last executing test programs:

1m24.610468661s ago: executing program 3 (id=1987):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xe, {"a2e3ad21ed0d52f90b9b39094bf70e06d038e7ff7fc6e5539b324b298b089b0708376d090890e0878f0e1ac6e7049b334a959bfc9a240d2567f3988f7ef319520100ffe8d1780700523c921b1b9b31310d075d0936cd3b78130daa61f94b61404d64aec1b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb056d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498be0800000000000000f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c088215ec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6f44ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d208001349b41db6efcffac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ec126c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b8247068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2a15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee53259289d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c1980778efa5ea567b7b7430acc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a0700d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8440daaa69bf5c8f4350aeae9ca1207e76061b28f27da19acc7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211c7847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7beddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c5409711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e781171e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e24919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b906ce2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf3f2aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7ae288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f00000000000000000000b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289d8523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c78e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d53588a0f9455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d664130bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7899484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e7c7b2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df06720ba2b26bbfcc807c8aabb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db38b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ea4cd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f031755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb24ee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xc97c, 0x0, @perf_config_ext={0x0, 0x5}, 0x8000, 0x6, 0x409, 0x5, 0x0, 0x40, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x0)

1m24.52011009s ago: executing program 3 (id=1989):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000200850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r2, 0x5393, &(0x7f0000000000))

1m24.374623734s ago: executing program 3 (id=1990):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x6, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x0, 0x2}, 0x1000, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
r0 = socket(0x200000000000011, 0x2, 0x1)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x8000}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xb, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000ed6f64900000000008000000911170000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
syz_emit_ethernet(0x6a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa424e1aa2e0d40800450000"], 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_setup(0xd0, &(0x7f0000000480)={0x0, 0x4525, 0x0, 0x1, 0x12d}, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x20ffe, 0x0, 0x0, 0x40f00, 0xac, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0xfffffffffffffffc}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
ioperm(0x2, 0x6e21, 0x0)
syz_clone(0x400c0000, 0x0, 0x0, 0x0, 0x0, 0x0)

1m23.472818213s ago: executing program 3 (id=2000):
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x14)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x800810, &(0x7f0000000180)={[{@nobh}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}]}, 0xff, 0x23f, &(0x7f0000000540)="$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")
creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x6, 0x7fe2, 0x1}, 0x50) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x6, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4e}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = creat(&(0x7f0000000340)='./file0\x00', 0x44)
recvmsg$inet_nvme(r2, 0x0, 0x40002123) (async)
recvmsg$inet_nvme(r2, 0x0, 0x40002123)
mknod$loop(&(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200, 0x1)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xec) (async)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xec)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
sched_setscheduler(0x0, 0x2, 0x0) (async)
sched_setscheduler(0x0, 0x2, 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

1m23.209740919s ago: executing program 3 (id=2006):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000240)={0x0})

1m21.181138668s ago: executing program 3 (id=2045):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x2, 0x571, &(0x7f0000000780)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000d00)=ANY=[@ANYBLOB="18efffffffffe04b00000000000088d924d8dac4", @ANYRESOCT=r1, @ANYRES32=<r3=>r1, @ANYRES32=r0], 0x0}, 0x94)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f0000000680)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$NL80211_CMD_SET_PMK(r6, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000325bd7000fbdbdf257b0000001400fe00462612de89582db63750906d47a9dd31"], 0x28}, 0x1, 0x0, 0x0, 0xc000}, 0x10)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x5e, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r1, @ANYRES8=r5], 0x3c}}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d80)=ANY=[@ANYBLOB, @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRES16=r3], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000001000/0x2000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d40)={&(0x7f0000000280)='xprtrdma_inline_thresh\x00', r9, 0x0, 0x4}, 0xfffffffffffffe75)
r10 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r10, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000005880)=@deltclass={0x3c, 0x29, 0x8, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x4, 0x7}, {0x8, 0xfff1}, {0x6, 0x10}}, [@tclass_kind_options=@c_multiq={0xb}, @tclass_kind_options=@c_prio={0x9}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x40)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r12 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='dlm_recv\x00', r13, 0x0, 0x8}, 0x3f)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={0xffffffffffffffff, 0x0}, 0x20)
ioctl$KDSKBENT(r12, 0x4b47, &(0x7f0000000380)={0x0, 0x7f, 0x708})
r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000060000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r14}, 0x18)
open(&(0x7f0000000740)='./bus\x00', 0x163361, 0x501c998c4dfcafcd)

1m21.114785444s ago: executing program 32 (id=2045):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x2, 0x571, &(0x7f0000000780)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000d00)=ANY=[@ANYBLOB="18efffffffffe04b00000000000088d924d8dac4", @ANYRESOCT=r1, @ANYRES32=<r3=>r1, @ANYRES32=r0], 0x0}, 0x94)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f0000000680)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$NL80211_CMD_SET_PMK(r6, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000325bd7000fbdbdf257b0000001400fe00462612de89582db63750906d47a9dd31"], 0x28}, 0x1, 0x0, 0x0, 0xc000}, 0x10)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x5e, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r1, @ANYRES8=r5], 0x3c}}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d80)=ANY=[@ANYBLOB, @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRES16=r3], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000001000/0x2000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d40)={&(0x7f0000000280)='xprtrdma_inline_thresh\x00', r9, 0x0, 0x4}, 0xfffffffffffffe75)
r10 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r10, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000005880)=@deltclass={0x3c, 0x29, 0x8, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x4, 0x7}, {0x8, 0xfff1}, {0x6, 0x10}}, [@tclass_kind_options=@c_multiq={0xb}, @tclass_kind_options=@c_prio={0x9}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x40)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r12 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='dlm_recv\x00', r13, 0x0, 0x8}, 0x3f)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={0xffffffffffffffff, 0x0}, 0x20)
ioctl$KDSKBENT(r12, 0x4b47, &(0x7f0000000380)={0x0, 0x7f, 0x708})
r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000060000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r14}, 0x18)
open(&(0x7f0000000740)='./bus\x00', 0x163361, 0x501c998c4dfcafcd)

2.274688056s ago: executing program 2 (id=3269):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f00000003c0)=[{{0x0, 0x1}, {0x3, 0x0, 0x0, 0x1}}, {{0x0, 0x0, 0x0, 0x1}, {0x4, 0x1, 0x1, 0x1}}, {{0x4, 0x0, 0x0, 0x1}, {0x0, 0x1, 0x0, 0x1}}, {{0x2, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x1, 0x1, 0x1}}, {{0x3, 0x1, 0x1, 0x1}, {0x2}}, {{0x1, 0x1, 0x0, 0x1}, {0x3, 0x0, 0x1, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x2, 0x1, 0x1}}], 0x40)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x4e23, 0xffffffff, @loopback, 0x8}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r4 = fcntl$dupfd(r3, 0x0, r3)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x4000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800000001"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r5}, &(0x7f0000000500), &(0x7f0000000580)}, 0x20)
connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)
sendmsg$WG_CMD_GET_DEVICE(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[], 0x2b08}}, 0x4000806)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000340)=@ccm_128={{0x304}, "49c2ace48cb54d80", "e0e6d4a271e30000596600", '\x00', "c962b0c0b5d958c9"}, 0x28)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x5, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e000000850000002a"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000440)={0x4, 0x80, 0x28, 0x1, 0x0, 0xfc, 0x0, 0x3, 0x1d459d, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0x8, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, r1, 0x1)
set_mempolicy(0xe005, 0x0, 0x4)
r8 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r8, 0x29, 0x22, &(0x7f0000000080)={{0xa, 0x4e24, 0x101, @empty}, {0xa, 0x4e22, 0x0, @dev}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x899, 0x1]}}, 0x5c)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000080)=r7, 0x4)
sendmsg$NFT_MSG_GETGEN(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x400889c}, 0x4040)
recvmmsg(r3, &(0x7f0000001040)=[{{0x0, 0x0, 0x0}, 0x2002}, {{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f00000007c0)=""/94, 0x5e}], 0x1}, 0x4}], 0x2, 0x40000002, 0x0)

1.747699748s ago: executing program 2 (id=3284):
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0x33, 0x1, 0x0, 0x0, 0x0, 0x7, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5871, 0x2, @perf_config_ext={0x6, 0x400000008}, 0x4c58, 0x5, 0x0, 0x1, 0xe, 0x20005, 0x10, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r2 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$P9_RGETLOCK(r3, &(0x7f00000002c0)=ANY=[], 0x200002e6)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
fcntl$dupfd(r4, 0x406, r4)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kfree\x00', r5, 0x0, 0x4804}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x40942, 0x0)
r6 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89d, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r6, 0x2219, 0x7721, 0x16, 0x0, 0x0)
fcntl$setpipe(r3, 0x407, 0x7000000)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x13, 0xffffffffffffffff, 0xe581b000)

1.360797676s ago: executing program 4 (id=3290):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r2}, 0x10)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000016c0)=@generic={&(0x7f0000001680)='./file0\x00'}, 0x18)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
syz_open_pts(0xffffffffffffffff, 0x4200)
write$binfmt_elf64(r3, &(0x7f0000000680)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000000000003003e00ecfffbff94020000000000004000000000000000e503000000000000000000002c8f3800010000000200000003000000970f000004000000000000000d00000001000000c801000000000000e2"], 0x178)
close(r3)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

1.269617965s ago: executing program 4 (id=3291):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20081e, &(0x7f0000000100), 0x1, 0x502, &(0x7f0000000a00)="$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")
r1 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
fallocate(r1, 0x0, 0x0, 0x1001f0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x441, 0x20)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x14, 0x2c, 0x0, @remote, @local, {[], {{0x3a00, 0x5, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x5, 0x5a, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffff3a}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x18)
r5 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r6 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f0000003b00)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000280)="a58bc94ae742e11df77c3c9fa95307503f0f5e54", 0x14}, {&(0x7f0000001740)="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", 0x6ad}], 0x2, 0x0, 0x0, 0x8000}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="180000040000000001000000010000003a8a7e4d45f4cc11c6c93d87daeef0297b8da95e9ca29086d25079f6716c3c409037feef0a0c76c4e32ea8192b3c01ef5ef3bd2b6ed66fe0574f729156b6bd79f9c044af5e8c581902f739973db524cfccd65ec856e6709c44595a2646979f7865ae485b077b171672c4be0f1e830fc83f27cd3077968db81b0cbf5f90fd74e5a6877282c67fd8f4b5de269443b08c827ae9e01ce52d0f3f1b7111b71ff5a52c8dc8cd6526104784c076d2a319518b17", @ANYRES32, @ANYRES32=r7], 0x18, 0x40000}}], 0x2, 0x80004)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r6, 0x0)
write$selinux_load(r5, &(0x7f0000000000)=ANY=[], 0x603f)
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r2)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x50)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0d00000004000000040000000700000000000000", @ANYRES32=r8, @ANYBLOB="00000120fc884ab67e4efb000000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000880), 0xde9, r9}, 0x38)
pipe2$9p(&(0x7f0000000240)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r10, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2cf5"])
write$P9_RVERSION(r11, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0xfffffd97)
socket$nl_route(0x10, 0x3, 0x0)

956.541346ms ago: executing program 4 (id=3292):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x36e084fcb6392193, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000080)={[{@bsdgroups}]}, 0xfc, 0x574, &(0x7f0000001980)="$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")
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xc, 0x0, 0x70bd2c, 0x25dfdbfb, [@sadb_key={0x2, 0x9, 0x8, 0x0, "1c"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc, 0x1}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, 0x60}, 0x1, 0x7}, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x58)

940.530737ms ago: executing program 0 (id=3293):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000680)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000000000003003e00ecfffbff94020000000000004000000000000000e503000000000000000000002c8f3800010000000200000003000000970f000004000000000000000d00000001000000c801000000000000e2"], 0x178)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

761.624585ms ago: executing program 0 (id=3294):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f00000003c0)=[{{0x0, 0x1}, {0x3, 0x0, 0x0, 0x1}}, {{0x0, 0x0, 0x0, 0x1}, {0x4, 0x1, 0x1, 0x1}}, {{0x4, 0x0, 0x0, 0x1}, {0x0, 0x1, 0x0, 0x1}}, {{0x2, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x1, 0x1, 0x1}}, {{0x3, 0x1, 0x1, 0x1}, {0x2}}, {{0x1, 0x1, 0x0, 0x1}, {0x3, 0x0, 0x1, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x2, 0x1, 0x1}}], 0x40)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x4e23, 0xffffffff, @loopback, 0x8}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r4 = fcntl$dupfd(r3, 0x0, r3)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x4000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800000001"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r5}, &(0x7f0000000500), &(0x7f0000000580)}, 0x20)
connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)
sendmsg$WG_CMD_GET_DEVICE(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[], 0x2b08}}, 0x4000806)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000340)=@ccm_128={{0x304}, "49c2ace48cb54d80", "e0e6d4a271e30000596600", '\x00', "c962b0c0b5d958c9"}, 0x28)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x5, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e000000850000002a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000440)={0x4, 0x80, 0x28, 0x1, 0x0, 0xfc, 0x0, 0x3, 0x1d459d, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0x8, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, r1, 0x1)
set_mempolicy(0xe005, 0x0, 0x4)
r8 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r8, 0x29, 0x22, &(0x7f0000000080)={{0xa, 0x4e24, 0x101, @empty}, {0xa, 0x4e22, 0x0, @dev}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x899, 0x1]}}, 0x5c)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000080)=r7, 0x4)
sendmsg$NFT_MSG_GETGEN(r6, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400889c}, 0x4040)
recvmmsg(r3, &(0x7f0000001040)=[{{0x0, 0x0, 0x0}, 0x2002}, {{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f00000007c0)=""/94, 0x5e}], 0x1}, 0x4}], 0x2, 0x40000002, 0x0)

677.321814ms ago: executing program 2 (id=3295):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
syz_open_procfs(0x0, &(0x7f0000000300)='net/tcp\x00')
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="05"], 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

676.832463ms ago: executing program 4 (id=3296):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x22000402, &(0x7f0000000a40)={[{@dioread_lock}, {@noblock_validity}, {@noinit_itable}, {@discard}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x3}}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x85, 0x4e6, &(0x7f00000001c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15) (async)
capset(&(0x7f00000000c0)={0x20080522}, &(0x7f0000000080)={0x0, 0x7f, 0x0, 0x0, 0x200000, 0x5}) (async)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00') (async, rerun: 64)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), r2)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000000)={0x20, r3, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4040010}, 0x4c0c0)
pread64(r1, &(0x7f000001a240)=""/102400, 0x19000, 0x1000000000) (async)
getdents64(r0, 0x0, 0x0)

660.220135ms ago: executing program 2 (id=3297):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x36e084fcb6392193, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xc, 0x0, 0x70bd2c, 0x25dfdbfb, [@sadb_key={0x2, 0x9, 0x8, 0x0, "1c"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc, 0x1}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, 0x60}, 0x1, 0x7}, 0x0)

634.766498ms ago: executing program 2 (id=3298):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
connect$unix(r1, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
pipe(&(0x7f0000005880)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1e0000000000000005000000ff", @ANYRES64=r2], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r3], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
fsetxattr$security_selinux(r2, &(0x7f00000000c0), &(0x7f0000000040)='system_u:object_r:dhcp_state_t:s0\x00', 0x1e, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_SETCONFIGURATION(r5, 0x80045505, &(0x7f0000000000)=0x1)
connect$unix(r0, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000380)='ufshcd_clk_scaling\x00', r6}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r8, 0x0, 0x6}, 0x18)
r9 = open(0x0, 0x149040, 0x10)
fcntl$setsig(r9, 0xa, 0x13)
fcntl$setlease(r9, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280))
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$setlease(r9, 0x400, 0x2)

499.667311ms ago: executing program 5 (id=3302):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000680)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000000000003003e00ecfffbff94020000000000004000000000000000e503000000000000000000002c8f3800010000000200000003000000970f000004000000000000000d00000001000000c801000000000000e2"], 0x178)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

454.081905ms ago: executing program 5 (id=3304):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000680)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000000000003003e00ecfffbff94020000000000004000000000000000e503000000000000000000002c8f3800010000000200000003000000970f000004000000000000000d00000001000000c801000000000000e2"], 0x178)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

