last executing test programs:

23.453909479s ago: executing program 4 (id=529):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='./bus/file0/file0\x00')

23.41725331s ago: executing program 4 (id=530):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x28, 0x5, 0x0)
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r1 = inotify_init1(0x800)
inotify_add_watch(r1, &(0x7f00000002c0)='./file0\x00', 0x100080a)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
getdents64(r2, &(0x7f0000000080)=""/109, 0x6d)
connect$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @hyper}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$kcm(0xa, 0x1, 0x3a)
r3 = socket$kcm(0x29, 0x2, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x2e, &(0x7f0000000540)=""/3, &(0x7f0000000580)=0x3)
r4 = gettid()
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x7, 0x4, @tid=r4}, &(0x7f0000044000))
timer_create(0x2, 0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x4, 0x127d, &(0x7f00000011c0)="$eJzs3U1rJMUfB/DfJJPH/SeTv66ruyAWelGEcZODJy9BdkEMKNEsqKdeM9EhkwcyQyAi7njyJPgyRD16E8Q3kIsXz4IgkovHPYgtyUw085BsYjIJyOdz6aK6vlXV6U5DD1303itfrK2u1MsrWSOGCoUobo5E8WGKFEMxHC3NeOHeTz8//dY7774+v7BwZzGlu/Nvz76cUpp+5vv3Pv7m2R8a1+59O/3dWOzODO39PvfL7o3dm3t/fh3VeqrW0/pGI2Xp/sZGI7tfq6Tlan21nNKbtUpWr6Tqer2y1bF/pbaxubmTsvXlqcnNrUq9nrL1nbRa2UmNQmps7aTsg6y6nsrlcpqaDM5j6auHeZ5H5PlIjEae5/lETMa1+F9MxXSUYib+H4/F43E9nogb8WQ8FTcPWl31vAEAAAAAAAAAAAAAAAAAAOC/5RHr/wvW/wMAAAAAAAAAAAAAAAAAAMDgda//L0b4/j8AAAAAAAAAAAAAAAAAAABcskd8/79r/f+L1v8DAAAAAAAAAAAAAAAAAADAIIy3NospjUesfba9tL3U2rbq51eiGrWoxO0oxR9xsPq/pVW++9rCndvpwEy8tPagnX+wvTTcmZ8dKcVMoW9+diIiUkqd+bGYPJqfi1Jc7z/+XGv8rvx4PP/cfv7TVr4cpfjx/diIWixHFNpHf5D/ZDalV99YmOjM39pvd6zhAZ8WAAAAuEjl9Lfe5/dmu1Hf/a1d7efz1G5ZOOH3ga7n82LcKl7VUXOovvPRalarVbb+ZWH0+H5Gz9dzT6EQEVkcrZme/HVxf/BT9nN4uV3QfI4Uhi+6wxMLIye3Occ5jeKp/5gDKkSzuyYvRZy1n9++PFIzfub4+QpD7cssqzVPfbFFM88HOrG+/4xjJ6WOv2cUBnxP4vL8c9KveiYAAAAAAAAAAACcRd+3/yYioud9wA97ag5fD++M9/Z8/OifX8IRAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB/sQPHAgAAAADC/K3T6NgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgK8CAAD//w+Ty90=")
syz_mount_image$vfat(&(0x7f00000006c0), &(0x7f0000000200)='./bus\x00', 0x444, 0x0, 0x1, 0x0, &(0x7f0000000200))
r6 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0)
mkdirat(r6, &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
chdir(&(0x7f0000001180)='./bus\x00')
mkdirat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2\x00', 0x1ff)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x100)
timer_settime(r5, 0x1, &(0x7f0000000180)={{}, {0x77359400}}, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x22650, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r6)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan0\x00'})

23.080908147s ago: executing program 4 (id=537):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x100b28, 0x1, 0x0, 0x1, 0xa, 0x21005, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x4}, 0x10)
write(r0, &(0x7f0000000240)="240000001a007f0214f9f4070009040803000000000000050000000008000f40fe00000e", 0x24) (fail_nth: 8)

22.490806728s ago: executing program 4 (id=541):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000a80)='./file0/file0\x00', &(0x7f0000000a40), &(0x7f0000000a40)=ANY=[], 0x835, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000001240)='./file0/file0\x00', 0x2)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x400500, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r3, &(0x7f00000000c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x74dc, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r3, 0x84, 0xc, &(0x7f0000000080), 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xe)
shutdown(r3, 0x1)
recvmmsg(r3, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x414, 0x0, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4020095)
r5 = socket$unix(0x1, 0x1, 0x0)
epoll_pwait(0xffffffffffffffff, &(0x7f0000000180)=[{}], 0x1, 0x10000, &(0x7f00000001c0), 0x8)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r7)
mount(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080)='proc\x00', 0x189, 0x0)
r8 = syz_open_procfs(r6, &(0x7f0000000000)='map_files\x00')
fchdir(r8)
r9 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r9, &(0x7f0000000f80)=""/4096, 0x1000)

21.203576544s ago: executing program 4 (id=549):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYRES8=r0], 0x7c}, 0x1, 0x0, 0x0, 0x200488c0}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000006000000000000000a2c000000050a03000000000000000000020000000c00024000000000000000010900010073797a30000000002c000000030a010200000000000000000200ffff0800010073797a30000000000900030573797a320000000020000000020a03"], 0xa0}}, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001580))
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r3}, 0x10)
r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r4, 0x400, 0x1)
fremovexattr(r4, &(0x7f0000000040)=@known='system.posix_acl_default\x00')
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000640), 0x1, 0x5bc, &(0x7f0000001440)="$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")

20.814628321s ago: executing program 4 (id=558):
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='lock '], 0xa)

20.735418963s ago: executing program 32 (id=558):
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='lock '], 0xa)

1.945479852s ago: executing program 1 (id=840):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f0000000880)=ANY=[@ANYBLOB="85000000b800000095000000000000009ae027f11ceebb3c076aeb2f5d59137c18d083d0d1876d2ac8a29d0bec5d6191f3c3d8b65619fe85b0b21bd4adc2dac4d68bac3355e3563bd4ad48302f8ae933df8f7648c45fff295dafb000618bc33e62d4a37e68a1bc8bbf87a369821369032510635fcf4d86e5cc2dc5b84d5578afc38a0936281d8bdc34ca5d02202d995689aedad43d59dec2531666c7221ea3b84cf3a225c00fe793690985c0868c9596e318f1ebd1a134f1d4861ee3fc9c21eaf9580fa12ceea867562d7cbc8650938b4d756309819c6d6a26406533b98ae1f1b688a689dfd197e448f2e5c41a9bd80ab6108bde"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x94)
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
r3 = syz_genetlink_get_family_id$ethtool(0x0, r2)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000140)=ANY=[@ANYBLOB="98000000", @ANYRES16=r3, @ANYBLOB="08002dbd7000fddbdf2501000000040003003c000180080003000200000014000200776c616e31000000000000000000000008000300010000001400020064766d72703100000000000000000000440001801400020074756e6c30000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="140002006261746164763000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="8a0dda4608800dfae9638426d9d15e46e2d7e3c803a9f8a6627947ffc9f0baf9f95a817a"], 0x98}, 0x1, 0x0, 0x0, 0x90}, 0x40040)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
connect$can_bcm(r1, &(0x7f00000000c0)={0x1d, r4}, 0x10)
pread64(r0, &(0x7f0000000240)=""/200, 0xc8, 0x1)
sendmsg$can_bcm(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r0, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r6 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94)
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000680)={{{@in6=@ipv4={""/10, ""/2, @local}, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in=@broadcast}, 0x0, @in=@loopback}}, &(0x7f0000000380)=0xe8)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f00000003c0)={0x0, 0x0, <r8=>0x0}, &(0x7f0000000400)=0xc)
setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000004c0)={0xffffffffffffffff, r7, r8}, 0xc)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r9], 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r10}, 0x10)
syz_usb_connect$sierra_net(0x4, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x1199, 0x68a3, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x80, 0xfa, {{0x9, 0x4, 0x7, 0x0, 0x3, 0xff, 0x0, 0x0, 0x0, "", {{0x9, 0x5, 0xf, 0x2, 0x8, 0x0, 0xa3, 0x7}, {0x9, 0x5, 0x0, 0x2, 0x400, 0x2, 0x8, 0x81}, {0x9, 0x5, 0x6, 0x3, 0x10, 0x7, 0x5, 0x7c}}}}}}]}}, 0x0)
r11 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r11, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r11, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
close_range(r5, 0xffffffffffffffff, 0x100000000000000)
setpgid(0x0, 0x0)
r12 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r12, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r12, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14)

1.330367734s ago: executing program 0 (id=849):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000bc0)='./file1\x00', 0x0, &(0x7f0000000c00), 0x1, 0xba4, &(0x7f00000017c0)="$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")
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x18)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
ftruncate(r3, 0x2007ffc)
socket$inet6(0xa, 0x80001, 0x0)

1.329597594s ago: executing program 1 (id=850):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="030000000400000004000000b5"], 0x50)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@typedef={0x2}]}}, 0x0, 0x26}, 0x28)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000248ef69c68f9b2e70018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@alu={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0xb, r2, 0x8, 0x0, 0x0, 0x14, 0x0, 0x14}, 0x94)
pread64(r1, 0x0, 0x0, 0x1000000000)
r5 = socket$unix(0x1, 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000100)={0x3ff, 0xf993, 0x202, 0x3, 0x9, 0x98, 0x7, 0x8000, <r6=>0x0}, &(0x7f0000000140)=0x20)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000200)={r6, 0x5, 0x7, 0x8000, 0x4, 0x56a}, &(0x7f0000000240)=0x14)
ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x6408}, {r5, 0x80}], 0x2, &(0x7f0000000040)={0x77359400}, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x4, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES8=r0, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in6=@private1, @in=@private}, {@in=@broadcast, 0x0, 0x32}, @in6=@private1, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, 0x0, 0x0, 0x2, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c}]}, 0x154}}, 0x0)

1.152760577s ago: executing program 0 (id=852):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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")
bind$xdp(0xffffffffffffffff, &(0x7f0000000680)={0x2c, 0x4, 0x0, 0xf}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.sectors\x00', 0x275a, 0x0)

1.152227657s ago: executing program 1 (id=853):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r2}, 0x18)
socket$pppl2tp(0x18, 0x1, 0x1)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = io_uring_setup(0x6503, &(0x7f0000001300)={0x0, 0x8d5f, 0x1046, 0x0, 0x264})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, &(0x7f00000000c0), 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r4, 0xc, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000780), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000003c0)={0x14, r7, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x400c8}, 0x20000000)
sendmsg$MPTCP_PM_CMD_REMOVE(r5, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)={0x24, r7, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, 0x0, 0x8d0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000600)={@multicast, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x17c1, 0x9c, 0x0, @wg=@initiation={0x1, 0x3, "4834f4b2bff521a54cab5ef319ec23dcd2391fb53b698ae5a2460e6e28426a6f", "9f778d89b59f40fd86f2a2b5f64ea7df128c333a49266aa5f24a0c421073f26d4375c7378775279cff730549f357a33a", "f4fe6ae651e2409bd093bca48a09acd74e3f221b50d4e284bc6a2486", {"3a1aa976cf2634d1738f063255dbb89b", "a3314e00f6f01a0d20baf5f356d6fbc1"}}}}}}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', <r10=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r10, @ANYBLOB="080003"], 0x44}}, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r12}, 0x10)
r13 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r13, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000680)=@newtaction={0x180, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0x16c, 0x1, [@m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0xfffffdd6}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0xd4, 0x3, 0x0, 0x0, {{0x9}, {0x58, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0x0, 0x3, {0x2, 0xea3, 0x7}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1d28}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}, @TCA_GACT_PARMS={0x18, 0x2, {0x7ff, 0xd8, 0x0, 0x9, 0x100000e0}}]}, {0x52, 0x6, "a06b1d1931f3579c6d7c5159238a286074602c3726c701f3c0d5382de62a6e8c4fb714fcd674c66cd306a4f78d3d05530609c9b04b7483bd084d70df8e77e6fbd503917aa0a6c737cef0ed021b60"}, {0xc}, {0x1, 0x8, {0x2, 0x2}}}}]}]}, 0x180}}, 0x0)

1.024375309s ago: executing program 1 (id=855):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, 0x0)
sendmsg$NFC_CMD_DEV_UP(r1, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0)
write$nci(r0, &(0x7f0000001800)=ANY=[], 0x16)
r2 = socket$inet6(0xa, 0x80002, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r4}, 0x9)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0xfd, 0x1bf, &(0x7f0000000480)="$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")
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r5, 0x10001, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x100000}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)

964.754721ms ago: executing program 1 (id=856):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000001850000001b000000b700000000000700"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)

947.610201ms ago: executing program 1 (id=858):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
kexec_load(0x6, 0x0, &(0x7f0000001040), 0x1)

944.786571ms ago: executing program 3 (id=859):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, 0x0)
sendmsg$NFC_CMD_DEV_UP(r1, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0)
write$nci(r0, &(0x7f0000001800)=ANY=[], 0x16)
r2 = socket$inet6(0xa, 0x80002, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r4}, 0x9)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0xfd, 0x1bf, &(0x7f0000000480)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa")
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r5, 0x10001, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x100000}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)

911.614652ms ago: executing program 0 (id=860):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x16, 0x0, 0x4, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)

889.802072ms ago: executing program 3 (id=862):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
unshare(0x22020600)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r1, 0x0, 0x33, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_buf(r2, 0x6, 0x1a, &(0x7f0000000180)="3e1a463756fc8903779e67d021671f092ce7e6d8684684736f0d8bc247cca46a64e04f400ed5330237184b01727627d9b97cc7bedf2b29fbfbfda58ff77a3d30af3efd4b56515243b6c5b8bdb329a5d6f5204e277e8be718f8d48847eb953c8e4d63ccb6874864fa710cc458efb33c63e30c71862bc9397db040063930f9665bc7410f3966990ad21bf176bccd60b7694e2278f22fcace3783b05a106c954e69ea9b85dc", 0xa4)
lsm_set_self_attr(0x66, &(0x7f0000000000)={0x65, 0x3, 0x43, 0x23, "d7b8fddf5837aade64b91d51ac8959497b4317b4a87055e8d21b9668d9bb8cd00b723a"}, 0x43, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
epoll_pwait2(0xffffffffffffffff, &(0x7f0000005a40)=[{}], 0x1, 0x0, 0x0, 0x0)

799.538744ms ago: executing program 0 (id=863):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000bc0)='./file1\x00', 0x0, &(0x7f0000000c00), 0x1, 0xba4, &(0x7f00000017c0)="$eJzs3M1rVFcbAPDn3mRi1PgmvsjLayk10IKF4mgUK3WlLlsXhfYPMMSJhFw/SFIwQWhsF9JVLXTTRaFdlP4Bha6z0UJXpZtWWuiuC6kUUbpNuZObD5KZGHXiifH3g5N7PiZznoc7zj3HzJ0AXliD5Y88Yn9EnMsi+qv+PCJ6mrXeiNmFxz24f23k4f1rI1nMz7/3dxZZ1bf4XFl13F01eiPi5zNZ/PfjtfNOTs+MDxdFY6JqH566eOXw5PTMobGLwxcaFxqXhk4MHTt+4tjxN490LNe39948++XQqT3fnbl19ZUbv32Rxanoq8ZW5tEpgzEY85WV/d0RMdzpyRLpqvLJVvRl3QkDAgBgXfmKNdz/oj+6Ynnx1h+3fkkaHAAAANAR812x9DcqAAAAYLvK7P8BAABgm1v8HMCD+9dGFkvaTyQ8W/dOR8RAq/y7Y7Z57I1aROx6kMXK21qzhV97aoMRse/HgR/KEpt0H/J6Zq9HxP9b5Z818x9o3sW9Nv88IjpxZ/bgqvbzlP+pDsyfOn8AXkxzpxcuZGuvf/nS+idaXP+6W1y7nkTq61/79d9y/l1t1n/vbnCOxoFPPms3tnL9V3zz8u1y/vL4VEk9hnvXI17qbr/+KfPP2uR/boNz1H7/6ft2Y2X+Zb6L5VnnP/91xMGW+5/lb7TJ1v9+osOjY0Wj+tlyjhu3v93Xbv6V578s5fyLe4EFvZ1Md43y/O9qk/86579W9l3Z4Bxzfx38o93Yo/PP7/Zk7zdrPVXP1eGpqYmhiJ7s7Nr+o+vHsviYxeco83/91fX//bd6/ZfvCbPVa6PcC1yvjmX7o1VzHnrnrdeePP/NVeZ//vHPf7Pv5gbn+OrTibvtxlLnDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDzIY+Ivsjy+lI9z+v1iN0RsS925cXlyak3Ri9/cOl8ORYxELV8dKxoHImI/oV2VraHmvXl9tFV7WMRsTciPu/f2WzXRy4X51MnDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJLdEdEXWV6PiDwiHvbneb2eOioAAACg4wZSBwAAAABsOvt/AAAA2P7s/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANhkew/M3ckiYvbkzmYp9VRjtaSRAZstTx0AkExX6gCAZLpTBwAkY48PZI8Y7207smPjk/Rs/KEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAbE0H98/dySJi9uTOZin1VGO1Vr/Q+yyjAzZTnjoAIJmu1AEAyXSnDgBIpuUeH3ihZI8Yb//ffjs6HgsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAW1dfs2R5PSLyZj3P6/WIPRExELVsdKxoHImI/0TEr/21HWV7KHXQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdNzk9Mz4cFE0JrZP5c9/tkQYqysfxpYIQ0VlQ5XU70wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKQwOT0zPlwUjYnJ1JEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAqU1Oz4wPF0VjYhMrqXMEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACCdfwMAAP//bhUKXQ==")
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x18)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
ftruncate(r3, 0x2007ffc)
socket$inet6(0xa, 0x80001, 0x0)

