last executing test programs:

1m28.129400669s ago: executing program 0 (id=278):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r1, &(0x7f0000000d00)=[{&(0x7f0000000580)=""/157, 0x9d}, {&(0x7f0000000700)=""/95, 0x5f}, {0x0, 0x9d00}, {&(0x7f0000001b80)=""/4096, 0x1000}, {&(0x7f0000000880)=""/26, 0x1a}, {&(0x7f0000000980)=""/8, 0x8}, {&(0x7f0000000ac0)=""/213, 0xd5}, {&(0x7f0000000bc0)=""/164, 0xa4}, {&(0x7f0000000c80)=""/88, 0x58}], 0x9, 0x4, 0x200)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="280000006a00831300000000000000ffa60000000000000008000e0000000000080005"], 0x28}, 0x1, 0x0, 0x0, 0x4009050}, 0x8010)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000cc0)={[{@data_writeback}, {@norecovery}, {@dioread_lock}, {@resgid}, {@noinit_itable}, {@block_validity}, {@user_xattr}, {@lazytime}]}, 0x21, 0x5fb, &(0x7f00000004c0)="$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")

1m27.475860821s ago: executing program 0 (id=283):
bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="050000000400000008"], 0x48)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x56899130b459a9f4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = epoll_create(0x3ff)
r3 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000240)={0xa0000000})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000280)={0x2000000})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], 0x48)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, r5, 0x0, '\x00', 0x0, 0x0}, 0x50)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[], 0x48)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x20000000, '\x00', 0x0, 0x0}, 0x50)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r9}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x7}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r8}, {}, {0x46, 0x0, 0x0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x5, 0x0, 0xb, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0900000300000000000000000600000000000000", @ANYRES32=r6], 0x50)
r10 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0c0000000400000004"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r10}, &(0x7f0000000180), &(0x7f00000001c0)=r7}, 0x20)
setsockopt$packet_int(r4, 0x107, 0x9, &(0x7f0000000000), 0x4)
syz_clone3(0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r11}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000600100004012200a4e2000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000001940), 0x2000cc0, r12}, 0x38)

1m27.290075776s ago: executing program 0 (id=286):
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
quotactl$Q_QUOTAON(0xffffffff80000202, 0x0, 0x0, 0x0) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) (async)
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) (async)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000240)=@generic={&(0x7f0000000000)='./file0\x00', r0}, 0x18) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x10) (async)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2)
sendmsg$NL80211_CMD_GET_WIPHY(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="30000000afe9fdfddd820fa658276365f7a2ffc6385196f6279a5c877a2c1d6d7c62fdda39", @ANYRES16=r5, @ANYBLOB="0103000000000000000001000000080001001400000008000300", @ANYRES32=0x0, @ANYBLOB="0c0099000200000004000000"], 0x30}}, 0x44) (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$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")
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) (async)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
ioctl$TUNGETFEATURES(r7, 0x5452, &(0x7f0000000400)) (async)
sendmsg$RDMA_NLDEV_CMD_SET(r6, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40002}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x10000804}, 0x4048010) (async)
r8 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r8, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14) (async)
setsockopt$inet6_mreq(r8, 0x29, 0x1b, &(0x7f0000000280)={@remote}, 0x14) (async)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x94) (async)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r10}, 0x10)
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="5500000018007f5f00fe01b2a4a2809302060000ff41fd01020400000a00120002002800000019002d007fffffff0022de1330d54400009b84136ef75afb83de066a5900e1baac968300000000f2ff000001000000", 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2cc80317, 0x0, 0x0, 0x0, 0x4f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000003}, 0x94) (async)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r12}, 0x10)

1m27.173682795s ago: executing program 0 (id=289):
mmap(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff37}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
writev(r1, &(0x7f0000000500)=[{&(0x7f0000000080)='Xj', 0x2}], 0x1)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x84003, 0x0)
sendmsg$NFT_MSG_GETOBJ_RESET(r2, &(0x7f0000000500)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000001c0)={0x50, 0x15, 0xa, 0xc5d1db942f74c4ec, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x10001}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x48804)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f00000000c0)={0x0, @dev, @multicast1}, &(0x7f0000000100)=0xc)
bind$inet6(r2, &(0x7f0000000540)={0xa, 0xfff7, 0x5, @private1, 0x5}, 0x1c)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0xfffffffffffffffc, &(0x7f00000002c0)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x11)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f0000000240)='./file0\x00')
pivot_root(0x0, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={0x0, r4, 0x0, 0x2, 0x2}}, 0x20)
r5 = socket(0xb, 0x1, 0x80000001)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r5, 0x8982, &(0x7f0000000000)={0x1, 'nicvf0\x00', {}, 0x1000})

1m27.159547266s ago: executing program 0 (id=290):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
unshare(0x2c020400)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe0000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x11, 0xf, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x72, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mq_open(&(0x7f00000004c0)='!_\xa3\x04sel\x00\xe1\xff\xc2|[\\P\xa8\xe6.O\x01\x1c0\x18\xe7\x9d\xe8\x1a<IF\x00\xc6\xf6\xcf\xa9t\x97g\xfb.\xf6\x1c\x12\x8a\xe7}\xefX\x022c\\\xa1T\xa8\x12T\x91\x95\x98\xe5\x11\xb2\x8ey\xce\xcc\xb4\xfaeR~\xad\"\n\r\xdcr;\"T\xbd@\x12\xc3N\x97\x06}\x9b\x06\xb8?\xdc\x88\x17~\xf4t\xc1\a\x80\xa8\x14)Y\xd1\xb3\x16\x1dI\x83~\xfe\xf78\xd9m\xceQ\xbeE\x11\xc5\xbf5\xe7\x8f\xc99\x15O\xef\xe3\xaa\xc1\b\xbd$pF\xb2\xb1\x8b\xd40\xd6\x95}\xa1\x0f\xf2\x1d>\n\x89\xb3P\xa3\xfc\xaf\x1e\x89=u\x89|\x9c\xcc\xecl\xfbI\xbc\aA\xaf\x85\xe9\x81\xd8Q%\xcf\xeb\xfe\xb9S\x89k\xf2\xf2\xfa\"\x10{\xa6\x00\xf4\xe4Zw\xed\xf8\xff\x83\x02\xac\xd8\x82dj!\x86_bdM\xe9\xb2\xa3\x8a^\x85\xee\x84\xcc=\xdc\x164^O\"\xb3\xfe\xdcm \xdf%\x00\x00\xc6\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x6e93ebbbcc0884f2, 0x10, &(0x7f0000000140)={0x2000000000002001, 0x64f000000000, 0x55, 0x3})
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYRESOCT=r2], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0xfffffffc}, 0x10}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[], 0x50)
r3 = gettid()
timer_create(0x0, &(0x7f0000001640)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$nfc_llcp(r4, &(0x7f0000000240)={0x27, 0x0, 0x0, 0x4, 0x0, 0x3, "e88509de7f1939e8abff005597c8ef039a5be42200", 0x13}, 0x60)
listen(r4, 0x0)
accept4$nfc_llcp(r4, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r5, 0x0, 0x8000)
io_uring_enter(0xffffffffffffffff, 0x351b, 0xbdb3, 0x40, 0x0, 0x0)
openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x20000004)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r6, &(0x7f0000000000)=[{{&(0x7f00000002c0)={0xa, 0x4e21, 0x8006, @remote, 0x5}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="140000000000614f59aeb722cc1cc2b63e000029000000aaa5d700000000"], 0x18}}], 0x1, 0x8800)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)

1m27.032140357s ago: executing program 0 (id=295):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth0_vlan\x00', 0x1})
socketpair(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8924, &(0x7f0000000080))
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
socket$kcm(0x10, 0x2, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0)

1m26.964394522s ago: executing program 32 (id=295):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth0_vlan\x00', 0x1})
socketpair(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8924, &(0x7f0000000080))
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
socket$kcm(0x10, 0x2, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0)

3.562062875s ago: executing program 2 (id=1496):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x80)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
readv(r1, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x8}], 0xe)

3.528209818s ago: executing program 2 (id=1500):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x6}, 0x18)
r2 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r2)

3.270825708s ago: executing program 2 (id=1505):
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x18, 0x7ffc1fff}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x2, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x4}, 0x100, 0x10000, 0x5, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2}, &(0x7f00000004c0), &(0x7f00000003c0)}, 0xffffffffffffff1d)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r3}, 0x10)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
munlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
connect$netlink(r4, &(0x7f0000000300)=@proc={0x10, 0x0, 0x25dfdffc}, 0xc)

1.857857922s ago: executing program 1 (id=1532):
lsetxattr$security_capability(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680), &(0x7f00000006c0)=@v1={0x1000000, [{0x200}]}, 0xc, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x8}, 0x94)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000580)=@generic={&(0x7f0000000380)='./file0\x00', r0}, 0x18)

1.480709462s ago: executing program 1 (id=1534):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
mremap(&(0x7f00005c1000/0x3000)=nil, 0x3000, 0x800000, 0x3, &(0x7f0000800000/0x800000)=nil)
ptrace(0x4206, 0x0)
ptrace(0x4208, 0x0)
ptrace(0x4207, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000380)=ANY=[@ANYBLOB="440000001000030500000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1501000000000000140012800c0001006d4e6376746170002469ff62e7b9dd2d823df65b2a327c0000000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB], 0x44}}, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000002c0)={r2, r3, 0x25, 0x13, @void}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f00000004c0)=@newtaction={0xb0, 0x30, 0x9, 0x0, 0x0, {}, [{0x9c, 0x1, [@m_bpf={0x98, 0x1, 0x0, 0x0, {{0x8}, {0x70, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x4c, 0x4, [{}, {}, {0x6}, {}, {0x0, 0x0, 0xfe}, {0xf792}, {0x3}, {0x5, 0x0, 0xf7, 0x7f}, {0x0, 0x6, 0x4, 0x7}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xb0}}, 0x0)
socket$unix(0x1, 0x1, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1ff)
setsockopt$inet6_tcp_int(r5, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
shutdown(r5, 0x1)
bind$inet6(r5, &(0x7f0000000240)={0xa, 0x4e20, 0xf, @empty, 0x5}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000280)="d5", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x20080058)
socket$nl_route(0x10, 0x3, 0x0)

1.421664127s ago: executing program 5 (id=1536):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
unlinkat(0xffffffffffffffff, 0x0, 0x200)

1.366722841s ago: executing program 1 (id=1538):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0x1, 0xa}, 0x1184c, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180))
fsopen(0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e24, @private=0xa010101}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f00000008c0), &(0x7f0000000340)=0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r3}, 0x18)
socket$kcm(0x21, 0x2, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000380)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
capset(&(0x7f0000000ac0)={0x19980330}, &(0x7f0000000180)={0x0, 0x10000, 0xc898, 0x800000, 0x0, 0x2})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x140, 0x0)

1.309791516s ago: executing program 5 (id=1540):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380)='devtmpfs\x00', 0x4000, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00')
socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r2}, 0x9)
connect$pppoe(0xffffffffffffffff, 0x0, 0x0)
write$P9_RMKDIR(r0, &(0x7f0000000400)={0x14, 0x49, 0x1, {0x10, 0x3, 0x7}}, 0x14)
r3 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x60, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
set_mempolicy(0x8000, &(0x7f0000000600), 0x9)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={<r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000200)={'ip6gretap0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r7, {0x0, 0x5}, {0xffff, 0xffff}, {0xe}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x4}]}}]}, 0x3c}}, 0x0)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
r8 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240), r3)
sendmsg$IPVS_CMD_NEW_DEST(r3, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000440)={&(0x7f0000000500)={0x9c, r8, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x80000001}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xa}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x2}]}, @IPVS_CMD_ATTR_DEST={0x5c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x16}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast2}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xa}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xc}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x7}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e21}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4c001}, 0x10)
acct(&(0x7f00000001c0)='./file0\x00')
r9 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001340)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4c0000001800010d00000000000000850a000000000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r9], 0x4c}}, 0x40000)
sendmmsg(r9, &(0x7f0000000000), 0x4000000000001f2, 0xfc)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x262)

1.309543316s ago: executing program 5 (id=1541):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x80)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
readv(r1, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x8}], 0xe)

1.266968949s ago: executing program 5 (id=1543):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@bloom_filter={0x1e, 0x0, 0x1, 0x7, 0x0, 0x1}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, 0x0}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
r3 = syz_open_pts(r2, 0x0)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000180)={0xd, 0x8, 0xfffffffc, 0xb6b, 0x11, "aa00003986b9ee6bd231334c1a280d7ea400"})

1.130779s ago: executing program 4 (id=1545):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x800)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r0}, 0x10)
utime(&(0x7f0000000100)='./file0\x00', 0x0)

1.105167492s ago: executing program 4 (id=1546):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400), 0x4)
r2 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')
preadv(r2, &(0x7f0000000800)=[{&(0x7f0000000300)=""/206, 0xce}], 0x1, 0x10, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000004c0)=ANY=[@ANYRES16=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES64=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001240)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4000000, {0x0, 0x0, 0x0, r4, {0x0, 0xd}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x6957, 0xfff, 0xf2d, 0x8001, 0x1, 0x0, 0x9, 0x50, 0x9, 0x800, 0x7f, 0x1, 0x67e37a33, 0x7, 0x10001, 0x6, 0x4a2, 0x9, 0x8c14, 0x1, 0x3, 0x7c, 0x5, 0x0, 0x7, 0x2, 0x80000000, 0x4fd, 0x4, 0x9, 0x9, 0x8, 0x400, 0xc6bf, 0xf0, 0x5, 0x80000001, 0x1, 0x10, 0x9, 0xe8ca, 0x3, 0x3, 0x9, 0xa36, 0x67, 0x7fff, 0x3, 0x7e, 0x5, 0x9, 0x7, 0x200, 0x2d6, 0x80, 0xe, 0x7fffffff, 0x1, 0xffffff01, 0x2, 0x0, 0x9, 0x800, 0x5, 0xb9, 0x5, 0x5, 0x80000000, 0x5, 0x8, 0x4, 0x4, 0x55e, 0x2, 0x3, 0x8, 0x5, 0x3, 0x3, 0x7f, 0xd67e, 0x9, 0x8, 0xfffffff9, 0x4, 0x8, 0x2, 0x3, 0x401, 0x7, 0x7fffffff, 0xffff, 0x1, 0x9, 0x81, 0x3, 0x9, 0x7fffffff, 0x366f, 0x251c, 0x80a4, 0x401, 0x4, 0x8, 0x52b1bc5, 0x6, 0xad, 0x4, 0x4, 0x1ff, 0x4, 0x3, 0x8, 0x7, 0x401, 0x2, 0x266, 0x5, 0x9ba0, 0x0, 0xc844, 0x0, 0x1c0000, 0x1ff, 0xe, 0x7, 0x7, 0x1, 0x2, 0x3, 0x40, 0x6, 0x7, 0xd2, 0x1, 0x81, 0x6, 0x401, 0x1cd4, 0x1, 0x0, 0x40, 0x9, 0x80, 0xfffffff8, 0x27ba, 0x10, 0x10001, 0x7, 0x8, 0x2, 0x4, 0x8, 0x10, 0x101, 0x6, 0x6, 0x3, 0x8f3, 0xa, 0x9, 0x5, 0x0, 0x7, 0x9, 0xfffffffa, 0x4, 0x8001, 0x9, 0x401, 0x8, 0x400, 0x10, 0x7, 0x0, 0x0, 0x10001, 0x9, 0x2, 0x2368, 0x8, 0x9, 0x5, 0x8, 0x80, 0xcd, 0x5, 0xc, 0x7, 0x0, 0x8, 0x101, 0x400, 0x7ff, 0x80000001, 0xfffffc01, 0x1ff, 0x8, 0x865d, 0x0, 0x3, 0x7fff, 0x10001, 0x1, 0x101, 0x7, 0x3, 0x1, 0x6c8, 0x10000, 0x7, 0x800, 0xffff, 0xb, 0x3, 0x0, 0x4000, 0x1, 0xfff, 0x80000000, 0x4, 0x200, 0x1, 0x1, 0x1, 0x0, 0xb, 0x1, 0x9, 0x400, 0x5, 0x8, 0x0, 0x6, 0x13, 0x8001, 0x0, 0x3, 0x10ac, 0x1, 0x642, 0x1, 0x0, 0x2, 0x9, 0x6a0, 0x3, 0x8000, 0x1ff, 0x1, 0x7, 0x80000001, 0x7f, 0x7, 0xf, 0x2]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x1, 0x0, 0x0, 0x0, 0xfffc, 0x6}, {0xff}, 0x0, 0x7f}}]}}]}, 0x45c}}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x101040, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x78)
mmap$xdp(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x100000a, 0x13, 0xffffffffffffffff, 0x80000000)
listen(0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x20000010)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000dfff75390000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r8}, 0x10)
r9 = io_uring_setup(0x1694, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xffffffff, 0x168})
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r9, 0x7, &(0x7f0000000040), 0x1)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, r7)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r10, &(0x7f0000000040), 0xe09)
r11 = syz_open_dev$loop(&(0x7f0000000140), 0x9, 0x40000)
ioctl$LOOP_CONFIGURE(r11, 0x4c0a, &(0x7f00000002c0)={r10, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd00000080190000000000000800", [0x0, 0x2000000000001]}})