409.83086ms ago: executing program 4 (id=3305):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1e, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = fsopen(&(0x7f0000000080)='mqueue\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000003c0)='\xd0\x9e^\xa0\xee\xc8\x17\fL\xaei\xb6\xb7\xc1Y\xd5YG\xf9\xc2\xf1\xa4\xdb$\xf6]\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\x03\x00\x00\x00\x00\x00\x00\x00\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^W\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B\xc5\x05\x9d\xd6\x02|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3q\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\x00\x00\x00\x00\x00\x00\x00\x00\x00\xef\xcd\xd3\t\x01A\xd5\x81\xc1;9\xeez\xba\x00\x00\x00\xdc\x94\xff)\xa4\xe6\xfb]\x90bG\x11\b\x98#\xaa99ez|\x8b5\x92\xa5\xba\x96\xb3\xb26I\xbb\xdeb\x95?\xc0\x81\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x81L\x89\v\xfbg\xb7$S\f\xd1\x9d\xc3C\x90P_k\xf8\xa9\x15\xfe\x9f%1\xa8\xd6x\x80fT`\xae\xd9\x1f\xa6c/\xd9\x01\x0e\x0e]\xbf\x82\xee\xe1\x1a\v\xe5\x8a\xec\xab\xad\xab\xff\x15\xff9,\xb5\xd8W\x9d\xf0)\x03\xccH\t\xbcAF\xf6\xf8 -g\v\xd5\x9d', &(0x7f0000000200)='sockfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000040)='\x00', &(0x7f00000001c0)='dE\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000280)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\x8cU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^', &(0x7f00000000c0)='dE\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000007c0)='\xd5@=\b\a:\x993\x00', &(0x7f0000000600)='dU|\xcbM\xe6\x91q\b', 0x0)
close(r2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x19}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r6, 0x0, 0x4}, 0x18)
r7 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r7, &(0x7f0000002dc0)={&(0x7f0000001640)=@l2tp6={0xa, 0x0, 0x0, @local, 0x3}, 0x80, &(0x7f0000000000)=[{&(0x7f00000002c0)='\t', 0x1}], 0x1}, 0x41)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r8}, 0x10)
r9 = gettid()
process_vm_writev(r9, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

409.53839ms ago: executing program 2 (id=3306):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x8528c000)
open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
pwritev(r2, &(0x7f0000000400)=[{&(0x7f0000000340)="577a29be4c834fe105e3399e08de3d945090b935490a", 0x16}], 0x1, 0x48, 0x3)

409.35861ms ago: executing program 5 (id=3307):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x36e084fcb6392193, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000080)={[{@bsdgroups}]}, 0xfc, 0x574, &(0x7f0000001980)="$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")
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xc, 0x0, 0x70bd2c, 0x25dfdbfb, [@sadb_key={0x2, 0x9, 0x8, 0x0, "1c"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc, 0x1}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, 0x60}, 0x1, 0x7}, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x58)

356.801235ms ago: executing program 1 (id=3308):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
syz_open_procfs(0x0, &(0x7f0000000300)='net/tcp\x00')
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="05"], 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

334.305807ms ago: executing program 1 (id=3309):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x600000, 0x0)
mq_timedreceive(r0, 0x0, 0x0, 0x10000, 0x0)
mmap$usbmon(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000000, 0x12, r0, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x2040, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000280), &(0x7f00000001c0)}, 0x20)
readv(r5, &(0x7f0000001480)=[{&(0x7f0000001580)=""/166, 0xa6}, {&(0x7f0000001640)=""/65, 0x41}, {&(0x7f00000016c0)=""/189, 0xbd}], 0x3)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22}, 0x2e)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08d1ca4eb6b8b4889cdd4e786eb807e04eb88b935d785f3d3201c58033"], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='mm_collapse_huge_page_swapin\x00', r6, 0x0, 0x7}, 0x18)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@fallback=r7, 0x0, 0x1, 0x6, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0], <r11=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000014c0)=ANY=[@ANYRES32=r8, @ANYRES32=r10, @ANYBLOB="30000000eb4b1e9991d601000000", @ANYRES32=r6, @ANYBLOB, @ANYRES32=r6, @ANYBLOB, @ANYRES64=r11], 0x20)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f00000000c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@nodiscard}, {@quota}]}, 0x1, 0x558, &(0x7f0000000680)="$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")
mknod$loop(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rmdir(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000001500)=ANY=[@ANYRES32=r2, @ANYRES32=r4, @ANYBLOB='p\x00\x00\x00\b \x00\x00', @ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="99ed13d6a4b75ff806eed50f5dcd5ee6c5ebaf0d72bc3b4d92a7479f5e0579116297c6e23c3a9a10b85269b972f2d4db41cbc5b2d64fa3be77ec35b8881309f463", @ANYRES64=r11], 0x20)
ioctl$VT_DISALLOCATE(r3, 0x5608)
ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x4)

257.577405ms ago: executing program 4 (id=3310):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
modify_ldt$write(0x1, &(0x7f0000000040)={0xd35, 0x1000, 0x4000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
setresgid(0xee00, 0x0, 0xee00)
setresgid(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7030000003e7400850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x1ffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
r5 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000200), 0x80480, 0x0)
ioctl$SG_GET_VERSION_NUM(r5, 0x2284, &(0x7f0000000080))
r6 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r6, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000580)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xba6, &(0x7f0000000c00)="$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")
r7 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="05000000080000000a00000008"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
write$binfmt_register(r7, &(0x7f0000000440)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x6, &(0x7f0000000000)=0x9, 0x8, 0x0)

255.441675ms ago: executing program 1 (id=3321):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x600000, 0x0)
mq_timedreceive(r0, 0x0, 0x0, 0x10000, 0x0)
mmap$usbmon(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000000, 0x12, r0, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x2040, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000280), &(0x7f00000001c0)}, 0x20)
readv(r5, &(0x7f0000001480)=[{&(0x7f0000001580)=""/166, 0xa6}, {&(0x7f0000001640)=""/65, 0x41}, {&(0x7f00000016c0)=""/189, 0xbd}], 0x3)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22}, 0x2e)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08d1ca4eb6b8b4889cdd4e786eb807e04eb88b935d785f3d3201c58033"], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='mm_collapse_huge_page_swapin\x00', r6, 0x0, 0x7}, 0x18)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@fallback=r7, 0x0, 0x1, 0x6, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0], <r11=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000014c0)=ANY=[@ANYRES32=r8, @ANYRES32=r10, @ANYBLOB="30000000eb4b1e9991d601000000", @ANYRES32=r6, @ANYBLOB, @ANYRES32=r6, @ANYBLOB, @ANYRES64=r11], 0x20)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f00000000c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@nodiscard}, {@quota}]}, 0x1, 0x558, &(0x7f0000000680)="$eJzs3c9vI1cdAPDvTH52d9vsQg9QAbtAYUGrtTfedlX10nIBoaoSouKAOGxD4o3C2nGIndKESKR/A0ggcYI/gQMSB6SeOHDjiMQBEOWAVCACbZA4GM14kriJw5rEsdn485Fm58ebme979s6852dnXgBj60ZE7ETEdES8GRFzxfakmOLVzpTt92h3e3Fvd3sxiXb7jb8leXq2LbqOyVwuzjkbEV/9UsQ3k+Nxm5tbDxdqtep6sV5u1dfKzc2t2yv1heXqcnW1Urk3f+/OS3dfrAysrNfrP3v/iyuvfe2Xv/j4e7/Z+fx3s2xdKdK6yzFInaJPHcTJTEbEa+cRbAQmivn0iPPB6aQR8aGI+FR+/c/FRP6/EwC4yNrtuWjPda8DABddmveBJWkpItK0aASUOn14z8altNZotm49aGysLnX6yq7GVPpgpVa9c23md9/Od55KsvX5PC1Pz9crR9bvRsS1iPjBzFP5emmxUVsaTZMHAMbe5e76PyL+OZOmpVJfh/b4Vg8AeGLMjjoDAMDQqf8BYPyo/wFg/PRR/xdf9u+ce14AgOHw+R8Axo/6HwDGj/ofAMbKV15/PZvae8Xzr5fe2tx42Hjr9lK1+bBU31gsLTbW10rLjcZy/sye+uPOV2s01uZfiI23y61qs1Vubm7drzc2Vlv38+d6369ODaVUAMB/c+36u79NImLn5afyKbrGclBXw8WWDnAv4MkycZaDNRDgiWa0LxhffVXheSPh1+eeF2A0ej7Me7bn4gf96H8I4ndG8H/l5kf77/83xjNcLHr2YXydrv//lYHnAxi+U/f//2Gw+QCGr91Ojo75P32QBABcSGf4CV/7e4NqhAAj9bjBvAfy/T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcMFci4luRpKV8LPA0+zctlSKejoirMZU8WKlV70TEM3E9IqZmsvX5UWcaADij9C9JMf7XzbnnrxxNnU7+NZPPI+I7P37jh28vtFrr89n2vx9sn9kfPqxyeNwZxhUEAPr3p352yuvvSjHv+iD/aHd7cX86xzwe8/4XDgYfXdzb3c6nTspktNvtdsRs3pa49I8kJotjZiPiuYiYGED8nXci4iO9yp/kfSNXi5FPu+NHEfvpocZPPxA/zdM68+zl+/AA8gLj5t3s/vNqr+svjRv5vPf1P5vfoc4uv//NRuzf+/a64k8WkSZ6xM+u+Rv9xnjhV18+trE910l7J+K5yV7xk4P4yQnxn+8z/u8/9onvv3JCWvsnETejd/zuWOVWfa3c3Ny6vVJfWK4uV1crlXvz9+68dPfFSjnvoy7v91Qf99eXbz1zUt6y8l86IX7nnb98pPzTB8d+ps/y//Tfb37jk4erM0fjf+7Tvd//Z/N579c/qxM/22f8hUs/P3H47iz+0gnlf9z7f6vP+O/9eWupz10BgCFobm49XKjVqutnWsg+hQ7iPMcWsiz2t/N+c/FsQf8Y+cLhy5JEEoMuV9YY62fnqfN6Vc99YfKgrTjYM389O+OQi5MOvBSnWYirxcKjYQUd3T0JGI7Di37UOQEAAAAAAAAAAAAAAE4yjL9hGnUZAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuLj+EwAA//8GP8IF")
mknod$loop(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rmdir(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000001500)=ANY=[@ANYRES32=r2, @ANYRES32=r4, @ANYBLOB='p\x00\x00\x00\b \x00\x00', @ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="99ed13d6a4b75ff806eed50f5dcd5ee6c5ebaf0d72bc3b4d92a7479f5e0579116297c6e23c3a9a10b85269b972f2d4db41cbc5b2d64fa3be77ec35b8881309f463", @ANYRES64=r11], 0x20)
ioctl$VT_DISALLOCATE(r3, 0x5608)
ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x4)

251.879745ms ago: executing program 5 (id=3311):
r0 = mq_open(&(0x7f0000000a00)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xafUD\x9dA\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00', 0x42, 0x1f0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r0)

203.87348ms ago: executing program 0 (id=3313):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
modify_ldt$write(0x1, &(0x7f0000000040)={0xd35, 0x1000, 0x4000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
setresgid(0xee00, 0x0, 0xee00)
setresgid(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7030000003e7400850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x1ffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
r5 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000200), 0x80480, 0x0)
ioctl$SG_GET_VERSION_NUM(r5, 0x2284, &(0x7f0000000080))
r6 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r6, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000580)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xba6, &(0x7f0000000c00)="$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")
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="05000000080000000a00000008"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x6, &(0x7f0000000000)=0x9, 0x8, 0x0)

203.45343ms ago: executing program 5 (id=3314):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r2}, 0x10)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000016c0)=@generic={&(0x7f0000001680)='./file0\x00'}, 0x18)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
syz_open_pts(0xffffffffffffffff, 0x4200)
write$binfmt_elf64(r3, &(0x7f0000000680)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000000000003003e00ecfffbff94020000000000004000000000000000e503000000000000000000002c8f3800010000000200000003000000970f000004000000000000000d00000001000000c801000000000000e2"], 0x178)
close(r3)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

148.853616ms ago: executing program 5 (id=3315):
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$SG_BLKSECTGET(r0, 0x1267, &(0x7f0000000280))
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000600), r0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x24, r1, 0x300, 0x70bd27, 0x25dfdbff, {{}, {}, {0x8}}, ["", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
r2 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x800, 0x0)
ioctl$KDSKBENT(r2, 0x4b47, 0x0)
r3 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000004200), 0x0, 0x0)
preadv2(r3, &(0x7f00000055c0)=[{&(0x7f0000005300)=""/66, 0x42}], 0x1, 0x7, 0x5, 0x8)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)={0x24, 0x0, 0x4c, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0xe}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004000}, 0x8000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000440)={'syztnl1\x00', &(0x7f00000003c0)={'tunl0\x00', <r4=>0x0, 0x7800, 0x0, 0xd78a, 0x8, {{0xe, 0x4, 0x3, 0x1d, 0x38, 0x68, 0x0, 0x7, 0x2f, 0x0, @local, @dev={0xac, 0x14, 0x14, 0x21}, {[@timestamp_addr={0x44, 0x24, 0xbc, 0x1, 0x6, [{@broadcast, 0xd66}, {@rand_addr=0x64010102, 0x4}, {@rand_addr=0x64010102, 0x311}, {@local, 0x6}]}]}}}}})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000400000028"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0300000004000000040000000100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="19"], 0x48)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000480)={r4, 0x1, 0x6, @multicast}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x589b}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@nobarrier}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x4, 0x553, &(0x7f0000001080)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r10, &(0x7f00000001c0)="f1", 0x1)
sendfile(r10, r8, 0x0, 0x40001)
sendfile(r10, r9, 0x0, 0x7ffff000)
creat(&(0x7f00000000c0)='./bus\x00', 0x182)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)

