0x55/0x320
[   85.183269][ T5733]  ? selinux_bpf_prog_load+0x35/0xe0
[   85.183369][ T5733]  selinux_bpf_prog_load+0x35/0xe0
[   85.183391][ T5733]  security_bpf_prog_load+0x52/0x90
[   85.183498][ T5733]  bpf_prog_load+0xedc/0x10e0
[   85.183537][ T5733]  __sys_bpf+0x533/0x800
[   85.183581][ T5733]  __x64_sys_bpf+0x43/0x50
[   85.183629][ T5733]  x64_sys_call+0x23da/0x2e10
[   85.183757][ T5733]  do_syscall_64+0xc9/0x1a0
[   85.183782][ T5733]  ? clear_bhb_loop+0x25/0x80
[   85.183821][ T5733]  ? clear_bhb_loop+0x25/0x80
[   85.183842][ T5733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.183862][ T5733] RIP: 0033:0x7ff35532e169
[   85.183878][ T5733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.183897][ T5733] RSP: 002b:00007ff353997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.183915][ T5733] RAX: ffffffffffffffda RBX: 00007ff355555fa0 RCX: 00007ff35532e169
[   85.183927][ T5733] RDX: 0000000000000094 RSI: 00002000000004c0 RDI: 0000000000000005
[   85.184019][ T5733] RBP: 00007ff353997090 R08: 0000000000000000 R09: 0000000000000000
[   85.184032][ T5733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.184044][ T5733] R13: 0000000000000000 R14: 00007ff355555fa0 R15: 00007fff20560b78
[   85.184062][ T5733]  </TASK>
[   85.410280][ T5729] can0 (unregistered): slcan off ttyS3.
[   85.520626][ T5729] Falling back ldisc for ttyS3.
[   85.606785][ T5753] loop1: detected capacity change from 0 to 128
[   85.654481][ T3446] kernel write not supported for file /425/net/psched (pid: 3446 comm: kworker/1:5)
[   85.686022][ T5755] netlink: 8 bytes leftover after parsing attributes in process `syz.2.809'.
[   85.722220][ T5759] loop1: detected capacity change from 0 to 512
[   85.724718][ T5759] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   85.763142][ T5759] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   85.763450][ T5759] ext4 filesystem being mounted at /177/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.852978][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   85.979712][ T5778] netlink: 8 bytes leftover after parsing attributes in process `syz.0.819'.
[   86.003325][ T5783] loop2: detected capacity change from 0 to 128
[   86.052657][ T5791] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[   86.153801][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x1
[   86.153827][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.153853][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.153879][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.153924][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.153980][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154007][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x4
[   86.154035][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154060][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154082][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154102][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x2
[   86.154122][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154159][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154262][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x4
[   86.154289][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154315][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154343][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x2
[   86.154407][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154443][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154462][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154484][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154516][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154637][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154727][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154746][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154765][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154788][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154875][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154901][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154927][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154949][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.154971][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.155012][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.155038][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.155064][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.155089][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.155111][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.155215][ T2967] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   86.156308][ T2967] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   86.307985][ T5819] loop2: detected capacity change from 0 to 128
[   86.591307][ T5834] loop2: detected capacity change from 0 to 1764
[   86.704574][ T5838] loop2: detected capacity change from 0 to 2048
[   86.753468][ T5838] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.785379][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.076997][ T5860] loop3: detected capacity change from 0 to 8192
[   87.254892][ T5867] loop2: detected capacity change from 0 to 512
[   87.293907][ T5867] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   87.528388][ T5867] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   87.728362][ T5867] ext4 filesystem being mounted at /185/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.786660][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   87.806028][ T5885] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   87.825127][ T5885] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   88.143767][ T5913] loop2: detected capacity change from 0 to 8192
[   88.715491][ T5919] loop1: detected capacity change from 0 to 512
[   88.764257][ T5919] EXT4-fs: Ignoring removed oldalloc option
[   88.770271][ T5919] EXT4-fs: Ignoring removed nobh option
[   88.780734][ T5919] EXT4-fs error (device loop1): ext4_orphan_get:1390: inode #15: comm syz.1.871: iget: bad extended attribute block 1
[   88.797185][ T5919] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.871: couldn't read orphan inode 15 (err -117)
[   88.843990][   T29] kauditd_printk_skb: 593 callbacks suppressed
[   88.844009][   T29] audit: type=1400 audit(1745169892.790:2930): avc:  denied  { prog_run } for  pid=5923 comm="syz.0.873" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   88.902834][ T5919] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.919973][ T5928] loop3: detected capacity change from 0 to 2048
[   88.926845][ T5928] EXT4-fs: Ignoring removed nomblk_io_submit option
[   88.939059][   T29] audit: type=1400 audit(1745169892.890:2931): avc:  denied  { mount } for  pid=5918 comm="syz.1.871" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   88.962393][   T29] audit: type=1400 audit(1745169892.890:2932): avc:  denied  { create } for  pid=5918 comm="syz.1.871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   88.982440][ T5926] loop4: detected capacity change from 0 to 8192
[   89.046524][   T29] audit: type=1400 audit(1745169892.940:2933): avc:  denied  { unmount } for  pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   89.066433][   T29] audit: type=1400 audit(1745169892.940:2934): avc:  denied  { write } for  pid=5927 comm="" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   89.087274][   T29] audit: type=1400 audit(1745169892.940:2935): avc:  denied  { add_name } for  pid=5927 comm="" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   89.107175][   T29] audit: type=1400 audit(1745169892.940:2936): avc:  denied  { create } for  pid=5927 comm="" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   89.126606][   T29] audit: type=1400 audit(1745169892.940:2937): avc:  denied  { read write } for  pid=5927 comm="" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   89.148487][   T29] audit: type=1400 audit(1745169892.940:2938): avc:  denied  { open } for  pid=5927 comm="" path="/157/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   89.215474][ T5936] loop1: detected capacity change from 0 to 2048
[   89.301793][   T29] audit: type=1400 audit(1745169893.010:2939): avc:  denied  { unmount } for  pid=3310 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   89.356500][ T5939] loop2: detected capacity change from 0 to 2048
[   89.902514][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.910021][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.917517][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.924971][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.932420][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.939926][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.947407][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.955221][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.962830][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.970258][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.977768][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.985203][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   89.992629][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.000044][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.007441][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.014866][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.022328][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.029756][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.037211][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.044681][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.052144][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.059573][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.066994][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.074502][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.081918][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.089471][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.096866][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.104298][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.111732][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.119310][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.126784][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.134250][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.141672][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.149100][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.156498][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.164224][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.171784][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.179222][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.186730][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.194161][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.201583][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.209007][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.216420][ T3446] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   90.271894][ T3446] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   90.402226][ T5956] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.421934][ T5956] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.656476][ T5975] loop3: detected capacity change from 0 to 8192
[   90.678127][ T5980] loop2: detected capacity change from 0 to 1024
[   90.862055][ T5987] netlink: 24 bytes leftover after parsing attributes in process `syz.0.892'.
[   91.046141][ T5980] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.891: bg 0: block 88: padding at end of block bitmap is not set
[   91.630086][ T5980] syz.2.891 (5980) used greatest stack depth: 10224 bytes left
[   91.751806][ T6020] netlink: 8 bytes leftover after parsing attributes in process `syz.4.904'.
[   92.066877][ T6039] FAULT_INJECTION: forcing a failure.