799.339264ms ago: executing program 3 (id=864):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in6=@private1, @in=@private}, {@in=@broadcast, 0x0, 0x32}, @in6=@private1, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, 0x0, 0x0, 0x2, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c}]}, 0x154}}, 0x0)

694.769346ms ago: executing program 2 (id=866):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = syz_io_uring_setup(0x88f, 0x0, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x75fa, 0xe475, 0x0, 0x0, 0x0)

691.049926ms ago: executing program 3 (id=867):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, 0x0)
sendmsg$NFC_CMD_DEV_UP(r1, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0)
write$nci(r0, &(0x7f0000001800)=ANY=[], 0x16)
r2 = socket$inet6(0xa, 0x80002, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r4}, 0x9)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000840)=ANY=[@ANYBLOB="646f74732c646f74732c6e6f646f74732c6e6f646f74732c646f74732c6e6f646f74732c6e6f646f74732c71756965742c6e6f646f74732c666c7573682c756d61736b3d30303030303030303030303030303030303030303030302c646f74732c646f74732c756d61736b3d30303030303030303030303030303030303037373737372c6e66732c646f74732c747a3d5554432c646f74732c646f74732c6e6f636173652c7379735f696d6d757461626c652c646f74732c00f8a7354494367fe599abb0e9fee8f6cdbd4415cc7bc52b6352f54afc78e51de6b37ae8efbdfe1689a174697f9528b4217d017a472c4c8e00a5cdd06438f130234c66db3e61a4ea6b90f67ddc19c74c6ac93054e1668cf0ff55fdebea678f16269706271797abeebc6b043e549356dfa4c7e8b4e091a7a6cfc601e4e66e509afea6dcc9d274ab27afd6f183050075b86a3ffc8dfcd249c141fd90a5331224d62867d9b87a8e7d0cf56567584e7adde32f223d2a9bd69b39c51152b3a827f49a0f7e23d51ac4128630c7668a0b38090b5c86636aee6face102356400fbbd"], 0xfd, 0x1bf, &(0x7f0000000480)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa")
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r5, 0x10001, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x100000}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)

685.576087ms ago: executing program 2 (id=868):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)

653.912407ms ago: executing program 2 (id=869):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="0100cd7881a9b45dea5e54"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)

613.690188ms ago: executing program 2 (id=870):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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")
bind$xdp(0xffffffffffffffff, &(0x7f0000000680)={0x2c, 0x4, 0x0, 0xf}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.sectors\x00', 0x275a, 0x0)

565.346668ms ago: executing program 0 (id=871):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000bc0)='./file1\x00', 0x0, &(0x7f0000000c00), 0x1, 0xba4, &(0x7f00000017c0)="$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")
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
sendfile(r2, r2, 0x0, 0x800000009)

490.13099ms ago: executing program 3 (id=873):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x16, 0x0, 0x4, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r2, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)

481.403221ms ago: executing program 5 (id=874):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
write$UHID_DESTROY(0xffffffffffffffff, &(0x7f0000000080), 0x4) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) (async)
lstat(0x0, &(0x7f0000000100)) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f00000003c0)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
clock_adjtime(0xffffffd3, 0x0) (async)
fsync(0xffffffffffffffff)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x22) (async)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000000), 0x0}, 0x20)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6}]}, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'macvtap0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x68, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x10, 0xa}, {0xffff, 0xffff}, {0xc, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x2f, 0x2, [@TCA_TBF_BURST={0x8, 0x6, 0xffffffff}, @TCA_TBF_PBURST={0x8, 0x7, 0xa0b}, @TCA_TBF_PARMS={0x28, 0x1, {{0x2, 0x0, 0x10, 0x6, 0x81, 0x4}, {0xb5, 0x2, 0x986, 0x0, 0xf7, 0x7a}, 0xfff7fffd, 0xfffffff8, 0x1318}}]}}]}, 0x68}}, 0x44080)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10) (async)
socket$inet(0x2, 0x6, 0x3) (async)
ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f0000000500)={0x0, 0x9, 0x5}) (async)
sync() (async)
sync()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8000000000000}, 0x18)
sync()

456.974971ms ago: executing program 2 (id=875):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, 0x0, &(0x7f0000000180), 0x2004000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[], &(0x7f0000000580)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

370.790662ms ago: executing program 5 (id=876):
socket$nl_rdma(0x10, 0x3, 0x14)
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000180)="2cd889f0253e14", 0x7)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/address_bits', 0x0, 0xcc)
lseek(r1, 0xfffffffffffffffe, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x3}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
r4 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$selinux_access(r4, &(0x7f0000000300)=ANY=[@ANYBLOB='system_u:object_r:crack_db_t:s0 /usr/lib/tthy/mission-control-5 0'], 0x5a)
r5 = getpid()
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x8], 0x0, 0x0, 0x1, 0x0, r5}}, 0x40)

370.569783ms ago: executing program 5 (id=877):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000100), 0x0, 0x0)
r0 = syz_io_uring_setup(0xd1, &(0x7f0000000480)={0x0, 0x408a73, 0x100, 0x0, 0x1b7}, &(0x7f0000000300)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0x103, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x47ba, 0x3000000, 0x0, 0x0, 0x0)

354.841203ms ago: executing program 5 (id=878):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = syz_io_uring_setup(0x88f, 0x0, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x75fa, 0xe475, 0x0, 0x0, 0x0)

224.825095ms ago: executing program 5 (id=879):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200a}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r3, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "0daf7461cfccf6ce"}, 0x28)
close_range(r2, 0xffffffffffffffff, 0x0)

213.850056ms ago: executing program 3 (id=880):
syz_mount_image$iso9660(&(0x7f0000000780), &(0x7f0000000000)='./file0\x00', 0x21488b, &(0x7f00000004c0)=ANY=[@ANYBLOB='map=acorn,sbsector=0x0000000000000000,uid=', @ANYRESDEC=0x0, @ANYBLOB="0000b18eb07a9dbec07d91edf772ce16e8f4545927e1e38533740c5b1da10b839e273fa468d364205a63adda5262cda8e690d1049c884d79e243210c733da8adfb6db6f3b3464aca805a08f3cacf9bce83fd7888eb1f09a8a7f55959926a7fd5ac27fd519bccdcfda872f503656169", @ANYRES16, @ANYBLOB="48aa122ce7bad1d4005fd66df97f8ec44bbc8f22ca2298ce346671617bb371da3c639abd9ee548b49a9c10009f28579f82efb3cf18d7e4f7d0cda9f6feec4c5df95db277defa1414ccf2075e6fd144cdc78c1f843f1574502ce415c27f3cec8893fe5950104e7d7b43440fd107294cf00fe8000000000000", @ANYRESOCT], 0x1, 0x65b, &(0x7f00000007c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, 0x0)
r1 = socket(0xa, 0x3, 0x3a)
pipe2(&(0x7f0000001cc0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB="2c756e616d653dd0"])
signalfd4(r3, &(0x7f00000000c0)={[0xa22]}, 0x8, 0x80000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x48)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0xf0, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}}, 0xf0}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x18, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r4)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1, 0x8, 0x0, 0x401}, 0xc)
setsockopt$MRT6_FLUSH(r1, 0x29, 0xd4, &(0x7f0000000080)=0xc, 0x4)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd75, 0xff78, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x29)
syz_mount_image$iso9660(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x28810c5, &(0x7f0000000080)=ANY=[@ANYRESOCT, @ANYRES8], 0x1, 0x56c, &(0x7f0000003480)="$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")
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
r8 = add_key$keyring(&(0x7f0000000080), &(0x7f0000001100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='asymmetric\x00', 0x0, &(0x7f0000000300)="300e", 0x2, r8)
linkat(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x400)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)

155.811227ms ago: executing program 2 (id=881):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r2, &(0x7f0000000300)={0x12, 0x10, 0xfa00, {0x0}}, 0x18)
r3 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_register$IORING_REGISTER_NAPI(r3, 0x1b, &(0x7f0000000240)={0x2, 0xff}, 0x1)
io_uring_enter(r3, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000000c0)='sys_enter\x00', r1}, 0x18)
r6 = socket$unix(0x1, 0x5, 0x0)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000000)=r1, 0x4)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r9, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@dellink={0x20, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r10, 0x10820, 0x400}}, 0x20}}, 0x4084)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x18)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000340)={'\x00', 0x6, 0x3, 0x120e, 0x6, 0x95e6, <r11=>0xffffffffffffffff})
syz_clone3(&(0x7f00000006c0)={0x102102180, 0x0, 0x0, 0x0, {0x40}, 0x0, 0x0, 0x0, &(0x7f0000000680)=[r11], 0x1}, 0x58)
inotify_rm_watch(0xffffffffffffffff, 0x0)

85.467288ms ago: executing program 5 (id=882):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r2}, 0x18)
socket$pppl2tp(0x18, 0x1, 0x1)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = io_uring_setup(0x6503, &(0x7f0000001300)={0x0, 0x8d5f, 0x1046, 0x0, 0x264})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, &(0x7f00000000c0), 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r4, 0xc, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000780), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000003c0)={0x14, r7, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x400c8}, 0x20000000)
sendmsg$MPTCP_PM_CMD_REMOVE(r5, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)={0x24, r7, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, 0x0, 0x8d0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000600)={@multicast, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x17c1, 0x9c, 0x0, @wg=@initiation={0x1, 0x3, "4834f4b2bff521a54cab5ef319ec23dcd2391fb53b698ae5a2460e6e28426a6f", "9f778d89b59f40fd86f2a2b5f64ea7df128c333a49266aa5f24a0c421073f26d4375c7378775279cff730549f357a33a", "f4fe6ae651e2409bd093bca48a09acd74e3f221b50d4e284bc6a2486", {"3a1aa976cf2634d1738f063255dbb89b", "a3314e00f6f01a0d20baf5f356d6fbc1"}}}}}}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', <r10=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r10, @ANYBLOB="080003"], 0x44}}, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r12}, 0x10)
r13 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r13, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000680)=@newtaction={0x180, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0x16c, 0x1, [@m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0xfffffdd6}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0xd4, 0x3, 0x0, 0x0, {{0x9}, {0x58, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0x0, 0x3, {0x2, 0xea3, 0x7}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1d28}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}, @TCA_GACT_PARMS={0x18, 0x2, {0x7ff, 0xd8, 0x0, 0x9, 0x100000e0}}]}, {0x52, 0x6, "a06b1d1931f3579c6d7c5159238a286074602c3726c701f3c0d5382de62a6e8c4fb714fcd674c66cd306a4f78d3d05530609c9b04b7483bd084d70df8e77e6fbd503917aa0a6c737cef0ed021b60"}, {0xc}, {0x1, 0x8, {0x2, 0x2}}}}]}]}, 0x180}}, 0x0)

0s ago: executing program 0 (id=883):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, 0x0)
sendmsg$NFC_CMD_DEV_UP(r1, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0)
write$nci(r0, &(0x7f0000001800)=ANY=[], 0x16)
r2 = socket$inet6(0xa, 0x80002, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r4}, 0x9)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0xfd, 0x1bf, &(0x7f0000000480)="$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")
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r5, 0x10001, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x100000}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)

kernel console output (not intermixed with test programs):