147.939255ms ago: executing program 1 (id=3326):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x600000, 0x0)
mq_timedreceive(r0, 0x0, 0x0, 0x10000, 0x0)
mmap$usbmon(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000000, 0x12, r0, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x2040, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r6}, &(0x7f0000000280), &(0x7f00000001c0)}, 0x20)
readv(r6, &(0x7f0000001480)=[{&(0x7f0000001580)=""/166, 0xa6}, {&(0x7f0000001640)=""/65, 0x41}, {&(0x7f00000016c0)=""/189, 0xbd}], 0x3)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22}, 0x2e)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08d1ca4eb6b8b4889cdd4e786eb807e04eb88b935d785f3d3201c58033"], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='mm_collapse_huge_page_swapin\x00', r7, 0x0, 0x7}, 0x18)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@fallback=r8, 0x0, 0x1, 0x6, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0], <r12=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000014c0)=ANY=[@ANYRES32=r9, @ANYRES32=r11, @ANYBLOB="30000000eb4b1e9991d601000000", @ANYRES32=r7, @ANYBLOB, @ANYRES32=r7, @ANYBLOB, @ANYRES64=r12], 0x20)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f00000000c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@nodiscard}, {@quota}]}, 0x1, 0x558, &(0x7f0000000680)="$eJzs3c9vI1cdAPDvTH52d9vsQg9QAbtAYUGrtTfedlX10nIBoaoSouKAOGxD4o3C2nGIndKESKR/A0ggcYI/gQMSB6SeOHDjiMQBEOWAVCACbZA4GM14kriJw5rEsdn485Fm58ebme979s6852dnXgBj60ZE7ETEdES8GRFzxfakmOLVzpTt92h3e3Fvd3sxiXb7jb8leXq2LbqOyVwuzjkbEV/9UsQ3k+Nxm5tbDxdqtep6sV5u1dfKzc2t2yv1heXqcnW1Urk3f+/OS3dfrAysrNfrP3v/iyuvfe2Xv/j4e7/Z+fx3s2xdKdK6yzFInaJPHcTJTEbEa+cRbAQmivn0iPPB6aQR8aGI+FR+/c/FRP6/EwC4yNrtuWjPda8DABddmveBJWkpItK0aASUOn14z8altNZotm49aGysLnX6yq7GVPpgpVa9c23md9/Od55KsvX5PC1Pz9crR9bvRsS1iPjBzFP5emmxUVsaTZMHAMbe5e76PyL+OZOmpVJfh/b4Vg8AeGLMjjoDAMDQqf8BYPyo/wFg/PRR/xdf9u+ce14AgOHw+R8Axo/6HwDGj/ofAMbKV15/PZvae8Xzr5fe2tx42Hjr9lK1+bBU31gsLTbW10rLjcZy/sye+uPOV2s01uZfiI23y61qs1Vubm7drzc2Vlv38+d6369ODaVUAMB/c+36u79NImLn5afyKbrGclBXw8WWDnAv4MkycZaDNRDgiWa0LxhffVXheSPh1+eeF2A0ej7Me7bn4gf96H8I4ndG8H/l5kf77/83xjNcLHr2YXydrv//lYHnAxi+U/f//2Gw+QCGr91Ojo75P32QBABcSGf4CV/7e4NqhAAj9bjBvAfy/T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcMFci4luRpKV8LPA0+zctlSKejoirMZU8WKlV70TEM3E9IqZmsvX5UWcaADij9C9JMf7XzbnnrxxNnU7+NZPPI+I7P37jh28vtFrr89n2vx9sn9kfPqxyeNwZxhUEAPr3p352yuvvSjHv+iD/aHd7cX86xzwe8/4XDgYfXdzb3c6nTspktNvtdsRs3pa49I8kJotjZiPiuYiYGED8nXci4iO9yp/kfSNXi5FPu+NHEfvpocZPPxA/zdM68+zl+/AA8gLj5t3s/vNqr+svjRv5vPf1P5vfoc4uv//NRuzf+/a64k8WkSZ6xM+u+Rv9xnjhV18+trE910l7J+K5yV7xk4P4yQnxn+8z/u8/9onvv3JCWvsnETejd/zuWOVWfa3c3Ny6vVJfWK4uV1crlXvz9+68dPfFSjnvoy7v91Qf99eXbz1zUt6y8l86IX7nnb98pPzTB8d+ps/y//Tfb37jk4erM0fjf+7Tvd//Z/N579c/qxM/22f8hUs/P3H47iz+0gnlf9z7f6vP+O/9eWupz10BgCFobm49XKjVqutnWsg+hQ7iPMcWsiz2t/N+c/FsQf8Y+cLhy5JEEoMuV9YY62fnqfN6Vc99YfKgrTjYM389O+OQi5MOvBSnWYirxcKjYQUd3T0JGI7Di37UOQEAAAAAAAAAAAAAAE4yjL9hGnUZAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuLj+EwAA//8GP8IF")
mknod$loop(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rmdir(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000001500)=ANY=[@ANYRES32=r3, @ANYRES32=r5, @ANYBLOB='p\x00\x00\x00\b \x00\x00', @ANYRES32=r2, @ANYRES32=r0, @ANYBLOB="99ed13d6a4b75ff806eed50f5dcd5ee6c5ebaf0d72bc3b4d92a7479f5e0579116297c6e23c3a9a10b85269b972f2d4db41cbc5b2d64fa3be77ec35b8881309f463", @ANYRES64=r12], 0x20)
ioctl$VT_DISALLOCATE(r4, 0x5608)
ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x4)

73.791913ms ago: executing program 1 (id=3316):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000680)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000000000003003e00ecfffbff94020000000000004000000000000000e503000000000000000000002c8f3800010000000200000003000000970f000004000000000000000d00000001000000c801000000000000e2"], 0x178)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

65.220114ms ago: executing program 0 (id=3317):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000680)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000000000003003e00ecfffbff94020000000000004000000000000000e503000000000000000000002c8f3800010000000200000003000000970f000004000000000000000d00000001000000c801000000000000e2"], 0x178)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

31.752127ms ago: executing program 1 (id=3318):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x20000010)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x891b, &(0x7f0000000000)={r0})

24.943478ms ago: executing program 0 (id=3319):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
syz_open_procfs(0x0, &(0x7f0000000300)='net/tcp\x00')
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="05"], 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

0s ago: executing program 0 (id=3320):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
syz_open_procfs(0x0, &(0x7f0000000300)='net/tcp\x00')
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="05"], 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