921.676957ms ago: executing program 4 (id=1547):
write(0xffffffffffffffff, 0x0, 0x0)
r0 = mq_open(&(0x7f0000000080)='!selin\xdb\xa1\x02\xbf\xd9l\xd7\xcd\xc0uxse\xee\x0e\xcd\xce6\xbf\xfa;\xb9-a\xb8\xef\x8de\x14\xbc\x9ej\xa1q\xa2\xa5\t\x98\x8a\x8f>\xba', 0x6e93ebbbcc088cf2, 0x0, &(0x7f0000000300)={0x0, 0x1, 0xec})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x18)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r0, 0x0, 0xec, 0xd, 0x0)
r2 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
r3 = syz_io_uring_setup(0xbdc, &(0x7f0000000080)={0x0, 0xec21, 0x80, 0x1, 0x40000333}, &(0x7f0000000340)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
msgctl$MSG_STAT(0x0, 0xb, &(0x7f0000000b00)=""/83)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r2, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x4, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50)
r6 = syz_io_uring_setup(0x1841, &(0x7f0000000f80)={0x0, 0xfffffffb, 0x10100, 0x0, 0x80}, &(0x7f00000000c0)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r9, &(0x7f0000000040)=ANY=[], 0x118)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x9, 0x6}, 0x8d14, 0x10000, 0x0, 0x54eaf8f575f0f1ea, 0x8, 0x20005, 0x8, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r10 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000280)={'geneve1\x00', <r11=>0x0})
r12 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
fallocate(r12, 0x0, 0xbf5, 0x2000402)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r12, 0xc, 0x0, 0x0)
setsockopt$packet_int(r10, 0x107, 0xf, &(0x7f0000000000)=0x4, 0x4)
sendto$packet(r10, 0x0, 0x0, 0x0, &(0x7f0000000540)={0xc9, 0x0, r11, 0x1, 0x0, 0x6, @multicast}, 0x14)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r9, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index})
io_uring_enter(r6, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
ioctl$TUNGETFILTER(r2, 0x801054db, &(0x7f0000000380)=""/116)
io_uring_enter(r3, 0x847ba, 0x2000, 0xe, 0x0, 0x0)

604.164762ms ago: executing program 4 (id=1552):
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f0000000200)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000340)="5825be57aff935e67ca2746357d1787935589db15a23319e3f64fdf5f88b", 0x1e}], 0x1}}], 0x1, 0x840)

527.325438ms ago: executing program 2 (id=1555):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1809000000000000000000000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x80)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
readv(r1, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x8}], 0xe)

497.10063ms ago: executing program 1 (id=1556):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x800)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r0}, 0x10)
utime(&(0x7f0000000100)='./file0\x00', 0x0)

481.151002ms ago: executing program 3 (id=1557):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000001c0)=@generic={&(0x7f0000000080)='./file0\x00', 0x0, 0x20}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='mm_lru_insertion\x00', r1}, 0x18)
statfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000001040)=""/4096)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r2, &(0x7f0000000180), 0x40010)

480.721972ms ago: executing program 2 (id=1558):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="06000000040000000d00000002"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace004d0000000000002100000002ff020000000000000000000000000001"], 0x0)

398.019658ms ago: executing program 5 (id=1559):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
mremap(&(0x7f00005c1000/0x3000)=nil, 0x3000, 0x800000, 0x3, &(0x7f0000800000/0x800000)=nil)
ptrace(0x4206, 0x0)
ptrace(0x4208, 0x0)
ptrace(0x4207, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000380)=ANY=[@ANYBLOB="440000001000030500000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1501000000000000140012800c0001006d4e6376746170002469ff62e7b9dd2d823df65b2a327c0000000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB], 0x44}}, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000002c0)={r2, r3, 0x25, 0x13, @void}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f00000004c0)=@newtaction={0xb0, 0x30, 0x9, 0x0, 0x0, {}, [{0x9c, 0x1, [@m_bpf={0x98, 0x1, 0x0, 0x0, {{0x8}, {0x70, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x4c, 0x4, [{}, {}, {0x6}, {}, {0x0, 0x0, 0xfe}, {0xf792}, {0x3}, {0x5, 0x0, 0xf7, 0x7f}, {0x0, 0x6, 0x4, 0x7}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xb0}}, 0x0)
socket$unix(0x1, 0x1, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1ff)
setsockopt$inet6_tcp_int(r5, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
shutdown(r5, 0x1)
bind$inet6(r5, &(0x7f0000000240)={0xa, 0x4e20, 0xf, @empty, 0x5}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000280)="d5", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x20080058)
socket$nl_route(0x10, 0x3, 0x0)

390.854109ms ago: executing program 1 (id=1560):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xe, 0x4, 0x8, 0x1}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', &(0x7f0000001240), 0x1000)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r6, 0x0, 0x0}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
fremovexattr(r5, &(0x7f00000014c0)=ANY=[@ANYBLOB="6f73322e2a001333ceb810bf6c2f6847fff7f11b48d6542d7ee7b695d4c2338ccac98dfb51d319b31ee1a554e133155f3db0cd12a03ec8a0b70043a3ed7ddd42051a9d91d06bfb32fcd6e9c1815baab3f7fa232048ee22d8a2ed487f658d957ab4c8d41ee41159745e9cce8006effb59d445510b73d3954de98a639bed6d6bf3cf4da0066b5df94743683c42337a2ec927782f1ac95fd91b6a112d1ff7a83ea43a1a73dc7127e89800b18c5b4765"])
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002000)=ANY=[@ANYBLOB="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"], 0x1, 0x21b, &(0x7f0000000300)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
name_to_handle_at(r7, &(0x7f0000000000)='./file0\x00', &(0x7f0000000580)=ANY=[@ANYBLOB='('], &(0x7f00000001c0), 0x1200)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xe, &(0x7f0000001440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000001800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x6, 0x1000, &(0x7f0000000240)=""/4096}, 0x94)
unshare(0x22020600)

248.675781ms ago: executing program 3 (id=1561):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
unlinkat(0xffffffffffffffff, 0x0, 0x200)

247.791321ms ago: executing program 3 (id=1562):
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f0000000200)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000340)="5825be57aff935e67ca2746357d1787935589db15a23319e", 0x18}], 0x1}}], 0x1, 0x840)

247.568821ms ago: executing program 3 (id=1563):
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f0000000200)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000340)="5825be57aff935e67ca2746357d1787935589db15a23319e", 0x18}], 0x1}}], 0x1, 0x840)

231.635282ms ago: executing program 3 (id=1564):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x80)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
readv(r1, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x8}], 0xe)

200.894764ms ago: executing program 3 (id=1565):
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x18, 0x7ffc1fff}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x2, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x4}, 0x100, 0x10000, 0x5, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2}, &(0x7f00000004c0), &(0x7f00000003c0)}, 0xffffffffffffff1d)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r3}, 0x10)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
munlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
connect$netlink(r4, &(0x7f0000000300)=@proc={0x10, 0x0, 0x25dfdffc}, 0xc)

173.683847ms ago: executing program 2 (id=1566):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x4000, &(0x7f0000000a40)={[{@noblock_validity}, {@jqfmt_vfsold}, {@mb_optimize_scan}, {@noload}, {@grpquota}, {@jqfmt_vfsv0}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@nodiscard}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@mblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x4, 0x2080)
r1 = dup(r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r3 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r3, 0x0, 0x400000002000000, 0x2)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="02000000040000000810", @ANYRES16=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000008000000850000007800"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETSNDBUF(r6, 0x400454d4, &(0x7f0000000080)=0x200)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x10100}, 0x0, 0xaffffffeffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r7 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x480283, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_bp={0x0, 0x8}, 0x7606, 0x3ff, 0x80000000, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r7, 0x2402, 0xa)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0100000005000000fd0900008400000005010000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r8, 0x0, 0x2000000}, 0x38)
ioctl$PERF_EVENT_IOC_REFRESH(r7, 0x2402, 0x4)
lsetxattr$security_capability(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680), &(0x7f00000006c0)=@v1={0x1000000, [{0x200}]}, 0xc, 0x1)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000008, 0x100010, r1, 0xa7f50000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r4}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000580)=@generic={&(0x7f0000000380)='./file0\x00'}, 0x18)

173.444637ms ago: executing program 1 (id=1567):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0x1, 0xa}, 0x1184c, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180))
fsopen(0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e24, @private=0xa010101}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f00000008c0), &(0x7f0000000340)=0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r3}, 0x18)
socket$kcm(0x21, 0x2, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000380)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
capset(&(0x7f0000000ac0)={0x19980330}, &(0x7f0000000180)={0x0, 0x10000, 0xc898, 0x800000, 0x0, 0x2})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x140, 0x0)

162.808727ms ago: executing program 4 (id=1568):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r1, 0x0, 0x1034}, 0x18)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r2, 0x0, 0x1000000000000000}, 0x18)
capget(&(0x7f0000000340)={0x19980330}, 0x0)

159.162998ms ago: executing program 5 (id=1569):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$cgroup_pid(r5, &(0x7f0000000000), 0xffffff98)
splice(r4, 0x0, r5, 0x0, 0x80, 0x6)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r2}, &(0x7f0000000580), &(0x7f00000005c0)=r3}, 0x20)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r7)
sendmsg$NL80211_CMD_GET_WIPHY(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0103000000000000000001000000080001001400000008000300", @ANYRES32=0x0, @ANYBLOB="0002000000b6515083"], 0x30}}, 0x44)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'lo\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYRES32=r6, @ANYRES32=r10, @ANYBLOB="dc1b1a7a84e17f94bd3add5789d48f8dc16f468afaa7c6446ae80a759a587eacae5cc8fcd5"], 0x28}, 0x1, 0x0, 0x0, 0x4004000}, 0x8040)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r11, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="380000000301010100000000000000000200000014001980080001000804000008"], 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r12=>0x0})
sendmsg$NL80211_CMD_DISASSOCIATE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001840)=ANY=[@ANYBLOB="c9130000", @ANYRES16=r8, @ANYBLOB="f05629bd7000fcdbdf252800000008000300", @ANYRES32=r12, @ANYBLOB="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"], 0x1390}, 0x1, 0x0, 0x0, 0x15}, 0x800)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r13 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r13, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r14, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r15 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r15, 0x0, 0x0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x2000759, &(0x7f0000000580)={[{@jqfmt_vfsold}, {@noblock_validity}, {@discard}, {@errors_remount}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xff}, 0x0}, {@noauto_da_alloc}, {@max_batch_time={'max_batch_time', 0x3d, 0xc}}, {@jqfmt_vfsv1}, {@nombcache}, {@lazytime}, {@resuid}, {@dax_always}, {@test_dummy_encryption_v1}, {@auto_da_alloc}, {@nodioread_nolock}, {@data_writeback}, {@noblock_validity}], [], 0x2c}, 0x0, 0x51b, &(0x7f0000001300)="$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")

0s ago: executing program 4 (id=1570):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@bloom_filter={0x1e, 0x0, 0x1, 0x7, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
r3 = syz_open_pts(r2, 0x0)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000180)={0xd, 0x8, 0xfffffffc, 0xb6b, 0x11, "aa00003986b9ee6bd231334c1a280d7ea400"})

kernel console output (not intermixed with test programs):

