last executing test programs:

27.345569155s ago: executing program 4 (id=1391):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1/file3\x00', 0x11e)
renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0xffffffffffffff9c, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x0)

27.287627326s ago: executing program 4 (id=1392):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1/file3\x00', 0x11e)
renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x0) (fail_nth: 5)

26.968072468s ago: executing program 4 (id=1394):
r0 = socket(0x25, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_MEMORY_LIMIT={0x8, 0x8, 0x100}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00', r2}, 0x18)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), r0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000001d40)=ANY=[@ANYBLOB="90000000", @ANYRES16=r3, @ANYBLOB="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"], 0x90}, 0x1, 0x0, 0x0, 0x20000001}, 0x20010)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00', 0x0, 0x31, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r2}, 0x94)
socket(0x40000000015, 0x6, 0xfffffffd)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000700)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRESOCT=r6, @ANYRES8=r6], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x17, 0x8, &(0x7f0000001fc0)=ANY=[@ANYBLOB="18000000030000002000000016000000191200004e91d8416baa7ed86874c77bd92f2deb292b7b42a9a22af28b5d9403cb57104ad4101a0850a197f8a927aeb67669762d4a11bf2e2ba25776babfe5b42a9f20cf0e2fb634c61b4ba2758d0435b24e538a4a62fd8d3d8c42d1a600dc4ecbef059d77fcae0d9eec34bad3425e3f71ffc311efc61813d0cbac6b401ed9f41a0515dd4d9e013974357430f3a479ea1b3cd26f085483a1000000000000", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095", @ANYRES8=r1], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0xe}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_QUANTUM={0x8, 0xf}]}}]}, 0x38}}, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000000680)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000640)={&(0x7f0000000800)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010029bd7000fedbdf251500000038000180080003000000000008000100", @ANYRES32=r9, @ANYBLOB="0800030403000000080003000100000014ea000073797a6b616c6c6572310000000000008b679e866c188ae69f85bd592094f3ff9070f7744f3b0d61a469e86591d65da5669ab7cc1392385355bc5f6c9d3196a4c6f251bc71f06be54da76cf9865ab57ca74019e09e2bd25da0a99d10eea58af8eda652666810cddfa112a0a422881764f3b39d58c9edc7f0d4faa79cbc6bf537c723312922e015833fcd2707b9d8c47db8ad35ea58547a0a51ea88832dbed28f50e1"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r8, 0x0, 0x5}, 0x18)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000180)={0xfffffffffffffe5e, 0x0}, 0xfe68c48172c49cd4)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)
r10 = mq_open(&(0x7f0000001880)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\x1c`\xbd\xe1e\x80\x7f\xd2&l0\xc1b\xac\x8b\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL%Jw\x99y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3\x05\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xc8\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xc7\xa7\x82\xb9V}`\xb7\xfc@\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5m\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v>\x9b\n0\xb2 h\xad5\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\'/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f9\xce\x1eYV\xa2\xc4\x03PV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x9b\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xd1\x06F\xef\xbd\xeb\xf0\'\f\f\x003\xecp\x18\x9e\x1d\xeaH\xdaQ%+\xf4\xae\xab0\b\x17W\xba\xaf4E\xe62\xefm\xdd+\xb2\x1b:\xc0cc\x97\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x97s\x03`\xba\xf1\xdb\x05\xe5C)\x8f\xbchyL1:\xc2\xea\x8a\xfc\tq\xfa\xec&\xc7\xde\xf4\xf2\xb9\xe1\xa1\x80)1\xbe@Bt\xb7\xce\xc9\xee\xa8v\t\xfa,\xa2\x9a\xa3\\\xfbM\xb5\xfd\xa9\xe3\x9f\xf7\x85\x87w\x1d]& 8\xb5\xba\xea\xad\xa9\xd4V\xf1\xe9\xaaT\xc8\xff\xaf\xef\x91\xca\x9c\x80\xbeYd]\xfb\x1a\x96?\xb6\xd7{X\xa1H\xeb\xce\xd7\xb7\xf7\x15\xd6\x88\x91\xef{\xf8K@\xb6ch\x1e\x16\xd5m@\xa8\x91\xa5\xc5@\xa7\x00\xab\xc5\xc8\xc8\x9c\xe3:\xac\x1eG\xa0e\'/\x15G\x8e\xe5\x16\xd5S ]\xf8\xa1\xa46\x9a\xf0d!\xc8\x81S\xbc\x18\xdf\xa0\xfek\xb0(\xf7\xba5\x8e\xe5A\xd5l\xfbp\xcb\xa8\xf0b\x91\xc4\xd3+)Sy\x81\xe3\r%C\x03enM\xf1\xdf\xe3b\xb7\x9b\f\x82\xb1z\xcf^\x06\xcd\xa2\x96\xe3\xd5\xbd@1\xbe\x02\xad\\\x89\xd0\xe0\xa8\x11\xb4B\\\x14\\\xed5\x9c\xd7n\x8d\xec\xb5\xcc\xf8q', 0x42, 0x0, 0x0)
mq_timedsend(r10, 0x0, 0x0, 0x1000, 0x0)
mq_timedsend(r10, 0x0, 0x0, 0x0, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r10)

26.928112648s ago: executing program 4 (id=1396):
r0 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0xd1, 0x428a, 0xa, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x7, @perf_config_ext={0x100000008}, 0x88025, 0xccf8, 0x0, 0x1, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = dup(r0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r2, 0xe0, &(0x7f0000000380)={0x0, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f0000000140)=[0x0], &(0x7f0000000240)=[0x0], 0x0, 0x97, &(0x7f0000000280)=[{}, {}, {}], 0x18, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0x5a, 0x8, 0x8, &(0x7f0000000340)}}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff47}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
sendmsg$tipc(r5, &(0x7f0000002340)={&(0x7f0000000000)=@name={0x1e, 0x2, 0x2, {{0x42, 0x2}, 0x4}}, 0x10, 0x0}, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000080)={@cgroup=r2, r2, 0x4, 0x28, r2, @void, @void, @void, @value=r4}, 0x20)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x80)
pwritev2(r8, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfe}], 0x1, 0x5405, 0x0, 0x0)
sendfile(r8, r8, 0x0, 0x7a680000)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
read$char_usb(r3, &(0x7f0000000180)=""/147, 0xfdef)

26.796682638s ago: executing program 4 (id=1398):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000b33c387ec7571460951d24c8000000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x38}}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x3ef, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x6411, 0x0, 0x4}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x49, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r0, 0x6e2, 0x3900, 0x3, 0x0, 0x0)
clock_nanosleep(0x2, 0x1000000, &(0x7f0000000040)={0x77359400}, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r3, &(0x7f0000000a00)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000500)=""/18, 0x12, 0x3, 0x80000004, 0x0, 0x0, 0xc01}}, 0x120)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r5, 0x0, 0x7}, 0x18)
readv(r3, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x43)

26.46810508s ago: executing program 4 (id=1402):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)
remap_file_pages(&(0x7f000051c000/0x400000)=nil, 0x400d00, 0x7c, 0x0, 0x0)

26.4680243s ago: executing program 32 (id=1402):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)
remap_file_pages(&(0x7f000051c000/0x400000)=nil, 0x400d00, 0x7c, 0x0, 0x0)

7.668304074s ago: executing program 3 (id=1649):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000500)={@ifindex, 0xffffffffffffffff, 0x5, 0x8}, 0x20)
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000a00)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@errors_remount}, {@resgid}, {@barrier}, {@quota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}]}, 0x1, 0x783, &(0x7f0000001340)="$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")
r1 = openat(r0, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)={0x1b, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000ffff0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='percpu_free_percpu\x00', r3}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000a00)=@base={0x6, 0x4, 0x1ff, 0x5c, 0x0, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe}, 0x50)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = dup(r4)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="070000000100000008000000d900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000200000000000000000000000000000900000000"], 0xffffffffffffffe8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, &(0x7f00000016c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xab}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000600)='sys_enter\x00', r6, 0x0, 0xffffffffffffffff}, 0x18)
io_getevents(0x0, 0x3, 0x0, 0x0, 0x0)
r7 = socket(0x10, 0x2, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r8, &(0x7f0000000340)={0xa, 0x5, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r8, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r8, 0x11a, 0x1, &(0x7f0000000480)=@gcm_256={{0x303}, "000200", "e123c5876ff425b1ebe250a8486be34705f4f827ae60ecb65e528248d5552bff", "7e25837b", "15d0db2c77179e1a"}, 0x38)
write$binfmt_script(r8, &(0x7f0000000300)={'#! ', './file0'}, 0xb)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r9, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
ioctl$HIDIOCGRDESCSIZE(r1, 0x80044801, &(0x7f0000000180))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r10}, 0x18)
close_range(r7, r8, 0x0)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x1c, 0x3, 0x6, 0x101, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000800}, 0x4)

7.310646766s ago: executing program 3 (id=1654):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)={0x14, 0x27, 0x1, 0x0, 0x25dfdbf9, "", [@nested={0x4, 0xf2}]}, 0x14}], 0x1, 0x0, 0x0, 0x1}, 0x0)
pipe2$watch_queue(&(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
sendmsg$NFT_MSG_GETCHAIN(r1, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)={0xd4, 0x4, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x2}, [@NFTA_CHAIN_HOOK={0x20, 0x4, 0x0, 0x1, [@NFTA_HOOK_DEV={0x14, 0x3, 'macvtap0\x00'}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x6373af54}]}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_CHAIN_USERDATA={0x7a, 0xc, "d86ee5232a0c50103185d095e27463221cac3db72ab42b358f3b84f26d5f46a40c91f4123f1fed7eb3d7b9a4670af9eac73464b1ccd9ffd547780adda59261a3385ddf72a43e7a56c543d504321a061be08de66a8c147beb94b78890a0df15af3d6b9983b9fd5d7f2a99e8f6ad62fd534bb07be95947"}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20004090}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0x7}, 0x18)
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e0000001ac1414aa00000000"], 0x1c)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000001cc0)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES64, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x4b, 0x2eb, &(0x7f00000004c0)="$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")
iopl(0x3)
r4 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = timerfd_create(0x0, 0x0)
readv(r5, &(0x7f00000009c0)=[{&(0x7f0000000200)=""/33, 0x21}], 0x1)
pwrite64(0xffffffffffffffff, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

6.377477952s ago: executing program 3 (id=1674):
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x14, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc0800034000000014400000000c0a01011d000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xac}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
close(r0)

6.251944222s ago: executing program 3 (id=1677):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
read$eventfd(r2, &(0x7f0000000100), 0xfffffd79)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900038073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x25}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x17, 0xa, 0x201, 0x0, 0x0, {0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x4080}, 0x2000c010)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r5 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r5, &(0x7f0000000280)={0x18, 0x0, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="dfbf00000000000000006700000008000300", @ANYRES32=r6, @ANYBLOB="0800c3"], 0x30}, 0x1, 0x0, 0x0, 0x240408c3}, 0x0)
connect$pppoe(r5, &(0x7f0000000040)={0x18, 0x0, {0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1f}, 'lo\x00'}}, 0x1e)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_COALESCE(r8, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000f80)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="130028bd7000fbdbdf256500"], 0x30}}, 0x800)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYRES8=r5, @ANYBLOB="b4c3a780dfd3e300969ee14be9b4", @ANYRES64, @ANYRES64=r4, @ANYBLOB="844bf7a147954b654cd8333dbe3001694729ec5ebee4e08710301fa0480eee8a83bb3ac417779b7cd792bcf74c656dfb06370cab272ca408191097f0e0484ad398f24d880fa051df62397d30d838571da7ad727ee27aa68df4deff48a05e1e78dbd241912f712b1a8fb8c0d8dec52cac83d48fa1d27d780106fda75cb71134776e3980f1f544f3a577454de6d60751b7e0d02263f5ca61266d91760a236a3a9df1144bab4bd8db48a7c6d7b55bc8f7", @ANYRES32=r4, @ANYRESHEX=r0], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rxrpc_propose_ack\x00', r10, 0x0, 0x2000002}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x67, 0x52e, &(0x7f0000000480)="$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")
r11 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r12 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
write$binfmt_register(r12, &(0x7f0000000440)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x9, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r11, 0x7, 0x0, 0x0, 0x0)

5.604178146s ago: executing program 3 (id=1683):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0700000004000000800000000400"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000b33c387ec7571460951d24c8000000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={0x0, 0x70}}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x3ef, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x7}, 0x18)
readv(r0, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x43)

5.395096627s ago: executing program 3 (id=1686):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x400, 0x0, 0x8000021e}, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x7ff, 0x0, 0x1})
io_uring_enter(r1, 0x47fa, 0x37f9, 0x0, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r0, 0x0, 0x0, 0x0, 0x64040011, 0x1})

5.354373868s ago: executing program 33 (id=1686):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x400, 0x0, 0x8000021e}, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x7ff, 0x0, 0x1})
io_uring_enter(r1, 0x47fa, 0x37f9, 0x0, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r0, 0x0, 0x0, 0x0, 0x64040011, 0x1})

2.203423407s ago: executing program 0 (id=1737):
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4600, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x150a, &(0x7f0000000340)={0x0, 0x4edd6, 0x800, 0x2000003, 0x4005a}, 0x0, 0x0)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
syz_clone(0x8d002240, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000140)=@ipmr_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x80, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, 0x5}, [@RTA_GATEWAY={0x8, 0x5, @broadcast}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x8800)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
socket$inet6(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x783, &(0x7f0000002200)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2000000052000100000000000000000002"], 0x20}}, 0x0)
bind$tipc(r2, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
syz_io_uring_setup(0x4553, &(0x7f0000000400)={0x0, 0x59fc, 0x80, 0x3, 0xbd7f7fff}, &(0x7f0000000040)=<r5=>0x0, &(0x7f00000001c0))
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$packet(0x11, 0x2, 0x300)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
memfd_create(0x0, 0x6)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000060000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)

2.181000727s ago: executing program 1 (id=1738):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0xa00, &(0x7f0000000500)={&(0x7f0000000080)=ANY=[@ANYBLOB="40000000100039042abd7000eaffffff000003e4", @ANYRES32=0x0, @ANYBLOB="03000000c31006002000128008000100736974001400028008000200ac14142d08000c00ee"], 0x40}}, 0x4008040)

2.080665237s ago: executing program 2 (id=1739):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x2, 0x6, 0x7, 0xed}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wg0\x00', <r4=>0x0})
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00022dbd7000ffdbdf25020000001c000180060001000a000000050002000400000008000702", @ANYRES32=r4, @ANYBLOB], 0x30}, 0x1, 0x0, 0x0, 0x24000894}, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r6}, 0x18)
r7 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
r8 = openat$selinux_policy(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r8, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYRES16, @ANYBLOB="010329bd7000fcdbdf252400000018000180140002006c6f"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r8, &(0x7f0000000640)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000400)={&(0x7f0000001e00)=ANY=[@ANYBLOB="d8130000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="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"], 0x13d8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
write$selinux_load(r7, &(0x7f0000000000)=ANY=[], 0x190da)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r9}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='signal_deliver\x00', r1, 0x0, 0x1}, 0x18)
r10 = socket$inet(0x2, 0x1, 0x0)
listen(r10, 0x0)
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r11, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r12 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/uevent_helper', 0x42, 0x0)
pwritev(r12, &(0x7f0000000500)=[{0x0}, {&(0x7f0000000200)="9cc4", 0x2}], 0x2, 0xffffff01, 0x2)
r13 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r13, 0x8914, &(0x7f0000000180)={'nicvf0\x00', @random="441fd104f07a"})
writev(r11, &(0x7f00000006c0)=[{&(0x7f0000000540)="2e9b5b0007e03dd65193dfb6c575963f86dd6067", 0x14}, {&(0x7f00000001c0)="b7000018110d0000e44ba0d544", 0xd}, {&(0x7f00000005c0)="37a8a6c41ea007f3c101004c63942c6cf4c8057700000006c4fd4d80a89943afd95d2f64a709031084879a0a16bf6636c7", 0x31}], 0x3)

2.012089768s ago: executing program 1 (id=1740):
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4600, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x150a, &(0x7f0000000340)={0x0, 0x4edd6, 0x800, 0x2000003, 0x4005a}, 0x0, 0x0)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
syz_clone(0x8d002240, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000140)=@ipmr_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x80, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, 0x5}, [@RTA_GATEWAY={0x8, 0x5, @broadcast}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x8800)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
socket$inet6(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x783, &(0x7f0000002200)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r2, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
syz_io_uring_setup(0x4553, &(0x7f0000000400)={0x0, 0x59fc, 0x80, 0x3, 0xbd7f7fff}, &(0x7f0000000040)=<r4=>0x0, &(0x7f00000001c0))
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000060000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
sendmsg$tipc(r3, &(0x7f0000000540)={&(0x7f0000000240)=@name={0x1e, 0x2, 0x3, {{}, 0x2}}, 0x10, 0x0}, 0x10)