3.491475][ T4323]  dump_stack_lvl+0xe8/0x140
[   53.491501][ T4323]  dump_stack+0x15/0x1b
[   53.491524][ T4323]  should_fail_ex+0x265/0x280
[   53.491555][ T4323]  ? __tcf_chain_get+0x91/0x280
[   53.491611][ T4323]  should_failslab+0x8c/0xb0
[   53.491705][ T4323]  __kmalloc_cache_noprof+0x4c/0x320
[   53.491748][ T4323]  __tcf_chain_get+0x91/0x280
[   53.491772][ T4323]  ? __tcf_block_find+0x11a/0x1a0
[   53.491809][ T4323]  tc_new_tfilter+0x5ac/0x10a0
[   53.491842][ T4323]  ? __rcu_read_unlock+0x4f/0x70
[   53.491955][ T4323]  ? avc_has_perm_noaudit+0x1b1/0x200
[   53.492002][ T4323]  ? ns_capable+0x7d/0xb0
[   53.492029][ T4323]  ? __pfx_tc_new_tfilter+0x10/0x10
[   53.492062][ T4323]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   53.492115][ T4323]  netlink_rcv_skb+0x123/0x220
[   53.492146][ T4323]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   53.492230][ T4323]  rtnetlink_rcv+0x1c/0x30
[   53.492266][ T4323]  netlink_unicast+0x5bd/0x690
[   53.492297][ T4323]  netlink_sendmsg+0x58b/0x6b0
[   53.492415][ T4323]  ? __pfx_netlink_sendmsg+0x10/0x10
[   53.492467][ T4323]  __sock_sendmsg+0x142/0x180
[   53.492589][ T4323]  ____sys_sendmsg+0x31e/0x4e0
[   53.492627][ T4323]  ___sys_sendmsg+0x17b/0x1d0
[   53.492677][ T4323]  __x64_sys_sendmsg+0xd4/0x160
[   53.492820][ T4323]  x64_sys_call+0x191e/0x2ff0
[   53.492922][ T4323]  do_syscall_64+0xd2/0x200
[   53.492964][ T4323]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.492997][ T4323]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   53.493036][ T4323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.493127][ T4323] RIP: 0033:0x7f95c54debe9
[   53.493149][ T4323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.493188][ T4323] RSP: 002b:00007f95c3f3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   53.493208][ T4323] RAX: ffffffffffffffda RBX: 00007f95c5715fa0 RCX: 00007f95c54debe9
[   53.493221][ T4323] RDX: 0000000024000880 RSI: 00002000000000c0 RDI: 0000000000000004
[   53.493233][ T4323] RBP: 00007f95c3f3f090 R08: 0000000000000000 R09: 0000000000000000
[   53.493245][ T4323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.493256][ T4323] R13: 00007f95c5716038 R14: 00007f95c5715fa0 R15: 00007ffebb9cf098
[   53.493275][ T4323]  </TASK>
[   53.509946][   T29] audit: type=1400 audit(1757333872.682:963): avc:  denied  { validate_trans } for  pid=4319 comm="syz.2.308" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   53.562846][ T4325] EXT4-fs (loop2): inodes count not valid: 1 vs 32
[   53.566567][   T29] audit: type=1326 audit(1757333872.692:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4307 comm="syz.0.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dff9bebe9 code=0x7ffc0000
[   53.566613][   T29] audit: type=1326 audit(1757333872.692:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4307 comm="syz.0.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dff9bebe9 code=0x7ffc0000
[   53.821836][   T29] audit: type=1400 audit(1757333872.692:966): avc:  denied  { write } for  pid=4307 comm="syz.0.304" name="hidraw0" dev="devtmpfs" ino=732 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   53.859654][ T4309] lo speed is unknown, defaulting to 1000
[   53.865436][ T4309] lo speed is unknown, defaulting to 1000
[   53.895436][ T4336] __nla_validate_parse: 8 callbacks suppressed
[   53.895452][ T4336] netlink: 4 bytes leftover after parsing attributes in process `syz.2.315'.
[   53.910242][ T4309] lo speed is unknown, defaulting to 1000
[   53.950118][ T4309] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   53.965840][ T4336] bridge0: entered promiscuous mode
[   53.983625][ T4336] macsec1: entered allmulticast mode
[   53.989085][ T4336] bridge0: entered allmulticast mode
[   53.989930][ T4309] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   53.997623][ T4336] bridge0: port 3(macsec1) entered blocking state
[   54.008089][ T4336] bridge0: port 3(macsec1) entered disabled state
[   54.011132][ T4346] loop3: detected capacity change from 0 to 1024
[   54.031985][ T4346] EXT4-fs: Ignoring removed orlov option
[   54.050238][ T4336] bridge0: left allmulticast mode
[   54.055390][ T4336] bridge0: left promiscuous mode
[   54.083092][ T4346] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.121037][ T4352] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4352 comm=syz.4.318
[   54.136402][ T4309] lo speed is unknown, defaulting to 1000
[   54.142539][ T4309] lo speed is unknown, defaulting to 1000
[   54.166539][ T4346] __find_get_block_slow() failed. block=288230376151711744, b_blocknr=0, b_state=0x00000019, b_size=1024, device loop3 blocksize: 1024
[   54.183363][ T4359] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[   54.194386][ T4309] lo speed is unknown, defaulting to 1000
[   54.200498][ T4309] lo speed is unknown, defaulting to 1000
[   54.207398][ T4309] lo speed is unknown, defaulting to 1000
[   54.263301][ T4346] grow_buffers: requested out-of-range block 288230376151711744 for device loop3
[   54.272622][ T4346] EXT4-fs warning (device loop3): ext4_resize_fs:2019: can't read last block, resize aborted
[   54.398462][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.494068][ T4367] loop1: detected capacity change from 0 to 512
[   54.524313][ T4367] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.545922][ T4371] netlink: 16 bytes leftover after parsing attributes in process `syz.3.325'.
[   54.559575][ T4367] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.575894][ T4371] 
: renamed from bond0 (while UP)
[   55.004383][ T4378] loop3: detected capacity change from 0 to 128
[   55.644709][ T4386] loop0: detected capacity change from 0 to 512
[   55.787786][ T4386] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.823704][ T4386] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.877540][ T4386] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #18: comm syz.0.333: corrupted inode contents
[   55.916588][ T4386] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #18: comm syz.0.333: mark_inode_dirty error
[   55.947107][ T4386] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #18: comm syz.0.333: corrupted inode contents
[   55.986537][ T4386] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #18: comm syz.0.333: mark_inode_dirty error
[   56.030161][ T4386] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #18: comm syz.0.333: mark inode dirty (error -117)
[   56.072735][ T4386] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117)
[   56.092399][ T4400] netlink: 16 bytes leftover after parsing attributes in process `syz.3.338'.
[   56.113028][ T4400] netlink: 12 bytes leftover after parsing attributes in process `syz.3.338'.
[   56.144701][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.161820][ T4400] loop3: detected capacity change from 0 to 512
[   56.198017][ T4400] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.249204][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.379318][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.507940][ T4418] loop1: detected capacity change from 0 to 256
[   56.529753][ T4422] 9pnet_fd: Insufficient options for proto=fd
[   56.651679][ T4427] autofs4:pid:4427:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(0.0), cmd(0xc018937e)
[   56.664909][ T4427] autofs4:pid:4427:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e)
[   56.729179][ T4431] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   56.744809][ T3399] lo speed is unknown, defaulting to 1000
[   56.866228][ T4435] loop4: detected capacity change from 0 to 128
[   56.966437][ T4439] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   56.974559][ T4439] FAT-fs (loop4): Filesystem has been set read-only
[   56.981230][ T4439] bio_check_eod: 27280 callbacks suppressed
[   56.981245][ T4439] syz.4.350: attempt to access beyond end of device
[   56.981245][ T4439] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   57.000830][ T4439] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   57.008663][ T4439] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   57.016693][ T4425] syz.4.350: attempt to access beyond end of device
[   57.016693][ T4425] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   57.029954][ T4425] syz.4.350: attempt to access beyond end of device
[   57.029954][ T4425] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   57.043112][ T4425] syz.4.350: attempt to access beyond end of device
[   57.043112][ T4425] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   57.058551][ T4440] syz.4.350: attempt to access beyond end of device
[   57.058551][ T4440] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   57.071823][ T4440] syz.4.350: attempt to access beyond end of device
[   57.071823][ T4440] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   57.087202][ T4439] syz.4.350: attempt to access beyond end of device
[   57.087202][ T4439] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   57.100457][ T4439] syz.4.350: attempt to access beyond end of device
[   57.100457][ T4439] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   57.113844][ T4439] syz.4.350: attempt to access beyond end of device
[   57.113844][ T4439] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   57.127088][ T4439] syz.4.350: attempt to access beyond end of device
[   57.127088][ T4439] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   57.173690][ T4428] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   57.181962][ T4428] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   57.445432][ T4431] 9pnet: Could not find request transport: 0xffffffffffffffff
[   57.559605][ T4464] loop0: detected capacity change from 0 to 1024
[   57.568092][ T4463] loop3: detected capacity change from 0 to 1024
[   57.568479][ T4463] EXT4-fs: Ignoring removed nobh option
[   57.568545][ T4463] EXT4-fs: Ignoring removed bh option
[   57.699961][ T4463] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.738474][ T4464] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.776202][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.788057][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.981433][ T4537] loop3: detected capacity change from 0 to 164
[   58.004104][ T4537] rock: directory entry would overflow storage
[   58.010647][ T4537] rock: sig=0x66, size=4, remaining=3
[   58.032457][ T4537] rock: directory entry would overflow storage
[   58.038727][ T4537] rock: sig=0x66, size=4, remaining=3
[   58.059143][ T4537] iso9660: Corrupted directory entry in block 4 of inode 1792
[   58.068701][ T4537] 9pnet_fd: Insufficient options for proto=fd
[   58.075995][ T4537] netlink: 64 bytes leftover after parsing attributes in process `syz.3.365'.
[   58.089923][ T4537] pim6reg: entered allmulticast mode
[   58.097339][ T4537] pim6reg: left allmulticast mode
[   58.105116][ T4539] loop1: detected capacity change from 0 to 4096
[   58.211265][ T4544] loop0: detected capacity change from 0 to 128
[   58.234187][ T4539] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   58.255887][ T4539] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.284269][ T4548] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   58.292775][ T4548] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   58.498923][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.526045][   T29] kauditd_printk_skb: 98 callbacks suppressed
[   58.526061][   T29] audit: type=1400 audit(1757333877.752:1065): avc:  denied  { read append } for  pid=4552 comm="syz.4.369" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   58.556873][   T29] audit: type=1400 audit(1757333877.752:1066): avc:  denied  { ioctl open } for  pid=4552 comm="syz.4.369" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   58.643369][ T4557] loop3: detected capacity change from 0 to 128
[   58.677252][ T4554] program syz.4.369 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   58.716394][ T4559] loop1: detected capacity change from 0 to 1024
[   58.803176][ T4562] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   58.811358][ T4562] FAT-fs (loop3): Filesystem has been set read-only
[   58.818117][ T4562] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   58.826017][ T4562] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   58.948287][ T4551] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   58.956515][ T4551] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   59.033308][ T4559] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.093085][   T29] audit: type=1326 audit(1757333878.312:1067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4566 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa53d36ebe9 code=0x7ffc0000
[   59.116485][   T29] audit: type=1326 audit(1757333878.322:1068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4566 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa53d36ebe9 code=0x7ffc0000
[   59.140080][   T29] audit: type=1326 audit(1757333878.322:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4566 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa53d36ebe9 code=0x7ffc0000
[   59.163396][   T29] audit: type=1326 audit(1757333878.322:1070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4566 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa53d36ebe9 code=0x7ffc0000
[   59.186814][   T29] audit: type=1326 audit(1757333878.322:1071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4566 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa53d36ebe9 code=0x7ffc0000
[   59.210350][   T29] audit: type=1326 audit(1757333878.322:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4566 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa53d36ebe9 code=0x7ffc0000
[   59.233841][   T29] audit: type=1326 audit(1757333878.322:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4566 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa53d36ebe9 code=0x7ffc0000
[   59.257302][   T29] audit: type=1326 audit(1757333878.322:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4566 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa53d36ebe9 code=0x7ffc0000
[   59.393325][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.680921][ T4592] netlink: 16 bytes leftover after parsing attributes in process `syz.1.382'.
[   59.689992][ T4592] netlink: 12 bytes leftover after parsing attributes in process `syz.1.382'.
[   59.717445][ T4592] loop1: detected capacity change from 0 to 512
[   59.759535][ T4592] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.870167][ T4600] loop3: detected capacity change from 0 to 128
[   59.955164][ T4601] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   59.963185][ T4601] FAT-fs (loop3): Filesystem has been set read-only
[   59.969891][ T4601] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   59.977757][ T4601] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   60.124002][ T4591] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   60.132279][ T4591] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   60.234808][ T4604] loop0: detected capacity change from 0 to 1024
[   60.288851][ T4604] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.329356][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.377635][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.538833][ T4611] netlink: 56 bytes leftover after parsing attributes in process `syz.3.388'.
[   60.626213][ T4620] loop4: detected capacity change from 0 to 128
[   60.655257][ T4620] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   60.663755][ T4620] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   60.861228][ T4632] tipc: Started in network mode
[   60.866955][ T4632] tipc: Node identity aaaaaaaaaa32, cluster identity 4711
[   60.875169][ T4632] tipc: Enabled bearer <eth:vlan0>, priority 18
[   60.991452][ T4640] capability: warning: `syz.0.401' uses deprecated v2 capabilities in a way that may be insecure
[   61.032814][ T4643] loop1: detected capacity change from 0 to 4096
[   61.053294][ T4632] netlink: 8 bytes leftover after parsing attributes in process `syz.3.396'.
[   61.188997][ T4643] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   61.214476][ T4654] netlink: 8 bytes leftover after parsing attributes in process `syz.3.396'.
[   61.285313][ T4657] loop4: detected capacity change from 0 to 512
[   61.292223][ T4657] EXT4-fs: Ignoring removed mblk_io_submit option
[   61.298778][ T4657] ext4: Unknown parameter 'obj_type'
[   61.321989][ T4657] lo speed is unknown, defaulting to 1000
[   61.790673][ T4667] netlink: 16 bytes leftover after parsing attributes in process `syz.0.410'.
[   61.803735][ T4667] netlink: 12 bytes leftover after parsing attributes in process `syz.0.410'.
[   61.838202][ T4667] loop0: detected capacity change from 0 to 512
[   61.986440][ T3385] tipc: Node number set to 10005162
[   62.139873][ T4699] netlink: 16 bytes leftover after parsing attributes in process `syz.3.425'.
[   62.152583][ T4697] loop0: detected capacity change from 0 to 4096
[   62.167096][ T4699] netlink: 12 bytes leftover after parsing attributes in process `syz.3.425'.
[   62.181656][ T4699] loop3: detected capacity change from 0 to 512
[   62.189787][ T4697] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   62.742542][ T4748] netlink: 16 bytes leftover after parsing attributes in process `syz.3.442'.
[   62.773268][ T4748] loop3: detected capacity change from 0 to 512
[   62.933623][ T4768] FAULT_INJECTION: forcing a failure.
[   62.933623][ T4768] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.946913][ T4768] CPU: 1 UID: 0 PID: 4768 Comm: syz.0.451 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   62.946968][ T4768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   62.946980][ T4768] Call Trace:
[   62.946986][ T4768]  <TASK>
[   62.946992][ T4768]  __dump_stack+0x1d/0x30
[   62.947014][ T4768]  dump_stack_lvl+0xe8/0x140
[   62.947113][ T4768]  dump_stack+0x15/0x1b
[   62.947130][ T4768]  should_fail_ex+0x265/0x280
[   62.947160][ T4768]  should_fail+0xb/0x20
[   62.947185][ T4768]  should_fail_usercopy+0x1a/0x20
[   62.947294][ T4768]  _copy_from_user+0x1c/0xb0
[   62.947325][ T4768]  ___sys_recvmsg+0xaa/0x370
[   62.947406][ T4768]  ? _parse_integer+0x27/0x40
[   62.947436][ T4768]  do_recvmmsg+0x1ef/0x540
[   62.947475][ T4768]  ? fput+0x8f/0xc0
[   62.947549][ T4768]  __x64_sys_recvmmsg+0xe5/0x170
[   62.947584][ T4768]  x64_sys_call+0x27a6/0x2ff0
[   62.947610][ T4768]  do_syscall_64+0xd2/0x200
[   62.947650][ T4768]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   62.947713][ T4768]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   62.947741][ T4768]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.947762][ T4768] RIP: 0033:0x7f9dff9bebe9