28 bytes leftover after parsing attributes in process `syz.5.693'.
[   82.129681][ T5715] loop3: detected capacity change from 0 to 128
[   82.141542][ T5715] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   82.159531][ T5715] ext4 filesystem being mounted at /139/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   82.276204][ T5719] netlink: 16 bytes leftover after parsing attributes in process `syz.5.699'.
[   82.285223][ T5719] netlink: 4 bytes leftover after parsing attributes in process `syz.5.699'.
[   82.465378][ T5733] netlink: 4 bytes leftover after parsing attributes in process `syz.1.704'.
[   82.543905][ T5739] netlink: 12 bytes leftover after parsing attributes in process `syz.1.705'.
[   82.796414][ T5739] loop1: detected capacity change from 0 to 512
[   82.807950][ T5739] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   82.854810][ T5739] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[   82.872630][ T5739] EXT4-fs (loop1): orphan cleanup on readonly fs
[   82.880262][ T5739] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.705: attempt to clear invalid blocks 1024 len 1
[   82.901298][ T5739] EXT4-fs (loop1): Remounting filesystem read-only
[   82.908431][ T5739] EXT4-fs (loop1): 1 truncate cleaned up
[   82.914965][ T5739] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[   82.967945][ T3309] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.998644][ T5750] netlink: 12 bytes leftover after parsing attributes in process `syz.2.708'.
[   83.020967][ T5753] loop3: detected capacity change from 0 to 128
[   83.031446][ T5753] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   83.045652][ T5753] ext4 filesystem being mounted at /141/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   83.060570][ T5759] loop2: detected capacity change from 0 to 736
[   83.140260][ T5766] netlink: 16 bytes leftover after parsing attributes in process `syz.2.712'.
[   83.331771][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[   83.624929][ T5790] loop4: detected capacity change from 0 to 128
[   83.648612][ T5790] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   83.663635][ T5790] ext4 filesystem being mounted at /163/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   83.864074][ T3309] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   83.905980][ T5794] loop3: detected capacity change from 0 to 512
[   83.917118][ T5794] EXT4-fs: Ignoring removed orlov option
[   83.946469][ T5794] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.959561][ T5794] ext4 filesystem being mounted at /142/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   83.990313][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.133672][ T5802] loop1: detected capacity change from 0 to 128
[   84.146801][ T5802] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   84.159892][ T5802] ext4 filesystem being mounted at /139/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   84.314817][ T3299] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   84.354919][ T5814] FAULT_INJECTION: forcing a failure.
[   84.354919][ T5814] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.368248][ T5814] CPU: 0 UID: 0 PID: 5814 Comm: syz.5.727 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[   84.368279][ T5814] Tainted: [W]=WARN
[   84.368340][ T5814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.368351][ T5814] Call Trace:
[   84.368358][ T5814]  <TASK>
[   84.368364][ T5814]  __dump_stack+0x1d/0x30
[   84.368384][ T5814]  dump_stack_lvl+0xe8/0x140
[   84.368503][ T5814]  dump_stack+0x15/0x1b
[   84.368519][ T5814]  should_fail_ex+0x265/0x280
[   84.368559][ T5814]  should_fail+0xb/0x20
[   84.368575][ T5814]  should_fail_usercopy+0x1a/0x20
[   84.368817][ T5814]  _copy_to_iter+0xcf/0xe30
[   84.368915][ T5814]  ? __account_obj_stock+0x211/0x350
[   84.368943][ T5814]  ? do_user_addr_fault+0xdaf/0x1090
[   84.368972][ T5814]  ? obj_cgroup_charge_account+0x122/0x1a0
[   84.369044][ T5814]  ? __pfx_simple_copy_to_iter+0x10/0x10
[   84.369065][ T5814]  __skb_datagram_iter+0xc6/0x690
[   84.369124][ T5814]  ? __pfx_simple_copy_to_iter+0x10/0x10
[   84.369180][ T5814]  skb_copy_datagram_iter+0x3d/0x110
[   84.369200][ T5814]  ip_recv_error+0xc6/0x610
[   84.369291][ T5814]  ? __rcu_read_unlock+0x4f/0x70
[   84.369329][ T5814]  ? avc_has_perm_noaudit+0x1b1/0x200
[   84.369354][ T5814]  udp_recvmsg+0x439/0xb30
[   84.369377][ T5814]  ? selinux_socket_recvmsg+0x175/0x1b0
[   84.369486][ T5814]  ? __pfx_udp_recvmsg+0x10/0x10
[   84.369587][ T5814]  inet_recvmsg+0x143/0x290
[   84.369610][ T5814]  sock_recvmsg+0xf6/0x170
[   84.369650][ T5814]  ____sys_recvmsg+0xf5/0x280
[   84.369684][ T5814]  ___sys_recvmsg+0x11f/0x370
[   84.369711][ T5814]  do_recvmmsg+0x1ef/0x540
[   84.369739][ T5814]  ? fput+0x8f/0xc0
[   84.369846][ T5814]  __x64_sys_recvmmsg+0xe5/0x170
[   84.369908][ T5814]  x64_sys_call+0x27a6/0x2ff0
[   84.369965][ T5814]  do_syscall_64+0xd2/0x200
[   84.369990][ T5814]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.370018][ T5814]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.370044][ T5814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.370096][ T5814] RIP: 0033:0x7fc70772ebe9
[   84.370112][ T5814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.370131][ T5814] RSP: 002b:00007fc70616e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   84.370150][ T5814] RAX: ffffffffffffffda RBX: 00007fc707956090 RCX: 00007fc70772ebe9
[   84.370163][ T5814] RDX: 000000000291962b RSI: 0000200000000040 RDI: 0000000000000006
[   84.370176][ T5814] RBP: 00007fc70616e090 R08: 0000000000000000 R09: 0000000000000000
[   84.370204][ T5814] R10: 45833af92e4b39ff R11: 0000000000000246 R12: 0000000000000001
[   84.370217][ T5814] R13: 00007fc707956128 R14: 00007fc707956090 R15: 00007fff4ec76998
[   84.370233][ T5814]  </TASK>
[   84.674981][ T3300] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   84.749674][ T5818] IPVS: Error joining to the multicast group
[   84.833940][ T5832] loop4: detected capacity change from 0 to 512
[   84.841100][ T5832] EXT4-fs: Ignoring removed orlov option
[   84.857618][ T5832] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.882947][ T5832] ext4 filesystem being mounted at /166/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   84.935094][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.117535][   T29] kauditd_printk_skb: 251 callbacks suppressed
[   85.117593][   T29] audit: type=1400 audit(1755553797.914:5428): avc:  denied  { read write } for  pid=5848 comm="syz.4.739" name="rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   85.148244][   T29] audit: type=1400 audit(1755553797.914:5429): avc:  denied  { open } for  pid=5848 comm="syz.4.739" path="/dev/rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   85.174422][   T29] audit: type=1400 audit(1755553797.964:5430): avc:  denied  { getopt } for  pid=5848 comm="syz.4.739" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   85.311111][   T29] audit: type=1400 audit(1755553798.104:5431): avc:  denied  { load_policy } for  pid=5855 comm="syz.5.743" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   85.333349][ T5856] SELinux:  policydb version 4376 does not match my version range 15-35
[   85.342037][ T5856] SELinux: failed to load policy
[   85.348805][   T29] audit: type=1400 audit(1755553798.144:5432): avc:  denied  { mounton } for  pid=5855 comm="syz.5.743" path="mnt:[4026532373]" dev="nsfs" ino=4026532373 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   85.401488][   T29] audit: type=1400 audit(1755553798.194:5433): avc:  denied  { write } for  pid=5859 comm="syz.5.744" name="001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   85.427235][ T5861] hub 6-0:1.0: USB hub found
[   85.427299][ T5858] loop1: detected capacity change from 0 to 128
[   85.432220][ T5861] hub 6-0:1.0: 8 ports detected
[   85.472890][ T5858] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   85.495350][ T5865] loop5: detected capacity change from 0 to 512
[   85.504711][ T5865] EXT4-fs: Ignoring removed orlov option
[   85.511665][ T5858] ext4 filesystem being mounted at /143/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   85.543411][ T5865] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.557806][ T5865] ext4 filesystem being mounted at /90/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.585712][   T29] audit: type=1326 audit(1755553798.384:5434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5857 comm="syz.1.740" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3b1574ebe9 code=0x0
[   85.612241][ T4394] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.712621][   T29] audit: type=1400 audit(1755553798.504:5435): avc:  denied  { wake_alarm } for  pid=5875 comm="syz.5.749" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   85.842566][   T29] audit: type=1326 audit(1755553798.634:5436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.3.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   85.880651][   T29] audit: type=1326 audit(1755553798.664:5437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.3.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   86.020683][ T5887] loop3: detected capacity change from 0 to 512
[   86.035472][ T5887] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   86.060479][ T5887] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[   86.082195][ T5887] EXT4-fs (loop3): orphan cleanup on readonly fs
[   86.108412][ T5892] loop4: detected capacity change from 0 to 512
[   86.115275][ T5887] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.752: attempt to clear invalid blocks 1024 len 1
[   86.118140][ T5892] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   86.140780][ T5887] EXT4-fs (loop3): Remounting filesystem read-only
[   86.171341][ T5887] EXT4-fs (loop3): 1 truncate cleaned up
[   86.177485][ T5892] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[   86.185977][ T5892] EXT4-fs (loop4): orphan cleanup on readonly fs
[   86.202081][ T5892] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.754: attempt to clear invalid blocks 1024 len 1
[   86.216462][ T5887] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[   86.229438][ T5892] EXT4-fs (loop4): Remounting filesystem read-only
[   86.238376][ T5906] loop5: detected capacity change from 0 to 512
[   86.239746][ T5892] EXT4-fs (loop4): 1 truncate cleaned up
[   86.245849][ T5906] EXT4-fs: Ignoring removed orlov option
[   86.260613][ T5892] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[   86.275751][ T3299] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   86.312243][ T5906] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.354373][ T5906] ext4 filesystem being mounted at /97/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.415960][ T4394] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.732020][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[   86.824399][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[   86.864371][ T5923] loop4: detected capacity change from 0 to 128
[   86.935673][ T5923] __nla_validate_parse: 17 callbacks suppressed
[   86.935690][ T5923] netlink: 28 bytes leftover after parsing attributes in process `syz.4.764'.
[   86.951187][ T5923] netlink: 28 bytes leftover after parsing attributes in process `syz.4.764'.
[   87.307468][ T5937] loop5: detected capacity change from 0 to 128
[   87.342620][ T5937] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   87.368605][ T5942] SELinux:  policydb version 4376 does not match my version range 15-35
[   87.378780][ T5937] ext4 filesystem being mounted at /99/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   87.390007][ T5942] SELinux: failed to load policy
[   87.648144][ T5947] netlink: 12 bytes leftover after parsing attributes in process `syz.1.773'.
[   88.211999][ T4394] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   88.626547][ T5957] netlink: 4 bytes leftover after parsing attributes in process `syz.5.776'.
[   88.719039][ T5959] loop5: detected capacity change from 0 to 128
[   88.807556][ T5959] netlink: 28 bytes leftover after parsing attributes in process `syz.5.777'.
[   88.816678][ T5959] netlink: 28 bytes leftover after parsing attributes in process `syz.5.777'.
[   89.035368][ T5962] netlink: 4 bytes leftover after parsing attributes in process `syz.3.778'.
[   89.147508][ T5963] loop1: detected capacity change from 0 to 8192
[   89.390406][ T5984] netlink: 12 bytes leftover after parsing attributes in process `syz.2.784'.
[   90.171198][   T29] kauditd_printk_skb: 120 callbacks suppressed
[   90.171213][   T29] audit: type=1326 audit(1755553802.964:5558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.285939][   T29] audit: type=1326 audit(1755553803.004:5559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.310442][   T29] audit: type=1326 audit(1755553803.004:5560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.334402][   T29] audit: type=1326 audit(1755553803.004:5561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.358151][   T29] audit: type=1326 audit(1755553803.004:5562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.381920][   T29] audit: type=1326 audit(1755553803.004:5563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.405529][   T29] audit: type=1326 audit(1755553803.004:5564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.429077][   T29] audit: type=1326 audit(1755553803.014:5565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.453281][   T29] audit: type=1326 audit(1755553803.014:5566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.478735][   T29] audit: type=1326 audit(1755553803.014:5567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5988 comm="syz.3.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[   90.742530][ T6002] SELinux:  OOM in selnl_notify
[   90.777679][ T6003] loop3: detected capacity change from 0 to 512
[   90.823449][ T6003] ext4: Unknown parameter 'smackfsfloor'
[   91.227717][ T6017] netlink: 108 bytes leftover after parsing attributes in process `syz.1.801'.
[   91.262158][ T6017] loop1: detected capacity change from 0 to 736
[   91.834455][ T6028] loop3: detected capacity change from 0 to 8192
[   91.867901][ T6037] FAULT_INJECTION: forcing a failure.
[   91.867901][ T6037] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   91.881412][ T6037] CPU: 0 UID: 0 PID: 6037 Comm: syz.2.811 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[   91.881459][ T6037] Tainted: [W]=WARN
[   91.881466][ T6037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   91.881548][ T6037] Call Trace:
[   91.881556][ T6037]  <TASK>
[   91.881564][ T6037]  __dump_stack+0x1d/0x30
[   91.881585][ T6037]  dump_stack_lvl+0xe8/0x140
[   91.881601][ T6037]  dump_stack+0x15/0x1b
[   91.881616][ T6037]  should_fail_ex+0x265/0x280
[   91.881637][ T6037]  should_fail+0xb/0x20
[   91.881664][ T6037]  should_fail_usercopy+0x1a/0x20
[   91.881685][ T6037]  _copy_to_user+0x20/0xa0
[   91.881713][ T6037]  simple_read_from_buffer+0xb5/0x130
[   91.881800][ T6037]  proc_fail_nth_read+0x10e/0x150
[   91.881835][ T6037]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   91.881858][ T6037]  vfs_read+0x1a8/0x770
[   91.881875][ T6037]  ? __set_next_task_fair+0x5b/0x150
[   91.881924][ T6037]  ? __rcu_read_unlock+0x4f/0x70
[   91.881944][ T6037]  ? __fget_files+0x184/0x1c0
[   91.881967][ T6037]  ? finish_task_switch+0xad/0x2b0
[   91.881989][ T6037]  ksys_read+0xda/0x1a0
[   91.882060][ T6037]  __x64_sys_read+0x40/0x50
[   91.882079][ T6037]  x64_sys_call+0x27bc/0x2ff0
[   91.882172][ T6037]  do_syscall_64+0xd2/0x200
[   91.882198][ T6037]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   91.882221][ T6037]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   91.882243][ T6037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.882329][ T6037] RIP: 0033:0x7f4eff29d5fc
[   91.882344][ T6037] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   91.882360][ T6037] RSP: 002b:00007f4efdcff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   91.882378][ T6037] RAX: ffffffffffffffda RBX: 00007f4eff4c5fa0 RCX: 00007f4eff29d5fc
[   91.882391][ T6037] RDX: 000000000000000f RSI: 00007f4efdcff0a0 RDI: 0000000000000005
[   91.882473][ T6037] RBP: 00007f4efdcff090 R08: 0000000000000000 R09: 0000000000000000
[   91.882483][ T6037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.882495][ T6037] R13: 00007f4eff4c6038 R14: 00007f4eff4c5fa0 R15: 00007ffe8b709b78
[   91.882513][ T6037]  </TASK>
[   92.207505][ T6050] loop2: detected capacity change from 0 to 1024
[   92.235023][ T6050] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.585648][ T6063] loop3: detected capacity change from 0 to 128
[   92.608987][ T6063] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   92.642742][ T6063] ext4 filesystem being mounted at /161/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   92.782797][ T6068] netlink: 'syz.1.820': attribute type 1 has an invalid length.
[   92.790765][ T6068] netlink: 224 bytes leftover after parsing attributes in process `syz.1.820'.
[   92.811062][ T6067] loop1: detected capacity change from 0 to 512
[   92.975038][ T6077] loop1: detected capacity change from 0 to 512
[   93.059352][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.135028][ T6087] loop1: detected capacity change from 0 to 128
[   93.149816][ T6088] FAULT_INJECTION: forcing a failure.
[   93.149816][ T6088] name failslab, interval 1, probability 0, space 0, times 0
[   93.162604][ T6088] CPU: 0 UID: 0 PID: 6088 Comm: syz.2.825 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[   93.162708][ T6088] Tainted: [W]=WARN
[   93.162714][ T6088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   93.162726][ T6088] Call Trace:
[   93.162734][ T6088]  <TASK>
[   93.162743][ T6088]  __dump_stack+0x1d/0x30
[   93.162767][ T6088]  dump_stack_lvl+0xe8/0x140