1.925060338s ago: executing program 0 (id=1741):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000800)="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", 0x2d5}, {&(0x7f0000001200)="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", 0x22b}, {&(0x7f0000000140)="5be081cd2e5383c893e2c864f68d8573838b7c45b1b91b502672fbed5f011c8997b7ab38d99b9455046f57b5fc090014b5e2bb01000000000000001a7838d85997aa2fa46ff7203067c30aa7352abbdf98e9bf033a3184a11e84639d3b91f8cb16eeb4eff27492712fcf94d28549f37bd93c88ead64493602291b385aa18601c787fc7", 0x83}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)

1.801207689s ago: executing program 0 (id=1743):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x85)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='kfree\x00', r2}, 0x18)
r3 = socket$xdp(0x2c, 0x3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000090000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb603000008000000b7040000000000008500000003000000950000000000000092367d4033d70234b5088ad508234eeb193fc4c3752159cbfd6c7ad76aef926e5a54cd005eea4e886dc69731ae1e9e1fb53ad02d06f6089ea90e213faea6092274a7f6ca0699b9b459b232de50f7"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x1005, &(0x7f00000014c0)=""/4101, 0x0, 0xc}, 0x94)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth1_virt_wifi\x00', <r6=>0x0})
r7 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xd7, 0x2, 0x0, 0x0, 0x0, 0x6149, 0x4, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x400, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x4, 0x81, 0xfffffffb})
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x2000000})
r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r8, 0x541b, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r3, &(0x7f0000000280)={0x2c, 0x4, r6, 0x8000004}, 0x10)
r9 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x400, 0x0, 0x8000021e}, &(0x7f0000000400)=<r10=>0x0, &(0x7f0000000040)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x7ff, 0x0, 0x1})
io_uring_enter(r9, 0x47fa, 0x37f9, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x94)
ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000640)={0x8f8, 0x1, 0xfffffff7, 0xffff43dd, 0x77f})
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r0, 0x0, 0x0, 0x0, 0x64040011, 0x1})

1.744291889s ago: executing program 2 (id=1744):
r0 = creat(&(0x7f0000000300)='./file0\x00', 0xc0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff108500000007000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r0, &(0x7f0000000900)="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", 0x45c)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r2, 0x0, 0x0}, 0x10)

1.71286116s ago: executing program 2 (id=1746):
lgetxattr(0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x88e, &(0x7f0000000c80), 0x3, 0x445, &(0x7f0000000800)="$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")
lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='uses.}-^^\x00'], 0x0, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000000a00)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000500)=""/18, 0x12, 0x3, 0x80000004, 0x0, 0x0, 0xc01}}, 0x120)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1, 0x0, 0x4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
readv(r0, 0x0, 0x0)
write$UHID_DESTROY(r0, &(0x7f0000000040), 0x4)
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000004, 0x1010, 0xffffffffffffffff, 0x10000000)
r2 = syz_io_uring_setup(0x28a0, &(0x7f00000000c0)={0x0, 0x7296, 0x10000, 0x3, 0x1b6}, &(0x7f0000000000), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x16, &(0x7f00000001c0)={&(0x7f0000001000), 0x0, 0x2}, 0x1)

1.489118651s ago: executing program 0 (id=1749):
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c02000100000000000040000280ffffff05000500000000000a"], 0x80}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000b8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x3, 0x0, 0x1, 0x800}, 0x0, &(0x7f0000000240)={0x1f, 0x3}, 0x0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x3)
ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000040)={0x0, 0x408, 0x401, 0x4, 0xffc0, 0x2})
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r5, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
shutdown(r5, 0x1)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
ioctl$FS_IOC_GETFSSYSFSPATH(r6, 0x80811501, &(0x7f0000000440)={0x80})
r7 = socket$rxrpc(0x21, 0x2, 0xa)
recvfrom(r3, &(0x7f0000000300)=""/173, 0xad, 0x41, &(0x7f00000003c0)=@pppol2tpv3={0x18, 0x1, {0x0, r7, {0x2, 0x7, @empty}, 0x4, 0x3, 0x3, 0x4}}, 0x80)
getrandom(&(0x7f0000000200)=""/251, 0xfb, 0x1)

1.296257192s ago: executing program 2 (id=1751):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1/file3\x00', 0x11e)
renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb85000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x0)

1.271242912s ago: executing program 2 (id=1753):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0700000004000000800000"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x38}}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x3ef, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x6411, 0x0, 0x4}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x49, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r0, 0x6e2, 0x3900, 0x3, 0x0, 0x0)
clock_nanosleep(0x2, 0x1000000, &(0x7f0000000040)={0x77359400}, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r3, &(0x7f0000000a00)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000500)=""/18, 0x12, 0x3, 0x80000004, 0x0, 0x0, 0xc01}}, 0x120)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r5, 0x0, 0x7}, 0x18)
readv(r3, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x43)

1.231427583s ago: executing program 6 (id=1754):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0x9}, 0x18)
r1 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r1, &(0x7f0000000600)={&(0x7f0000000080)={0x2, 0xffff, @empty}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000180)="08007715e050e9ce", 0x8}], 0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

1.187374353s ago: executing program 6 (id=1756):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000380)={0x2, 0x3, 0x0, 0x3, 0xd, 0x0, 0x70bd2c, 0x25dfdbfb, [@sadb_key={0x3, 0x9, 0x80, 0x0, "1cdc0dca1d9f68846960e56de42944af"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e20, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc, 0x7ffffffe}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, 0x68}, 0x1, 0x7}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x6, 0x80500, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0xa60b, 0x11dd}, 0x0, 0x6, 0x0, 0x5, 0x8, 0x20009, 0x1, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r4 = creat(&(0x7f0000000300)='./file0\x00', 0xc0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
write$qrtrtun(r4, &(0x7f0000000900)="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", 0x45c)
r7 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r7, 0x0, 0x0}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fsopen(&(0x7f0000000200)='dax\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd318", 0x14, 0x6, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, @local, {[], {{0xfffe, 0x4002, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc1, 0xfffd}}}}}}}, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x0, 0x0, 0x89}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x58}}, 0x0)

1.111794963s ago: executing program 1 (id=1758):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x85)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='kfree\x00', r2}, 0x18)
r3 = socket$xdp(0x2c, 0x3, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000090000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb603000008000000b7040000000000008500000003000000950000000000000092367d4033d70234b5088ad508234eeb193fc4c3752159cbfd6c7ad76aef926e5a54cd005eea4e886dc69731ae1e9e1fb53ad02d06f6089ea90e213faea6092274a7f6ca0699b9b459b232de50f7"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x1005, &(0x7f00000014c0)=""/4101, 0x0, 0xc}, 0x94)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth1_virt_wifi\x00', <r6=>0x0})
r7 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xd7, 0x2, 0x0, 0x0, 0x0, 0x6149, 0x4, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x400, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x4, 0x81, 0xfffffffb})
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x2000000})
r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r8, 0x541b, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r3, &(0x7f0000000280)={0x2c, 0x4, r6, 0x8000004}, 0x10)
r9 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x400, 0x0, 0x8000021e}, &(0x7f0000000400)=<r10=>0x0, &(0x7f0000000040)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x7ff, 0x0, 0x1})
io_uring_enter(r9, 0x47fa, 0x37f9, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x94)
ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000640)={0x8f8, 0x1, 0xfffffff7, 0xffff43dd, 0x77f})
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r0, 0x0, 0x0, 0x0, 0x64040011, 0x1})

993.107724ms ago: executing program 6 (id=1759):
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000003040)={0x0, <r0=>0x0}, &(0x7f0000000200)=0xc)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000c80)='./file0\x00', 0xa10002, &(0x7f0000000300)={[{@acl}, {@block_validity}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid={'resuid', 0x3d, r0}}, {@jqfmt_vfsv0}, {@abort}, {@noinit_itable}]}, 0x0, 0x587, &(0x7f0000000f80)="$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")
stat(&(0x7f0000006080)='./file0\x00', 0x0)

850.595795ms ago: executing program 6 (id=1762):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x1d, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0xb, &(0x7f00000005c0)=ANY=[@ANYRES64, @ANYRESOCT], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00'})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socket(0x2, 0x80805, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)

783.557695ms ago: executing program 1 (id=1765):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000800)="3aae1baf930b4569b9ddef9797ffd935c7d80e6466b3e4e62dc9603583f5d4b61fbc65b6ac744d7319535e75bf552062e4cfde1ba7ce29263322e18ea9740aa82ca692f123993e57cda00d2b1f4e799bd41e3f76258180fa91a42aaa8b1ebc4e0ea8fb12f2c71e6e5bc57a8e91f254005514721d93c13c5606ae1fea7f31f558d562bd5a8dfb0b9fed873efa221fccffa847cd374c92e6cbb03e6a9de890ce323f000000abcc6c01326d588495b7c1a7db31ec4129e6336f26bb9e0b7552af3cd2d5dda1632799bbc98425c433384d8a8e4071ff39a36dfdfdf05af35a4ddd340cfecd7ec935f4ce7d3e851583ba1cf53a90a7f7bce5703de57ce93ddef7849b30a01de0637e6d5e507b801d32e582e0c2d564539ebfc84c098a23e765552767b122885fb1629e9c180be47da7931bd125b80de15aab0c56a2edf2e0483b87f5ab299dc046076203dea10ccbfc631d5bf4a87ce67004519f248f086346ce6a8a9d181789a59f81d9b7f6781daac3e229914b8b8998c15c3b6302a519331cb05995bc60b7cb872dd3b5b43331c77c5d72e21f7bd2b1a915ff3204e3f20d3a20b22d6a58155b5a4ebf6d1d1cd90c656ecada531c07ff91deb3efa91762cdecfbcc43553750f22ac5c18cc5e8b6f790c2f4e6373af9f98d10e6df49ff8e5cbcbd68e11ed0b967add11410dc2e34f08dea658eb95d4d1153b4c6093192a340eb30fcc71619888c6486746a049585d249efb96b9cace83320b8f96b40ebe3a9a788d05a053380d1026b9434df87a3a387549bcabe88684c4dbf0da9a5212f3dbc8d1dff240856691243b203d7edd4d3cc89a38a6c80fdb1229a01044af7aaecb20d5570ebf24b30bbc6dfc3f70d85cd9f0d60ebd8fedd161d199d9997a0e2d18d1c99bc7158564e0ddb4673055de196535d706d142e1dc7d404583923cb1b286cfc5418884ac7e605d93652dc48ff690894405a0b6abc3c4d0f6a16c0a95c0508bd7eeffcd1da0b17f7701448658864b429e9472edfeffb", 0x2d5}, {&(0x7f0000001200)="ab29d92826349952eb8f7a2a74f535bc9739c1df57144c51a3391625b8b5354134b06ef1355506aeae96e3f097503998f375a054cf3d7de4fe53ea51518955349cdbadca60e1c65cc18dbe99369be03e492fb55fc9067bb6f7f7c3ee1720000000054a63ac58225ed0502f5ac8999e0c74a5dbb320bd54ec813e8bee6bfa5cbfb0726ac1b6ad97d802d5fae186f0768021fb965c7396854e2a3ac844a3769f8449901ba5e2b2da1ff6119aeb26ac204cfc6b54be73b6f195491ae2c0cb26b0cba61dae7a17740e8112ff188919c6e2e31a2a074863edba4a0e58b61f48eccfcc29d7f9e48a43b8cb7d3c5a1e5aa67f87538140f8d633a54bceb8b1dda2397ea147d3b26e903f608b6ab1844ea7cf630d828118bba0f0f85e2e6316ae1ed9a2a7d08a05c170cb76bf111930df0cf760f7768571afdefe82a95296cee7c010f748a97046efcc774e7d85edbd5058104fef4942fb4430da89f67d1fea33bf2acfb793a6e453a8a28cd5c4b733fc8e8f630932206960e9076c7d7fc99fce018701c50d39b811a7427a7a9fcb340c2755541f228462010ec40ba945a0febd460dad5d548f1be090f5dbaa8ae8835dc47ed2537681827f6129759272574cf58f2f33c0bb3c24fa67c327cde47a0e416573cfdcfb44ed9dd4ce41af4de9c471c49f120790934c3b32f2f4777c65b15748267223cbde856fa5a33f12cb1ea51da9ce96881d1aa6d096ed6b23190800000081803a2119d9efd47b1abba3c1e6c563c1ec692da80ef66b19495b8e801d", 0x22b}, {&(0x7f0000000140)="5be081cd2e5383c893e2c864f68d8573838b7c45b1b91b502672fbed5f011c8997b7ab38d99b9455046f57b5fc090014b5e2bb01000000000000001a7838d85997aa2fa46ff7203067c30aa7352abbdf98e9bf033a3184a11e84639d3b91f8cb16eeb4eff27492712fcf94d28549f37bd93c88ead64493602291b385aa18601c787fc7", 0x83}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)

739.504425ms ago: executing program 1 (id=1767):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000740)='kfree\x00', r1, 0x0, 0x40008003}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x24403}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x44}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0) (fail_nth: 1)

540.559687ms ago: executing program 5 (id=1768):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
madvise(&(0x7f0000603000/0x4000)=nil, 0x4000, 0x56)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r2, 0x400, 0x1)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x10)
madvise(&(0x7f0000154000/0x4000)=nil, 0x4000, 0x10)
setitimer(0x0, 0x0, 0x0)

509.540287ms ago: executing program 6 (id=1769):
signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
r0 = syz_io_uring_setup(0x38a9, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0x0, 0xfffffffe}, &(0x7f0000000040), &(0x7f0000000140))
io_uring_enter(r0, 0x44fd, 0x3, 0x1, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r1}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x3)

508.325977ms ago: executing program 5 (id=1770):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000a00)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r2, 0x0, 0x10000001}, 0x18)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAPCLR(r3, 0x4b68, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000003540)=""/4130, 0x1022}, {&(0x7f0000000780)=""/190, 0xbe}], 0x2}, 0x102)

451.939678ms ago: executing program 1 (id=1771):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x14080, &(0x7f0000000180)={[{@errors_remount}, {@noload}, {@noauto_da_alloc}]}, 0x1, 0x56d, &(0x7f0000000c00)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x50)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10208}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYBLOB="14000000100001000c000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000006000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc4c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000020000380100000800c00018006000100d10300000c000080080003400000000214000000110001"], 0xb0}}, 0x40)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r6}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000010900010073797a310000000048000000030a0101000000000000000001000000090003001e007a3200000000080007006e6174000900010073797a310000000014000480080002407c40280f080001"], 0xb8}, 0x1, 0x0, 0x0, 0x20004004}, 0x0)
ioctl$EVIOCSKEYCODE(r3, 0x40084504, &(0x7f0000000280)=[0x7f, 0x1])
r8 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
shmctl$SHM_LOCK(0x0, 0xb)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='memory.stat\x00', 0x275a, 0x0)
fcntl$lock(r9, 0x26, &(0x7f0000000000))
r10 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
getdents(r10, &(0x7f0000001fc0)=""/184, 0xb8)

451.684758ms ago: executing program 5 (id=1772):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x8, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r2, 0x5608)

451.290318ms ago: executing program 5 (id=1773):
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x14, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc0800034000000014400000000c0a01011d000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xac}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
close(r0)

387.221998ms ago: executing program 2 (id=1774):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000140)={0x4200, 0x3, 0x5}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040041}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18020000fcffffff000000000100000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000700008500000006000000850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x81}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000640), &(0x7f00000003c0), 0x20075, r3}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000800)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x631, 0x0, 0x40, 0x5a, &(0x7f0000000740)="141828f2dcfe52f5f16a881db5e501c7943da977b61d532ee967e6f214dfdaa47c7189d8098b491f08a1f64e5e0b8a6d5745e7fa043a9cebe18c21a423d0c763", &(0x7f0000000580)="0e0e7d942d50d716554ada9fad7d5ea05f7320db80da72596ca0c0bbcbd6c6954175d082f00a52411e8c27cbc5410cdecd588df7a99d2f838d93ea8bf997be7d36ff558bffc8e8774bab9e14a06d60bc2d6a082b9d081117207f", 0x2, 0x0, 0x6}, 0x50)
bind$netlink(0xffffffffffffffff, &(0x7f00000002c0)={0x10, 0x0, 0x25dfdbfe, 0x100000}, 0xc)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r4}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$unix(r5, &(0x7f0000003540)={0x0, 0x0, 0x0, 0x0, &(0x7f0000003480)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xee01}}}], 0x20}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x10, 0x8, 0xe38, 0x101, 0x440, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}, 0x50)

368.519318ms ago: executing program 0 (id=1775):
r0 = fsopen(&(0x7f0000000080)='mqueue\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000001d40)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xaei\xb6\xb7\xc1Y\xd5YG\xf9\xc2\xf1\xa4\xdb$\xf6]\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\x03\x00\x00\x00\x00\x00\x00\x00\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^W\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B\xc5\x05\x9d\xd6\x02|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3q\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\x00\x00\x00\x00\x00\x00\x00\x00\x00\xef\xcd\xd3\t\x01A\xd5\x81\xc1;9\xeez\xba\x00\x00\x00\xdc\x94\xff)\xa4\xe6\xfb]\x90bG\x11\b\x98#\xaa99ez|\x8b5\x92\xa5\xba\x96\xb3\xb26I\xbb\xdeb\x95?\xc0\x81', &(0x7f0000000200)='sockfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='\x00', &(0x7f00000001c0)='dE\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x18)
close(r0) (fail_nth: 1)