[   62.947776][ T4768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.947793][ T4768] RSP: 002b:00007f9dfe41f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   62.947878][ T4768] RAX: ffffffffffffffda RBX: 00007f9dffbf5fa0 RCX: 00007f9dff9bebe9
[   62.947893][ T4768] RDX: 0000000000000700 RSI: 0000200000001140 RDI: 0000000000000004
[   62.947908][ T4768] RBP: 00007f9dfe41f090 R08: 0000000000000000 R09: 0000000000000000
[   62.947919][ T4768] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[   62.947930][ T4768] R13: 00007f9dffbf6038 R14: 00007f9dffbf5fa0 R15: 00007ffefa8541a8
[   62.947948][ T4768]  </TASK>
[   63.019585][ T4770] loop3: detected capacity change from 0 to 4096
[   63.152407][ T4770] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   63.326162][ T4777] loop0: detected capacity change from 0 to 164
[   63.349183][ T4777] rock: directory entry would overflow storage
[   63.355451][ T4777] rock: sig=0x66, size=4, remaining=3
[   63.389787][ T4777] rock: directory entry would overflow storage
[   63.396071][ T4777] rock: sig=0x66, size=4, remaining=3
[   63.407634][ T4777] iso9660: Corrupted directory entry in block 4 of inode 1792
[   63.509882][ T4792] pim6reg: entered allmulticast mode
[   63.518300][ T4777] pim6reg: left allmulticast mode
[   63.675942][   T29] kauditd_printk_skb: 185 callbacks suppressed
[   63.675962][   T29] audit: type=1400 audit(1757333882.902:1260): avc:  denied  { mounton } for  pid=4785 comm="syz.3.458" path="/115/file0" dev="tmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   63.843217][ T4808] loop3: detected capacity change from 0 to 128
[   63.938077][ T4810] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   63.946024][ T4810] FAT-fs (loop3): Filesystem has been set read-only
[   63.952694][ T4810] bio_check_eod: 43826 callbacks suppressed
[   63.952711][ T4810] syz.3.458: attempt to access beyond end of device
[   63.952711][ T4810] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   63.972389][ T4810] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   63.980327][ T4810] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   63.990681][ T4810] syz.3.458: attempt to access beyond end of device
[   63.990681][ T4810] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   64.003907][ T4810] syz.3.458: attempt to access beyond end of device
[   64.003907][ T4810] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   64.017369][ T4810] syz.3.458: attempt to access beyond end of device
[   64.017369][ T4810] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   64.030582][ T4810] syz.3.458: attempt to access beyond end of device
[   64.030582][ T4810] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   64.030732][ T4813] loop4: detected capacity change from 0 to 128
[   64.043883][ T4810] syz.3.458: attempt to access beyond end of device
[   64.043883][ T4810] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   64.063236][ T4810] syz.3.458: attempt to access beyond end of device
[   64.063236][ T4810] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   64.076470][ T4785] syz.3.458: attempt to access beyond end of device
[   64.076470][ T4785] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   64.089774][ T4785] syz.3.458: attempt to access beyond end of device
[   64.089774][ T4785] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   64.103158][ T4785] syz.3.458: attempt to access beyond end of device
[   64.103158][ T4785] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   64.182004][ T4816] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   64.189939][ T4816] FAT-fs (loop4): Filesystem has been set read-only
[   64.196642][ T4816] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   64.204578][ T4816] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   64.322225][ T4817] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   64.330660][ T4817] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   64.538546][   T29] audit: type=1326 audit(1757333883.772:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4822 comm="syz.3.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   64.562125][   T29] audit: type=1326 audit(1757333883.772:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4822 comm="syz.3.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   64.585494][   T29] audit: type=1326 audit(1757333883.772:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4822 comm="syz.3.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   64.608862][   T29] audit: type=1326 audit(1757333883.772:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4822 comm="syz.3.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   64.632361][   T29] audit: type=1326 audit(1757333883.772:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4822 comm="syz.3.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   64.632445][ T4820] loop2: detected capacity change from 0 to 4096
[   64.655735][   T29] audit: type=1326 audit(1757333883.772:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4822 comm="syz.3.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   64.685711][   T29] audit: type=1326 audit(1757333883.772:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4822 comm="syz.3.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   64.709248][   T29] audit: type=1326 audit(1757333883.772:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4822 comm="syz.3.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   64.732761][   T29] audit: type=1326 audit(1757333883.772:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4822 comm="syz.3.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   64.788993][ T4820] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   64.821222][ T4825] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=128 sclass=netlink_route_socket pid=4825 comm=syz.0.473
[   64.868943][ T4832] loop3: detected capacity change from 0 to 512
[   64.944848][ T4832] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.958168][ T4839] loop0: detected capacity change from 0 to 164
[   64.992533][ T4832] __nla_validate_parse: 8 callbacks suppressed
[   64.992550][ T4832] netlink: 12 bytes leftover after parsing attributes in process `syz.3.476'.
[   65.009526][ T3385] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[   65.017479][ T3385] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[   65.028352][ T3385] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x3
[   65.122184][ T4839] rock: directory entry would overflow storage
[   65.128450][ T4839] rock: sig=0x66, size=4, remaining=3
[   65.184931][ T4839] rock: directory entry would overflow storage
[   65.191258][ T4839] rock: sig=0x66, size=4, remaining=3
[   65.199859][ T4843] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   65.208181][ T4843] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   65.236519][ T4839] iso9660: Corrupted directory entry in block 4 of inode 1792
[   65.263280][ T4839] 9pnet_fd: Insufficient options for proto=fd
[   65.284765][ T4839] netlink: 64 bytes leftover after parsing attributes in process `syz.0.478'.
[   65.321251][ T4839] pim6reg: entered allmulticast mode
[   65.347409][ T4839] pim6reg: left allmulticast mode
[   65.452754][ T3385] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   65.492646][ T4848] fido_id[4848]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   65.530189][ T4851] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[   65.538795][ T4851] netlink: 108 bytes leftover after parsing attributes in process `+}[@'.
[   65.552319][ T4851] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[   65.561300][ T4851] netlink: 108 bytes leftover after parsing attributes in process `+}[@'.
[   65.569940][ T4851] netlink: 84 bytes leftover after parsing attributes in process `+}[@'.
[   65.624871][ T4857] netlink: 4 bytes leftover after parsing attributes in process `syz.2.482'.
[   65.667181][ T4857] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27152 sclass=netlink_route_socket pid=4857 comm=syz.2.482
[   65.709959][ T4857] netlink: 68 bytes leftover after parsing attributes in process `syz.2.482'.
[   65.805805][ T4857] loop2: detected capacity change from 0 to 1024
[   65.905802][ T4857] EXT4-fs: Ignoring removed oldalloc option
[   65.911972][ T4857] EXT4-fs: Ignoring removed bh option
[   66.069143][ T4880] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[   66.082212][ T4883] loop3: detected capacity change from 0 to 128
[   66.139342][ T4874] SELinux:  Context system_u:object_r:null_device_t:s0 is not valid (left unmapped).
[   66.152079][ T4884] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   66.160170][ T4884] FAT-fs (loop3): Filesystem has been set read-only
[   66.166841][ T4884] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   66.174666][ T4884] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   66.486072][ T4870] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   66.494422][ T4870] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   66.673952][ T4892] loop0: detected capacity change from 0 to 512
[   66.803561][ T4908] loop3: detected capacity change from 0 to 512
[   66.837262][ T4908] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   66.866879][ T4908] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.501: invalid indirect mapped block 4294967295 (level 1)
[   66.893612][ T4916] loop0: detected capacity change from 0 to 256
[   66.918738][ T4913] loop2: detected capacity change from 0 to 4096
[   66.926720][ T4908] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.501: invalid indirect mapped block 4294967295 (level 1)
[   66.945766][ T4913] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   66.973685][ T4908] EXT4-fs (loop3): 2 truncates cleaned up
[   67.059729][ T4925] netlink: 'syz.1.507': attribute type 1 has an invalid length.
[   67.070590][ T4926] loop4: detected capacity change from 0 to 128
[   67.230836][ T4930] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   67.239193][ T4930] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   67.279295][ T4925] 8021q: adding VLAN 0 to HW filter on device bond1
[   67.392279][ T4935] loop0: detected capacity change from 0 to 128
[   67.458006][ T4936] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   67.465911][ T4936] FAT-fs (loop0): Filesystem has been set read-only
[   67.472761][ T4936] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   67.480752][ T4936] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   67.694884][ T4925] bond1: (slave gretap1): making interface the new active one
[   67.720420][ T4913] syz.2.504 (4913) used greatest stack depth: 9672 bytes left
[   67.745121][ T4925] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   67.754165][ T4933] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   67.762491][ T4933] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   67.819504][ T4939] vlan2: entered allmulticast mode
[   67.824813][ T4939] bond1: entered allmulticast mode
[   67.830003][ T4939] gretap1: entered allmulticast mode
[   67.854294][ T4939] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[   67.897543][ T4940] syzkaller0: refused to change device tx_queue_len
[   68.138480][ T4970] loop4: detected capacity change from 0 to 164
[   68.173961][ T4970] rock: directory entry would overflow storage
[   68.180255][ T4970] rock: sig=0x66, size=4, remaining=3
[   68.208719][ T4970] rock: directory entry would overflow storage
[   68.215018][ T4970] rock: sig=0x66, size=4, remaining=3
[   68.249034][ T4970] iso9660: Corrupted directory entry in block 4 of inode 1792
[   68.277702][ T4970] 9pnet_fd: Insufficient options for proto=fd
[   68.288168][ T4970] pim6reg: entered allmulticast mode
[   68.295454][ T4970] pim6reg: left allmulticast mode
[   68.332579][ T4981] loop3: detected capacity change from 0 to 1024
[   68.354291][ T4981] EXT4-fs: Ignoring removed oldalloc option
[   68.360397][ T4981] EXT4-fs: Ignoring removed bh option
[   68.631000][ T4996] loop0: detected capacity change from 0 to 512
[   68.720811][ T4996] EXT4-fs (loop0): inodes count not valid: 1 vs 32
[   68.857012][   T29] kauditd_printk_skb: 106 callbacks suppressed
[   68.857030][   T29] audit: type=1400 audit(1757333888.092:1376): avc:  denied  { mount } for  pid=5004 comm="syz.4.530" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   68.896126][   T29] audit: type=1400 audit(1757333888.092:1377): avc:  denied  { watch } for  pid=5004 comm="syz.4.530" path="/78/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[   68.920021][   T29] audit: type=1400 audit(1757333888.122:1378): avc:  denied  { getopt } for  pid=5004 comm="syz.4.530" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   68.975384][ T5009] loop4: detected capacity change from 0 to 8192
[   68.985447][ T5009] vfat: Unknown parameter '
'
[   68.992203][   T29] audit: type=1400 audit(1757333888.212:1379): avc:  denied  { mounton } for  pid=5004 comm="syz.4.530" path="/78/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[   69.017741][ T5014] loop0: detected capacity change from 0 to 256
[   69.119066][   T29] audit: type=1400 audit(1757333888.342:1380): avc:  denied  { ioctl } for  pid=5004 comm="syz.4.530" path="socket:[9757]" dev="sockfs" ino=9757 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   69.180434][   T29] audit: type=1400 audit(1757333888.412:1381): avc:  denied  { unmount } for  pid=3305 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   69.211475][ T5020] pim6reg: entered allmulticast mode
[   69.225098][ T5020] pim6reg: left allmulticast mode
[   69.231407][ T5022] loop3: detected capacity change from 0 to 128
[   69.233664][ T5028] loop0: detected capacity change from 0 to 512
[   69.249489][ T5028] EXT4-fs (loop0): inodes count not valid: 1 vs 32
[   69.257764][ T5022] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.268479][ T5025] FAULT_INJECTION: forcing a failure.
[   69.268479][ T5025] name failslab, interval 1, probability 0, space 0, times 0
[   69.281335][ T5025] CPU: 0 UID: 0 PID: 5025 Comm: syz.4.537 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   69.281410][ T5025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   69.281425][ T5025] Call Trace:
[   69.281434][ T5025]  <TASK>
[   69.281443][ T5025]  __dump_stack+0x1d/0x30
[   69.281466][ T5025]  dump_stack_lvl+0xe8/0x140
[   69.281604][ T5025]  dump_stack+0x15/0x1b
[   69.281625][ T5025]  should_fail_ex+0x265/0x280
[   69.281648][ T5025]  should_failslab+0x8c/0xb0
[   69.281738][ T5025]  kmem_cache_alloc_noprof+0x50/0x310
[   69.281773][ T5025]  ? skb_clone+0x151/0x1f0
[   69.281806][ T5025]  skb_clone+0x151/0x1f0
[   69.281836][ T5025]  __netlink_deliver_tap+0x2c9/0x500
[   69.281923][ T5025]  __netlink_sendskb+0xc3/0xd0
[   69.281951][ T5025]  netlink_dump+0x72b/0x8a0
[   69.281988][ T5025]  __netlink_dump_start+0x43e/0x520
[   69.282019][ T5025]  ? __pfx_rtnl_dump_all+0x10/0x10
[   69.282162][ T5025]  rtnetlink_rcv_msg+0x552/0x6d0
[   69.282195][ T5025]  ? __pfx_rtnl_dump_all+0x10/0x10
[   69.282232][ T5025]  ? __pfx_rtnl_dumpit+0x10/0x10
[   69.282269][ T5025]  ? __pfx_rtnl_dump_all+0x10/0x10
[   69.282362][ T5025]  netlink_rcv_skb+0x123/0x220
[   69.282392][ T5025]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   69.282437][ T5025]  rtnetlink_rcv+0x1c/0x30
[   69.282530][ T5025]  netlink_unicast+0x5bd/0x690
[   69.282560][ T5025]  netlink_sendmsg+0x58b/0x6b0
[   69.282594][ T5025]  ? __pfx_netlink_sendmsg+0x10/0x10
[   69.282627][ T5025]  __sock_sendmsg+0x142/0x180
[   69.282704][ T5025]  sock_write_iter+0x165/0x1b0
[   69.282757][ T5025]  ? __pfx_sock_write_iter+0x10/0x10
[   69.282791][ T5025]  vfs_write+0x527/0x960
[   69.282843][ T5025]  ksys_write+0xda/0x1a0
[   69.282872][ T5025]  __x64_sys_write+0x40/0x50
[   69.282901][ T5025]  x64_sys_call+0x27fe/0x2ff0
[   69.282937][ T5025]  do_syscall_64+0xd2/0x200
[   69.282991][ T5025]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   69.283023][ T5025]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   69.283113][ T5025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.283165][ T5025] RIP: 0033:0x7fa53d36ebe9
[   69.283184][ T5025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.283206][ T5025] RSP: 002b:00007fa53bdcf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   69.283230][ T5025] RAX: ffffffffffffffda RBX: 00007fa53d5a5fa0 RCX: 00007fa53d36ebe9
[   69.283244][ T5025] RDX: 0000000000000024 RSI: 0000200000000240 RDI: 0000000000000004
[   69.283273][ T5025] RBP: 00007fa53bdcf090 R08: 0000000000000000 R09: 0000000000000000
[   69.283288][ T5025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.283302][ T5025] R13: 00007fa53d5a6038 R14: 00007fa53d5a5fa0 R15: 00007ffe5d1d5968
[   69.283323][ T5025]  </TASK>
[   69.597959][   T29] audit: type=1400 audit(1757333888.802:1382): avc:  denied  { read write open } for  pid=5021 comm="syz.3.536" path="/128/file1/file1" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   69.621824][   T29] audit: type=1400 audit(1757333888.812:1383): avc:  denied  { bind } for  pid=5021 comm="syz.3.536" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   69.641043][   T29] audit: type=1400 audit(1757333888.812:1384): avc:  denied  { write } for  pid=5021 comm="syz.3.536" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   69.787686][ T5038] loop4: detected capacity change from 0 to 1024
[   69.802014][ T5038] EXT4-fs: Ignoring removed orlov option
[   69.807779][ T5038] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.942052][   T29] audit: type=1400 audit(1757333889.172:1385): avc:  denied  { block_suspend } for  pid=5044 comm="syz.0.544" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   69.975759][ T5046] netlink: 'syz.0.544': attribute type 1 has an invalid length.
[   70.397328][ T5038] EXT4-fs mount: 28 callbacks suppressed
[   70.397347][ T5038] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.501469][ T5059] loop2: detected capacity change from 0 to 128
[   70.587005][ T5062] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   70.594868][ T5062] FAT-fs (loop2): Filesystem has been set read-only
[   70.601496][ T5062] bio_check_eod: 49601 callbacks suppressed
[   70.601510][ T5062] syz.2.545: attempt to access beyond end of device
[   70.601510][ T5062] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   70.621348][ T5062] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   70.629401][ T5062] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   70.637580][ T5051] syz.2.545: attempt to access beyond end of device
[   70.637580][ T5051] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   70.650811][ T5051] syz.2.545: attempt to access beyond end of device
[   70.650811][ T5051] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   70.664010][ T5051] syz.2.545: attempt to access beyond end of device