[   93.162814][ T6088]  dump_stack+0x15/0x1b
[   93.162828][ T6088]  should_fail_ex+0x265/0x280
[   93.162916][ T6088]  should_failslab+0x8c/0xb0
[   93.162943][ T6088]  kmem_cache_alloc_noprof+0x50/0x310
[   93.162969][ T6088]  ? __send_signal_locked+0x154/0x760
[   93.163053][ T6088]  __send_signal_locked+0x154/0x760
[   93.163082][ T6088]  send_signal_locked+0x34e/0x3c0
[   93.163185][ T6088]  do_send_sig_info+0x9f/0xf0
[   93.163216][ T6088]  __se_sys_tkill+0x136/0x190
[   93.163244][ T6088]  __x64_sys_tkill+0x31/0x40
[   93.163266][ T6088]  x64_sys_call+0x2e4f/0x2ff0
[   93.163338][ T6088]  do_syscall_64+0xd2/0x200
[   93.163368][ T6088]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   93.163433][ T6088]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   93.163456][ T6088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.163478][ T6088] RIP: 0033:0x7f4eff29ebe9
[   93.163494][ T6088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.163512][ T6088] RSP: 002b:00007f4efdcde038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c8
[   93.163533][ T6088] RAX: ffffffffffffffda RBX: 00007f4eff4c6090 RCX: 00007f4eff29ebe9
[   93.163547][ T6088] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 000000000000018e
[   93.163561][ T6088] RBP: 00007f4efdcde090 R08: 0000000000000000 R09: 0000000000000000
[   93.163574][ T6088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.163642][ T6088] R13: 00007f4eff4c6128 R14: 00007f4eff4c6090 R15: 00007ffe8b709b78
[   93.163657][ T6088]  </TASK>
[   93.368802][ T6085] loop2: detected capacity change from 0 to 512
[   93.471801][ T3309] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   93.482062][ T6087] netlink: 28 bytes leftover after parsing attributes in process `syz.1.826'.
[   93.490996][ T6087] netlink: 28 bytes leftover after parsing attributes in process `syz.1.826'.
[   93.515491][ T6092] loop2: detected capacity change from 0 to 128
[   93.568729][ T6092] netlink: 28 bytes leftover after parsing attributes in process `syz.2.828'.
[   93.577911][ T6092] netlink: 28 bytes leftover after parsing attributes in process `syz.2.828'.
[   93.777026][ T6107] netlink: 8 bytes leftover after parsing attributes in process `syz.5.833'.
[   93.872432][ T6113] netlink: 108 bytes leftover after parsing attributes in process `syz.1.835'.
[   93.890624][ T6113] loop1: detected capacity change from 0 to 736
[   93.926775][ T6115] netlink: 16 bytes leftover after parsing attributes in process `syz.2.837'.
[   93.936056][ T6115] netlink: 4 bytes leftover after parsing attributes in process `syz.2.837'.
[   94.412433][ T6139] loop5: detected capacity change from 0 to 1024
[   94.427805][ T6139] EXT4-fs: Ignoring removed nobh option
[   94.433755][ T6139] EXT4-fs: Ignoring removed bh option
[   95.175537][ T6152] netlink: 12 bytes leftover after parsing attributes in process `syz.1.848'.
[   95.223312][ T6152] loop1: detected capacity change from 0 to 512
[   95.269916][ T6152] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   95.280511][ T6156] loop3: detected capacity change from 0 to 128
[   95.290909][ T6152] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[   95.304372][ T6152] EXT4-fs (loop1): orphan cleanup on readonly fs
[   95.314782][ T6152] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.848: attempt to clear invalid blocks 1024 len 1
[   95.344358][ T6152] EXT4-fs (loop1): Remounting filesystem read-only
[   95.358931][ T6152] EXT4-fs (loop1): 1 truncate cleaned up
[   96.092194][   T29] kauditd_printk_skb: 491 callbacks suppressed
[   96.092214][   T29] audit: type=1326 audit(1755553808.950:6059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   96.134370][   T29] audit: type=1326 audit(1755553808.950:6060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   96.159231][   T29] audit: type=1326 audit(1755553808.950:6061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   96.184243][   T29] audit: type=1326 audit(1755553808.950:6062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   96.208421][   T29] audit: type=1326 audit(1755553808.950:6063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   96.233175][   T29] audit: type=1326 audit(1755553808.950:6064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   96.262784][   T29] audit: type=1326 audit(1755553808.950:6065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   96.293889][   T29] audit: type=1326 audit(1755553808.950:6066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   96.319281][   T29] audit: type=1326 audit(1755553808.950:6067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   96.344652][   T29] audit: type=1326 audit(1755553808.950:6068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6169 comm="syz.5.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[   97.240405][ T6231] loop2: detected capacity change from 0 to 736
[   97.519307][ T6243] veth1_to_bond: entered allmulticast mode
[   97.555471][ T6218] veth1_to_bond: left allmulticast mode
[   97.631606][ T6246] program syz.1.886 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.855971][ T6253] loop1: detected capacity change from 0 to 512
[   97.865061][ T6253] ext4: Unknown parameter 'smackfsfloor'
[   97.963335][ T6259] __nla_validate_parse: 12 callbacks suppressed
[   97.963353][ T6259] netlink: 16 bytes leftover after parsing attributes in process `syz.5.891'.
[   97.978892][ T6259] netlink: 4 bytes leftover after parsing attributes in process `syz.5.891'.
[   98.113854][ T6267] loop5: detected capacity change from 0 to 128
[   98.167198][ T6267] netlink: 28 bytes leftover after parsing attributes in process `syz.5.894'.
[   98.176341][ T6267] netlink: 28 bytes leftover after parsing attributes in process `syz.5.894'.
[   98.338068][ T6273] loop2: detected capacity change from 0 to 512
[   98.345655][ T6273] EXT4-fs: Ignoring removed orlov option
[   98.368836][ T6273] EXT4-fs mount: 4 callbacks suppressed
[   98.368852][ T6273] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.389939][ T6273] ext4 filesystem being mounted at /168/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   98.445821][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.504573][ T6284] program syz.2.899 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   98.700020][ T6303] netlink: 16 bytes leftover after parsing attributes in process `syz.4.910'.
[   98.708986][ T6303] netlink: 4 bytes leftover after parsing attributes in process `syz.4.910'.
[   98.752126][ T6312] netlink: 'syz.1.909': attribute type 13 has an invalid length.
[   98.802568][ T6315] loop2: detected capacity change from 0 to 764
[   99.204443][ T3722] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.213519][ T3722] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.243874][ T3722] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.271178][ T3722] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.343699][ T6330] loop4: detected capacity change from 0 to 512
[   99.354492][ T6330] ext4: Unknown parameter 'smackfsfloor'
[   99.460498][ T6336] netlink: 16 bytes leftover after parsing attributes in process `syz.5.919'.
[   99.476868][ T6336] netlink: 4 bytes leftover after parsing attributes in process `syz.5.919'.
[   99.584766][ T6353] loop1: detected capacity change from 0 to 512
[   99.630265][ T6358] netlink: 12 bytes leftover after parsing attributes in process `syz.2.927'.
[   99.682578][ T6358] netlink: 16 bytes leftover after parsing attributes in process `syz.2.927'.
[   99.693044][ T6362] FAULT_INJECTION: forcing a failure.
[   99.693044][ T6362] name failslab, interval 1, probability 0, space 0, times 0
[   99.706277][ T6362] CPU: 1 UID: 0 PID: 6362 Comm: syz.1.929 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[   99.706352][ T6362] Tainted: [W]=WARN
[   99.706359][ T6362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   99.706372][ T6362] Call Trace:
[   99.706378][ T6362]  <TASK>
[   99.706386][ T6362]  __dump_stack+0x1d/0x30
[   99.706409][ T6362]  dump_stack_lvl+0xe8/0x140
[   99.706428][ T6362]  dump_stack+0x15/0x1b
[   99.706442][ T6362]  should_fail_ex+0x265/0x280
[   99.706484][ T6362]  should_failslab+0x8c/0xb0
[   99.706526][ T6362]  __kmalloc_noprof+0xa5/0x3e0
[   99.706554][ T6362]  ? security_prepare_creds+0x52/0x120
[   99.706612][ T6362]  security_prepare_creds+0x52/0x120
[   99.706631][ T6362]  prepare_creds+0x34a/0x4c0
[   99.706651][ T6362]  copy_creds+0x8f/0x3f0
[   99.706674][ T6362]  copy_process+0x658/0x2000
[   99.706698][ T6362]  ? kstrtouint+0x76/0xc0
[   99.706721][ T6362]  ? __rcu_read_unlock+0x4f/0x70
[   99.706809][ T6362]  kernel_clone+0x16c/0x5c0
[   99.706835][ T6362]  ? vfs_write+0x7e8/0x960
[   99.706999][ T6362]  __x64_sys_clone+0xe6/0x120
[   99.707030][ T6362]  x64_sys_call+0x119c/0x2ff0
[   99.707049][ T6362]  do_syscall_64+0xd2/0x200
[   99.707075][ T6362]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   99.707173][ T6362]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   99.707204][ T6362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.707228][ T6362] RIP: 0033:0x7f3b1574ebe9
[   99.707245][ T6362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.707271][ T6362] RSP: 002b:00007f3b141b6fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   99.707291][ T6362] RAX: ffffffffffffffda RBX: 00007f3b15975fa0 RCX: 00007f3b1574ebe9
[   99.707305][ T6362] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[   99.707371][ T6362] RBP: 00007f3b141b7090 R08: 0000000000000000 R09: 0000000000000000
[   99.707384][ T6362] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   99.707398][ T6362] R13: 00007f3b15976038 R14: 00007f3b15975fa0 R15: 00007ffdbc75c7c8
[   99.707417][ T6362]  </TASK>
[   99.935195][ T6365] loop2: detected capacity change from 0 to 512
[   99.944022][ T6365] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   99.965958][ T6365] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[   99.977476][ T6365] EXT4-fs (loop2): orphan cleanup on readonly fs
[   99.992894][ T6371] loop4: detected capacity change from 0 to 512
[   99.994628][ T6365] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #11: comm syz.2.927: attempt to clear invalid blocks 1024 len 1
[  100.015155][ T6365] EXT4-fs (loop2): Remounting filesystem read-only
[  100.037659][ T6365] EXT4-fs (loop2): 1 truncate cleaned up
[  100.043752][ T6365] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  100.067651][ T6371] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  100.096622][ T6371] EXT4-fs (loop4): 1 truncate cleaned up
[  100.124696][ T6371] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.140062][ T6377] loop1: detected capacity change from 0 to 128
[  100.148101][ T6377] EXT4-fs: Ignoring removed nobh option
[  100.172462][ T6377] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  100.199217][ T6377] ext4 filesystem being mounted at /193/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  100.223074][ T6371] EXT4-fs error (device loop4): ext4_find_dest_de:2052: inode #2: block 13: comm syz.4.931: bad entry in directory: rec_len % 4 != 0 - offset=12, inode=4294574082, rec_len=65535, size=1024 fake=1
[  100.279110][ T3299] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  100.292325][ T6371] EXT4-fs (loop4): Remounting filesystem read-only
[  100.302760][ T6386] loop3: detected capacity change from 0 to 512
[  100.312235][ T6386] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  100.326898][ T6386] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  100.341540][ T6386] EXT4-fs (loop3): orphan cleanup on readonly fs
[  100.354954][ T6386] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.938: attempt to clear invalid blocks 1024 len 1
[  100.375510][ T6386] EXT4-fs (loop3): Remounting filesystem read-only
[  100.383066][ T6386] EXT4-fs (loop3): 1 truncate cleaned up
[  100.389816][ T6386] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  100.421170][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  100.480408][ T6394] loop1: detected capacity change from 0 to 32768
[  100.524907][ T5443]  loop1: p1 p3 < >
[  100.532181][ T6394]  loop1: p1 p3 < >
[  100.630232][ T5443] udevd[5443]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  100.630268][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  100.658846][ T5443] udevd[5443]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  100.669262][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  100.758789][ T6417] loop1: detected capacity change from 0 to 1024
[  100.774805][ T6417] ext4: Unknown parameter 'nodGPL'
[  100.806836][ T6416] loop1: detected capacity change from 0 to 8192
[  100.887198][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.972501][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  100.994432][ T6433] loop1: detected capacity change from 0 to 128
[  101.009938][ T6433] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  101.024818][ T6433] ext4 filesystem being mounted at /204/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  101.050345][ T6439] loop5: detected capacity change from 0 to 512
[  101.057907][ T6439] EXT4-fs: Ignoring removed orlov option
[  101.120736][   T29] kauditd_printk_skb: 514 callbacks suppressed
[  101.120750][   T29] audit: type=1400 audit(1755553813.980:6583): avc:  denied  { setopt } for  pid=6432 comm="syz.1.951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  101.147080][   T29] audit: type=1326 audit(1755553813.980:6584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6432 comm="syz.1.951" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3b1574ebe9 code=0x0
[  101.172204][ T6439] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.205216][ T6439] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  101.239151][   T29] audit: type=1400 audit(1755553814.100:6585): avc:  denied  { write } for  pid=6438 comm="syz.5.953" name="cgroup.controllers" dev="loop5" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  101.281761][   T29] audit: type=1400 audit(1755553814.140:6586): avc:  denied  { mount } for  pid=6443 comm="syz.3.955" name="/" dev="configfs" ino=2138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  101.308885][   T29] audit: type=1400 audit(1755553814.160:6587): avc:  denied  { ioctl } for  pid=6438 comm="syz.5.953" path="/139/bus/cpuset.effective_mems" dev="loop5" ino=19 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  101.334995][   T29] audit: type=1400 audit(1755553814.170:6588): avc:  denied  { search } for  pid=6443 comm="syz.3.955" name="/" dev="configfs" ino=2138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  101.357636][   T29] audit: type=1400 audit(1755553814.170:6589): avc:  denied  { search } for  pid=6443 comm="syz.3.955" name="/" dev="configfs" ino=2138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  101.380751][   T29] audit: type=1400 audit(1755553814.170:6590): avc:  denied  { read open } for  pid=6443 comm="syz.3.955" path="/" dev="configfs" ino=2138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  101.424612][ T4394] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.547252][   T29] audit: type=1326 audit(1755553814.410:6591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6460 comm="syz.3.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  101.571123][   T29] audit: type=1326 audit(1755553814.410:6592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6460 comm="syz.3.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  101.624587][ T6467] vxcan3: entered promiscuous mode
[  101.629958][ T6467] vxcan3: entered allmulticast mode
[  101.635439][ T6464] loop5: detected capacity change from 0 to 512
[  101.643200][ T6464] journal_path: Non-blockdev passed as './bus'
[  101.649681][ T6464] EXT4-fs: error: could not find journal device path
[  101.672156][ T6464] batadv1: entered promiscuous mode
[  101.801225][ T6487] loop2: detected capacity change from 0 to 512
[  101.808347][ T6487] EXT4-fs: Ignoring removed orlov option
[  101.844026][ T6487] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.858580][ T6487] ext4 filesystem being mounted at /181/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  101.909572][ T3299] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  101.931446][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.250737][ T6502] loop1: detected capacity change from 0 to 512
[  102.282361][ T6502] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  102.293726][ T6502] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  102.302231][ T6502] EXT4-fs (loop1): orphan cleanup on readonly fs
[  102.310263][ T6502] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.972: attempt to clear invalid blocks 1024 len 1
[  102.323892][ T6502] EXT4-fs (loop1): Remounting filesystem read-only
[  102.332048][ T6502] EXT4-fs (loop1): 1 truncate cleaned up
[  102.338651][ T6502] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  102.752018][ T6524] loop4: detected capacity change from 0 to 128
[  102.773119][ T6524] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  102.797050][ T6524] ext4 filesystem being mounted at /190/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  102.811048][ T6521] hub 9-0:1.0: USB hub found
[  102.823424][ T6529] loop5: detected capacity change from 0 to 512
[  102.825209][ T6521] hub 9-0:1.0: 8 ports detected
[  102.830621][ T6529] EXT4-fs: Ignoring removed orlov option
[  102.865269][ T6529] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.879522][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  102.897219][ T6529] ext4 filesystem being mounted at /142/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  102.941664][ T6538] loop1: detected capacity change from 0 to 736
[  103.005188][ T4394] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.072122][ T6556] FAULT_INJECTION: forcing a failure.
[  103.072122][ T6556] name failslab, interval 1, probability 0, space 0, times 0