tr_offset mismatch. inode: 0x91f offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000
[  185.101841][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.149023][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.332063][T10283] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2245'.
[  185.495118][T10291] dvmrp1: entered allmulticast mode
[  185.574467][T10294] dvmrp1: left allmulticast mode
[  185.648440][T10298] FAULT_INJECTION: forcing a failure.
[  185.648440][T10298] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.661566][T10298] CPU: 0 UID: 0 PID: 10298 Comm: syz.0.2251 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  185.661634][T10298] Tainted: [W]=WARN
[  185.661643][T10298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  185.661658][T10298] Call Trace:
[  185.661667][T10298]  <TASK>
[  185.661676][T10298]  __dump_stack+0x1d/0x30
[  185.661700][T10298]  dump_stack_lvl+0xe8/0x140
[  185.661795][T10298]  dump_stack+0x15/0x1b
[  185.661817][T10298]  should_fail_ex+0x265/0x280
[  185.661842][T10298]  should_fail+0xb/0x20
[  185.661862][T10298]  should_fail_usercopy+0x1a/0x20
[  185.662001][T10298]  _copy_from_user+0x1c/0xb0
[  185.662104][T10298]  ___sys_sendmsg+0xc1/0x1d0
[  185.662159][T10298]  __x64_sys_sendmsg+0xd4/0x160
[  185.662198][T10298]  x64_sys_call+0x191e/0x3000
[  185.662270][T10298]  do_syscall_64+0xd2/0x200
[  185.662314][T10298]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  185.662351][T10298]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  185.662390][T10298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.662471][T10298] RIP: 0033:0x7f048f0cefc9
[  185.662489][T10298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.662512][T10298] RSP: 002b:00007f048db2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  185.662534][T10298] RAX: ffffffffffffffda RBX: 00007f048f325fa0 RCX: 00007f048f0cefc9
[  185.662550][T10298] RDX: 0000000000000000 RSI: 0000200000002f80 RDI: 0000000000000003
[  185.662566][T10298] RBP: 00007f048db2f090 R08: 0000000000000000 R09: 0000000000000000
[  185.662599][T10298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.662611][T10298] R13: 00007f048f326038 R14: 00007f048f325fa0 R15: 00007fff99d7fb58
[  185.662630][T10298]  </TASK>
[  185.892081][T10300] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2252'.
[  185.916684][T10300] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2252'.
[  185.995230][   T29] audit: type=1400 audit(1761428112.037:13151): avc:  denied  { ioctl } for  pid=10299 comm="syz.0.2252" path="socket:[26223]" dev="sockfs" ino=26223 ioctlcmd=0x943e scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  186.090788][T10310] loop5: detected capacity change from 0 to 1024
[  186.119749][T10313] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2258'.
[  186.443672][T10331] loop2: detected capacity change from 0 to 1024
[  186.530600][T10335] vhci_hcd: invalid port number 255
[  186.536113][T10335] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  186.910399][   T29] audit: type=1326 audit(1761428113.003:13152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10343 comm="syz.0.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  186.934865][   T29] audit: type=1326 audit(1761428113.003:13153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10343 comm="syz.0.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  187.007044][   T29] audit: type=1326 audit(1761428113.055:13154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10343 comm="syz.0.2267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  187.061128][T10352] loop1: detected capacity change from 0 to 1024
[  187.070174][T10354] loop5: detected capacity change from 0 to 1024
[  187.147700][T10365] netlink: 'syz.0.2273': attribute type 3 has an invalid length.
[  187.168893][T10367] netlink: 104 bytes leftover after parsing attributes in process `w̃£ÿ'.
[  187.319226][T10373] netlink: 'syz.5.2275': attribute type 4 has an invalid length.
[  187.402542][T10373] netlink: 'GPL': attribute type 4 has an invalid length.
[  187.517445][T10399] loop1: detected capacity change from 0 to 1024
[  187.607182][T10404] loop1: detected capacity change from 0 to 1024
[  187.671982][T10405] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2278'.
[  187.672468][T10409] siw: device registration error -23
[  187.680919][T10405] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2278'.
[  187.695962][T10394] loop2: detected capacity change from 0 to 2048
[  187.707015][T10409] loop1: detected capacity change from 0 to 512
[  187.725805][T10409] ext4 filesystem being mounted at /454/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  187.743861][T10409] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.2285: corrupted inode contents
[  187.756108][T10409] EXT4-fs error (device loop1): ext4_dirty_inode:6517: inode #2: comm syz.1.2285: mark_inode_dirty error
[  187.758624][ T3321] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  187.768105][T10409] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.2285: corrupted inode contents
[  187.782432][ T3321] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  187.803644][T10409] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.2285: mark_inode_dirty error
[  187.820653][T10409] EXT4-fs warning (device loop1): ext4_empty_dir:3089: inode #18: comm syz.1.2285: directory missing '.'
[  187.883129][T10420] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2287'.
[  187.892231][T10420] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2287'.
[  188.039849][ T4597] nci: nci_rsp_packet: unknown rsp opcode 0x73a
[  188.485299][T10456] loop5: detected capacity change from 0 to 512
[  188.492127][T10456] EXT4-fs: Ignoring removed oldalloc option
[  188.498853][T10456] EXT4-fs: Ignoring removed mblk_io_submit option
[  188.508766][T10456] EXT4-fs (loop5): 1 truncate cleaned up
[  188.597882][T10456] lo speed is unknown, defaulting to 1000
[  188.912824][T10464] loop1: detected capacity change from 0 to 512
[  188.940745][T10466] netlink: 'syz.2.2300': attribute type 3 has an invalid length.
[  188.998711][T10464] ext4 filesystem being mounted at /459/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  189.039907][T10464] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.2299: corrupted inode contents
[  189.073907][T10472] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2302'.
[  189.083016][T10472] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2302'.
[  189.116544][T10464] EXT4-fs error (device loop1): ext4_dirty_inode:6517: inode #2: comm syz.1.2299: mark_inode_dirty error
[  189.153702][T10464] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.2299: corrupted inode contents
[  189.205346][T10464] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.2299: mark_inode_dirty error
[  189.271408][T10483] EXT4-fs warning (device loop1): ext4_empty_dir:3089: inode #18: comm syz.1.2299: directory missing '.'
[  189.382140][ T4597] nci: nci_rsp_packet: unknown rsp opcode 0x73a
[  189.435785][   T29] kauditd_printk_skb: 111 callbacks suppressed
[  189.435805][   T29] audit: type=1326 audit(1761428115.648:13266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.465778][   T29] audit: type=1326 audit(1761428115.648:13267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.489667][   T29] audit: type=1326 audit(1761428115.648:13268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.513421][   T29] audit: type=1326 audit(1761428115.648:13269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.537022][   T29] audit: type=1326 audit(1761428115.659:13270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.540460][T10510] FAULT_INJECTION: forcing a failure.
[  189.540460][T10510] name failslab, interval 1, probability 0, space 0, times 0
[  189.560691][   T29] audit: type=1326 audit(1761428115.659:13271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.560735][   T29] audit: type=1326 audit(1761428115.659:13272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.560789][   T29] audit: type=1326 audit(1761428115.659:13273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.560862][   T29] audit: type=1326 audit(1761428115.659:13274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.560928][   T29] audit: type=1326 audit(1761428115.659:13275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10505 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  189.695122][T10510] CPU: 1 UID: 0 PID: 10510 Comm: syz.0.2316 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  189.695162][T10510] Tainted: [W]=WARN
[  189.695207][T10510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  189.695223][T10510] Call Trace:
[  189.695232][T10510]  <TASK>
[  189.695242][T10510]  __dump_stack+0x1d/0x30
[  189.695270][T10510]  dump_stack_lvl+0xe8/0x140
[  189.695296][T10510]  dump_stack+0x15/0x1b
[  189.695374][T10510]  should_fail_ex+0x265/0x280
[  189.695393][T10510]  should_failslab+0x8c/0xb0
[  189.695425][T10510]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  189.695525][T10510]  ? __alloc_skb+0x101/0x320
[  189.695557][T10510]  __alloc_skb+0x101/0x320
[  189.695594][T10510]  netlink_alloc_large_skb+0xbf/0xf0
[  189.695657][T10510]  netlink_sendmsg+0x3cf/0x6b0
[  189.695683][T10510]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.695708][T10510]  __sock_sendmsg+0x145/0x180
[  189.695732][T10510]  ____sys_sendmsg+0x31e/0x4e0
[  189.695819][T10510]  ___sys_sendmsg+0x17b/0x1d0
[  189.695881][T10510]  __x64_sys_sendmsg+0xd4/0x160
[  189.695929][T10510]  x64_sys_call+0x191e/0x3000
[  189.695990][T10510]  do_syscall_64+0xd2/0x200
[  189.696007][T10510]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  189.696048][T10510]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  189.696088][T10510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.696123][T10510] RIP: 0033:0x7f048f0cefc9
[  189.696138][T10510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.696240][T10510] RSP: 002b:00007f048db2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.696263][T10510] RAX: ffffffffffffffda RBX: 00007f048f325fa0 RCX: 00007f048f0cefc9
[  189.696277][T10510] RDX: 0000000000004804 RSI: 0000200000000300 RDI: 0000000000000006
[  189.696289][T10510] RBP: 00007f048db2f090 R08: 0000000000000000 R09: 0000000000000000
[  189.696302][T10510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.696353][T10510] R13: 00007f048f326038 R14: 00007f048f325fa0 R15: 00007fff99d7fb58
[  189.696378][T10510]  </TASK>
[  189.968176][T10513] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2317'.
[  190.123347][T10520] tipc: Started in network mode
[  190.128284][T10520] tipc: Node identity 6ece45bf4ca4, cluster identity 4711
[  190.136155][T10520] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  190.178033][T10528] loop2: detected capacity change from 0 to 1024
[  190.192515][T10531] syzkaller0: entered promiscuous mode
[  190.198029][T10531] syzkaller0: entered allmulticast mode
[  190.255734][T10538] loop4: detected capacity change from 0 to 512
[  190.265300][T10520] tipc: Resetting bearer <eth:syzkaller0>
[  190.319799][T10538] ext4 filesystem being mounted at /486/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  190.336895][T10518] tipc: Resetting bearer <eth:syzkaller0>
[  190.349722][T10518] tipc: Disabling bearer <eth:syzkaller0>
[  190.358365][T10538] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2323: corrupted inode contents
[  190.379236][T10538] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.2323: mark_inode_dirty error
[  190.391978][T10538] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2323: corrupted inode contents
[  190.405279][T10538] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.2323: mark_inode_dirty error
[  190.418544][T10545] EXT4-fs warning (device loop4): ext4_empty_dir:3089: inode #18: comm syz.4.2323: directory missing '.'
[  190.621266][T10566] loop1: detected capacity change from 0 to 1024
[  190.632067][T10563] FAULT_INJECTION: forcing a failure.
[  190.632067][T10563] name failslab, interval 1, probability 0, space 0, times 0
[  190.644851][T10563] CPU: 1 UID: 0 PID: 10563 Comm: syz.2.2333 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  190.644938][T10563] Tainted: [W]=WARN
[  190.644946][T10563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  190.644962][T10563] Call Trace:
[  190.644970][T10563]  <TASK>
[  190.644980][T10563]  __dump_stack+0x1d/0x30
[  190.645005][T10563]  dump_stack_lvl+0xe8/0x140
[  190.645031][T10563]  dump_stack+0x15/0x1b
[  190.645062][T10563]  should_fail_ex+0x265/0x280
[  190.645081][T10563]  should_failslab+0x8c/0xb0
[  190.645109][T10563]  kmem_cache_alloc_noprof+0x50/0x480
[  190.645205][T10563]  ? audit_log_start+0x342/0x720
[  190.645233][T10563]  audit_log_start+0x342/0x720
[  190.645260][T10563]  ? kstrtouint+0x76/0xc0
[  190.645318][T10563]  audit_seccomp+0x48/0x100
[  190.645356][T10563]  ? __seccomp_filter+0x82d/0x1250
[  190.645465][T10563]  __seccomp_filter+0x83e/0x1250
[  190.645496][T10563]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  190.645535][T10563]  ? vfs_write+0x7e8/0x960
[  190.645566][T10563]  ? __rcu_read_unlock+0x4f/0x70
[  190.645615][T10563]  ? __fget_files+0x184/0x1c0
[  190.645693][T10563]  __secure_computing+0x82/0x150
[  190.645728][T10563]  syscall_trace_enter+0xcf/0x1e0
[  190.645841][T10563]  do_syscall_64+0xac/0x200
[  190.645859][T10563]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  190.645892][T10563]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  190.645929][T10563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.645955][T10563] RIP: 0033:0x7fc4b54defc9
[  190.646041][T10563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.646104][T10563] RSP: 002b:00007fc4b3f47038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  190.646158][T10563] RAX: ffffffffffffffda RBX: 00007fc4b5735fa0 RCX: 00007fc4b54defc9
[  190.646170][T10563] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  190.646182][T10563] RBP: 00007fc4b3f47090 R08: 0000000000000003 R09: 0000000000000000
[  190.646193][T10563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.646204][T10563] R13: 00007fc4b5736038 R14: 00007fc4b5735fa0 R15: 00007ffd501d6c08
[  190.646225][T10563]  </TASK>
[  190.957962][T10578] loop1: detected capacity change from 0 to 1024
[  190.970438][T10559] lo speed is unknown, defaulting to 1000
[  191.127054][ T4613] Bluetooth: hci1: Frame reassembly failed (-84)
[  191.156094][T10590] FAULT_INJECTION: forcing a failure.
[  191.156094][T10590] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  191.169445][T10590] CPU: 1 UID: 0 PID: 10590 Comm: syz.4.2338 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  191.169485][T10590] Tainted: [W]=WARN
[  191.169494][T10590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  191.169561][T10590] Call Trace:
[  191.169568][T10590]  <TASK>
[  191.169575][T10590]  __dump_stack+0x1d/0x30
[  191.169600][T10590]  dump_stack_lvl+0xe8/0x140
[  191.169626][T10590]  dump_stack+0x15/0x1b
[  191.169694][T10590]  should_fail_ex+0x265/0x280
[  191.169720][T10590]  should_fail+0xb/0x20
[  191.169772][T10590]  should_fail_usercopy+0x1a/0x20
[  191.169866][T10590]  _copy_from_user+0x1c/0xb0
[  191.169891][T10590]  ___sys_sendmsg+0xc1/0x1d0
[  191.170013][T10590]  __x64_sys_sendmsg+0xd4/0x160
[  191.170123][T10590]  x64_sys_call+0x191e/0x3000
[  191.170145][T10590]  do_syscall_64+0xd2/0x200
[  191.170167][T10590]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  191.170279][T10590]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  191.170319][T10590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.170347][T10590] RIP: 0033:0x7fb5afb5efc9
[  191.170363][T10590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.170380][T10590] RSP: 002b:00007fb5ae5c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  191.170398][T10590] RAX: ffffffffffffffda RBX: 00007fb5afdb5fa0 RCX: 00007fb5afb5efc9
[  191.170410][T10590] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  191.170421][T10590] RBP: 00007fb5ae5c7090 R08: 0000000000000000 R09: 0000000000000000
[  191.170491][T10590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.170505][T10590] R13: 00007fb5afdb6038 R14: 00007fb5afdb5fa0 R15: 00007ffef7bed278
[  191.170524][T10590]  </TASK>
[  191.575109][T10594] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2340'.
[  191.584146][T10594] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2340'.
[  192.392724][T10597] netlink: 'syz.1.2339': attribute type 2 has an invalid length.
[  192.762519][T10607] atomic_op ffff8881349a7528 conn xmit_atomic 0000000000000000
[  192.811155][ T2516] Bluetooth: hci2: Frame reassembly failed (-84)
[  192.881579][T10613] loop1: detected capacity change from 0 to 1024
[  192.916246][T10613] EXT4-fs mount: 27 callbacks suppressed
[  192.916261][T10613] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.944916][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.969013][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.049210][T10622] loop1: detected capacity change from 0 to 2048
[  193.083043][T10622] EXT4-fs (loop1): failed to initialize system zone (-117)
[  193.095024][T10610] Bluetooth: hci1: command 0x1003 tx timeout
[  193.095395][ T4403] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  193.108845][T10622] EXT4-fs (loop1): mount failed
[  193.142465][T10622] 9pnet_fd: Insufficient options for proto=fd
[  193.439932][T10665] 9pnet_fd: Insufficient options for proto=fd
[  194.055392][T10702] loop5: detected capacity change from 0 to 1024
[  194.068904][T10702] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.096082][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.154760][T10718] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2378'.
[  194.168137][T10718] netlink: 'syz.5.2378': attribute type 10 has an invalid length.
[  194.179809][T10718] team0: Port device dummy0 added
[  194.271798][T10733] loop5: detected capacity change from 0 to 1024
[  194.287894][T10733] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.315355][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.358603][   T29] kauditd_printk_skb: 210 callbacks suppressed
[  194.358620][   T29] audit: type=1400 audit(1761428120.824:13469): avc:  denied  { firmware_load } for  pid=10743 comm="syz.5.2388" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  194.601188][   T29] audit: type=1326 audit(1761428121.086:13470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.5.2396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  194.625033][   T29] audit: type=1326 audit(1761428121.086:13471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.5.2396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  194.648835][   T29] audit: type=1326 audit(1761428121.086:13472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.5.2396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  194.658354][T10765] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  194.672829][   T29] audit: type=1326 audit(1761428121.086:13473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.5.2396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  194.682948][T10765] SELinux: failed to load policy
[  194.706014][   T29] audit: type=1326 audit(1761428121.086:13474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.5.2396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  194.706102][   T29] audit: type=1326 audit(1761428121.086:13475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.5.2396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  194.706218][   T29] audit: type=1326 audit(1761428121.086:13476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.5.2396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  194.706326][   T29] audit: type=1326 audit(1761428121.086:13477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.5.2396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  194.706362][   T29] audit: type=1326 audit(1761428121.086:13478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.5.2396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  194.790505][ T3555] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  194.807909][ T4403] Bluetooth: hci2: command 0x1003 tx timeout
[  194.923741][T10775] loop5: detected capacity change from 0 to 1024
[  194.935266][T10775] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.962197][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.117788][T10797] loop2: detected capacity change from 0 to 512
[  195.149444][T10797] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.204629][T10797] ext4 filesystem being mounted at /444/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  195.264148][T10797] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 18: comm syz.2.2404: lblock 23 mapped to illegal pblock 18 (length 1)
[  195.264580][T10816] loop5: detected capacity change from 0 to 1024
[  195.287388][T10797] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 18: comm syz.2.2404: lblock 23 mapped to illegal pblock 18 (length 1)
[  195.305852][T10816] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.357969][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.593256][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.854909][T10842] syzkaller0: entered promiscuous mode
[  195.854951][T10842] syzkaller0: entered allmulticast mode
[  195.907704][T10842] x_tables: duplicate underflow at hook 2
[  196.052562][T10856] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2425'.
[  196.548063][T10895] loop2: detected capacity change from 0 to 1024
[  196.564632][T10895] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.592442][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.955248][T10924] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2449'.
[  196.993546][T10930] random: crng reseeded on system resumption