[   92.066877][ T6039] name failslab, interval 1, probability 0, space 0, times 0
[   92.079602][ T6039] CPU: 1 UID: 0 PID: 6039 Comm: syz.4.914 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   92.079653][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   92.079668][ T6039] Call Trace:
[   92.079675][ T6039]  <TASK>
[   92.079683][ T6039]  dump_stack_lvl+0xf6/0x150
[   92.079709][ T6039]  dump_stack+0x15/0x1a
[   92.079728][ T6039]  should_fail_ex+0x261/0x270
[   92.079756][ T6039]  should_failslab+0x8f/0xb0
[   92.079844][ T6039]  __kmalloc_node_track_caller_noprof+0xaa/0x410
[   92.079880][ T6039]  ? sidtab_sid2str_get+0xb8/0x140
[   92.079902][ T6039]  ? vsnprintf+0x84d/0x8a0
[   92.079947][ T6039]  kmemdup_noprof+0x2b/0x70
[   92.079981][ T6039]  sidtab_sid2str_get+0xb8/0x140
[   92.080000][ T6039]  security_sid_to_context_core+0x1eb/0x2f0
[   92.080080][ T6039]  security_sid_to_context+0x27/0x30
[   92.080139][ T6039]  selinux_lsmprop_to_secctx+0x6c/0xf0
[   92.080164][ T6039]  security_lsmprop_to_secctx+0x40/0x80
[   92.080195][ T6039]  audit_log_task_context+0x7a/0x180
[   92.080233][ T6039]  audit_log_task+0xfb/0x250
[   92.080255][ T6039]  ? kstrtouint+0x7b/0xc0
[   92.080334][ T6039]  audit_seccomp+0x62/0x100
[   92.080364][ T6039]  __seccomp_filter+0x694/0x10e0
[   92.080386][ T6039]  ? vfs_write+0x669/0x950
[   92.080412][ T6039]  __secure_computing+0x7e/0x150
[   92.080435][ T6039]  syscall_trace_enter+0xcf/0x1f0
[   92.080542][ T6039]  do_syscall_64+0xaa/0x1a0
[   92.080604][ T6039]  ? clear_bhb_loop+0x25/0x80
[   92.080636][ T6039]  ? clear_bhb_loop+0x25/0x80
[   92.080661][ T6039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.080686][ T6039] RIP: 0033:0x7ff23a93e169
[   92.080732][ T6039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.080753][ T6039] RSP: 002b:00007ff238fa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[   92.080774][ T6039] RAX: ffffffffffffffda RBX: 00007ff23ab65fa0 RCX: 00007ff23a93e169
[   92.080788][ T6039] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   92.080801][ T6039] RBP: 00007ff238fa7090 R08: 0000000000000000 R09: 0000000000000000
[   92.080814][ T6039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.080893][ T6039] R13: 0000000000000000 R14: 00007ff23ab65fa0 R15: 00007ffdea098b58
[   92.080914][ T6039]  </TASK>
[   92.497095][ T6046] infiniband syz!: set active
[   92.502038][ T6046] infiniband syz!: added team_slave_0
[   92.522811][ T6048] loop3: detected capacity change from 0 to 8192
[   92.569665][ T6046] RDS/IB: syz!: added
[   92.574212][ T6046] smc: adding ib device syz! with port count 1
[   92.582463][ T6046] smc:    ib device syz! port 1 has pnetid 
[   92.607676][ T6056] loop2: detected capacity change from 0 to 512
[   92.648255][ T6056] EXT4-fs: Ignoring removed oldalloc option
[   92.654300][ T6056] EXT4-fs: Ignoring removed nobh option
[   92.719193][ T6056] EXT4-fs error (device loop2): ext4_orphan_get:1390: inode #15: comm syz.2.908: iget: bad extended attribute block 1
[   92.921275][ T6063] loop1: detected capacity change from 0 to 512
[   92.999015][ T6063] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   93.010696][ T6056] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.908: couldn't read orphan inode 15 (err -117)
[   93.134214][ T6063] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.314121][ T6075] loop1: detected capacity change from 0 to 512
[   93.373098][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   93.404792][ T3515] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   93.409684][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.552859][ T6075] loop1: detected capacity change from 0 to 512
[   93.588404][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   93.609068][ T3322] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[   93.622640][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.701065][ T6075] loop1: detected capacity change from 0 to 512
[   93.724894][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   93.738439][ T6102] loop4: detected capacity change from 0 to 512
[   93.754417][ T3322] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[   93.782874][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.792349][ T6102] EXT4-fs: Ignoring removed oldalloc option
[   93.799306][ T6102] EXT4-fs: Ignoring removed nobh option
[   93.818609][ T6102] EXT4-fs error (device loop4): ext4_orphan_get:1390: inode #15: comm syz.4.932: iget: bad extended attribute block 1
[   93.835455][ T6075] loop1: detected capacity change from 0 to 512
[   93.843384][ T6102] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.932: couldn't read orphan inode 15 (err -117)
[   93.858772][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   93.865737][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.877671][ T3515] __quota_error: 273 callbacks suppressed
[   93.877762][ T3515] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   93.893309][ T3515] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   93.935520][ T6075] loop1: detected capacity change from 0 to 512
[   93.951026][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   93.957382][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.971713][ T3515] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   93.981546][ T3515] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   94.115651][ T6123] netlink: 24 bytes leftover after parsing attributes in process `syz.4.938'.
[   94.130856][ T6075] loop1: detected capacity change from 0 to 512
[   94.139091][   T29] audit: type=1326 audit(1745169898.090:3209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.4.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff23a93e169 code=0x7ffc0000
[   94.197835][   T29] audit: type=1326 audit(1745169898.120:3210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.4.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff23a93e169 code=0x7ffc0000
[   94.221367][   T29] audit: type=1326 audit(1745169898.120:3211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.4.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7ff23a93e169 code=0x7ffc0000
[   94.244704][   T29] audit: type=1326 audit(1745169898.120:3212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.4.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff23a93e169 code=0x7ffc0000
[   94.268051][   T29] audit: type=1326 audit(1745169898.120:3213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.4.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7ff23a93e169 code=0x7ffc0000
[   94.291444][   T29] audit: type=1326 audit(1745169898.120:3214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.4.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff23a93e169 code=0x7ffc0000
[   94.314868][   T29] audit: type=1326 audit(1745169898.120:3215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.4.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff23a93e169 code=0x7ffc0000
[   94.338196][   T29] audit: type=1326 audit(1745169898.120:3216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.4.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff23a93e169 code=0x7ffc0000
[   94.530875][ T6126] loop2: detected capacity change from 0 to 128
[   94.554435][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   94.571436][ T3515] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   94.590865][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.631458][ T6075] loop1: detected capacity change from 0 to 512
[   94.651895][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   94.670199][ T3515] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   94.681014][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.725851][ T6075] loop1: detected capacity change from 0 to 512
[   94.744374][ T6143] 9pnet_fd: Insufficient options for proto=fd
[   94.752818][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   94.761403][ T6141] loop2: detected capacity change from 0 to 512
[   94.783828][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.794539][ T3515] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   94.811744][ T6141] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   94.878164][ T6075] loop1: detected capacity change from 0 to 512
[   94.888224][ T6141] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.959680][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   94.971093][  T422] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[   94.982581][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.008430][ T6075] loop1: detected capacity change from 0 to 512
[   95.021442][ T6160] FAULT_INJECTION: forcing a failure.