[  103.085114][ T6556] CPU: 1 UID: 0 PID: 6556 Comm: syz.3.989 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  103.085150][ T6556] Tainted: [W]=WARN
[  103.085158][ T6556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  103.085171][ T6556] Call Trace:
[  103.085178][ T6556]  <TASK>
[  103.085186][ T6556]  __dump_stack+0x1d/0x30
[  103.085276][ T6556]  dump_stack_lvl+0xe8/0x140
[  103.085294][ T6556]  dump_stack+0x15/0x1b
[  103.085312][ T6556]  should_fail_ex+0x265/0x280
[  103.085331][ T6556]  should_failslab+0x8c/0xb0
[  103.085377][ T6556]  kmem_cache_alloc_node_noprof+0x57/0x320
[  103.085408][ T6556]  ? __alloc_skb+0x101/0x320
[  103.085440][ T6556]  ? skb_free_head+0x87/0x150
[  103.085482][ T6556]  __alloc_skb+0x101/0x320
[  103.085509][ T6556]  tipc_msg_reverse+0x1c0/0x4c0
[  103.085528][ T6556]  tipc_sk_respond+0xa2/0x270
[  103.085555][ T6556]  __tipc_shutdown+0xa70/0xbf0
[  103.085617][ T6556]  ? __pfx_woken_wake_function+0x10/0x10
[  103.085716][ T6556]  tipc_release+0x67/0xd10
[  103.085740][ T6556]  ? __memcg_slab_free_hook+0xbc/0x230
[  103.085771][ T6556]  sock_close+0x6b/0x150
[  103.085814][ T6556]  ? __pfx_sock_close+0x10/0x10
[  103.085837][ T6556]  __fput+0x298/0x650
[  103.085880][ T6556]  ____fput+0x1c/0x30
[  103.085917][ T6556]  task_work_run+0x12e/0x1a0
[  103.085984][ T6556]  exit_to_user_mode_loop+0xe4/0x100
[  103.086004][ T6556]  do_syscall_64+0x1d6/0x200
[  103.086027][ T6556]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  103.086048][ T6556]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  103.086122][ T6556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.086144][ T6556] RIP: 0033:0x7f083266ebe9
[  103.086166][ T6556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.086195][ T6556] RSP: 002b:00007f08310b6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  103.086213][ T6556] RAX: 0000000000000000 RBX: 00007f0832896090 RCX: 00007f083266ebe9
[  103.086224][ T6556] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000005
[  103.086309][ T6556] RBP: 00007f08310b6090 R08: 0000000000000000 R09: 0000000000000000
[  103.086320][ T6556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.086333][ T6556] R13: 00007f0832896128 R14: 00007f0832896090 R15: 00007ffd57770b28
[  103.086348][ T6556]  </TASK>
[  103.392600][ T6560] __nla_validate_parse: 15 callbacks suppressed
[  103.392627][ T6560] netlink: 12 bytes leftover after parsing attributes in process `syz.3.994'.
[  103.417768][ T6560] netlink: 16 bytes leftover after parsing attributes in process `syz.3.994'.
[  103.452435][ T6560] loop3: detected capacity change from 0 to 512
[  103.465454][ T6560] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  103.484659][ T6560] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  103.493078][ T6560] EXT4-fs (loop3): orphan cleanup on readonly fs
[  103.512763][ T6560] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.994: attempt to clear invalid blocks 1024 len 1
[  103.527296][ T6560] EXT4-fs (loop3): Remounting filesystem read-only
[  103.541549][ T6560] EXT4-fs (loop3): 1 truncate cleaned up
[  103.548022][ T6560] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  103.573467][ T6576] loop2: detected capacity change from 0 to 512
[  103.599798][ T6576] EXT4-fs: Ignoring removed orlov option
[  103.600705][ T3300] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  103.637052][ T6576] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.652036][ T6576] ext4 filesystem being mounted at /191/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  103.736192][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.810888][ T6602] loop4: detected capacity change from 0 to 512
[  103.822362][ T6602] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  103.831640][ T6602] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  103.842045][ T6602] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  103.884069][ T6602] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  103.892428][ T6602] System zones: 0-2, 18-18, 34-35
[  103.898261][ T6602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.920162][ T6613] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1007'.
[  103.929444][ T6613] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1007'.
[  103.940576][ T6587] EXT4-fs error (device loop4): ext4_generic_delete_entry:2668: inode #2: block 3: comm syz.4.1004: bad entry in directory: inode out of bounds - offset=24, inode=134217739, rec_len=20, size=2048 fake=0
[  103.963342][ T6587] EXT4-fs error (device loop4) in ext4_delete_entry:2739: Corrupt filesystem
[  103.975118][ T6587] EXT4-fs warning (device loop4): ext4_rename_delete:3735: inode #2: comm syz.4.1004: Deleting old file: nlink 4, error=-117
[  104.034392][ T6618] loop1: detected capacity change from 0 to 128
[  104.047420][ T6618] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  104.103415][ T6618] ext4 filesystem being mounted at /214/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  104.136167][ T6625] loop5: detected capacity change from 0 to 512
[  104.162442][ T6625] EXT4-fs: Ignoring removed orlov option
[  104.192339][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  104.227316][ T6625] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.244344][ T6625] ext4 filesystem being mounted at /153/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  104.352176][ T4394] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.581898][ T6653] 9pnet_fd: Insufficient options for proto=fd
[  104.610079][ T6657] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1029'.
[  104.619719][ T6657] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1029'.
[  104.653419][ T6657] loop3: detected capacity change from 0 to 512
[  104.667837][ T6657] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  104.696640][ T6657] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  104.704943][ T6657] EXT4-fs (loop3): orphan cleanup on readonly fs
[  104.711812][ T6657] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.1029: attempt to clear invalid blocks 1024 len 1
[  104.726998][ T6657] EXT4-fs (loop3): Remounting filesystem read-only
[  104.733862][ T6657] EXT4-fs (loop3): 1 truncate cleaned up
[  104.751539][ T6657] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  104.871213][ T3299] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  104.917648][ T6662] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1031'.
[  104.951973][ T6666] loop1: detected capacity change from 0 to 512
[  104.960772][ T6666] EXT4-fs: Ignoring removed orlov option
[  104.986174][ T6666] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.998956][ T6666] ext4 filesystem being mounted at /216/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.042203][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.172668][ T6672] loop1: detected capacity change from 0 to 512
[  105.180746][ T6672] ext4: Unknown parameter 'smackfsfloor'
[  105.397350][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  105.666192][ T6694] loop2: detected capacity change from 0 to 128
[  105.707829][ T6694] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  105.764497][ T6694] ext4 filesystem being mounted at /201/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  105.798649][ T6697] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1042'.
[  105.832212][ T6701] loop3: detected capacity change from 0 to 512
[  105.839506][ T6701] EXT4-fs: Ignoring removed orlov option
[  105.868811][ T6701] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.898684][ T6701] ext4 filesystem being mounted at /212/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.985208][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.052458][ T6713] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1046'.
[  106.062268][ T6713] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1046'.
[  106.210180][   T29] kauditd_printk_skb: 529 callbacks suppressed
[  106.210198][   T29] audit: type=1326 audit(1755553819.070:7122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.268878][   T29] audit: type=1326 audit(1755553819.070:7123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.294190][   T29] audit: type=1326 audit(1755553819.070:7124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.318618][   T29] audit: type=1326 audit(1755553819.070:7125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.344136][   T29] audit: type=1326 audit(1755553819.070:7126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.371028][   T29] audit: type=1326 audit(1755553819.070:7127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.397987][   T29] audit: type=1326 audit(1755553819.070:7128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.422720][   T29] audit: type=1326 audit(1755553819.070:7129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.447423][   T29] audit: type=1326 audit(1755553819.070:7130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.472821][   T29] audit: type=1326 audit(1755553819.070:7131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.5.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  106.508133][ T3308] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  107.078129][ T6738] loop1: detected capacity change from 0 to 512
[  107.096289][ T6738] EXT4-fs: Ignoring removed orlov option
[  107.115663][ T6738] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.159088][ T6738] ext4 filesystem being mounted at /219/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  107.162663][ T6742] loop3: detected capacity change from 0 to 512
[  107.185735][ T6742] ext4: Unknown parameter 'smackfsfloor'
[  107.225719][ T6747] FAULT_INJECTION: forcing a failure.
[  107.225719][ T6747] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.240450][ T6747] CPU: 0 UID: 0 PID: 6747 Comm: syz.5.1057 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  107.240540][ T6747] Tainted: [W]=WARN
[  107.240545][ T6747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  107.240557][ T6747] Call Trace:
[  107.240566][ T6747]  <TASK>
[  107.240575][ T6747]  __dump_stack+0x1d/0x30
[  107.240605][ T6747]  dump_stack_lvl+0xe8/0x140
[  107.240622][ T6747]  dump_stack+0x15/0x1b
[  107.240705][ T6747]  should_fail_ex+0x265/0x280
[  107.240725][ T6747]  should_fail+0xb/0x20
[  107.240740][ T6747]  should_fail_usercopy+0x1a/0x20
[  107.240842][ T6747]  _copy_from_user+0x1c/0xb0
[  107.240881][ T6747]  __copy_msghdr+0x244/0x300
[  107.240901][ T6747]  ___sys_sendmsg+0x109/0x1d0
[  107.240932][ T6747]  __sys_sendmmsg+0x178/0x300
[  107.240963][ T6747]  __x64_sys_sendmmsg+0x57/0x70
[  107.241029][ T6747]  x64_sys_call+0x1c4a/0x2ff0
[  107.241053][ T6747]  do_syscall_64+0xd2/0x200
[  107.241159][ T6747]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  107.241180][ T6747]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  107.241244][ T6747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.241318][ T6747] RIP: 0033:0x7fc70772ebe9
[  107.241332][ T6747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.241348][ T6747] RSP: 002b:00007fc70618f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  107.241365][ T6747] RAX: ffffffffffffffda RBX: 00007fc707955fa0 RCX: 00007fc70772ebe9
[  107.241379][ T6747] RDX: 0000000000000001 RSI: 0000200000000740 RDI: 0000000000000007
[  107.241392][ T6747] RBP: 00007fc70618f090 R08: 0000000000000000 R09: 0000000000000000
[  107.241405][ T6747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.241484][ T6747] R13: 00007fc707956038 R14: 00007fc707955fa0 R15: 00007fff4ec76998
[  107.241503][ T6747]  </TASK>
[  107.496299][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.656909][ T6769] loop2: detected capacity change from 0 to 128
[  107.752218][ T6769] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  107.783040][ T6769] ext4 filesystem being mounted at /208/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  108.140402][ T6781] loop3: detected capacity change from 0 to 128
[  108.233509][ T3308] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  108.338088][ T6792] loop2: detected capacity change from 0 to 512
[  108.346050][ T6792] EXT4-fs: Ignoring removed orlov option
[  108.356396][ T6792] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.369816][ T6792] ext4 filesystem being mounted at /211/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  108.434138][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.514308][ T6528] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 353: padding at end of block bitmap is not set
[  108.715723][ T6816] loop1: detected capacity change from 0 to 128
[  108.728052][ T6816] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  108.780415][ T6824] loop2: detected capacity change from 0 to 512
[  108.787288][ T6824] ext4: Unknown parameter 'smackfsfloor'
[  108.812713][ T6822] __nla_validate_parse: 4 callbacks suppressed
[  108.812733][ T6822] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1079'.
[  108.850814][ T6816] ext4 filesystem being mounted at /224/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  108.878011][ T6827] loop5: detected capacity change from 0 to 512
[  108.890592][ T6827] EXT4-fs: Ignoring removed orlov option
[  108.907078][ T6827] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.919872][ T6827] ext4 filesystem being mounted at /171/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  108.968181][ T4394] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.660436][ T3299] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  110.123470][ T6852] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1087'.
[  110.136913][ T6852] loop5: detected capacity change from 0 to 736
[  110.165257][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.226192][ T6858] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1090'.
[  110.242042][ T6858] loop4: detected capacity change from 0 to 512
[  110.257449][ T6858] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.270469][ T6858] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.294004][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.367771][ T6868] loop5: detected capacity change from 0 to 128
[  110.392454][ T6868] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  110.405789][ T6868] ext4 filesystem being mounted at /181/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  110.423264][ T6871] loop4: detected capacity change from 0 to 512
[  110.430288][ T6871] ext4: Unknown parameter 'smackfsfloor'
[  110.659649][ T6881] loop2: detected capacity change from 0 to 128
[  110.709439][ T6881] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1099'.
[  110.718799][ T6881] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1099'.
[  110.997293][ T6900] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1107'.
[  111.009902][ T6903] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1105'.
[  111.040305][ T6903] loop1: detected capacity change from 0 to 512
[  111.048247][ T6903] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  111.059442][ T6903] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  111.067891][ T6903] EXT4-fs (loop1): orphan cleanup on readonly fs
[  111.075075][ T6903] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.1105: attempt to clear invalid blocks 1024 len 1
[  111.089002][ T6903] EXT4-fs (loop1): Remounting filesystem read-only
[  111.096910][ T6903] EXT4-fs (loop1): 1 truncate cleaned up
[  111.111254][ T6903] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  111.225088][ T4394] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  111.258075][   T29] kauditd_printk_skb: 3702 callbacks suppressed
[  111.258159][   T29] audit: type=1326 audit(1755553824.120:10834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.298085][   T29] audit: type=1326 audit(1755553824.120:10835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.329707][   T29] audit: type=1326 audit(1755553824.190:10836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.355013][   T29] audit: type=1326 audit(1755553824.190:10837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.379629][   T29] audit: type=1326 audit(1755553824.190:10838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.404029][   T29] audit: type=1326 audit(1755553824.190:10839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.427891][   T29] audit: type=1326 audit(1755553824.190:10840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.452001][   T29] audit: type=1326 audit(1755553824.190:10841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.477948][   T29] audit: type=1326 audit(1755553824.340:10842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.502108][   T29] audit: type=1326 audit(1755553824.340:10843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6921 comm="syz.4.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  111.552390][ T6930] loop5: detected capacity change from 0 to 128
[  111.601399][ T6930] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1116'.
[  111.610805][ T6930] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1116'.
[  111.780513][ T6943] loop2: detected capacity change from 0 to 256
[  111.793424][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  111.808231][ T6943] FAT-fs (loop2): bogus logical sector size 133
[  111.814752][ T6943] FAT-fs (loop2): Can't find a valid FAT filesystem
[  111.861761][ T6943] program syz.2.1120 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  111.913046][   T10] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[  111.920987][   T10] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[  111.946321][ T6960] loop1: detected capacity change from 0 to 512
[  111.953788][ T6960] ext4: Unknown parameter 'smackfsfloor'
[  111.962427][ T6957] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1125'.
[  111.981189][   T10] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x3