[  197.051383][T10930] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2451'.
[  197.060419][T10930] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2451'.
[  197.102161][T10945] loop5: detected capacity change from 0 to 764
[  197.156335][T10950] loop5: detected capacity change from 0 to 1024
[  197.187350][T10950] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.222069][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.255760][T10956] siw: device registration error -23
[  197.264888][T10956] loop5: detected capacity change from 0 to 512
[  197.278805][T10956] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.291528][T10956] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  197.303422][T10956] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.2460: corrupted inode contents
[  197.316344][T10956] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.2460: mark_inode_dirty error
[  197.328020][T10956] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.2460: corrupted inode contents
[  197.340193][T10956] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.2460: mark_inode_dirty error
[  197.355070][T10959] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2456'.
[  197.363978][T10959] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2456'.
[  197.458798][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.571443][T10964] loop2: detected capacity change from 0 to 2048
[  197.621451][T10964] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.255706][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.365274][T10990] siw: device registration error -23
[  198.380696][T10990] loop2: detected capacity change from 0 to 512
[  198.390073][T10994] loop5: detected capacity change from 0 to 1024
[  198.400448][T10994] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.425176][T10990] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.446866][T10990] ext4 filesystem being mounted at /454/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  198.469233][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.487176][T10990] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.2472: corrupted inode contents
[  198.511805][T10990] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #2: comm syz.2.2472: mark_inode_dirty error
[  198.544786][T10990] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.2472: corrupted inode contents
[  198.585028][T10990] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.2472: mark_inode_dirty error
[  198.631737][T11009] EXT4-fs warning (device loop2): ext4_empty_dir:3089: inode #18: comm syz.2.2472: directory missing '.'
[  198.698194][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.092186][T11025] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2484'.
[  199.092204][T11025] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2484'.
[  199.568083][T11051] 9pnet_fd: Insufficient options for proto=fd
[  200.073207][T11057] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2495'.
[  200.082198][T11057] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2495'.
[  200.175931][T11065] loop4: detected capacity change from 0 to 764
[  200.942342][T11075] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2503'.
[  200.969107][T11075] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2503'.
[  201.093872][T11079] loop2: detected capacity change from 0 to 1024
[  201.113278][T11081] random: crng reseeded on system resumption
[  201.179193][   T29] kauditd_printk_skb: 3131 callbacks suppressed
[  201.179208][   T29] audit: type=1400 audit(1761428127.983:16610): avc:  denied  { read } for  pid=11083 comm="syz.4.2508" name="usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  201.209989][   T29] audit: type=1400 audit(1761428127.983:16611): avc:  denied  { open } for  pid=11083 comm="syz.4.2508" path="/dev/usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  201.284266][T11079] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.335415][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.652755][T11113] loop4: detected capacity change from 0 to 764
[  201.938411][T11121] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2517'.
[  201.947346][T11121] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2517'.
[  203.176723][T11137] loop2: detected capacity change from 0 to 1024
[  203.241905][T11131] random: crng reseeded on system resumption
[  203.260063][T11137] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.299423][T11131] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2522'.
[  203.308458][T11131] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2522'.
[  203.343179][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.406647][T11143] loop4: detected capacity change from 0 to 764
[  203.445710][T11145] siw: device registration error -23
[  203.455301][T11145] loop4: detected capacity change from 0 to 512
[  203.481474][T11145] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.494250][T11145] ext4 filesystem being mounted at /513/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  203.506705][T11145] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2528: corrupted inode contents
[  203.518800][T11145] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.2528: mark_inode_dirty error
[  203.530404][T11145] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.2528: corrupted inode contents
[  203.545004][T11145] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.2528: mark_inode_dirty error
[  203.558462][T11145] EXT4-fs warning (device loop4): ext4_empty_dir:3089: inode #18: comm syz.4.2528: directory missing '.'
[  203.588191][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.195092][T11164] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2531'.
[  204.204037][T11164] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2531'.
[  205.310236][   T29] audit: type=1400 audit(1761428132.319:16612): avc:  denied  { map } for  pid=11169 comm="syz.1.2535" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=28137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  205.376543][   T29] audit: type=1400 audit(1761428132.319:16613): avc:  denied  { read write } for  pid=11169 comm="syz.1.2535" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=28137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  205.394593][T11180] loop2: detected capacity change from 0 to 1024
[  205.439354][T11180] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.473197][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.485533][   T29] audit: type=1400 audit(1761428132.508:16614): avc:  denied  { audit_write } for  pid=11185 comm="syz.1.2539" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  205.514733][T11190] netlink: 'syz.2.2541': attribute type 10 has an invalid length.
[  205.519563][   T29] audit: type=1107 audit(1761428132.529:16615): pid=11185 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='ock'
[  205.587140][T11197] random: crng reseeded on system resumption
[  205.698434][   T29] audit: type=1326 audit(1761428132.729:16616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11201 comm="syz.1.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  205.722844][   T29] audit: type=1326 audit(1761428132.729:16617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11201 comm="syz.1.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  205.755354][   T29] audit: type=1326 audit(1761428132.729:16618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11201 comm="syz.1.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  205.779810][   T29] audit: type=1326 audit(1761428132.729:16619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11201 comm="syz.1.2546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc666aefc9 code=0x7ffc0000
[  205.946548][T11223] loop2: detected capacity change from 0 to 1024
[  205.956133][T11223] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.997851][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.020264][T11226] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2547'.
[  206.029238][T11226] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2547'.
[  206.149641][T11230] loop4: detected capacity change from 0 to 1024
[  206.186002][T11230] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.222466][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.684280][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  206.684294][   T29] audit: type=1400 audit(1761428133.757:16634): avc:  denied  { create } for  pid=11240 comm="syz.5.2561" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  206.732955][   T29] audit: type=1400 audit(1761428133.789:16635): avc:  denied  { connect } for  pid=11240 comm="syz.5.2561" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  206.754828][   T29] audit: type=1400 audit(1761428133.799:16636): avc:  denied  { write } for  pid=11240 comm="+}[@" path="socket:[29258]" dev="sockfs" ino=29258 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  206.795041][   T29] audit: type=1326 audit(1761428133.862:16637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.5.2561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  206.819572][   T29] audit: type=1326 audit(1761428133.862:16638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.5.2561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  206.843937][   T29] audit: type=1326 audit(1761428133.862:16639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.5.2561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  206.867451][   T29] audit: type=1326 audit(1761428133.862:16640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.5.2561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  206.891781][   T29] audit: type=1326 audit(1761428133.862:16641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.5.2561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  206.941715][T11246] loop2: detected capacity change from 0 to 764
[  206.986367][   T29] audit: type=1326 audit(1761428134.009:16642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.5.2561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=437 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  207.010387][   T29] audit: type=1326 audit(1761428134.009:16643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11240 comm="syz.5.2561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  207.020036][T11250] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  207.096408][T11256] loop4: detected capacity change from 0 to 1024
[  207.137172][T11256] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.162763][T11263] atomic_op ffff8881281bbd28 conn xmit_atomic 0000000000000000
[  207.200068][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.301026][T11276] IPv6: NLM_F_CREATE should be specified when creating new route
[  207.801655][T11293] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'.
[  207.801680][T11293] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'.
[  207.998114][T11295] FAULT_INJECTION: forcing a failure.
[  207.998114][T11295] name failslab, interval 1, probability 0, space 0, times 0
[  207.998144][T11295] CPU: 0 UID: 0 PID: 11295 Comm: syz.0.2578 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  207.998182][T11295] Tainted: [W]=WARN
[  207.998193][T11295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  207.998209][T11295] Call Trace:
[  207.998217][T11295]  <TASK>
[  207.998287][T11295]  __dump_stack+0x1d/0x30
[  207.998309][T11295]  dump_stack_lvl+0xe8/0x140
[  207.998331][T11295]  dump_stack+0x15/0x1b
[  207.998352][T11295]  should_fail_ex+0x265/0x280
[  207.998376][T11295]  should_failslab+0x8c/0xb0
[  207.998411][T11295]  kmem_cache_alloc_noprof+0x50/0x480
[  207.998438][T11295]  ? vm_area_dup+0x33/0x2c0
[  207.998469][T11295]  vm_area_dup+0x33/0x2c0
[  207.998507][T11295]  __split_vma+0xe9/0x650
[  207.998541][T11295]  ? vms_gather_munmap_vmas+0x33/0x7b0
[  207.998572][T11295]  vms_gather_munmap_vmas+0x17a/0x7b0
[  207.998595][T11295]  ? _parse_integer_limit+0x170/0x190
[  207.998630][T11295]  do_vmi_align_munmap+0x1ac/0x3d0
[  207.998671][T11295]  do_vmi_munmap+0x1db/0x220
[  207.998700][T11295]  __vm_munmap+0x193/0x270
[  207.998733][T11295]  __x64_sys_munmap+0x36/0x50
[  207.998758][T11295]  x64_sys_call+0x9c0/0x3000
[  207.998785][T11295]  do_syscall_64+0xd2/0x200
[  207.998806][T11295]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  207.998839][T11295]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  207.998870][T11295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.998890][T11295] RIP: 0033:0x7f048f0cefc9
[  207.998904][T11295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.998926][T11295] RSP: 002b:00007f048db2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[  207.998949][T11295] RAX: ffffffffffffffda RBX: 00007f048f325fa0 RCX: 00007f048f0cefc9
[  207.998964][T11295] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000200000001000
[  207.998979][T11295] RBP: 00007f048db2f090 R08: 0000000000000000 R09: 0000000000000000
[  207.998993][T11295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.999008][T11295] R13: 00007f048f326038 R14: 00007f048f325fa0 R15: 00007fff99d7fb58
[  207.999032][T11295]  </TASK>
[  208.180112][T11302] atomic_op ffff8881281b9d28 conn xmit_atomic 0000000000000000
[  208.411241][T11309] loop5: detected capacity change from 0 to 1024
[  208.755729][T11309] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.802135][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.919568][T11330] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  208.951662][T11330] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  208.994374][T11337] atomic_op ffff8881281b7528 conn xmit_atomic 0000000000000000
[  209.200471][T11344] lo speed is unknown, defaulting to 1000
[  209.680375][T11364] netlink: 'syz.5.2604': attribute type 29 has an invalid length.
[  209.734107][T11365] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2602'.
[  209.743145][T11365] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2602'.
[  209.852137][T11366] ref_ctr_offset mismatch. inode: 0x20a offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000
[  210.192145][T11381] atomic_op ffff8881281b9d28 conn xmit_atomic 0000000000000000
[  210.456691][T11386] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  210.487769][T11386] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  210.653483][T11392] loop2: detected capacity change from 0 to 1024
[  210.681146][T11392] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.708319][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.878614][T11399] 9pnet_fd: Insufficient options for proto=fd
[  211.072704][T11406] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2619'.
[  211.142668][T11411] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2620'.
[  211.173022][T11413] atomic_op ffff8881349ab528 conn xmit_atomic 0000000000000000
[  211.667826][T11437] loop2: detected capacity change from 0 to 1024
[  211.703750][T11437] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.782638][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.919169][T11448] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2635'.
[  212.189806][T11455] random: crng reseeded on system resumption
[  212.487172][T11461] atomic_op ffff88812ecf6528 conn xmit_atomic 0000000000000000
[  212.763997][T11476] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2647'.
[  212.794063][T11484] random: crng reseeded on system resumption
[  212.873418][T11487] 9pnet_fd: Insufficient options for proto=fd
[  213.002605][T11495] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2654'.
[  213.046072][T11497] loop4: detected capacity change from 0 to 1024
[  213.063019][T11497] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.096512][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.123570][T11505] loop2: detected capacity change from 0 to 1024
[  213.244232][T11505] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.330780][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.448085][T11518] random: crng reseeded on system resumption
[  214.025569][T11530] 9pnet_fd: Insufficient options for proto=fd
[  214.209626][T11545] random: crng reseeded on system resumption
[  214.289342][T11549] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2676'.
[  214.368024][T11559] loop5: detected capacity change from 0 to 1024
[  214.387645][T11559] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.416782][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.583463][T11578] random: crng reseeded on system resumption
[  214.692787][T11582] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2689'.
[  214.750768][T11584] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2688'.
[  214.760140][T11584] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2688'.
[  214.936795][T11588] loop2: detected capacity change from 0 to 1024
[  215.172062][T11598] random: crng reseeded on system resumption
[  215.346645][T11608] loop4: detected capacity change from 0 to 1024
[  215.368119][T11611] random: crng reseeded on system resumption
[  215.374672][T11608] EXT4-fs: Ignoring removed mblk_io_submit option
[  215.395386][T11608] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  215.455226][T11611] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2701'.
[  215.464430][T11611] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2701'.
[  215.529895][T11588] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.543652][T11608] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.2700: bad orphan inode 11
[  215.599661][T11608] ext4_test_bit(bit=10, block=4) = 1
[  215.605917][T11608] is_bad_inode(inode)=0
[  215.610153][T11608] NEXT_ORPHAN(inode)=3254779904
[  215.615079][T11608] max_ino=32
[  215.618282][T11608] i_nlink=0
[  215.624472][T11620] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2697'.
[  215.634060][T11620] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2697'.
[  215.711984][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.813102][T11608] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.2700: lblock 2 mapped to illegal pblock 2 (length 1)
[  215.840628][   T29] kauditd_printk_skb: 62 callbacks suppressed
[  215.840646][   T29] audit: type=1400 audit(1761428143.374:16706): avc:  denied  { write } for  pid=11623 comm="syz.2.2703" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  215.871907][T11608] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  215.881394][T11608] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.2700: lblock 0 mapped to illegal pblock 48 (length 1)
[  215.914367][T11608] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  215.923259][T11608] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.2700: Failed to acquire dquot type 0
[  215.966843][T11608] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  215.988500][T11608] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.2700: mark_inode_dirty error
[  215.990708][T11629] loop2: detected capacity change from 0 to 1024
[  216.012685][T11608] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  216.034873][T11629] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  216.035298][T11608] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  216.127125][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.137599][   T29] audit: type=1107 audit(1761428143.667:16707): pid=11607 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='ock'
[  216.155691][ T3313] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[  216.170301][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.192382][ T3313] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  216.192520][ T3313] EXT4-fs error (device loop4): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[  216.427011][T11648] loop2: detected capacity change from 0 to 1024
[  216.448224][ T4633] Bluetooth: hci1: Frame reassembly failed (-84)
[  216.456810][T11648] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  216.485626][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.693111][T11667] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2720'.
[  216.789117][T11673] random: crng reseeded on system resumption
[  217.244849][T11695] random: crng reseeded on system resumption
[  217.272454][T11695] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2731'.
[  217.281518][T11695] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2731'.
[  217.402024][T11705] random: crng reseeded on system resumption
[  217.981606][T11732] loop4: detected capacity change from 0 to 1024
[  218.026400][T11732] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  218.051442][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.406284][ T3555] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  218.412497][ T4403] Bluetooth: hci1: command 0x1003 tx timeout
[  218.586025][T11757] loop4: detected capacity change from 0 to 1024
[  218.607041][T11757] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  218.679268][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.745124][T11767] loop2: detected capacity change from 0 to 1024
[  218.768320][T11767] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.348947][T11795] random: crng reseeded on system resumption
[  219.379595][ T4644] Bluetooth: hci1: Frame reassembly failed (-84)
[  219.712416][T11814] __nla_validate_parse: 6 callbacks suppressed
[  219.712435][T11814] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2770'.
[  219.728224][T11814] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2770'.
[  219.868730][T11820] loop5: detected capacity change from 0 to 1024
[  220.636162][T11836] loop5: detected capacity change from 0 to 1024
[  220.649866][T11838] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2780'.
[  220.659542][T11838] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2780'.