343.006458ms ago: executing program 6 (id=1776):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000000380)={[{@errors_remount}, {@discard}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@jqfmt_vfsv1}, {@abort}, {@data_err_ignore}]}, 0x1, 0x476, &(0x7f0000000540)="$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")
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$fou(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0902000000000000000001000000050002000a00000014000700ff00000000000000000000000000000108000b00"], 0x38}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
socket$inet6_sctp(0xa, 0x1, 0x84)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="8b332abd70000000478d15000000080099"], 0x30}}, 0x0)

313.771018ms ago: executing program 5 (id=1777):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000800)="3aae1baf930b4569b9ddef9797ffd935c7d80e6466b3e4e62dc9603583f5d4b61fbc65b6ac744d7319535e75bf552062e4cfde1ba7ce29263322e18ea9740aa82ca692f123993e57cda00d2b1f4e799bd41e3f76258180fa91a42aaa8b1ebc4e0ea8fb12f2c71e6e5bc57a8e91f254005514721d93c13c5606ae1fea7f31f558d562bd5a8dfb0b9fed873efa221fccffa847cd374c92e6cbb03e6a9de890ce323f000000abcc6c01326d588495b7c1a7db31ec4129e6336f26bb9e0b7552af3cd2d5dda1632799bbc98425c433384d8a8e4071ff39a36dfdfdf05af35a4ddd340cfecd7ec935f4ce7d3e851583ba1cf53a90a7f7bce5703de57ce93ddef7849b30a01de0637e6d5e507b801d32e582e0c2d564539ebfc84c098a23e765552767b122885fb1629e9c180be47da7931bd125b80de15aab0c56a2edf2e0483b87f5ab299dc046076203dea10ccbfc631d5bf4a87ce67004519f248f086346ce6a8a9d181789a59f81d9b7f6781daac3e229914b8b8998c15c3b6302a519331cb05995bc60b7cb872dd3b5b43331c77c5d72e21f7bd2b1a915ff3204e3f20d3a20b22d6a58155b5a4ebf6d1d1cd90c656ecada531c07ff91deb3efa91762cdecfbcc43553750f22ac5c18cc5e8b6f790c2f4e6373af9f98d10e6df49ff8e5cbcbd68e11ed0b967add11410dc2e34f08dea658eb95d4d1153b4c6093192a340eb30fcc71619888c6486746a049585d249efb96b9cace83320b8f96b40ebe3a9a788d05a053380d1026b9434df87a3a387549bcabe88684c4dbf0da9a5212f3dbc8d1dff240856691243b203d7edd4d3cc89a38a6c80fdb1229a01044af7aaecb20d5570ebf24b30bbc6dfc3f70d85cd9f0d60ebd8fedd161d199d9997a0e2d18d1c99bc7158564e0ddb4673055de196535d706d142e1dc7d404583923cb1b286cfc5418884ac7e605d93652dc48ff690894405a0b6abc3c4d0f6a16c0a95c0508bd7eeffcd1da0b17f7701448658864b429e9472edfeffbf3", 0x2d6}, {&(0x7f0000001200)="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", 0x22b}, {&(0x7f0000000140)="5be081cd2e5383c893e2c864f68d8573838b7c45b1b91b502672fbed5f011c8997b7ab38d99b9455046f57b5fc090014b5e2bb01000000000000001a7838d85997aa2fa46ff7203067c30aa7352abbdf98e9bf033a3184a11e84639d3b91f8cb16eeb4eff27492712fcf94d28549f37bd93c88ead64493602291b385aa18601c787fc7", 0x83}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)

24.13769ms ago: executing program 0 (id=1778):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x8)
fchmodat(r6, &(0x7f0000000300)='.\x00', 0xffffffd3)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
socketpair(0x2, 0x5, 0x6, &(0x7f0000001e00))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={r6, 0xfffffffffffffd31, &(0x7f0000000500)}, 0x10)
sendmsg$MPTCP_PM_CMD_REMOVE(r6, &(0x7f00000001c0)={&(0x7f0000000340), 0xc, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x4000005}, 0x4000000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
inotify_init1(0x0)
inotify_rm_watch(0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYRES8=r3, @ANYRESOCT=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRESDEC=r4], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{}, &(0x7f0000000580), &(0x7f00000005c0)=r7}, 0x20)
open(&(0x7f00000001c0)='./file0\x00', 0x82000, 0x144)
r8 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x148)
fcntl$setlease(r8, 0x400, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}}, 0x8010)

0s ago: executing program 5 (id=1779):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x8)
fchmodat(r6, &(0x7f0000000300)='.\x00', 0xffffffd3)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
socketpair(0x2, 0x5, 0x6, &(0x7f0000001e00))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={r6, 0xfffffffffffffd31, &(0x7f0000000500)}, 0x10)
sendmsg$MPTCP_PM_CMD_REMOVE(r6, &(0x7f00000001c0)={&(0x7f0000000340), 0xc, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x4000005}, 0x4000000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
inotify_init1(0x0)
inotify_rm_watch(0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYRES8=r3, @ANYRESOCT=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRESDEC=r4], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{}, &(0x7f0000000580), &(0x7f00000005c0)=r7}, 0x20)
open(&(0x7f00000001c0)='./file0\x00', 0x82000, 0x144)
r8 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x148)
fcntl$setlease(r8, 0x400, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}}, 0x8010)

kernel console output (not intermixed with test programs):