[  112.009515][   T10] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  112.068406][ T6967] fido_id[6967]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  112.127443][ T6977] loop5: detected capacity change from 0 to 128
[  112.208607][ T6980] loop3: detected capacity change from 0 to 512
[  112.216871][ T6980] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  112.258427][ T6980] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  112.267909][ T6980] EXT4-fs (loop3): orphan cleanup on readonly fs
[  112.275683][ T6980] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.1131: attempt to clear invalid blocks 1024 len 1
[  112.289848][ T6980] EXT4-fs (loop3): Remounting filesystem read-only
[  112.297275][ T6980] EXT4-fs (loop3): 1 truncate cleaned up
[  112.303721][ T6980] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  113.061259][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  113.548930][ T1034] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4
[  113.557776][ T1034] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2
[  113.623772][ T1034] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x3
[  113.688786][ T1034] hid-generic 0000:3000000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  113.913037][ T7036] __nla_validate_parse: 4 callbacks suppressed
[  113.913057][ T7036] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1151'.
[  114.058546][ T7036] loop1: detected capacity change from 0 to 512
[  114.081708][ T7036] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  114.125484][ T7036] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  114.140837][ T7036] EXT4-fs (loop1): orphan cleanup on readonly fs
[  114.151519][ T7036] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.1151: attempt to clear invalid blocks 1024 len 1
[  114.174395][ T7036] EXT4-fs (loop1): Remounting filesystem read-only
[  114.228141][ T7036] EXT4-fs (loop1): 1 truncate cleaned up
[  114.309557][ T7036] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  114.591794][ T7065] loop3: detected capacity change from 0 to 128
[  114.664811][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  114.720804][ T7065] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1164'.
[  114.730113][ T7065] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1164'.
[  114.829478][ T3388] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x4
[  114.837923][ T3388] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x2
[  114.859199][ T3388] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x3
[  114.876960][ T3388] hid-generic 0000:3000000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  114.919262][ T7088] fido_id[7088]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  115.061538][ T7096] loop3: detected capacity change from 0 to 128
[  115.125163][ T7096] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1185'.
[  115.135081][ T7096] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1185'.
[  115.572246][ T1034] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4
[  115.595305][ T1034] hid-generic 0000:3000000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  115.619504][ T7109] loop1: detected capacity change from 0 to 2048
[  115.648886][ T7109] EXT4-fs (loop1): failed to initialize system zone (-117)
[  115.666574][ T7109] EXT4-fs (loop1): mount failed
[  115.677968][ T7124] fido_id[7124]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  115.837151][ T7139] loop3: detected capacity change from 0 to 512
[  115.879995][ T7141] loop1: detected capacity change from 0 to 128
[  115.887209][ T7139] ext4: Unknown parameter 'smackfsfloor'
[  115.948127][ T7141] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1192'.
[  115.957340][ T7141] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1192'.
[  115.987163][ T7143] bridge: RTM_NEWNEIGH with invalid ether address
[  116.331754][ T7153] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1197'.
[  116.386046][ T7153] loop1: detected capacity change from 0 to 512
[  116.396724][ T7153] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  116.435493][ T7153] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  116.455565][ T7153] EXT4-fs (loop1): orphan cleanup on readonly fs
[  116.475061][ T7153] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.1197: attempt to clear invalid blocks 1024 len 1
[  116.591611][ T7153] EXT4-fs (loop1): Remounting filesystem read-only
[  116.635390][ T7153] EXT4-fs (loop1): 1 truncate cleaned up
[  116.642700][ T7153] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  116.679820][   T29] kauditd_printk_skb: 438 callbacks suppressed
[  116.679889][   T29] audit: type=1326 audit(1755553829.540:11282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  116.739571][   T29] audit: type=1326 audit(1755553829.540:11283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  116.764023][   T29] audit: type=1326 audit(1755553829.540:11284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  116.790001][   T29] audit: type=1326 audit(1755553829.540:11285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  116.815595][   T29] audit: type=1326 audit(1755553829.540:11286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  116.840729][   T29] audit: type=1326 audit(1755553829.540:11287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  116.866035][   T29] audit: type=1326 audit(1755553829.540:11288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  116.892066][   T29] audit: type=1326 audit(1755553829.540:11289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  116.918257][   T29] audit: type=1326 audit(1755553829.540:11290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  116.942338][   T29] audit: type=1326 audit(1755553829.540:11291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7162 comm="syz.4.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd5d2ebe9 code=0x7ffc0000
[  117.017672][ T7174] loop3: detected capacity change from 0 to 128
[  117.027158][ T7173] loop5: detected capacity change from 0 to 128
[  117.075539][ T7173] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.089768][ T7174] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.102869][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  117.144634][ T7174] ext4 filesystem being mounted at /242/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  117.162322][ T7182] loop1: detected capacity change from 0 to 128
[  117.164858][ T7173] ext4 filesystem being mounted at /190/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  117.224586][ T7182] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1207'.
[  117.233798][ T7182] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1207'.
[  117.612278][ T7201] loop1: detected capacity change from 0 to 512
[  117.628892][ T7201] ext4: Unknown parameter 'smackfsfloor'
[  117.922435][ T7210] loop4: detected capacity change from 0 to 512
[  117.943825][ T7210] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  117.958065][ T7218] loop5: detected capacity change from 0 to 128
[  117.969362][ T7210] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  117.996915][ T7210] EXT4-fs (loop4): orphan cleanup on readonly fs
[  118.026560][ T7210] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.1217: attempt to clear invalid blocks 1024 len 1
[  118.055088][ T7210] EXT4-fs (loop4): Remounting filesystem read-only
[  118.064825][ T7210] EXT4-fs (loop4): 1 truncate cleaned up
[  118.576688][ T7263] loop3: detected capacity change from 0 to 128
[  120.105931][ T7297] loop1: detected capacity change from 0 to 128
[  120.160788][ T7297] __nla_validate_parse: 6 callbacks suppressed
[  120.160871][ T7297] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1253'.
[  120.177557][ T7297] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1253'.
[  120.268052][ T7302] loop3: detected capacity change from 0 to 4096
[  120.358190][ T7311] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1255'.
[  120.756093][ T7317] loop1: detected capacity change from 0 to 512
[  120.818779][ T7317] EXT4-fs: Ignoring removed orlov option
[  120.956797][ T7317] ext4 filesystem being mounted at /254/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.787906][   T29] kauditd_printk_skb: 68 callbacks suppressed
[  121.787932][   T29] audit: type=1326 audit(1755553834.650:11360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  122.017046][ T7350] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1263'.
[  122.368426][   T29] audit: type=1326 audit(1755553834.680:11361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  122.392418][   T29] audit: type=1326 audit(1755553834.770:11362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  122.417960][   T29] audit: type=1326 audit(1755553834.770:11363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  122.444830][   T29] audit: type=1326 audit(1755553834.770:11364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  122.470937][   T29] audit: type=1326 audit(1755553834.770:11365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  122.496843][   T29] audit: type=1326 audit(1755553834.770:11366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  122.521933][   T29] audit: type=1326 audit(1755553834.770:11367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  122.545981][   T29] audit: type=1326 audit(1755553834.770:11368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  122.570146][   T29] audit: type=1326 audit(1755553834.770:11369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.1269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70772ebe9 code=0x7ffc0000
[  123.219154][ T7362] netlink: 'syz.4.1276': attribute type 10 has an invalid length.
[  123.424841][ T7375] FAULT_INJECTION: forcing a failure.
[  123.424841][ T7375] name failslab, interval 1, probability 0, space 0, times 0
[  123.438216][ T7375] CPU: 1 UID: 0 PID: 7375 Comm: syz.3.1281 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  123.438247][ T7375] Tainted: [W]=WARN
[  123.438253][ T7375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  123.438265][ T7375] Call Trace:
[  123.438271][ T7375]  <TASK>
[  123.438279][ T7375]  __dump_stack+0x1d/0x30
[  123.438315][ T7375]  dump_stack_lvl+0xe8/0x140
[  123.438380][ T7375]  dump_stack+0x15/0x1b
[  123.438398][ T7375]  should_fail_ex+0x265/0x280
[  123.438419][ T7375]  should_failslab+0x8c/0xb0
[  123.438495][ T7375]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  123.438524][ T7375]  ? sidtab_sid2str_get+0xa0/0x130
[  123.438591][ T7375]  kmemdup_noprof+0x2b/0x70
[  123.438616][ T7375]  sidtab_sid2str_get+0xa0/0x130
[  123.438634][ T7375]  security_sid_to_context_core+0x1eb/0x2e0
[  123.438652][ T7375]  security_sid_to_context+0x27/0x40
[  123.438668][ T7375]  avc_audit_post_callback+0x9d/0x520
[  123.438743][ T7375]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  123.438805][ T7375]  common_lsm_audit+0x1bb/0x230
[  123.438832][ T7375]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  123.438859][ T7375]  slow_avc_audit+0x104/0x140
[  123.438899][ T7375]  avc_has_extended_perms+0x6d0/0x940
[  123.438930][ T7375]  ioctl_has_perm+0x257/0x2a0
[  123.438992][ T7375]  selinux_file_ioctl+0x308/0x3a0
[  123.439013][ T7375]  ? __fget_files+0x184/0x1c0
[  123.439038][ T7375]  security_file_ioctl+0x48/0x90
[  123.439065][ T7375]  __se_sys_ioctl+0x47/0x140
[  123.439121][ T7375]  __x64_sys_ioctl+0x43/0x50
[  123.439218][ T7375]  x64_sys_call+0x1816/0x2ff0
[  123.439236][ T7375]  do_syscall_64+0xd2/0x200
[  123.439333][ T7375]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  123.439359][ T7375]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  123.439384][ T7375]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.439467][ T7375] RIP: 0033:0x7f083266ebe9
[  123.439488][ T7375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.439504][ T7375] RSP: 002b:00007f08310d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  123.439523][ T7375] RAX: ffffffffffffffda RBX: 00007f0832895fa0 RCX: 00007f083266ebe9
[  123.439598][ T7375] RDX: 0000200000000040 RSI: 0000000000002285 RDI: 0000000000000004
[  123.439609][ T7375] RBP: 00007f08310d7090 R08: 0000000000000000 R09: 0000000000000000
[  123.439619][ T7375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.439630][ T7375] R13: 00007f0832896038 R14: 00007f0832895fa0 R15: 00007ffd57770b28
[  123.439645][ T7375]  </TASK>
[  123.710221][ T7377] loop5: detected capacity change from 0 to 128
[  123.771915][ T7377] ext4 filesystem being mounted at /207/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  123.895487][ T7395] loop3: detected capacity change from 0 to 512
[  123.911833][ T7395] EXT4-fs: Ignoring removed orlov option
[  123.941137][ T7395] ext4 filesystem being mounted at /260/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  124.241336][ T7424] netlink: 180 bytes leftover after parsing attributes in process `syz.4.1301'.
[  124.259272][ T7424] netlink: 180 bytes leftover after parsing attributes in process `syz.4.1301'.
[  124.261763][ T7422] loop1: detected capacity change from 0 to 1024
[  124.274628][ T7424] FAULT_INJECTION: forcing a failure.
[  124.274628][ T7424] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.289293][ T7424] CPU: 1 UID: 0 PID: 7424 Comm: syz.4.1301 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  124.289389][ T7424] Tainted: [W]=WARN
[  124.289394][ T7424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  124.289405][ T7424] Call Trace:
[  124.289412][ T7424]  <TASK>
[  124.289420][ T7424]  __dump_stack+0x1d/0x30
[  124.289515][ T7424]  dump_stack_lvl+0xe8/0x140
[  124.289531][ T7424]  dump_stack+0x15/0x1b
[  124.289545][ T7424]  should_fail_ex+0x265/0x280
[  124.289634][ T7424]  should_fail+0xb/0x20
[  124.289651][ T7424]  should_fail_usercopy+0x1a/0x20
[  124.289673][ T7424]  _copy_to_user+0x20/0xa0
[  124.289699][ T7424]  simple_read_from_buffer+0xb5/0x130
[  124.289790][ T7424]  proc_fail_nth_read+0x10e/0x150
[  124.289819][ T7424]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  124.289906][ T7424]  vfs_read+0x1a8/0x770
[  124.289927][ T7424]  ? __rcu_read_unlock+0x4f/0x70
[  124.289948][ T7424]  ? __fget_files+0x184/0x1c0
[  124.289973][ T7424]  ksys_read+0xda/0x1a0
[  124.290069][ T7424]  __x64_sys_read+0x40/0x50
[  124.290089][ T7424]  x64_sys_call+0x27bc/0x2ff0
[  124.290109][ T7424]  do_syscall_64+0xd2/0x200
[  124.290183][ T7424]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  124.290208][ T7424]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  124.290234][ T7424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.290277][ T7424] RIP: 0033:0x7f4fd5d2d5fc
[  124.290290][ T7424] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  124.290306][ T7424] RSP: 002b:00007f4fd4797030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  124.290352][ T7424] RAX: ffffffffffffffda RBX: 00007f4fd5f55fa0 RCX: 00007f4fd5d2d5fc
[  124.290364][ T7424] RDX: 000000000000000f RSI: 00007f4fd47970a0 RDI: 0000000000000008
[  124.290376][ T7424] RBP: 00007f4fd4797090 R08: 0000000000000000 R09: 0000000000000000
[  124.290386][ T7424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.290396][ T7424] R13: 00007f4fd5f56038 R14: 00007f4fd5f55fa0 R15: 00007fff09533d38
[  124.290462][ T7424]  </TASK>
[  124.536606][ T7422] ext4: Unknown parameter 'subj_type'
[  124.555581][ T7422] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1300'.
[  124.569995][ T7422] IPv6: NLM_F_CREATE should be specified when creating new route
[  124.575564][ T7430] loop4: detected capacity change from 0 to 512
[  124.581787][ T7422] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  124.608872][ T7428] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  124.611715][ T7430] EXT4-fs: Ignoring removed orlov option
[  124.634377][ T7428] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  124.647960][ T7422] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  124.688391][ T7430] ext4 filesystem being mounted at /260/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  124.861173][ T7452] loop5: detected capacity change from 0 to 128
[  124.900608][ T7452] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1313'.
[  124.909625][ T7457] loop4: detected capacity change from 0 to 128
[  124.909734][ T7452] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1313'.
[  124.936627][ T7457] ext4 filesystem being mounted at /264/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  125.272913][ T7470] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1320'.
[  125.442134][ T7474] loop5: detected capacity change from 0 to 512
[  125.449824][ T7474] EXT4-fs: Ignoring removed orlov option
[  125.466773][ T7474] ext4 filesystem being mounted at /214/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  125.567769][ T7482] FAULT_INJECTION: forcing a failure.
[  125.567769][ T7482] name failslab, interval 1, probability 0, space 0, times 0
[  125.580724][ T7482] CPU: 0 UID: 0 PID: 7482 Comm: syz.5.1324 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  125.580757][ T7482] Tainted: [W]=WARN
[  125.580762][ T7482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  125.580774][ T7482] Call Trace:
[  125.580779][ T7482]  <TASK>
[  125.580786][ T7482]  __dump_stack+0x1d/0x30
[  125.580815][ T7482]  dump_stack_lvl+0xe8/0x140
[  125.580831][ T7482]  dump_stack+0x15/0x1b
[  125.580845][ T7482]  should_fail_ex+0x265/0x280
[  125.580865][ T7482]  should_failslab+0x8c/0xb0
[  125.580888][ T7482]  kmem_cache_alloc_noprof+0x50/0x310
[  125.580913][ T7482]  ? vm_area_dup+0x33/0x2c0
[  125.580942][ T7482]  vm_area_dup+0x33/0x2c0
[  125.580970][ T7482]  __split_vma+0xe9/0x650
[  125.580999][ T7482]  vma_modify+0x3f2/0xc80
[  125.581020][ T7482]  ? _parse_integer+0x27/0x40
[  125.581041][ T7482]  vma_modify_policy+0x101/0x130
[  125.581069][ T7482]  mbind_range+0x1b8/0x440