[  220.699910][T11842] loop2: detected capacity change from 0 to 1024
[  221.305144][ T3555] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  221.596168][T11874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2790'.
[  221.605065][T11874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2790'.
[  221.674496][T11876] loop5: detected capacity change from 0 to 1024
[  221.742073][T11876] EXT4-fs mount: 7 callbacks suppressed
[  221.742093][T11876] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.912235][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.981203][T11891] loop5: detected capacity change from 0 to 1024
[  221.992545][T11889] random: crng reseeded on system resumption
[  222.005825][   T29] audit: type=1400 audit(1761428149.840:16708): avc:  denied  { create } for  pid=11892 comm="syz.4.2799" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  222.026427][   T29] audit: type=1400 audit(1761428149.840:16709): avc:  denied  { setopt } for  pid=11892 comm="syz.4.2799" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  222.048897][T11893] loop4: detected capacity change from 0 to 164
[  222.089452][T11891] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.178802][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.199648][ T4640] Bluetooth: hci1: Frame reassembly failed (-84)
[  222.247938][T11920] loop5: detected capacity change from 0 to 1024
[  222.267173][T11920] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.312839][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.385876][ T4607] Bluetooth: hci2: Frame reassembly failed (-84)
[  223.137765][   T29] audit: type=1326 audit(1761428151.037:16710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11937 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  223.162171][   T29] audit: type=1326 audit(1761428151.037:16711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11937 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  223.186032][   T29] audit: type=1326 audit(1761428151.037:16712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11937 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  223.209838][   T29] audit: type=1326 audit(1761428151.037:16713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11937 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  223.229769][T11940] netlink: 'ÿ': attribute type 1 has an invalid length.
[  223.234310][   T29] audit: type=1326 audit(1761428151.037:16714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11937 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  223.264696][   T29] audit: type=1326 audit(1761428151.037:16715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11937 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  223.288286][   T29] audit: type=1326 audit(1761428151.037:16716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11937 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  223.312537][   T29] audit: type=1326 audit(1761428151.037:16717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11937 comm="syz.0.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f048f0cefc9 code=0x7ffc0000
[  223.803396][T11949] random: crng reseeded on system resumption
[  223.939206][T11954] loop2: detected capacity change from 0 to 1024
[  223.971749][T11954] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.110462][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.119666][T10610] Bluetooth: hci1: command 0x1003 tx timeout
[  224.205750][ T4403] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  224.339033][ T4403] Bluetooth: hci2: command 0x1003 tx timeout
[  224.340271][ T3555] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  224.530941][T11971] atomic_op ffff88814aed5528 conn xmit_atomic 0000000000000000
[  224.973884][T11999] lo speed is unknown, defaulting to 1000
[  224.994985][ T4607] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.067642][ T4607] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.114866][T11999] chnl_net:caif_netlink_parms(): no params data found
[  225.130169][ T4607] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.198910][ T4607] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.250582][T11999] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.257817][T11999] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.293469][T12016] atomic_op ffff888109a93d28 conn xmit_atomic 0000000000000000
[  225.322425][T11999] bridge_slave_0: entered allmulticast mode
[  225.348596][T11999] bridge_slave_0: entered promiscuous mode
[  225.412444][T11999] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.419627][T11999] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.484695][T11999] bridge_slave_1: entered allmulticast mode
[  225.539057][T11999] bridge_slave_1: entered promiscuous mode
[  225.609836][T12030] FAULT_INJECTION: forcing a failure.
[  225.609836][T12030] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  225.623208][T12030] CPU: 0 UID: 0 PID: 12030 Comm: syz.0.2839 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  225.623293][T12030] Tainted: [W]=WARN
[  225.623301][T12030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  225.623318][T12030] Call Trace:
[  225.623326][T12030]  <TASK>
[  225.623336][T12030]  __dump_stack+0x1d/0x30
[  225.623402][T12030]  dump_stack_lvl+0xe8/0x140
[  225.623437][T12030]  dump_stack+0x15/0x1b
[  225.623493][T12030]  should_fail_ex+0x265/0x280
[  225.623549][T12030]  should_fail+0xb/0x20
[  225.623569][T12030]  should_fail_usercopy+0x1a/0x20
[  225.623595][T12030]  _copy_from_user+0x1c/0xb0
[  225.623645][T12030]  kstrtouint_from_user+0x69/0xf0
[  225.623664][T12030]  ? 0xffffffff81000000
[  225.623676][T12030]  ? selinux_file_permission+0x1e4/0x320
[  225.623788][T12030]  proc_fail_nth_write+0x50/0x160
[  225.623823][T12030]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  225.623908][T12030]  vfs_write+0x269/0x960
[  225.623934][T12030]  ? vfs_read+0x4e6/0x770
[  225.623963][T12030]  ? __rcu_read_unlock+0x4f/0x70
[  225.624072][T12030]  ? __fget_files+0x184/0x1c0
[  225.624167][T12030]  ksys_write+0xda/0x1a0
[  225.624195][T12030]  __x64_sys_write+0x40/0x50
[  225.624266][T12030]  x64_sys_call+0x2802/0x3000
[  225.624368][T12030]  do_syscall_64+0xd2/0x200
[  225.624391][T12030]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  225.624426][T12030]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  225.624460][T12030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.624558][T12030] RIP: 0033:0x7f048f0cda7f
[  225.624694][T12030] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  225.624717][T12030] RSP: 002b:00007f048db2f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  225.624741][T12030] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f048f0cda7f
[  225.624761][T12030] RDX: 0000000000000001 RSI: 00007f048db2f0a0 RDI: 0000000000000004
[  225.624851][T12030] RBP: 00007f048db2f090 R08: 0000000000000000 R09: 0000000000000000
[  225.624867][T12030] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  225.624881][T12030] R13: 00007f048f326038 R14: 00007f048f325fa0 R15: 00007fff99d7fb58
[  225.624903][T12030]  </TASK>
[  225.972070][T12042] atomic_op ffff88812e8d1d28 conn xmit_atomic 0000000000000000
[  226.004545][T12045] loop5: detected capacity change from 0 to 1024
[  226.023872][T12045] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.068384][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.106632][T12053] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2848'.
[  226.199769][ T4607] bond0 (unregistering): Released all slaves
[  226.210633][ T4607] bond1 (unregistering): Released all slaves
[  226.230348][ T4607] bond2 (unregistering): Released all slaves
[  226.280958][T11999] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  226.316697][ T4607] tipc: Left network mode
[  226.323818][T11999] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  226.342809][T12065] random: crng reseeded on system resumption
[  226.430024][T11999] team0: Port device team_slave_0 added
[  226.499618][T11999] team0: Port device team_slave_1 added
[  226.550486][ T4607] dummy0: left promiscuous mode
[  226.556726][ T4607] bond_slave_0: left promiscuous mode
[  226.565959][ T4607] hsr_slave_0: left promiscuous mode
[  226.597493][ T4607] hsr_slave_1: left promiscuous mode
[  226.629604][ T4607] veth1_macvtap: left promiscuous mode
[  226.658184][ T4607] veth0_macvtap: left promiscuous mode
[  226.687340][ T4607] veth1_vlan: left promiscuous mode
[  226.720700][ T4607] veth0_vlan: left promiscuous mode
[  227.226929][T11999] batman_adv: batadv0: Adding interface: batadv_slave_0
[  227.233930][T11999] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  227.260574][T11999] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  227.331185][T11999] batman_adv: batadv0: Adding interface: batadv_slave_1
[  227.338241][T11999] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  227.364819][T11999] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  227.405933][T12080] atomic_op ffff88814aed7128 conn xmit_atomic 0000000000000000
[  227.430683][T11999] hsr_slave_0: entered promiscuous mode
[  227.454855][T11999] hsr_slave_1: entered promiscuous mode
[  227.487460][T12083] loop2: detected capacity change from 0 to 1024
[  227.488985][T12085] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2859'.
[  227.578885][T12083] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.620134][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.643113][   T29] kauditd_printk_skb: 122 callbacks suppressed
[  227.643131][   T29] audit: type=1400 audit(1761428155.761:16840): avc:  denied  { nlmsg_read } for  pid=12091 comm="syz.2.2861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  227.671309][T12092] netlink: 104 bytes leftover after parsing attributes in process `syz.2.2861'.
[  227.744457][T12097] loop5: detected capacity change from 0 to 1024
[  227.762862][T12097] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.788032][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.816988][T11999] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  227.830664][T11999] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  227.840326][T11999] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  227.847974][ T3555] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  227.859657][T11999] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  227.887517][T12118] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2869'.
[  227.909114][T11999] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.923542][T11999] 8021q: adding VLAN 0 to HW filter on device team0
[  227.930735][T12120] loop5: detected capacity change from 0 to 1024
[  227.937865][ T4633] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.945002][ T4633] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.954146][ T4633] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.961230][ T4633] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.961783][T12120] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.004842][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.029967][   T29] audit: type=1326 audit(1761428156.171:16841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12127 comm="syz.5.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  228.056648][   T29] audit: type=1326 audit(1761428156.171:16842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12127 comm="syz.5.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  228.080600][   T29] audit: type=1326 audit(1761428156.171:16843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12127 comm="syz.5.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  228.081044][T11999] 8021q: adding VLAN 0 to HW filter on device batadv0
[  228.104353][   T29] audit: type=1326 audit(1761428156.171:16844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12127 comm="syz.5.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  228.104391][   T29] audit: type=1326 audit(1761428156.171:16845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12127 comm="syz.5.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  228.104422][   T29] audit: type=1326 audit(1761428156.171:16846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12127 comm="syz.5.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  228.104452][   T29] audit: type=1326 audit(1761428156.171:16847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12127 comm="syz.5.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  228.104567][   T29] audit: type=1326 audit(1761428156.171:16848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12127 comm="syz.5.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  228.104648][   T29] audit: type=1326 audit(1761428156.171:16849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12127 comm="syz.5.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4e7e7efc9 code=0x7ffc0000
[  228.131119][T12128] loop5: detected capacity change from 0 to 512
[  228.226854][T11999] veth0_vlan: entered promiscuous mode
[  228.231431][T12128] EXT4-fs: Ignoring removed nomblk_io_submit option
[  228.258443][T11999] veth1_vlan: entered promiscuous mode
[  228.267153][T12128] EXT4-fs error (device loop5): ext4_iget_extra_inode:5075: inode #15: comm syz.5.2871: corrupted in-inode xattr: e_value size too large
[  228.282225][T11999] veth0_macvtap: entered promiscuous mode
[  228.302479][T12128] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.2871: couldn't read orphan inode 15 (err -117)
[  228.303650][T11999] veth1_macvtap: entered promiscuous mode
[  228.326637][T11999] batman_adv: batadv0: Interface activated: batadv_slave_0
[  228.335171][T12128] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.337636][T11999] batman_adv: batadv0: Interface activated: batadv_slave_1
[  228.360090][ T4633] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  228.369888][ T4633] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  228.391200][ T4633] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  228.417099][ T4633] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  228.436843][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.454082][T12142] netlink: 104 bytes leftover after parsing attributes in process `syz.0.2873'.
[  228.512998][T12148] loop4: detected capacity change from 0 to 1024
[  228.523123][T12148] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.594535][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.684759][T12183] loop4: detected capacity change from 0 to 1024
[  228.716465][T12183] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.718591][T12189] netlink: 104 bytes leftover after parsing attributes in process `syz.0.2894'.
[  228.800086][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.887689][T12211] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.905342][T12220] loop5: detected capacity change from 0 to 1024
[  228.922579][T12224] netlink: 104 bytes leftover after parsing attributes in process `syz.4.2910'.
[  228.923947][T12220] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.962813][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.969660][T12231] loop4: detected capacity change from 0 to 1024
[  228.984237][T12211] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.005905][T12231] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.039770][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.067926][T12211] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.120256][T12250] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2921'.
[  229.134124][T12211] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.162422][T12256] loop5: detected capacity change from 0 to 1024
[  229.190440][T12256] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.224201][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.240438][ T4124] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  229.252020][ T4124] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  229.263088][ T4124] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  229.276571][T12266] loop4: detected capacity change from 0 to 1024
[  229.283046][ T4124] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  229.342036][T12266] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.367710][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.487551][T12302] loop4: detected capacity change from 0 to 1024
[  229.511936][T12302] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.541469][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.597549][T12316] syzkaller0: entered promiscuous mode
[  229.603072][T12316] syzkaller0: entered allmulticast mode
[  229.666197][T12316] x_tables: duplicate underflow at hook 2
[  229.922943][T12332] lo speed is unknown, defaulting to 1000
[  229.942689][ T4124] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.991088][ T4124] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.021726][T12332] chnl_net:caif_netlink_parms(): no params data found
[  230.060554][ T4124] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.078766][T12332] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.085937][T12332] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.093258][T12332] bridge_slave_0: entered allmulticast mode
[  230.099833][T12332] bridge_slave_0: entered promiscuous mode
[  230.107632][T12332] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.114725][T12332] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.122202][T12332] bridge_slave_1: entered allmulticast mode
[  230.128933][T12332] bridge_slave_1: entered promiscuous mode
[  230.146605][T12367] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2965'.
[  230.155541][T12367] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2965'.
[  230.177761][ T4124] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.190899][T12332] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.203075][T12332] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  230.231408][T12332] team0: Port device team_slave_0 added
[  230.253560][T12332] team0: Port device team_slave_1 added
[  230.269250][ T4124] dummy0: left allmulticast mode
[  230.275781][ T4124] bridge0: port 3(dummy0) entered disabled state
[  230.284266][ T4124] bridge_slave_1: left allmulticast mode
[  230.289953][ T4124] bridge_slave_1: left promiscuous mode
[  230.295655][ T4124] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.304122][ T4124] bridge_slave_0: left promiscuous mode
[  230.309917][ T4124] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.475260][ T4124] bond0 (unregistering): (slave bridge1): Releasing active interface
[  230.551519][ T4124] bond0 (unregistering): Released all slaves
[  230.575500][T12332] batman_adv: batadv0: Adding interface: batadv_slave_0
[  230.582557][T12332] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  230.609104][T12332] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  230.630993][T12332] batman_adv: batadv0: Adding interface: batadv_slave_1
[  230.638047][T12332] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  230.664048][T12332] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  230.706973][ T4124] hsr_slave_0: left promiscuous mode
[  230.730819][ T4124] hsr_slave_1: left promiscuous mode
[  230.759760][ T4124] veth1_macvtap: left promiscuous mode
[  230.765324][ T4124] veth0_macvtap: left promiscuous mode
[  230.904385][ T4124] team0 (unregistering): Port device team_slave_1 removed
[  230.927934][ T4124] team0 (unregistering): Port device team_slave_0 removed
[  231.024454][T12383] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2974'.
[  231.039926][T12383] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2974'.
[  231.066632][T12332] hsr_slave_0: entered promiscuous mode
[  231.072940][T12332] hsr_slave_1: entered promiscuous mode
[  231.079313][T12332] debugfs: 'hsr0' already exists in 'hsr'
[  231.085103][T12332] Cannot create hsr debugfs directory
[  231.406609][T12332] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  231.415662][T12332] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  231.424705][T12332] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  231.433772][T12332] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  231.470615][T12332] 8021q: adding VLAN 0 to HW filter on device bond0
[  231.482504][T12332] 8021q: adding VLAN 0 to HW filter on device team0
[  231.503929][T12406] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2981'.
[  231.512999][T12406] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2981'.
[  231.527539][T12332] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  231.538760][T12332] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  231.577862][ T4607] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.585011][ T4607] bridge0: port 1(bridge_slave_0) entered forwarding state
[  231.593923][ T4607] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.601003][ T4607] bridge0: port 2(bridge_slave_1) entered forwarding state
[  231.670946][T12332] 8021q: adding VLAN 0 to HW filter on device batadv0
[  231.760235][T12332] veth0_vlan: entered promiscuous mode
[  231.768676][T12332] veth1_vlan: entered promiscuous mode
[  231.787053][T12332] veth0_macvtap: entered promiscuous mode
[  231.797174][T12332] veth1_macvtap: entered promiscuous mode
[  231.809488][T12332] batman_adv: batadv0: Interface activated: batadv_slave_0
[  231.821811][T12332] batman_adv: batadv0: Interface activated: batadv_slave_1
[  231.834241][ T4607] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  231.843855][ T4607] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  231.859246][ T4607] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  231.886330][ T4607] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  232.500245][T12447] atomic_op ffff88812ecf8128 conn xmit_atomic 0000000000000000
[  233.732498][T12492] lo speed is unknown, defaulting to 1000