[   95.021442][ T6160] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.034589][ T6160] CPU: 0 UID: 0 PID: 6160 Comm: syz.3.951 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   95.034620][ T6160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   95.034634][ T6160] Call Trace:
[   95.034678][ T6160]  <TASK>
[   95.034686][ T6160]  dump_stack_lvl+0xf6/0x150
[   95.034714][ T6160]  dump_stack+0x15/0x1a
[   95.034735][ T6160]  should_fail_ex+0x261/0x270
[   95.034762][ T6160]  should_fail+0xb/0x10
[   95.034784][ T6160]  should_fail_usercopy+0x1a/0x20
[   95.034877][ T6160]  _copy_from_user+0x1c/0xa0
[   95.034909][ T6160]  copy_msghdr_from_user+0x54/0x2b0
[   95.034947][ T6160]  __sys_sendmmsg+0x1eb/0x4b0
[   95.034997][ T6160]  __x64_sys_sendmmsg+0x57/0x70
[   95.035049][ T6160]  x64_sys_call+0x2b53/0x2e10
[   95.035132][ T6160]  do_syscall_64+0xc9/0x1a0
[   95.035160][ T6160]  ? clear_bhb_loop+0x25/0x80
[   95.035256][ T6160]  ? clear_bhb_loop+0x25/0x80
[   95.035279][ T6160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.035308][ T6160] RIP: 0033:0x7ff35532e169
[   95.035325][ T6160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.035383][ T6160] RSP: 002b:00007ff353997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   95.035404][ T6160] RAX: ffffffffffffffda RBX: 00007ff355555fa0 RCX: 00007ff35532e169
[   95.035470][ T6160] RDX: 032bc45944b084a6 RSI: 0000200000000180 RDI: 0000000000000003
[   95.035483][ T6160] RBP: 00007ff353997090 R08: 0000000000000000 R09: 0000000000000000
[   95.035497][ T6160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   95.035510][ T6160] R13: 0000000000000000 R14: 00007ff355555fa0 R15: 00007fff20560b78
[   95.035530][ T6160]  </TASK>
[   95.222402][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   95.228567][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.239317][ T6162] loop2: detected capacity change from 0 to 8192
[   95.247312][  T422] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[   95.259784][ T6168] loop3: detected capacity change from 0 to 2048
[   95.270081][ T6170] loop4: detected capacity change from 0 to 2048
[   95.283984][ T6075] loop1: detected capacity change from 0 to 512
[   95.296670][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x1
[   95.304249][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.311734][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.319205][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.326987][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.334668][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.342123][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x4
[   95.349638][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.357079][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.364574][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.372050][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x2
[   95.379463][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.386881][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.394363][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x4
[   95.401873][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.409298][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.416715][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x2
[   95.424234][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.431893][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.439411][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.447018][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.454446][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.462058][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.469514][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.475527][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   95.476947][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.476974][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.497727][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.499338][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[   95.505164][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.523935][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.531422][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.538901][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.546400][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.554003][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.555056][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.561408][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.561435][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.586725][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.594140][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.601660][   T36] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   95.682729][   T36] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   95.704253][ T6075] loop1: detected capacity change from 0 to 512
[   95.722118][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   95.728657][ T3322] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[   95.732605][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.157901][ T6075] loop1: detected capacity change from 0 to 512
[   96.184087][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   96.184698][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.185021][  T422] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[   96.226221][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[   96.226248][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[   96.226294][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[   96.235302][ T6075] loop1: detected capacity change from 0 to 512
[   96.245470][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[   96.245495][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[   96.245816][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[   96.250236][ T6075] EXT4-fs (loop1): 1 orphan inode deleted
[   96.270271][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[   96.298002][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[   96.305719][ T6075] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.313773][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[   96.335505][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[   96.423759][ T6207] loop1: detected capacity change from 0 to 512
[   96.424054][ T6207] ext4: Unknown parameter 'nouser_xattr'
[   96.442140][ T6207] netlink: 4 bytes leftover after parsing attributes in process `syz.1.959'.
[   96.556933][ T6209] loop1: detected capacity change from 0 to 512
[   96.557430][ T6209] EXT4-fs: Ignoring removed oldalloc option
[   96.569416][ T6209] EXT4-fs: Ignoring removed nobh option
[   96.585778][ T6209] EXT4-fs error (device loop1): ext4_orphan_get:1390: inode #15: comm syz.1.960: iget: bad extended attribute block 1
[   96.585900][ T6209] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.960: couldn't read orphan inode 15 (err -117)
[   96.860046][ T6223] loop1: detected capacity change from 0 to 512
[   96.866986][ T6223] EXT4-fs: Ignoring removed nobh option
[   96.882193][ T6225] loop2: detected capacity change from 0 to 2048
[   96.902058][ T6223] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.964: invalid indirect mapped block 256 (level 2)
[   96.920841][ T6223] EXT4-fs (loop1): 2 truncates cleaned up
[   96.927301][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x1
[   96.933620][ T6223] IPv6: syztnl0: Disabled Multicast RS
[   96.934753][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   96.947666][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   96.955121][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   96.962665][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   96.970108][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   96.977669][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x4
[   96.985107][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   96.993187][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.001060][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.008514][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x2
[   97.015957][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.023406][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.030916][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x4
[   97.038349][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.045767][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.053209][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x2
[   97.060657][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.068061][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.075554][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.082998][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.090439][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.097869][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.105303][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.112797][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.120245][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.127767][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.135205][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.142695][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.150133][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.157648][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.165088][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.172610][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.180072][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.187452][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.194899][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.202328][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.209748][ T2967] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   97.219352][ T2967] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   97.276755][ T6244] loop3: detected capacity change from 0 to 512
[   97.285295][ T6244] EXT4-fs: Ignoring removed oldalloc option
[   97.291302][ T6244] EXT4-fs: Ignoring removed nobh option
[   97.299188][ T6244] EXT4-fs error (device loop3): ext4_orphan_get:1390: inode #15: comm syz.3.972: iget: bad extended attribute block 1
[   97.311903][ T6244] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.972: couldn't read orphan inode 15 (err -117)
[   97.395867][ T6256] loop3: detected capacity change from 0 to 512
[   97.404928][ T6256] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   97.451824][ T6256] ext4 filesystem being mounted at /180/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.614898][ T6273] loop2: detected capacity change from 0 to 512
[   97.634288][ T6273] EXT4-fs error (device loop2): ext4_orphan_get:1416: comm syz.2.981: bad orphan inode 16
[   97.634488][ T6273] ext4_test_bit(bit=15, block=18) = 0
[   97.650424][ T6273] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.656197][ T6273] EXT4-fs error (device loop2): ext4_free_inode:354: comm syz.2.981: bit already cleared for inode 15
[   97.685192][ T3515] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   97.721368][ T6278] loop2: detected capacity change from 0 to 2048
[   97.771070][ T6286] tipc: New replicast peer: 255.255.255.255
[   97.771395][ T6286] tipc: Enabled bearer <udp:syz2>, priority 10
[   97.856145][ T6294] loop1: detected capacity change from 0 to 512
[   97.856855][ T6294] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   97.882557][ T6294] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.985690][ T3302] EXT4-fs unmount: 64 callbacks suppressed
[   97.985728][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   98.087164][ T6312] ip6gretap0: entered promiscuous mode
[   98.087185][ T6312] ip6gretap0: entered allmulticast mode
[   98.185377][ T6317] loop4: detected capacity change from 0 to 1024