[  125.581090][ T7482]  __se_sys_set_mempolicy_home_node+0x351/0x530
[  125.581126][ T7482]  __x64_sys_set_mempolicy_home_node+0x55/0x70
[  125.581163][ T7482]  x64_sys_call+0x2261/0x2ff0
[  125.581183][ T7482]  do_syscall_64+0xd2/0x200
[  125.581216][ T7482]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  125.581236][ T7482]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  125.581258][ T7482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.581277][ T7482] RIP: 0033:0x7fc70772ebe9
[  125.581290][ T7482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.581305][ T7482] RSP: 002b:00007fc70618f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c2
[  125.581321][ T7482] RAX: ffffffffffffffda RBX: 00007fc707955fa0 RCX: 00007fc70772ebe9
[  125.581332][ T7482] RDX: 0000000000000000 RSI: 0000000000002000 RDI: 0000200000417000
[  125.581344][ T7482] RBP: 00007fc70618f090 R08: 0000000000000000 R09: 0000000000000000
[  125.581356][ T7482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.581366][ T7482] R13: 00007fc707956038 R14: 00007fc707955fa0 R15: 00007fff4ec76998
[  125.581381][ T7482]  </TASK>
[  125.898665][ T7500] loop5: detected capacity change from 0 to 512
[  125.917543][ T7500] EXT4-fs: Ignoring removed orlov option
[  125.943212][ T7506] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1332'.
[  125.964970][ T7500] ext4 filesystem being mounted at /219/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  126.033460][ T7506] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1332'.
[  126.049817][ T7511] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1335'.
[  126.097387][ T7506] loop4: detected capacity change from 0 to 512
[  126.104630][ T7511] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1335'.
[  126.135293][ T7506] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  126.176806][ T7506] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  126.198807][ T7518] loop5: detected capacity change from 0 to 128
[  126.207993][ T7511] loop3: detected capacity change from 0 to 512
[  126.223899][ T7506] EXT4-fs (loop4): orphan cleanup on readonly fs
[  126.237910][ T7511] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  126.272444][ T7506] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.1332: attempt to clear invalid blocks 1024 len 1
[  126.293914][ T7511] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  126.303933][ T7506] EXT4-fs (loop4): Remounting filesystem read-only
[  126.312444][ T7511] EXT4-fs (loop3): orphan cleanup on readonly fs
[  126.321581][ T7518] ext4 filesystem being mounted at /221/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  126.335706][ T7506] EXT4-fs (loop4): 1 truncate cleaned up
[  126.343795][ T7511] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.1335: attempt to clear invalid blocks 1024 len 1
[  126.369557][ T7511] EXT4-fs (loop3): Remounting filesystem read-only
[  126.388998][ T7531] FAULT_INJECTION: forcing a failure.
[  126.388998][ T7531] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.390715][ T7511] EXT4-fs (loop3): 1 truncate cleaned up
[  126.404587][ T7531] CPU: 0 UID: 0 PID: 7531 Comm: syz.1.1342 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  126.404620][ T7531] Tainted: [W]=WARN
[  126.404626][ T7531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  126.404638][ T7531] Call Trace:
[  126.404646][ T7531]  <TASK>
[  126.404715][ T7531]  __dump_stack+0x1d/0x30
[  126.404737][ T7531]  dump_stack_lvl+0xe8/0x140
[  126.404762][ T7531]  dump_stack+0x15/0x1b
[  126.404778][ T7531]  should_fail_ex+0x265/0x280
[  126.404800][ T7531]  should_fail+0xb/0x20
[  126.404915][ T7531]  should_fail_usercopy+0x1a/0x20
[  126.405027][ T7531]  _copy_from_user+0x1c/0xb0
[  126.405054][ T7531]  ___sys_sendmsg+0xc1/0x1d0
[  126.405140][ T7531]  __x64_sys_sendmsg+0xd4/0x160
[  126.405250][ T7531]  x64_sys_call+0x191e/0x2ff0
[  126.405275][ T7531]  do_syscall_64+0xd2/0x200
[  126.405411][ T7531]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  126.405436][ T7531]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  126.405461][ T7531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.405482][ T7531] RIP: 0033:0x7f3b1574ebe9
[  126.405541][ T7531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.405560][ T7531] RSP: 002b:00007f3b141b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.405579][ T7531] RAX: ffffffffffffffda RBX: 00007f3b15975fa0 RCX: 00007f3b1574ebe9
[  126.405592][ T7531] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000006
[  126.405605][ T7531] RBP: 00007f3b141b7090 R08: 0000000000000000 R09: 0000000000000000
[  126.405618][ T7531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.405630][ T7531] R13: 00007f3b15976038 R14: 00007f3b15975fa0 R15: 00007ffdbc75c7c8
[  126.405745][ T7531]  </TASK>
[  126.881238][   T29] kauditd_printk_skb: 330 callbacks suppressed
[  126.881252][   T29] audit: type=1400 audit(1755553839.740:11700): avc:  denied  { create } for  pid=7549 comm="gtp" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  126.943323][   T29] audit: type=1400 audit(1755553839.770:11701): avc:  denied  { write } for  pid=7549 comm="gtp" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  126.982240][   T29] audit: type=1326 audit(1755553839.840:11702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7555 comm="syz.3.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  127.007145][   T29] audit: type=1326 audit(1755553839.840:11703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7555 comm="syz.3.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  127.035041][   T29] audit: type=1326 audit(1755553839.840:11704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7555 comm="syz.3.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  127.059325][   T29] audit: type=1326 audit(1755553839.840:11705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7555 comm="syz.3.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  127.084908][   T29] audit: type=1326 audit(1755553839.840:11706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7555 comm="syz.3.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  127.109529][   T29] audit: type=1326 audit(1755553839.840:11707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7555 comm="syz.3.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  127.135001][   T29] audit: type=1326 audit(1755553839.840:11708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7555 comm="syz.3.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  127.159584][   T29] audit: type=1326 audit(1755553839.840:11709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7555 comm="syz.3.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  127.266177][ T7570] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1361'.
[  127.281563][ T7572] loop3: detected capacity change from 0 to 128
[  127.295132][ T7570] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1361'.
[  127.414180][ T7572] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1360'.
[  127.424705][ T7572] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1360'.
[  127.449667][ T7586] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1362'.
[  127.493234][ T7589] loop4: detected capacity change from 0 to 128
[  127.515624][ T7589] ext4 filesystem being mounted at /272/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  127.749578][ T7615] FAULT_INJECTION: forcing a failure.
[  127.749578][ T7615] name failslab, interval 1, probability 0, space 0, times 0
[  127.762808][ T7615] CPU: 1 UID: 0 PID: 7615 Comm: syz.5.1376 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  127.762837][ T7615] Tainted: [W]=WARN
[  127.762844][ T7615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  127.762858][ T7615] Call Trace:
[  127.762863][ T7615]  <TASK>
[  127.762869][ T7615]  __dump_stack+0x1d/0x30
[  127.762889][ T7615]  dump_stack_lvl+0xe8/0x140
[  127.762949][ T7615]  dump_stack+0x15/0x1b
[  127.762964][ T7615]  should_fail_ex+0x265/0x280
[  127.763074][ T7615]  should_failslab+0x8c/0xb0
[  127.763096][ T7615]  __kmalloc_noprof+0xa5/0x3e0
[  127.763120][ T7615]  ? nfc_llcp_build_tlv+0xac/0x100
[  127.763201][ T7615]  nfc_llcp_build_tlv+0xac/0x100
[  127.763226][ T7615]  nfc_llcp_build_gb+0xe6/0x2f0
[  127.763248][ T7615]  nfc_llcp_general_bytes+0xd9/0x1e0
[  127.763340][ T7615]  nfc_dep_link_up+0xdd/0x260
[  127.763457][ T7615]  nfc_genl_dep_link_up+0xdd/0x120
[  127.763486][ T7615]  genl_family_rcv_msg_doit+0x143/0x1b0
[  127.763540][ T7615]  genl_rcv_msg+0x422/0x460
[  127.763561][ T7615]  ? __pfx_nfc_genl_dep_link_up+0x10/0x10
[  127.763624][ T7615]  netlink_rcv_skb+0x123/0x220
[  127.763640][ T7615]  ? __pfx_genl_rcv_msg+0x10/0x10
[  127.763742][ T7615]  genl_rcv+0x28/0x40
[  127.763766][ T7615]  netlink_unicast+0x5bd/0x690
[  127.763876][ T7615]  netlink_sendmsg+0x58b/0x6b0
[  127.763895][ T7615]  ? __pfx_netlink_sendmsg+0x10/0x10
[  127.763916][ T7615]  __sock_sendmsg+0x142/0x180
[  127.764002][ T7615]  ____sys_sendmsg+0x31e/0x4e0
[  127.764046][ T7615]  ___sys_sendmsg+0x17b/0x1d0
[  127.764075][ T7615]  __x64_sys_sendmsg+0xd4/0x160
[  127.764133][ T7615]  x64_sys_call+0x191e/0x2ff0
[  127.764152][ T7615]  do_syscall_64+0xd2/0x200
[  127.764174][ T7615]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  127.764198][ T7615]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  127.764291][ T7615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.764312][ T7615] RIP: 0033:0x7fc70772ebe9
[  127.764326][ T7615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.764375][ T7615] RSP: 002b:00007fc70618f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  127.764395][ T7615] RAX: ffffffffffffffda RBX: 00007fc707955fa0 RCX: 00007fc70772ebe9
[  127.764409][ T7615] RDX: 0000000000000040 RSI: 0000200000000600 RDI: 0000000000000007
[  127.764423][ T7615] RBP: 00007fc70618f090 R08: 0000000000000000 R09: 0000000000000000
[  127.764512][ T7615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.764525][ T7615] R13: 00007fc707956038 R14: 00007fc707955fa0 R15: 00007fff4ec76998
[  127.764543][ T7615]  </TASK>
[  127.777414][ T7613] infiniband syz!: set down
[  127.875549][ T7616] loop1: detected capacity change from 0 to 512
[  127.880356][ T7613] infiniband syz!: added team_slave_0
[  127.901484][ T7616] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 overlaps superblock
[  127.911949][ T7613] RDS/IB: syz!: added
[  127.914815][ T7616] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 not in group (block 1)!
[  127.919682][ T7613] smc: adding ib device syz! with port count 1
[  127.924741][ T7616] EXT4-fs (loop1): group descriptors corrupted!
[  127.930897][ T7613] smc:    ib device syz! port 1 has pnetid 
[  128.250739][ T7631] loop1: detected capacity change from 0 to 512
[  128.295464][ T7631] loop1: detected capacity change from 0 to 512
[  128.488516][ T7655] loop1: detected capacity change from 0 to 512
[  128.511594][ T7655] ext4: Unknown parameter 'smackfsfloor'
[  128.676526][ T7668] loop3: detected capacity change from 0 to 128
[  128.722508][ T7668] EXT4-fs mount: 28 callbacks suppressed
[  128.722522][ T7668] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  128.762067][ T7668] ext4 filesystem being mounted at /288/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  128.979924][ T7680] FAULT_INJECTION: forcing a failure.
[  128.979924][ T7680] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  128.993279][ T7680] CPU: 0 UID: 0 PID: 7680 Comm: syz.4.1404 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  128.993312][ T7680] Tainted: [W]=WARN
[  128.993319][ T7680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  128.993331][ T7680] Call Trace:
[  128.993338][ T7680]  <TASK>
[  128.993345][ T7680]  __dump_stack+0x1d/0x30
[  128.993410][ T7680]  dump_stack_lvl+0xe8/0x140
[  128.993429][ T7680]  dump_stack+0x15/0x1b
[  128.993445][ T7680]  should_fail_ex+0x265/0x280
[  128.993465][ T7680]  should_fail+0xb/0x20
[  128.993481][ T7680]  should_fail_usercopy+0x1a/0x20
[  128.993621][ T7680]  _copy_to_user+0x20/0xa0
[  128.993672][ T7680]  simple_read_from_buffer+0xb5/0x130
[  128.993694][ T7680]  proc_fail_nth_read+0x10e/0x150
[  128.993712][ T7680]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  128.993726][ T7680]  vfs_read+0x1a8/0x770
[  128.993738][ T7680]  ? __fput+0x555/0x650
[  128.993753][ T7680]  ? __rcu_read_unlock+0x4f/0x70
[  128.993847][ T7680]  ? __fget_files+0x184/0x1c0
[  128.993862][ T7680]  ksys_read+0xda/0x1a0
[  128.993953][ T7680]  __x64_sys_read+0x40/0x50
[  128.994018][ T7680]  x64_sys_call+0x27bc/0x2ff0
[  128.994030][ T7680]  do_syscall_64+0xd2/0x200
[  128.994045][ T7680]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  128.994118][ T7680]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  128.994132][ T7680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.994145][ T7680] RIP: 0033:0x7f4fd5d2d5fc
[  128.994187][ T7680] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  128.994198][ T7680] RSP: 002b:00007f4fd4797030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  128.994211][ T7680] RAX: ffffffffffffffda RBX: 00007f4fd5f55fa0 RCX: 00007f4fd5d2d5fc
[  128.994231][ T7680] RDX: 000000000000000f RSI: 00007f4fd47970a0 RDI: 0000000000000005
[  128.994243][ T7680] RBP: 00007f4fd4797090 R08: 0000000000000000 R09: 0000000000000000
[  128.994254][ T7680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.994396][ T7680] R13: 00007f4fd5f56038 R14: 00007f4fd5f55fa0 R15: 00007fff09533d38
[  128.994406][ T7680]  </TASK>
[  129.344438][ T7688] netlink: 'syz.5.1409': attribute type 4 has an invalid length.
[  129.506141][ T3309] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  129.659383][ T7714] loop3: detected capacity change from 0 to 512
[  129.669643][ T7714] ext4: Unknown parameter 'smackfsfloor'
[  129.746745][ T7715] loop4: detected capacity change from 0 to 512
[  129.759800][ T7715] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  129.777226][ T7715] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  129.789668][ T7715] EXT4-fs (loop4): orphan cleanup on readonly fs
[  129.797081][ T7715] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.1418: attempt to clear invalid blocks 1024 len 1
[  129.813260][ T7715] EXT4-fs (loop4): Remounting filesystem read-only
[  129.821265][ T7715] EXT4-fs (loop4): 1 truncate cleaned up
[  129.830997][ T7715] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  130.099525][ T7741] loop2: detected capacity change from 0 to 512
[  130.107144][ T7741] EXT4-fs: Ignoring removed orlov option
[  130.145879][ T7741] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.159372][ T7741] ext4 filesystem being mounted at /276/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  130.220283][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.372711][ T7761] __nla_validate_parse: 3 callbacks suppressed
[  130.372725][ T7761] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1435'.
[  130.496577][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  130.782714][ T7788] loop5: detected capacity change from 0 to 4096
[  130.839227][ T7788] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.873630][ T7788] FAULT_INJECTION: forcing a failure.
[  130.873630][ T7788] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  130.887815][ T7788] CPU: 0 UID: 0 PID: 7788 Comm: syz.5.1448 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  130.887852][ T7788] Tainted: [W]=WARN
[  130.887859][ T7788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  130.887873][ T7788] Call Trace:
[  130.887880][ T7788]  <TASK>
[  130.887887][ T7788]  __dump_stack+0x1d/0x30
[  130.887981][ T7788]  dump_stack_lvl+0xe8/0x140
[  130.887999][ T7788]  dump_stack+0x15/0x1b
[  130.888017][ T7788]  should_fail_ex+0x265/0x280
[  130.888108][ T7788]  should_fail_alloc_page+0xf2/0x100
[  130.888137][ T7788]  __alloc_frozen_pages_noprof+0xff/0x360
[  130.888171][ T7788]  alloc_pages_mpol+0xb3/0x250
[  130.888250][ T7788]  folio_alloc_noprof+0x97/0x150
[  130.888277][ T7788]  filemap_alloc_folio_noprof+0x66/0x210
[  130.888308][ T7788]  __filemap_get_folio+0x28f/0x6b0
[  130.888448][ T7788]  ? ext4_chunk_trans_extent+0x178/0x1a0
[  130.888481][ T7788]  ext4_write_begin+0x2e9/0xe70
[  130.888510][ T7788]  ext4_da_write_begin+0x1fb/0x6e0
[  130.888531][ T7788]  ? balance_dirty_pages_ratelimited_flags+0x40b/0x5e0
[  130.888584][ T7788]  generic_perform_write+0x184/0x490
[  130.888612][ T7788]  ext4_buffered_write_iter+0x1ee/0x3c0
[  130.888648][ T7788]  ext4_file_write_iter+0xdbf/0xf00
[  130.888688][ T7788]  ? ext4_file_write_iter+0x6b1/0xf00
[  130.888721][ T7788]  do_iter_readv_writev+0x49c/0x540
[  130.888750][ T7788]  vfs_writev+0x2df/0x8b0
[  130.888876][ T7788]  __se_sys_pwritev2+0xfc/0x1c0
[  130.888901][ T7788]  __x64_sys_pwritev2+0x67/0x80
[  130.888923][ T7788]  x64_sys_call+0x2c55/0x2ff0
[  130.888941][ T7788]  do_syscall_64+0xd2/0x200
[  130.889079][ T7788]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  130.889148][ T7788]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  130.889172][ T7788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.889195][ T7788] RIP: 0033:0x7fc70772ebe9
[  130.889211][ T7788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.889231][ T7788] RSP: 002b:00007fc70618f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  130.889277][ T7788] RAX: ffffffffffffffda RBX: 00007fc707955fa0 RCX: 00007fc70772ebe9
[  130.889287][ T7788] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000005
[  130.889298][ T7788] RBP: 00007fc70618f090 R08: 0000000000000000 R09: 0000000000000003
[  130.889311][ T7788] R10: 0000000000007000 R11: 0000000000000246 R12: 0000000000000001
[  130.889323][ T7788] R13: 00007fc707956038 R14: 00007fc707955fa0 R15: 00007fff4ec76998
[  130.889339][ T7788]  </TASK>