fffffff)
[  102.709126][ T7081] loop1: detected capacity change from 0 to 164
[  102.739592][ T7072] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 18: comm syz.4.1259: lblock 23 mapped to illegal pblock 18 (length 1)
[  102.780730][ T7081] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  102.804521][ T7072] EXT4-fs (loop4): Remounting filesystem read-only
[  102.940220][ T7092] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1262'.
[  103.062902][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.107359][ T7099] loop2: detected capacity change from 0 to 164
[  103.122537][ T7099] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  103.146750][ T7099] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  103.165310][ T7099] Symlink component flag not implemented
[  103.171043][ T7099] Symlink component flag not implemented
[  103.206660][ T7099] Symlink component flag not implemented (7)
[  103.212736][ T7099] Symlink component flag not implemented (116)
[  103.375067][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.419299][ T7105] loop0: detected capacity change from 0 to 164
[  103.451015][ T7105] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  103.465850][ T7106] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1267'.
[  103.468568][ T7105] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  103.484087][ T7105] Symlink component flag not implemented
[  103.489563][ T7115] loop4: detected capacity change from 0 to 512
[  103.489752][ T7105] Symlink component flag not implemented
[  103.503428][ T7105] Symlink component flag not implemented (7)
[  103.508405][ T3421] hid-generic 0003:80000004:0000.001B: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  103.509472][ T7105] Symlink component flag not implemented (116)
[  103.554568][ T7115] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.573222][ T7115] ext4 filesystem being mounted at /258/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  103.674345][ T7115] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 18: comm syz.4.1270: lblock 23 mapped to illegal pblock 18 (length 1)
[  103.691577][ T7115] EXT4-fs (loop4): Remounting filesystem read-only
[  103.754872][ T7130] loop0: detected capacity change from 0 to 2048
[  103.879244][ T7140] loop3: detected capacity change from 0 to 512
[  103.901788][ T3503]  loop0: p1 < > p3 p4
[  103.906519][ T3503] loop0: p3 start 458752 is beyond EOD, truncated
[  103.913026][ T3503] loop0: p4 start 268435456 is beyond EOD, truncated
[  104.103342][ T7140] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.124235][ T7140] ext4 filesystem being mounted at /264/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  104.352945][ T7140] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 18: comm syz.3.1277: lblock 23 mapped to illegal pblock 18 (length 1)
[  104.408344][ T7140] EXT4-fs (loop3): Remounting filesystem read-only
[  104.482994][ T7130]  loop0: p1 < > p3 p4
[  104.487920][ T7130] loop0: p3 start 458752 is beyond EOD, truncated
[  104.494540][ T7130] loop0: p4 start 268435456 is beyond EOD, truncated
[  104.506246][ T7147] __nla_validate_parse: 2 callbacks suppressed
[  104.506266][ T7147] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1278'.
[  104.521533][ T7147] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1278'.
[  104.532605][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.652270][ T7149] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1279'.
[  104.681425][ T7158] vhci_hcd: invalid port number 9
[  104.686504][ T7158] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  104.766855][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.780359][ T7164] netlink: 7 bytes leftover after parsing attributes in process `syz.2.1284'.
[  104.805191][ T3503] udevd[3503]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  104.818777][ T7174] loop3: detected capacity change from 0 to 164
[  104.825424][ T7164] netlink: 7 bytes leftover after parsing attributes in process `syz.2.1284'.
[  104.846332][ T7174] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  104.856703][ T7174] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  104.869334][ T7174] Symlink component flag not implemented
[  104.875046][ T7174] Symlink component flag not implemented
[  104.886529][ T7174] Symlink component flag not implemented (7)
[  104.892593][ T7174] Symlink component flag not implemented (116)
[  104.926563][ T7182] loop2: detected capacity change from 0 to 512
[  105.005583][ T7191] loop4: detected capacity change from 0 to 512
[  105.014757][ T7182] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.032087][ T7182] ext4 filesystem being mounted at /269/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  105.070539][ T7199] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1295'.
[  105.093126][   T29] kauditd_printk_skb: 2332 callbacks suppressed
[  105.093225][   T29] audit: type=1326 audit(1762619902.345:29518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.123026][   T29] audit: type=1326 audit(1762619902.345:29519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.187025][ T7191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.240657][   T29] audit: type=1326 audit(1762619902.395:29520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.252045][ T7182] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 18: comm syz.2.1290: lblock 23 mapped to illegal pblock 18 (length 1)
[  105.264154][   T29] audit: type=1326 audit(1762619902.395:29521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.264192][   T29] audit: type=1326 audit(1762619902.395:29522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.264223][   T29] audit: type=1326 audit(1762619902.395:29523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.264298][   T29] audit: type=1326 audit(1762619902.395:29524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.264326][   T29] audit: type=1326 audit(1762619902.395:29525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.264355][   T29] audit: type=1326 audit(1762619902.395:29526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.264441][   T29] audit: type=1326 audit(1762619902.395:29527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7192 comm="syz.3.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  105.280709][ T7191] ext4 filesystem being mounted at /262/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  105.482579][ T7182] EXT4-fs (loop2): Remounting filesystem read-only
[  105.492924][ T7205] loop3: detected capacity change from 0 to 2048
[  105.531849][ T3503]  loop3: p1 < > p3 p4
[  105.537270][ T3503] loop3: p3 start 458752 is beyond EOD, truncated
[  105.543759][ T3503] loop3: p4 start 268435456 is beyond EOD, truncated
[  105.591694][ T7205]  loop3: p1 < > p3 p4
[  105.612318][ T7205] loop3: p3 start 458752 is beyond EOD, truncated
[  105.619211][ T7205] loop3: p4 start 268435456 is beyond EOD, truncated
[  105.637105][ T7191] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 18: comm syz.4.1294: lblock 23 mapped to illegal pblock 18 (length 1)
[  105.653312][ T7191] EXT4-fs (loop4): Remounting filesystem read-only
[  105.797948][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.877278][ T7217] loop3: detected capacity change from 0 to 164
[  105.887993][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.963304][ T7217] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  105.978686][ T7217] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  106.017339][ T7217] Symlink component flag not implemented
[  106.023086][ T7217] Symlink component flag not implemented
[  106.057450][ T7217] Symlink component flag not implemented (7)
[  106.063876][ T7217] Symlink component flag not implemented (116)
[  106.559917][ T7251] netlink: 7 bytes leftover after parsing attributes in process `syz.3.1309'.
[  106.569318][ T7251] netlink: 7 bytes leftover after parsing attributes in process `syz.3.1309'.
[  106.598080][ T7256] loop4: detected capacity change from 0 to 512
[  106.634750][ T7259] loop3: detected capacity change from 0 to 164
[  106.659652][ T7259] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  106.674896][ T7256] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.684018][ T7259] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  106.709693][ T7259] Symlink component flag not implemented
[  106.715387][ T7259] Symlink component flag not implemented
[  106.728038][ T7256] ext4 filesystem being mounted at /266/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  106.780076][ T7259] Symlink component flag not implemented (7)
[  106.786111][ T7259] Symlink component flag not implemented (116)
[  106.913504][ T7256] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 18: comm syz.4.1310: lblock 23 mapped to illegal pblock 18 (length 1)
[  106.950243][ T7256] EXT4-fs (loop4): Remounting filesystem read-only
[  106.950699][ T7265] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1313'.
[  106.967804][ T7265] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1313'.
[  107.054442][ T7268] loop0: detected capacity change from 0 to 2048
[  107.111324][ T7268]  loop0: p1 < > p3 p4
[  107.123464][ T7268] loop0: p3 start 458752 is beyond EOD, truncated
[  107.130028][ T7268] loop0: p4 start 268435456 is beyond EOD, truncated
[  107.456428][ T7287] loop2: detected capacity change from 0 to 2048
[  107.483174][   T36] hid_parser_main: 26 callbacks suppressed
[  107.483198][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.496890][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.505059][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.512868][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.520716][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.528494][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.536432][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.544223][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.552026][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.559782][   T36] hid-generic 0003:80000004:0000.001C: unknown main item tag 0x0
[  107.571497][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.601100][ T3503]  loop2: p1 < > p3 p4
[  107.602843][   T36] hid-generic 0003:80000004:0000.001C: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  107.624663][ T3503] loop2: p3 start 458752 is beyond EOD, truncated
[  107.631231][ T3503] loop2: p4 start 268435456 is beyond EOD, truncated
[  107.641893][ T7287]  loop2: p1 < > p3 p4
[  107.649930][ T7287] loop2: p3 start 458752 is beyond EOD, truncated
[  107.656453][ T7287] loop2: p4 start 268435456 is beyond EOD, truncated
[  107.754920][ T7299] loop4: detected capacity change from 0 to 128
[  107.785207][ T7300] loop3: detected capacity change from 0 to 128
[  107.841980][ T7299] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  107.866913][ T7299] ext4 filesystem being mounted at /267/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  107.883844][ T7299] EXT4-fs warning (device loop4): __ext4_ioctl:1551: Setting inode version is not supported with metadata_csum enabled.
[  108.112584][ T7304] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  108.525949][ T3325] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  108.571482][ T7319] loop1: detected capacity change from 0 to 2048
[  108.605281][ T3306]  loop1: p1 < > p3 p4
[  108.610022][ T3306] loop1: p3 start 458752 is beyond EOD, truncated
[  108.616541][ T3306] loop1: p4 start 268435456 is beyond EOD, truncated
[  108.629955][ T7319]  loop1: p1 < > p3 p4
[  108.639217][ T7319] loop1: p3 start 458752 is beyond EOD, truncated
[  108.645866][ T7319] loop1: p4 start 268435456 is beyond EOD, truncated
[  108.788319][ T7339] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  108.821911][ T3004]  loop1: p1 < > p3 p4
[  108.829246][ T3004] loop1: p3 start 458752 is beyond EOD, truncated
[  108.832990][ T7344] loop2: detected capacity change from 0 to 512
[  108.835802][ T3004] loop1: p4 start 268435456 is beyond EOD, truncated
[  109.760707][ T7344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.873096][ T7344] ext4 filesystem being mounted at /279/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  109.923342][ T7352] __nla_validate_parse: 4 callbacks suppressed
[  109.923359][ T7352] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1339'.
[  109.983364][ T3503] udevd[3503]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  110.024723][ T7352] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1339'.
[  110.038317][ T3503] udevd[3503]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  110.053613][ T3503] udevd[3503]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  110.061944][ T7344] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 18: comm syz.2.1338: lblock 23 mapped to illegal pblock 18 (length 1)
[  110.097732][ T7344] EXT4-fs (loop2): Remounting filesystem read-only
[  110.191785][   T29] kauditd_printk_skb: 925 callbacks suppressed
[  110.191803][   T29] audit: type=1326 audit(1762619907.445:30453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.225562][ T7368] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1345'.
[  110.240750][ T7368] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1345'.
[  110.252709][   T29] audit: type=1326 audit(1762619907.475:30454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.276294][   T29] audit: type=1326 audit(1762619907.475:30455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.300007][   T29] audit: type=1326 audit(1762619907.475:30456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.323634][   T29] audit: type=1326 audit(1762619907.475:30457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.347384][   T29] audit: type=1326 audit(1762619907.475:30458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.370923][   T29] audit: type=1326 audit(1762619907.475:30459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.394457][   T29] audit: type=1326 audit(1762619907.475:30460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=255 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.418004][   T29] audit: type=1326 audit(1762619907.475:30461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.441619][   T29] audit: type=1326 audit(1762619907.475:30462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7367 comm="syz.0.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  110.492187][ T7377] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  110.502821][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.576401][ T7386] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1349'.
[  110.590431][ T7386] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1349'.
[  110.599503][ T7386] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1349'.
[  110.617789][ T3567] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  110.633469][ T3567] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  110.642519][ T7386] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1349'.
[  110.651511][ T7386] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1349'.
[  110.660996][ T3567] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  110.675940][ T3567] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  110.721136][ T7394] loop2: detected capacity change from 0 to 2048
[  110.821277][ T3503]  loop2: p1 < > p3 p4
[  110.826064][ T3503] loop2: p3 start 458752 is beyond EOD, truncated
[  110.832756][ T3503] loop2: p4 start 268435456 is beyond EOD, truncated
[  110.840984][ T7394]  loop2: p1 < > p3 p4
[  110.846002][ T7394] loop2: p3 start 458752 is beyond EOD, truncated
[  110.852643][ T7394] loop2: p4 start 268435456 is beyond EOD, truncated
[  111.620017][ T7411] FAULT_INJECTION: forcing a failure.
[  111.620017][ T7411] name failslab, interval 1, probability 0, space 0, times 1
[  111.632767][ T7411] CPU: 0 UID: 0 PID: 7411 Comm: syz.3.1358 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  111.632860][ T7411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  111.632873][ T7411] Call Trace:
[  111.632880][ T7411]  <TASK>
[  111.632931][ T7411]  __dump_stack+0x1d/0x30
[  111.632958][ T7411]  dump_stack_lvl+0xe8/0x140
[  111.632983][ T7411]  dump_stack+0x15/0x1b
[  111.633005][ T7411]  should_fail_ex+0x265/0x280
[  111.633030][ T7411]  should_failslab+0x8c/0xb0
[  111.633136][ T7411]  kmem_cache_alloc_lru_noprof+0x55/0x490
[  111.633167][ T7411]  ? __d_alloc+0x3d/0x340
[  111.633201][ T7411]  ? trace_reschedule_exit+0xd/0xc0
[  111.633235][ T7411]  __d_alloc+0x3d/0x340
[  111.633268][ T7411]  d_alloc_pseudo+0x1e/0x80
[  111.633297][ T7411]  alloc_file_pseudo+0x71/0x160
[  111.633317][ T7411]  __shmem_file_setup+0x1de/0x210
[  111.633391][ T7411]  shmem_file_setup+0x3b/0x50
[  111.633409][ T7411]  __se_sys_memfd_create+0x2c3/0x590
[  111.633452][ T7411]  __x64_sys_memfd_create+0x31/0x40
[  111.633481][ T7411]  x64_sys_call+0x2ac2/0x3000
[  111.633509][ T7411]  do_syscall_64+0xd2/0x200
[  111.633547][ T7411]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  111.633579][ T7411]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  111.633625][ T7411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.633650][ T7411] RIP: 0033:0x7f5f8388f6c9
[  111.633669][ T7411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.633688][ T7411] RSP: 002b:00007f5f822f6d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  111.633753][ T7411] RAX: ffffffffffffffda RBX: 0000000000001058 RCX: 00007f5f8388f6c9
[  111.633768][ T7411] RDX: 00007f5f822f6dec RSI: 0000000000000000 RDI: 00007f5f83912960
[  111.633783][ T7411] RBP: 0000200000001080 R08: 00007f5f822f6b07 R09: 00007f5f822f701f
[  111.633798][ T7411] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[  111.633813][ T7411] R13: 00007f5f822f6dec R14: 00007f5f822f6df0 R15: 00007ffdab97e0c8
[  111.633833][ T7411]  </TASK>
[  111.890332][ T7415] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  111.948012][ T7413] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1357'.
[  112.178911][ T7442] loop4: detected capacity change from 0 to 2048
[  112.261022][ T7442]  loop4: p1 < > p3 p4
[  112.270300][ T7442] loop4: p3 start 458752 is beyond EOD, truncated
[  112.276828][ T7442] loop4: p4 start 268435456 is beyond EOD, truncated
[  112.312829][ T7454] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  112.657271][ T3503] udevd[3503]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  112.765407][ T7468] loop0: detected capacity change from 0 to 512
[  112.791626][ T7470] loop4: detected capacity change from 0 to 512
[  112.803647][ T7468] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.816732][ T7468] ext4 filesystem being mounted at /272/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  112.852055][ T7470] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.867433][ T7470] ext4 filesystem being mounted at /275/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  112.923406][ T7468] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #2: block 18: comm syz.0.1375: lblock 23 mapped to illegal pblock 18 (length 1)
[  112.956895][ T7470] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 18: comm syz.4.1376: lblock 23 mapped to illegal pblock 18 (length 1)
[  112.958184][   T36] hid_parser_main: 8 callbacks suppressed
[  112.958202][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.973817][ T7470] EXT4-fs (loop4): Remounting filesystem read-only
[  112.977364][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.977453][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.977489][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.977587][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.977612][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.977638][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.977664][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.977688][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.977736][   T36] hid-generic 0003:80000004:0000.001D: unknown main item tag 0x0
[  112.978242][ T7468] EXT4-fs (loop0): Remounting filesystem read-only
[  113.143773][ T7488] capability: warning: `syz.1.1380' uses deprecated v2 capabilities in a way that may be insecure
[  113.155293][   T36] hid-generic 0003:80000004:0000.001D: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  113.247502][ T7495] loop1: detected capacity change from 0 to 128
[  113.477473][ T7499] loop2: detected capacity change from 0 to 2048
[  113.531121][ T3503]  loop2: p1 < > p3 p4
[  113.536746][ T3503] loop2: p3 start 458752 is beyond EOD, truncated
[  113.543236][ T3503] loop2: p4 start 268435456 is beyond EOD, truncated
[  113.569688][ T7499]  loop2: p1 < > p3 p4
[  113.575658][ T7499] loop2: p3 start 458752 is beyond EOD, truncated
[  113.582162][ T7499] loop2: p4 start 268435456 is beyond EOD, truncated
[  113.656687][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.728439][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.734724][ T7507] x_tables: ip_tables: osf.0 match: invalid size 48 (kernel) != (user) 4096
[  113.910109][ T7526] FAULT_INJECTION: forcing a failure.
[  113.910109][ T7526] name failslab, interval 1, probability 0, space 0, times 0
[  113.922936][ T7526] CPU: 1 UID: 0 PID: 7526 Comm: syz.4.1392 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  113.922970][ T7526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  113.922984][ T7526] Call Trace:
[  113.923034][ T7526]  <TASK>