[  233.738325][T12492] lo speed is unknown, defaulting to 1000
[  233.744789][T12492] lo speed is unknown, defaulting to 1000
[  233.752519][T12492] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  233.765675][T12492] lo speed is unknown, defaulting to 1000
[  233.772223][T12492] lo speed is unknown, defaulting to 1000
[  233.778536][T12492] lo speed is unknown, defaulting to 1000
[  233.784990][T12492] lo speed is unknown, defaulting to 1000
[  233.791697][T12492] lo speed is unknown, defaulting to 1000
[  234.792195][T12509] loop5: detected capacity change from 0 to 1024
[  234.809776][T12509] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.833618][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.110772][T12521] loop2: detected capacity change from 0 to 1024
[  235.124159][T12521] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  235.148721][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.183242][T12543] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3021'.
[  236.192256][T12543] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3021'.
[  236.517706][T12565] atomic_op ffff8881032fa128 conn xmit_atomic 0000000000000000
[  236.559998][T12572] loop2: detected capacity change from 0 to 1024
[  236.583679][T12572] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.608973][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.757206][T12596] netlink: 'syz.2.3051': attribute type 29 has an invalid length.
[  236.765410][T12594] atomic_op ffff88812ecf8528 conn xmit_atomic 0000000000000000
[  236.791898][T12596] ref_ctr_offset mismatch. inode: 0xc38 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000
[  236.828383][T12602] loop4: detected capacity change from 0 to 1024
[  236.829662][   T29] kauditd_printk_skb: 99 callbacks suppressed
[  236.829680][   T29] audit: type=1400 audit(1761428165.409:16949): avc:  denied  { mount } for  pid=12603 comm="syz.1.3055" name="/" dev="ramfs" ino=34172 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  236.870267][T12602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.897845][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.918433][T12614] loop2: detected capacity change from 0 to 1024
[  236.933051][T12617] siw: device registration error -23
[  236.943051][T12617] loop4: detected capacity change from 0 to 512
[  236.947537][T12614] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.975768][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.987375][T12617] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.000260][T12617] ext4 filesystem being mounted at /590/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  237.014163][T12617] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.3059: corrupted inode contents
[  237.026329][T12617] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.3059: mark_inode_dirty error
[  237.039339][T12617] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.3059: corrupted inode contents
[  237.051437][T12617] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.3059: mark_inode_dirty error
[  237.064086][T12625] EXT4-fs warning (device loop4): ext4_empty_dir:3089: inode #18: comm syz.4.3059: directory missing '.'
[  237.091540][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.157413][   T29] audit: type=1400 audit(1761428165.755:16950): avc:  denied  { remount } for  pid=12635 comm="syz.2.3066" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  237.207109][T12639] loop2: detected capacity change from 0 to 1024
[  237.235742][T12639] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  237.265389][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.288055][T12652] loop2: detected capacity change from 0 to 512
[  237.295203][T12652] msdos: Unknown parameter 'err©aˆ‡'
[  237.326686][T12656] siw: device registration error -23
[  237.336323][T12656] loop2: detected capacity change from 0 to 512
[  237.353339][T12656] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.366313][T12656] ext4 filesystem being mounted at /598/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  237.378548][T12656] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.3073: corrupted inode contents
[  237.408939][T12656] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #2: comm syz.2.3073: mark_inode_dirty error
[  237.444394][T12656] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.3073: corrupted inode contents
[  237.465389][T12656] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.3073: mark_inode_dirty error
[  237.482262][T12670] EXT4-fs warning (device loop2): ext4_empty_dir:3089: inode #18: comm syz.2.3073: directory missing '.'
[  237.511134][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.529791][T12674] loop5: detected capacity change from 0 to 1024
[  237.553736][T12674] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  237.582844][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.716621][ T4607] Bluetooth: hci0: Frame reassembly failed (-84)
[  237.768886][T12686] lo speed is unknown, defaulting to 1000
[  237.840689][T12686] chnl_net:caif_netlink_parms(): no params data found
[  237.871688][ T4633] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.904196][T12686] bridge0: port 1(bridge_slave_0) entered blocking state
[  237.911306][T12686] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.919511][T12686] bridge_slave_0: entered allmulticast mode
[  237.927092][T12686] bridge_slave_0: entered promiscuous mode
[  237.935005][ T4633] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.946481][T12686] bridge0: port 2(bridge_slave_1) entered blocking state
[  237.953666][T12686] bridge0: port 2(bridge_slave_1) entered disabled state
[  237.961115][T12686] bridge_slave_1: entered allmulticast mode
[  237.967699][T12686] bridge_slave_1: entered promiscuous mode
[  237.982438][ T4633] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.000593][T12686] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  238.011387][T12686] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  238.034838][T12686] team0: Port device team_slave_0 added
[  238.042590][ T4633] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.054877][T12686] team0: Port device team_slave_1 added
[  238.073640][T12686] batman_adv: batadv0: Adding interface: batadv_slave_0
[  238.080676][T12686] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  238.106693][T12686] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  238.133431][T12686] batman_adv: batadv0: Adding interface: batadv_slave_1
[  238.140438][T12686] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  238.166500][T12686] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  238.200324][T12686] hsr_slave_0: entered promiscuous mode
[  238.206432][T12686] hsr_slave_1: entered promiscuous mode
[  238.212536][T12686] debugfs: 'hsr0' already exists in 'hsr'
[  238.218420][T12686] Cannot create hsr debugfs directory
[  238.439138][ T4633] bond0 (unregistering): Released all slaves
[  238.449799][ T4633] bond1 (unregistering): Released all slaves
[  238.528280][ T4633] tipc: Disabling bearer <udp:£ >
[  238.533437][ T4633] tipc: Left network mode
[  238.576817][ T4633] hsr_slave_0: left promiscuous mode
[  238.582629][ T4633] hsr_slave_1: left promiscuous mode
[  238.599844][ T4633] veth1_vlan: left promiscuous mode
[  238.605133][ T4633] veth0_vlan: left promiscuous mode
[  238.686106][   T29] audit: type=1400 audit(1761428167.288:16951): avc:  denied  { bind } for  pid=12724 comm="syz.0.3092" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  238.839099][T12736] netlink: 'syz.0.3095': attribute type 10 has an invalid length.
[  238.851611][T12736] team0: Port device dummy0 added
[  239.035038][T12686] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  239.043734][T12686] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  239.044301][   T29] audit: type=1400 audit(1761428167.739:16952): avc:  denied  { connect } for  pid=12741 comm="syz.0.3098" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  239.075361][T12686] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  239.078708][   T29] audit: type=1400 audit(1761428167.771:16953): avc:  denied  { ioctl } for  pid=12741 comm="syz.0.3098" path="socket:[35271]" dev="sockfs" ino=35271 ioctlcmd=0x4947 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  239.112700][T12686] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  239.145936][ T4633] IPVS: stop unused estimator thread 0...
[  239.153001][T12686] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.165801][T12686] 8021q: adding VLAN 0 to HW filter on device team0
[  239.188280][ T4632] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.195385][ T4632] bridge0: port 1(bridge_slave_0) entered forwarding state
[  239.204101][ T4632] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.211291][ T4632] bridge0: port 2(bridge_slave_1) entered forwarding state
[  239.281635][T12686] 8021q: adding VLAN 0 to HW filter on device batadv0
[  239.356012][T12686] veth0_vlan: entered promiscuous mode
[  239.364043][T12686] veth1_vlan: entered promiscuous mode
[  239.379478][T12686] veth0_macvtap: entered promiscuous mode
[  239.387614][T12686] veth1_macvtap: entered promiscuous mode
[  239.398018][T12686] batman_adv: batadv0: Interface activated: batadv_slave_0
[  239.409499][T12686] batman_adv: batadv0: Interface activated: batadv_slave_1
[  239.420922][ T4124] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  239.432074][ T4124] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  239.441335][ T4124] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  239.451352][ T4124] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  239.546120][T12771] loop2: detected capacity change from 0 to 1024
[  239.563062][T12771] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  239.586575][T12686] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.605209][   T29] audit: type=1400 audit(1761428168.327:16954): avc:  denied  { create } for  pid=12775 comm="syz.2.3103" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  239.656904][ T3555] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  239.750276][T12783] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  239.804657][T12789] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3105'.
[  240.108715][T12820] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3108'.
[  240.117805][T12820] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3108'.
[  240.176413][   T29] audit: type=1400 audit(1761428168.926:16955): avc:  denied  { read append } for  pid=12817 comm="syz.4.3121" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  240.201304][   T29] audit: type=1400 audit(1761428168.926:16956): avc:  denied  { open } for  pid=12817 comm="syz.4.3121" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  240.241472][T12825] sd 0:0:1:0: device reset
[  240.318854][T12825] loop4: detected capacity change from 0 to 4096
[  240.347691][T12825] EXT4-fs: test_dummy_encryption option not supported
[  240.362666][T12829] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3124'.
[  240.409963][T12825] binfmt_misc: register: failed to install interpreter file ./file2
[  240.422215][   T29] audit: type=1400 audit(1761428169.146:16957): avc:  denied  { bind } for  pid=12826 comm="syz.0.3123" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  240.691192][T12835] lo speed is unknown, defaulting to 1000
[  240.942919][T12850] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3129'.
[  241.008264][T12856] FAULT_INJECTION: forcing a failure.
[  241.008264][T12856] name failslab, interval 1, probability 0, space 0, times 0
[  241.021614][T12856] CPU: 1 UID: 0 PID: 12856 Comm: syz.4.3132 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  241.021713][T12856] Tainted: [W]=WARN
[  241.021722][T12856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  241.021738][T12856] Call Trace:
[  241.021745][T12856]  <TASK>
[  241.021754][T12856]  __dump_stack+0x1d/0x30
[  241.021778][T12856]  dump_stack_lvl+0xe8/0x140
[  241.021799][T12856]  dump_stack+0x15/0x1b
[  241.021816][T12856]  should_fail_ex+0x265/0x280
[  241.021866][T12856]  ? __inet_diag_dump_start+0x53/0x850
[  241.021903][T12856]  should_failslab+0x8c/0xb0
[  241.021936][T12856]  __kmalloc_cache_noprof+0x4c/0x4a0
[  241.021969][T12856]  __inet_diag_dump_start+0x53/0x850
[  241.022027][T12856]  ? __rcu_read_unlock+0x34/0x70
[  241.022058][T12856]  ? __netlink_lookup+0x266/0x2a0
[  241.022091][T12856]  inet_diag_dump_start+0x1a/0x30
[  241.022123][T12856]  __netlink_dump_start+0x334/0x520
[  241.022231][T12856]  inet_diag_handler_cmd+0xf3/0x140
[  241.022265][T12856]  ? __pfx_inet_diag_dump_start+0x10/0x10
[  241.022357][T12856]  ? __pfx_inet_diag_dump+0x10/0x10
[  241.022542][T12856]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  241.022607][T12856]  ? __pfx_inet_diag_handler_cmd+0x10/0x10
[  241.022643][T12856]  sock_diag_rcv_msg+0x288/0x2c0
[  241.022670][T12856]  netlink_rcv_skb+0x123/0x220
[  241.022708][T12856]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  241.022764][T12856]  sock_diag_rcv+0x1c/0x30
[  241.022781][T12856]  netlink_unicast+0x5c0/0x690
[  241.022818][T12856]  netlink_sendmsg+0x58b/0x6b0
[  241.022845][T12856]  ? __pfx_netlink_sendmsg+0x10/0x10
[  241.022868][T12856]  __sock_sendmsg+0x145/0x180
[  241.022969][T12856]  sock_write_iter+0x1a7/0x1f0
[  241.022996][T12856]  do_iter_readv_writev+0x4a1/0x540
[  241.023028][T12856]  vfs_writev+0x2df/0x8b0
[  241.023076][T12856]  do_writev+0xe7/0x210
[  241.023160][T12856]  __x64_sys_writev+0x45/0x50
[  241.023195][T12856]  x64_sys_call+0x1e9a/0x3000
[  241.023218][T12856]  do_syscall_64+0xd2/0x200
[  241.023235][T12856]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  241.023393][T12856]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  241.023474][T12856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.023501][T12856] RIP: 0033:0x7fb5afb5efc9
[  241.023520][T12856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.023540][T12856] RSP: 002b:00007fb5ae5c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  241.023563][T12856] RAX: ffffffffffffffda RBX: 00007fb5afdb5fa0 RCX: 00007fb5afb5efc9
[  241.023587][T12856] RDX: 0000000000000001 RSI: 0000200000000140 RDI: 0000000000000006
[  241.023628][T12856] RBP: 00007fb5ae5c7090 R08: 0000000000000000 R09: 0000000000000000
[  241.023644][T12856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.023660][T12856] R13: 00007fb5afdb6038 R14: 00007fb5afdb5fa0 R15: 00007ffef7bed278
[  241.023679][T12856]  </TASK>
[  241.046353][   T29] audit: type=1400 audit(1761428169.828:16958): avc:  denied  { lock } for  pid=12849 comm="syz.1.3129" path="socket:[35993]" dev="sockfs" ino=35993 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  241.385707][T12874] loop4: detected capacity change from 0 to 1024
[  241.413699][T12874] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.453262][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.729180][T12905] FAULT_INJECTION: forcing a failure.
[  241.729180][T12905] name failslab, interval 1, probability 0, space 0, times 0
[  241.742043][T12905] CPU: 0 UID: 0 PID: 12905 Comm: syz.0.3150 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  241.742124][T12905] Tainted: [W]=WARN
[  241.742132][T12905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  241.742148][T12905] Call Trace:
[  241.742228][T12905]  <TASK>
[  241.742236][T12905]  __dump_stack+0x1d/0x30
[  241.742279][T12905]  dump_stack_lvl+0xe8/0x140
[  241.742312][T12905]  dump_stack+0x15/0x1b
[  241.742328][T12905]  should_fail_ex+0x265/0x280
[  241.742378][T12905]  should_failslab+0x8c/0xb0
[  241.742413][T12905]  __kmalloc_node_noprof+0xaa/0x580
[  241.742449][T12905]  ? __vmalloc_node_range_noprof+0x410/0xed0
[  241.742491][T12905]  __vmalloc_node_range_noprof+0x410/0xed0
[  241.742620][T12905]  ? sel_write_load+0x158/0x380
[  241.742638][T12905]  vmalloc_noprof+0x82/0xc0
[  241.742668][T12905]  ? sel_write_load+0x158/0x380
[  241.742735][T12905]  sel_write_load+0x158/0x380
[  241.742776][T12905]  ? __pfx_sel_write_load+0x10/0x10
[  241.742800][T12905]  vfs_write+0x269/0x960
[  241.742903][T12905]  ? __rcu_read_unlock+0x4f/0x70
[  241.742968][T12905]  ? __fget_files+0x184/0x1c0
[  241.743003][T12905]  ksys_write+0xda/0x1a0
[  241.743036][T12905]  __x64_sys_write+0x40/0x50
[  241.743061][T12905]  x64_sys_call+0x2802/0x3000
[  241.743090][T12905]  do_syscall_64+0xd2/0x200
[  241.743180][T12905]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  241.743216][T12905]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  241.743297][T12905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.743358][T12905] RIP: 0033:0x7f4b78adefc9
[  241.743374][T12905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.743392][T12905] RSP: 002b:00007f4b77547038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  241.743410][T12905] RAX: ffffffffffffffda RBX: 00007f4b78d35fa0 RCX: 00007f4b78adefc9
[  241.743422][T12905] RDX: 0000000000000020 RSI: 00002000000004c0 RDI: 0000000000000006
[  241.743438][T12905] RBP: 00007f4b77547090 R08: 0000000000000000 R09: 0000000000000000
[  241.743500][T12905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.743513][T12905] R13: 00007f4b78d36038 R14: 00007f4b78d35fa0 R15: 00007ffeb1e94758
[  241.743537][T12905]  </TASK>
[  241.963771][T12905] syz.0.3150: vmalloc error: size 4096, failed to allocated page array size 8, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0
[  241.979683][T12905] CPU: 0 UID: 0 PID: 12905 Comm: syz.0.3150 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  241.979721][T12905] Tainted: [W]=WARN
[  241.979730][T12905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  241.979773][T12905] Call Trace:
[  241.979783][T12905]  <TASK>
[  241.979791][T12905]  __dump_stack+0x1d/0x30
[  241.979865][T12905]  dump_stack_lvl+0xe8/0x140
[  241.979924][T12905]  dump_stack+0x15/0x1b
[  241.979941][T12905]  warn_alloc+0x12b/0x1a0
[  241.979973][T12905]  ? should_failslab+0x8c/0xb0
[  241.980085][T12905]  __vmalloc_node_range_noprof+0x4b9/0xed0
[  241.980132][T12905]  ? sel_write_load+0x158/0x380
[  241.980169][T12905]  vmalloc_noprof+0x82/0xc0
[  241.980202][T12905]  ? sel_write_load+0x158/0x380
[  241.980219][T12905]  sel_write_load+0x158/0x380
[  241.980236][T12905]  ? __pfx_sel_write_load+0x10/0x10
[  241.980253][T12905]  vfs_write+0x269/0x960
[  241.980311][T12905]  ? __rcu_read_unlock+0x4f/0x70
[  241.980344][T12905]  ? __fget_files+0x184/0x1c0
[  241.980379][T12905]  ksys_write+0xda/0x1a0
[  241.980452][T12905]  __x64_sys_write+0x40/0x50
[  241.980482][T12905]  x64_sys_call+0x2802/0x3000
[  241.980510][T12905]  do_syscall_64+0xd2/0x200
[  241.980601][T12905]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  241.980705][T12905]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  241.980753][T12905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.980826][T12905] RIP: 0033:0x7f4b78adefc9
[  241.980845][T12905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.980865][T12905] RSP: 002b:00007f4b77547038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  241.980885][T12905] RAX: ffffffffffffffda RBX: 00007f4b78d35fa0 RCX: 00007f4b78adefc9
[  241.980902][T12905] RDX: 0000000000000020 RSI: 00002000000004c0 RDI: 0000000000000006
[  241.980966][T12905] RBP: 00007f4b77547090 R08: 0000000000000000 R09: 0000000000000000
[  241.980982][T12905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.980998][T12905] R13: 00007f4b78d36038 R14: 00007f4b78d35fa0 R15: 00007ffeb1e94758
[  241.981024][T12905]  </TASK>
[  242.189681][T12905] Mem-Info:
[  242.192882][T12905] active_anon:7023 inactive_anon:3 isolated_anon:0
[  242.192882][T12905]  active_file:25071 inactive_file:2662 isolated_file:0
[  242.192882][T12905]  unevictable:18 dirty:194 writeback:0
[  242.192882][T12905]  slab_reclaimable:3401 slab_unreclaimable:95076
[  242.192882][T12905]  mapped:30707 shmem:192 pagetables:1090
[  242.192882][T12905]  sec_pagetables:0 bounce:0
[  242.192882][T12905]  kernel_misc_reclaimable:0
[  242.192882][T12905]  free:1797118 free_pcp:11406 free_cma:0
[  242.238040][T12905] Node 0 active_anon:28788kB inactive_anon:12kB active_file:100284kB inactive_file:10648kB unevictable:72kB isolated(anon):0kB isolated(file):0kB mapped:122828kB dirty:776kB writeback:0kB shmem:768kB kernel_stack:4288kB pagetables:4360kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  242.265726][T12905] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  242.295402][T12905] lowmem_reserve[]: 0 2881 7859 7859
[  242.300803][T12905] Node 0 DMA32 free:2946744kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2950272kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB
[  242.332204][T12905] lowmem_reserve[]: 0 0 4978 4978
[  242.338020][T12905] Node 0 Normal free:4226368kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:29136kB inactive_anon:12kB active_file:100284kB inactive_file:10648kB unevictable:72kB writepending:776kB zspages:0kB present:5242880kB managed:5098240kB mlocked:84kB bounce:0kB free_pcp:41124kB local_pcp:16384kB free_cma:0kB
[  242.371630][T12905] lowmem_reserve[]: 0 0 0 0
[  242.376362][T12905] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  242.378695][T12907] loop4: detected capacity change from 0 to 1024
[  242.389278][T12905] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 6*16kB (M) 2*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2946744kB
[  242.389593][T12905] Node 0 Normal: 20*4kB (UME) 2*8kB (UM) 48*16kB (UM) 249*32kB (UME) 191*64kB (UME) 102*128kB (UME) 98*256kB (UM) 215*512kB (UME) 144*1024kB (UME) 71*2048kB (UM) 919*4096kB (UM) = 4226368kB
[  242.389912][T12905] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  242.389930][T12905] 28042 total pagecache pages
[  242.389948][T12905] 3 pages in swap cache
[  242.449029][T12905] Free swap  = 124984kB