[  131.285733][ T4394] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.387078][ T7799] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1452'.
[  131.450269][ T7808] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1452'.
[  131.535932][ T7799] loop4: detected capacity change from 0 to 512
[  131.548038][ T7799] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  131.589567][ T7799] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  131.627272][ T7799] EXT4-fs (loop4): orphan cleanup on readonly fs
[  131.648240][ T7799] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.1452: attempt to clear invalid blocks 1024 len 1
[  131.676540][ T7799] EXT4-fs (loop4): Remounting filesystem read-only
[  131.691292][ T7799] EXT4-fs (loop4): 1 truncate cleaned up
[  131.729650][ T7799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  131.745197][ T7818] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  131.779892][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  131.862077][ T7828] IPv6: Can't replace route, no match found
[  131.901504][   T29] kauditd_printk_skb: 4927 callbacks suppressed
[  131.901521][   T29] audit: type=1326 audit(1755553844.760:16637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  131.940739][   T29] audit: type=1326 audit(1755553844.800:16638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  131.966309][   T29] audit: type=1326 audit(1755553844.800:16639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  131.991390][   T29] audit: type=1326 audit(1755553844.800:16640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  132.015374][   T29] audit: type=1326 audit(1755553844.800:16641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  132.040293][   T29] audit: type=1326 audit(1755553844.800:16642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  132.064996][   T29] audit: type=1326 audit(1755553844.800:16643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  132.092017][   T29] audit: type=1326 audit(1755553844.800:16644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  132.117725][   T29] audit: type=1326 audit(1755553844.800:16645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  132.143430][   T29] audit: type=1326 audit(1755553844.800:16646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7836 comm="syz.3.1468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f083266ebe9 code=0x7ffc0000
[  132.328012][ T7847] loop5: detected capacity change from 0 to 1024
[  132.336364][ T7847] EXT4-fs: Ignoring removed mblk_io_submit option
[  132.352368][ T7850] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1473'.
[  132.378260][ T7847] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.411014][ T7850] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1473'.
[  132.452481][ T7850] loop1: detected capacity change from 0 to 512
[  132.466719][ T7850] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  132.528553][ T7850] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  132.564596][ T7850] EXT4-fs (loop1): orphan cleanup on readonly fs
[  132.620845][ T4394] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.630940][ T7850] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.1473: attempt to clear invalid blocks 1024 len 1
[  132.694677][ T7850] EXT4-fs (loop1): Remounting filesystem read-only
[  132.711866][ T7850] EXT4-fs (loop1): 1 truncate cleaned up
[  132.729602][ T7850] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  132.763252][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  132.838624][ T7867] loop4: detected capacity change from 0 to 512
[  132.856422][ T7867] EXT4-fs: Ignoring removed orlov option
[  132.895937][ T7867] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.908942][ T7867] ext4 filesystem being mounted at /292/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  132.951206][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.115490][ T7879] loop4: detected capacity change from 0 to 1024
[  133.181554][ T7865] Set syz1 is full, maxelem 65536 reached
[  133.243204][ T7886] loop4: detected capacity change from 0 to 128
[  133.282628][ T7886] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1486'.
[  133.291938][ T7886] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1486'.
[  133.332771][ T7884] loop1: detected capacity change from 0 to 8192
[  133.535955][ T7896] FAULT_INJECTION: forcing a failure.
[  133.535955][ T7896] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  133.549987][ T7896] CPU: 0 UID: 0 PID: 7896 Comm: syz.5.1490 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  133.550069][ T7896] Tainted: [W]=WARN
[  133.550076][ T7896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  133.550087][ T7896] Call Trace:
[  133.550093][ T7896]  <TASK>
[  133.550101][ T7896]  __dump_stack+0x1d/0x30
[  133.550122][ T7896]  dump_stack_lvl+0xe8/0x140
[  133.550138][ T7896]  dump_stack+0x15/0x1b
[  133.550155][ T7896]  should_fail_ex+0x265/0x280
[  133.550212][ T7896]  should_fail_alloc_page+0xf2/0x100
[  133.550289][ T7896]  __alloc_frozen_pages_noprof+0xff/0x360
[  133.550354][ T7896]  alloc_pages_mpol+0xb3/0x250
[  133.550443][ T7896]  folio_alloc_mpol_noprof+0x39/0x80
[  133.550472][ T7896]  shmem_get_folio_gfp+0x3cf/0xd60
[  133.550511][ T7896]  shmem_write_begin+0xa8/0x190
[  133.550576][ T7896]  generic_perform_write+0x184/0x490
[  133.550600][ T7896]  shmem_file_write_iter+0xc5/0xf0
[  133.550640][ T7896]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  133.550718][ T7896]  vfs_write+0x52a/0x960
[  133.550747][ T7896]  ksys_write+0xda/0x1a0
[  133.550771][ T7896]  __x64_sys_write+0x40/0x50
[  133.550789][ T7896]  x64_sys_call+0x27fe/0x2ff0
[  133.550808][ T7896]  do_syscall_64+0xd2/0x200
[  133.550846][ T7896]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  133.550870][ T7896]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  133.550892][ T7896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.550915][ T7896] RIP: 0033:0x7fc70772d69f
[  133.550929][ T7896] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  133.551014][ T7896] RSP: 002b:00007fc70618edf0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  133.551031][ T7896] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fc70772d69f
[  133.551042][ T7896] RDX: 0000000000040000 RSI: 00007fc6fdd6f000 RDI: 0000000000000007
[  133.551054][ T7896] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000456
[  133.551065][ T7896] R10: 00000000000003be R11: 0000000000000293 R12: 0000000000000007
[  133.551078][ T7896] R13: 00007fc70618eef0 R14: 00007fc70618eeb0 R15: 00007fc6fdd6f000
[  133.551153][ T7896]  </TASK>
[  133.558299][ T7897] loop2: detected capacity change from 0 to 512
[  133.780509][ T7897] EXT4-fs: Ignoring removed orlov option
[  133.802257][ T7906] netlink: 'syz.5.1494': attribute type 10 has an invalid length.
[  133.808416][ T7897] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.813982][ T7906] team0: Port device dummy0 added
[  133.825141][ T7897] ext4 filesystem being mounted at /278/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  133.840579][ T7906] netlink: 'syz.5.1494': attribute type 10 has an invalid length.
[  133.851728][ T7911] loop4: detected capacity change from 0 to 512
[  133.858585][ T7911] ext4: Unknown parameter 'smackfsfloor'
[  133.866995][ T7906] team0: Port device dummy0 removed
[  133.877676][ T7906] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  133.888578][ T7906] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1494'.
[  133.899985][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.009501][ T7930] FAULT_INJECTION: forcing a failure.
[  134.009501][ T7930] name failslab, interval 1, probability 0, space 0, times 0
[  134.022338][ T7930] CPU: 1 UID: 0 PID: 7930 Comm: syz.5.1504 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  134.022389][ T7930] Tainted: [W]=WARN
[  134.022395][ T7930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  134.022405][ T7930] Call Trace:
[  134.022412][ T7930]  <TASK>
[  134.022420][ T7930]  __dump_stack+0x1d/0x30
[  134.022443][ T7930]  dump_stack_lvl+0xe8/0x140
[  134.022462][ T7930]  dump_stack+0x15/0x1b
[  134.022500][ T7930]  should_fail_ex+0x265/0x280
[  134.022520][ T7930]  should_failslab+0x8c/0xb0
[  134.022542][ T7930]  kmem_cache_alloc_node_noprof+0x57/0x320
[  134.022581][ T7930]  ? __alloc_skb+0x101/0x320
[  134.022615][ T7930]  __alloc_skb+0x101/0x320
[  134.022649][ T7930]  ? audit_log_start+0x365/0x6c0
[  134.022715][ T7930]  audit_log_start+0x380/0x6c0
[  134.022742][ T7930]  audit_seccomp+0x48/0x100
[  134.022767][ T7930]  ? __seccomp_filter+0x68c/0x10d0
[  134.022862][ T7930]  __seccomp_filter+0x69d/0x10d0
[  134.022882][ T7930]  ? alloc_file_pseudo+0x129/0x160
[  134.022980][ T7930]  __secure_computing+0x82/0x150
[  134.022999][ T7930]  syscall_trace_enter+0xcf/0x1e0
[  134.023024][ T7930]  do_syscall_64+0xac/0x200
[  134.023049][ T7930]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  134.023083][ T7930]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  134.023130][ T7930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.023153][ T7930] RIP: 0033:0x7fc70772d5fc
[  134.023169][ T7930] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  134.023265][ T7930] RSP: 002b:00007fc70618f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  134.023282][ T7930] RAX: ffffffffffffffda RBX: 00007fc707955fa0 RCX: 00007fc70772d5fc
[  134.023293][ T7930] RDX: 000000000000000f RSI: 00007fc70618f0a0 RDI: 0000000000000003
[  134.023303][ T7930] RBP: 00007fc70618f090 R08: 0000000000000000 R09: 0000000000000000
[  134.023314][ T7930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  134.023324][ T7930] R13: 00007fc707956038 R14: 00007fc707955fa0 R15: 00007fff4ec76998
[  134.023377][ T7930]  </TASK>
[  134.561145][ T7951] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  134.593494][ T7950] delete_channel: no stack
[  134.617373][ T7949] loop1: detected capacity change from 0 to 8192
[  134.837539][ T7962] loop3: detected capacity change from 0 to 128
[  134.956683][ T7962] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1518'.
[  135.374358][ T7987] loop3: detected capacity change from 0 to 512
[  135.381229][ T7987] ext4: Unknown parameter 'smackfsfloor'
[  135.581329][ T7993] loop1: detected capacity change from 0 to 8192
[  135.655411][ T7997] FAULT_INJECTION: forcing a failure.
[  135.655411][ T7997] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  135.669829][ T7997] CPU: 1 UID: 0 PID: 7997 Comm: syz.5.1533 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  135.669868][ T7997] Tainted: [W]=WARN
[  135.669874][ T7997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  135.669887][ T7997] Call Trace:
[  135.669895][ T7997]  <TASK>
[  135.669905][ T7997]  __dump_stack+0x1d/0x30
[  135.670017][ T7997]  dump_stack_lvl+0xe8/0x140
[  135.670067][ T7997]  dump_stack+0x15/0x1b
[  135.670081][ T7997]  should_fail_ex+0x265/0x280
[  135.670104][ T7997]  should_fail_alloc_page+0xf2/0x100
[  135.670132][ T7997]  __alloc_frozen_pages_noprof+0xff/0x360
[  135.670233][ T7997]  alloc_pages_mpol+0xb3/0x250
[  135.670268][ T7997]  vma_alloc_folio_noprof+0x1aa/0x300
[  135.670362][ T7997]  handle_mm_fault+0xec2/0x2c20
[  135.670387][ T7997]  ? __rcu_read_unlock+0x4f/0x70
[  135.670467][ T7997]  do_user_addr_fault+0x3fe/0x1090
[  135.670503][ T7997]  exc_page_fault+0x62/0xa0
[  135.670526][ T7997]  asm_exc_page_fault+0x26/0x30
[  135.670544][ T7997] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  135.670576][ T7997] Code: f6 01 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  135.670668][ T7997] RSP: 0018:ffffc9000be87e00 EFLAGS: 00050206
[  135.670685][ T7997] RAX: ffff8881033d0aa0 RBX: 0000000000000068 RCX: 0000000000000068
[  135.670698][ T7997] RDX: 0000000000000000 RSI: ffffc9000be87e38 RDI: 0000200000000940
[  135.670781][ T7997] RBP: 0000000000000000 R08: 00000000000005e4 R09: 0000000000000000
[  135.670795][ T7997] R10: 0001c9000be87e38 R11: 0001c9000be87e9f R12: 00002000000009a8
[  135.670807][ T7997] R13: 00007ffffffff000 R14: 0000200000000940 R15: ffffc9000be87e38
[  135.670823][ T7997]  _copy_to_user+0x7c/0xa0
[  135.670874][ T7997]  __se_sys_semctl+0x1c1/0x2d0
[  135.670904][ T7997]  __x64_sys_semctl+0x55/0x70
[  135.670928][ T7997]  x64_sys_call+0x1e1a/0x2ff0
[  135.670948][ T7997]  do_syscall_64+0xd2/0x200
[  135.670972][ T7997]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  135.670993][ T7997]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  135.671018][ T7997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.671120][ T7997] RIP: 0033:0x7fc70772ebe9
[  135.671135][ T7997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.671160][ T7997] RSP: 002b:00007fc70618f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[  135.671179][ T7997] RAX: ffffffffffffffda RBX: 00007fc707955fa0 RCX: 00007fc70772ebe9
[  135.671269][ T7997] RDX: 0000000000000012 RSI: 0000000000000003 RDI: 0000000000000000
[  135.671309][ T7997] RBP: 00007fc70618f090 R08: 0000000000000000 R09: 0000000000000000
[  135.671322][ T7997] R10: 0000200000000940 R11: 0000000000000246 R12: 0000000000000001
[  135.671345][ T7997] R13: 00007fc707956038 R14: 00007fc707955fa0 R15: 00007fff4ec76998
[  135.671362][ T7997]  </TASK>
[  136.407858][ T8026] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  136.478950][ T8026] loop9: detected capacity change from 0 to 7
[  137.008501][   T29] kauditd_printk_skb: 477 callbacks suppressed
[  137.008525][   T29] audit: type=1326 audit(1755553849.870:17122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.039084][   T29] audit: type=1326 audit(1755553849.870:17123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.101893][   T29] audit: type=1326 audit(1755553849.930:17124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.125862][   T29] audit: type=1326 audit(1755553849.930:17125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.150148][   T29] audit: type=1326 audit(1755553849.930:17126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.173972][   T29] audit: type=1326 audit(1755553849.930:17127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.198537][   T29] audit: type=1326 audit(1755553849.930:17128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.222656][   T29] audit: type=1326 audit(1755553849.930:17129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.247048][   T29] audit: type=1326 audit(1755553849.930:17130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.272273][   T29] audit: type=1326 audit(1755553849.930:17131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8046 comm="syz.1.1556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1574ebe9 code=0x7ffc0000
[  137.355700][ T8068] loop2: detected capacity change from 0 to 1024
[  137.371823][ T8068] EXT4-fs: Ignoring removed mblk_io_submit option
[  137.390394][ T8068] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.405000][ T8077] __nla_validate_parse: 1 callbacks suppressed
[  137.405013][ T8077] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1569'.
[  137.483854][ T8077] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1569'.
[  137.529605][ T8077] loop5: detected capacity change from 0 to 512
[  137.550715][ T3700] ==================================================================
[  137.559181][ T3700] BUG: KCSAN: data-race in n_tty_receive_char_flow_ctrl / tty_set_termios
[  137.567883][ T3700] 
[  137.570221][ T3700] write to 0xffff888118db1508 of 44 bytes by task 8084 on cpu 1:
[  137.578291][ T3700]  tty_set_termios+0xc0/0x8c0
[  137.583248][ T3700]  set_termios+0x496/0x4e0
[  137.587678][ T3700]  tty_mode_ioctl+0x379/0x5c0
[  137.592539][ T3700]  n_tty_ioctl_helper+0x91/0x210
[  137.597562][ T3700]  n_tty_ioctl+0x101/0x200
[  137.602237][ T3700]  tty_ioctl+0x842/0xb80
[  137.606576][ T3700]  __se_sys_ioctl+0xcb/0x140
[  137.611252][ T3700]  __x64_sys_ioctl+0x43/0x50
[  137.615879][ T3700]  x64_sys_call+0x1816/0x2ff0
[  137.620882][ T3700]  do_syscall_64+0xd2/0x200
[  137.625388][ T3700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.631356][ T3700] 
[  137.633673][ T3700] read to 0xffff888118db1522 of 1 bytes by task 3700 on cpu 0:
[  137.641285][ T3700]  n_tty_receive_char_flow_ctrl+0x59/0x1a0
[  137.647261][ T3700]  n_tty_lookahead_flow_ctrl+0xed/0x130
[  137.652849][ T3700]  tty_port_default_lookahead_buf+0x8e/0xc0
[  137.658765][ T3700]  flush_to_ldisc+0x288/0x340
[  137.663536][ T3700]  process_scheduled_works+0x4cb/0x9d0
[  137.669080][ T3700]  worker_thread+0x582/0x770
[  137.673767][ T3700]  kthread+0x489/0x510
[  137.677847][ T3700]  ret_from_fork+0xda/0x150
[  137.682438][ T3700]  ret_from_fork_asm+0x1a/0x30
[  137.687295][ T3700] 
[  137.689690][ T3700] value changed: 0x13 -> 0x31
[  137.694451][ T3700] 
[  137.696866][ T3700] Reported by Kernel Concurrency Sanitizer on:
[  137.703098][ T3700] CPU: 0 UID: 0 PID: 3700 Comm: kworker/u8:29 Tainted: G        W           6.17.0-rc2-syzkaller #0 PREEMPT(voluntary) 
[  137.716120][ T3700] Tainted: [W]=WARN
[  137.719997][ T3700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  137.730045][ T3700] Workqueue: events_unbound flush_to_ldisc
[  137.735861][ T3700] ==================================================================
[  137.751578][ T8077] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  137.762340][ T8077] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  137.771583][ T8077] EXT4-fs (loop5): orphan cleanup on readonly fs
[  137.779136][ T8077] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #11: comm syz.5.1569: attempt to clear invalid blocks 1024 len 1
[  137.804086][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.822078][ T8077] EXT4-fs (loop5): Remounting filesystem read-only
[  137.840742][ T8077] EXT4-fs (loop5): 1 truncate cleaned up
[  137.853417][ T8077] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  138.180336][ T4394] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.