[   98.192223][ T6317] EXT4-fs: Ignoring removed nomblk_io_submit option
[   98.193962][ T6317] EXT4-fs (loop4): stripe (4) is not aligned with cluster size (16), stripe is disabled
[   98.233028][ T6317] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.336163][ T6336] loop2: detected capacity change from 0 to 512
[   98.343586][ T6336] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   98.361510][ T6336] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   98.374715][ T6336] ext4 filesystem being mounted at /223/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.410342][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   98.428358][ T6348] bond_slave_1: entered promiscuous mode
[   98.867012][ T6354] capability: warning: `syz.1.1009' uses deprecated v2 capabilities in a way that may be insecure
[   98.879536][   T29] kauditd_printk_skb: 232 callbacks suppressed
[   98.879553][   T29] audit: type=1400 audit(1745169902.830:3439): avc:  denied  { mounton } for  pid=6353 comm="syz.1.1009" path="/212/file0" dev="tmpfs" ino=1162 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   98.910930][ T3446] tipc: Node number set to 890943719
[   98.939916][ T6357] loop1: detected capacity change from 0 to 512
[   98.946583][ T6357] EXT4-fs: Ignoring removed mblk_io_submit option
[   98.953470][ T6357] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   98.965703][ T6357] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   98.981367][ T6357] EXT4-fs (loop1): 1 truncate cleaned up
[   98.987452][ T6357] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.001173][   T29] audit: type=1400 audit(1745169902.960:3440): avc:  denied  { mac_admin } for  pid=6355 comm="syz.1.1010" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   99.023366][ T6356] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   99.044739][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.066825][   T29] audit: type=1400 audit(1745169902.990:3441): avc:  denied  { relabelto } for  pid=6355 comm="syz.1.1010" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[   99.092989][   T29] audit: type=1400 audit(1745169903.010:3442): avc:  denied  { write } for  pid=6355 comm="syz.1.1010" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[   99.118604][   T29] audit: type=1400 audit(1745169903.010:3443): avc:  denied  { add_name } for  pid=6355 comm="syz.1.1010" name="cpuset.effective_cpus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[   99.144619][   T29] audit: type=1400 audit(1745169903.010:3444): avc:  denied  { append } for  pid=6355 comm="syz.1.1010" name="cpuset.effective_cpus" dev="loop1" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   99.155577][ T6348] +}[@ invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   99.181631][ T6348] CPU: 1 UID: 0 PID: 6348 Comm: +}[@ Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   99.181665][ T6348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   99.181682][ T6348] Call Trace:
[   99.181689][ T6348]  <TASK>
[   99.181698][ T6348]  dump_stack_lvl+0xf6/0x150
[   99.181751][ T6348]  dump_stack+0x15/0x1a
[   99.181767][ T6348]  dump_header+0x83/0x2d0
[   99.181874][ T6348]  oom_kill_process+0x341/0x4c0
[   99.181903][ T6348]  out_of_memory+0x9d1/0xc20
[   99.181933][ T6348]  mem_cgroup_out_of_memory+0x13f/0x190
[   99.182006][ T6348]  try_charge_memcg+0x5f1/0x890
[   99.182037][ T6348]  obj_cgroup_charge_pages+0xc0/0x1a0
[   99.182095][ T6348]  __memcg_kmem_charge_page+0x9d/0x170
[   99.182125][ T6348]  __alloc_frozen_pages_noprof+0x1a6/0x360
[   99.182152][ T6348]  alloc_pages_mpol+0xb6/0x260
[   99.182193][ T6348]  alloc_pages_noprof+0xe8/0x130
[   99.182270][ T6348]  __vmalloc_node_range_noprof+0x6ea/0xe80
[   99.182351][ T6348]  __kvmalloc_node_noprof+0x311/0x520
[   99.182466][ T6348]  ? ip_set_alloc+0x1f/0x30
[   99.182495][ T6348]  ? ip_set_alloc+0x1f/0x30
[   99.182529][ T6348]  ip_set_alloc+0x1f/0x30
[   99.182556][ T6348]  hash_netiface_create+0x273/0x730
[   99.182626][ T6348]  ? __nla_parse+0x40/0x60
[   99.182670][ T6348]  ? __pfx_hash_netiface_create+0x10/0x10
[   99.182701][ T6348]  ip_set_create+0x3b6/0x970
[   99.182764][ T6348]  ? __nla_parse+0x40/0x60
[   99.182792][ T6348]  nfnetlink_rcv_msg+0x4ba/0x580
[   99.182910][ T6348]  netlink_rcv_skb+0x12f/0x230
[   99.182941][ T6348]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   99.182982][ T6348]  nfnetlink_rcv+0x187/0x1610
[   99.183004][ T6348]  ? __kfree_skb+0x102/0x150
[   99.183024][ T6348]  ? nlmon_xmit+0x51/0x60
[   99.183075][ T6348]  ? __kfree_skb+0x102/0x150
[   99.183096][ T6348]  ? consume_skb+0x49/0x160
[   99.183178][ T6348]  ? nlmon_xmit+0x51/0x60
[   99.183208][ T6348]  ? dev_hard_start_xmit+0x3d1/0x400
[   99.183237][ T6348]  ? __dev_queue_xmit+0xb76/0x20b0
[   99.183265][ T6348]  ? should_fail_ex+0x31/0x270
[   99.183336][ T6348]  ? ref_tracker_free+0x3b8/0x420
[   99.183367][ T6348]  ? __netlink_deliver_tap+0x4c6/0x4f0
[   99.183394][ T6348]  netlink_unicast+0x605/0x6c0
[   99.183433][ T6348]  netlink_sendmsg+0x609/0x720
[   99.183512][ T6348]  ? __pfx_netlink_sendmsg+0x10/0x10
[   99.183535][ T6348]  __sock_sendmsg+0x140/0x180
[   99.183567][ T6348]  ____sys_sendmsg+0x350/0x4e0
[   99.183597][ T6348]  __sys_sendmsg+0x1a0/0x240
[   99.183642][ T6348]  __x64_sys_sendmsg+0x46/0x50
[   99.183686][ T6348]  x64_sys_call+0x26f3/0x2e10
[   99.183710][ T6348]  do_syscall_64+0xc9/0x1a0
[   99.183737][ T6348]  ? clear_bhb_loop+0x25/0x80
[   99.183801][ T6348]  ? clear_bhb_loop+0x25/0x80
[   99.183824][ T6348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.183846][ T6348] RIP: 0033:0x7f8c66a9e169
[   99.183891][ T6348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.183908][ T6348] RSP: 002b:00007f8c65107038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   99.183932][ T6348] RAX: ffffffffffffffda RBX: 00007f8c66cc5fa0 RCX: 00007f8c66a9e169
[   99.183944][ T6348] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000009
[   99.183957][ T6348] RBP: 00007f8c66b20a68 R08: 0000000000000000 R09: 0000000000000000
[   99.183970][ T6348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   99.184020][ T6348] R13: 0000000000000000 R14: 00007f8c66cc5fa0 R15: 00007fffda7bb5c8
[   99.184041][ T6348]  </TASK>
[   99.184048][ T6348] memory: usage 307200kB, limit 307200kB, failcnt 155
[   99.530422][ T6348] memory+swap: usage 307420kB, limit 9007199254740988kB, failcnt 0
[   99.530443][ T6348] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[   99.545683][ T6348] Memory cgroup stats for /syz2:
[   99.546013][ T6348] cache 0
[   99.554109][ T6348] rss 0
[   99.557067][ T6348] shmem 0
[   99.560091][ T6348] mapped_file 0
[   99.563566][ T6348] dirty 0
[   99.566521][ T6348] writeback 0
[   99.569874][ T6348] workingset_refault_anon 23
[   99.574500][ T6348] workingset_refault_file 64
[   99.579135][ T6348] swap 225280
[   99.582446][ T6348] swapcached 16384
[   99.586185][ T6348] pgpgin 86441
[   99.589606][ T6348] pgpgout 86437
[   99.593102][ T6348] pgfault 92443
[   99.593111][ T6348] pgmajfault 20
[   99.593120][ T6348] inactive_anon 8192
[   99.593126][ T6348] active_anon 8192
[   99.593132][ T6348] inactive_file 0
[   99.611421][ T6348] active_file 0
[   99.611431][ T6348] unevictable 0
[   99.611439][ T6348] hierarchical_memory_limit 314572800
[   99.611449][ T6348] hierarchical_memsw_limit 9223372036854771712
[   99.611460][ T6348] total_cache 0
[   99.611467][ T6348] total_rss 0
[   99.611473][ T6348] total_shmem 0
[   99.611479][ T6348] total_mapped_file 0
[   99.611485][ T6348] total_dirty 0
[   99.611548][ T6348] total_writeback 0
[   99.611554][ T6348] total_workingset_refault_anon 23
[   99.611563][ T6348] total_workingset_refault_file 64
[   99.611572][ T6348] total_swap 225280
[   99.611578][ T6348] total_swapcached 16384
[   99.611585][ T6348] total_pgpgin 86441
[   99.611591][ T6348] total_pgpgout 86437
[   99.611597][ T6348] total_pgfault 92443
[   99.611604][ T6348] total_pgmajfault 20
[   99.611610][ T6348] total_inactive_anon 8192
[   99.611617][ T6348] total_active_anon 8192
[   99.611693][ T6348] total_inactive_file 0
[   99.611702][ T6348] total_active_file 0
[   99.611710][ T6348] total_unevictable 0
[   99.611719][ T6348] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1007,pid=6347,uid=0
[   99.611794][ T6348] Memory cgroup out of memory: Killed process 6347 (syz.2.1007) total-vm:93748kB, anon-rss:1064kB, file-rss:22436kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   99.618155][ T6347] syz.2.1007 (6347) used greatest stack depth: 9864 bytes left
[   99.641815][ T6351] syz.2.1007 (6351) used greatest stack depth: 8792 bytes left
[   99.648923][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.690848][ T6378] loop3: detected capacity change from 0 to 512
[   99.696974][ T6378] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   99.853132][ T6378] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   99.853194][ T6378] ext4 filesystem being mounted at /184/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.921380][   T29] audit: type=1400 audit(1745169903.870:3445): avc:  denied  { read write } for  pid=6385 comm="syz.1.1019" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   99.945034][   T29] audit: type=1400 audit(1745169903.870:3446): avc:  denied  { open } for  pid=6385 comm="syz.1.1019" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   99.980487][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  100.015431][   T29] audit: type=1400 audit(1745169903.960:3447): avc:  denied  { mount } for  pid=6387 comm="syz.3.1020" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  100.038433][   T29] audit: type=1326 audit(1745169903.960:3448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6385 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb907e85127 code=0x7ffc0000
[  100.062208][ T6348] bond_slave_1: left promiscuous mode
[  100.062697][ T6348] +}[@ (6348) used greatest stack depth: 7288 bytes left
[  100.182189][ T6399] loop2: detected capacity change from 0 to 512
[  100.189474][ T6399] EXT4-fs: Ignoring removed oldalloc option
[  100.195487][ T6399] EXT4-fs: Ignoring removed nobh option
[  100.203106][ T6399] EXT4-fs error (device loop2): ext4_orphan_get:1390: inode #15: comm syz.2.1026: iget: bad extended attribute block 1
[  100.216115][ T6399] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.1026: couldn't read orphan inode 15 (err -117)
[  100.230637][ T6399] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.253174][ T6403] loop4: detected capacity change from 0 to 2048
[  100.261796][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.280658][ T6403] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.310353][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.348463][ T6414] loop2: detected capacity change from 0 to 512
[  100.368414][ T6414] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  100.383155][ T6416] loop4: detected capacity change from 0 to 512
[  100.391828][ T6414] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  100.404541][ T6416] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  100.405465][ T6414] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.434891][ T6416] EXT4-fs (loop4): orphan cleanup on readonly fs
[  100.442950][ T6416] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1032: bg 0: block 248: padding at end of block bitmap is not set
[  100.457692][ T6416] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1032: Failed to acquire dquot type 1
[  100.458658][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  100.471580][ T6416] EXT4-fs (loop4): 1 truncate cleaned up
[  100.484244][ T6416] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  100.514260][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.585841][ T6432] loop2: detected capacity change from 0 to 256
[  100.637578][ T6436] loop4: detected capacity change from 0 to 8192
[  101.192426][ T6463] FAULT_INJECTION: forcing a failure.