[  113.923043][ T7526]  __dump_stack+0x1d/0x30
[  113.923139][ T7526]  dump_stack_lvl+0xe8/0x140
[  113.923159][ T7526]  dump_stack+0x15/0x1b
[  113.923186][ T7526]  should_fail_ex+0x265/0x280
[  113.923210][ T7526]  should_failslab+0x8c/0xb0
[  113.923306][ T7526]  kmem_cache_alloc_lru_noprof+0x55/0x490
[  113.923335][ T7526]  ? __d_alloc+0x3d/0x340
[  113.923435][ T7526]  __d_alloc+0x3d/0x340
[  113.923560][ T7526]  d_alloc+0x2e/0x100
[  113.923595][ T7526]  lookup_one_qstr_excl+0x99/0x250
[  113.923696][ T7526]  do_renameat2+0x3b3/0x9e0
[  113.923735][ T7526]  __x64_sys_renameat2+0x7e/0x90
[  113.923795][ T7526]  x64_sys_call+0x3f9/0x3000
[  113.923817][ T7526]  do_syscall_64+0xd2/0x200
[  113.923839][ T7526]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  113.923873][ T7526]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  113.923986][ T7526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.924084][ T7526] RIP: 0033:0x7f7f3792f6c9
[  113.924102][ T7526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.924178][ T7526] RSP: 002b:00007f7f3638f038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  113.924204][ T7526] RAX: ffffffffffffffda RBX: 00007f7f37b85fa0 RCX: 00007f7f3792f6c9
[  113.924218][ T7526] RDX: ffffffffffffff9c RSI: 0000200000000400 RDI: ffffffffffffff9c
[  113.924230][ T7526] RBP: 00007f7f3638f090 R08: 0000000000000000 R09: 0000000000000000
[  113.924242][ T7526] R10: 0000200000000600 R11: 0000000000000246 R12: 0000000000000001
[  113.924258][ T7526] R13: 00007f7f37b86038 R14: 00007f7f37b85fa0 R15: 00007ffd474cd848
[  113.924346][ T7526]  </TASK>
[  114.204045][ T7529] mmap: syz.4.1394 (7529) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  114.269458][ T7537] loop4: detected capacity change from 0 to 1024
[  114.269575][ T7539] loop1: detected capacity change from 0 to 512
[  114.295056][ T7539] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.299732][ T7537] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.307855][ T7539] ext4 filesystem being mounted at /257/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  114.378447][ T3325] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 16: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  114.391443][ T7539] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #2: block 18: comm syz.1.1397: lblock 23 mapped to illegal pblock 18 (length 1)
[  114.411329][ T7539] EXT4-fs (loop1): Remounting filesystem read-only
[  114.427944][ T7544] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.624163][ T7547] loop3: detected capacity change from 0 to 2048
[  114.672759][ T3503]  loop3: p1 < > p3 p4
[  114.679134][  T311] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.683132][ T3503] loop3: p3 start 458752 is beyond EOD, truncated
[  114.695989][ T3503] loop3: p4 start 268435456 is beyond EOD, truncated
[  114.716415][ T7548] loop2: detected capacity change from 0 to 8192
[  114.751886][ T7547]  loop3: p1 < > p3 p4
[  114.758163][  T311] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.768740][ T7547] loop3: p3 start 458752 is beyond EOD, truncated
[  114.775346][ T7547] loop3: p4 start 268435456 is beyond EOD, truncated
[  114.793047][ T7555] loop0: detected capacity change from 0 to 128
[  114.809086][ T7548]  loop2: p1 p2 p3 p4
[  114.829007][ T7548] loop2: p1 size 196608 extends beyond EOD, truncated
[  114.829879][  T311] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.836682][ T7548] loop2: p2 start 164919041 is beyond EOD, truncated
[  114.852981][ T7548] loop2: p3 size 66846464 extends beyond EOD, truncated
[  114.861670][ T7548] loop2: p4 size 37048832 extends beyond EOD, truncated
[  115.036019][  T311] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.052996][ T3503] udevd[3503]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  115.086624][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  115.096921][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  115.109775][ T3503] udevd[3503]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  115.140954][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.169098][ T7567] __nla_validate_parse: 6 callbacks suppressed
[  115.169114][ T7567] netlink: 7 bytes leftover after parsing attributes in process `syz.2.1405'.
[  115.186818][ T7567] netlink: 7 bytes leftover after parsing attributes in process `syz.2.1405'.
[  115.214293][ T7556] chnl_net:caif_netlink_parms(): no params data found
[  115.227070][   T29] kauditd_printk_skb: 852 callbacks suppressed
[  115.227088][   T29] audit: type=1326 audit(1762619912.475:31315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.257014][   T29] audit: type=1326 audit(1762619912.475:31316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.280711][   T29] audit: type=1326 audit(1762619912.485:31317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.304273][   T29] audit: type=1326 audit(1762619912.485:31318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.327867][   T29] audit: type=1326 audit(1762619912.505:31319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.351500][   T29] audit: type=1326 audit(1762619912.505:31320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.375034][   T29] audit: type=1326 audit(1762619912.505:31321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.398582][   T29] audit: type=1326 audit(1762619912.505:31322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.422182][   T29] audit: type=1326 audit(1762619912.505:31323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.445762][   T29] audit: type=1326 audit(1762619912.505:31324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7576 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18763cf6c9 code=0x7ffc0000
[  115.492022][ T7597] loop1: detected capacity change from 0 to 128
[  115.498608][  T311] bridge_slave_1: left allmulticast mode
[  115.504397][  T311] bridge_slave_1: left promiscuous mode
[  115.510215][  T311] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.527749][ T7597] FAT-fs (loop1): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  115.585099][  T311] bridge_slave_0: left allmulticast mode
[  115.590854][  T311] bridge_slave_0: left promiscuous mode
[  115.596578][  T311] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.973865][  T311] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  115.998872][  T311] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  116.062422][  T311] bond0 (unregistering): Released all slaves
[  116.186042][ T7615] vhci_hcd: default hub control req: 8013 v0000 i0000 l31125
[  116.219720][  T311] hsr_slave_0: left promiscuous mode
[  116.230028][ T7616] loop1: detected capacity change from 0 to 2048
[  116.253382][  T311] hsr_slave_1: left promiscuous mode
[  116.272246][  T311] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  116.279765][  T311] batman_adv: batadv0: Removing interface: batadv_slave_0
[  116.305109][  T311] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  116.312607][  T311] batman_adv: batadv0: Removing interface: batadv_slave_1
[  116.347467][ T7616]  loop1: p1 < > p3 p4
[  116.349180][ T7625] 9pnet_fd: Insufficient options for proto=fd
[  116.369093][  T311] veth1_macvtap: left promiscuous mode
[  116.397138][  T311] veth0_macvtap: left promiscuous mode
[  116.400791][ T7616] loop1: p3 start 458752 is beyond EOD, truncated
[  116.409139][ T7616] loop1: p4 start 268435456 is beyond EOD, truncated
[  116.412946][  T311] veth1_vlan: left promiscuous mode
[  116.455192][  T311] veth0_vlan: left promiscuous mode
[  116.643062][  T311] team0 (unregistering): Port device team_slave_1 removed
[  116.672883][  T311] team0 (unregistering): Port device team_slave_0 removed
[  116.722844][ T7556] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.729916][ T7556] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.737374][ T7556] bridge_slave_0: entered allmulticast mode
[  116.744183][ T7556] bridge_slave_0: entered promiscuous mode
[  116.756364][ T7556] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.763481][ T7556] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.763851][ T7643] loop3: detected capacity change from 0 to 512
[  116.779201][ T7556] bridge_slave_1: entered allmulticast mode
[  116.787436][ T7643] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.801367][ T7556] bridge_slave_1: entered promiscuous mode
[  116.813659][ T7643] ext4 filesystem being mounted at /302/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.835788][ T7643] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1419: corrupted inode contents
[  116.836411][ T7556] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  116.849513][ T7643] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.1419: mark_inode_dirty error
[  116.869926][ T7643] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1419: corrupted inode contents
[  116.882125][ T7643] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.1419: mark_inode_dirty error
[  116.892158][ T7556] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  116.898178][ T7643] EXT4-fs warning (device loop3): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed
[  116.980759][ T7556] team0: Port device team_slave_0 added
[  116.998640][ T7556] team0: Port device team_slave_1 added
[  117.043602][ T7556] batman_adv: batadv0: Adding interface: batadv_slave_0
[  117.050759][ T7556] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  117.054032][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.076838][ T7556] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  117.106772][ T7666] loop0: detected capacity change from 0 to 512
[  117.139417][ T7666] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.1424: error while reading EA inode 32 err=-116
[  117.139817][ T7556] batman_adv: batadv0: Adding interface: batadv_slave_1
[  117.158750][ T7556] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  117.165979][ T7666] EXT4-fs (loop0): Remounting filesystem read-only
[  117.184990][ T7556] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  117.191684][ T7666] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  117.215137][ T7666] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  117.273447][ T7556] hsr_slave_0: entered promiscuous mode
[  117.280164][ T7556] hsr_slave_1: entered promiscuous mode
[  117.288385][ T7556] debugfs: 'hsr0' already exists in 'hsr'
[  117.294206][ T7556] Cannot create hsr debugfs directory
[  117.303604][ T7666] EXT4-fs (loop0): 1 orphan inode deleted
[  117.322897][ T7666] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.359573][ T7666] netlink: 'syz.0.1424': attribute type 153 has an invalid length.
[  117.564749][ T7688] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1427'.
[  117.763242][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.773641][ T7693] loop3: detected capacity change from 0 to 512
[  117.873408][ T7693] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.964145][ T7556] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  117.967643][ T7693] ext4 filesystem being mounted at /305/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  118.008801][ T7556] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  118.043981][ T7556] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  118.060059][ T7556] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  118.146184][ T7556] 8021q: adding VLAN 0 to HW filter on device bond0
[  118.184190][ T7556] 8021q: adding VLAN 0 to HW filter on device team0
[  118.195445][ T7693] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 18: comm syz.3.1429: lblock 23 mapped to illegal pblock 18 (length 1)
[  118.209427][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.212171][ T7727] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1435'.
[  118.217480][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.251411][ T7556] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  118.259542][ T7727] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1435'.
[  118.261858][ T7556] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  118.286235][ T7693] EXT4-fs (loop3): Remounting filesystem read-only
[  118.301101][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.308334][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.368202][ T7556] 8021q: adding VLAN 0 to HW filter on device batadv0
[  118.458714][ T7752] loop1: detected capacity change from 0 to 256
[  118.501663][ T7752] vfat: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  118.604282][ T7556] veth0_vlan: entered promiscuous mode
[  118.610221][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.623233][ T7556] veth1_vlan: entered promiscuous mode
[  118.643883][ T7556] veth0_macvtap: entered promiscuous mode
[  118.663329][ T7556] veth1_macvtap: entered promiscuous mode
[  118.675561][ T7556] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.687387][ T7556] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.698772][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.713854][ T7769] netlink: 7 bytes leftover after parsing attributes in process `syz.3.1440'.
[  118.724406][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.736201][ T7769] netlink: 7 bytes leftover after parsing attributes in process `syz.3.1440'.
[  118.771578][   T31] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  118.816884][ T7775] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1441'.
[  118.826316][   T31] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  118.837737][ T7775] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1441'.
[  118.855127][ T7782] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1403'.
[  118.952251][ T7791] netlink: 'syz.3.1447': attribute type 21 has an invalid length.
[  118.983675][ T7797] loop0: detected capacity change from 0 to 1024
[  118.993239][ T7799] vhci_hcd: default hub control req: 8013 v0000 i0000 l31125
[  119.041633][ T7797] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.086513][ T7811] FAULT_INJECTION: forcing a failure.
[  119.086513][ T7811] name failslab, interval 1, probability 0, space 0, times 0
[  119.099267][ T7811] CPU: 0 UID: 0 PID: 7811 Comm: syz.1.1454 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  119.099298][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  119.099310][ T7811] Call Trace:
[  119.099317][ T7811]  <TASK>
[  119.099365][ T7811]  __dump_stack+0x1d/0x30
[  119.099392][ T7811]  dump_stack_lvl+0xe8/0x140
[  119.099445][ T7811]  dump_stack+0x15/0x1b
[  119.099465][ T7811]  should_fail_ex+0x265/0x280
[  119.099539][ T7811]  should_failslab+0x8c/0xb0
[  119.099567][ T7811]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  119.099599][ T7811]  ? __alloc_skb+0x101/0x320
[  119.099633][ T7811]  __alloc_skb+0x101/0x320
[  119.099770][ T7811]  netlink_alloc_large_skb+0xbf/0xf0
[  119.099801][ T7811]  netlink_sendmsg+0x3cf/0x6b0
[  119.099822][ T7811]  ? __pfx_netlink_sendmsg+0x10/0x10
[  119.099912][ T7811]  __sock_sendmsg+0x145/0x180
[  119.099941][ T7811]  ____sys_sendmsg+0x31e/0x4e0
[  119.100008][ T7811]  ___sys_sendmsg+0x17b/0x1d0
[  119.100039][ T7811]  __x64_sys_sendmsg+0xd4/0x160
[  119.100104][ T7811]  x64_sys_call+0x191e/0x3000
[  119.100132][ T7811]  do_syscall_64+0xd2/0x200
[  119.100152][ T7811]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  119.100284][ T7811]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  119.100322][ T7811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.100345][ T7811] RIP: 0033:0x7f18763cf6c9
[  119.100422][ T7811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.100492][ T7811] RSP: 002b:00007f1874e37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  119.100513][ T7811] RAX: ffffffffffffffda RBX: 00007f1876625fa0 RCX: 00007f18763cf6c9
[  119.100525][ T7811] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000004
[  119.100561][ T7811] RBP: 00007f1874e37090 R08: 0000000000000000 R09: 0000000000000000
[  119.100575][ T7811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.100595][ T7811] R13: 00007f1876626038 R14: 00007f1876625fa0 R15: 00007ffda4078518
[  119.100615][ T7811]  </TASK>
[  119.359879][ T7808] loop5: detected capacity change from 0 to 256
[  119.380543][ T7808] FAT-fs (loop5): Directory bread(block 64) failed
[  119.387498][ T7808] FAT-fs (loop5): Directory bread(block 65) failed
[  119.395025][ T7808] FAT-fs (loop5): Directory bread(block 66) failed
[  119.403619][ T7808] FAT-fs (loop5): Directory bread(block 67) failed
[  119.410373][ T7808] FAT-fs (loop5): Directory bread(block 68) failed
[  119.417156][ T7808] FAT-fs (loop5): Directory bread(block 69) failed
[  119.417196][ T7808] FAT-fs (loop5): Directory bread(block 70) failed
[  119.417217][ T7808] FAT-fs (loop5): Directory bread(block 71) failed
[  119.417274][ T7808] FAT-fs (loop5): Directory bread(block 72) failed
[  119.417294][ T7808] FAT-fs (loop5): Directory bread(block 73) failed
[  119.430131][ T7808] syz.5.1452: attempt to access beyond end of device
[  119.430131][ T7808] loop5: rw=524288, sector=1160, nr_sectors = 4 limit=256
[  119.469863][ T7808] syz.5.1452: attempt to access beyond end of device
[  119.469863][ T7808] loop5: rw=0, sector=1160, nr_sectors = 4 limit=256
[  119.532874][ T7827] bridge_slave_1: left allmulticast mode
[  119.538619][ T7827] bridge_slave_1: left promiscuous mode
[  119.544419][ T7827] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.557409][ T7827] bridge_slave_0: left allmulticast mode
[  119.563318][ T7827] bridge_slave_0: left promiscuous mode
[  119.569076][ T7827] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.588422][ T7834] loop5: detected capacity change from 0 to 1024
[  119.601129][ T7834] EXT4-fs: Invalid want_extra_isize 130
[  119.877474][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.993517][ T7856] FAULT_INJECTION: forcing a failure.
[  119.993517][ T7856] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  120.006786][ T7856] CPU: 1 UID: 0 PID: 7856 Comm: syz.0.1469 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  120.006852][ T7856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  120.006866][ T7856] Call Trace:
[  120.006872][ T7856]  <TASK>
[  120.006880][ T7856]  __dump_stack+0x1d/0x30
[  120.006907][ T7856]  dump_stack_lvl+0xe8/0x140
[  120.006971][ T7856]  dump_stack+0x15/0x1b
[  120.006992][ T7856]  should_fail_ex+0x265/0x280
[  120.007014][ T7856]  should_fail+0xb/0x20
[  120.007035][ T7856]  should_fail_usercopy+0x1a/0x20
[  120.007057][ T7856]  _copy_to_user+0x20/0xa0
[  120.007098][ T7856]  copy_siginfo_to_user+0x22/0xb0
[  120.007127][ T7856]  x64_setup_rt_frame+0x2b5/0x580
[  120.007154][ T7856]  arch_do_signal_or_restart+0x23e/0x440
[  120.007235][ T7856]  exit_to_user_mode_loop+0x77/0x110
[  120.007266][ T7856]  do_syscall_64+0x1d6/0x200
[  120.007290][ T7856]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  120.007322][ T7856]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  120.007385][ T7856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.007409][ T7856] RIP: 0033:0x7f072ac6f6c7
[  120.007428][ T7856] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  120.007450][ T7856] RSP: 002b:00007f07296cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  120.007484][ T7856] RAX: 0000000000000113 RBX: 00007f072aec5fa0 RCX: 00007f072ac6f6c9
[  120.007562][ T7856] RDX: 000000000000000c RSI: 0000000000000000 RDI: 0000000000000009
[  120.007575][ T7856] RBP: 00007f07296cf090 R08: 0000000000000007 R09: 0000000000000000
[  120.007608][ T7856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.007621][ T7856] R13: 00007f072aec6038 R14: 00007f072aec5fa0 R15: 00007ffddde15aa8
[  120.007638][ T7856]  </TASK>
[  120.263775][   T29] kauditd_printk_skb: 902 callbacks suppressed
[  120.263792][   T29] audit: type=1400 audit(1762619917.515:32227): avc:  denied  { create } for  pid=7865 comm="syz.1.1474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  120.290976][   T29] audit: type=1400 audit(1762619917.525:32228): avc:  denied  { ioctl } for  pid=7865 comm="syz.1.1474" path="socket:[18552]" dev="sockfs" ino=18552 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  120.315763][   T29] audit: type=1326 audit(1762619917.535:32229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7862 comm="syz.0.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  120.339444][   T29] audit: type=1326 audit(1762619917.535:32230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7862 comm="syz.0.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  120.363067][   T29] audit: type=1326 audit(1762619917.535:32231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7862 comm="syz.0.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  120.386750][   T29] audit: type=1326 audit(1762619917.535:32232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7862 comm="syz.0.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  120.410292][   T29] audit: type=1326 audit(1762619917.535:32233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7862 comm="syz.0.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  120.433834][   T29] audit: type=1326 audit(1762619917.535:32234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7862 comm="syz.0.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  120.457504][   T29] audit: type=1326 audit(1762619917.535:32235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7862 comm="syz.0.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  120.481054][   T29] audit: type=1326 audit(1762619917.535:32236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7862 comm="syz.0.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  120.708749][ T7877] __nla_validate_parse: 8 callbacks suppressed