[   70.664010][ T5051] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   70.679228][ T5063] syz.2.545: attempt to access beyond end of device
[   70.679228][ T5063] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   70.692457][ T5063] syz.2.545: attempt to access beyond end of device
[   70.692457][ T5063] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   70.709395][ T5062] syz.2.545: attempt to access beyond end of device
[   70.709395][ T5062] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   70.722785][ T5062] syz.2.545: attempt to access beyond end of device
[   70.722785][ T5062] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   70.735980][ T5062] syz.2.545: attempt to access beyond end of device
[   70.735980][ T5062] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   70.749253][ T5062] syz.2.545: attempt to access beyond end of device
[   70.749253][ T5062] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   70.877654][ T5054] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   70.885860][ T5054] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   70.964752][ T5066] loop0: detected capacity change from 0 to 512
[   70.994664][ T5066] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   71.021415][ T5070] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   71.032947][ T5048] IPVS: stopping master sync thread 5070 ...
[   71.070411][ T5066] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.137502][ T5074] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   71.156138][ T5066] ext4 filesystem being mounted at /124/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.222103][ T5074] 9pnet: Could not find request transport: 0xffffffffffffffff
[   71.236004][ T5079] netlink: 'syz.2.551': attribute type 1 has an invalid length.
[   71.253594][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.270503][ T5079] 8021q: adding VLAN 0 to HW filter on device bond1
[   71.308721][ T5079] bond1: (slave gretap1): making interface the new active one
[   71.317744][ T5079] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   71.340089][ T5079] vlan0: entered allmulticast mode
[   71.345262][ T5079] bond1: entered allmulticast mode
[   71.350703][ T5079] gretap1: entered allmulticast mode
[   71.358825][ T5067] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.358944][ T5079] bond1: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[   71.415848][   T60] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.437429][ T5090] syzkaller0: refused to change device tx_queue_len
[   71.465169][ T5096] loop3: detected capacity change from 0 to 4096
[   71.502143][ T5096] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   71.513878][ T5092] program syz.1.555 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   71.573531][ T5096] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.587899][   T60] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.714177][ T5105] loop0: detected capacity change from 0 to 128
[   71.782858][ T5107] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   71.790823][ T5107] FAT-fs (loop0): Filesystem has been set read-only
[   71.797521][ T5107] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   71.805364][ T5107] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   71.966401][   T60] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.020548][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.142312][ T5100] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   72.150606][ T5100] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   72.351399][ T5114] loop2: detected capacity change from 0 to 128
[   72.422186][   T60] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.454360][ T5116] __nla_validate_parse: 22 callbacks suppressed
[   72.454392][ T5116] netlink: 56 bytes leftover after parsing attributes in process `syz.3.562'.
[   72.495972][ T5117] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   72.503915][ T5117] FAT-fs (loop2): Filesystem has been set read-only
[   72.510823][ T5117] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   72.518677][ T5117] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   72.611092][ T5122] netlink: 24 bytes leftover after parsing attributes in process `syz.0.563'.
[   72.621864][ T5112] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   72.630106][ T5112] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   72.758206][   T60] bridge_slave_1: left allmulticast mode
[   72.763898][   T60] bridge_slave_1: left promiscuous mode
[   72.769675][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.885352][   T60] bridge_slave_0: left allmulticast mode
[   72.891087][   T60] bridge_slave_0: left promiscuous mode
[   72.897061][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.932656][ T5141] netlink: 16 bytes leftover after parsing attributes in process `syz.0.568'.
[   72.958446][ T5141] netlink: 12 bytes leftover after parsing attributes in process `syz.0.568'.
[   72.986484][ T5149] netlink: 12 bytes leftover after parsing attributes in process `syz.2.569'.
[   72.995762][ T5145] loop3: detected capacity change from 0 to 4096
[   73.022292][ T5141] loop0: detected capacity change from 0 to 512
[   73.030651][ T5145] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   73.058257][ T5141] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.078742][ T5145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.099102][ T5145] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.131158][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.198898][   T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   73.228327][ T5172] loop0: detected capacity change from 0 to 164
[   73.236715][   T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   73.267375][   T60] bond0 (unregistering): Released all slaves
[   73.275328][ T5172] rock: directory entry would overflow storage
[   73.281681][ T5172] rock: sig=0x66, size=4, remaining=3
[   73.327866][ T5172] rock: directory entry would overflow storage
[   73.334104][ T5172] rock: sig=0x66, size=4, remaining=3
[   73.350977][ T5160] syzkaller0: entered promiscuous mode
[   73.356623][ T5160] syzkaller0: entered allmulticast mode
[   73.393656][ T5172] iso9660: Corrupted directory entry in block 4 of inode 1792
[   73.403628][ T5181] loop3: detected capacity change from 0 to 512
[   73.418331][ T5181] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   73.433909][   T60] hsr_slave_0: left promiscuous mode
[   73.440358][   T60] hsr_slave_1: left promiscuous mode
[   73.446084][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   73.453587][   T60] batman_adv: batadv0: Removing interface: batadv_slave_0
[   73.462158][ T5183] netlink: 64 bytes leftover after parsing attributes in process `syz.0.574'.
[   73.471255][ T5181] EXT4-fs (loop3): 1 truncate cleaned up
[   73.481459][ T5181] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.496067][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   73.503561][   T60] batman_adv: batadv0: Removing interface: batadv_slave_1
[   73.513459][ T5181] FAULT_INJECTION: forcing a failure.
[   73.513459][ T5181] name failslab, interval 1, probability 0, space 0, times 0
[   73.526433][ T5181] CPU: 1 UID: 0 PID: 5181 Comm: syz.3.577 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   73.526473][ T5181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   73.526489][ T5181] Call Trace:
[   73.526519][ T5181]  <TASK>
[   73.526528][ T5181]  __dump_stack+0x1d/0x30
[   73.526555][ T5181]  dump_stack_lvl+0xe8/0x140
[   73.526581][ T5181]  dump_stack+0x15/0x1b
[   73.526602][ T5181]  should_fail_ex+0x265/0x280
[   73.526632][ T5181]  should_failslab+0x8c/0xb0
[   73.526683][ T5181]  kmem_cache_alloc_noprof+0x50/0x310
[   73.526755][ T5181]  ? ext4_mb_new_blocks+0x2ce/0x2080
[   73.526826][ T5181]  ext4_mb_new_blocks+0x2ce/0x2080
[   73.526944][ T5181]  ? ext4_ind_map_blocks+0x838/0x14f0
[   73.526973][ T5181]  ? ext4_get_branch+0x321/0x3a0
[   73.527080][ T5181]  ext4_ind_map_blocks+0xb86/0x14f0
[   73.527120][ T5181]  ext4_map_blocks+0x598/0xd00
[   73.527157][ T5181]  ? __account_obj_stock+0x211/0x350
[   73.527236][ T5181]  _ext4_get_block+0x10a/0x350
[   73.527273][ T5181]  ext4_get_block+0x39/0x50
[   73.527308][ T5181]  ext4_block_write_begin+0x5e5/0xc00
[   73.527352][ T5181]  ? __pfx_ext4_get_block+0x10/0x10
[   73.527462][ T5181]  ? folio_mapping+0xb9/0x120
[   73.527500][ T5181]  ext4_write_begin+0x647/0xeb0
[   73.527539][ T5181]  generic_perform_write+0x181/0x490
[   73.527595][ T5181]  ext4_buffered_write_iter+0x1ee/0x3c0
[   73.527676][ T5181]  ext4_file_write_iter+0x383/0xf00
[   73.527717][ T5181]  ? kstrtouint_from_user+0x9f/0xf0
[   73.527812][ T5181]  ? avc_policy_seqno+0x15/0x30
[   73.527884][ T5181]  ? selinux_file_permission+0x1e4/0x320
[   73.527923][ T5181]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   73.527962][ T5181]  vfs_write+0x527/0x960
[   73.527997][ T5181]  ksys_write+0xda/0x1a0
[   73.528049][ T5181]  __x64_sys_write+0x40/0x50
[   73.528078][ T5181]  x64_sys_call+0x27fe/0x2ff0
[   73.528104][ T5181]  do_syscall_64+0xd2/0x200
[   73.528188][ T5181]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.528219][ T5181]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   73.528284][ T5181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.528312][ T5181] RIP: 0033:0x7f784d2eebe9
[   73.528331][ T5181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.528376][ T5181] RSP: 002b:00007f784bd4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   73.528422][ T5181] RAX: ffffffffffffffda RBX: 00007f784d525fa0 RCX: 00007f784d2eebe9
[   73.528435][ T5181] RDX: 000000000000fea7 RSI: 0000200000000000 RDI: 0000000000000008
[   73.528450][ T5181] RBP: 00007f784bd4f090 R08: 0000000000000000 R09: 0000000000000000
[   73.528505][ T5181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.528520][ T5181] R13: 00007f784d526038 R14: 00007f784d525fa0 R15: 00007ffdf58eac58
[   73.528544][ T5181]  </TASK>
[   73.534972][   T60] veth1_macvtap: left promiscuous mode
[   73.819154][   T60] veth0_macvtap: left promiscuous mode
[   73.824991][   T60] veth1_vlan: left promiscuous mode
[   73.844199][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.864403][   T60] veth0_vlan: left promiscuous mode
[   74.021157][   T60] team0 (unregistering): Port device team_slave_1 removed
[   74.031850][   T60] team0 (unregistering): Port device team_slave_0 removed
[   74.100155][ T5172] pim6reg: entered allmulticast mode
[   74.128948][ T5183] pim6reg: left allmulticast mode
[   74.145156][ T5203] loop3: detected capacity change from 0 to 128
[   74.218962][ T5204] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   74.226946][ T5204] FAT-fs (loop3): Filesystem has been set read-only
[   74.233578][ T5204] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   74.241519][ T5204] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   74.477926][ T5193] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   74.513009][ T5103] lo speed is unknown, defaulting to 1000
[   74.582021][ T5198] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   74.590527][ T5198] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   74.690071][   T29] kauditd_printk_skb: 151 callbacks suppressed
[   74.690088][   T29] audit: type=1400 audit(1757333893.922:1537): avc:  denied  { write } for  pid=5211 comm="syz.0.583" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   74.765251][ T5103] chnl_net:caif_netlink_parms(): no params data found
[   74.813083][ T5222] loop0: detected capacity change from 0 to 164
[   74.831210][   T29] audit: type=1326 audit(1757333894.062:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   74.854673][   T29] audit: type=1326 audit(1757333894.062:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   74.889976][ T5222] rock: directory entry would overflow storage
[   74.896214][ T5222] rock: sig=0x66, size=4, remaining=3
[   74.896545][ T5231] netlink: 16 bytes leftover after parsing attributes in process `syz.2.590'.
[   74.906849][ T5222] rock: directory entry would overflow storage
[   74.916842][ T5222] rock: sig=0x66, size=4, remaining=3
[   74.923829][   T29] audit: type=1326 audit(1757333894.062:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   74.947233][   T29] audit: type=1326 audit(1757333894.062:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   74.970671][   T29] audit: type=1326 audit(1757333894.062:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   74.984090][ T5231] netlink: 12 bytes leftover after parsing attributes in process `syz.2.590'.
[   74.994604][   T29] audit: type=1326 audit(1757333894.072:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   75.022935][ T5222] iso9660: Corrupted directory entry in block 4 of inode 1792
[   75.027022][   T29] audit: type=1326 audit(1757333894.072:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   75.057880][   T29] audit: type=1326 audit(1757333894.072:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   75.081285][   T29] audit: type=1326 audit(1757333894.072:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f784d2eebe9 code=0x7ffc0000
[   75.098460][ T5242] netlink: 64 bytes leftover after parsing attributes in process `syz.0.587'.
[   75.137317][ T5231] loop2: detected capacity change from 0 to 512
[   75.208294][ T5231] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.218516][ T5242] pim6reg: entered allmulticast mode
[   75.226223][ T5103] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.233485][ T5103] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.256370][ T5103] bridge_slave_0: entered allmulticast mode
[   75.265842][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.267105][ T5103] bridge_slave_0: entered promiscuous mode
[   75.281921][ T5103] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.289163][ T5103] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.296510][ T5103] bridge_slave_1: entered allmulticast mode
[   75.303182][ T5103] bridge_slave_1: entered promiscuous mode
[   75.312117][ T5222] pim6reg: left allmulticast mode
[   75.460647][ T5103] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.471736][ T5103] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.626059][ T5290] loop3: detected capacity change from 0 to 128
[   75.688787][ T5103] team0: Port device team_slave_0 added
[   75.739354][ T5268] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   75.747325][ T5268] FAT-fs (loop3): Filesystem has been set read-only
[   75.754018][ T5268] bio_check_eod: 57896 callbacks suppressed
[   75.754033][ T5268] syz.3.596: attempt to access beyond end of device
[   75.754033][ T5268] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   75.773643][ T5268] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   75.781499][ T5268] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   75.789501][ T5265] syz.3.596: attempt to access beyond end of device
[   75.789501][ T5265] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.802714][ T5265] syz.3.596: attempt to access beyond end of device
[   75.802714][ T5265] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.815879][ T5265] syz.3.596: attempt to access beyond end of device
[   75.815879][ T5265] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.829137][ T5294] syz.3.596: attempt to access beyond end of device
[   75.829137][ T5294] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.842324][ T5294] syz.3.596: attempt to access beyond end of device
[   75.842324][ T5294] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.859503][ T5268] syz.3.596: attempt to access beyond end of device
[   75.859503][ T5268] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.872848][ T5268] syz.3.596: attempt to access beyond end of device
[   75.872848][ T5268] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.886052][ T5268] syz.3.596: attempt to access beyond end of device
[   75.886052][ T5268] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   75.899514][ T5268] syz.3.596: attempt to access beyond end of device
[   75.899514][ T5268] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   76.273780][ T5103] team0: Port device team_slave_1 added
[   76.304706][ T5276] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   76.313065][ T5276] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   76.321775][ T5293] lo speed is unknown, defaulting to 1000
[   76.561537][ T5308] loop3: detected capacity change from 0 to 4096
[   76.574072][ T5310] loop2: detected capacity change from 0 to 256
[   76.593900][ T5103] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.600981][ T5103] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.626937][ T5103] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.644997][ T5308] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   76.662660][ T5103] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.669679][ T5103] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.684219][ T5308] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.695803][ T5103] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.781637][ T5103] hsr_slave_0: entered promiscuous mode
[   76.791329][ T5103] hsr_slave_1: entered promiscuous mode
[   76.937399][ T5320] lo speed is unknown, defaulting to 1000
[   76.970767][ T5329] loop2: detected capacity change from 0 to 512
[   76.998030][ T5103] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   77.005112][ T5329] msdos: Unknown parameter 'allow_uƒime'
[   77.040171][ T5103] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   77.086840][ T5337] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   77.094274][ T5337] batman_adv: batadv0: Removing interface: batadv_slave_0
[   77.102721][ T5337] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   77.110178][ T5337] batman_adv: batadv0: Removing interface: batadv_slave_1
[   77.133206][ T5103] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   77.154614][ T5103] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   77.163324][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.250551][ T5359] netlink: 16 bytes leftover after parsing attributes in process `syz.3.620'.
[   77.273963][ T5359] loop3: detected capacity change from 0 to 512
[   77.292447][ T5103] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.314207][ T5359] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.314381][ T5363] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   77.354414][ T5103] 8021q: adding VLAN 0 to HW filter on device team0
[   77.366852][ T5364] FAULT_INJECTION: forcing a failure.