[  101.192426][ T6463] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.205729][ T6463] CPU: 1 UID: 0 PID: 6463 Comm: syz.1.1051 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  101.205813][ T6463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  101.205900][ T6463] Call Trace:
[  101.205908][ T6463]  <TASK>
[  101.205918][ T6463]  dump_stack_lvl+0xf6/0x150
[  101.205942][ T6463]  dump_stack+0x15/0x1a
[  101.205961][ T6463]  should_fail_ex+0x261/0x270
[  101.205990][ T6463]  should_fail+0xb/0x10
[  101.206130][ T6463]  should_fail_usercopy+0x1a/0x20
[  101.206163][ T6463]  _copy_from_user+0x1c/0xa0
[  101.206252][ T6463]  kstrtouint_from_user+0x84/0x100
[  101.206293][ T6463]  ? 0xffffffff81000000
[  101.206309][ T6463]  ? selinux_file_permission+0x22d/0x360
[  101.206374][ T6463]  proc_fail_nth_write+0x54/0x160
[  101.206428][ T6463]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  101.206680][ T6463]  vfs_write+0x295/0x950
[  101.206700][ T6463]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  101.206765][ T6463]  ? __fget_files+0x186/0x1c0
[  101.206787][ T6463]  ksys_write+0xeb/0x1b0
[  101.206805][ T6463]  __x64_sys_write+0x42/0x50
[  101.206822][ T6463]  x64_sys_call+0x2a45/0x2e10
[  101.206843][ T6463]  do_syscall_64+0xc9/0x1a0
[  101.206956][ T6463]  ? clear_bhb_loop+0x25/0x80
[  101.207052][ T6463]  ? clear_bhb_loop+0x25/0x80
[  101.207077][ T6463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.207102][ T6463] RIP: 0033:0x7fb907e8cc1f
[  101.207148][ T6463] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  101.207170][ T6463] RSP: 002b:00007fb9064f7030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  101.207192][ T6463] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb907e8cc1f
[  101.207271][ T6463] RDX: 0000000000000001 RSI: 00007fb9064f70a0 RDI: 0000000000000004
[  101.207283][ T6463] RBP: 00007fb9064f7090 R08: 0000000000000000 R09: 0000000000000000
[  101.207293][ T6463] R10: 00000000000fffff R11: 0000000000000293 R12: 0000000000000002
[  101.207306][ T6463] R13: 0000000000000000 R14: 00007fb9080b5fa0 R15: 00007ffc273052c8
[  101.207323][ T6463]  </TASK>
[  101.536453][ T6476] FAULT_INJECTION: forcing a failure.
[  101.536453][ T6476] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.536555][ T6476] CPU: 1 UID: 0 PID: 6476 Comm: syz.0.1056 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  101.536587][ T6476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  101.536601][ T6476] Call Trace:
[  101.536608][ T6476]  <TASK>
[  101.536617][ T6476]  dump_stack_lvl+0xf6/0x150
[  101.536645][ T6476]  dump_stack+0x15/0x1a
[  101.536680][ T6476]  should_fail_ex+0x261/0x270
[  101.536709][ T6476]  should_fail+0xb/0x10
[  101.536728][ T6476]  should_fail_usercopy+0x1a/0x20
[  101.536827][ T6476]  _copy_from_user+0x1c/0xa0
[  101.536862][ T6476]  vt_ioctl+0x1071/0x18e0
[  101.536897][ T6476]  ? tty_jobctrl_ioctl+0x2ab/0x810
[  101.536939][ T6476]  tty_ioctl+0x813/0xbd0
[  101.537081][ T6476]  ? __pfx_tty_ioctl+0x10/0x10
[  101.537106][ T6476]  __se_sys_ioctl+0xc9/0x140
[  101.537220][ T6476]  __x64_sys_ioctl+0x43/0x50
[  101.537366][ T6476]  x64_sys_call+0x168d/0x2e10
[  101.537384][ T6476]  do_syscall_64+0xc9/0x1a0
[  101.537405][ T6476]  ? clear_bhb_loop+0x25/0x80
[  101.537423][ T6476]  ? clear_bhb_loop+0x25/0x80
[  101.537518][ T6476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.537535][ T6476] RIP: 0033:0x7f694536e169
[  101.537547][ T6476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.537562][ T6476] RSP: 002b:00007f69439d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  101.537596][ T6476] RAX: ffffffffffffffda RBX: 00007f6945595fa0 RCX: 00007f694536e169
[  101.537607][ T6476] RDX: 0000200000000140 RSI: 0000000000004b66 RDI: 0000000000000003
[  101.537616][ T6476] RBP: 00007f69439d7090 R08: 0000000000000000 R09: 0000000000000000
[  101.537626][ T6476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.537636][ T6476] R13: 0000000000000000 R14: 00007f6945595fa0 R15: 00007ffcbe4cae08
[  101.537651][ T6476]  </TASK>
[  101.586078][ T6481] __nla_validate_parse: 12 callbacks suppressed
[  101.586097][ T6481] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1058'.
[  102.250794][ T6508] loop4: detected capacity change from 0 to 764
[  102.257837][ T6508] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  102.392901][ T6514] loop1: detected capacity change from 0 to 512
[  102.400621][ T6514] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  102.421699][ T6514] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  102.435301][ T6514] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.465305][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  102.475621][ T6512] loop3: detected capacity change from 0 to 8192
[  102.539525][ T6520] 9pnet_fd: Insufficient options for proto=fd
[  102.899897][ T6529] loop2: detected capacity change from 0 to 2048
[  102.931838][ T6529] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.987941][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x1
[  102.995457][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.002959][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.010442][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.017852][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.025303][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.032723][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x4
[  103.040152][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.047574][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.055007][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.062477][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x2
[  103.069932][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.077430][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.084876][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x4
[  103.092387][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.099824][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.107446][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x2
[  103.114893][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.122334][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.129865][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.137280][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.144786][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.152212][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.159669][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.167126][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.174628][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.182064][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.189498][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.196920][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.204353][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.211779][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.219243][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.226684][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.234215][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.241653][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.249090][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.256580][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.263115][ T6531] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  103.263999][ T2967] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  103.284759][ T2967] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  103.340086][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.437147][ T6552] loop2: detected capacity change from 0 to 2048
[  103.473517][ T6552] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.665697][ T6566] block device autoloading is deprecated and will be removed.