[  120.708771][ T7877] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1475'.
[  120.750508][ T7879] loop2: detected capacity change from 0 to 512
[  120.778152][ T7877] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1475'.
[  120.964281][ T7879] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1476: Failed to acquire dquot type 1
[  120.979403][ T7879] EXT4-fs (loop2): 1 truncate cleaned up
[  120.985988][ T7879] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.005068][ T7879] ext4 filesystem being mounted at /300/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.074024][ T7891] syz.3.1479 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  121.086157][ T7879] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1476: Failed to acquire dquot type 1
[  121.107137][ T7894] FAULT_INJECTION: forcing a failure.
[  121.107137][ T7894] name failslab, interval 1, probability 0, space 0, times 0
[  121.119936][ T7894] CPU: 0 UID: 0 PID: 7894 Comm: syz.3.1480 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  121.119969][ T7894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  121.119982][ T7894] Call Trace:
[  121.119989][ T7894]  <TASK>
[  121.119998][ T7894]  __dump_stack+0x1d/0x30
[  121.120024][ T7894]  dump_stack_lvl+0xe8/0x140
[  121.120046][ T7894]  dump_stack+0x15/0x1b
[  121.120149][ T7894]  should_fail_ex+0x265/0x280
[  121.120170][ T7894]  should_failslab+0x8c/0xb0
[  121.120201][ T7894]  kmem_cache_alloc_noprof+0x50/0x480
[  121.120234][ T7894]  ? audit_log_start+0x342/0x720
[  121.120313][ T7894]  audit_log_start+0x342/0x720
[  121.120336][ T7894]  ? kstrtouint+0x76/0xc0
[  121.120370][ T7894]  audit_seccomp+0x48/0x100
[  121.120405][ T7894]  ? __seccomp_filter+0x82d/0x1250
[  121.120488][ T7894]  __seccomp_filter+0x83e/0x1250
[  121.120518][ T7894]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  121.120552][ T7894]  ? vfs_write+0x7e8/0x960
[  121.120623][ T7894]  __secure_computing+0x82/0x150
[  121.120655][ T7894]  syscall_trace_enter+0xcf/0x1e0
[  121.120737][ T7894]  do_syscall_64+0xac/0x200
[  121.120762][ T7894]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  121.120793][ T7894]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  121.120906][ T7894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.120930][ T7894] RIP: 0033:0x7f5f8388f6c9
[  121.120948][ T7894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.120970][ T7894] RSP: 002b:00007f5f822f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000026
[  121.120995][ T7894] RAX: ffffffffffffffda RBX: 00007f5f83ae5fa0 RCX: 00007f5f8388f6c9
[  121.121054][ T7894] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  121.121068][ T7894] RBP: 00007f5f822f7090 R08: 0000000000000000 R09: 0000000000000000
[  121.121083][ T7894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.121097][ T7894] R13: 00007f5f83ae6038 R14: 00007f5f83ae5fa0 R15: 00007ffdab97e0c8
[  121.121115][ T7894]  </TASK>
[  121.338141][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.428843][ T7907] loop2: detected capacity change from 0 to 128
[  121.583224][ T7914] loop1: detected capacity change from 0 to 512
[  121.595429][ T7914] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  121.608726][ T7914] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  121.633655][ T7914] EXT4-fs (loop1): 1 truncate cleaned up
[  121.639998][ T7914] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.268360][ T7927] FAULT_INJECTION: forcing a failure.
[  122.268360][ T7927] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.281608][ T7927] CPU: 0 UID: 0 PID: 7927 Comm: syz.0.1489 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  122.281711][ T7927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  122.281726][ T7927] Call Trace:
[  122.281733][ T7927]  <TASK>
[  122.281742][ T7927]  __dump_stack+0x1d/0x30
[  122.281769][ T7927]  dump_stack_lvl+0xe8/0x140
[  122.281790][ T7927]  dump_stack+0x15/0x1b
[  122.281807][ T7927]  should_fail_ex+0x265/0x280
[  122.281905][ T7927]  should_fail+0xb/0x20
[  122.281928][ T7927]  should_fail_usercopy+0x1a/0x20
[  122.281949][ T7927]  _copy_to_user+0x20/0xa0
[  122.281975][ T7927]  simple_read_from_buffer+0xb5/0x130
[  122.282005][ T7927]  proc_fail_nth_read+0x10e/0x150
[  122.282163][ T7927]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  122.282198][ T7927]  vfs_read+0x1a8/0x770
[  122.282223][ T7927]  ? __rcu_read_unlock+0x4f/0x70
[  122.282315][ T7927]  ? __fget_files+0x184/0x1c0
[  122.282390][ T7927]  ? finish_task_switch+0xad/0x2b0
[  122.282421][ T7927]  ksys_read+0xda/0x1a0
[  122.282500][ T7927]  __x64_sys_read+0x40/0x50
[  122.282528][ T7927]  x64_sys_call+0x27c0/0x3000
[  122.282551][ T7927]  do_syscall_64+0xd2/0x200
[  122.282574][ T7927]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  122.282675][ T7927]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  122.282709][ T7927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.282730][ T7927] RIP: 0033:0x7f072ac6e0dc
[  122.282775][ T7927] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  122.282797][ T7927] RSP: 002b:00007f07296cf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  122.282822][ T7927] RAX: ffffffffffffffda RBX: 00007f072aec5fa0 RCX: 00007f072ac6e0dc
[  122.282836][ T7927] RDX: 000000000000000f RSI: 00007f07296cf0a0 RDI: 0000000000000008
[  122.282849][ T7927] RBP: 00007f07296cf090 R08: 0000000000000000 R09: 0000000000000000
[  122.282915][ T7927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.282930][ T7927] R13: 00007f072aec6038 R14: 00007f072aec5fa0 R15: 00007ffddde15aa8
[  122.282956][ T7927]  </TASK>
[  122.698517][ T7933] loop5: detected capacity change from 0 to 128
[  122.730008][ T7933] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  122.739245][ T7937] process 'syz.3.1490' launched '/dev/fd/11' with NULL argv: empty string added
[  122.778892][ T7933] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  122.800099][ T7933] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1493'.
[  123.199210][   T31] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  123.431628][ T7986] netlink: 'syz.3.1500': attribute type 1 has an invalid length.
[  123.466810][ T7986] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1500'.
[  123.558068][ T7989] random: crng reseeded on system resumption
[  123.656010][ T7986] loop3: detected capacity change from 0 to 128
[  123.733432][   T36] hid_parser_main: 8 callbacks suppressed
[  123.733453][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.739809][ T7986] bond2: option ad_user_port_key: invalid value (1136)
[  123.747085][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.747113][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.754056][ T7986] bond2: option ad_user_port_key: allowed values 0 - 1023
[  123.761823][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.784554][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.792709][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.800448][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.808426][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.816225][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.824029][   T36] hid-generic 0003:80000004:0000.001E: unknown main item tag 0x0
[  123.836662][ T7986] bond2 (unregistering): Released all slaves
[  123.955102][   T36] hid-generic 0003:80000004:0000.001E: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  124.095367][ T8010] loop3: detected capacity change from 0 to 512
[  124.143315][ T8010] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.156016][ T8010] ext4 filesystem being mounted at /326/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  124.187779][ T8010] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1505'.
[  124.196836][ T8010] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1505'.
[  124.232007][ T8010] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1505'.
[  124.241080][ T8010] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1505'.
[  124.244142][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.260834][ T8010] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1505'.
[  124.277798][ T8010] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1505: corrupted inode contents
[  124.300833][ T8010] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.1505: mark_inode_dirty error
[  124.313887][ T8024] loop2: detected capacity change from 0 to 128
[  124.321060][ T8010] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1505: corrupted inode contents
[  124.333874][ T8010] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.1505: mark_inode_dirty error
[  124.335328][   T10] hid-generic 0003:80000004:0000.001F: hidraw1: USB HID v0.00 Device [syz1] on syz0
[  124.369785][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.573086][ T8051] loop1: detected capacity change from 0 to 1024
[  124.585755][ T8051] EXT4-fs: Ignoring removed nobh option
[  124.591524][ T8051] EXT4-fs: Ignoring removed bh option
[  124.613339][ T8051] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.683741][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.711889][ T8057] FAULT_INJECTION: forcing a failure.
[  124.711889][ T8057] name failslab, interval 1, probability 0, space 0, times 0
[  124.724611][ T8057] CPU: 0 UID: 0 PID: 8057 Comm: syz.1.1521 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  124.724640][ T8057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  124.724651][ T8057] Call Trace:
[  124.724657][ T8057]  <TASK>
[  124.724744][ T8057]  __dump_stack+0x1d/0x30
[  124.724771][ T8057]  dump_stack_lvl+0xe8/0x140
[  124.724795][ T8057]  dump_stack+0x15/0x1b
[  124.724817][ T8057]  should_fail_ex+0x265/0x280
[  124.724909][ T8057]  should_failslab+0x8c/0xb0
[  124.724939][ T8057]  kmem_cache_alloc_noprof+0x50/0x480
[  124.725049][ T8057]  ? skb_clone+0x151/0x1f0
[  124.725071][ T8057]  skb_clone+0x151/0x1f0
[  124.725088][ T8057]  __netlink_deliver_tap+0x2c9/0x500
[  124.725163][ T8057]  netlink_unicast+0x66b/0x690
[  124.725344][ T8057]  netlink_sendmsg+0x58b/0x6b0
[  124.725367][ T8057]  ? __pfx_netlink_sendmsg+0x10/0x10
[  124.725387][ T8057]  __sock_sendmsg+0x145/0x180
[  124.725415][ T8057]  ____sys_sendmsg+0x31e/0x4e0
[  124.725560][ T8057]  ___sys_sendmsg+0x17b/0x1d0
[  124.725602][ T8057]  __x64_sys_sendmsg+0xd4/0x160
[  124.725623][ T8057]  x64_sys_call+0x191e/0x3000
[  124.725645][ T8057]  do_syscall_64+0xd2/0x200
[  124.725743][ T8057]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  124.725772][ T8057]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  124.725859][ T8057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.725880][ T8057] RIP: 0033:0x7f18763cf6c9
[  124.725921][ T8057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.725941][ T8057] RSP: 002b:00007f1874e37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  124.725966][ T8057] RAX: ffffffffffffffda RBX: 00007f1876625fa0 RCX: 00007f18763cf6c9
[  124.725980][ T8057] RDX: 0000000000008000 RSI: 0000200000000280 RDI: 0000000000000004
[  124.725992][ T8057] RBP: 00007f1874e37090 R08: 0000000000000000 R09: 0000000000000000
[  124.726004][ T8057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.726078][ T8057] R13: 00007f1876626038 R14: 00007f1876625fa0 R15: 00007ffda4078518
[  124.726095][ T8057]  </TASK>
[  125.170163][ T8065] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1525'.
[  125.180841][ T2967] hid-generic 0003:80000004:0000.0020: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  125.219381][ T8071] FAULT_INJECTION: forcing a failure.
[  125.219381][ T8071] name failslab, interval 1, probability 0, space 0, times 0
[  125.232196][ T8071] CPU: 0 UID: 0 PID: 8071 Comm: syz.2.1527 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  125.232330][ T8071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  125.232345][ T8071] Call Trace:
[  125.232400][ T8071]  <TASK>
[  125.232409][ T8071]  __dump_stack+0x1d/0x30
[  125.232499][ T8071]  dump_stack_lvl+0xe8/0x140
[  125.232524][ T8071]  dump_stack+0x15/0x1b
[  125.232546][ T8071]  should_fail_ex+0x265/0x280
[  125.232614][ T8071]  should_failslab+0x8c/0xb0
[  125.232691][ T8071]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  125.232726][ T8071]  ? __alloc_skb+0x101/0x320
[  125.232769][ T8071]  __alloc_skb+0x101/0x320
[  125.232851][ T8071]  ? audit_log_start+0x342/0x720
[  125.232941][ T8071]  audit_log_start+0x3a0/0x720
[  125.232961][ T8071]  ? format_decode+0xaf/0x580
[  125.232995][ T8071]  audit_seccomp+0x48/0x100
[  125.233031][ T8071]  ? __seccomp_filter+0x82d/0x1250
[  125.233062][ T8071]  __seccomp_filter+0x83e/0x1250
[  125.233105][ T8071]  ? save_fpregs_to_fpstate+0x100/0x160
[  125.233202][ T8071]  ? _raw_spin_unlock+0x26/0x50
[  125.233235][ T8071]  __secure_computing+0x82/0x150
[  125.233324][ T8071]  syscall_trace_enter+0xcf/0x1e0
[  125.233352][ T8071]  do_syscall_64+0xac/0x200
[  125.233372][ T8071]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  125.233460][ T8071]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  125.233493][ T8071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.233518][ T8071] RIP: 0033:0x7febad26e0dc
[  125.233535][ T8071] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  125.233700][ T8071] RSP: 002b:00007febabccf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  125.233778][ T8071] RAX: ffffffffffffffda RBX: 00007febad4c5fa0 RCX: 00007febad26e0dc
[  125.233828][ T8071] RDX: 000000000000000f RSI: 00007febabccf0a0 RDI: 0000000000000005
[  125.233874][ T8071] RBP: 00007febabccf090 R08: 0000000000000000 R09: 0000000000000000
[  125.233889][ T8071] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  125.233982][ T8071] R13: 00007febad4c6038 R14: 00007febad4c5fa0 R15: 00007ffc9b3945e8
[  125.234000][ T8071]  </TASK>
[  125.453494][   T29] kauditd_printk_skb: 784 callbacks suppressed
[  125.453569][   T29] audit: type=1326 audit(1762619922.705:33011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7febad26e17f code=0x7ffc0000
[  125.503882][   T29] audit: type=1326 audit(1762619922.705:33012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7febad26e32a code=0x7ffc0000
[  125.527806][   T29] audit: type=1326 audit(1762619922.705:33013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febad26f6c9 code=0x7ffc0000
[  125.551536][   T29] audit: type=1326 audit(1762619922.705:33014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febad26f6c9 code=0x7ffc0000
[  125.601264][   T29] audit: type=1326 audit(1762619922.855:33015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8084 comm="syz.3.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  125.624937][   T29] audit: type=1326 audit(1762619922.855:33016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8084 comm="syz.3.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  125.654815][   T29] audit: type=1326 audit(1762619922.905:33017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8084 comm="syz.3.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  125.655301][   T36] hid-generic 0003:80000004:0000.0021: hidraw1: USB HID v0.00 Device [syz1] on syz0
[  125.705573][   T29] audit: type=1326 audit(1762619922.935:33018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8084 comm="syz.3.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  125.729188][   T29] audit: type=1326 audit(1762619922.935:33019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8084 comm="syz.3.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  125.752698][   T29] audit: type=1326 audit(1762619922.935:33020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8084 comm="syz.3.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  125.848125][ T8096] loop2: detected capacity change from 0 to 128
[  125.941763][ T8100] loop5: detected capacity change from 0 to 512
[  125.953886][ T8100] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.967290][ T8100] ext4 filesystem being mounted at /12/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  126.087269][ T8105] __nla_validate_parse: 1 callbacks suppressed
[  126.087287][ T8105] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1538'.
[  126.087343][ T8100] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #2: block 18: comm syz.5.1537: lblock 23 mapped to illegal pblock 18 (length 1)
[  126.133980][ T8105] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1538'.
[  126.134976][ T8100] EXT4-fs (loop5): Remounting filesystem read-only
[  126.211147][ T8114] netlink: 'syz.1.1541': attribute type 153 has an invalid length.
[  126.262451][ T8118] netem: change failed
[  126.333914][ T8127] loop1: detected capacity change from 0 to 128
[  126.470717][   T36] hid-generic 0003:80000004:0000.0022: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  126.512414][ T8134] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1549'.
[  126.525908][ T8134] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1549'.
[  126.547831][ T8142] FAULT_INJECTION: forcing a failure.
[  126.547831][ T8142] name failslab, interval 1, probability 0, space 0, times 0
[  126.560540][ T8142] CPU: 1 UID: 0 PID: 8142 Comm: syz.1.1551 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  126.560568][ T8142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  126.560586][ T8142] Call Trace:
[  126.560594][ T8142]  <TASK>
[  126.560602][ T8142]  __dump_stack+0x1d/0x30
[  126.560681][ T8142]  dump_stack_lvl+0xe8/0x140
[  126.560706][ T8142]  dump_stack+0x15/0x1b
[  126.560723][ T8142]  should_fail_ex+0x265/0x280
[  126.560820][ T8142]  should_failslab+0x8c/0xb0
[  126.560854][ T8142]  kmem_cache_alloc_noprof+0x50/0x480
[  126.560932][ T8142]  ? security_file_alloc+0x32/0x100
[  126.561033][ T8142]  security_file_alloc+0x32/0x100
[  126.561122][ T8142]  init_file+0x5c/0x1d0
[  126.561151][ T8142]  alloc_empty_file+0x8b/0x200
[  126.561202][ T8142]  alloc_file_pseudo+0xc6/0x160
[  126.561223][ T8142]  anon_inode_getfd+0xc1/0x150
[  126.561250][ T8142]  do_inotify_init+0x220/0x270
[  126.561324][ T8142]  __ia32_sys_inotify_init+0x10/0x20
[  126.561352][ T8142]  x64_sys_call+0x2e7f/0x3000
[  126.561375][ T8142]  do_syscall_64+0xd2/0x200
[  126.561410][ T8142]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  126.561439][ T8142]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  126.561478][ T8142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.561504][ T8142] RIP: 0033:0x7f18763cf6c9
[  126.561523][ T8142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.561542][ T8142] RSP: 002b:00007f1874e37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fd
[  126.561564][ T8142] RAX: ffffffffffffffda RBX: 00007f1876625fa0 RCX: 00007f18763cf6c9
[  126.561579][ T8142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  126.561591][ T8142] RBP: 00007f1874e37090 R08: 0000000000000000 R09: 0000000000000000
[  126.561603][ T8142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.561616][ T8142] R13: 00007f1876626038 R14: 00007f1876625fa0 R15: 00007ffda4078518
[  126.561710][ T8142]  </TASK>
[  126.805403][ T8144] FAULT_INJECTION: forcing a failure.
[  126.805403][ T8144] name failslab, interval 1, probability 0, space 0, times 0
[  126.818125][ T8144] CPU: 0 UID: 0 PID: 8144 Comm: syz.2.1553 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  126.818156][ T8144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  126.818167][ T8144] Call Trace:
[  126.818174][ T8144]  <TASK>
[  126.818181][ T8144]  __dump_stack+0x1d/0x30
[  126.818205][ T8144]  dump_stack_lvl+0xe8/0x140
[  126.818227][ T8144]  dump_stack+0x15/0x1b
[  126.818247][ T8144]  should_fail_ex+0x265/0x280
[  126.818269][ T8144]  should_failslab+0x8c/0xb0
[  126.818303][ T8144]  kmem_cache_alloc_noprof+0x50/0x480
[  126.818331][ T8144]  ? vm_area_dup+0x33/0x2c0
[  126.818361][ T8144]  vm_area_dup+0x33/0x2c0
[  126.818393][ T8144]  copy_vma+0x2cb/0x560
[  126.818423][ T8144]  move_vma+0x42e/0xce0
[  126.818459][ T8144]  ? arch_get_unmapped_area_topdown+0x153/0x550
[  126.818489][ T8144]  ? __get_unmapped_area+0x2c9/0x2f0
[  126.818509][ T8144]  mremap_to+0x3d8/0x430
[  126.818547][ T8144]  ? check_prep_vma+0x49c/0x660
[  126.818577][ T8144]  __se_sys_mremap+0x7b6/0xb30
[  126.818614][ T8144]  ? ksys_write+0x192/0x1a0
[  126.818644][ T8144]  __x64_sys_mremap+0x67/0x80
[  126.818672][ T8144]  x64_sys_call+0x2a28/0x3000
[  126.818697][ T8144]  do_syscall_64+0xd2/0x200
[  126.818721][ T8144]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  126.818751][ T8144]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  126.818787][ T8144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.818810][ T8144] RIP: 0033:0x7febad26f6c9
[  126.818826][ T8144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.818846][ T8144] RSP: 002b:00007febabccf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  126.818868][ T8144] RAX: ffffffffffffffda RBX: 00007febad4c5fa0 RCX: 00007febad26f6c9
[  126.818882][ T8144] RDX: 0000000000001000 RSI: 0000000000001000 RDI: 00002000005ab000
[  126.818896][ T8144] RBP: 00007febabccf090 R08: 0000200000ffe000 R09: 0000000000000000
[  126.818909][ T8144] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001
[  126.818922][ T8144] R13: 00007febad4c6038 R14: 00007febad4c5fa0 R15: 00007ffc9b3945e8