[   77.366852][ T5364] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.380285][ T5364] CPU: 0 UID: 0 PID: 5364 Comm: syz.2.622 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.380359][ T5364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.380374][ T5364] Call Trace:
[   77.380380][ T5364]  <TASK>
[   77.380390][ T5364]  __dump_stack+0x1d/0x30
[   77.380421][ T5364]  dump_stack_lvl+0xe8/0x140
[   77.380445][ T5364]  dump_stack+0x15/0x1b
[   77.380465][ T5364]  should_fail_ex+0x265/0x280
[   77.380513][ T5364]  should_fail+0xb/0x20
[   77.380539][ T5364]  should_fail_usercopy+0x1a/0x20
[   77.380572][ T5364]  _copy_to_user+0x20/0xa0
[   77.380745][ T5364]  simple_read_from_buffer+0xb5/0x130
[   77.380774][ T5364]  proc_fail_nth_read+0x10e/0x150
[   77.380808][ T5364]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   77.380841][ T5364]  vfs_read+0x1a5/0x770
[   77.380886][ T5364]  ? __rcu_read_unlock+0x4f/0x70
[   77.380912][ T5364]  ? __fget_files+0x184/0x1c0
[   77.380940][ T5364]  ? __sys_setsockopt+0x18e/0x200
[   77.380974][ T5364]  ksys_read+0xda/0x1a0
[   77.381044][ T5364]  __x64_sys_read+0x40/0x50
[   77.381071][ T5364]  x64_sys_call+0x27bc/0x2ff0
[   77.381178][ T5364]  do_syscall_64+0xd2/0x200
[   77.381217][ T5364]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.381268][ T5364]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.381303][ T5364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.381330][ T5364] RIP: 0033:0x7f4ba05ad5fc
[   77.381348][ T5364] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   77.381418][ T5364] RSP: 002b:00007f4b9f00f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   77.381442][ T5364] RAX: ffffffffffffffda RBX: 00007f4ba07e5fa0 RCX: 00007f4ba05ad5fc
[   77.381457][ T5364] RDX: 000000000000000f RSI: 00007f4b9f00f0a0 RDI: 0000000000000008
[   77.381472][ T5364] RBP: 00007f4b9f00f090 R08: 0000000000000000 R09: 0000000000000000
[   77.381486][ T5364] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000002
[   77.381500][ T5364] R13: 00007f4ba07e6038 R14: 00007f4ba07e5fa0 R15: 00007ffedb4a58e8
[   77.381525][ T5364]  </TASK>
[   77.383220][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.594989][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.607847][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.614983][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.616211][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.782410][ T5384] loop0: detected capacity change from 0 to 256
[   77.895893][ T5103] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.984287][ T5395] loop3: detected capacity change from 0 to 128
[   78.046904][ T5399] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   78.054836][ T5399] FAT-fs (loop3): Filesystem has been set read-only
[   78.061505][ T5399] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   78.069479][ T5399] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   78.452046][ T5385] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   78.460315][ T5385] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   78.517032][ T5404] loop0: detected capacity change from 0 to 512
[   78.537043][ T5404] EXT4-fs (loop0): inodes count not valid: 1 vs 32
[   78.713871][ T5416] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   78.722934][ T5406] loop2: detected capacity change from 0 to 4096
[   78.795734][ T5406] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   78.810242][ T5423] __nla_validate_parse: 1 callbacks suppressed
[   78.810261][ T5423] netlink: 24 bytes leftover after parsing attributes in process `syz.3.637'.
[   78.834596][ T5406] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.919180][ T5428] loop3: detected capacity change from 0 to 256
[   79.044436][ T5437] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   79.052949][ T5437] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   79.071719][ T5434] vhci_hcd: invalid port number 96
[   79.076921][ T5434] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[   79.155741][ T5103] veth0_vlan: entered promiscuous mode
[   79.213576][ T5103] veth1_vlan: entered promiscuous mode
[   79.256762][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.281276][ T5103] veth0_macvtap: entered promiscuous mode
[   79.317359][ T5441] loop3: detected capacity change from 0 to 164
[   79.332174][ T5103] veth1_macvtap: entered promiscuous mode
[   79.363115][ T5441] rock: directory entry would overflow storage
[   79.369364][ T5441] rock: sig=0x66, size=4, remaining=3
[   79.399014][ T5103] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.454199][ T5103] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.463853][ T5441] rock: directory entry would overflow storage
[   79.470167][ T5441] rock: sig=0x66, size=4, remaining=3
[   79.528550][ T5441] iso9660: Corrupted directory entry in block 4 of inode 1792
[   79.545124][   T51] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.565606][   T51] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.579721][ T4508] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.612451][ T5447] netlink: 56 bytes leftover after parsing attributes in process `syz.5.559'.
[   79.616548][ T4508] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.631034][ T5442] netlink: 64 bytes leftover after parsing attributes in process `syz.3.641'.
[   79.643466][ T5442] pim6reg: entered allmulticast mode
[   79.666460][ T5441] pim6reg: left allmulticast mode
[   79.706116][ T5451] loop2: detected capacity change from 0 to 164
[   79.743263][ T5451] rock: directory entry would overflow storage
[   79.749597][ T5451] rock: sig=0x66, size=4, remaining=3
[   79.782856][ T5451] rock: directory entry would overflow storage
[   79.789227][ T5451] rock: sig=0x66, size=4, remaining=3
[   79.807043][ T5451] iso9660: Corrupted directory entry in block 4 of inode 1792
[   79.823721][ T5460] loop3: detected capacity change from 0 to 256
[   79.834321][ T5462] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   79.890708][ T5451] netlink: 64 bytes leftover after parsing attributes in process `syz.2.640'.
[   79.935460][ T5451] pim6reg: entered allmulticast mode
[   80.000265][ T5463] pim6reg: left allmulticast mode
[   80.050602][   T29] kauditd_printk_skb: 42 callbacks suppressed
[   80.050618][   T29] audit: type=1400 audit(1757333899.282:1589): avc:  denied  { getopt } for  pid=5472 comm="syz.0.653" lport=13 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   80.129246][ T5476] FAULT_INJECTION: forcing a failure.
[   80.129246][ T5476] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.142571][ T5476] CPU: 0 UID: 0 PID: 5476 Comm: syz.0.655 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.142603][ T5476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.142617][ T5476] Call Trace:
[   80.142623][ T5476]  <TASK>
[   80.142632][ T5476]  __dump_stack+0x1d/0x30
[   80.142655][ T5476]  dump_stack_lvl+0xe8/0x140
[   80.142677][ T5476]  dump_stack+0x15/0x1b
[   80.142759][ T5476]  should_fail_ex+0x265/0x280
[   80.142788][ T5476]  should_fail+0xb/0x20
[   80.142849][ T5476]  should_fail_usercopy+0x1a/0x20
[   80.142881][ T5476]  _copy_from_user+0x1c/0xb0
[   80.142918][ T5476]  do_sock_getsockopt+0xf1/0x240
[   80.143004][ T5476]  __x64_sys_getsockopt+0x11e/0x1a0
[   80.143038][ T5476]  x64_sys_call+0x2bc6/0x2ff0
[   80.143128][ T5476]  do_syscall_64+0xd2/0x200
[   80.143163][ T5476]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.143193][ T5476]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.143256][ T5476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.143277][ T5476] RIP: 0033:0x7f9dff9bebe9
[   80.143293][ T5476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.143314][ T5476] RSP: 002b:00007f9dfe41f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   80.143386][ T5476] RAX: ffffffffffffffda RBX: 00007f9dffbf5fa0 RCX: 00007f9dff9bebe9
[   80.143402][ T5476] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000004
[   80.143416][ T5476] RBP: 00007f9dfe41f090 R08: 0000200000000040 R09: 0000000000000000
[   80.143431][ T5476] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.143445][ T5476] R13: 00007f9dffbf6038 R14: 00007f9dffbf5fa0 R15: 00007ffefa8541a8
[   80.143465][ T5476]  </TASK>
[   80.294902][ T5479] loop3: detected capacity change from 0 to 128
[   80.335413][ T5478] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   80.343745][ T5478] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   80.361761][ T5482] loop0: detected capacity change from 0 to 164
[   80.375318][ T5480] loop2: detected capacity change from 0 to 128
[   80.385872][ T5480] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   80.389272][ T5482] rock: directory entry would overflow storage
[   80.403978][ T5482] rock: sig=0x66, size=4, remaining=3
[   80.413193][ T5480] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   80.431209][ T5482] rock: directory entry would overflow storage
[   80.437515][ T5482] rock: sig=0x66, size=4, remaining=3
[   80.443692][ T5482] iso9660: Corrupted directory entry in block 4 of inode 1792
[   80.453904][ T5480] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[   80.462860][ T5480] FAT-fs (loop2): Filesystem has been set read-only
[   80.505504][ T5485] netlink: 64 bytes leftover after parsing attributes in process `syz.0.656'.
[   80.519755][ T5485] pim6reg: entered allmulticast mode
[   80.538117][ T5482] pim6reg: left allmulticast mode
[   80.576213][ T5493] loop2: detected capacity change from 0 to 256
[   80.744334][   T29] audit: type=1326 audit(1757333899.972:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c54debe9 code=0x7ffc0000
[   80.768003][   T29] audit: type=1326 audit(1757333899.972:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c54debe9 code=0x7ffc0000
[   80.802168][   T29] audit: type=1326 audit(1757333900.022:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f95c54debe9 code=0x7ffc0000
[   80.825782][   T29] audit: type=1326 audit(1757333900.022:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c54debe9 code=0x7ffc0000
[   80.836091][ T5504] loop2: detected capacity change from 0 to 164
[   80.849214][   T29] audit: type=1326 audit(1757333900.022:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c54debe9 code=0x7ffc0000
[   80.920863][ T5506] FAULT_INJECTION: forcing a failure.
[   80.920863][ T5506] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.933991][ T5506] CPU: 0 UID: 0 PID: 5506 Comm: syz.0.667 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.934019][ T5506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.934080][ T5506] Call Trace:
[   80.934088][ T5506]  <TASK>
[   80.934097][ T5506]  __dump_stack+0x1d/0x30
[   80.934122][ T5506]  dump_stack_lvl+0xe8/0x140
[   80.934145][ T5506]  dump_stack+0x15/0x1b
[   80.934163][ T5506]  should_fail_ex+0x265/0x280
[   80.934199][ T5506]  should_fail+0xb/0x20
[   80.934329][ T5506]  should_fail_usercopy+0x1a/0x20
[   80.934358][ T5506]  _copy_from_user+0x1c/0xb0
[   80.934466][ T5506]  do_sock_getsockopt+0xf1/0x240
[   80.934497][ T5506]  __x64_sys_getsockopt+0x11e/0x1a0
[   80.934535][ T5506]  x64_sys_call+0x2bc6/0x2ff0
[   80.934560][ T5506]  do_syscall_64+0xd2/0x200
[   80.934618][ T5506]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.934646][ T5506]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.934717][ T5506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.934817][ T5506] RIP: 0033:0x7f9dff9bebe9
[   80.934836][ T5506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.934869][ T5506] RSP: 002b:00007f9dfe41f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   80.934893][ T5506] RAX: ffffffffffffffda RBX: 00007f9dffbf5fa0 RCX: 00007f9dff9bebe9
[   80.934910][ T5506] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000005
[   80.934925][ T5506] RBP: 00007f9dfe41f090 R08: 0000200000000040 R09: 0000000000000000
[   80.934940][ T5506] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.935018][ T5506] R13: 00007f9dffbf6038 R14: 00007f9dffbf5fa0 R15: 00007ffefa8541a8
[   80.935121][ T5506]  </TASK>
[   80.935279][   T29] audit: type=1326 audit(1757333900.152:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f95c54debe9 code=0x7ffc0000
[   81.003343][ T5504] rock: directory entry would overflow storage
[   81.003781][   T29] audit: type=1326 audit(1757333900.152:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c54debe9 code=0x7ffc0000
[   81.008523][ T5504] rock: sig=0x66, size=4, remaining=3
[   81.078951][ T5504] rock: directory entry would overflow storage
[   81.080354][   T29] audit: type=1326 audit(1757333900.152:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c54debe9 code=0x7ffc0000
[   81.088268][ T5504] rock: sig=0x66, size=4, remaining=3
[   81.101370][ T5504] iso9660: Corrupted directory entry in block 4 of inode 1792
[   81.135058][   T29] audit: type=1326 audit(1757333900.162:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f95c54debe9 code=0x7ffc0000
[   81.232126][ T5504] netlink: 64 bytes leftover after parsing attributes in process `syz.2.665'.
[   81.258721][ T5523] netlink: 12 bytes leftover after parsing attributes in process `syz.3.674'.
[   81.267847][ T5523] netlink: 'syz.3.674': attribute type 1 has an invalid length.
[   81.275671][ T5523] netlink: 28 bytes leftover after parsing attributes in process `syz.3.674'.
[   81.299003][ T5504] pim6reg: entered allmulticast mode
[   81.367598][ T5531] netlink: 56 bytes leftover after parsing attributes in process `syz.1.678'.
[   81.379445][ T5504] pim6reg: left allmulticast mode
[   81.384792][ T5527] loop5: detected capacity change from 0 to 4096
[   81.398420][ T5527] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   81.447448][ T5527] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.557067][ T5541] loop0: detected capacity change from 0 to 256
[   81.633316][ T5543] loop3: detected capacity change from 0 to 4096
[   81.646805][ T5543] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   81.670558][ T5543] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.751106][ T5550] FAULT_INJECTION: forcing a failure.
[   81.751106][ T5550] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   81.764320][ T5550] CPU: 1 UID: 0 PID: 5550 Comm: syz.0.685 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   81.764349][ T5550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   81.764386][ T5550] Call Trace:
[   81.764391][ T5550]  <TASK>
[   81.764398][ T5550]  __dump_stack+0x1d/0x30
[   81.764420][ T5550]  dump_stack_lvl+0xe8/0x140
[   81.764445][ T5550]  dump_stack+0x15/0x1b
[   81.764465][ T5550]  should_fail_ex+0x265/0x280
[   81.764494][ T5550]  should_fail+0xb/0x20
[   81.764583][ T5550]  should_fail_usercopy+0x1a/0x20
[   81.764615][ T5550]  _copy_from_user+0x1c/0xb0
[   81.764649][ T5550]  do_sock_getsockopt+0xf1/0x240
[   81.764679][ T5550]  __x64_sys_getsockopt+0x11e/0x1a0
[   81.764752][ T5550]  x64_sys_call+0x2bc6/0x2ff0
[   81.764779][ T5550]  do_syscall_64+0xd2/0x200
[   81.764815][ T5550]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   81.764921][ T5550]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   81.764955][ T5550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.765014][ T5550] RIP: 0033:0x7f9dff9bebe9
[   81.765032][ T5550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.765059][ T5550] RSP: 002b:00007f9dfe41f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   81.765079][ T5550] RAX: ffffffffffffffda RBX: 00007f9dffbf5fa0 RCX: 00007f9dff9bebe9
[   81.765091][ T5550] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000006
[   81.765102][ T5550] RBP: 00007f9dfe41f090 R08: 0000200000000040 R09: 0000000000000000
[   81.765113][ T5550] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.765197][ T5550] R13: 00007f9dffbf6038 R14: 00007f9dffbf5fa0 R15: 00007ffefa8541a8
[   81.765221][ T5550]  </TASK>
[   82.040025][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.059306][ T5557] loop0: detected capacity change from 0 to 512
[   82.073191][ T5103] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.097167][ T5555] loop2: detected capacity change from 0 to 8192
[   82.139680][ T5557] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.155042][ T5557] ext4 filesystem being mounted at /158/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.230379][ T5570] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[   82.310209][ T5581] loop2: detected capacity change from 0 to 256
[   82.320921][ T5580] SELinux:  policydb magic number 0xfffffffd does not match expected magic number 0xf97cff8c
[   82.345014][ T5580] SELinux: failed to load policy
[   82.414131][ T5583] loop3: detected capacity change from 0 to 4096
[   82.423538][ T5583] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   82.440664][ T5583] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.464936][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.518928][ T5596] loop2: detected capacity change from 0 to 4096
[   82.526513][ T5596] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   82.555519][ T5596] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.599179][ T5600] loop0: detected capacity change from 0 to 4096
[   82.616157][ T5600] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   82.640493][ T5600] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.676571][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.783006][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.898380][ T5624] FAULT_INJECTION: forcing a failure.
[   82.898380][ T5624] name failslab, interval 1, probability 0, space 0, times 0
[   82.911183][ T5624] CPU: 0 UID: 0 PID: 5624 Comm: syz.5.709 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   82.911217][ T5624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   82.911232][ T5624] Call Trace:
[   82.911240][ T5624]  <TASK>
[   82.911249][ T5624]  __dump_stack+0x1d/0x30
[   82.911270][ T5624]  dump_stack_lvl+0xe8/0x140
[   82.911288][ T5624]  dump_stack+0x15/0x1b
[   82.911306][ T5624]  should_fail_ex+0x265/0x280
[   82.911335][ T5624]  should_failslab+0x8c/0xb0
[   82.911365][ T5624]  kmem_cache_alloc_noprof+0x50/0x310
[   82.911399][ T5624]  ? mas_dup_build+0x1f6/0xd30
[   82.911423][ T5624]  mas_dup_build+0x1f6/0xd30
[   82.911445][ T5624]  ? css_rstat_updated+0xb7/0x240
[   82.911483][ T5624]  ? mod_memcg_state+0x1db/0x2b0
[   82.911516][ T5624]  __mt_dup+0xc6/0x180
[   82.911542][ T5624]  dup_mmap+0x266/0xf20
[   82.911567][ T5624]  ? __list_add_valid_or_report+0x38/0xe0
[   82.911613][ T5624]  copy_mm+0x11a/0x370
[   82.911646][ T5624]  copy_process+0xd08/0x2000
[   82.911684][ T5624]  kernel_clone+0x16c/0x5c0
[   82.911715][ T5624]  ? vfs_write+0x7e8/0x960
[   82.911750][ T5624]  __x64_sys_clone+0xe6/0x120
[   82.911791][ T5624]  x64_sys_call+0x119c/0x2ff0
[   82.911812][ T5624]  do_syscall_64+0xd2/0x200