[  103.665745][ T6566] syz.3.1085: attempt to access beyond end of device
[  103.665745][ T6566] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  103.874725][ T6574] loop3: detected capacity change from 0 to 128
[  104.013343][   T29] kauditd_printk_skb: 486 callbacks suppressed
[  104.013357][   T29] audit: type=1400 audit(1745169907.960:3933): avc:  denied  { unmount } for  pid=3308 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  104.065160][ T6576] loop3: detected capacity change from 0 to 2048
[  104.082439][ T6576] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.082985][   T29] audit: type=1400 audit(1745169908.030:3934): avc:  denied  { mount } for  pid=6575 comm="syz.3.1090" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  104.092996][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x1
[  104.095205][   T29] audit: type=1400 audit(1745169908.030:3935): avc:  denied  { write } for  pid=6575 comm="syz.3.1090" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  104.116817][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.124212][   T29] audit: type=1400 audit(1745169908.030:3936): avc:  denied  { add_name } for  pid=6575 comm="syz.3.1090" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  104.145879][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.153233][   T29] audit: type=1400 audit(1745169908.030:3937): avc:  denied  { create } for  pid=6575 comm="syz.3.1090" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  104.173744][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.181133][   T29] audit: type=1400 audit(1745169908.030:3938): avc:  denied  { read write open } for  pid=6575 comm="syz.3.1090" path="/200/file1/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  104.201221][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.201249][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.208585][   T29] audit: type=1400 audit(1745169908.030:3939): avc:  denied  { audit_write } for  pid=6575 comm="syz.3.1090" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  104.232111][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x4
[  104.239396][   T29] audit: type=1107 audit(1745169908.030:3940): pid=6575 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='@'
[  104.246758][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.267843][   T29] audit: type=1400 audit(1745169908.040:3941): avc:  denied  { read write } for  pid=6575 comm="syz.3.1090" name="uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  104.275235][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.288491][   T29] audit: type=1400 audit(1745169908.040:3942): avc:  denied  { open } for  pid=6575 comm="syz.3.1090" path="/dev/uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  104.295881][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.295902][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x2
[  104.295943][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.295962][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.380436][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x4
[  104.387837][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.395257][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.402750][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x2
[  104.410213][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.411584][ T6581] loop4: detected capacity change from 0 to 8192
[  104.417613][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.417640][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.438854][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.438883][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439041][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439068][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439128][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439167][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439192][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439217][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439241][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439266][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439308][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439332][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439364][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439387][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439408][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.439427][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.558501][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.566017][ T3446] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  104.668662][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.687872][ T3446] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  104.750070][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.795265][ T6601] loop2: detected capacity change from 0 to 128
[  104.868457][ T6608] loop0: detected capacity change from 0 to 2048
[  104.908691][ T6608] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.268514][ T6624] loop3: detected capacity change from 0 to 2048
[  105.301492][ T6624] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.318280][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x1
[  105.318313][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318399][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318421][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318447][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318474][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318511][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x4
[  105.318538][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318580][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318604][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318630][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x2
[  105.318657][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318742][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318769][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x4
[  105.318795][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318822][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318849][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x2
[  105.318888][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.318910][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319019][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319044][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319069][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319096][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319134][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319160][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319184][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319204][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319283][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319310][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319337][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319363][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319389][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319440][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319467][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319507][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319534][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319561][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.319585][ T2967] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  105.321690][ T2967] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  105.353514][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.720122][ T6633] FAULT_INJECTION: forcing a failure.
[  105.720122][ T6633] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.720172][ T6633] CPU: 0 UID: 0 PID: 6633 Comm: syz.4.1109 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  105.720220][ T6633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  105.720235][ T6633] Call Trace:
[  105.720242][ T6633]  <TASK>
[  105.720250][ T6633]  dump_stack_lvl+0xf6/0x150
[  105.720277][ T6633]  dump_stack+0x15/0x1a
[  105.720346][ T6633]  should_fail_ex+0x261/0x270
[  105.720374][ T6633]  should_fail+0xb/0x10
[  105.720397][ T6633]  should_fail_usercopy+0x1a/0x20
[  105.720486][ T6633]  _copy_from_iter+0xd8/0xd10
[  105.720572][ T6633]  ? kmalloc_reserve+0x16e/0x190
[  105.720590][ T6633]  ? __build_skb_around+0x199/0x1f0
[  105.720610][ T6633]  ? __alloc_skb+0x227/0x320
[  105.720629][ T6633]  ? __virt_addr_valid+0x1ed/0x250
[  105.720650][ T6633]  ? __check_object_size+0x367/0x510
[  105.720762][ T6633]  netlink_sendmsg+0x492/0x720
[  105.720794][ T6633]  ? __pfx_netlink_sendmsg+0x10/0x10
[  105.720896][ T6633]  __sock_sendmsg+0x140/0x180
[  105.720931][ T6633]  ____sys_sendmsg+0x350/0x4e0
[  105.720963][ T6633]  __sys_sendmsg+0x1a0/0x240
[  105.721010][ T6633]  __x64_sys_sendmsg+0x46/0x50
[  105.721074][ T6633]  x64_sys_call+0x26f3/0x2e10
[  105.721101][ T6633]  do_syscall_64+0xc9/0x1a0
[  105.721195][ T6633]  ? clear_bhb_loop+0x25/0x80
[  105.721236][ T6633]  ? clear_bhb_loop+0x25/0x80
[  105.721274][ T6633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.721300][ T6633] RIP: 0033:0x7ff23a93e169
[  105.721318][ T6633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.721341][ T6633] RSP: 002b:00007ff238fa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  105.721363][ T6633] RAX: ffffffffffffffda RBX: 00007ff23ab65fa0 RCX: 00007ff23a93e169
[  105.721388][ T6633] RDX: 0000000000000040 RSI: 0000200000000600 RDI: 0000000000000007
[  105.721403][ T6633] RBP: 00007ff238fa7090 R08: 0000000000000000 R09: 0000000000000000
[  105.721417][ T6633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.721431][ T6633] R13: 0000000000000000 R14: 00007ff23ab65fa0 R15: 00007ffdea098b58
[  105.721461][ T6633]  </TASK>
[  105.722407][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.828395][ T6641] loop4: detected capacity change from 0 to 128
[  106.077321][ T6650] loop0: detected capacity change from 0 to 256
[  106.097830][ T6645] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1115'.
[  106.101720][ T6653] 9pnet_fd: Insufficient options for proto=fd
[  106.128374][ T6650] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1116'.
[  106.143553][ T6653] dummy0 speed is unknown, defaulting to 1000
[  106.148462][ T6655] loop1: detected capacity change from 0 to 2048
[  106.149806][ T6653] dummy0 speed is unknown, defaulting to 1000
[  106.150118][ T6653] dummy0 speed is unknown, defaulting to 1000
[  106.168587][ T6653] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  106.176829][ T6653] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  106.184658][ T6655] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.188866][ T6653] dummy0 speed is unknown, defaulting to 1000
[  106.203889][ T6653] dummy0 speed is unknown, defaulting to 1000
[  106.210470][ T6653] dummy0 speed is unknown, defaulting to 1000
[  106.216864][ T6653] dummy0 speed is unknown, defaulting to 1000
[  106.223446][ T6653] dummy0 speed is unknown, defaulting to 1000
[  106.233985][ T6660] loop4: detected capacity change from 0 to 2048
[  106.244302][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x1
[  106.251864][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.259396][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.266872][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.274359][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.281817][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.286216][ T6662] loop0: detected capacity change from 0 to 512
[  106.289238][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x4
[  106.297905][ T6662] EXT4-fs: Ignoring removed oldalloc option
[  106.302875][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.308788][ T6662] EXT4-fs: Ignoring removed nobh option
[  106.316143][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.316167][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.316186][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x2
[  106.316208][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.326453][ T6662] EXT4-fs error (device loop0): ext4_orphan_get:1390: inode #15: comm syz.0.1119: iget: bad extended attribute block 1
[  106.329150][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.336829][ T6662] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.1119: couldn't read orphan inode 15 (err -117)
[  106.343885][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x4
[  106.353219][ T6662] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.363707][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.363730][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.363751][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x2
[  106.424560][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.431992][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.439380][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.446760][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.454171][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.461574][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.468999][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.476480][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.477806][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.483894][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.483920][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.507677][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.515165][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.522665][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.530059][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.537497][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.544933][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.552350][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.559758][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.567163][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.574593][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.581997][ T3378] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  106.591194][ T3378] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  106.618041][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.627366][ T6671] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  106.633909][ T6671] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  106.641543][ T6671] vhci_hcd vhci_hcd.0: Device attached
[  106.643899][ T6653]  loop4: p1 < > p4
[  106.652233][ T6653] loop4: p4 size 8388608 extends beyond EOD, truncated
[  106.665850][ T6672] vhci_hcd: connection closed
[  106.666298][ T3515] vhci_hcd: stop threads
[  106.675405][ T3515] vhci_hcd: release socket
[  106.679905][ T3515] vhci_hcd: disconnect device
[  106.700756][ T6682] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1122'.