[  126.818940][ T8144]  </TASK>
[  127.182576][ T8155] loop2: detected capacity change from 0 to 128
[  127.191312][ T7556] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.200942][ T8151] wireguard0: entered promiscuous mode
[  127.206443][ T8151] wireguard0: entered allmulticast mode
[  128.224621][ T8290] loop0: detected capacity change from 0 to 128
[  128.557225][ T8309] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  128.659784][ T8314] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1576'.
[  128.660014][ T8314] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1576'.
[  128.698428][ T8323] loop0: detected capacity change from 0 to 128
[  128.718774][ T8324] 9pnet_fd: Insufficient options for proto=fd
[  128.726668][ T8324] loop2: detected capacity change from 0 to 1024
[  128.756972][ T8324] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869)
[  128.770329][ T8324] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002]
[  128.770374][ T8324] EXT4-fs (loop2): failed to initialize system zone (-117)
[  128.770402][ T8324] EXT4-fs (loop2): mount failed
[  129.045179][ T8351] loop1: detected capacity change from 0 to 128
[  130.113372][ T8388] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1589'.
[  130.145585][ T8388] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1589'.
[  130.232755][ T8405] loop1: detected capacity change from 0 to 128
[  130.267451][ T8410] loop0: detected capacity change from 0 to 512
[  130.309702][ T8410] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.333408][ T8420] loop2: detected capacity change from 0 to 512
[  130.344378][ T8410] ext4 filesystem being mounted at /310/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  130.350729][ T3570] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  130.408349][ T8420] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.433550][ T8420] ext4 filesystem being mounted at /321/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  130.497487][ T8410] EXT4-fs error (device loop0): ext4_readdir:264: inode #2: block 3: comm syz.0.1595: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=2, rec_len=2060, size=2048 fake=1
[  130.557166][ T8410] EXT4-fs (loop0): Remounting filesystem read-only
[  130.576759][ T8420] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 18: comm syz.2.1598: lblock 23 mapped to illegal pblock 18 (length 1)
[  130.612431][ T8420] EXT4-fs (loop2): Remounting filesystem read-only
[  130.688884][   T29] kauditd_printk_skb: 535 callbacks suppressed
[  130.688900][   T29] audit: type=1326 audit(1762619927.935:33556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f5f8388f787 code=0x7ffc0000
[  130.719660][   T29] audit: type=1326 audit(1762619927.975:33557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  130.743241][   T29] audit: type=1326 audit(1762619927.975:33558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  130.766814][   T29] audit: type=1326 audit(1762619927.975:33559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f5f83846b2d code=0x7ffc0000
[  130.790315][   T29] audit: type=1326 audit(1762619927.975:33560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f5f838c3e09 code=0x7ffc0000
[  130.813849][   T29] audit: type=1326 audit(1762619927.975:33561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f5f83846b97 code=0x7ffc0000
[  130.837519][   T29] audit: type=1326 audit(1762619927.975:33562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  130.861183][   T29] audit: type=1326 audit(1762619927.975:33563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8388f6c9 code=0x7ffc0000
[  130.991037][   T29] audit: type=1326 audit(1762619928.085:33564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f5f838462a7 code=0x7ffc0000
[  131.014606][   T29] audit: type=1326 audit(1762619928.085:33565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8412 comm="syz.3.1596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f5f83846306 code=0x7ffc0000
[  131.192960][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.254264][ T8460] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1607'.
[  131.272246][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.329179][ T8467] loop2: detected capacity change from 0 to 128
[  131.467780][ T8486] loop2: detected capacity change from 0 to 512
[  131.483091][ T8486] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.496207][ T8486] ext4 filesystem being mounted at /324/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  131.528540][ T8492] syz.3.1617 uses obsolete (PF_INET,SOCK_PACKET)
[  131.587879][ T8493] loop1: detected capacity change from 0 to 512
[  131.596348][ T8486] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 18: comm syz.2.1618: lblock 23 mapped to illegal pblock 18 (length 1)
[  131.613986][ T8486] EXT4-fs (loop2): Remounting filesystem read-only
[  131.624699][ T8493] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.1619: error while reading EA inode 32 err=-116
[  131.624826][ T8493] EXT4-fs (loop1): Remounting filesystem read-only
[  131.624878][ T8493] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  131.624913][ T8493] EXT4-fs (loop1): 1 orphan inode deleted
[  131.625514][ T8493] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.679285][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.727123][ T8496] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1620'.
[  131.836495][ T8509] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1622'.
[  131.856396][ T8512] loop1: detected capacity change from 0 to 128
[  132.002661][ T8522] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1628'.
[  132.037055][ T8530] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  132.101334][ T8541] loop1: detected capacity change from 0 to 128
[  132.179438][ T8544] loop5: detected capacity change from 0 to 128
[  132.186186][ T8544] vfat: Unknown parameter 'ÿÿÿÿÿ'
[  132.230848][ T8547] veth0_to_team: entered promiscuous mode
[  132.323668][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.369206][ T8552] loop0: detected capacity change from 0 to 512
[  132.375906][ T8552] EXT4-fs: Ignoring removed oldalloc option
[  132.402260][ T8552] EXT4-fs (loop0): 1 truncate cleaned up
[  132.408935][ T8552] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.519399][ T8565] xt_CT: You must specify a L4 protocol and not use inversions on it
[  132.549029][ T3402] hid_parser_main: 80 callbacks suppressed
[  132.549049][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.562803][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.570650][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.578468][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.586407][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.594229][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.602145][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.609910][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.609939][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.609964][ T3402] hid-generic 0003:80000004:0000.0023: unknown main item tag 0x0
[  132.641838][ T3402] hid-generic 0003:80000004:0000.0023: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  133.003617][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.024210][ T8589] loop0: detected capacity change from 0 to 512
[  133.032700][ T8589] EXT4-fs: Mount option(s) incompatible with ext3
[  133.150692][ T8586] syz.1.1644 (8586) used greatest stack depth: 10160 bytes left
[  133.200202][ T8595] loop1: detected capacity change from 0 to 512
[  133.214096][ T8595] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.230743][ T8595] ext4 filesystem being mounted at /329/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  133.276065][ T8598] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  133.284586][ T8598] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  133.294743][ T8598] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  133.303286][ T8598] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  133.690861][ T8602] loop3: detected capacity change from 0 to 2048
[  133.710360][ T8603] netlink: 7 bytes leftover after parsing attributes in process `syz.5.1648'.
[  133.723682][ T8603] netlink: 7 bytes leftover after parsing attributes in process `syz.5.1648'.
[  133.725761][ T8602] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.742526][ T8595] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #2: block 18: comm syz.1.1647: lblock 23 mapped to illegal pblock 18 (length 1)
[  133.752399][ T8602] ext4 filesystem being mounted at /357/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.775723][ T8595] EXT4-fs (loop1): Remounting filesystem read-only
[  133.830995][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.859856][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.882588][ T8621] netlink: 7 bytes leftover after parsing attributes in process `syz.5.1653'.
[  133.907578][ T8621] netlink: 7 bytes leftover after parsing attributes in process `syz.5.1653'.
[  133.920891][ T8623] netlink: 'syz.2.1652': attribute type 1 has an invalid length.
[  133.922150][ T8618] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1651'.
[  133.928659][ T8623] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1652'.
[  133.968367][ T8628] loop3: detected capacity change from 0 to 128
[  134.103706][   T10] hid-generic 0003:80000004:0000.0024: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  134.199160][ T8650] loop5: detected capacity change from 0 to 128
[  134.207074][ T8650] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  134.220305][ T8650] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  134.286242][ T8654] loop5: detected capacity change from 0 to 512
[  134.303854][ T8654] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.317124][ T8654] ext4 filesystem being mounted at /38/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  134.385064][ T8654] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #2: block 18: comm syz.5.1662: lblock 23 mapped to illegal pblock 18 (length 1)
[  134.401611][ T8654] EXT4-fs (loop5): Remounting filesystem read-only
[  134.418466][ T7556] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.724751][ T8678] netem: unknown loss type 13
[  134.729518][ T8678] netem: change failed
[  134.739820][ T8678] loop5: detected capacity change from 0 to 1024
[  134.753361][ T8678] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.783414][ T7556] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.804756][ T8683] loop5: detected capacity change from 0 to 512
[  134.824167][ T8683] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.837355][ T8683] ext4 filesystem being mounted at /47/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  134.909278][ T8689] loop1: detected capacity change from 0 to 512
[  134.928177][ T8689] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.1676: error while reading EA inode 32 err=-116
[  134.941403][ T8689] EXT4-fs (loop1): Remounting filesystem read-only
[  134.948172][ T8689] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  134.958507][ T8689] EXT4-fs (loop1): 1 orphan inode deleted
[  134.964959][ T8689] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.980970][ T8689] netlink: 'syz.1.1676': attribute type 153 has an invalid length.
[  135.007858][ T8695] loop3: detected capacity change from 0 to 512
[  135.019155][ T8695] EXT4-fs (loop3): orphan cleanup on readonly fs
[  135.036285][ T8695] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.1677: bad orphan inode 13
[  135.054969][ T8695] ext4_test_bit(bit=12, block=18) = 1
[  135.060391][ T8695] is_bad_inode(inode)=0
[  135.064597][ T8695] NEXT_ORPHAN(inode)=2130706432
[  135.069465][ T8695] max_ino=32
[  135.072734][ T8695] i_nlink=1
[  135.077451][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.077624][ T8683] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #2: block 18: comm syz.5.1673: lblock 23 mapped to illegal pblock 18 (length 1)
[  135.107748][ T8695] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  135.133011][ T8683] EXT4-fs (loop5): Remounting filesystem read-only
[  135.155447][ T8703] FAULT_INJECTION: forcing a failure.
[  135.155447][ T8703] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.168657][ T8703] CPU: 0 UID: 0 PID: 8703 Comm: syz.1.1678 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  135.168777][ T8703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  135.168791][ T8703] Call Trace:
[  135.168799][ T8703]  <TASK>
[  135.168835][ T8703]  __dump_stack+0x1d/0x30
[  135.168858][ T8703]  dump_stack_lvl+0xe8/0x140
[  135.168878][ T8703]  dump_stack+0x15/0x1b
[  135.168896][ T8703]  should_fail_ex+0x265/0x280
[  135.168952][ T8703]  should_fail+0xb/0x20
[  135.169041][ T8703]  should_fail_usercopy+0x1a/0x20
[  135.169102][ T8703]  _copy_from_user+0x1c/0xb0
[  135.169133][ T8703]  __se_sys_mount+0x10d/0x2e0
[  135.169163][ T8703]  ? fput+0x8f/0xc0
[  135.169185][ T8703]  ? ksys_write+0x192/0x1a0
[  135.169243][ T8703]  __x64_sys_mount+0x67/0x80
[  135.169272][ T8703]  x64_sys_call+0x2b51/0x3000
[  135.169387][ T8703]  do_syscall_64+0xd2/0x200
[  135.169410][ T8703]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  135.169503][ T8703]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  135.169542][ T8703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.169642][ T8703] RIP: 0033:0x7f18763cf6c9
[  135.169661][ T8703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.169683][ T8703] RSP: 002b:00007f1874e37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  135.169764][ T8703] RAX: ffffffffffffffda RBX: 00007f1876625fa0 RCX: 00007f18763cf6c9
[  135.169780][ T8703] RDX: 0000200000000280 RSI: 0000200000000300 RDI: 0000000000000000
[  135.169795][ T8703] RBP: 00007f1874e37090 R08: 0000200000000800 R09: 0000000000000000
[  135.169811][ T8703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.169825][ T8703] R13: 00007f1876626038 R14: 00007f1876625fa0 R15: 00007ffda4078518
[  135.169848][ T8703]  </TASK>
[  135.347798][ T8695] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  135.362182][ T8695] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1677: bg 0: block 248: padding at end of block bitmap is not set
[  135.378465][ T7556] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.401180][ T8695] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1677: Failed to acquire dquot type 1
[  135.433628][ T8695] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  135.515736][ T8695] syz.3.1677 (8695) used greatest stack depth: 9248 bytes left
[  135.530085][ T3321] EXT4-fs error (device loop3): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 12
[  135.531428][ T8712] loop1: detected capacity change from 0 to 512
[  135.553877][ T8712] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.1682: error while reading EA inode 32 err=-116
[  135.568864][ T8712] EXT4-fs (loop1): Remounting filesystem read-only
[  135.572218][ T3321] EXT4-fs error (device loop3): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 12
[  135.609499][ T8712] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  135.620024][ T8712] EXT4-fs (loop1): 1 orphan inode deleted
[  135.626419][ T8712] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.658863][ T8716] loop5: detected capacity change from 0 to 128
[  135.703509][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.735633][   T29] kauditd_printk_skb: 1030 callbacks suppressed
[  135.735652][   T29] audit: type=1400 audit(1762619932.985:34594): avc:  denied  { setopt } for  pid=8718 comm="syz.1.1685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  135.765064][  T311] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.771517][ T8719] xt_recent: Unsupported userspace flags (000000b1)
[  135.788033][   T29] audit: type=1400 audit(1762619933.015:34595): avc:  denied  { write } for  pid=8718 comm="syz.1.1685" path="socket:[20300]" dev="sockfs" ino=20300 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  135.863382][  T311] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.917601][  T311] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.973501][  T311] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.100153][ T8736] loop0: detected capacity change from 0 to 128
[  136.164787][ T8736] syz.0.1690: attempt to access beyond end of device
[  136.164787][ T8736] loop0: rw=0, sector=2078, nr_sectors = 1 limit=128
[  136.178149][ T8736] Buffer I/O error on dev loop0, logical block 2078, async page read
[  136.193165][ T8736] syz.0.1690: attempt to access beyond end of device
[  136.193165][ T8736] loop0: rw=0, sector=2078, nr_sectors = 1 limit=128
[  136.206459][ T8736] Buffer I/O error on dev loop0, logical block 2078, async page read
[  136.215031][ T8736] syz.0.1690: attempt to access beyond end of device
[  136.215031][ T8736] loop0: rw=0, sector=2078, nr_sectors = 1 limit=128
[  136.228316][ T8736] Buffer I/O error on dev loop0, logical block 2078, async page read
[  136.237488][  T311] bridge_slave_1: left allmulticast mode
[  136.240913][ T8736] syz.0.1690: attempt to access beyond end of device
[  136.240913][ T8736] loop0: rw=0, sector=2078, nr_sectors = 1 limit=128
[  136.243195][  T311] bridge_slave_1: left promiscuous mode
[  136.256457][ T8736] Buffer I/O error on dev loop0, logical block 2078, async page read
[  136.262200][  T311] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.333452][  T311] bridge_slave_0: left allmulticast mode
[  136.339235][  T311] bridge_slave_0: left promiscuous mode
[  136.345128][  T311] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.373780][ T8745] __nla_validate_parse: 9 callbacks suppressed
[  136.373859][ T8745] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1692'.
[  136.428176][ T8749] netlink: 'syz.1.1691': attribute type 1 has an invalid length.
[  136.451301][  T311] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  136.461550][  T311] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  136.470333][ T8751] loop2: detected capacity change from 0 to 512
[  136.478722][  T311] bond0 (unregistering): Released all slaves
[  136.486903][ T8751] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1693: error while reading EA inode 32 err=-116
[  136.500055][  T311] bond1 (unregistering): Released all slaves
[  136.502445][ T8751] EXT4-fs (loop2): Remounting filesystem read-only
[  136.516644][ T8751] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  136.529976][ T8721] chnl_net:caif_netlink_parms(): no params data found
[  136.530669][ T8751] EXT4-fs (loop2): 1 orphan inode deleted
[  136.543135][ T8751] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.563753][ T8749] 8021q: adding VLAN 0 to HW filter on device bond1
[  136.571365][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.612213][  T311] hsr_slave_0: left promiscuous mode
[  136.630836][  T311] hsr_slave_1: left promiscuous mode
[  136.636574][   T29] audit: type=1326 audit(1762619933.885:34596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.0.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  136.660131][   T29] audit: type=1326 audit(1762619933.885:34597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.0.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  136.683636][   T29] audit: type=1326 audit(1762619933.885:34598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.0.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  136.707343][   T29] audit: type=1326 audit(1762619933.885:34599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.0.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  136.730969][   T29] audit: type=1326 audit(1762619933.885:34600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.0.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  136.754851][   T29] audit: type=1326 audit(1762619933.885:34601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.0.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  136.778465][   T29] audit: type=1326 audit(1762619933.885:34602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.0.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  136.801980][   T29] audit: type=1326 audit(1762619933.885:34603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.0.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  136.826074][  T311] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  136.833546][  T311] batman_adv: batadv0: Removing interface: batadv_slave_0
[  136.841858][  T311] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  136.849262][  T311] batman_adv: batadv0: Removing interface: batadv_slave_1
[  136.863386][  T311] veth1_macvtap: left promiscuous mode
[  136.868925][  T311] veth0_macvtap: left promiscuous mode
[  136.893802][  T311] veth1_vlan: left promiscuous mode
[  136.899384][  T311] veth0_vlan: left promiscuous mode
[  136.919301][ T8763] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1697'.
[  136.929341][ T8763] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1697'.
[  136.985473][ T8777] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1701'.
[  137.010569][ T8777] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1701'.
[  137.065957][ T8783] loop1: detected capacity change from 0 to 512
[  137.072664][  T311] team0 (unregistering): Port device team_slave_1 removed
[  137.083263][  T311] team0 (unregistering): Port device team_slave_0 removed