[  242.449849][T12907] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.453192][T12905] Total swap = 124996kB
[  242.453203][T12905] 2097051 pages RAM
[  242.453210][T12905] 0 pages HighMem/MovableOnly
[  242.453219][T12905] 81083 pages reserved
[  242.522258][T12913] hub 9-0:1.0: USB hub found
[  242.527113][T12913] hub 9-0:1.0: 8 ports detected
[  242.584721][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.636481][T12928] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3158'.
[  242.657719][   T29] kauditd_printk_skb: 25 callbacks suppressed
[  242.657738][   T29] audit: type=1400 audit(1761428171.529:16984): avc:  denied  { write } for  pid=12927 comm="syz.0.3158" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  242.827798][T12931] lo speed is unknown, defaulting to 1000
[  242.896153][T12931] chnl_net:caif_netlink_parms(): no params data found
[  242.937923][T12931] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.945094][T12931] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.952375][T12931] bridge_slave_0: entered allmulticast mode
[  242.959073][T12931] bridge_slave_0: entered promiscuous mode
[  242.966033][T12931] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.973204][T12931] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.980478][T12931] bridge_slave_1: entered allmulticast mode
[  242.987212][T12931] bridge_slave_1: entered promiscuous mode
[  243.006643][T12931] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  243.017001][T12931] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  243.018728][ T3555] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  243.028320][ T4403] Bluetooth: hci0: command 0x1003 tx timeout
[  243.048726][T12931] team0: Port device team_slave_0 added
[  243.055911][T12931] team0: Port device team_slave_1 added
[  243.069907][T12965] siw: device registration error -23
[  243.076533][T12931] batman_adv: batadv0: Adding interface: batadv_slave_0
[  243.083598][T12931] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  243.110187][T12931] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  243.111022][T12931] batman_adv: batadv0: Adding interface: batadv_slave_1
[  243.111033][T12931] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  243.111060][T12931] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  243.158717][T12931] hsr_slave_0: entered promiscuous mode
[  243.174075][T12931] hsr_slave_1: entered promiscuous mode
[  243.180067][T12931] debugfs: 'hsr0' already exists in 'hsr'
[  243.186319][T12931] Cannot create hsr debugfs directory
[  243.236849][T12973] FAULT_INJECTION: forcing a failure.
[  243.236849][T12973] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  243.250025][T12973] CPU: 0 UID: 0 PID: 12973 Comm: syz.1.3169 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  243.250056][T12973] Tainted: [W]=WARN
[  243.250127][T12973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  243.250143][T12973] Call Trace:
[  243.250150][T12973]  <TASK>
[  243.250160][T12973]  __dump_stack+0x1d/0x30
[  243.250247][T12973]  dump_stack_lvl+0xe8/0x140
[  243.250267][T12973]  dump_stack+0x15/0x1b
[  243.250287][T12973]  should_fail_ex+0x265/0x280
[  243.250310][T12973]  should_fail+0xb/0x20
[  243.250399][T12973]  should_fail_usercopy+0x1a/0x20
[  243.250420][T12973]  _copy_from_user+0x1c/0xb0
[  243.250517][T12973]  ___sys_sendmsg+0xc1/0x1d0
[  243.250571][T12973]  __x64_sys_sendmsg+0xd4/0x160
[  243.250613][T12973]  x64_sys_call+0x191e/0x3000
[  243.250640][T12973]  do_syscall_64+0xd2/0x200
[  243.250715][T12973]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  243.250750][T12973]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  243.250782][T12973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.250804][T12973] RIP: 0033:0x7fc483b0efc9
[  243.250818][T12973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.250888][T12973] RSP: 002b:00007fc482577038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  243.250913][T12973] RAX: ffffffffffffffda RBX: 00007fc483d65fa0 RCX: 00007fc483b0efc9
[  243.250928][T12973] RDX: 0000000000000000 RSI: 0000200000000900 RDI: 0000000000000003
[  243.250942][T12973] RBP: 00007fc482577090 R08: 0000000000000000 R09: 0000000000000000
[  243.250986][T12973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  243.250998][T12973] R13: 00007fc483d66038 R14: 00007fc483d65fa0 R15: 00007ffee4ab6c18
[  243.251021][T12973]  </TASK>
[  243.489529][T12981] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3173'.
[  243.599467][T12982] lo speed is unknown, defaulting to 1000
[  243.651939][T12931] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  243.666537][T12931] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  243.681853][T12931] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  243.710734][T12931] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  243.769312][T12996] siw: device registration error -23
[  243.799403][T12931] 8021q: adding VLAN 0 to HW filter on device bond0
[  243.811965][T12998] loop2: detected capacity change from 0 to 1024
[  243.826922][T12931] 8021q: adding VLAN 0 to HW filter on device team0
[  243.841272][ T4632] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.848473][ T4632] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.862324][T12998] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  243.881179][T12931] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  243.891661][T12931] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  243.919054][T13009] netlink: 'syz.0.3180': attribute type 29 has an invalid length.
[  243.928839][ T4632] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.936044][ T4632] bridge0: port 2(bridge_slave_1) entered forwarding state
[  243.946340][T12686] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.057138][T12931] 8021q: adding VLAN 0 to HW filter on device batadv0
[  244.088560][T13019] netlink: 'syz.2.3183': attribute type 29 has an invalid length.
[  244.156690][T13027] sd 0:0:1:0: device reset
[  244.180416][T13027] loop2: detected capacity change from 0 to 4096
[  244.189850][T13032] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3178'.
[  244.198860][T13032] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3178'.
[  244.214917][T13027] EXT4-fs: test_dummy_encryption option not supported
[  244.304458][T13027] binfmt_misc: register: failed to install interpreter file ./file2
[  244.410013][T12931] veth0_vlan: entered promiscuous mode
[  244.455138][T12931] veth1_vlan: entered promiscuous mode
[  244.527566][T12931] veth0_macvtap: entered promiscuous mode
[  244.559467][T12931] veth1_macvtap: entered promiscuous mode
[  244.597778][T12931] batman_adv: batadv0: Interface activated: batadv_slave_0
[  244.630873][T12931] batman_adv: batadv0: Interface activated: batadv_slave_1
[  244.659001][ T4124] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.679306][ T4124] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.707416][ T4124] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.726463][ T4124] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.815851][T13054] loop4: detected capacity change from 0 to 1024
[  244.856052][T13054] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  244.891703][T12931] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.930095][T13065] netlink: 'syz.4.3193': attribute type 29 has an invalid length.
[  244.941877][T13067] netlink: 'syz.1.3195': attribute type 29 has an invalid length.
[  245.060176][T13075] atomic_op ffff888134069528 conn xmit_atomic 0000000000000000
[  245.209542][   T29] audit: type=1400 audit(1761428174.185:16985): avc:  denied  { execute } for  pid=13070 comm="syz.1.3197" name="cgroup" dev="tmpfs" ino=395 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=lnk_file permissive=1
[  245.317460][T13087] loop2: detected capacity change from 0 to 1024
[  245.374198][T13087] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.484579][T12686] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.769656][T13095] sd 0:0:1:0: device reset
[  245.769959][T13098] netlink: 'syz.4.3207': attribute type 29 has an invalid length.
[  245.823848][T13095] loop5: detected capacity change from 0 to 4096
[  245.847743][T13104] siw: device registration error -23
[  245.858023][T13095] EXT4-fs: test_dummy_encryption option not supported
[  245.859523][T13104] loop4: detected capacity change from 0 to 512
[  245.887964][T13095] binfmt_misc: register: failed to install interpreter file ./file2
[  245.897464][T13104] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.915633][T13104] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  245.929702][T13104] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.3209: corrupted inode contents
[  245.944173][T13104] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.3209: mark_inode_dirty error
[  245.955893][T13104] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.3209: corrupted inode contents
[  245.968449][T13104] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.3209: mark_inode_dirty error
[  245.981695][T13104] EXT4-fs warning (device loop4): ext4_empty_dir:3089: inode #18: comm syz.4.3209: directory missing '.'
[  246.011670][T12931] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.050799][T13115] random: crng reseeded on system resumption
[  246.108620][T13115] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3214'.
[  246.117803][T13115] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3214'.
[  246.171475][T13127] 9pnet_fd: Insufficient options for proto=fd
[  246.172436][T13129] netlink: 'syz.5.3220': attribute type 29 has an invalid length.
[  246.177945][T13127] SELinux:  policydb version 728442014 does not match my version range 15-35
[  246.195506][T13127] SELinux: failed to load policy
[  246.356207][T13140] loop4: detected capacity change from 0 to 1024
[  246.426344][   T29] audit: type=1400 audit(1761428175.487:16986): avc:  denied  { watch watch_reads } for  pid=13153 comm="syz.4.3230" path="/proc/27/fd" dev="proc" ino=37195 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  246.509655][T13159] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3222'.
[  246.518582][T13159] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3222'.
[  246.540123][T13154] loop2: detected capacity change from 0 to 1024
[  246.547110][T13154] EXT4-fs: Ignoring removed oldalloc option
[  246.553071][T13154] EXT4-fs: Ignoring removed bh option
[  246.656335][T13161] sd 0:0:1:0: device reset
[  246.676637][   T29] audit: type=1400 audit(1761428175.718:16987): avc:  denied  { read } for  pid=13152 comm="syz.2.3229" path="/24/file1/bus" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  246.827700][T13161] binfmt_misc: register: failed to install interpreter file ./file2
[  247.065139][T13169] netlink: 'syz.2.3233': attribute type 29 has an invalid length.
[  247.142423][T13177] netlink: 'syz.5.3247': attribute type 29 has an invalid length.
[  247.196841][T13189] loop2: detected capacity change from 0 to 1024
[  247.218657][T13191] siw: device registration error -23
[  247.228701][T13191] loop5: detected capacity change from 0 to 512
[  247.251388][T13191] ext4 filesystem being mounted at /220/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  247.276010][T13191] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.3243: corrupted inode contents
[  247.297310][T13201] loop4: detected capacity change from 0 to 1024
[  247.306717][T13191] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.3243: mark_inode_dirty error
[  247.319311][T13191] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.3243: corrupted inode contents
[  247.331209][T13191] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.3243: mark_inode_dirty error
[  247.353896][T13191] EXT4-fs warning (device loop5): ext4_empty_dir:3089: inode #18: comm syz.5.3243: directory missing '.'
[  247.501277][T13222] loop4: detected capacity change from 0 to 1024
[  247.530294][T13224] siw: device registration error -23
[  247.544769][T13224] loop5: detected capacity change from 0 to 512
[  247.577554][T13230] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3248'.
[  247.586648][T13230] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3248'.
[  247.634791][T13224] ext4 filesystem being mounted at /223/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  247.648741][T13224] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.3257: corrupted inode contents
[  247.660846][T13229] SELinux: failed to load policy
[  247.672172][T13224] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.3257: mark_inode_dirty error
[  247.695680][T13224] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.3257: corrupted inode contents
[  247.728120][   T29] audit: type=1326 audit(1761428176.831:16988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b78adefc9 code=0x7ffc0000
[  247.751913][   T29] audit: type=1326 audit(1761428176.831:16989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b78adefc9 code=0x7ffc0000
[  247.775586][   T29] audit: type=1326 audit(1761428176.831:16990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b78adefc9 code=0x7ffc0000
[  247.799202][   T29] audit: type=1326 audit(1761428176.831:16991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4b78adefc9 code=0x7ffc0000
[  247.822938][   T29] audit: type=1326 audit(1761428176.831:16992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4b78adf003 code=0x7ffc0000
[  247.846384][   T29] audit: type=1326 audit(1761428176.852:16993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4b78adda7f code=0x7ffc0000
[  247.915131][   T29] audit: type=1326 audit(1761428177.009:16994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4b78adf057 code=0x7ffc0000
[  247.915177][   T29] audit: type=1326 audit(1761428177.009:16995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4b78add810 code=0x7ffc0000
[  247.915308][   T29] audit: type=1326 audit(1761428177.009:16996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4b78addc2a code=0x7ffc0000
[  247.915363][   T29] audit: type=1326 audit(1761428177.009:16997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13232 comm="syz.0.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b78adefc9 code=0x7ffc0000
[  247.915497][T13224] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.3257: mark_inode_dirty error
[  247.944772][T13238] EXT4-fs warning (device loop5): ext4_empty_dir:3089: inode #18: comm syz.5.3257: directory missing '.'
[  248.051243][T13236] siw: device registration error -23
[  248.238308][T13267] siw: device registration error -23
[  248.248095][T13267] loop4: detected capacity change from 0 to 512
[  248.269175][T13267] ext4 filesystem being mounted at /20/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  248.282058][T13267] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.3273: corrupted inode contents
[  248.296240][T13267] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.3273: mark_inode_dirty error
[  248.307972][T13267] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.3273: corrupted inode contents
[  248.320010][T13267] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.3273: mark_inode_dirty error
[  248.333073][T13267] EXT4-fs warning (device loop4): ext4_empty_dir:3089: inode #18: comm syz.4.3273: directory missing '.'
[  248.582615][T13286] loop5: detected capacity change from 0 to 1024
[  248.815777][T13304] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3280'.
[  248.824745][T13304] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3280'.
[  248.970542][T13309] sd 0:0:1:0: device reset
[  249.039341][T13309] loop5: detected capacity change from 0 to 4096
[  249.070135][T13309] EXT4-fs: test_dummy_encryption option not supported
[  249.147197][T13309] binfmt_misc: register: failed to install interpreter file ./file2
[  249.229342][T13316] loop4: detected capacity change from 0 to 512
[  249.288823][T13316] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  249.379413][T13312] loop2: detected capacity change from 0 to 512
[  249.435152][T13316] SELinux: failed to load policy
[  249.443412][T13312] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  249.452594][T13316] EXT4-fs error (device loop4): ext4_lookup:1787: inode #12: comm syz.4.3291: iget: bad i_size value: 2533274857506816
[  249.665220][T13325] loop4: detected capacity change from 0 to 1024
[  249.811439][T13334] loop4: detected capacity change from 0 to 512
[  249.845091][T13334] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  249.854671][T13334] EXT4-fs (loop4): orphan cleanup on readonly fs
[  249.874860][T13334] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  249.886415][T13334] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it
[  249.896600][T13334] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.3296: Corrupt directory, running e2fsck is recommended
[  249.916617][T13334] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  249.925009][T13334] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.3296: corrupted in-inode xattr: invalid ea_ino
[  249.939439][T13334] EXT4-fs (loop4): Remounting filesystem read-only
[  249.969816][T13334] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  249.982232][T13334] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it
[  249.992738][T13334] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.3296: Corrupt directory, running e2fsck is recommended
[  250.051474][T13355] SELinux: failed to load policy
[  250.070849][T13361] loop5: detected capacity change from 0 to 1024
[  250.121515][T13372] siw: device registration error -23
[  250.213267][T13377] siw: device registration error -23
[  250.224372][T13376] sd 0:0:1:0: device reset
[  250.249748][T13376] loop4: detected capacity change from 0 to 4096
[  250.256666][T13376] EXT4-fs: test_dummy_encryption option not supported
[  250.280286][T13376] binfmt_misc: register: failed to install interpreter file ./file2
[  250.290577][T13383] sd 0:0:1:0: device reset
[  250.320757][T13387] siw: device registration error -23
[  250.391210][T13391] loop5: detected capacity change from 0 to 1024
[  250.398093][T13391] EXT4-fs: Ignoring removed oldalloc option
[  250.404168][T13391] EXT4-fs: Ignoring removed bh option
[  250.413748][T13391] EXT4-fs mount: 28 callbacks suppressed
[  250.413765][T13391] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  250.524134][T13407] ==================================================================
[  250.532528][T13407] BUG: KCSAN: data-race in xas_find_marked / xas_set_mark
[  250.539677][T13407] 
[  250.542043][T13407] write to 0xffff88811a47bb04 of 4 bytes by task 13391 on cpu 1:
[  250.549763][T13407]  xas_set_mark+0x12b/0x140
[  250.554295][T13407]  __folio_start_writeback+0x155/0x390
[  250.559776][T13407]  ext4_bio_write_folio+0x5ad/0x9f0
[  250.564999][T13407]  mpage_process_page_bufs+0x4a1/0x620
[  250.570554][T13407]  mpage_prepare_extent_to_map+0x786/0xc00
[  250.576375][T13407]  ext4_do_writepages+0xa05/0x2750
[  250.581675][T13407]  ext4_writepages+0x176/0x300
[  250.586453][T13407]  do_writepages+0x1c6/0x310
[  250.591138][T13407]  file_write_and_wait_range+0x156/0x2c0
[  250.596784][T13407]  generic_buffers_fsync_noflush+0x45/0x120
[  250.602689][T13407]  ext4_sync_file+0x1ab/0x690
[  250.607380][T13407]  vfs_fsync_range+0x10d/0x130
[  250.612431][T13407]  ext4_buffered_write_iter+0x34f/0x3c0
[  250.617984][T13407]  ext4_file_write_iter+0x387/0xf60
[  250.623274][T13407]  iter_file_splice_write+0x666/0xa60
[  250.628655][T13407]  direct_splice_actor+0x156/0x2a0
[  250.633780][T13407]  splice_direct_to_actor+0x312/0x680
[  250.639162][T13407]  do_splice_direct+0xda/0x150
[  250.643939][T13407]  do_sendfile+0x380/0x650
[  250.648380][T13407]  __x64_sys_sendfile64+0x105/0x150
[  250.653595][T13407]  x64_sys_call+0x2bb4/0x3000
[  250.658295][T13407]  do_syscall_64+0xd2/0x200
[  250.662819][T13407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.668738][T13407] 
[  250.671065][T13407] read to 0xffff88811a47bb04 of 4 bytes by task 13407 on cpu 0:
[  250.678714][T13407]  xas_find_marked+0x5dc/0x620
[  250.683483][T13407]  find_get_entry+0x5d/0x380
[  250.688092][T13407]  filemap_get_folios_tag+0x92/0x210
[  250.693391][T13407]  mpage_prepare_extent_to_map+0x320/0xc00
[  250.699211][T13407]  ext4_do_writepages+0x708/0x2750
[  250.704331][T13407]  ext4_writepages+0x176/0x300
[  250.709105][T13407]  do_writepages+0x1c6/0x310
[  250.713706][T13407]  file_write_and_wait_range+0x156/0x2c0
[  250.719365][T13407]  generic_buffers_fsync_noflush+0x45/0x120
[  250.725273][T13407]  ext4_sync_file+0x1ab/0x690
[  250.729964][T13407]  vfs_fsync_range+0x10d/0x130
[  250.734765][T13407]  ext4_buffered_write_iter+0x34f/0x3c0
[  250.740327][T13407]  ext4_file_write_iter+0x387/0xf60
[  250.745532][T13407]  iter_file_splice_write+0x666/0xa60
[  250.750917][T13407]  direct_splice_actor+0x156/0x2a0
[  250.756037][T13407]  splice_direct_to_actor+0x312/0x680
[  250.761421][T13407]  do_splice_direct+0xda/0x150
[  250.766194][T13407]  do_sendfile+0x380/0x650
[  250.770639][T13407]  __x64_sys_sendfile64+0x105/0x150
[  250.775861][T13407]  x64_sys_call+0x2bb4/0x3000
[  250.780632][T13407]  do_syscall_64+0xd2/0x200
[  250.785228][T13407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.791138][T13407] 
[  250.793460][T13407] value changed: 0x0a000021 -> 0x04000021
[  250.799177][T13407] 
[  250.801500][T13407] Reported by Kernel Concurrency Sanitizer on:
[  250.807834][T13407] CPU: 0 UID: 0 PID: 13407 Comm: syz.5.3315 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  250.819285][T13407] Tainted: [W]=WARN
[  250.823115][T13407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  250.833181][T13407] ==================================================================
[  250.891503][ T9641] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.