[  106.757815][ T6660]  loop4: p1 < > p4
[  106.758204][ T6660] loop4: p4 size 8388608 extends beyond EOD, truncated
[  106.860328][ T6700] loop1: detected capacity change from 0 to 256
[  106.880717][ T6700] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1130'.
[  106.989397][ T6704] loop1: detected capacity change from 0 to 8192
[  107.013843][ T6706] loop4: detected capacity change from 0 to 2048
[  107.045002][ T6706] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.745867][ T6724] dummy0 speed is unknown, defaulting to 1000
[  107.813791][ T6720] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  107.822539][ T6720] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  107.832762][ T6720] Cannot find del_set index 2 as target
[  107.873751][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.938521][ T6729] FAULT_INJECTION: forcing a failure.
[  107.938521][ T6729] name failslab, interval 1, probability 0, space 0, times 0
[  107.951441][ T6729] CPU: 1 UID: 0 PID: 6729 Comm: syz.1.1139 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  107.951469][ T6729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  107.951484][ T6729] Call Trace:
[  107.951492][ T6729]  <TASK>
[  107.951556][ T6729]  dump_stack_lvl+0xf6/0x150
[  107.951584][ T6729]  dump_stack+0x15/0x1a
[  107.951609][ T6729]  should_fail_ex+0x261/0x270
[  107.951640][ T6729]  should_failslab+0x8f/0xb0
[  107.951668][ T6729]  kmem_cache_alloc_noprof+0x59/0x340
[  107.951707][ T6729]  ? fcntl_setlk+0x56/0x9a0
[  107.951746][ T6729]  fcntl_setlk+0x56/0x9a0
[  107.951786][ T6729]  ? should_fail_ex+0xd7/0x270
[  107.951816][ T6729]  do_fcntl+0x583/0xe20
[  107.951914][ T6729]  __se_sys_fcntl+0xbd/0x1b0
[  107.952007][ T6729]  __x64_sys_fcntl+0x43/0x50
[  107.952036][ T6729]  x64_sys_call+0x1ecc/0x2e10
[  107.952075][ T6729]  do_syscall_64+0xc9/0x1a0
[  107.952110][ T6729]  ? clear_bhb_loop+0x25/0x80
[  107.952138][ T6729]  ? clear_bhb_loop+0x25/0x80
[  107.952160][ T6729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.952180][ T6729] RIP: 0033:0x7fb907e8e169
[  107.952198][ T6729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.952229][ T6729] RSP: 002b:00007fb9064f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  107.952290][ T6729] RAX: ffffffffffffffda RBX: 00007fb9080b5fa0 RCX: 00007fb907e8e169
[  107.952306][ T6729] RDX: 0000200000000180 RSI: 0000000000000025 RDI: 0000000000000003
[  107.952344][ T6729] RBP: 00007fb9064f7090 R08: 0000000000000000 R09: 0000000000000000
[  107.952355][ T6729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.952366][ T6729] R13: 0000000000000000 R14: 00007fb9080b5fa0 R15: 00007ffc273052c8
[  107.952386][ T6729]  </TASK>
[  107.954312][ T6720] dummy0 speed is unknown, defaulting to 1000
[  108.221464][ T6737] dummy0 speed is unknown, defaulting to 1000
[  108.330444][ T6747] loop2: detected capacity change from 0 to 8192
[  109.022995][   T29] kauditd_printk_skb: 202 callbacks suppressed
[  109.023012][   T29] audit: type=1400 audit(1745169912.970:4145): avc:  denied  { map_create } for  pid=6758 comm="syz.1.1149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  109.023111][   T29] audit: type=1400 audit(1745169912.970:4146): avc:  denied  { bpf } for  pid=6758 comm="syz.1.1149" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  109.025051][   T29] audit: type=1400 audit(1745169912.970:4147): avc:  denied  { map_read map_write } for  pid=6758 comm="syz.1.1149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  109.093293][   T29] audit: type=1400 audit(1745169912.990:4148): avc:  denied  { prog_load } for  pid=6758 comm="syz.1.1149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  109.093327][   T29] audit: type=1400 audit(1745169912.990:4149): avc:  denied  { perfmon } for  pid=6758 comm="syz.1.1149" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  109.093356][   T29] audit: type=1400 audit(1745169912.990:4150): avc:  denied  { prog_run } for  pid=6758 comm="syz.1.1149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  109.093387][   T29] audit: type=1400 audit(1745169913.030:4151): avc:  denied  { allowed } for  pid=6758 comm="syz.1.1149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  109.093413][   T29] audit: type=1400 audit(1745169913.050:4152): avc:  denied  { create } for  pid=6758 comm="syz.1.1149" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  109.093886][   T29] audit: type=1400 audit(1745169913.050:4153): avc:  denied  { map } for  pid=6758 comm="syz.1.1149" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=14694 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  109.093920][   T29] audit: type=1400 audit(1745169913.050:4154): avc:  denied  { read write } for  pid=6758 comm="syz.1.1149" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=14694 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  109.225351][ T6765] loop1: detected capacity change from 0 to 8192
[  109.262306][ T6769] loop4: detected capacity change from 0 to 512
[  109.389615][ T6769] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  109.433176][ T6769] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #17: comm syz.4.1153: corrupted in-inode xattr: invalid ea_ino
[  109.484071][ T6769] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.1153: couldn't read orphan inode 17 (err -117)
[  109.542549][ T6769] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.555128][ T6776] loop0: detected capacity change from 0 to 512
[  109.563718][ T6776] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  109.612698][ T6780] loop2: detected capacity change from 0 to 512
[  109.630555][ T6782] loop3: detected capacity change from 0 to 256
[  109.672097][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.807920][ T6776] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  109.838377][ T6780] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  109.937645][ T6776] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.951340][ T6778] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1156'.
[  109.976423][ T6780] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  109.989189][ T6780] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.048720][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  110.082148][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  110.092342][ T6786] loop4: detected capacity change from 0 to 8192
[  110.144600][ T6792] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1160'.
[  110.158123][ T6797] loop0: detected capacity change from 0 to 512
[  110.167363][ T6797] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.181344][ T6797] ext4 filesystem being mounted at /237/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  110.378679][ T6804] loop1: detected capacity change from 0 to 8192
[  110.893279][ T6815] loop2: detected capacity change from 0 to 128
[  111.068156][ T6819] loop3: detected capacity change from 0 to 512
[  111.079328][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.094607][ T6819] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  111.141238][ T6819] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  111.154917][ T6819] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.216244][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  111.276814][ T6826] loop1: detected capacity change from 0 to 8192
[  111.328789][ T6828] loop0: detected capacity change from 0 to 4096
[  111.348494][ T6830] dummy0 speed is unknown, defaulting to 1000
[  111.463375][ T6828] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.475985][ T6838] loop4: detected capacity change from 0 to 8192
[  111.484086][ T6828] FAULT_INJECTION: forcing a failure.
[  111.484086][ T6828] name failslab, interval 1, probability 0, space 0, times 0
[  111.496765][ T6828] CPU: 0 UID: 0 PID: 6828 Comm: syz.0.1172 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  111.496797][ T6828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  111.496809][ T6828] Call Trace:
[  111.496815][ T6828]  <TASK>
[  111.496824][ T6828]  dump_stack_lvl+0xf6/0x150
[  111.496881][ T6828]  dump_stack+0x15/0x1a
[  111.496902][ T6828]  should_fail_ex+0x261/0x270
[  111.496943][ T6828]  should_failslab+0x8f/0xb0
[  111.496979][ T6828]  kmem_cache_alloc_noprof+0x59/0x340
[  111.497040][ T6828]  ? getname_flags+0x81/0x3b0
[  111.497064][ T6828]  getname_flags+0x81/0x3b0
[  111.497083][ T6828]  user_path_at+0x26/0x140
[  111.497106][ T6828]  __se_sys_mount+0x25e/0x2e0
[  111.497187][ T6828]  ? fput+0x99/0xd0
[  111.497215][ T6828]  __x64_sys_mount+0x67/0x80
[  111.497237][ T6828]  x64_sys_call+0xd11/0x2e10
[  111.497259][ T6828]  do_syscall_64+0xc9/0x1a0
[  111.497284][ T6828]  ? clear_bhb_loop+0x25/0x80
[  111.497322][ T6828]  ? clear_bhb_loop+0x25/0x80
[  111.497344][ T6828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.497366][ T6828] RIP: 0033:0x7f694536e169
[  111.497381][ T6828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.497401][ T6828] RSP: 002b:00007f69439d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  111.497450][ T6828] RAX: ffffffffffffffda RBX: 00007f6945595fa0 RCX: 00007f694536e169
[  111.497464][ T6828] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000
[  111.497476][ T6828] RBP: 00007f69439d7090 R08: 0000000000000000 R09: 0000000000000000
[  111.497488][ T6828] R10: 0000000000000021 R11: 0000000000000246 R12: 0000000000000001
[  111.497500][ T6828] R13: 0000000000000000 R14: 00007f6945595fa0 R15: 00007ffcbe4cae08
[  111.497520][ T6828]  </TASK>
[  112.233884][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.307914][ T6849] loop1: detected capacity change from 0 to 512
[  112.341717][ T6852] syzkaller0: entered promiscuous mode
[  112.347454][ T6852] syzkaller0: entered allmulticast mode
[  112.381254][ T6855] loop0: detected capacity change from 0 to 2048
[  112.390323][ T6849] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.407617][ T6853] loop3: detected capacity change from 0 to 8192
[  112.420950][ T6852] loop2: detected capacity change from 0 to 2048
[  112.427443][ T6849] ext4 filesystem being mounted at /248/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  112.462675][ T6855] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.462700][ T6849] FAULT_INJECTION: forcing a failure.