[   82.911842][ T5624]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.911870][ T5624]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   82.911904][ T5624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.911930][ T5624] RIP: 0033:0x7f567700ebe9
[   82.911948][ T5624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.911969][ T5624] RSP: 002b:00007f5675a76fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   82.911992][ T5624] RAX: ffffffffffffffda RBX: 00007f5677245fa0 RCX: 00007f567700ebe9
[   82.912008][ T5624] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000630c1000
[   82.912020][ T5624] RBP: 00007f5675a77090 R08: 0000000000000000 R09: 0000000000000000
[   82.912033][ T5624] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   82.912046][ T5624] R13: 00007f5677246038 R14: 00007f5677245fa0 R15: 00007ffe965940f8
[   82.912063][ T5624]  </TASK>
[   83.145736][ T5627] loop3: detected capacity change from 0 to 256
[   83.178355][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.253366][ T5641] loop5: detected capacity change from 0 to 764
[   83.281018][ T5641] Symlink component flag not implemented
[   83.286908][ T5641] Symlink component flag not implemented
[   83.293031][ T5641] Symlink component flag not implemented (128)
[   83.299283][ T5641] Symlink component flag not implemented (122)
[   83.337425][ T5646] FAULT_INJECTION: forcing a failure.
[   83.337425][ T5646] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   83.350885][ T5646] CPU: 0 UID: 0 PID: 5646 Comm: syz.0.720 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   83.350917][ T5646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   83.350932][ T5646] Call Trace:
[   83.350938][ T5646]  <TASK>
[   83.350947][ T5646]  __dump_stack+0x1d/0x30
[   83.351043][ T5646]  dump_stack_lvl+0xe8/0x140
[   83.351067][ T5646]  dump_stack+0x15/0x1b
[   83.351086][ T5646]  should_fail_ex+0x265/0x280
[   83.351113][ T5646]  should_fail_alloc_page+0xf2/0x100
[   83.351176][ T5646]  __alloc_frozen_pages_noprof+0xff/0x360
[   83.351231][ T5646]  alloc_pages_mpol+0xb3/0x250
[   83.351265][ T5646]  vma_alloc_folio_noprof+0x1aa/0x300
[   83.351302][ T5646]  handle_mm_fault+0xec2/0x2c20
[   83.351340][ T5646]  do_user_addr_fault+0x636/0x1090
[   83.351456][ T5646]  ? fpregs_assert_state_consistent+0xb4/0xe0
[   83.351579][ T5646]  exc_page_fault+0x62/0xa0
[   83.351612][ T5646]  asm_exc_page_fault+0x26/0x30
[   83.351631][ T5646] RIP: 0033:0x7f9dff890472
[   83.351718][ T5646] Code: 00 48 8d 35 57 2e 1b 00 31 c0 4c 89 ef e8 36 6d 0d 00 66 0f 6f 05 4e e9 1c 00 ba 80 00 00 00 4c 89 ee 48 8d bc 24 f0 10 00 00 <0f> 29 84 24 70 10 00 00 66 0f ef c0 0f 29 84 24 80 10 00 00 0f 29
[   83.351740][ T5646] RSP: 002b:00007f9dfe41cf70 EFLAGS: 00010202
[   83.351759][ T5646] RAX: 000000000000000b RBX: 0000000000000008 RCX: 0000000000000001
[   83.351810][ T5646] RDX: 0000000000000080 RSI: 00007f9dfe41cfb0 RDI: 00007f9dfe41e060
[   83.351827][ T5646] RBP: 00007f9dfe41dfe0 R08: 000000000000000b R09: 00007f9dfe41cd07
[   83.351843][ T5646] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[   83.351858][ T5646] R13: 00007f9dfe41cfb0 R14: 0000200000000280 R15: 00007f9dffd20320
[   83.351883][ T5646]  </TASK>
[   83.351895][ T5646] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   83.366011][ T5649] pim6reg: entered allmulticast mode
[   83.374078][ T5646] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.403448][ T5643] pim6reg: left allmulticast mode
[   83.409109][ T5646] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   83.595129][ T5653] loop5: detected capacity change from 0 to 256
[   83.700190][ T5656] loop2: detected capacity change from 0 to 4096
[   83.721904][ T5656] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   83.746332][ T5656] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.781724][ T5669] FAULT_INJECTION: forcing a failure.
[   83.781724][ T5669] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.795064][ T5669] CPU: 0 UID: 0 PID: 5669 Comm: syz.3.729 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   83.795095][ T5669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   83.795107][ T5669] Call Trace:
[   83.795112][ T5669]  <TASK>
[   83.795119][ T5669]  __dump_stack+0x1d/0x30
[   83.795139][ T5669]  dump_stack_lvl+0xe8/0x140
[   83.795206][ T5669]  dump_stack+0x15/0x1b
[   83.795226][ T5669]  should_fail_ex+0x265/0x280
[   83.795249][ T5669]  should_fail+0xb/0x20
[   83.795347][ T5669]  should_fail_usercopy+0x1a/0x20
[   83.795371][ T5669]  _copy_from_user+0x1c/0xb0
[   83.795401][ T5669]  memdup_user+0x5e/0xd0
[   83.795458][ T5669]  strndup_user+0x68/0xb0
[   83.795487][ T5669]  __se_sys_fsopen+0x3c/0x1e0
[   83.795518][ T5669]  __x64_sys_fsopen+0x31/0x40
[   83.795569][ T5669]  x64_sys_call+0x2a9d/0x2ff0
[   83.795638][ T5669]  do_syscall_64+0xd2/0x200
[   83.795677][ T5669]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   83.795771][ T5669]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   83.795810][ T5669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.795837][ T5669] RIP: 0033:0x7f784d2eebe9
[   83.795855][ T5669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.795898][ T5669] RSP: 002b:00007f784bd4f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[   83.795921][ T5669] RAX: ffffffffffffffda RBX: 00007f784d525fa0 RCX: 00007f784d2eebe9
[   83.795964][ T5669] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000340
[   83.796045][ T5669] RBP: 00007f784bd4f090 R08: 0000000000000000 R09: 0000000000000000
[   83.796061][ T5669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.796115][ T5669] R13: 00007f784d526038 R14: 00007f784d525fa0 R15: 00007ffdf58eac58
[   83.796138][ T5669]  </TASK>
[   83.843007][ T5671] loop5: detected capacity change from 0 to 256
[   83.970894][ T5673] __nla_validate_parse: 7 callbacks suppressed
[   83.970914][ T5673] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[   83.997045][ T5673] netlink: 108 bytes leftover after parsing attributes in process `+}[@'.
[   84.008534][ T5673] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[   84.017164][ T5673] netlink: 108 bytes leftover after parsing attributes in process `+}[@'.
[   84.025706][ T5673] netlink: 84 bytes leftover after parsing attributes in process `+}[@'.
[   84.080863][ T5680] netlink: 24 bytes leftover after parsing attributes in process `syz.1.733'.
[   84.105314][ T5680] pim6reg1: entered promiscuous mode
[   84.110776][ T5680] pim6reg1: entered allmulticast mode
[   84.122736][ T5684] loop3: detected capacity change from 0 to 256
[   84.198448][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.319071][ T5688] netlink: 332 bytes leftover after parsing attributes in process `syz.0.738'.
[   84.327157][ T5696] loop3: detected capacity change from 0 to 4096
[   84.341163][ T5700] nfs4: Bad value for 'source'
[   84.366806][ T5696] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   84.377289][ T5705] netlink: 16 bytes leftover after parsing attributes in process `syz.0.744'.
[   84.393088][ T5705] netlink: 12 bytes leftover after parsing attributes in process `syz.0.744'.
[   84.406865][ T5695] loop5: detected capacity change from 0 to 8192
[   84.410162][ T5698] loop2: detected capacity change from 0 to 8192
[   84.428177][ T5696] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.450862][ T5705] loop0: detected capacity change from 0 to 512
[   84.531816][ T5705] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.588051][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.614667][ T5713] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   84.626878][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.689927][ T5720] loop5: detected capacity change from 0 to 256
[   84.716743][ T5726] netlink: 28 bytes leftover after parsing attributes in process `syz.3.749'.
[   84.748714][ T5729] loop0: detected capacity change from 0 to 4096
[   84.774337][ T5729] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   84.799142][ T5729] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.838665][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.858911][ T5735] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.921012][ T5735] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.935984][ T5743] loop2: detected capacity change from 0 to 512
[   84.961361][ T5738] lo speed is unknown, defaulting to 1000
[   84.977315][ T5747] FAULT_INJECTION: forcing a failure.
[   84.977315][ T5747] name failslab, interval 1, probability 0, space 0, times 0
[   84.990116][ T5747] CPU: 1 UID: 0 PID: 5747 Comm: syz.0.759 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.990280][ T5747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.990294][ T5747] Call Trace:
[   84.990306][ T5747]  <TASK>
[   84.990314][ T5747]  __dump_stack+0x1d/0x30
[   84.990338][ T5747]  dump_stack_lvl+0xe8/0x140
[   84.990366][ T5747]  dump_stack+0x15/0x1b
[   84.990400][ T5747]  should_fail_ex+0x265/0x280
[   84.990490][ T5747]  should_failslab+0x8c/0xb0
[   84.990516][ T5747]  kmem_cache_alloc_node_noprof+0x57/0x320
[   84.990618][ T5747]  ? __alloc_skb+0x101/0x320
[   84.990670][ T5747]  __alloc_skb+0x101/0x320
[   84.990689][ T5747]  ? audit_log_start+0x365/0x6c0
[   84.990720][ T5747]  audit_log_start+0x380/0x6c0
[   84.990754][ T5747]  audit_seccomp+0x48/0x100
[   84.990898][ T5747]  ? __seccomp_filter+0x68c/0x10d0
[   84.990974][ T5747]  __seccomp_filter+0x69d/0x10d0
[   84.990999][ T5747]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   84.991128][ T5747]  ? vfs_write+0x7e8/0x960
[   84.991154][ T5747]  ? __rcu_read_unlock+0x4f/0x70
[   84.991176][ T5747]  ? __fget_files+0x184/0x1c0
[   84.991202][ T5747]  __secure_computing+0x82/0x150
[   84.991225][ T5747]  syscall_trace_enter+0xcf/0x1e0
[   84.991300][ T5747]  do_syscall_64+0xac/0x200
[   84.991335][ T5747]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.991362][ T5747]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.991439][ T5747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.991527][ T5747] RIP: 0033:0x7f9dff9bebe9
[   84.991545][ T5747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.991625][ T5747] RSP: 002b:00007f9dfe41f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f4
[   84.991646][ T5747] RAX: ffffffffffffffda RBX: 00007f9dffbf5fa0 RCX: 00007f9dff9bebe9
[   84.991661][ T5747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[   84.991675][ T5747] RBP: 00007f9dfe41f090 R08: 0000000000000000 R09: 0000000000000000
[   84.991691][ T5747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.991705][ T5747] R13: 00007f9dffbf6038 R14: 00007f9dffbf5fa0 R15: 00007ffefa8541a8
[   84.991782][ T5747]  </TASK>
[   85.000469][ T5743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.084337][   T29] kauditd_printk_skb: 232 callbacks suppressed
[   85.084351][   T29] audit: type=1400 audit(1757333904.312:1829): avc:  denied  { write } for  pid=5750 comm="syz.1.761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   85.097449][ T5735] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.101040][   T29] audit: type=1400 audit(1757333904.332:1830): avc:  denied  { create } for  pid=5750 comm="syz.1.761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   85.282178][   T29] audit: type=1400 audit(1757333904.342:1831): avc:  denied  { mount } for  pid=5742 comm="syz.2.758" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   85.304080][   T29] audit: type=1400 audit(1757333904.342:1832): avc:  denied  { read write } for  pid=5742 comm="syz.2.758" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   85.328577][   T29] audit: type=1400 audit(1757333904.342:1833): avc:  denied  { open } for  pid=5742 comm="syz.2.758" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   85.352776][   T29] audit: type=1400 audit(1757333904.372:1834): avc:  denied  { unmount } for  pid=3310 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   85.372691][   T29] audit: type=1400 audit(1757333904.372:1835): avc:  denied  { ioctl } for  pid=3303 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=100 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   85.398302][   T29] audit: type=1400 audit(1757333904.392:1836): avc:  denied  { read } for  pid=5752 comm="syz.0.762" dev="nsfs" ino=4026532713 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   85.419369][   T29] audit: type=1400 audit(1757333904.392:1837): avc:  denied  { open } for  pid=5752 comm="syz.0.762" path="net:[4026532713]" dev="nsfs" ino=4026532713 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   85.442862][   T29] audit: type=1400 audit(1757333904.392:1838): avc:  denied  { create } for  pid=5752 comm="syz.0.762" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   85.464028][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.478081][ T5753] loop0: detected capacity change from 0 to 256
[   85.492184][ T5735] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.553661][ T5762] loop3: detected capacity change from 0 to 256
[   85.607099][ T4508] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.673419][ T4508] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.690924][ T4508] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.711495][ T4508] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.718943][ T5775] loop0: detected capacity change from 0 to 4096
[   85.747748][ T5775] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   85.774789][ T5775] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.788433][ T5781] loop3: detected capacity change from 0 to 4096
[   85.798117][ T5781] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   85.835931][ T5790] FAULT_INJECTION: forcing a failure.
[   85.835931][ T5790] name failslab, interval 1, probability 0, space 0, times 0
[   85.838887][ T5781] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.848611][ T5790] CPU: 1 UID: 0 PID: 5790 Comm: syz.2.773 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.848672][ T5790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.848686][ T5790] Call Trace:
[   85.848693][ T5790]  <TASK>
[   85.848703][ T5790]  __dump_stack+0x1d/0x30
[   85.848733][ T5790]  dump_stack_lvl+0xe8/0x140
[   85.848762][ T5790]  dump_stack+0x15/0x1b
[   85.848786][ T5790]  should_fail_ex+0x265/0x280
[   85.848917][ T5790]  ? tipc_nametbl_lookup_group+0x451/0x630
[   85.849003][ T5790]  should_failslab+0x8c/0xb0
[   85.849037][ T5790]  __kmalloc_cache_noprof+0x4c/0x320
[   85.849081][ T5790]  tipc_nametbl_lookup_group+0x451/0x630
[   85.849161][ T5790]  __tipc_sendmsg+0x409/0x1b00
[   85.849190][ T5790]  ? obj_cgroup_charge_account+0x122/0x1a0
[   85.849238][ T5790]  ? __rcu_read_unlock+0x4f/0x70
[   85.849268][ T5790]  ? avc_has_perm_noaudit+0x1b1/0x200
[   85.849344][ T5790]  ? __rcu_read_unlock+0x4f/0x70
[   85.849401][ T5790]  __tipc_sendstream+0xa23/0xb30
[   85.849490][ T5790]  ? selinux_socket_sendmsg+0x175/0x1b0
[   85.849571][ T5790]  ? _raw_spin_unlock_bh+0x36/0x40
[   85.849607][ T5790]  tipc_send_packet+0x65/0x80
[   85.849700][ T5790]  ? __pfx_tipc_send_packet+0x10/0x10
[   85.849726][ T5790]  __sock_sendmsg+0x142/0x180
[   85.849780][ T5790]  ____sys_sendmsg+0x31e/0x4e0
[   85.849856][ T5790]  ___sys_sendmsg+0x17b/0x1d0
[   85.849920][ T5790]  __x64_sys_sendmsg+0xd4/0x160
[   85.849960][ T5790]  x64_sys_call+0x191e/0x2ff0
[   85.850066][ T5790]  do_syscall_64+0xd2/0x200
[   85.850107][ T5790]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   85.850141][ T5790]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   85.850183][ T5790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.850214][ T5790] RIP: 0033:0x7f4ba05aebe9
[   85.850237][ T5790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.850262][ T5790] RSP: 002b:00007f4b9f00f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   85.850288][ T5790] RAX: ffffffffffffffda RBX: 00007f4ba07e5fa0 RCX: 00007f4ba05aebe9
[   85.850306][ T5790] RDX: 0000000000000020 RSI: 0000200000000400 RDI: 0000000000000004
[   85.850362][ T5790] RBP: 00007f4b9f00f090 R08: 0000000000000000 R09: 0000000000000000
[   85.850374][ T5790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.850386][ T5790] R13: 00007f4ba07e6038 R14: 00007f4ba07e5fa0 R15: 00007ffedb4a58e8
[   85.850488][ T5790]  </TASK>
[   85.871380][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.120203][ T5799] FAULT_INJECTION: forcing a failure.
[   86.120203][ T5799] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.133513][ T5799] CPU: 0 UID: 0 PID: 5799 Comm: syz.5.776 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   86.133548][ T5799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   86.133597][ T5799] Call Trace:
[   86.133605][ T5799]  <TASK>
[   86.133614][ T5799]  __dump_stack+0x1d/0x30
[   86.133641][ T5799]  dump_stack_lvl+0xe8/0x140
[   86.133663][ T5799]  dump_stack+0x15/0x1b
[   86.133684][ T5799]  should_fail_ex+0x265/0x280
[   86.133770][ T5799]  should_fail+0xb/0x20
[   86.133796][ T5799]  should_fail_usercopy+0x1a/0x20
[   86.133872][ T5799]  _copy_from_iter+0x254/0xe80
[   86.133911][ T5799]  ? selinux_socket_sendmsg+0x175/0x1b0
[   86.133951][ T5799]  bcm_sendmsg+0xc7/0x480
[   86.134038][ T5799]  ? __pfx_bcm_sendmsg+0x10/0x10
[   86.134071][ T5799]  __sock_sendmsg+0x142/0x180
[   86.134112][ T5799]  ____sys_sendmsg+0x31e/0x4e0
[   86.134146][ T5799]  ___sys_sendmsg+0x17b/0x1d0
[   86.134235][ T5799]  __x64_sys_sendmsg+0xd4/0x160
[   86.134272][ T5799]  x64_sys_call+0x191e/0x2ff0
[   86.134347][ T5799]  do_syscall_64+0xd2/0x200
[   86.134393][ T5799]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   86.134483][ T5799]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   86.134521][ T5799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.134548][ T5799] RIP: 0033:0x7f567700ebe9
[   86.134566][ T5799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.134646][ T5799] RSP: 002b:00007f5675a77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   86.134670][ T5799] RAX: ffffffffffffffda RBX: 00007f5677245fa0 RCX: 00007f567700ebe9
[   86.134685][ T5799] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[   86.134699][ T5799] RBP: 00007f5675a77090 R08: 0000000000000000 R09: 0000000000000000
[   86.134714][ T5799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.134728][ T5799] R13: 00007f5677246038 R14: 00007f5677245fa0 R15: 00007ffe965940f8
[   86.134783][ T5799]  </TASK>
[   86.337543][ T5800] netlink: 'syz.2.775': attribute type 13 has an invalid length.
[   86.360217][   T37] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   86.370396][ T5800] netlink: 'syz.2.775': attribute type 13 has an invalid length.