[  137.118968][ T8783] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.140817][ T8783] ext4 filesystem being mounted at /342/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  137.260895][ T8794] xt_hashlimit: max too large, truncated to 1048576
[  137.284095][ T8783] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #2: block 18: comm syz.1.1705: lblock 23 mapped to illegal pblock 18 (length 1)
[  137.301637][ T8721] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.308758][ T8721] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.316447][ T8783] EXT4-fs (loop1): Remounting filesystem read-only
[  137.334103][ T8802] Cannot find add_set index 0 as target
[  137.343089][ T8721] bridge_slave_0: entered allmulticast mode
[  137.350871][ T8802] xt_l2tp: missing protocol rule (udp|l2tpip)
[  137.363113][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.364818][ T8721] bridge_slave_0: entered promiscuous mode
[  137.398186][ T8721] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.405341][ T8721] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.412556][ T8813] FAULT_INJECTION: forcing a failure.
[  137.412556][ T8813] name failslab, interval 1, probability 0, space 0, times 0
[  137.416767][ T8810] loop5: detected capacity change from 0 to 512
[  137.425340][ T8813] CPU: 1 UID: 0 PID: 8813 Comm: syz.0.1710 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  137.425370][ T8813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  137.425383][ T8813] Call Trace:
[  137.425389][ T8813]  <TASK>
[  137.425397][ T8813]  __dump_stack+0x1d/0x30
[  137.425431][ T8813]  dump_stack_lvl+0xe8/0x140
[  137.425453][ T8813]  dump_stack+0x15/0x1b
[  137.425551][ T8813]  should_fail_ex+0x265/0x280
[  137.425572][ T8813]  should_failslab+0x8c/0xb0
[  137.425606][ T8813]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  137.425638][ T8813]  ? __alloc_skb+0x101/0x320
[  137.425728][ T8813]  __alloc_skb+0x101/0x320
[  137.425757][ T8813]  alloc_skb_with_frags+0x7d/0x470
[  137.425789][ T8813]  ? selinux_file_open+0x2df/0x330
[  137.425823][ T8813]  sock_alloc_send_pskb+0x430/0x4e0
[  137.425847][ T8813]  ? mntput+0x4b/0x80
[  137.425922][ T8813]  tun_get_user+0x9b4/0x26e0
[  137.426001][ T8813]  ? ref_tracker_alloc+0x1f2/0x2f0
[  137.426104][ T8813]  ? selinux_file_permission+0x1e4/0x320
[  137.426136][ T8813]  tun_chr_write_iter+0x15e/0x210
[  137.426165][ T8813]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  137.426202][ T8813]  vfs_write+0x52a/0x960
[  137.426231][ T8813]  ksys_write+0xda/0x1a0
[  137.426257][ T8813]  __x64_sys_write+0x40/0x50
[  137.426306][ T8813]  x64_sys_call+0x2802/0x3000
[  137.426335][ T8813]  do_syscall_64+0xd2/0x200
[  137.426356][ T8813]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  137.426385][ T8813]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  137.426494][ T8813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.426516][ T8813] RIP: 0033:0x7f072ac6e17f
[  137.426533][ T8813] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  137.426552][ T8813] RSP: 002b:00007f07296ae000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  137.426573][ T8813] RAX: ffffffffffffffda RBX: 00007f072aec6090 RCX: 00007f072ac6e17f
[  137.426605][ T8813] RDX: 00000000fffffd2e RSI: 0000000000000000 RDI: 00000000000000c8
[  137.426673][ T8813] RBP: 00007f07296ae090 R08: 0000000000000000 R09: 0000000000000000
[  137.426732][ T8813] R10: 00000000fffffd2e R11: 0000000000000293 R12: 0000000000000001
[  137.426745][ T8813] R13: 00007f072aec6128 R14: 00007f072aec6090 R15: 00007ffddde15aa8
[  137.426831][ T8813]  </TASK>
[  137.497475][ T8813] IPVS: lc: FWM 3 0x00000003 - no destination available
[  137.500522][ T8721] bridge_slave_1: entered allmulticast mode
[  137.589914][ T8825] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1713'.
[  137.606610][ T8721] bridge_slave_1: entered promiscuous mode
[  137.613975][ T2967] IPVS: starting estimator thread 0...
[  137.696231][ T8825] lo speed is unknown, defaulting to 1000
[  137.702662][ T8810] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.1712: error while reading EA inode 32 err=-116
[  137.737133][ T8721] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  137.746372][ T8825] lo speed is unknown, defaulting to 1000
[  137.754004][ T8825] lo speed is unknown, defaulting to 1000
[  137.770306][ T8825] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  137.770657][ T8820] IPVS: using max 2736 ests per chain, 136800 per kthread
[  137.779215][ T8721] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  137.797147][ T8810] EXT4-fs (loop5): Remounting filesystem read-only
[  137.814058][ T8825] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  137.821067][ T8810] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  137.831518][ T8810] EXT4-fs (loop5): 1 orphan inode deleted
[  137.844385][ T8810] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.858360][ T8825] lo speed is unknown, defaulting to 1000
[  137.865802][ T8721] team0: Port device team_slave_0 added
[  137.872255][ T8825] lo speed is unknown, defaulting to 1000
[  137.878368][ T8825] lo speed is unknown, defaulting to 1000
[  137.885503][ T8721] team0: Port device team_slave_1 added
[  137.894165][ T8810] netlink: 'syz.5.1712': attribute type 153 has an invalid length.
[  137.911376][ T8825] lo speed is unknown, defaulting to 1000
[  137.917684][ T8721] batman_adv: batadv0: Adding interface: batadv_slave_0
[  137.924686][ T8721] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  137.950699][ T8721] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  137.984632][ T7556] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.001583][ T8825] lo speed is unknown, defaulting to 1000
[  138.002469][ T8721] batman_adv: batadv0: Adding interface: batadv_slave_1
[  138.014335][ T8721] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  138.040265][ T8721] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  138.162304][ T8721] hsr_slave_0: entered promiscuous mode
[  138.171766][ T8721] hsr_slave_1: entered promiscuous mode
[  138.178145][ T8721] debugfs: 'hsr0' already exists in 'hsr'
[  138.183948][ T8721] Cannot create hsr debugfs directory
[  138.394501][ T8721] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  138.426686][ T8721] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  138.455166][ T8721] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  138.474087][ T8721] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  138.488483][ T8887] netlink: 'syz.5.1723': attribute type 1 has an invalid length.
[  138.597067][ T8887] lo speed is unknown, defaulting to 1000
[  138.608401][ T8906] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1727'.
[  138.668090][ T8721] 8021q: adding VLAN 0 to HW filter on device bond0
[  138.676479][ T8914] loop2: detected capacity change from 0 to 1024
[  138.704650][ T8721] 8021q: adding VLAN 0 to HW filter on device team0
[  138.749597][ T8914] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.750177][ T3567] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.768715][ T3567] bridge0: port 1(bridge_slave_0) entered forwarding state
[  138.783618][ T8931] sg_read: process 891 (syz.1.1732) changed security contexts after opening file descriptor, this is not allowed.
[  138.812024][ T3567] bridge0: port 2(bridge_slave_1) entered blocking state
[  138.819144][ T3567] bridge0: port 2(bridge_slave_1) entered forwarding state
[  138.824171][ T8931] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1732'.
[  138.838716][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.012847][ T8946] loop0: detected capacity change from 0 to 2048
[  139.040321][ T8946] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.050764][ T8721] 8021q: adding VLAN 0 to HW filter on device batadv0
[  139.062958][ T8946] ext4 filesystem being mounted at /334/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.120919][ T8946] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1737'.
[  139.219193][ T8964] loop1: detected capacity change from 0 to 2048
[  139.239512][ T8962] SELinux: failed to load policy
[  139.246390][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.286053][ T8964] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.351014][ T8964] ext4 filesystem being mounted at /354/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.416263][ T8721] veth0_vlan: entered promiscuous mode
[  139.458715][ T8721] veth1_vlan: entered promiscuous mode
[  139.483808][ T9002] loop2: detected capacity change from 0 to 512
[  139.521835][ T8721] veth0_macvtap: entered promiscuous mode
[  139.527711][ T9002] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  139.550009][ T8721] veth1_macvtap: entered promiscuous mode
[  139.571312][ T9002] EXT4-fs (loop2): 1 truncate cleaned up
[  139.580514][ T8721] batman_adv: batadv0: Interface activated: batadv_slave_0
[  139.591624][ T8721] batman_adv: batadv0: Interface activated: batadv_slave_1
[  139.613067][ T8278] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.665457][ T9002] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.691072][ T8278] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.704935][   T41] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.723782][ T1045] hid_parser_main: 26 callbacks suppressed
[  139.723802][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.737506][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.745307][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.753134][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.753162][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.753187][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.753213][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.753284][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.753311][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.753392][ T1045] hid-generic 0003:80000004:0000.0025: unknown main item tag 0x0
[  139.753625][   T52] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.808516][ T1045] hid-generic 0003:80000004:0000.0025: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  139.834391][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.888371][ T9030] fido_id[9030]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  140.008823][ T1045] hid-generic 0003:80000004:0000.0026: hidraw0: USB HID v0.00 Device [syz1] on syz0
[  140.050678][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.208410][ T9078] loop6: detected capacity change from 0 to 1024
[  140.264587][ T9078] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.321126][ T8721] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.398640][ T9097] netlink: 'syz.5.1764': attribute type 153 has an invalid length.
[  140.446262][ T9107] FAULT_INJECTION: forcing a failure.
[  140.446262][ T9107] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  140.459542][ T9107] CPU: 1 UID: 0 PID: 9107 Comm: syz.1.1767 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  140.459574][ T9107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  140.459590][ T9107] Call Trace:
[  140.459597][ T9107]  <TASK>
[  140.459606][ T9107]  __dump_stack+0x1d/0x30
[  140.459704][ T9107]  dump_stack_lvl+0xe8/0x140
[  140.459730][ T9107]  dump_stack+0x15/0x1b
[  140.459772][ T9107]  should_fail_ex+0x265/0x280
[  140.459796][ T9107]  should_fail+0xb/0x20
[  140.459816][ T9107]  should_fail_usercopy+0x1a/0x20
[  140.459874][ T9107]  _copy_from_user+0x1c/0xb0
[  140.459963][ T9107]  ___sys_sendmsg+0xc1/0x1d0
[  140.459997][ T9107]  __x64_sys_sendmsg+0xd4/0x160
[  140.460019][ T9107]  x64_sys_call+0x191e/0x3000
[  140.460042][ T9107]  do_syscall_64+0xd2/0x200
[  140.460064][ T9107]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  140.460177][ T9107]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  140.460214][ T9107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.460246][ T9107] RIP: 0033:0x7f18763cf6c9
[  140.460265][ T9107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.460288][ T9107] RSP: 002b:00007f1874e37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  140.460374][ T9107] RAX: ffffffffffffffda RBX: 00007f1876625fa0 RCX: 00007f18763cf6c9
[  140.460390][ T9107] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000006
[  140.460406][ T9107] RBP: 00007f1874e37090 R08: 0000000000000000 R09: 0000000000000000
[  140.460418][ T9107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.460430][ T9107] R13: 00007f1876626038 R14: 00007f1876625fa0 R15: 00007ffda4078518
[  140.460447][ T9107]  </TASK>
[  140.689823][ T9117] loop1: detected capacity change from 0 to 512
[  140.722119][ T9117] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.737589][ T9117] ext4 filesystem being mounted at /358/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  140.841723][ T9136] FAULT_INJECTION: forcing a failure.
[  140.841723][ T9136] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  140.854947][ T9136] CPU: 1 UID: 0 PID: 9136 Comm: syz.0.1775 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  140.855026][ T9136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  140.855069][ T9136] Call Trace:
[  140.855077][ T9136]  <TASK>
[  140.855086][ T9136]  __dump_stack+0x1d/0x30
[  140.855111][ T9136]  dump_stack_lvl+0xe8/0x140
[  140.855131][ T9136]  dump_stack+0x15/0x1b
[  140.855148][ T9136]  should_fail_ex+0x265/0x280
[  140.855243][ T9136]  should_fail+0xb/0x20
[  140.855262][ T9136]  should_fail_usercopy+0x1a/0x20
[  140.855286][ T9136]  _copy_to_user+0x20/0xa0
[  140.855311][ T9136]  simple_read_from_buffer+0xb5/0x130
[  140.855335][ T9136]  proc_fail_nth_read+0x10e/0x150
[  140.855378][ T9136]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  140.855452][ T9136]  vfs_read+0x1a8/0x770
[  140.855608][ T9136]  ? __rcu_read_unlock+0x4f/0x70
[  140.855749][ T9136]  ? __fget_files+0x184/0x1c0
[  140.855783][ T9136]  ksys_read+0xda/0x1a0
[  140.855813][ T9136]  __x64_sys_read+0x40/0x50
[  140.855843][ T9136]  x64_sys_call+0x27c0/0x3000
[  140.855895][ T9136]  do_syscall_64+0xd2/0x200
[  140.855999][ T9136]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  140.856032][ T9136]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  140.856068][ T9136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.856094][ T9136] RIP: 0033:0x7f072ac6e0dc
[  140.856184][ T9136] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  140.856206][ T9136] RSP: 002b:00007f07296cf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  140.856231][ T9136] RAX: ffffffffffffffda RBX: 00007f072aec5fa0 RCX: 00007f072ac6e0dc
[  140.856245][ T9136] RDX: 000000000000000f RSI: 00007f07296cf0a0 RDI: 0000000000000007
[  140.856259][ T9136] RBP: 00007f07296cf090 R08: 0000000000000000 R09: 0000000000000000
[  140.856274][ T9136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.856288][ T9136] R13: 00007f072aec6038 R14: 00007f072aec5fa0 R15: 00007ffddde15aa8
[  140.856346][ T9136]  </TASK>
[  141.061460][ T9139] loop6: detected capacity change from 0 to 512
[  141.138029][ T9139] EXT4-fs error (device loop6): ext4_xattr_inode_iget:446: comm syz.6.1776: error while reading EA inode 32 err=-116
[  141.154993][ T9139] EXT4-fs (loop6): Remounting filesystem read-only
[  141.184868][   T29] kauditd_printk_skb: 614 callbacks suppressed
[  141.184884][   T29] audit: type=1326 audit(1762619938.435:35218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9149 comm="syz.0.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  141.197218][ T9139] EXT4-fs warning (device loop6): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  141.214675][   T29] audit: type=1326 audit(1762619938.435:35219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9149 comm="syz.0.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  141.224795][ T9139] EXT4-fs (loop6): 1 orphan inode deleted
[  141.225252][ T9139] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.248298][   T29] audit: type=1326 audit(1762619938.435:35220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9149 comm="syz.0.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  141.259087][ T9158] netlink: 7 bytes leftover after parsing attributes in process `syz.5.1779'.
[  141.266070][   T29] audit: type=1326 audit(1762619938.435:35221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9149 comm="syz.0.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f072ac6f6c9 code=0x7ffc0000
[  141.326285][   T29] audit: type=1326 audit(1762619938.505:35222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9154 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4a3a0f6c9 code=0x7ffc0000
[  141.349951][   T29] audit: type=1326 audit(1762619938.505:35223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9154 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7fb4a3a0f6c9 code=0x7ffc0000
[  141.373583][   T29] audit: type=1326 audit(1762619938.505:35224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9154 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4a3a0f6c9 code=0x7ffc0000
[  141.397271][   T29] audit: type=1326 audit(1762619938.505:35225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9154 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=255 compat=0 ip=0x7fb4a3a0f6c9 code=0x7ffc0000
[  141.420838][   T29] audit: type=1326 audit(1762619938.505:35226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9154 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4a3a0f6c9 code=0x7ffc0000
[  141.444361][   T29] audit: type=1326 audit(1762619938.505:35227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9154 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4a3a0f6c9 code=0x7ffc0000
[  141.483623][ T9150] __nla_validate_parse: 1 callbacks suppressed
[  141.483667][ T9158] netlink: 7 bytes leftover after parsing attributes in process `syz.5.1779'.
[  141.483749][ T9150] ==================================================================
[  141.483780][ T9150] BUG: KCSAN: data-race in data_push_tail / vsnprintf
[  141.483817][ T9150] 
[  141.483825][ T9150] write to 0xffffffff88e6c80c of 53 bytes by task 9158 on cpu 1:
[  141.483847][ T9150]  vsnprintf+0x2ce/0x890
[  141.483879][ T9150]  vscnprintf+0x41/0x90
[  141.483911][ T9150]  printk_sprint+0x30/0x2d0
[  141.483940][ T9150]  vprintk_store+0x599/0x860
[  141.483967][ T9150]  vprintk_emit+0x10d/0x580
[  141.483995][ T9150]  vprintk_default+0x26/0x30
[  141.484023][ T9150]  vprintk+0x1d/0x30
[  141.484053][ T9150]  _printk+0x79/0xa0
[  141.484082][ T9150]  __nla_validate_parse+0x1738/0x1d00
[  141.484106][ T9150]  __nla_parse+0x40/0x60
[  141.484132][ T9150]  nft_chain_parse_hook+0xb9/0xa40
[  141.484162][ T9150]  nf_tables_newchain+0xac1/0x15f0
[  141.484184][ T9150]  nfnetlink_rcv+0xbc9/0x16c0
[  141.484209][ T9150]  netlink_unicast+0x5c0/0x690
[  141.484239][ T9150]  netlink_sendmsg+0x58b/0x6b0
[  141.484271][ T9150]  __sock_sendmsg+0x145/0x180
[  141.484299][ T9150]  ____sys_sendmsg+0x31e/0x4e0
[  141.484329][ T9150]  ___sys_sendmsg+0x17b/0x1d0
[  141.484349][ T9150]  __x64_sys_sendmsg+0xd4/0x160
[  141.484367][ T9150]  x64_sys_call+0x191e/0x3000
[  141.484391][ T9150]  do_syscall_64+0xd2/0x200
[  141.484410][ T9150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.484436][ T9150] 
[  141.484444][ T9150] read to 0xffffffff88e6c820 of 8 bytes by task 9150 on cpu 0:
[  141.484466][ T9150]  data_push_tail+0xfd/0x420
[  141.484492][ T9150]  data_alloc+0xfb/0x2e0
[  141.484515][ T9150]  prb_reserve+0x807/0xaf0
[  141.484534][ T9150]  vprintk_store+0x56d/0x860
[  141.484555][ T9150]  vprintk_emit+0x10d/0x580
[  141.484582][ T9150]  _printk_deferred+0x82/0xb0
[  141.484621][ T9150]  ___ratelimit+0x4b1/0x4f0
[  141.484655][ T9150]  __nla_validate_parse+0x15e8/0x1d00
[  141.484677][ T9150]  __nla_parse+0x40/0x60
[  141.484698][ T9150]  nft_chain_parse_hook+0xb9/0xa40
[  141.484724][ T9150]  nf_tables_newchain+0xac1/0x15f0
[  141.484743][ T9150]  nfnetlink_rcv+0xbc9/0x16c0
[  141.484774][ T9150]  netlink_unicast+0x5c0/0x690
[  141.484810][ T9150]  netlink_sendmsg+0x58b/0x6b0
[  141.484828][ T9150]  __sock_sendmsg+0x145/0x180
[  141.484851][ T9150]  ____sys_sendmsg+0x31e/0x4e0
[  141.484881][ T9150]  ___sys_sendmsg+0x17b/0x1d0
[  141.484902][ T9150]  __x64_sys_sendmsg+0xd4/0x160
[  141.484926][ T9150]  x64_sys_call+0x191e/0x3000
[  141.484955][ T9150]  do_syscall_64+0xd2/0x200
[  141.485001][ T9150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.485036][ T9150] 
[  141.485042][ T9150] value changed: 0x00000000ffffe726 -> 0x20676e6973726170
[  141.485063][ T9150] 
[  141.485068][ T9150] Reported by Kernel Concurrency Sanitizer on:
[  141.485080][ T9150] CPU: 0 UID: 0 PID: 9150 Comm: syz.0.1778 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  141.485108][ T9150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  141.485126][ T9150] ==================================================================
[  141.485225][ T9150] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1778'.
[  141.560472][ T9117] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #2: block 18: comm syz.1.1771: lblock 23 mapped to illegal pblock 18 (length 1)
[  141.578583][ T9139] netlink: 'syz.6.1776': attribute type 153 has an invalid length.
[  141.854706][ T8721] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.865714][ T9117] EXT4-fs (loop1): Remounting filesystem read-only
[  141.866625][ T9150] syz.0.1778 (9150) used greatest stack depth: 9016 bytes left
[  141.903328][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.