[  112.462700][ T6849] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.462743][ T6849] CPU: 1 UID: 0 PID: 6849 Comm: syz.1.1179 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  112.462765][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  112.462817][ T6849] Call Trace:
[  112.462817][ T6855] ==================================================================
[  112.462823][ T6849]  <TASK>
[  112.462830][ T6849]  dump_stack_lvl+0xf6/0x150
[  112.462853][ T6849]  dump_stack+0x15/0x1a
[  112.462856][ T6855] BUG: KCSAN: data-race in data_push_tail / dentry_name
[  112.462872][ T6849]  should_fail_ex+0x261/0x270
[  112.462898][ T6855] 
[  112.462898][ T6849]  should_fail+0xb/0x10
[  112.462908][ T6855] write to 0xffffffff88e49a70 of 1 bytes by task 6849 on cpu 1:
[  112.462925][ T6855]  dentry_name+0x2c9/0x3c0
[  112.462935][ T6849]  should_fail_usercopy+0x1a/0x20
[  112.462949][ T6855]  pointer+0x267/0xcf0
[  112.462963][ T6849]  _copy_from_user+0x1c/0xa0
[  112.462984][ T6855]  vsnprintf+0x48f/0x8a0
[  112.463015][ T6855]  vscnprintf+0x42/0x90
[  112.462996][ T6849]  copy_msghdr_from_user+0x54/0x2b0
[  112.463044][ T6855]  printk_sprint+0x30/0x2d0
[  112.463065][ T6849]  ? __fget_files+0x186/0x1c0
[  112.463080][ T6855]  vprintk_store+0x583/0x860
[  112.463092][ T6849]  __sys_sendmsg+0x141/0x240
[  112.463116][ T6855]  vprintk_emit+0x1a0/0x6c0
[  112.463132][ T6849]  __x64_sys_sendmsg+0x46/0x50
[  112.463153][ T6855]  vprintk_default+0x26/0x30
[  112.463169][ T6855]  vprintk+0x1d/0x30
[  112.463190][ T6855]  _printk+0x7f/0xb0
[  112.463198][ T6849]  x64_sys_call+0x26f3/0x2e10
[  112.463212][ T6855]  should_fail_ex+0x249/0x270
[  112.463234][ T6855]  should_fail+0xb/0x10
[  112.463238][ T6849]  do_syscall_64+0xc9/0x1a0
[  112.463258][ T6855]  should_fail_usercopy+0x1a/0x20
[  112.463285][ T6855]  _copy_from_user+0x1c/0xa0
[  112.463309][ T6855]  copy_msghdr_from_user+0x54/0x2b0
[  112.463266][ T6849]  ? clear_bhb_loop+0x25/0x80
[  112.463339][ T6855]  __sys_sendmsg+0x141/0x240
[  112.463362][ T6855]  __x64_sys_sendmsg+0x46/0x50
[  112.463382][ T6855]  x64_sys_call+0x26f3/0x2e10
[  112.463401][ T6855]  do_syscall_64+0xc9/0x1a0
[  112.463343][ T6849]  ? clear_bhb_loop+0x25/0x80
[  112.463423][ T6855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.463448][ T6855] 
[  112.463443][ T6849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.463457][ T6855] read to 0xffffffff88e49a70 of 8 bytes by task 6855 on cpu 0:
[  112.463466][ T6849] RIP: 0033:0x7fb907e8e169
[  112.463476][ T6855]  data_push_tail+0x107/0x440
[  112.463499][ T6849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.463519][ T6849] RSP: 002b:00007fb9064f7038 EFLAGS: 00000246
[  112.463517][ T6855]  data_alloc+0xbd/0x2c0
[  112.463531][ T6849]  ORIG_RAX: 000000000000002e
[  112.463539][ T6849] RAX: ffffffffffffffda RBX: 00007fb9080b5fa0 RCX: 00007fb907e8e169
[  112.463550][ T6855]  prb_reserve+0x86a/0xb80
[  112.463576][ T6855]  vprintk_store+0x552/0x860
[  112.463614][ T6855]  vprintk_emit+0x1a0/0x6c0
[  112.463623][ T6849] RDX: 0000000000000000 RSI: 000020000000c2c0 RDI: 0000000000000005
[  112.463636][ T6849] RBP: 00007fb9064f7090 R08: 0000000000000000 R09: 0000000000000000
[  112.463647][ T6849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.463647][ T6855]  vprintk_default+0x26/0x30
[  112.463659][ T6849] R13: 0000000000000000 R14: 00007fb9080b5fa0 R15: 00007ffc273052c8
[  112.463667][ T6855]  vprintk+0x1d/0x30
[  112.463689][ T6855]  _printk+0x7f/0xb0
[  112.463706][ T6855]  __ext4_msg+0x198/0x1b0
[  112.463723][ T6855]  ext4_fill_super+0x17d1/0x3580
[  112.463743][ T6855]  get_tree_bdev_flags+0x2b4/0x330
[  112.463755][ T6849]  </TASK>
[  112.463761][ T6855]  get_tree_bdev+0x1f/0x30
[  112.463780][ T6855]  ext4_get_tree+0x1c/0x30
[  112.463800][ T6855]  vfs_get_tree+0x56/0x1e0
[  112.463820][ T6855]  do_new_mount+0x246/0x6b0
[  112.463838][ T6855]  path_mount+0x49b/0xb30
[  112.463872][ T6855]  __se_sys_mount+0x28f/0x2e0
[  112.463892][ T6855]  __x64_sys_mount+0x67/0x80
[  112.463912][ T6855]  x64_sys_call+0xd11/0x2e10
[  112.463936][ T6855]  do_syscall_64+0xc9/0x1a0
[  112.463963][ T6855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.463983][ T6855] 
[  112.463988][ T6855] value changed: 0x00000000ffffe5b0 -> 0x202c79706f637265
[  112.463998][ T6855] 
[  112.464003][ T6855] Reported by Kernel Concurrency Sanitizer on:
[  112.464013][ T6855] CPU: 0 UID: 0 PID: 6855 Comm: syz.0.1178 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[  112.464036][ T6855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  112.464051][ T6855] ==================================================================
[  112.620211][ T6848] futex_wake_op: syz.2.1180 tries to shift op by -1; fix this program
[  112.769037][ T6852]  loop2: p1 < > p4
[  112.969467][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.980763][ T6852] loop2: p4 size 8388608 extends beyond EOD, truncated
[  113.038513][ T6855] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[  113.050757][ T6855] EXT4-fs (loop0): This should not happen!! Data will be lost
[  113.050757][ T6855] 
[  113.060419][ T6855] EXT4-fs (loop0): Total free blocks count 0
[  113.066412][ T6855] EXT4-fs (loop0): Free/Dirty block details
[  113.072333][ T6855] EXT4-fs (loop0): free_blocks=0
[  113.077281][ T6855] EXT4-fs (loop0): dirty_blocks=0
[  113.082343][ T6855] EXT4-fs (loop0): Block reservation details
[  113.088418][ T6855] EXT4-fs (loop0): i_reserved_data_blocks=0
[  113.135796][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.