[   86.382614][   T37] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   86.400788][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.412947][   T37] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   86.426678][ T5804] mmap: syz.5.778 (5804) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   86.439689][ T4508] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   86.485828][ T5810] loop0: detected capacity change from 0 to 256
[   86.549347][ T5808] loop3: detected capacity change from 0 to 512
[   86.568989][ T5808] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.581804][ T5808] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.611309][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.748399][ T5822] loop3: detected capacity change from 0 to 128
[   86.861728][ T5824] loop0: detected capacity change from 0 to 512
[   86.873394][ T5826] loop2: detected capacity change from 0 to 4096
[   86.881742][ T5824] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.896556][ T5826] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   86.920763][ T5826] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.933904][ T5824] ext4 filesystem being mounted at /175/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.992536][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.048516][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.217816][ T5839] loop0: detected capacity change from 0 to 4096
[   87.290598][ T5846] loop2: detected capacity change from 0 to 256
[   87.298874][ T5839] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   87.324749][ T5839] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.365158][ T5853] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5853 comm=syz.1.796
[   87.379343][ T5853] netlink: 'syz.1.796': attribute type 1 has an invalid length.
[   87.397279][ T5853] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5853 comm=syz.1.796
[   87.410474][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.415442][ T5853] bond2: (slave bridge1): making interface the new active one
[   87.427413][ T5853] bond2: (slave bridge1): Enslaving as an active interface with an up link
[   87.510341][ T5857] loop2: detected capacity change from 0 to 4096
[   87.529023][ T5857] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   87.552028][ T5857] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.575103][ T5867] loop0: detected capacity change from 0 to 4096
[   87.603074][ T5867] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   87.638047][ T5867] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.675224][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.773707][ T5881] loop3: detected capacity change from 0 to 4096
[   87.784530][ T5881] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   87.803345][ T5883] FAULT_INJECTION: forcing a failure.
[   87.803345][ T5883] name failslab, interval 1, probability 0, space 0, times 0
[   87.816052][ T5883] CPU: 1 UID: 0 PID: 5883 Comm: gtp Not tainted syzkaller #0 PREEMPT(voluntary) 
[   87.816084][ T5883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   87.816177][ T5883] Call Trace:
[   87.816183][ T5883]  <TASK>
[   87.816192][ T5883]  __dump_stack+0x1d/0x30
[   87.816218][ T5883]  dump_stack_lvl+0xe8/0x140
[   87.816250][ T5883]  dump_stack+0x15/0x1b
[   87.816292][ T5883]  should_fail_ex+0x265/0x280
[   87.816333][ T5883]  should_failslab+0x8c/0xb0
[   87.816365][ T5883]  __kmalloc_node_noprof+0xa9/0x410
[   87.816475][ T5883]  ? load_msg+0x41/0x2f0
[   87.816513][ T5883]  load_msg+0x41/0x2f0
[   87.816557][ T5883]  do_mq_timedsend+0x23e/0x6b0
[   87.816626][ T5883]  __x64_sys_mq_timedsend+0xd1/0x160
[   87.816658][ T5883]  x64_sys_call+0x1d10/0x2ff0
[   87.816686][ T5883]  do_syscall_64+0xd2/0x200
[   87.816772][ T5883]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   87.816804][ T5883]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   87.816841][ T5883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.816869][ T5883] RIP: 0033:0x7f4ba05aebe9
[   87.816920][ T5883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.816965][ T5883] RSP: 002b:00007f4b9f00f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2
[   87.816989][ T5883] RAX: ffffffffffffffda RBX: 00007f4ba07e5fa0 RCX: 00007f4ba05aebe9
[   87.817004][ T5883] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   87.817046][ T5883] RBP: 00007f4b9f00f090 R08: 0000000000000000 R09: 0000000000000000
[   87.817058][ T5883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.817069][ T5883] R13: 00007f4ba07e6038 R14: 00007f4ba07e5fa0 R15: 00007ffedb4a58e8
[   87.817094][ T5883]  </TASK>
[   87.821674][ T5881] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.026024][ T5888] loop2: detected capacity change from 0 to 256
[   88.091330][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.118902][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.369812][ T5928] loop0: detected capacity change from 0 to 4096
[   88.419036][ T5928] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   88.467207][ T5932] loop3: detected capacity change from 0 to 128
[   88.512180][ T5928] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.536883][ T5933] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   88.544762][ T5933] FAT-fs (loop3): Filesystem has been set read-only
[   88.551466][ T5933] bio_check_eod: 28587 callbacks suppressed
[   88.551479][ T5933] syz.3.813: attempt to access beyond end of device
[   88.551479][ T5933] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   88.571098][ T5933] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   88.578958][ T5933] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   88.587257][ T5907] syz.3.813: attempt to access beyond end of device
[   88.587257][ T5907] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   88.600453][ T5907] syz.3.813: attempt to access beyond end of device
[   88.600453][ T5907] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   88.613704][ T5907] syz.3.813: attempt to access beyond end of device
[   88.613704][ T5907] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   88.629226][ T5934] syz.3.813: attempt to access beyond end of device
[   88.629226][ T5934] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   88.642464][ T5934] syz.3.813: attempt to access beyond end of device
[   88.642464][ T5934] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   88.669284][ T5933] syz.3.813: attempt to access beyond end of device
[   88.669284][ T5933] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   88.682620][ T5933] syz.3.813: attempt to access beyond end of device
[   88.682620][ T5933] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   88.696128][ T5933] syz.3.813: attempt to access beyond end of device
[   88.696128][ T5933] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   88.709400][ T5933] syz.3.813: attempt to access beyond end of device
[   88.709400][ T5933] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[   88.740377][ T5923] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   88.748624][ T5923] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   88.855404][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.943745][ T5951] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5951 comm=syz.1.817
[   88.972239][ T5951] netlink: 'syz.1.817': attribute type 1 has an invalid length.
[   88.989908][ T5953] loop2: detected capacity change from 0 to 4096
[   89.001528][ T5953] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   89.022566][ T5954] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5954 comm=syz.1.817
[   89.064138][ T5954] bond3: (slave bridge2): making interface the new active one
[   89.072163][ T5954] bond3: (slave bridge2): Enslaving as an active interface with an up link
[   89.103341][ T5953] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.164921][ T5960] loop3: detected capacity change from 0 to 4096
[   89.176957][ T5960] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   89.188652][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.204130][ T5964] __nla_validate_parse: 23 callbacks suppressed
[   89.204217][ T5964] netlink: 64 bytes leftover after parsing attributes in process `syz.1.819'.
[   89.250007][ T5958] pim6reg: entered allmulticast mode
[   89.296329][ T5958] pim6reg: left allmulticast mode
[   89.304053][ T5972] loop3: detected capacity change from 0 to 256
[   89.384849][ T5980] loop2: detected capacity change from 0 to 164
[   89.416182][ T5980] rock: directory entry would overflow storage
[   89.422454][ T5980] rock: sig=0x66, size=4, remaining=3
[   89.473773][ T5980] rock: directory entry would overflow storage
[   89.480016][ T5980] rock: sig=0x66, size=4, remaining=3
[   89.505761][ T5980] iso9660: Corrupted directory entry in block 4 of inode 1792
[   89.539129][ T5997] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5997 comm=syz.1.829
[   89.565285][ T5997] netlink: 'syz.1.829': attribute type 1 has an invalid length.
[   89.579145][ T5980] netlink: 64 bytes leftover after parsing attributes in process `syz.2.826'.
[   89.609709][ T5980] pim6reg: entered allmulticast mode
[   89.616598][ T5997] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5997 comm=syz.1.829
[   89.618985][ T5980] pim6reg: left allmulticast mode
[   89.650467][ T5997] bond4: (slave bridge3): making interface the new active one
[   89.658584][ T5997] bond4: (slave bridge3): Enslaving as an active interface with an up link
[   89.791183][ T6012] loop2: detected capacity change from 0 to 4096
[   89.858033][ T6012] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   89.891317][ T6016] loop0: detected capacity change from 0 to 128
[   89.958911][ T6017] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   89.966825][ T6017] FAT-fs (loop0): Filesystem has been set read-only
[   89.973443][ T6017] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   89.981296][ T6017] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   90.138759][ T6008] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   90.147023][ T6008] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   90.258815][ T6025] loop3: detected capacity change from 0 to 256
[   90.322294][   T29] kauditd_printk_skb: 305 callbacks suppressed
[   90.322315][   T29] audit: type=1400 audit(1757333909.552:2144): avc:  denied  { getopt } for  pid=6027 comm="syz.1.840" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   90.353694][   T29] audit: type=1400 audit(1757333909.582:2145): avc:  denied  { setopt } for  pid=6027 comm="syz.1.840" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   90.373129][   T29] audit: type=1400 audit(1757333909.582:2146): avc:  denied  { read write } for  pid=6027 comm="syz.1.840" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   90.397186][   T29] audit: type=1400 audit(1757333909.582:2147): avc:  denied  { open } for  pid=6027 comm="syz.1.840" path="/dev/raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   90.420770][   T29] audit: type=1400 audit(1757333909.582:2148): avc:  denied  { ioctl } for  pid=6027 comm="syz.1.840" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   90.532828][ T6032] loop0: detected capacity change from 0 to 512
[   90.542395][   T29] audit: type=1326 audit(1757333909.762:2149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6031 comm="syz.0.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dff9bebe9 code=0x7ffc0000
[   90.565996][   T29] audit: type=1326 audit(1757333909.762:2150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6031 comm="syz.0.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dff9bebe9 code=0x7ffc0000
[   90.588012][ T6034] loop2: detected capacity change from 0 to 4096
[   90.589491][   T29] audit: type=1326 audit(1757333909.762:2151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6031 comm="syz.0.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f9dff9bebe9 code=0x7ffc0000
[   90.619038][   T29] audit: type=1326 audit(1757333909.762:2152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6031 comm="syz.0.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dff9bebe9 code=0x7ffc0000
[   90.642432][   T29] audit: type=1326 audit(1757333909.762:2153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6031 comm="syz.0.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dff9bebe9 code=0x7ffc0000
[   90.649026][ T6032] EXT4-fs (loop0): orphan cleanup on readonly fs
[   90.674226][ T6037] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6037 comm=syz.3.843
[   90.675886][ T6034] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   90.690566][ T6037] netlink: 'syz.3.843': attribute type 1 has an invalid length.
[   90.704839][ T6032] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.842: bad orphan inode 13
[   90.722555][ T6032] ext4_test_bit(bit=12, block=18) = 1
[   90.728071][ T6032] is_bad_inode(inode)=0
[   90.732312][ T6032] NEXT_ORPHAN(inode)=2130706432
[   90.737465][ T6032] max_ino=32
[   90.740688][ T6032] i_nlink=1
[   90.746378][ T6039] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6039 comm=syz.3.843
[   90.766649][ T6037] bond0: (slave bridge2): making interface the new active one
[   90.774718][ T6037] bond0: (slave bridge2): Enslaving as an active interface with an up link
[   90.790308][ T6032] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[   90.831424][ T6032] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   90.892935][ T6048] hub 6-0:1.0: USB hub found
[   90.906386][ T6048] hub 6-0:1.0: 8 ports detected
[   90.942665][ T6047] loop2: detected capacity change from 0 to 8192
[   90.963069][ T6054] loop0: detected capacity change from 0 to 4096
[   90.971075][ T6060] FAT-fs (loop2): error, clusters badly computed (2 != 1)
[   90.978362][ T6060] FAT-fs (loop2): Filesystem has been set read-only
[   90.991813][ T6054] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   91.041654][ T6069] loop2: detected capacity change from 0 to 164
[   91.055761][ T6069] rock: directory entry would overflow storage
[   91.062037][ T6069] rock: sig=0x66, size=4, remaining=3
[   91.068361][ T6071] netlink: 8 bytes leftover after parsing attributes in process `syz.3.846'.
[   91.077293][ T6071] netlink: 8 bytes leftover after parsing attributes in process `syz.3.846'.
[   91.098187][ T6069] rock: directory entry would overflow storage
[   91.104502][ T6069] rock: sig=0x66, size=4, remaining=3
[   91.110730][ T6069] iso9660: Corrupted directory entry in block 4 of inode 1792
[   91.124288][ T6073] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[   91.132863][ T6073] netlink: 108 bytes leftover after parsing attributes in process `+}[@'.
[   91.142712][ T6073] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[   91.155697][ T6073] netlink: 108 bytes leftover after parsing attributes in process `+}[@'.
[   91.164548][ T6073] netlink: 84 bytes leftover after parsing attributes in process `+}[@'.
[   91.187535][ T6078] loop0: detected capacity change from 0 to 256
[   91.196494][ T6076] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6076 comm=syz.3.854
[   91.212377][ T6076] netlink: 'syz.3.854': attribute type 1 has an invalid length.
[   91.222514][ T6069] netlink: 64 bytes leftover after parsing attributes in process `syz.2.851'.
[   91.242433][ T6069] pim6reg: entered allmulticast mode
[   91.260372][ T6076] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6076 comm=syz.3.854
[   91.263131][ T6069] pim6reg: left allmulticast mode
[   91.327544][ T6090] loop3: detected capacity change from 0 to 256
[   91.400412][ T6094] SELinux:  Context ׸ýßX7ªÞd¹Q¬‰YI{C´¨pUèÒ–hÙ»ŒÐr: is not valid (left unmapped).
[   91.550011][ T6101] loop0: detected capacity change from 0 to 4096
[   91.571763][ T6101] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   91.617857][ T6118] loop3: detected capacity change from 0 to 256
[   91.649396][ T6124] loop2: detected capacity change from 0 to 256
[   91.823715][ T6129] loop0: detected capacity change from 0 to 4096
[   91.935100][ T6129] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   92.076106][ T6148] loop3: detected capacity change from 0 to 164
[   92.144296][ T6148] rock: directory entry would overflow storage
[   92.150592][ T6148] rock: sig=0x66, size=4, remaining=3
[   92.206041][ T6148] rock: directory entry would overflow storage
[   92.212336][ T6148] rock: sig=0x66, size=4, remaining=3
[   92.226917][ T6148] iso9660: Corrupted directory entry in block 4 of inode 1792
[   92.260822][ T6152] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   92.295887][ T6152] batman_adv: batadv0: Removing interface: batadv_slave_1
[   92.306544][ T6157] loop0: detected capacity change from 0 to 256
[   92.315357][ T3517] ==================================================================
[   92.323670][ T3517] BUG: KCSAN: data-race in set_nlink / set_nlink
[   92.330117][ T3517] 
[   92.332504][ T3517] read to 0xffff88810716f5f0 of 4 bytes by task 2994 on cpu 0:
[   92.340112][ T3517]  set_nlink+0x29/0xb0
[   92.344212][ T3517]  kernfs_iop_permission+0x1e2/0x220
[   92.349524][ T3517]  inode_permission+0x1c7/0x310
[   92.354481][ T3517]  link_path_walk+0x162/0x900
[   92.359173][ T3517]  path_lookupat+0x63/0x2a0
[   92.363695][ T3517]  filename_lookup+0x147/0x340
[   92.368471][ T3517]  vfs_statx+0x9d/0x390
[   92.372640][ T3517]  vfs_fstatat+0x115/0x170
[   92.377156][ T3517]  __se_sys_newfstatat+0x55/0x260
[   92.382230][ T3517]  __x64_sys_newfstatat+0x55/0x70
[   92.387270][ T3517]  x64_sys_call+0x135a/0x2ff0
[   92.391954][ T3517]  do_syscall_64+0xd2/0x200
[   92.396483][ T3517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.402381][ T3517] 
[   92.404706][ T3517] write to 0xffff88810716f5f0 of 4 bytes by task 3517 on cpu 1:
[   92.412335][ T3517]  set_nlink+0x99/0xb0
[   92.416410][ T3517]  kernfs_iop_permission+0x1e2/0x220
[   92.421702][ T3517]  inode_permission+0x1c7/0x310
[   92.426570][ T3517]  link_path_walk+0x162/0x900
[   92.431268][ T3517]  path_openat+0x1de/0x2170
[   92.435782][ T3517]  do_filp_open+0x109/0x230
[   92.440496][ T3517]  do_sys_openat2+0xa6/0x110
[   92.445128][ T3517]  __x64_sys_openat+0xf2/0x120
[   92.449911][ T3517]  x64_sys_call+0x2e9c/0x2ff0
[   92.454685][ T3517]  do_syscall_64+0xd2/0x200
[   92.459214][ T3517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.465114][ T3517] 
[   92.467440][ T3517] value changed: 0x00000008 -> 0x00000009
[   92.473154][ T3517] 
[   92.475479][ T3517] Reported by Kernel Concurrency Sanitizer on:
[   92.481722][ T3517] CPU: 1 UID: 0 PID: 3517 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[   92.491015][ T3517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   92.501087][ T3517] ==================================================================
[   92.544957][ T6148] pim6reg: entered allmulticast mode
[   92.562247][ T6159] pim6reg: left allmulticast mode